Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-08-25 18:12:38 INFO
TEST-RUNNER
Test instance f3wrZIlJDPztwNF created
baseUrl
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "server_metadata": "discovery",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
oidc_cert_basic_prod_official
description
planId
aFZveOBXWn8se
config
{
  "alias": "oidc_cert_basic_prod_official",
  "server": {
    "discoveryUrl": "https://oidc.idp.cloud.imprivata.com/CZPT/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og\u003d",
    "client_secret": "XrEMA-la0l6LyZouKQjtunLrdgWZ4mqUJW5oRqB6MIA\u003d",
    "client_name": "test"
  },
  "client2": {
    "client_id": "XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk\u003d",
    "client_secret": "7NCA_N5VpGYLsn8YHMDIvyNY5gc9jUtdDMI0D95JPcc\u003d"
  },
  "client_secret_post": {
    "client_id": "-X89m5YgMqsqynQbazlTvfkSEvB3xbxk5czFNgf3aZ4\u003d",
    "client_secret": "yfHTYvYthqW2ZLaJHDTX4BFAF0fC0bYl2oBpQbZfJhI\u003d"
  }
}
testName
oidcc-refresh-token
2021-08-25 18:12:38 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
2021-08-25 18:12:38
GetDynamicServerConfiguration
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-25 18:12:38 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:38 GMT",
  "content-type": "application/json",
  "content-length": "1063",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"response_types_supported":["code","code id_token","code token","code id_token token"],"grant_types_supported":["authorization_code","refresh_token"],"end_session_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/endsession","scopes_supported":["openid","profile","email","phone","address"],"backchannel_logout_supported":true,"issuer":"https://oidc.idp.cloud.imprivata.com/CZPT","acr_values_supported":["com:imprivata:oidc:method:password"],"authorization_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/authorize","userinfo_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/userinfo","frontchannel_logout_supported":true,"jwks_uri":"https://oidc.idp.cloud.imprivata.com/CZPT/jwks.json","frontchannel_logout_session_supported":true,"subject_types_supported":["public"],"id_token_signing_alg_values_supported":["HS256"],"claim_types_supported":["normal"],"token_endpoint_auth_methods_supported":["client_secret_basic","client_secret_post"],"backchannel_logout_session_supported":true,"token_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/token"}
2021-08-25 18:12:38
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"response_types_supported":["code","code id_token","code token","code id_token token"],"grant_types_supported":["authorization_code","refresh_token"],"end_session_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/endsession","scopes_supported":["openid","profile","email","phone","address"],"backchannel_logout_supported":true,"issuer":"https://oidc.idp.cloud.imprivata.com/CZPT","acr_values_supported":["com:imprivata:oidc:method:password"],"authorization_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/authorize","userinfo_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/userinfo","frontchannel_logout_supported":true,"jwks_uri":"https://oidc.idp.cloud.imprivata.com/CZPT/jwks.json","frontchannel_logout_session_supported":true,"subject_types_supported":["public"],"id_token_signing_alg_values_supported":["HS256"],"claim_types_supported":["normal"],"token_endpoint_auth_methods_supported":["client_secret_basic","client_secret_post"],"backchannel_logout_session_supported":true,"token_endpoint":"https://oidc.idp.cloud.imprivata.com/CZPT/token"}
2021-08-25 18:12:38 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
response_types_supported
[
  "code",
  "code id_token",
  "code token",
  "code id_token token"
]
grant_types_supported
[
  "authorization_code",
  "refresh_token"
]
end_session_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/endsession
scopes_supported
[
  "openid",
  "profile",
  "email",
  "phone",
  "address"
]
backchannel_logout_supported
true
issuer
https://oidc.idp.cloud.imprivata.com/CZPT
acr_values_supported
[
  "com:imprivata:oidc:method:password"
]
authorization_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/authorize
userinfo_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/userinfo
frontchannel_logout_supported
true
jwks_uri
https://oidc.idp.cloud.imprivata.com/CZPT/jwks.json
frontchannel_logout_session_supported
true
subject_types_supported
[
  "public"
]
id_token_signing_alg_values_supported
[
  "HS256"
]
claim_types_supported
[
  "normal"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_post"
]
backchannel_logout_session_supported
true
token_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/token
2021-08-25 18:12:38 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-08-25 18:12:38 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
authorization_endpoint
{
  "testHost": "oidc.idp.cloud.imprivata.com",
  "testPort": 443
}
token_endpoint
{
  "testHost": "oidc.idp.cloud.imprivata.com",
  "testPort": 443
}
userinfo_endpoint
{
  "testHost": "oidc.idp.cloud.imprivata.com",
  "testPort": 443
}
2021-08-25 18:12:38
FetchServerKeys
Fetching server key
jwks_uri
https://oidc.idp.cloud.imprivata.com/CZPT/jwks.json
2021-08-25 18:12:38
FetchServerKeys
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/jwks.json
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-25 18:12:38 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:38 GMT",
  "content-type": "application/json",
  "content-length": "427",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","kid":"Vkoi4kDFdls7ddOIpDNx4g","n":"qhxV9tpMh-i9_OKe67RHkldUqjxJS0gv_8YKdkmFBsB9nParzji98W2dllBWh6jXh9r0x60oOgYZ99yfgoAnK35gAVAw2tYoi_k6tec0HRtsp7L9HaYXYC4MsgRuqc8MPf2Upy8cuE6pxRbjdhQScglpo3Vc-qy5W_ZCVzUYmgGi42Bzjw0wXG1Fy4e2ClOe560GkR_2xzYRcEUzBSotojMzlnfit7YAGnDDMTU4uT9BEd_MBu2n3B9TVBuReD4khDrinXv3_M5O0i6IAq240wCpNkwzehUHFBo8t9yxxqYEnIFgeShd4qX3u_1Ut-UQifZ6yuEq3yrXNaCrxLn5Mw"}]}
2021-08-25 18:12:38
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","kid":"Vkoi4kDFdls7ddOIpDNx4g","n":"qhxV9tpMh-i9_OKe67RHkldUqjxJS0gv_8YKdkmFBsB9nParzji98W2dllBWh6jXh9r0x60oOgYZ99yfgoAnK35gAVAw2tYoi_k6tec0HRtsp7L9HaYXYC4MsgRuqc8MPf2Upy8cuE6pxRbjdhQScglpo3Vc-qy5W_ZCVzUYmgGi42Bzjw0wXG1Fy4e2ClOe560GkR_2xzYRcEUzBSotojMzlnfit7YAGnDDMTU4uT9BEd_MBu2n3B9TVBuReD4khDrinXv3_M5O0i6IAq240wCpNkwzehUHFBo8t9yxxqYEnIFgeShd4qX3u_1Ut-UQifZ6yuEq3yrXNaCrxLn5Mw"}]}
2021-08-25 18:12:38 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "Vkoi4kDFdls7ddOIpDNx4g",
