Test detail

Test Name	fapi1-advanced-final-ensure-request-object-with-long-state
Variant	client_auth_type=private_key_jwt, fapi_auth_request_method=pushed, fapi_profile=consumerdataright_au, fapi_response_mode=plain_response
Test ID	mGlBQArTUeeoPOn https://www.certification.openid.net/log-detail.html?public=true&log=mGlBQArTUeeoPOn
Created	2021-08-25T18:45:49.019024Z
Description	AU-CDR Adv. OP w/ Private Key, PAR
Test Version	4.1.26
Test Owner	109339807647777393961 https://accounts.google.com
Plan ID	7ZrKy7tYGw4X0 https://www.certification.openid.net/plan-detail.html?public=true&plan=7ZrKy7tYGw4X0
Exported From	https://www.certification.openid.net
Exported By	109339807647777393961 https://accounts.google.com
Suite Version	4.1.26
Exported	2021-08-25 18:54:21 (UTC)

2021-08-25 18:45:49

(7) More

INFO

TEST-RUNNER

Test instance mGlBQArTUeeoPOn created

baseUrl	https://www.certification.openid.net/test/a/pi
variant	{ "client_auth_type": "private_key_jwt", "fapi_auth_request_method": "pushed", "fapi_profile": "consumerdataright_au", "fapi_response_mode": "plain_response" }
alias	pi
description	AU-CDR Adv. OP w/ Private Key, PAR
planId	7ZrKy7tYGw4X0
config	{ "alias": "pi", "server": { "discoveryUrl": "https://par-what-is-it-good-for.ping-eng.com:9031/.well-known/openid-configuration" }, "client": { "client_id": "c__fapi-jwt-par1", "scope": "openid other", "jwks": { "keys": [ { "kty": "RSA", "kid": "dakid", "alg": "PS256", "n": "sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q", "e": "AQAB", "d": "ohc3fs8UBct98U2ciCFQM1VRt59X7wRek7ZTIjxfv3DT5USoEWqnRMviX4uf9_rxMEAIGEJermfF4NYm-4UHdEa8Yz6Ia8oJf2AKF-kcPJ61725v6vl909rEEZuAvIIXLr2JUrCpp6eed0gJxG2eyqxHQUTVF8bSMC7viff2CAe4RPdiSDWQBUGoM13svSC5cdZlHxz134mHthMh7zdk47tGHJZaS8AyjeRlU7sRzYFHY76NPoaF8YKBjU97nysXQkkNqcKOTt-ZK1ZYafdEowBYxO2nQEx4wKL56nxqkr1u93XBrEEt62mOftwGgozaDyHwer0C0bD_FQZut5rLAQ", "p": "7LHmQtYeFeKSop1R7tBXbTDDtdmgI3woVFwnexbelvK1Ll-Pm8ZBmClbFuBusacANfPNccbbPd6QElkkbcVhPI5q2BBdoO7ga-QZPB9WgQeUBKjGQFkJa6fV144_vQozYppDneulQJ9sFSaU6VkDYq4maJmFNozxV8_4keSfDSE", "q": "wHyqoGzxWvMWJneQm_GJB0EQGQb_ypnpDF3vgL6ACCgv8mcDW8ZGlue5BlCK5QbtgRyhJch1gFjNCcMJY8p_lriMX1tfEvoDi8yo-Dhmn0nvEQ-0mG1x-26cgLyA0K06LRxh9GO7069Safo3xEPKNflphfVOct1YapTQpewfNtk", "dp": "3cwGnXLPVmquRbtt339TrXoYqvt3WEkr8YE5bdqMUp60sPPTOoGZTeDS_qjokYiQZf5D8e4J2_wGvWrS_BoNeBVsgXM0iW3O1ssz6mbjRJ25UnRk8j982Gi5tfgSOi6o4Cj2W7FJdTjuqxMwT0meJoZSb4oMjoWcUlEL-IpnkIE", "dq": "s9ZF3CisvpqKwVnII8pgigSBs8BUT8fIcqN41sIlAHn7gfA4tQ_kd6z7syig_CWi1JQZAyHslgNhXZN5PGC_H-RAUf8eLq6jjYOjAnY_eucqkrgntJncelr3oVd8ynpt9iOkaR6dJ8OPri_21km3rQHfUybDKpIev0VWQw7-gtE", "qi": "By6K5EAIOIypaL2r6n5BdXSzNuA1r6SBgeIzwB_kQP02CGB6iPle5_tLm9MFMYnN2WayRlCqfNBKbZ700wK4zLBThbwbbMWX8C3FxCaxDvaUemh9u-Ls-3MnFLMtKTZcl5K7BQ7HHx0WUlXW5gDtLbjwRkvanzdIEiTN5ALCtQc" }, { "kty": "EC", "kid": "hTmLGw", "use": "enc", "alg": "ECDH-ES", "x": "zayjCNChbil1lRhGFTOfD7IsDI1uTcCt8whjMo42EZg", "y": "LL5EYIHi3zM16i6nUJzwvG-GJLwjE7GyArT4PxPNQDs", "crv": "P-256", "d": "nP-nIU2smk3SPM5kFYgXtrpV6OpQDAW3Jrri7A2ZbIA" } ] } }, "mtls": { "cert": "-----BEGIN CERTIFICATE-----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\u003d\u003d\n-----END CERTIFICATE-----", "key": "-----BEGIN RSA PRIVATE KEY-----\nMIIEpQIBAAKCAQEAr62e+ASZtZzhmfWwqtfSe4RENFlFIGJ61SjrfRTt6j48HEGu\nmpaeORWGWFpv6IqWzvzZ2N9sEF4yrcZa3ibMtYFkaaKXUoKxek7vCDWiB+NMD1/x\nT9mYFYiDZk/zazczvltmLYcgoSldKPbhN3faI+Bi61n4NFt+qGETyPVDZrFwuSmp\ncDAVKC49PtvPgoe1FeFCy/Xh+A1Tb6+637IDBAVkqRm304dklysIm4/o4E7nd4IR\nvSEAjiz7i9wwzgL+IDu2U//7qcJ0czck0EIINN9l0GmABMrwCAr35++fBwAzCABb\n6skTUHxjiucXUSkDaId8NwJDH7hA/JLhCA8F6wIDAQABAoIBAQChGTPH+GAEHQL8\nrkL9x8AqqFXrM1miouxFAKtCHqk1vzBcMRcuh6Q8cLKr3vL0afJ1iYUzzV5JfDg5\nBsZZJXdfknJENGdTsKmToUKtYpFdbmBXUQH22XEPfgoRDowH6601iJcgdOPFJitZ\n31sUBIIzmBbd/7kOOkDho3QDOnY+ej6s901DGOvW5+EYj0bCIaJUpX4BHr/pKmSq\nIa5dYZj6OrrCXFZk5Rvg8Mp20POxS0O2xqTInTIwKV4kALnAsmP65Qiw0qoYwRUw\nfbF06iFVy1IVQnN3sChMeh67RQBcgKPtZRf+oylFTs5Ox3fxBj1H+4CwCDN50yUy\nyQVeA/AhAoGBAObea7aSusVx0+fPTW6d468lSpSSSRtVTcmGaPS8YaU0K9HFaw9s\nmoilVpkarV4/v4J5CM2vNXdTtBpPiPaQACCGyqmBJ0xkK1dF1stVIDij4phg6OZh\nQO5wrcMCT0MtOPEZEIjYjI96CYhI46czt4Hv6GMiUTyncLag9S9LiSbJAoGBAMLN\nNpdZCBjSi3lGbD58WCW1H7ISzl0Um+K7gjhps5cw4PkTPdLMRjurKrs1bCLvsWQm\ng3CdNU+QLe7nSgKytaa4Z8YywJRNRRBOZNS6k/Px0QEycy3RBHBXS9jw4+TPnERI\n2K4J2S3QrBMUMD0OWKCz0c+rxWW1U7OrOHLo6X0TAoGAI5qrq+VnDmomjvpma6fH\n5Evw+4av5Zo7O9gRuaSPvoWUOG6kuyU5k9dDyqrVj9Ju+3UlCWt66GMtRF19tuCw\nVFPVT1zOrbZJBNWNcaA4LuP/Xxaa9GSNOfiAo7FofeisfmoqJaCX1MyySaVMDo4o\nP8663Qb+1kbQWCnshhW1GhkCgYEAtVSrJXUl2V1boVdReVTsBKW2TF+/ItwFQ6hB\nzltuZiWEtbYYjXnDQtXRYBSZhWfTm6NSJOjh8B8I8uLvfNV3zCrJxrAFncbTrBsd\nNvw6rxCA+nlIx/RSCnToUJfju2EaWGHq+Q6H0GL3WocnZB5Pl7/rZUHC7Ss+L/gJ\nAsYWWmsCgYEAnIcOu9bcNYYAr3Y9g0F9qdPBMFtyZUiDVpVhOiPioDxf4WKmIE4h\nk21I1teEmfkxMeDGcsPXf4Qb1wdm+Cj2vLptzhIgIW7JeuZXgqTyGEEjdN9xjO45\nRjWKxJXJyEeFjPqAGzGOIUCrt+84CfoKr5epUpuZecZA+OxRRuSr674\u003d\n-----END RSA PRIVATE KEY-----", "ca": "-----BEGIN