      "n": "qhxV9tpMh-i9_OKe67RHkldUqjxJS0gv_8YKdkmFBsB9nParzji98W2dllBWh6jXh9r0x60oOgYZ99yfgoAnK35gAVAw2tYoi_k6tec0HRtsp7L9HaYXYC4MsgRuqc8MPf2Upy8cuE6pxRbjdhQScglpo3Vc-qy5W_ZCVzUYmgGi42Bzjw0wXG1Fy4e2ClOe560GkR_2xzYRcEUzBSotojMzlnfit7YAGnDDMTU4uT9BEd_MBu2n3B9TVBuReD4khDrinXv3_M5O0i6IAq240wCpNkwzehUHFBo8t9yxxqYEnIFgeShd4qX3u_1Ut-UQifZ6yuEq3yrXNaCrxLn5Mw"
    }
  ]
}
2021-08-25 18:12:38 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "Vkoi4kDFdls7ddOIpDNx4g",
      "n": "qhxV9tpMh-i9_OKe67RHkldUqjxJS0gv_8YKdkmFBsB9nParzji98W2dllBWh6jXh9r0x60oOgYZ99yfgoAnK35gAVAw2tYoi_k6tec0HRtsp7L9HaYXYC4MsgRuqc8MPf2Upy8cuE6pxRbjdhQScglpo3Vc-qy5W_ZCVzUYmgGi42Bzjw0wXG1Fy4e2ClOe560GkR_2xzYRcEUzBSotojMzlnfit7YAGnDDMTU4uT9BEd_MBu2n3B9TVBuReD4khDrinXv3_M5O0i6IAq240wCpNkwzehUHFBo8t9yxxqYEnIFgeShd4qX3u_1Ut-UQifZ6yuEq3yrXNaCrxLn5Mw"
    }
  ]
}
2021-08-25 18:12:38 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-08-25 18:12:38 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-08-25 18:12:38 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-08-25 18:12:38 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-08-25 18:12:38 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og=
client_secret
XrEMA-la0l6LyZouKQjtunLrdgWZ4mqUJW5oRqB6MIA=
client_name
test
2021-08-25 18:12:38 INFO
ValidateClientJWKsPrivatePart
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38 INFO
ExtractJWKsFromStaticClientConfiguration
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38 INFO
CheckDistinctKeyIdValueInClientJWKs
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-08-25 18:12:38
SetScopeInClientConfigurationToOpenIdOfflineAccessIfServerSupportsOfflineAccess
scopes supported does not contain 'offline_access' so not adding it to the list of scopes to be requested
scopes_supported
[
  "openid",
  "profile",
  "email",
  "phone",
  "address"
]
2021-08-25 18:12:38 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_basic",
  "client_secret_post"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-08-25 18:12:38 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk=
client_secret
7NCA_N5VpGYLsn8YHMDIvyNY5gc9jUtdDMI0D95JPcc=
2021-08-25 18:12:38 INFO
ValidateClientJWKsPrivatePart
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38 INFO
ExtractJWKsFromStaticClientConfiguration
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38 INFO
CheckDistinctKeyIdValueInClientJWKs
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-25 18:12:38
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-08-25 18:12:38
SetScopeInClientConfigurationToOpenIdOfflineAccessIfServerSupportsOfflineAccess
scopes supported does not contain 'offline_access' so not adding it to the list of scopes to be requested
scopes_supported
[
  "openid",
  "profile",
  "email",
  "phone",
  "address"
]
2021-08-25 18:12:38 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_basic",
  "client_secret_post"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-08-25 18:12:38 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
https://oidc.idp.cloud.imprivata.com/CZPT/userinfo
2021-08-25 18:12:38
oidcc-refresh-token
Setup Done
Make request to authorization endpoint
2021-08-25 18:12:38 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
2021-08-25 18:12:38
CreateRandomStateValue
Created state value
requested_state_length
10
state
2eoQRpAsg2
2021-08-25 18:12:38 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
2eoQRpAsg2
2021-08-25 18:12:38
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
miQeEfkqI9
2021-08-25 18:12:38 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
2eoQRpAsg2
nonce
miQeEfkqI9
2021-08-25 18:12:38 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
2eoQRpAsg2
nonce
miQeEfkqI9
response_type
code
2021-08-25 18:12:38 SUCCESS
AddPromptConsentToAuthorizationEndpointRequestIfScopeContainsOfflineAccess
Not adding prompt=consent as the scope in the configuration does not contain offline_access
2021-08-25 18:12:38 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/authorize?client_id=DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og%3D&redirect_uri=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback&scope=openid&state=2eoQRpAsg2&nonce=miQeEfkqI9&response_type=code
2021-08-25 18:12:38 REDIRECT
oidcc-refresh-token
Redirecting to authorization endpoint
redirect_to
https://oidc.idp.cloud.imprivata.com/CZPT/authorize?client_id=DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og%3D&redirect_uri=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback&scope=openid&state=2eoQRpAsg2&nonce=miQeEfkqI9&response_type=code
2021-08-25 18:12:43 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance f3wrZIlJDPztwNF
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "code": "Qy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.",
  "state": "2eoQRpAsg2"
}
incoming_body
2021-08-25 18:12:43 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/lAVgmdOGKnc96Qu4nixW",
  "fullUrl": "https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/implicit/lAVgmdOGKnc96Qu4nixW"
}
2021-08-25 18:12:43 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance f3wrZIlJDPztwNF
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/implicit/lAVgmdOGKnc96Qu4nixW, returnUrl=/log-detail.html?log=f3wrZIlJDPztwNF}]
outgoing_path
callback
2021-08-25 18:12:44 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance f3wrZIlJDPztwNF
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback?code\u003dQy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.\u0026state\u003d2eoQRpAsg2",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/lAVgmdOGKnc96Qu4nixW
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-25 18:12:44 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance f3wrZIlJDPztwNF
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/lAVgmdOGKnc96Qu4nixW
2021-08-25 18:12:44 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-08-25 18:12:44 REDIRECT-IN
oidcc-refresh-token
Authorization endpoint response captured
url_query
{
  "code": "Qy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.",
  "state": "2eoQRpAsg2"
}
headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2021-08-25 18:12:44 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-08-25 18:12:44
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-08-25 18:12:44 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-08-25 18:12:44 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
2eoQRpAsg2
2021-08-25 18:12:44 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
Qy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.
2021-08-25 18:12:44 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
Qy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
2021-08-25 18:12:44 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE
2021-08-25 18:12:44
CallTokenEndpoint
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "765"
}
request_body
grant_type=authorization_code&code=Qy5dWwnHzSlKPSLbvvjKA3e2BJ8SgS7fT717IsV4J0TbfviMtUMay1bHQ1S1goD81n-gqEwI0Jb1hdxh8ZYx2fHv9jnguUDer0GSk6_Z6j0gzqSfA72xzKB2rrua7-Txk8Yt8Hpi9ZfVxkO5VrkHRcGM8of5QY8PQCBMy8ELLaaRyOZXhsYaLxSvpXSBP2pO91xO1aLYByx7cPuU2AjAwMN6fSX1dg7ICgeDBX3fzZpNAS5oN1lYCJVoyahU1DA4Ze8MSX7UrSiN91Zq0PUpVCvVxb0WKSeQAb8Ll-41YrwSCdizYiOcFvrSMmQ2Yqca-c08EHdDClnVVz8-ng8GDcxAiEe5jjEz1S3hlSu0IAvfXwKdRUIolfW6cb_DK1OdJulfz7X-5W6v2bt9Zu2-7huP7XkAtnSuVNA9jZRPfZUDU7e3eCaJLIH94vAj0IWh_MtdM_mBlISh1mKy70FqCXWSWYq7udpvQHcEEkgqvoue6_aPgO4QQ0tZe5vDQPPmuBWapFgytcPSamKt8ZQxmnQWMxsZ3QDx9z7xrqyWZmnFoemSrJN7sXVEjkif8NqlxJoC9rv9YTrlzzyLAc5QIdrd1rp8gE92-NkkmWMUO3U.&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Foidc_cert_basic_prod_official%2Fcallback
2021-08-25 18:12:44 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:44 GMT",
  "content-type": "application/json",
  "content-length": "2536",
  "connection": "keep-alive",
  "pragma": "no-cache",
  "cache-control": "no-cache, max-age\u003d0, must-revalidate, no-store",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A","scope":"","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:44
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A","scope":"","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:44 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A
scope

                                
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q
token_type
Bearer
expires_in
360
2021-08-25 18:12:44 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-25 18:12:44 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg
2021-08-25 18:12:44 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg
type
Bearer
2021-08-25 18:12:44 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
360
2021-08-25 18:12:44 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
360
2021-08-25 18:12:44 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A
2021-08-25 18:12:44 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q
header
{
  "kid": "Vkoi4kDFdls7ddOIpDNx4g",
  "alg": "RS256"
}
claims
{
  "traceId": "B3qqkCYzEmMQwTUD2JwuLGnu",
  "at_hash": "1GtcykPbDLLjimda3xFCTQ",
  "sub": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "aud": "DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og\u003d",
  "auth_time": 1629914420,
  "iss": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "exp": 1629915524,
  "iat": 1629915164,
  "nonce": "miQeEfkqI9",
  "sid": "5016303"
}
2021-08-25 18:12:44 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-25 18:12:44 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
miQeEfkqI9
2021-08-25 18:12:44 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-25 18:12:44 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q
2021-08-25 18:12:44 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251IiwiYXRfaGFzaCI6IjFHdGN5a1BiRExMamltZGEzeEZDVFEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjQsImlhdCI6MTYyOTkxNTE2NCwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.EvLge-DpYwuTL33_SB00hq02vIvwxNopisdnJdD4iniUA4jKtqTO7yEDjh9Z_IG66y00JFQyjgRk67RW2B-nG1X8R8nnqjuxDj3cjBKf0O5z3cBbpbt0dCb2rnK_3CJtUxIaXt25t0qPYbYaPrQG95HA1ROchxn7NhVjGW-uunS6jSCOv1wELOu1BR6bP9g-lgHcHzIkc99fytKSkB46lSFG8AOC18EUbST96Bm-QSVACJvD2S7QzPUDIr0VKu41icO2kswMLDviAkvNz73H9P96AQV11rAQl2mSvUF7hsM1LFV3Raaceh3gEhy-gDytGgSV6hoc2fo7z4dod7V32Q
2021-08-25 18:12:44 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
9988a502-68cd-45a9-88a5-0268cd35a95f
2021-08-25 18:12:44 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A
2021-08-25 18:12:44 SUCCESS
EnsureServerConfigurationSupportsRefreshToken
The server configuration indicates support for refresh tokens
supported_grant_types
[
  "authorization_code",
  "refresh_token"
]
2021-08-25 18:12:44 SUCCESS
EnsureRefreshTokenContainsAllowedCharactersOnly
Refresh token does not contain any illegal characters
Refresh Token Request
2021-08-25 18:12:44 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A
2021-08-25 18:12:44 SUCCESS
AddScopeToTokenEndpointRequest
Added scope of 'openid' to token endpoint request
grant_type
refresh_token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A
scope
openid
2021-08-25 18:12:44 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE
2021-08-25 18:12:44 SUCCESS
WaitForOneSecond
Pausing for 1 seconds
2021-08-25 18:12:45 SUCCESS
WaitForOneSecond
Woke up after 1 seconds sleep
2021-08-25 18:12:45
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "938"
}
request_body
grant_type=refresh_token&refresh_token=eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY0LCJpYXQiOjE2Mjk5MTUxNjQsIm5vbmNlIjoibWlRZUVma3FJOSJ9.ZqoK1rXGfVxWElRS1Zp4Hf79iXFhBfV3Mf7dRCr6PkdgEBQKoPKq-FA67pwBhJO3C9qLqYZnFB73z4LDfDH7ewZJTekv28cNK-cDeSY4A67HiRZlfWxYMZfacdicROJqTG7tldL_OE3YXKaEoKnrbvaOg0yR-4EoLlSNXqkT5NTgW4O1KKRVkvxmxd8nhpUyVmLeT_P-Sm1zjSu9q5T8DUVOqf0Zvc3jOfEXW_wuqu6s8612KC1vAoH1XlO-MUK0-27zs-BWRyVEZi1r4of01UkxxBgLZBHhIM3yLs9WHxK-7ixL8bONW5XC-r23DPLyKLH3QKcnDIk_0CAnjgxT0A&scope=openid
2021-08-25 18:12:46 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:46 GMT",
  "content-type": "application/json",
  "content-length": "2542",
  "connection": "keep-alive",
  "pragma": "no-cache",