CERTIFICATE-----\nMIIB5jCCAYugAwIBAgIBFjAKBggqhkjOPQQDAjBWMQswCQYDVQQGEwJVUzEbMBkG\nA1UECgwSTGV0J3MgQXV0aGVudGljYXRlMSowKAYDVQQDDCFMZXQncyBBdXRoZW50\naWNhdGUgUm9vdCBBdXRob3JpdHkwHhcNMjAwMTE0MjEzMjMwWhcNMzAwMTExMjEz\nMjMwWjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxB\nIEludGVybWVkaWF0ZSBDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJf+aA54\nRC5pyLAR5yfXVYmNpgd+CGUTDp2KOGhc0gK91zxhHesEYkdXkpS2UN8Kati+yHtW\nCV3kkhCngGyv7RqjZjBkMB0GA1UdDgQWBBRm3WjLa38lbEYCuiCPct0ZaSED2DAf\nBgNVHSMEGDAWgBTEA2Q6eecKu9g9yb5glbkhhVINGDASBgNVHRMBAf8ECDAGAQH/\nAgEAMA4GA1UdDwEB/wQEAwIBhjAKBggqhkjOPQQDAgNJADBGAiEA5pLvaFwRRkxo\nmIAtDIwg9D7gC1xzxBl4r28EzmSO1pcCIQCJUShpSXO9HDIQMUgH69fNDEMHXD3R\nRX5gP7kuu2KGMg\u003d\u003d\n-----END CERTIFICATE-----" }, "resource": { "resourceUrl": "https://par-what-is-it-good-for.ping-eng.com:3000/ext/au/cdr/mock", "cdrVersion": "3" }, "client2": { "client_id": "c__fapi-jwt-par2", "scope": "openid", "jwks": { "keys": [ { "kty": "RSA", "kid": "daotherkid", "alg": "PS256", "n": "lG76rfhCZ5xRaKf39CCMvrTJLL7x_mNwN1hdk6vIvAkL8iIjOYgmNo0E7DZIH4PXxJHVX9Ef6G4aZaC6-bfTPTsjR39HO6aV1dLSSZircjflNACkwsytg5D7MO_6W-gwoXmMAA9n6iMBQ0wUaw9Tn1Jk_qlX8HcF2Je-Z5WNYNyfh2SRpdCwsCgoRq4wqmOvhWTIccy7pPzQy-IfHIdN8VSKfvwWR4DlAJlzpGsWSlSQS-rDkbVKnax63BZQOR3K7aOt5sJwrh3niR5gtI7CYjjkjuq6KlulAPTnKNfZnQ2j8nmyvjRV57hZg9Z-rzEVcGY-gQJ8VHhY8AyVkN3EmQ", "e": "AQAB", "d": "ScKocYEXxpMIZWBqt_bg2ffOrJyqdoaFggs4XSSVWNOKCyXpqTI-AweqtZL33ilPNJBfnwC1wXPNTElGAMfXger8ShA2nq7WcG4WL5pdQCIElQXo2iCJ7QJDwPrPx5IncGaNKo59Tf1dKEsLLnRsUpTIOUB_wa_zyMEHTkQkAEh5VrFDcT5l4Pz7uEcBjrPP-xvRXalK9H8E7xq8YMg0BByp0ogd-qnyNPTK-0iqSPBn5Gj-8lNEiqvBkY_i0S5VoBTBvh7HsLnmIsoqB1yGkEJNxijL463cNB5SekRTztiC7mz7f9-oJe9OLHqpcjwBAuEEJY-ekoftVY8kNvk2gQ", "p": "_7mhydczsf1-RlgazC1ElW1kDTdcVh9xtfiPRlLjjAklNxtKOVDxNXzPb8qsqqG6hXtio39ixH5vTGLVJRMz_jL0V_bPC4VH-s7zaKFxZWa2Fn79zRJv4KcS59Oi-2d1noR0lztDeyFdKBO2F3q9yjY4GUU0GPyt7Q1FmmsBSfE", "q": "lJfS4NDe2-E3QoW7TX2XGSixV50N76zo-V6KHp5CeYvtF4NHlQwRm8sD3NBKSCWg_hDhZYrFPIXJnoaTLSrzaDP_EX64ix9v_O48IWLvmUSb21XXk3g7gc1sYXIYn7UZm12Xe4P8LoStJep21xZZH6P4Nn3AaSCStq0_-ZkyvSk", "dp": "IVmxSuSA_m6D4GKvI_-nWSGKEdstdKHnL4c6ED7RJDsxGk250V3IB2S-nOK-wAYVkED2LUJ4vA2NMFYXXB10A2vbx_kNKYB5UbFZt0SOyF2r06U-LleANbk0Uv2b3NOyWDkIB40YEN_aCVcAwXElfVCy4kDPOY8Ck87OTAQ2h9E", "dq": "W0g5X6pwfZsJG3CT87KnU-lPqIbuvMH4DNkq-Ew4gfqXl84p90IGvzIkGU5Lk66qC-nKzVpGeDun9B6v4xtzlBv9IX47WBvj6_leLxRcJEelh0RgvlMqGz9ayTISNmpGZM9F87bNALa4t4Ylo1QzQ-Cy5qaxwOMlvdsIZgjaxqE", "qi": "XrW0v41psl4xeZ_imnUoZypy0GHeoar7uYYQd6ROssFA8DQjCzj0wfG-MaTd4NaBRcOuoxTJ1p6LgVe3Wfp3lnnoW4pK0EP1mC5LTlEx8SihzlcyPyCwRQgyJ-XggguF2KgU0fo01QP3mZwCtTGZ85Y173FtCbxR4_SZhVu8QJ8" }, { "kty": "RSA", "kid": "g4VpZQ", "use": "enc", "alg": "RSA-OAEP", "n": "sru5fupwET_tFy3Y8Ghk3y6Mx2wWw82T4QcM_xxbFZidQzdjMy6959hctYQ0z73XkZ0gYlbwx58hpbYA7b85nStzd0efPsaHcLzHjqV7vYU7s7C2rwyQN2dEBA8sF7Llga-WCCM-37KwI5-WYMMN19vO23g82rm2p_ORP0F01qe7UKQJZNqpep21-hXhUp8czDrBwwSAgwg0MLG9Ffiq5BVSbWMM4ituxK7Dss7oASwM90kdNzwAuRK-0WAuMlxzCJqRJW0JdHS3CGrCHIvjNYKRSsUIcrqjRROpP7ev_L-R-ObITzke8UoYdC6Jq-K5biTKYagRbifnoKgIcLZUyQ", "e": "AQAB", "d": "NhHYUe62LGG8ZdC22jOaoHHCoOmwEVf1rpOleN-pJmVe3eC5n9g6FxM7KKZwG5CA0EpKa7WFbb5UPX9L1KCO218ztRfzstf4TUCu1hZ10qWlo_yHp3kTf887oka8vgaeq5bkul1_PckexAgZQ_h-DZkvgPFk535bJX_nps00fWMLOSIqKUudS3LiotEknoCF7oaGY4L6BIuu6D41R7vIw0Be4yQfr1sxU_OwMGhDAL8evX1FB0MkxgM42dtmc2MSlSzYgm0zgyLd7ZMaSSyyPgdttzJyL5g2sBxviicTIZyzLzwuj4CH4Oe3mVbSR9gO7hJcFEiDBTmHSY071HMtAQ", "p": "1w5j4DsHb5ZCiBK24OcfSxR77cu8fl2EGwxZiew5EBAIlQoPiBZQGXmQXhuPaivU6nUXfQm42ypKW2vX2m3OCRG-BYSKEj6goz7NhFHyGfG-UAE5wV0hhg3v2ZMce57mm7y94Wbuo9qZr4CtAiS2LRz0TUQyN9BKux_dBxAjrFk", "q": "1ML-md6F83rwAX08CtTz2AgAq0qmyoAjfsNVKKCbDnU0-QyeqGpOPoBUjKLw1lJN7AlVkSQVhT_CYsNMdi6Sn60qTr5HX28uHTvSzbVwCQQ3Yn1fQSuEoap79JHygE7fEm-2yQ7ifitGzm2z8a9Gfe5eF9klfh-MYzzKNnoTHfE", "dp": "CFQMViCzFwUwqmhfILKSqauvaPQc5p_kf8-ooAi_5PlZ-7uaAmEq1PG6P4q9sRTld_b04-i-ee5XVtcEUvcxpXREcZ5CYpZ-ThQejWNHBu4vupVxkSV0KObdRQXHcpoiwCE9ET-VOk866GsJSC33yCN46o0bjMHKQxjmzGE5oHE", "dq": "yYDISwhiSwAzEOYAGK4pJ4AkyhYQs5b6hxMOs0SwtdexzPHzzcOoyS8XZH7po8IdhKAuhyDqtOF3A7y9zOw897e0axFxXWRaA1vmQedF7XQt1DyzG3DQ06A4d6BGUNjiEn71WaScRCxOijGCDDMZiylXujRxeur8Nfyb805YjrE", "qi": "ix_ZaWpPw0XYUJk0AXmnM-hcTifv-X-B6z-0z-RTrg0NPQJS40wr9j7qY1y9iBSu2ZhMqXJS9JZ7nBAGyRiqooghcxjrIJOKAUqRrbrXvgH75Mf9cHLxTNuz1AFmSrC2xsOlARPfpCJpIUS0Ub0h-UbEsuCTQMExHDWBjmb4opE" } ] } }, "mtls2": { "cert": "-----BEGIN CERTIFICATE-----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\u003d\u003d\n-----END CERTIFICATE-----", "key": "-----BEGIN RSA PRIVATE KEY-----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\n+cniEsvOMnUCryuTw6aU481HCpy3CUW4u5m7YpG/y/CwAG6xq97rZg\u003d\u003d\n-----END RSA PRIVATE KEY-----", "ca": "-----BEGIN CERTIFICATE-----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\nRX5gP7kuu2KGMg\u003d\u003d\n-----END CERTIFICATE-----" }, "description": "AU-CDR Adv. OP w/ Private Key, PAR" }
testName	fapi1-advanced-final-ensure-request-object-with-long-state