  "cache-control": "no-cache, max-age\u003d0, must-revalidate, no-store",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNiwiaWF0IjoxNjI5OTE1MTY2LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.hySINPn0ob2I6cbAh4W4HkYCXolQjC1dbvIP_Bl431XHgjgAwHzFnr74vl83dDvdKWo6RGIQFBgwd-Uy9wj6LCdi24T9VU2j1qDFUiaYmsDNC1SCEiopWFScVnqJmhgUT6MNSO3oR37I2V_J8JIyLna1KlxxIyBOSp5P7oF0PfBgIgO2g144cFpXb_xS046UAvK9v7Rs6tiKNePJjZOZ8wQuWeQV6FuyRyOcrSuuGCMNaDsXEfurMen99ufwwQar4JI6u6Gz3FU5PXGsd9lTywuLckFi8OTEdgzto4RWY4D5WBVBAuYT8L1_1CGjzPKXYECtRKlgZ8tmLN4CmWSQkg","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiTGcwdi12ZUhucWNLeDd3eGJOaWVsLWVVIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY2LCJpYXQiOjE2Mjk5MTUxNjYsIm5vbmNlIjoibWlRZUVma3FJOSJ9.eqQN1y8xuHaJwqhan6Xf8w07DSP07C9-OwMsDmUTvW4kKBEtmTrdcmmjmYm5Bt2YUo18I6qARr_SXrAS5hcShtIBIDUVpmEAC_NTxI2LL8gtEBY6NNsm2SVcLrFk98LfpLAsdBr6KcnhTUT9UbIgaqgerhwQVf4R0mP6-j8BMSX8rnOhtwNMkMyxq9Mmm4fNhGKloH-Yz1sWAV46nXuD9Untb8ZFbDrjfG4ghKN-vKIrTYQXE8lcLwR_mt7rMS5AosmuQ_lLBL8HJwsllM04hGmFYGKQi9lvH0LFAfHLlYLB8f33-72ym4h6Snb1UltMJCyOhZMcScvYU5lL1SklVg","scope":"openid","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwiYXRfaGFzaCI6Im9GV21FU2VCeXRjZGZNY25MWHBGVVEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjYsImlhdCI6MTYyOTkxNTE2Niwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.RlBrECWReKyZZ8vWypIMMxjIlj1ZqRCKV0iAi_ZwrIOx3fqnKKcqkgvpKhtiBz-YarHKP-crFH_rjM_6TFCUfUzYJBMqZnQ6xV5kaKP4vO9D7cmv6dHbsWJEtIH2c3QIBAGFs-lTsU8OobuCz0A9AkvGD4ilZWVu1pSN4b53iZt5hoR2CP44YPvdPSlfgts0HuH3jjIV3MKCfdSCRM4idA3Y5RTYMIvkCJmNQgublRmHqEKv7z6eoDz45R6kHAMpEveo5mprOAA23B0PLnTqOzNMq1k0S3N_FigKDXw--7CbpbncACV5wdCukP0IT-mqTo3B4t2KCewAcwul1p7yTg","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:46 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNiwiaWF0IjoxNjI5OTE1MTY2LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.hySINPn0ob2I6cbAh4W4HkYCXolQjC1dbvIP_Bl431XHgjgAwHzFnr74vl83dDvdKWo6RGIQFBgwd-Uy9wj6LCdi24T9VU2j1qDFUiaYmsDNC1SCEiopWFScVnqJmhgUT6MNSO3oR37I2V_J8JIyLna1KlxxIyBOSp5P7oF0PfBgIgO2g144cFpXb_xS046UAvK9v7Rs6tiKNePJjZOZ8wQuWeQV6FuyRyOcrSuuGCMNaDsXEfurMen99ufwwQar4JI6u6Gz3FU5PXGsd9lTywuLckFi8OTEdgzto4RWY4D5WBVBAuYT8L1_1CGjzPKXYECtRKlgZ8tmLN4CmWSQkg
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiTGcwdi12ZUhucWNLeDd3eGJOaWVsLWVVIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY2LCJpYXQiOjE2Mjk5MTUxNjYsIm5vbmNlIjoibWlRZUVma3FJOSJ9.eqQN1y8xuHaJwqhan6Xf8w07DSP07C9-OwMsDmUTvW4kKBEtmTrdcmmjmYm5Bt2YUo18I6qARr_SXrAS5hcShtIBIDUVpmEAC_NTxI2LL8gtEBY6NNsm2SVcLrFk98LfpLAsdBr6KcnhTUT9UbIgaqgerhwQVf4R0mP6-j8BMSX8rnOhtwNMkMyxq9Mmm4fNhGKloH-Yz1sWAV46nXuD9Untb8ZFbDrjfG4ghKN-vKIrTYQXE8lcLwR_mt7rMS5AosmuQ_lLBL8HJwsllM04hGmFYGKQi9lvH0LFAfHLlYLB8f33-72ym4h6Snb1UltMJCyOhZMcScvYU5lL1SklVg
scope
openid
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwiYXRfaGFzaCI6Im9GV21FU2VCeXRjZGZNY25MWHBGVVEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjYsImlhdCI6MTYyOTkxNTE2Niwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.RlBrECWReKyZZ8vWypIMMxjIlj1ZqRCKV0iAi_ZwrIOx3fqnKKcqkgvpKhtiBz-YarHKP-crFH_rjM_6TFCUfUzYJBMqZnQ6xV5kaKP4vO9D7cmv6dHbsWJEtIH2c3QIBAGFs-lTsU8OobuCz0A9AkvGD4ilZWVu1pSN4b53iZt5hoR2CP44YPvdPSlfgts0HuH3jjIV3MKCfdSCRM4idA3Y5RTYMIvkCJmNQgublRmHqEKv7z6eoDz45R6kHAMpEveo5mprOAA23B0PLnTqOzNMq1k0S3N_FigKDXw--7CbpbncACV5wdCukP0IT-mqTo3B4t2KCewAcwul1p7yTg
token_type
Bearer
expires_in
360
2021-08-25 18:12:46 SUCCESS
CheckTokenEndpointHttpStatus200
Token endpoint http status code was 200
2021-08-25 18:12:46 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-08-25 18:12:46 SUCCESS
CheckTokenEndpointCacheHeaders
'pragma' and 'cache-control' headers in token endpoint response contain expected values.
cache_control_header
no-cache, max-age=0, must-revalidate, no-store
pragma_header
no-cache
2021-08-25 18:12:46 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-25 18:12:46 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNiwiaWF0IjoxNjI5OTE1MTY2LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.hySINPn0ob2I6cbAh4W4HkYCXolQjC1dbvIP_Bl431XHgjgAwHzFnr74vl83dDvdKWo6RGIQFBgwd-Uy9wj6LCdi24T9VU2j1qDFUiaYmsDNC1SCEiopWFScVnqJmhgUT6MNSO3oR37I2V_J8JIyLna1KlxxIyBOSp5P7oF0PfBgIgO2g144cFpXb_xS046UAvK9v7Rs6tiKNePJjZOZ8wQuWeQV6FuyRyOcrSuuGCMNaDsXEfurMen99ufwwQar4JI6u6Gz3FU5PXGsd9lTywuLckFi8OTEdgzto4RWY4D5WBVBAuYT8L1_1CGjzPKXYECtRKlgZ8tmLN4CmWSQkg
type
Bearer
2021-08-25 18:12:46 SUCCESS
CheckTokenTypeIsBearer
Token type is bearer
2021-08-25 18:12:46 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
4212.825175755147
expected
96.0
2021-08-25 18:12:46 SUCCESS
EnsureAccessTokenContainsAllowedCharactersOnly
Access token does not contain any illegal characters
2021-08-25 18:12:46 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
360
2021-08-25 18:12:46 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
360
2021-08-25 18:12:46 SUCCESS
EnsureAccessTokenValuesAreDifferent
Access token values are not the same
first_access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiQjNxcWtDWXpFbU1Rd1RVRDJKd3VMR251Iiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY0LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNCwiaWF0IjoxNjI5OTE1MTY0LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.nSjKWPxtNEAcnAd1Y_DXJdJO1pg-OQNCJMG8qb4qVFxA_uPyD8gyZ9sXmCq9MyTiQ9QrH-SgwSWuiEGO5iUJkJA8Qi-aIjMqmqalZkASA4tmpmSczGAOz9ycZYsVuO2fe-x1C_CCCGW6hVedTIj-vVgl28EQeU7ie-SfPatmVEtZCnkUNdBQZSanDRTXx7U3qxvG735OxvtQwvqt1CmJ-mZu50hTuVNIUNtf65c9lIm0Lyd8AQ_t52aNwqwhsaYo6buU3B5vEaVHz74p1ZJQrbM3jhiPp5xPm6mMdKcgcp6bBwygYta-NEBQplbRfCl650ogU2ODsYw1rrAKP2A4Lg
second_access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNiwiaWF0IjoxNjI5OTE1MTY2LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.hySINPn0ob2I6cbAh4W4HkYCXolQjC1dbvIP_Bl431XHgjgAwHzFnr74vl83dDvdKWo6RGIQFBgwd-Uy9wj6LCdi24T9VU2j1qDFUiaYmsDNC1SCEiopWFScVnqJmhgUT6MNSO3oR37I2V_J8JIyLna1KlxxIyBOSp5P7oF0PfBgIgO2g144cFpXb_xS046UAvK9v7Rs6tiKNePJjZOZ8wQuWeQV6FuyRyOcrSuuGCMNaDsXEfurMen99ufwwQar4JI6u6Gz3FU5PXGsd9lTywuLckFi8OTEdgzto4RWY4D5WBVBAuYT8L1_1CGjzPKXYECtRKlgZ8tmLN4CmWSQkg
2021-08-25 18:12:46 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwiYXRfaGFzaCI6Im9GV21FU2VCeXRjZGZNY25MWHBGVVEiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MjYsImlhdCI6MTYyOTkxNTE2Niwibm9uY2UiOiJtaVFlRWZrcUk5Iiwic2lkIjoiNTAxNjMwMyJ9.RlBrECWReKyZZ8vWypIMMxjIlj1ZqRCKV0iAi_ZwrIOx3fqnKKcqkgvpKhtiBz-YarHKP-crFH_rjM_6TFCUfUzYJBMqZnQ6xV5kaKP4vO9D7cmv6dHbsWJEtIH2c3QIBAGFs-lTsU8OobuCz0A9AkvGD4ilZWVu1pSN4b53iZt5hoR2CP44YPvdPSlfgts0HuH3jjIV3MKCfdSCRM4idA3Y5RTYMIvkCJmNQgublRmHqEKv7z6eoDz45R6kHAMpEveo5mprOAA23B0PLnTqOzNMq1k0S3N_FigKDXw--7CbpbncACV5wdCukP0IT-mqTo3B4t2KCewAcwul1p7yTg
header
{
  "kid": "Vkoi4kDFdls7ddOIpDNx4g",
  "alg": "RS256"
}
claims
{
  "traceId": "8RvlS3pocRlV0rjwqiW0CsgB",
  "at_hash": "oFWmESeBytcdfMcnLXpFUQ",
  "sub": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "aud": "DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og\u003d",
  "auth_time": 1629914420,
  "iss": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "exp": 1629915526,
  "iat": 1629915166,
  "nonce": "miQeEfkqI9",
  "sid": "5016303"
}
2021-08-25 18:12:46 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiTGcwdi12ZUhucWNLeDd3eGJOaWVsLWVVIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IkRjVk9PUHF1UC0waUEzWUwwN3hRWFJCTXk1QTdvZEhzV0dsWFNjLXYyb2c9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzY2LCJpYXQiOjE2Mjk5MTUxNjYsIm5vbmNlIjoibWlRZUVma3FJOSJ9.eqQN1y8xuHaJwqhan6Xf8w07DSP07C9-OwMsDmUTvW4kKBEtmTrdcmmjmYm5Bt2YUo18I6qARr_SXrAS5hcShtIBIDUVpmEAC_NTxI2LL8gtEBY6NNsm2SVcLrFk98LfpLAsdBr6KcnhTUT9UbIgaqgerhwQVf4R0mP6-j8BMSX8rnOhtwNMkMyxq9Mmm4fNhGKloH-Yz1sWAV46nXuD9Untb8ZFbDrjfG4ghKN-vKIrTYQXE8lcLwR_mt7rMS5AosmuQ_lLBL8HJwsllM04hGmFYGKQi9lvH0LFAfHLlYLB8f33-72ym4h6Snb1UltMJCyOhZMcScvYU5lL1SklVg
2021-08-25 18:12:46 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
7088
required
128
2021-08-25 18:12:46 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
5184.899825181641
expected
96.0
2021-08-25 18:12:46 SUCCESS
CompareIdTokenClaims
Validated id token claims successfully
iss
{
  "first": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "second": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "note": "Values are expected to be equal"
}
sub
{
  "first": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "second": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "note": "Values are expected to be equal"
}
iat
{
  "first": 1629915164,
  "second": 1629915166,
  "note": "Values are expected to be different"
}
aud
{
  "first": "DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og\u003d",
  "second": "DcVOOPquP-0iA3YL07xQXRBMy5A7odHsWGlXSc-v2og\u003d",
  "note": "Values are expected to be equal"
}
auth_time
{
  "first": 1629914420,
  "second": 1629914420,
  "note": "Values are expected to be equal"
}
azp
Id tokens do not contain azp claims
Userinfo endpoint tests
2021-08-25 18:12:46
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiOFJ2bFMzcG9jUmxWMHJqd3FpVzBDc2dCIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTY2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUyNiwiaWF0IjoxNjI5OTE1MTY2LCJjbGllbnRfaWQiOiJEY1ZPT1BxdVAtMGlBM1lMMDd4UVhSQk15NUE3b2RIc1dHbFhTYy12Mm9nPSJ9.hySINPn0ob2I6cbAh4W4HkYCXolQjC1dbvIP_Bl431XHgjgAwHzFnr74vl83dDvdKWo6RGIQFBgwd-Uy9wj6LCdi24T9VU2j1qDFUiaYmsDNC1SCEiopWFScVnqJmhgUT6MNSO3oR37I2V_J8JIyLna1KlxxIyBOSp5P7oF0PfBgIgO2g144cFpXb_xS046UAvK9v7Rs6tiKNePJjZOZ8wQuWeQV6FuyRyOcrSuuGCMNaDsXEfurMen99ufwwQar4JI6u6Gz3FU5PXGsd9lTywuLckFi8OTEdgzto4RWY4D5WBVBAuYT8L1_1CGjzPKXYECtRKlgZ8tmLN4CmWSQkg",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-08-25 18:12:46 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:46 GMT",
  "content-type": "application/json",
  "content-length": "46",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"sub":"9988a502-68cd-45a9-88a5-0268cd35a95f"}
2021-08-25 18:12:46 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:46 GMT",
  "content-type": "application/json",
  "content-length": "46",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
body
{"sub":"9988a502-68cd-45a9-88a5-0268cd35a95f"}
Second client: Make request to authorization endpoint
2021-08-25 18:12:46 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
2021-08-25 18:12:46
CreateRandomStateValue
Created state value
requested_state_length
10
state
7wgEUWOgNy
2021-08-25 18:12:46 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
7wgEUWOgNy
2021-08-25 18:12:46
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
v66b2Ungzn
2021-08-25 18:12:46 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
7wgEUWOgNy
nonce
v66b2Ungzn
2021-08-25 18:12:46 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk=
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
scope
openid
state
7wgEUWOgNy
nonce
v66b2Ungzn
response_type
code
2021-08-25 18:12:46 SUCCESS
AddPromptConsentToAuthorizationEndpointRequestIfScopeContainsOfflineAccess
Not adding prompt=consent as the scope in the configuration does not contain offline_access
2021-08-25 18:12:46 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://oidc.idp.cloud.imprivata.com/CZPT/authorize?client_id=XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk%3D&redirect_uri=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback&scope=openid&state=7wgEUWOgNy&nonce=v66b2Ungzn&response_type=code
2021-08-25 18:12:46 REDIRECT
oidcc-refresh-token
Redirecting to authorization endpoint
redirect_to
https://oidc.idp.cloud.imprivata.com/CZPT/authorize?client_id=XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk%3D&redirect_uri=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback&scope=openid&state=7wgEUWOgNy&nonce=v66b2Ungzn&response_type=code
2021-08-25 18:12:55 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance f3wrZIlJDPztwNF
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "code": "dzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.",
  "state": "7wgEUWOgNy"
}
incoming_body
2021-08-25 18:12:55 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/mqwu6gI4LjotqjnBo6Yd",
  "fullUrl": "https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/implicit/mqwu6gI4LjotqjnBo6Yd"
}
2021-08-25 18:12:55 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance f3wrZIlJDPztwNF
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/implicit/mqwu6gI4LjotqjnBo6Yd, returnUrl=/log-detail.html?log=f3wrZIlJDPztwNF}]
outgoing_path
callback
2021-08-25 18:12:55 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance f3wrZIlJDPztwNF
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback?code\u003ddzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.\u0026state\u003d7wgEUWOgNy",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/mqwu6gI4LjotqjnBo6Yd
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-25 18:12:55 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance f3wrZIlJDPztwNF
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/mqwu6gI4LjotqjnBo6Yd
2021-08-25 18:12:55 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-08-25 18:12:55 REDIRECT-IN
oidcc-refresh-token
Authorization endpoint response captured
url_query
{
  "code": "dzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.",
  "state": "7wgEUWOgNy"
}
headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.159 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003dC4F982E66E433C9E73B9A02038003165",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Second client: Verify authorization endpoint response
2021-08-25 18:12:55 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-08-25 18:12:55
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-08-25 18:12:55 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-08-25 18:12:55 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
7wgEUWOgNy
2021-08-25 18:12:55 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
dzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.
2021-08-25 18:12:55 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
dzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.