2021-08-25 18:45:49

(1) More

SUCCESS

CreateRedirectUri

Created redirect URI

redirect_uri

https://www.certification.openid.net/test/a/pi/callback

2021-08-25 18:45:49

(4) More

GetDynamicServerConfiguration

HTTP request

request_uri	https://par-what-is-it-good-for.ping-eng.com:9031/.well-known/openid-configuration
request_method	GET
request_headers	{ "accept": "text/plain, application/json, application/cbor, application/+json, /*", "content-length": "0" }
request_body

2021-08-25 18:45:49

(4) More

RESPONSE

GetDynamicServerConfiguration

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Wed, 25 Aug 2021 18:45:49 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003deYx9a6uuNGDwTXVhqMnAZE; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "content-length": "3850" }
response_body	{ "issuer": "https://par-what-is-it-good-for.ping-eng.com:9031", "authorization_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/authorization.oauth2", "token_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2", "revocation_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/revoke_token.oauth2", "userinfo_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/idp/userinfo.openid", "introspection_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/introspect.oauth2", "jwks_uri": "https://par-what-is-it-good-for.ping-eng.com:9031/pf/JWKS", "registration_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/clients.oauth2", "ping_revoked_sris_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris", "ping_session_management_sris_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions", "ping_session_management_users_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/users", "ping_end_session_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/idp/startSLO.ping", "device_authorization_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/device_authz.oauth2", "scopes_supported": [ "other", "openid", "accounts" ], "claims_supported": [ "acr", "sharing_duration", "sub" ], "response_types_supported": [ "code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token" ], "response_modes_supported": [ "fragment", "query", "form_post" ], "grant_types_supported": [ "implicit", "authorization_code", "refresh_token", "password", "client_credentials", "urn:pingidentity.com:oauth2:grant_type:validate_bearer", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer", "urn:ietf:params:oauth:grant-type:device_code", "urn:ietf:params:oauth:grant-type:token-exchange", "urn:openid:params:grant-type:ciba" ], "subject_types_supported": [ "public", "pairwise" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "token_endpoint_auth_methods_supported": ["client_secret_basic","client_secret_post","private_key_jwt","tls_client_auth"], "token_endpoint_auth_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported": [ "normal" ], "claims_parameter_supported": false, "request_parameter_supported": true, "request_uri_parameter_supported": false, "request_object_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "id_token_encryption_alg_values_supported": [ "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "RSA-OAEP" ], "id_token_encryption_enc_values_supported": [ "A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM" ], "pushed_authorization_request_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/par.oauth2", "require_pushed_authorization_requests": false, "backchannel_authentication_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/bc-auth.ciba", "backchannel_token_delivery_modes_supported": [ "poll", "ping" ], "backchannel_authentication_request_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "backchannel_user_code_parameter_supported": false, "code_challenge_methods_supported": [ "S256" ], "tls_client_certificate_bound_access_tokens":true, "claims_parameter_supported":true }

2021-08-25 18:45:49

(1) More

GetDynamicServerConfiguration

Downloaded server configuration

server_config_string

{
  "issuer": "https://par-what-is-it-good-for.ping-eng.com:9031",
  "authorization_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/authorization.oauth2",
  "token_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2",
  "revocation_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/revoke_token.oauth2",
  "userinfo_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/idp/userinfo.openid",
  "introspection_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/introspect.oauth2",
  "jwks_uri": "https://par-what-is-it-good-for.ping-eng.com:9031/pf/JWKS",
  "registration_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/clients.oauth2",
  "ping_revoked_sris_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris",
  "ping_session_management_sris_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions",
  "ping_session_management_users_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/users",
  "ping_end_session_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/idp/startSLO.ping",
  "device_authorization_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/device_authz.oauth2",
  "scopes_supported": [ "other", "openid", "accounts" ],
  "claims_supported": [ "acr", "sharing_duration", "sub" ],
  "response_types_supported": [ "code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token" ],
  "response_modes_supported": [ "fragment", "query", "form_post" ],
  "grant_types_supported": [ "implicit", "authorization_code", "refresh_token", "password", "client_credentials", "urn:pingidentity.com:oauth2:grant_type:validate_bearer", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer", "urn:ietf:params:oauth:grant-type:device_code", "urn:ietf:params:oauth:grant-type:token-exchange", "urn:openid:params:grant-type:ciba" ],
  "subject_types_supported": [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "token_endpoint_auth_methods_supported": ["client_secret_basic","client_secret_post","private_key_jwt","tls_client_auth"],
  "token_endpoint_auth_signing_alg_values_supported":  [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported": [ "normal" ],
  "claims_parameter_supported": false,
  "request_parameter_supported": true,
  "request_uri_parameter_supported": false,
  "request_object_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "id_token_encryption_alg_values_supported": [ "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "RSA-OAEP" ],
  "id_token_encryption_enc_values_supported": [ "A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM" ],
  "pushed_authorization_request_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/par.oauth2",
  "require_pushed_authorization_requests": false,
  "backchannel_authentication_endpoint": "https://par-what-is-it-good-for.ping-eng.com:9031/as/bc-auth.ciba",
  "backchannel_token_delivery_modes_supported": [ "poll", "ping" ],
  "backchannel_authentication_request_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "backchannel_user_code_parameter_supported": false,
  "code_challenge_methods_supported": [ "S256" ],
  "tls_client_certificate_bound_access_tokens":true,
"claims_parameter_supported":true
}

2021-08-25 18:45:49

(37) More

SUCCESS

GetDynamicServerConfiguration

Successfully parsed server configuration

issuer	https://par-what-is-it-good-for.ping-eng.com:9031
authorization_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/authorization.oauth2
token_endpoint	https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2
revocation_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/revoke_token.oauth2
userinfo_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/idp/userinfo.openid
introspection_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/introspect.oauth2
jwks_uri	https://par-what-is-it-good-for.ping-eng.com:9031/pf/JWKS
registration_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/clients.oauth2
ping_revoked_sris_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris
ping_session_management_sris_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions
ping_session_management_users_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/pf-ws/rest/sessionMgmt/users
ping_end_session_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/idp/startSLO.ping
device_authorization_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/device_authz.oauth2
scopes_supported	[ "other", "openid", "accounts" ]
claims_supported	[ "acr", "sharing_duration", "sub" ]
response_types_supported	[ "code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token" ]
response_modes_supported	[ "fragment", "query", "form_post" ]
grant_types_supported	[ "implicit", "authorization_code", "refresh_token", "password", "client_credentials", "urn:pingidentity.com:oauth2:grant_type:validate_bearer", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer", "urn:ietf:params:oauth:grant-type:device_code", "urn:ietf:params:oauth:grant-type:token-exchange", "urn:openid:params:grant-type:ciba" ]
subject_types_supported	[ "public", "pairwise" ]
id_token_signing_alg_values_supported	[ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ]
token_endpoint_auth_methods_supported	[ "client_secret_basic", "client_secret_post", "private_key_jwt", "tls_client_auth" ]
token_endpoint_auth_signing_alg_values_supported	[ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ]
claim_types_supported	[ "normal" ]
claims_parameter_supported	true
request_parameter_supported	true
request_uri_parameter_supported	false
request_object_signing_alg_values_supported	[ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ]
id_token_encryption_alg_values_supported	[ "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "RSA-OAEP" ]
id_token_encryption_enc_values_supported	[ "A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM" ]
pushed_authorization_request_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/par.oauth2
require_pushed_authorization_requests	false
backchannel_authentication_endpoint	https://par-what-is-it-good-for.ping-eng.com:9031/as/bc-auth.ciba
backchannel_token_delivery_modes_supported	[ "poll", "ping" ]
backchannel_authentication_request_signing_alg_values_supported	[ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ]
backchannel_user_code_parameter_supported	false
code_challenge_methods_supported	[ "S256" ]
tls_client_certificate_bound_access_tokens	true

2021-08-25 18:45:49	SUCCESS RFC8705-5	AddMTLSEndpointAliasesToEnvironment Added mtls_endpoint_aliases to environment

2021-08-25 18:45:49

(1) More

SUCCESS

CheckServerConfiguration

Found required server configuration keys

required

[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]

2021-08-25 18:45:49

(1) More

FetchServerKeys

Fetching server key

jwks_uri

https://par-what-is-it-good-for.ping-eng.com:9031/pf/JWKS

2021-08-25 18:45:49

(4) More

FetchServerKeys

HTTP request

request_uri	https://par-what-is-it-good-for.ping-eng.com:9031/pf/JWKS
request_method	GET
request_headers	{ "accept": "text/plain, application/json, application/cbor, application/+json, /*", "content-length": "0" }
request_body

2021-08-25 18:45:49

(4) More

RESPONSE

FetchServerKeys

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Wed, 25 Aug 2021 18:45:49 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003dFfBap8CoCzWbHQQc5AUaYN; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "transfer-encoding": "chunked" }
response_body	{"keys":[{"kty":"EC","kid":"N_aHU95pN1ONkFJC3KuFi6dtgI8","use":"sig","x":"BLwjvkdDfPeZqxmvDiMkcW2TdxuLk36dKGVVuzW7QQx7aOj5VVFeS9iNSxja8-k1","y":"HO28kAMYDzNcO4M3LOG0tPLQGqzF0YEwFJuyTViS4iRBZgp3hOlG8rot2DF7EeHf","crv":"P-384"},{"kty":"EC","kid":"Sj0QMlrdabGwYGPgInl4CBqMslY","use":"sig","x":"Ae-GgmtQJGkoagocMYlNwQgCOw1VPf61Ia6zZupM52XQSowcBiBCV9ef3jebk5WKKw6rtR8wpDDorT_Yzba58-mq","y":"ADslKCQMBflrjmk4k6XY7qMFzzGNy0yJutWRAN-crzhxSX9chW-YnvyIeGMJmVartIxP6a7upN6vN5uC7e1zpyD2","crv":"P-521"},{"kty":"EC","kid":"TXc6JIcjjdpEVvZ5hG8TuCoNByM","use":"sig","x":"yhkxu4a3pX9_ZHl7idBNzAkZmYi06HhAgDr714Yqkdw","y":"-0tgXnR1pkwqwRLKUIMlGW8GO8KtCfo_BdoGNZEva0g","crv":"P-256"},{"kty":"RSA","kid":"t9VOGm8y7TsqCO44YV1xXlgWuSs","use":"sig","n":"u21TLYqoxUCne29RZXtBp-sddSAAem5sFfy1bsEDPXogn8aLKUf7fLeVhFNYXKN2vGv_TvFgHt7HI-nGp3_nBagUa3kFdqrrf2TBByfyQnmaf0T3me7XVs5OqzhoZko8Bq8Yi8NXYnogdfvtZSX56vZomotj3Ie2_YxFh5wCgJsIdU4jxag_WgEyXpvOPuhA-1AWHRtSHO1aehG-XOeLpHRxag5bzY-St0Olkm4uveD3gnk5ajZ2HI9XDkNGiJ7K_ZRaRxxZ7AaCN92ky8IdbfdWNZcF7FB5yMVUK-xObXWWoATjfo6-8NwvTN4ttMHkBeZDuNXo02DZgI-5OEYThw","e":"AQAB"},{"kty":"RSA","kid":"4iyEtpvwwglPOUJAAn4KxvUDwZU","use":"sig","n":"gT0WC6QqF757OqeF3hV54eH7Td2oRr96fQBsplJ5ikfMmbrOuPwqvT2KijQp0iJGlrSGoipDZ2eJqoLN6c00IEpMWNQKXOAhO0UiVk4wOgOVIdOq5ECsHQdHxuusLlZXvRxOuiprevculZD2jHmgluxZvDiZb8186wqUsAkffkeULlXorq-ye5NlKUInDT_JHKt1eLRcdflDj7plTA3-H7OZ7na1tTQgF9a-mCkErw53ACRQx7lKLTMMJ1EUF6RfxZkJYcZnu1e925fS8MrIkfY_PZrx5V8sECwFNiPGxjDNe22UhFy3vIFp-0a6aLFQQQqasyj5QGZseqLWawY_xw","e":"AQAB"},{"kty":"EC","kid":"AHkDure1U4LfFnANlQLc76rfxKg","use":"sig","x":"AL38LoungdVtHVMqkY0WTi0bPaCjdkUSD1JwCxPcI8djrScSCcAArv67eQ4_LxH8HBHoL-bFFt1NNrqSPT_QcZCi","y":"AKeWJOrtOkSMVaLdOihjx2up4lq7Y641zeA6OwTADJIRn1fVlRoj3GgC1eZKZs8-kmH0uvmwNgVg-n6__31tsabJ","crv":"P-521"},{"kty":"EC","kid":"B-E5oFJe9U4YiQburQJCAt_yvOg","use":"sig","x":"r7tiD26BKwakT5x74DjIjp8dLNbTj6L7T0LjwrkJBCe3gEuujV4z1LbxaPsuBpuL","y":"394A4FzJbQh5luuJ5NrJmWi36M2WJadsVun-wM-y97TB0JzkqYIbc0R5Phk4aO5a","crv":"P-384"},{"kty":"EC","kid":"c5iPQpqi4TffuU7DQpQ22-5Ronc","use":"sig","x":"6SNSsUVTsYXYlt_5BmcRVlxxIWjcEBWGd32sUv3-k0s","y":"dypJ-lQ2k7PALHImsfrxLUgbcMszEL33p1VTqFaizac","crv":"P-256"},{"kty":"EC","kid":"6_GZg3Y5cOI5KJ_fhy1ePRKhhCw","use":"enc","x":"n1O2-mUg49zeTYI9LbXzIsy2b0qvFWoP9vhodUnWpro","y":"vQdwhNeDdKzjnZSvwbIw1QK3U61NXsjvBCjP7h26x9c","crv":"P-256"},{"kty":"EC","kid":"77LSGMB0PicNbWm3ucct5HgCQLE","use":"enc","x":"XaOZSwCu2dOob6Qd81LsS_7JPolpXzNXtM03NwxgTeE0f_qoB0JYWHlkurilibpk","y":"25BkgSoV7zaTN68LEbA3darPupNa8mhaUa2GM4fiSbuIupPug8E8tF25t2zFcOQR","crv":"P-384"},{"kty":"RSA","kid":"SaiW6LnWSAMQUIjqVLg-bcoXtY0","use":"enc","n":"pd8iiRTNnRn4zRrs5D0GueuZMSlW6ppgeo7yj9ogmOkOkQ0rxJ0oNVfC9VdIbkQF1f1UvVYz4KWHfh-G_F3fk7kITPaVKkKc6HuwoWvJ1rntUwVpKD5Ozk7SE5oTgWi6TjJ1cVIjdceOCwPRw3D6_g4E50kqbHTG55U5seBBNsLJmT6b8r4ki4zYsZbhhfsKVwKsFhGr2nujuwry7Vrzr00r6HfDG6xvV3Waa7MnlQ6pIVUmo7a0yIVxl_SAEJvRsk3OdN0ovusp4c01IAFoOrdbdJ369mHwa20Ilx5c91QSpExSFIOE-1Gh6T-R7U5LhrkTyCruxBwfBT1BUWy7kQ","e":"AQAB"},{"kty":"EC","kid":"ni2cPHNYHe6xIDx-4ejdVNEoLCE","use":"enc","x":"AUrbkK854d_47_tRob3uvGlIklIng9PsEzm9E8-FYFUbWJgHVteJTsNwd-OhfmMpvPrQRdlblFlcLiL5ga3XC4OT","y":"ACroZKyIkC12UCgpnN1c_sHLjBWwo-DDlT6eCLRK-_X9qhv3xkxzHLqP_PkGSfFbMkOqn0uC3miO6yQ0BLTSy2MJ","crv":"P-521"}]}