redirect_uri
https://www.certification.openid.net/test/a/oidc_cert_basic_prod_official/callback
2021-08-25 18:12:55 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic WEwtS3FvZ3ZELUJIRWh0MGZPaGx5SWdSczFicEJwdjFyM1k4S2tSWm1WayUzRDo3TkNBX041VnBHWUxzbjhZSE1ESXZ5Tlk1Z2M5alV0ZERNSTBEOTVKUGNjJTNE
2021-08-25 18:12:55
CallTokenEndpoint
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic WEwtS3FvZ3ZELUJIRWh0MGZPaGx5SWdSczFicEJwdjFyM1k4S2tSWm1WayUzRDo3TkNBX041VnBHWUxzbjhZSE1ESXZ5Tlk1Z2M5alV0ZERNSTBEOTVKUGNjJTNE",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "765"
}
request_body
grant_type=authorization_code&code=dzbs0dpwA7LaTFbRdyMM8t-SZh4d2uo1kDDEWp8Kanla2TYvfSmn5n_GLneZ4UvxAe84cVeMYLUFzmNeqme9hyUJCbohaqZl-lhTDedWiP39lDbfmKFXZoMQSOSBBSdPRAdGBlME6m5zyLsQvn_ut6ov_AbFQSdYYmicbt4xHcmkSGpUKeWzgtIYicT7j9MQYRNUS5XQu22MZaqK1m39b0EUBvENmi1Zi1_P-5Iu34u4ST3UdhUcL2P3bf7dZkG0pe-svU3rRcMjjuIocbZX1SXAZfhthmYY4MeR8YvxBVG_VEXEzkljPj8B6JFeEkIFszW_jW3atuO5GNMlVAiOxvlQ3C1rStLEHyN-W9j5v-Uaf127pzeXUrgWdNQ5SmZLcM9W4MDzrCBpkPZB1d8c_lUrYhI2dIhihd5dRQMlzVez0I4garPfSIEMCvTPk3AV7UYh1WeSTU_kgJ-PEFzReT2SkmpF7-TSeyXyJyGEYUBxeEGNDeDK458FfJQAr9282on6a8l7pk4DuZ1eegU3KzgyodxM34XR8VDvyeu32F11EM9w4JO3aKs2Mr2z-2sTW_sZIhbYHvwX7QPg23q1QjCHvIGUcSWNS_O5AO-9j1U.&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Foidc_cert_basic_prod_official%2Fcallback
2021-08-25 18:12:56 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:56 GMT",
  "content-type": "application/json",
  "content-length": "2536",
  "connection": "keep-alive",
  "pragma": "no-cache",
  "cache-control": "no-cache, max-age\u003d0, must-revalidate, no-store",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ","scope":"","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:56
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ","scope":"","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:56 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ
scope

                                
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw
token_type
Bearer
expires_in
360
2021-08-25 18:12:56 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-25 18:12:56 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA
2021-08-25 18:12:56 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA
type
Bearer
2021-08-25 18:12:56 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
360
2021-08-25 18:12:56 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
360
2021-08-25 18:12:56 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ
2021-08-25 18:12:56 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw
header
{
  "kid": "Vkoi4kDFdls7ddOIpDNx4g",
  "alg": "RS256"
}
claims
{
  "traceId": "6Xp-Y82A1uTLXElUJBtTi_y-",
  "at_hash": "yT33ISwM66kqHjuMFPJeKA",
  "sub": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "aud": "XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk\u003d",
  "auth_time": 1629914420,
  "iss": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "exp": 1629915536,
  "iat": 1629915176,
  "nonce": "v66b2Ungzn",
  "sid": "5016303"
}
2021-08-25 18:12:56 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-25 18:12:56 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
v66b2Ungzn
2021-08-25 18:12:56 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-25 18:12:56 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw
2021-08-25 18:12:56 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwiYXRfaGFzaCI6InlUMzNJU3dNNjZrcUhqdU1GUEplS0EiLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzYsImlhdCI6MTYyOTkxNTE3Niwibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.hzYi22-3WKWImp_3Y2mfXLLAY-mVynfbBYttfIn0zOyUKyWgJ96v39P2kcGQ98pSJGnOOJ8ccQ69vgQ1-GOfzap6Cu4jaie7rA3bCQmZ1Jb5IRo20lU9yBgVsyPyHvxc0qP8Vs-k99fQ7T4wHZshlq12lEXRhsXNy1JvXw-pgo5cRcETenVecplREDNmjMVRn_OJ6L13xIm3HDToUaxdczf73V2cq3M6xlsSvTLxByyjZJ0zAn5uutNNQcWX9YY-WZi_fCDfJuWLyJo3Vo5o0mwGPzTAlrqGU2HCWaFHD8mu3rQ69D4gNvDfXfkol_W2Ndal8uCQJwGuJO9K2dvPlw
2021-08-25 18:12:56 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
9988a502-68cd-45a9-88a5-0268cd35a95f
2021-08-25 18:12:56 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ
2021-08-25 18:12:56 SUCCESS
EnsureServerConfigurationSupportsRefreshToken
The server configuration indicates support for refresh tokens
supported_grant_types
[
  "authorization_code",
  "refresh_token"
]
2021-08-25 18:12:56 SUCCESS
EnsureRefreshTokenContainsAllowedCharactersOnly
Refresh token does not contain any illegal characters
Second client: Refresh Token Request
2021-08-25 18:12:56 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ
2021-08-25 18:12:56 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic WEwtS3FvZ3ZELUJIRWh0MGZPaGx5SWdSczFicEJwdjFyM1k4S2tSWm1WayUzRDo3TkNBX041VnBHWUxzbjhZSE1ESXZ5Tlk1Z2M5alV0ZERNSTBEOTVKUGNjJTNE
2021-08-25 18:12:56 SUCCESS
WaitForOneSecond
Pausing for 1 seconds
2021-08-25 18:12:57 SUCCESS
WaitForOneSecond
Woke up after 1 seconds sleep
2021-08-25 18:12:57
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic WEwtS3FvZ3ZELUJIRWh0MGZPaGx5SWdSczFicEJwdjFyM1k4S2tSWm1WayUzRDo3TkNBX041VnBHWUxzbjhZSE1ESXZ5Tlk1Z2M5alV0ZERNSTBEOTVKUGNjJTNE",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "925"
}
request_body
grant_type=refresh_token&refresh_token=eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc2LCJpYXQiOjE2Mjk5MTUxNzYsIm5vbmNlIjoidjY2YjJVbmd6biJ9.lSHLyPcIEIsyMVXx57iqpIN494czB6BzZjQ3WVfBEfPWD7rfysYtjIxHAjQoqgue6yqtBktY58RN7P24ebBat4caneDiBZEpIdk0XQmYwBa4CcR_HfJV-xjXe_VtiyYe0Jw6ztrzkq0aH9RzTNSDS7E7EMuI-EDCS7vduyLnwM9gYaSOaFwPnbLDKZtRXPv2o-NczK4mYR0aT3RC3w9IyBFPalQnYi03Yl22y6oWtbkaKm0qKnGmX--EUGxYnf5K9hYZjnvk-hk2c57ZmZgbXkOmbiBqK_2KV7aNpCJedhO8VjvE12XcKQYp0Ahfu-xLeYjnNji3F2yeemjZBKj3JQ
2021-08-25 18:12:57 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:57 GMT",
  "content-type": "application/json",
  "content-length": "2536",
  "connection": "keep-alive",
  "pragma": "no-cache",