2021-08-25 18:45:50

(1) More

FetchServerKeys

Found JWK set string

jwk_string

{"keys":[{"kty":"EC","kid":"N_aHU95pN1ONkFJC3KuFi6dtgI8","use":"sig","x":"BLwjvkdDfPeZqxmvDiMkcW2TdxuLk36dKGVVuzW7QQx7aOj5VVFeS9iNSxja8-k1","y":"HO28kAMYDzNcO4M3LOG0tPLQGqzF0YEwFJuyTViS4iRBZgp3hOlG8rot2DF7EeHf","crv":"P-384"},{"kty":"EC","kid":"Sj0QMlrdabGwYGPgInl4CBqMslY","use":"sig","x":"Ae-GgmtQJGkoagocMYlNwQgCOw1VPf61Ia6zZupM52XQSowcBiBCV9ef3jebk5WKKw6rtR8wpDDorT_Yzba58-mq","y":"ADslKCQMBflrjmk4k6XY7qMFzzGNy0yJutWRAN-crzhxSX9chW-YnvyIeGMJmVartIxP6a7upN6vN5uC7e1zpyD2","crv":"P-521"},{"kty":"EC","kid":"TXc6JIcjjdpEVvZ5hG8TuCoNByM","use":"sig","x":"yhkxu4a3pX9_ZHl7idBNzAkZmYi06HhAgDr714Yqkdw","y":"-0tgXnR1pkwqwRLKUIMlGW8GO8KtCfo_BdoGNZEva0g","crv":"P-256"},{"kty":"RSA","kid":"t9VOGm8y7TsqCO44YV1xXlgWuSs","use":"sig","n":"u21TLYqoxUCne29RZXtBp-sddSAAem5sFfy1bsEDPXogn8aLKUf7fLeVhFNYXKN2vGv_TvFgHt7HI-nGp3_nBagUa3kFdqrrf2TBByfyQnmaf0T3me7XVs5OqzhoZko8Bq8Yi8NXYnogdfvtZSX56vZomotj3Ie2_YxFh5wCgJsIdU4jxag_WgEyXpvOPuhA-1AWHRtSHO1aehG-XOeLpHRxag5bzY-St0Olkm4uveD3gnk5ajZ2HI9XDkNGiJ7K_ZRaRxxZ7AaCN92ky8IdbfdWNZcF7FB5yMVUK-xObXWWoATjfo6-8NwvTN4ttMHkBeZDuNXo02DZgI-5OEYThw","e":"AQAB"},{"kty":"RSA","kid":"4iyEtpvwwglPOUJAAn4KxvUDwZU","use":"sig","n":"gT0WC6QqF757OqeF3hV54eH7Td2oRr96fQBsplJ5ikfMmbrOuPwqvT2KijQp0iJGlrSGoipDZ2eJqoLN6c00IEpMWNQKXOAhO0UiVk4wOgOVIdOq5ECsHQdHxuusLlZXvRxOuiprevculZD2jHmgluxZvDiZb8186wqUsAkffkeULlXorq-ye5NlKUInDT_JHKt1eLRcdflDj7plTA3-H7OZ7na1tTQgF9a-mCkErw53ACRQx7lKLTMMJ1EUF6RfxZkJYcZnu1e925fS8MrIkfY_PZrx5V8sECwFNiPGxjDNe22UhFy3vIFp-0a6aLFQQQqasyj5QGZseqLWawY_xw","e":"AQAB"},{"kty":"EC","kid":"AHkDure1U4LfFnANlQLc76rfxKg","use":"sig","x":"AL38LoungdVtHVMqkY0WTi0bPaCjdkUSD1JwCxPcI8djrScSCcAArv67eQ4_LxH8HBHoL-bFFt1NNrqSPT_QcZCi","y":"AKeWJOrtOkSMVaLdOihjx2up4lq7Y641zeA6OwTADJIRn1fVlRoj3GgC1eZKZs8-kmH0uvmwNgVg-n6__31tsabJ","crv":"P-521"},{"kty":"EC","kid":"B-E5oFJe9U4YiQburQJCAt_yvOg","use":"sig","x":"r7tiD26BKwakT5x74DjIjp8dLNbTj6L7T0LjwrkJBCe3gEuujV4z1LbxaPsuBpuL","y":"394A4FzJbQh5luuJ5NrJmWi36M2WJadsVun-wM-y97TB0JzkqYIbc0R5Phk4aO5a","crv":"P-384"},{"kty":"EC","kid":"c5iPQpqi4TffuU7DQpQ22-5Ronc","use":"sig","x":"6SNSsUVTsYXYlt_5BmcRVlxxIWjcEBWGd32sUv3-k0s","y":"dypJ-lQ2k7PALHImsfrxLUgbcMszEL33p1VTqFaizac","crv":"P-256"},{"kty":"EC","kid":"6_GZg3Y5cOI5KJ_fhy1ePRKhhCw","use":"enc","x":"n1O2-mUg49zeTYI9LbXzIsy2b0qvFWoP9vhodUnWpro","y":"vQdwhNeDdKzjnZSvwbIw1QK3U61NXsjvBCjP7h26x9c","crv":"P-256"},{"kty":"EC","kid":"77LSGMB0PicNbWm3ucct5HgCQLE","use":"enc","x":"XaOZSwCu2dOob6Qd81LsS_7JPolpXzNXtM03NwxgTeE0f_qoB0JYWHlkurilibpk","y":"25BkgSoV7zaTN68LEbA3darPupNa8mhaUa2GM4fiSbuIupPug8E8tF25t2zFcOQR","crv":"P-384"},{"kty":"RSA","kid":"SaiW6LnWSAMQUIjqVLg-bcoXtY0","use":"enc","n":"pd8iiRTNnRn4zRrs5D0GueuZMSlW6ppgeo7yj9ogmOkOkQ0rxJ0oNVfC9VdIbkQF1f1UvVYz4KWHfh-G_F3fk7kITPaVKkKc6HuwoWvJ1rntUwVpKD5Ozk7SE5oTgWi6TjJ1cVIjdceOCwPRw3D6_g4E50kqbHTG55U5seBBNsLJmT6b8r4ki4zYsZbhhfsKVwKsFhGr2nujuwry7Vrzr00r6HfDG6xvV3Waa7MnlQ6pIVUmo7a0yIVxl_SAEJvRsk3OdN0ovusp4c01IAFoOrdbdJ369mHwa20Ilx5c91QSpExSFIOE-1Gh6T-R7U5LhrkTyCruxBwfBT1BUWy7kQ","e":"AQAB"},{"kty":"EC","kid":"ni2cPHNYHe6xIDx-4ejdVNEoLCE","use":"enc","x":"AUrbkK854d_47_tRob3uvGlIklIng9PsEzm9E8-FYFUbWJgHVteJTsNwd-OhfmMpvPrQRdlblFlcLiL5ga3XC4OT","y":"ACroZKyIkC12UCgpnN1c_sHLjBWwo-DDlT6eCLRK-_X9qhv3xkxzHLqP_PkGSfFbMkOqn0uC3miO6yQ0BLTSy2MJ","crv":"P-521"}]}

2021-08-25 18:45:50

(1) More

SUCCESS

FetchServerKeys

Found server JWK set

server_jwks

{
  "keys": [
    {
      "kty": "EC",
      "kid": "N_aHU95pN1ONkFJC3KuFi6dtgI8",
      "use": "sig",
      "x": "BLwjvkdDfPeZqxmvDiMkcW2TdxuLk36dKGVVuzW7QQx7aOj5VVFeS9iNSxja8-k1",
      "y": "HO28kAMYDzNcO4M3LOG0tPLQGqzF0YEwFJuyTViS4iRBZgp3hOlG8rot2DF7EeHf",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "Sj0QMlrdabGwYGPgInl4CBqMslY",
      "use": "sig",
      "x": "Ae-GgmtQJGkoagocMYlNwQgCOw1VPf61Ia6zZupM52XQSowcBiBCV9ef3jebk5WKKw6rtR8wpDDorT_Yzba58-mq",
      "y": "ADslKCQMBflrjmk4k6XY7qMFzzGNy0yJutWRAN-crzhxSX9chW-YnvyIeGMJmVartIxP6a7upN6vN5uC7e1zpyD2",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "TXc6JIcjjdpEVvZ5hG8TuCoNByM",
      "use": "sig",
      "x": "yhkxu4a3pX9_ZHl7idBNzAkZmYi06HhAgDr714Yqkdw",
      "y": "-0tgXnR1pkwqwRLKUIMlGW8GO8KtCfo_BdoGNZEva0g",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "t9VOGm8y7TsqCO44YV1xXlgWuSs",
      "use": "sig",
      "n": "u21TLYqoxUCne29RZXtBp-sddSAAem5sFfy1bsEDPXogn8aLKUf7fLeVhFNYXKN2vGv_TvFgHt7HI-nGp3_nBagUa3kFdqrrf2TBByfyQnmaf0T3me7XVs5OqzhoZko8Bq8Yi8NXYnogdfvtZSX56vZomotj3Ie2_YxFh5wCgJsIdU4jxag_WgEyXpvOPuhA-1AWHRtSHO1aehG-XOeLpHRxag5bzY-St0Olkm4uveD3gnk5ajZ2HI9XDkNGiJ7K_ZRaRxxZ7AaCN92ky8IdbfdWNZcF7FB5yMVUK-xObXWWoATjfo6-8NwvTN4ttMHkBeZDuNXo02DZgI-5OEYThw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "kid": "4iyEtpvwwglPOUJAAn4KxvUDwZU",
      "use": "sig",
      "n": "gT0WC6QqF757OqeF3hV54eH7Td2oRr96fQBsplJ5ikfMmbrOuPwqvT2KijQp0iJGlrSGoipDZ2eJqoLN6c00IEpMWNQKXOAhO0UiVk4wOgOVIdOq5ECsHQdHxuusLlZXvRxOuiprevculZD2jHmgluxZvDiZb8186wqUsAkffkeULlXorq-ye5NlKUInDT_JHKt1eLRcdflDj7plTA3-H7OZ7na1tTQgF9a-mCkErw53ACRQx7lKLTMMJ1EUF6RfxZkJYcZnu1e925fS8MrIkfY_PZrx5V8sECwFNiPGxjDNe22UhFy3vIFp-0a6aLFQQQqasyj5QGZseqLWawY_xw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "AHkDure1U4LfFnANlQLc76rfxKg",
      "use": "sig",
      "x": "AL38LoungdVtHVMqkY0WTi0bPaCjdkUSD1JwCxPcI8djrScSCcAArv67eQ4_LxH8HBHoL-bFFt1NNrqSPT_QcZCi",
      "y": "AKeWJOrtOkSMVaLdOihjx2up4lq7Y641zeA6OwTADJIRn1fVlRoj3GgC1eZKZs8-kmH0uvmwNgVg-n6__31tsabJ",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "B-E5oFJe9U4YiQburQJCAt_yvOg",
      "use": "sig",
      "x": "r7tiD26BKwakT5x74DjIjp8dLNbTj6L7T0LjwrkJBCe3gEuujV4z1LbxaPsuBpuL",
      "y": "394A4FzJbQh5luuJ5NrJmWi36M2WJadsVun-wM-y97TB0JzkqYIbc0R5Phk4aO5a",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "c5iPQpqi4TffuU7DQpQ22-5Ronc",
      "use": "sig",
      "x": "6SNSsUVTsYXYlt_5BmcRVlxxIWjcEBWGd32sUv3-k0s",
      "y": "dypJ-lQ2k7PALHImsfrxLUgbcMszEL33p1VTqFaizac",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "6_GZg3Y5cOI5KJ_fhy1ePRKhhCw",
      "use": "enc",
      "x": "n1O2-mUg49zeTYI9LbXzIsy2b0qvFWoP9vhodUnWpro",
      "y": "vQdwhNeDdKzjnZSvwbIw1QK3U61NXsjvBCjP7h26x9c",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "77LSGMB0PicNbWm3ucct5HgCQLE",
      "use": "enc",
      "x": "XaOZSwCu2dOob6Qd81LsS_7JPolpXzNXtM03NwxgTeE0f_qoB0JYWHlkurilibpk",
      "y": "25BkgSoV7zaTN68LEbA3darPupNa8mhaUa2GM4fiSbuIupPug8E8tF25t2zFcOQR",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "SaiW6LnWSAMQUIjqVLg-bcoXtY0",
      "use": "enc",
      "n": "pd8iiRTNnRn4zRrs5D0GueuZMSlW6ppgeo7yj9ogmOkOkQ0rxJ0oNVfC9VdIbkQF1f1UvVYz4KWHfh-G_F3fk7kITPaVKkKc6HuwoWvJ1rntUwVpKD5Ozk7SE5oTgWi6TjJ1cVIjdceOCwPRw3D6_g4E50kqbHTG55U5seBBNsLJmT6b8r4ki4zYsZbhhfsKVwKsFhGr2nujuwry7Vrzr00r6HfDG6xvV3Waa7MnlQ6pIVUmo7a0yIVxl_SAEJvRsk3OdN0ovusp4c01IAFoOrdbdJ369mHwa20Ilx5c91QSpExSFIOE-1Gh6T-R7U5LhrkTyCruxBwfBT1BUWy7kQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "ni2cPHNYHe6xIDx-4ejdVNEoLCE",
      "use": "enc",
      "x": "AUrbkK854d_47_tRob3uvGlIklIng9PsEzm9E8-FYFUbWJgHVteJTsNwd-OhfmMpvPrQRdlblFlcLiL5ga3XC4OT",
      "y": "ACroZKyIkC12UCgpnN1c_sHLjBWwo-DDlT6eCLRK-_X9qhv3xkxzHLqP_PkGSfFbMkOqn0uC3miO6yQ0BLTSy2MJ",
      "crv": "P-521"
    }
  ]
}