  "cache-control": "no-cache, max-age\u003d0, must-revalidate, no-store",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"access_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc3LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNywiaWF0IjoxNjI5OTE1MTc3LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.H5gNdfYq_kFpJYSWHEwOUMWAJa5_xo47IfiztkQG49unv1hU6UXlIIlpvTMSJP9AzP6ASBsy-rlrerzi2LLUKvTqZAr6jOwLPkNfXL290CJdZBSSHTwcgKEkzSpbg3-ShXRbZXSSAK8JO-iJ4Qa41zDexgYpXWMGiE_RZ9xGYiXknGQDBpXhx5v6QIoQcnqw2OGa1vi9hS6YMlE4L6z6ZrrYsVubJucgJpR5lsHNxJMzSZTZJ5AdErisSxWRwtGsKvN9KEW84lmD5overfzRIOn1kDFvbf-kSwhlLej9RGxljNLMcyqVpyHqMRmwVkWF0sFpAgPzRtRgkSf6dtJ6Iw","refresh_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw","scope":"","id_token":"eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwiYXRfaGFzaCI6IjluVnl0RkxsSzkyQzBzZlFCS1h1Z2ciLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzcsImlhdCI6MTYyOTkxNTE3Nywibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.j7IVGFfZI_mZbTYKkFm6hevUnRS2G2V-kmFP5D30BFs6K8X1KTIxb8tZm6Ge7IUxwP1m4HMpUByPKlGi_J3XZA5SvZY0vY_GhibuerlXy4QwqAHdnv8-gQkR7VVlW20mb0FLQ0Asz5UYHsbU0mECjwEeIKyOrH17p558JB1PqATj95YV5R10vKTIKtjRip73botGQACWk3upSUjyjsOiX1R2PjWylh1_k9PQ_E38ng8KzJ09oU1fbHu4XYnSZBcfuCt8GMWfcZcaxmDHOAuALfOvuUAWz0B-KMiSRiPnHt0n0OqTeWDHGGr3RHrTIbRvFrXjP1ZCb_pdyIRdVO-MQQ","token_type":"Bearer","expires_in":360}
2021-08-25 18:12:57 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc3LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNywiaWF0IjoxNjI5OTE1MTc3LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.H5gNdfYq_kFpJYSWHEwOUMWAJa5_xo47IfiztkQG49unv1hU6UXlIIlpvTMSJP9AzP6ASBsy-rlrerzi2LLUKvTqZAr6jOwLPkNfXL290CJdZBSSHTwcgKEkzSpbg3-ShXRbZXSSAK8JO-iJ4Qa41zDexgYpXWMGiE_RZ9xGYiXknGQDBpXhx5v6QIoQcnqw2OGa1vi9hS6YMlE4L6z6ZrrYsVubJucgJpR5lsHNxJMzSZTZJ5AdErisSxWRwtGsKvN9KEW84lmD5overfzRIOn1kDFvbf-kSwhlLej9RGxljNLMcyqVpyHqMRmwVkWF0sFpAgPzRtRgkSf6dtJ6Iw
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw
scope

                                
id_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwiYXRfaGFzaCI6IjluVnl0RkxsSzkyQzBzZlFCS1h1Z2ciLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzcsImlhdCI6MTYyOTkxNTE3Nywibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.j7IVGFfZI_mZbTYKkFm6hevUnRS2G2V-kmFP5D30BFs6K8X1KTIxb8tZm6Ge7IUxwP1m4HMpUByPKlGi_J3XZA5SvZY0vY_GhibuerlXy4QwqAHdnv8-gQkR7VVlW20mb0FLQ0Asz5UYHsbU0mECjwEeIKyOrH17p558JB1PqATj95YV5R10vKTIKtjRip73botGQACWk3upSUjyjsOiX1R2PjWylh1_k9PQ_E38ng8KzJ09oU1fbHu4XYnSZBcfuCt8GMWfcZcaxmDHOAuALfOvuUAWz0B-KMiSRiPnHt0n0OqTeWDHGGr3RHrTIbRvFrXjP1ZCb_pdyIRdVO-MQQ
token_type
Bearer
expires_in
360
2021-08-25 18:12:57 SUCCESS
CheckTokenEndpointHttpStatus200
Token endpoint http status code was 200
2021-08-25 18:12:57 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-08-25 18:12:57 SUCCESS
CheckTokenEndpointCacheHeaders
'pragma' and 'cache-control' headers in token endpoint response contain expected values.
cache_control_header
no-cache, max-age=0, must-revalidate, no-store
pragma_header
no-cache
2021-08-25 18:12:57 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-25 18:12:57 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc3LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNywiaWF0IjoxNjI5OTE1MTc3LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.H5gNdfYq_kFpJYSWHEwOUMWAJa5_xo47IfiztkQG49unv1hU6UXlIIlpvTMSJP9AzP6ASBsy-rlrerzi2LLUKvTqZAr6jOwLPkNfXL290CJdZBSSHTwcgKEkzSpbg3-ShXRbZXSSAK8JO-iJ4Qa41zDexgYpXWMGiE_RZ9xGYiXknGQDBpXhx5v6QIoQcnqw2OGa1vi9hS6YMlE4L6z6ZrrYsVubJucgJpR5lsHNxJMzSZTZJ5AdErisSxWRwtGsKvN9KEW84lmD5overfzRIOn1kDFvbf-kSwhlLej9RGxljNLMcyqVpyHqMRmwVkWF0sFpAgPzRtRgkSf6dtJ6Iw
type
Bearer
2021-08-25 18:12:57 SUCCESS
CheckTokenTypeIsBearer
Token type is bearer
2021-08-25 18:12:57 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
4195.20721486949
expected
96.0
2021-08-25 18:12:57 SUCCESS
EnsureAccessTokenContainsAllowedCharactersOnly
Access token does not contain any illegal characters
2021-08-25 18:12:57 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
360
2021-08-25 18:12:57 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
360
2021-08-25 18:12:57 SUCCESS
EnsureAccessTokenValuesAreDifferent
Access token values are not the same
first_access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiNlhwLVk4MkExdVRMWEVsVUpCdFRpX3ktIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc2LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNiwiaWF0IjoxNjI5OTE1MTc2LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.VKjtLoBVQ_xFxbQEdnvi6A3IaV2pe-K5-JBNWfS-Gdgc8IgEkcAu47wIOzO91nIHznRJK2e4kMqawrJyrIXYNBhzlB2C9yhbY4XSLVAXfzB1favpMmF6Zg2HOVxVk81yDoZcrbaVaj4X7EdGXMGiVJyra2hJq-qOvnb4NPVIZHCkES6P2yxXcoDRTbCw_ktrUW-AwrJb6KzQVuzNQDK7Q_cS-oHCdnMNDqVNzPaAMxrRH6ZuxRpcCBqwhhFsxC7hQzNe50LQ7ltsxeQCnsMT5vLuIyUTuaJu305QRJbP5qlTFBUAiU0sZS1UNPh3Oo4ONZOiWfo89u1pPZYL0M9vDA
second_access_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc3LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNywiaWF0IjoxNjI5OTE1MTc3LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.H5gNdfYq_kFpJYSWHEwOUMWAJa5_xo47IfiztkQG49unv1hU6UXlIIlpvTMSJP9AzP6ASBsy-rlrerzi2LLUKvTqZAr6jOwLPkNfXL290CJdZBSSHTwcgKEkzSpbg3-ShXRbZXSSAK8JO-iJ4Qa41zDexgYpXWMGiE_RZ9xGYiXknGQDBpXhx5v6QIoQcnqw2OGa1vi9hS6YMlE4L6z6ZrrYsVubJucgJpR5lsHNxJMzSZTZJ5AdErisSxWRwtGsKvN9KEW84lmD5overfzRIOn1kDFvbf-kSwhlLej9RGxljNLMcyqVpyHqMRmwVkWF0sFpAgPzRtRgkSf6dtJ6Iw
2021-08-25 18:12:57 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwiYXRfaGFzaCI6IjluVnl0RkxsSzkyQzBzZlFCS1h1Z2ciLCJzdWIiOiI5OTg4YTUwMi02OGNkLTQ1YTktODhhNS0wMjY4Y2QzNWE5NWYiLCJhdWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSIsImF1dGhfdGltZSI6MTYyOTkxNDQyMCwiaXNzIjoiaHR0cHM6XC9cL29pZGMuaWRwLmNsb3VkLmltcHJpdmF0YS5jb21cL0NaUFQiLCJleHAiOjE2Mjk5MTU1MzcsImlhdCI6MTYyOTkxNTE3Nywibm9uY2UiOiJ2NjZiMlVuZ3puIiwic2lkIjoiNTAxNjMwMyJ9.j7IVGFfZI_mZbTYKkFm6hevUnRS2G2V-kmFP5D30BFs6K8X1KTIxb8tZm6Ge7IUxwP1m4HMpUByPKlGi_J3XZA5SvZY0vY_GhibuerlXy4QwqAHdnv8-gQkR7VVlW20mb0FLQ0Asz5UYHsbU0mECjwEeIKyOrH17p558JB1PqATj95YV5R10vKTIKtjRip73botGQACWk3upSUjyjsOiX1R2PjWylh1_k9PQ_E38ng8KzJ09oU1fbHu4XYnSZBcfuCt8GMWfcZcaxmDHOAuALfOvuUAWz0B-KMiSRiPnHt0n0OqTeWDHGGr3RHrTIbRvFrXjP1ZCb_pdyIRdVO-MQQ
header
{
  "kid": "Vkoi4kDFdls7ddOIpDNx4g",
  "alg": "RS256"
}
claims
{
  "traceId": "lq4XwqMgW2VoDl01HCdddzEr",
  "at_hash": "9nVytFLlK92C0sfQBKXugg",
  "sub": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "aud": "XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk\u003d",