2021-08-25 18:45:50

(1) More

SUCCESS

CheckServerKeysIsValid

Server JWKs is valid

server_jwks

{
  "keys": [
    {
      "kty": "EC",
      "kid": "N_aHU95pN1ONkFJC3KuFi6dtgI8",
      "use": "sig",
      "x": "BLwjvkdDfPeZqxmvDiMkcW2TdxuLk36dKGVVuzW7QQx7aOj5VVFeS9iNSxja8-k1",
      "y": "HO28kAMYDzNcO4M3LOG0tPLQGqzF0YEwFJuyTViS4iRBZgp3hOlG8rot2DF7EeHf",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "Sj0QMlrdabGwYGPgInl4CBqMslY",
      "use": "sig",
      "x": "Ae-GgmtQJGkoagocMYlNwQgCOw1VPf61Ia6zZupM52XQSowcBiBCV9ef3jebk5WKKw6rtR8wpDDorT_Yzba58-mq",
      "y": "ADslKCQMBflrjmk4k6XY7qMFzzGNy0yJutWRAN-crzhxSX9chW-YnvyIeGMJmVartIxP6a7upN6vN5uC7e1zpyD2",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "TXc6JIcjjdpEVvZ5hG8TuCoNByM",
      "use": "sig",
      "x": "yhkxu4a3pX9_ZHl7idBNzAkZmYi06HhAgDr714Yqkdw",
      "y": "-0tgXnR1pkwqwRLKUIMlGW8GO8KtCfo_BdoGNZEva0g",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "t9VOGm8y7TsqCO44YV1xXlgWuSs",
      "use": "sig",
      "n": "u21TLYqoxUCne29RZXtBp-sddSAAem5sFfy1bsEDPXogn8aLKUf7fLeVhFNYXKN2vGv_TvFgHt7HI-nGp3_nBagUa3kFdqrrf2TBByfyQnmaf0T3me7XVs5OqzhoZko8Bq8Yi8NXYnogdfvtZSX56vZomotj3Ie2_YxFh5wCgJsIdU4jxag_WgEyXpvOPuhA-1AWHRtSHO1aehG-XOeLpHRxag5bzY-St0Olkm4uveD3gnk5ajZ2HI9XDkNGiJ7K_ZRaRxxZ7AaCN92ky8IdbfdWNZcF7FB5yMVUK-xObXWWoATjfo6-8NwvTN4ttMHkBeZDuNXo02DZgI-5OEYThw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "kid": "4iyEtpvwwglPOUJAAn4KxvUDwZU",
      "use": "sig",
      "n": "gT0WC6QqF757OqeF3hV54eH7Td2oRr96fQBsplJ5ikfMmbrOuPwqvT2KijQp0iJGlrSGoipDZ2eJqoLN6c00IEpMWNQKXOAhO0UiVk4wOgOVIdOq5ECsHQdHxuusLlZXvRxOuiprevculZD2jHmgluxZvDiZb8186wqUsAkffkeULlXorq-ye5NlKUInDT_JHKt1eLRcdflDj7plTA3-H7OZ7na1tTQgF9a-mCkErw53ACRQx7lKLTMMJ1EUF6RfxZkJYcZnu1e925fS8MrIkfY_PZrx5V8sECwFNiPGxjDNe22UhFy3vIFp-0a6aLFQQQqasyj5QGZseqLWawY_xw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "AHkDure1U4LfFnANlQLc76rfxKg",
      "use": "sig",
      "x": "AL38LoungdVtHVMqkY0WTi0bPaCjdkUSD1JwCxPcI8djrScSCcAArv67eQ4_LxH8HBHoL-bFFt1NNrqSPT_QcZCi",
      "y": "AKeWJOrtOkSMVaLdOihjx2up4lq7Y641zeA6OwTADJIRn1fVlRoj3GgC1eZKZs8-kmH0uvmwNgVg-n6__31tsabJ",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "B-E5oFJe9U4YiQburQJCAt_yvOg",
      "use": "sig",
      "x": "r7tiD26BKwakT5x74DjIjp8dLNbTj6L7T0LjwrkJBCe3gEuujV4z1LbxaPsuBpuL",
      "y": "394A4FzJbQh5luuJ5NrJmWi36M2WJadsVun-wM-y97TB0JzkqYIbc0R5Phk4aO5a",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "c5iPQpqi4TffuU7DQpQ22-5Ronc",
      "use": "sig",
      "x": "6SNSsUVTsYXYlt_5BmcRVlxxIWjcEBWGd32sUv3-k0s",
      "y": "dypJ-lQ2k7PALHImsfrxLUgbcMszEL33p1VTqFaizac",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "6_GZg3Y5cOI5KJ_fhy1ePRKhhCw",
      "use": "enc",
      "x": "n1O2-mUg49zeTYI9LbXzIsy2b0qvFWoP9vhodUnWpro",
      "y": "vQdwhNeDdKzjnZSvwbIw1QK3U61NXsjvBCjP7h26x9c",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "77LSGMB0PicNbWm3ucct5HgCQLE",
      "use": "enc",
      "x": "XaOZSwCu2dOob6Qd81LsS_7JPolpXzNXtM03NwxgTeE0f_qoB0JYWHlkurilibpk",
      "y": "25BkgSoV7zaTN68LEbA3darPupNa8mhaUa2GM4fiSbuIupPug8E8tF25t2zFcOQR",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "SaiW6LnWSAMQUIjqVLg-bcoXtY0",
      "use": "enc",
      "n": "pd8iiRTNnRn4zRrs5D0GueuZMSlW6ppgeo7yj9ogmOkOkQ0rxJ0oNVfC9VdIbkQF1f1UvVYz4KWHfh-G_F3fk7kITPaVKkKc6HuwoWvJ1rntUwVpKD5Ozk7SE5oTgWi6TjJ1cVIjdceOCwPRw3D6_g4E50kqbHTG55U5seBBNsLJmT6b8r4ki4zYsZbhhfsKVwKsFhGr2nujuwry7Vrzr00r6HfDG6xvV3Waa7MnlQ6pIVUmo7a0yIVxl_SAEJvRsk3OdN0ovusp4c01IAFoOrdbdJ369mHwa20Ilx5c91QSpExSFIOE-1Gh6T-R7U5LhrkTyCruxBwfBT1BUWy7kQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "ni2cPHNYHe6xIDx-4ejdVNEoLCE",
      "use": "enc",
      "x": "AUrbkK854d_47_tRob3uvGlIklIng9PsEzm9E8-FYFUbWJgHVteJTsNwd-OhfmMpvPrQRdlblFlcLiL5ga3XC4OT",
      "y": "ACroZKyIkC12UCgpnN1c_sHLjBWwo-DDlT6eCLRK-_X9qhv3xkxzHLqP_PkGSfFbMkOqn0uC3miO6yQ0BLTSy2MJ",
      "crv": "P-521"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS RFC7517-1.1	ValidateServerJWKs Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url

2021-08-25 18:45:50	SUCCESS OIDCC-10.1	CheckForKeyIdInServerJWKs All keys contain kids

2021-08-25 18:45:50	SUCCESS RFC7518-6.3.2.1	EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys Jwks does not contain any private or symmetric keys

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-BASE-5.2.2-6 FAPI1-BASE-5.2.2-5