  "auth_time": 1629914420,
  "iss": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "exp": 1629915537,
  "iat": 1629915177,
  "nonce": "v66b2Ungzn",
  "sid": "5016303"
}
2021-08-25 18:12:57 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw
2021-08-25 18:12:57 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
7088
required
128
2021-08-25 18:12:57 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
5171.659517237513
expected
96.0
2021-08-25 18:12:57 SUCCESS
CompareIdTokenClaims
Validated id token claims successfully
iss
{
  "first": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "second": "https://oidc.idp.cloud.imprivata.com/CZPT",
  "note": "Values are expected to be equal"
}
sub
{
  "first": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "second": "9988a502-68cd-45a9-88a5-0268cd35a95f",
  "note": "Values are expected to be equal"
}
iat
{
  "first": 1629915176,
  "second": 1629915177,
  "note": "Values are expected to be different"
}
aud
{
  "first": "XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk\u003d",
  "second": "XL-KqogvD-BHEht0fOhlyIgRs1bpBpv1r3Y8KkRZmVk\u003d",
  "note": "Values are expected to be equal"
}
auth_time
{
  "first": 1629914420,
  "second": 1629914420,
  "note": "Values are expected to be equal"
}
azp
Id tokens do not contain azp claims
Second client: Userinfo endpoint tests
2021-08-25 18:12:57
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoibHE0WHdxTWdXMlZvRGwwMUhDZGRkekVyIiwic3ViIjoiNTAxNjMwMyIsInNjcCI6WyJvcGVuaWQiXSwibmJmIjoxNjI5OTE1MTc3LCJpc3MiOiJodHRwczpcL1wvb2lkYy5pZHAuY2xvdWQuaW1wcml2YXRhLmNvbVwvQ1pQVCIsImV4cCI6MTYyOTkxNTUzNywiaWF0IjoxNjI5OTE1MTc3LCJjbGllbnRfaWQiOiJYTC1LcW9ndkQtQkhFaHQwZk9obHlJZ1JzMWJwQnB2MXIzWThLa1JabVZrPSJ9.H5gNdfYq_kFpJYSWHEwOUMWAJa5_xo47IfiztkQG49unv1hU6UXlIIlpvTMSJP9AzP6ASBsy-rlrerzi2LLUKvTqZAr6jOwLPkNfXL290CJdZBSSHTwcgKEkzSpbg3-ShXRbZXSSAK8JO-iJ4Qa41zDexgYpXWMGiE_RZ9xGYiXknGQDBpXhx5v6QIoQcnqw2OGa1vi9hS6YMlE4L6z6ZrrYsVubJucgJpR5lsHNxJMzSZTZJ5AdErisSxWRwtGsKvN9KEW84lmD5overfzRIOn1kDFvbf-kSwhlLej9RGxljNLMcyqVpyHqMRmwVkWF0sFpAgPzRtRgkSf6dtJ6Iw",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-08-25 18:12:57 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:57 GMT",
  "content-type": "application/json",
  "content-length": "46",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"sub":"9988a502-68cd-45a9-88a5-0268cd35a95f"}
2021-08-25 18:12:57 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:57 GMT",
  "content-type": "application/json",
  "content-length": "46",
  "connection": "keep-alive",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
body
{"sub":"9988a502-68cd-45a9-88a5-0268cd35a95f"}
Attempting to use refresh_token issued to client 2 with client 1
2021-08-25 18:12:57 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw
2021-08-25 18:12:57 SUCCESS
AddScopeToTokenEndpointRequest
Added scope of 'openid' to token endpoint request
grant_type
refresh_token
refresh_token
eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw
scope
openid
2021-08-25 18:12:57 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE
2021-08-25 18:12:57
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://oidc.idp.cloud.imprivata.com/CZPT/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic RGNWT09QcXVQLTBpQTNZTDA3eFFYUkJNeTVBN29kSHNXR2xYU2MtdjJvZyUzRDpYckVNQS1sYTBsNkx5Wm91S1FqdHVuTHJkZ1daNG1xVUpXNW9ScUI2TUlBJTNE",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "938"
}
request_body
grant_type=refresh_token&refresh_token=eyJraWQiOiJWa29pNGtERmRsczdkZE9JcEROeDRnIiwiYWxnIjoiUlMyNTYifQ.eyJ0cmFjZUlkIjoiS050LW50VVVtMmx2czRBRXh6YmxPTnp5IiwicmVkaXJlY3RVcmkiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvb2lkY19jZXJ0X2Jhc2ljX3Byb2Rfb2ZmaWNpYWxcL2NhbGxiYWNrIiwic3ViIjoiNTAxNjMwMyIsImF1ZCI6IlhMLUtxb2d2RC1CSEVodDBmT2hseUlnUnMxYnBCcHYxcjNZOEtrUlptVms9Iiwic2NwIjpbIm9wZW5pZCJdLCJhdXRoX3RpbWUiOjE2Mjk5MTQ0MjAsImlzcyI6Imh0dHBzOlwvXC9vaWRjLmlkcC5jbG91ZC5pbXByaXZhdGEuY29tXC9DWlBUIiwiZXhwIjoxNjI5OTIyMzc3LCJpYXQiOjE2Mjk5MTUxNzcsIm5vbmNlIjoidjY2YjJVbmd6biJ9.Xy5n2xTdz6uYhRTjBicc7MJF0IUvyq6MrayT6MF8cZZ-nMtMxNrhFv8DaU161M9a5JXQUMbNMjU5MrEn0YHkYqYOibuEjue8gmuS41tRQ5_8yEtp6ouDbo3lCEz98RhhHoQL-0cBhoaGI2NTWnu3DYmaT--Ra2SBZxJ1tCQxvgkKsnxQwrY08cTRI5hPfr_tNwj4xeCQyJgC78uE0q9yjUSzzGf27sMPCw9QEBw1fkvuKnGGO1e3LnSzUTg2-W3EMF3KXgoWo_E-6lB03HYGgagyvTXF57uqhbEDWwzGFOZ0efEuWvhiBE03PFTaaZWiYIWByJII1p62tbFQlXxbrw&scope=openid
2021-08-25 18:12:58 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "server": "nginx/1.17.10",
  "date": "Wed, 25 Aug 2021 18:12:57 GMT",
  "content-type": "application/json",
  "content-length": "61",
  "connection": "keep-alive",
  "pragma": "no-cache",
  "cache-control": "no-cache",
  "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
  "x-frame-options": "DENY",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "master-only",
  "access-control-allow-credentials": "true",
  "access-control-allow-methods": "GET, POST, OPTIONS",
  "access-control-allow-headers": "Authorization,DNT,X-Imprivata-Applex-Context,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type"
}
response_body
{"error_description":"Invalid grant","error":"invalid_grant"}
2021-08-25 18:12:58 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error_description
Invalid grant
error
invalid_grant
2021-08-25 18:12:58 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_grant
2021-08-25 18:12:58 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2021-08-25 18:12:58 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-08-25 18:12:58 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidGrant
Token Endpoint response error returned expected 'error' of 'invalid_grant'
expected
[
  "invalid_grant"
]
2021-08-25 18:12:58 FINISHED
oidcc-refresh-token
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2021-08-25 18:12:58 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
Second client: Unregister dynamically registered client
2021-08-25 18:12:58 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2021-08-25 18:13:02
TEST-RUNNER
Alias has now been claimed by another test
alias
oidc_cert_basic_prod_official
new_test_id
dHxI7p07J5wVo1Y
Test Results