FAPIEnsureMinimumServerKeyLength

Validated minimum key lengths for server_jwks

server_jwks

{
  "keys": [
    {
      "kty": "EC",
      "kid": "N_aHU95pN1ONkFJC3KuFi6dtgI8",
      "use": "sig",
      "x": "BLwjvkdDfPeZqxmvDiMkcW2TdxuLk36dKGVVuzW7QQx7aOj5VVFeS9iNSxja8-k1",
      "y": "HO28kAMYDzNcO4M3LOG0tPLQGqzF0YEwFJuyTViS4iRBZgp3hOlG8rot2DF7EeHf",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "Sj0QMlrdabGwYGPgInl4CBqMslY",
      "use": "sig",
      "x": "Ae-GgmtQJGkoagocMYlNwQgCOw1VPf61Ia6zZupM52XQSowcBiBCV9ef3jebk5WKKw6rtR8wpDDorT_Yzba58-mq",
      "y": "ADslKCQMBflrjmk4k6XY7qMFzzGNy0yJutWRAN-crzhxSX9chW-YnvyIeGMJmVartIxP6a7upN6vN5uC7e1zpyD2",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "TXc6JIcjjdpEVvZ5hG8TuCoNByM",
      "use": "sig",
      "x": "yhkxu4a3pX9_ZHl7idBNzAkZmYi06HhAgDr714Yqkdw",
      "y": "-0tgXnR1pkwqwRLKUIMlGW8GO8KtCfo_BdoGNZEva0g",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "t9VOGm8y7TsqCO44YV1xXlgWuSs",
      "use": "sig",
      "n": "u21TLYqoxUCne29RZXtBp-sddSAAem5sFfy1bsEDPXogn8aLKUf7fLeVhFNYXKN2vGv_TvFgHt7HI-nGp3_nBagUa3kFdqrrf2TBByfyQnmaf0T3me7XVs5OqzhoZko8Bq8Yi8NXYnogdfvtZSX56vZomotj3Ie2_YxFh5wCgJsIdU4jxag_WgEyXpvOPuhA-1AWHRtSHO1aehG-XOeLpHRxag5bzY-St0Olkm4uveD3gnk5ajZ2HI9XDkNGiJ7K_ZRaRxxZ7AaCN92ky8IdbfdWNZcF7FB5yMVUK-xObXWWoATjfo6-8NwvTN4ttMHkBeZDuNXo02DZgI-5OEYThw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "kid": "4iyEtpvwwglPOUJAAn4KxvUDwZU",
      "use": "sig",
      "n": "gT0WC6QqF757OqeF3hV54eH7Td2oRr96fQBsplJ5ikfMmbrOuPwqvT2KijQp0iJGlrSGoipDZ2eJqoLN6c00IEpMWNQKXOAhO0UiVk4wOgOVIdOq5ECsHQdHxuusLlZXvRxOuiprevculZD2jHmgluxZvDiZb8186wqUsAkffkeULlXorq-ye5NlKUInDT_JHKt1eLRcdflDj7plTA3-H7OZ7na1tTQgF9a-mCkErw53ACRQx7lKLTMMJ1EUF6RfxZkJYcZnu1e925fS8MrIkfY_PZrx5V8sECwFNiPGxjDNe22UhFy3vIFp-0a6aLFQQQqasyj5QGZseqLWawY_xw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "AHkDure1U4LfFnANlQLc76rfxKg",
      "use": "sig",
      "x": "AL38LoungdVtHVMqkY0WTi0bPaCjdkUSD1JwCxPcI8djrScSCcAArv67eQ4_LxH8HBHoL-bFFt1NNrqSPT_QcZCi",
      "y": "AKeWJOrtOkSMVaLdOihjx2up4lq7Y641zeA6OwTADJIRn1fVlRoj3GgC1eZKZs8-kmH0uvmwNgVg-n6__31tsabJ",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "B-E5oFJe9U4YiQburQJCAt_yvOg",
      "use": "sig",
      "x": "r7tiD26BKwakT5x74DjIjp8dLNbTj6L7T0LjwrkJBCe3gEuujV4z1LbxaPsuBpuL",
      "y": "394A4FzJbQh5luuJ5NrJmWi36M2WJadsVun-wM-y97TB0JzkqYIbc0R5Phk4aO5a",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "c5iPQpqi4TffuU7DQpQ22-5Ronc",
      "use": "sig",
      "x": "6SNSsUVTsYXYlt_5BmcRVlxxIWjcEBWGd32sUv3-k0s",
      "y": "dypJ-lQ2k7PALHImsfrxLUgbcMszEL33p1VTqFaizac",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "6_GZg3Y5cOI5KJ_fhy1ePRKhhCw",
      "use": "enc",
      "x": "n1O2-mUg49zeTYI9LbXzIsy2b0qvFWoP9vhodUnWpro",
      "y": "vQdwhNeDdKzjnZSvwbIw1QK3U61NXsjvBCjP7h26x9c",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "77LSGMB0PicNbWm3ucct5HgCQLE",
      "use": "enc",
      "x": "XaOZSwCu2dOob6Qd81LsS_7JPolpXzNXtM03NwxgTeE0f_qoB0JYWHlkurilibpk",
      "y": "25BkgSoV7zaTN68LEbA3darPupNa8mhaUa2GM4fiSbuIupPug8E8tF25t2zFcOQR",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "SaiW6LnWSAMQUIjqVLg-bcoXtY0",
      "use": "enc",
      "n": "pd8iiRTNnRn4zRrs5D0GueuZMSlW6ppgeo7yj9ogmOkOkQ0rxJ0oNVfC9VdIbkQF1f1UvVYz4KWHfh-G_F3fk7kITPaVKkKc6HuwoWvJ1rntUwVpKD5Ozk7SE5oTgWi6TjJ1cVIjdceOCwPRw3D6_g4E50kqbHTG55U5seBBNsLJmT6b8r4ki4zYsZbhhfsKVwKsFhGr2nujuwry7Vrzr00r6HfDG6xvV3Waa7MnlQ6pIVUmo7a0yIVxl_SAEJvRsk3OdN0ovusp4c01IAFoOrdbdJ369mHwa20Ilx5c91QSpExSFIOE-1Gh6T-R7U5LhrkTyCruxBwfBT1BUWy7kQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "ni2cPHNYHe6xIDx-4ejdVNEoLCE",
      "use": "enc",
      "x": "AUrbkK854d_47_tRob3uvGlIklIng9PsEzm9E8-FYFUbWJgHVteJTsNwd-OhfmMpvPrQRdlblFlcLiL5ga3XC4OT",
      "y": "ACroZKyIkC12UCgpnN1c_sHLjBWwo-DDlT6eCLRK-_X9qhv3xkxzHLqP_PkGSfFbMkOqn0uC3miO6yQ0BLTSy2MJ",
      "crv": "P-521"
    }
  ]
}

2021-08-25 18:45:50

(3) More

SUCCESS

GetStaticClientConfiguration

Found a static client object

client_id

c__fapi-jwt-par1

scope

openid other

jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "dakid",
      "alg": "PS256",
      "n": "sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q",
      "e": "AQAB",
      "d": "ohc3fs8UBct98U2ciCFQM1VRt59X7wRek7ZTIjxfv3DT5USoEWqnRMviX4uf9_rxMEAIGEJermfF4NYm-4UHdEa8Yz6Ia8oJf2AKF-kcPJ61725v6vl909rEEZuAvIIXLr2JUrCpp6eed0gJxG2eyqxHQUTVF8bSMC7viff2CAe4RPdiSDWQBUGoM13svSC5cdZlHxz134mHthMh7zdk47tGHJZaS8AyjeRlU7sRzYFHY76NPoaF8YKBjU97nysXQkkNqcKOTt-ZK1ZYafdEowBYxO2nQEx4wKL56nxqkr1u93XBrEEt62mOftwGgozaDyHwer0C0bD_FQZut5rLAQ",
      "p": "7LHmQtYeFeKSop1R7tBXbTDDtdmgI3woVFwnexbelvK1Ll-Pm8ZBmClbFuBusacANfPNccbbPd6QElkkbcVhPI5q2BBdoO7ga-QZPB9WgQeUBKjGQFkJa6fV144_vQozYppDneulQJ9sFSaU6VkDYq4maJmFNozxV8_4keSfDSE",
      "q": "wHyqoGzxWvMWJneQm_GJB0EQGQb_ypnpDF3vgL6ACCgv8mcDW8ZGlue5BlCK5QbtgRyhJch1gFjNCcMJY8p_lriMX1tfEvoDi8yo-Dhmn0nvEQ-0mG1x-26cgLyA0K06LRxh9GO7069Safo3xEPKNflphfVOct1YapTQpewfNtk",
      "dp": "3cwGnXLPVmquRbtt339TrXoYqvt3WEkr8YE5bdqMUp60sPPTOoGZTeDS_qjokYiQZf5D8e4J2_wGvWrS_BoNeBVsgXM0iW3O1ssz6mbjRJ25UnRk8j982Gi5tfgSOi6o4Cj2W7FJdTjuqxMwT0meJoZSb4oMjoWcUlEL-IpnkIE",
      "dq": "s9ZF3CisvpqKwVnII8pgigSBs8BUT8fIcqN41sIlAHn7gfA4tQ_kd6z7syig_CWi1JQZAyHslgNhXZN5PGC_H-RAUf8eLq6jjYOjAnY_eucqkrgntJncelr3oVd8ynpt9iOkaR6dJ8OPri_21km3rQHfUybDKpIev0VWQw7-gtE",
      "qi": "By6K5EAIOIypaL2r6n5BdXSzNuA1r6SBgeIzwB_kQP02CGB6iPle5_tLm9MFMYnN2WayRlCqfNBKbZ700wK4zLBThbwbbMWX8C3FxCaxDvaUemh9u-Ls-3MnFLMtKTZcl5K7BQ7HHx0WUlXW5gDtLbjwRkvanzdIEiTN5ALCtQc"
    },
    {
      "kty": "EC",
      "kid": "hTmLGw",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "zayjCNChbil1lRhGFTOfD7IsDI1uTcCt8whjMo42EZg",
      "y": "LL5EYIHi3zM16i6nUJzwvG-GJLwjE7GyArT4PxPNQDs",
      "crv": "P-256",
      "d": "nP-nIU2smk3SPM5kFYgXtrpV6OpQDAW3Jrri7A2ZbIA"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS	ValidateMTLSCertificatesHeader MTLS certificates header is valid

2021-08-25 18:45:50

(3) More

SUCCESS

ExtractMTLSCertificatesFromConfiguration

Mutual TLS authentication credentials loaded

cert

MIICmjCCAkGgAwIBAgIBCzAKBggqhkjOPQQDAjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxBIEludGVybWVkaWF0ZSBDQTAeFw0yMTA2MTQxNTU1NTRaFw0yMjA2MjQxNTU1NTRaMDUxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDTzEZMBcGA1UEAwwQY19fZmFwaS1qd3QtcGFyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+tnvgEmbWc4Zn1sKrX0nuERDRZRSBietUo630U7eo+PBxBrpqWnjkVhlhab+iKls782djfbBBeMq3GWt4mzLWBZGmil1KCsXpO7wg1ogfjTA9f8U/ZmBWIg2ZP82s3M75bZi2HIKEpXSj24Td32iPgYutZ+DRbfqhhE8j1Q2axcLkpqXAwFSguPT7bz4KHtRXhQsv14fgNU2+vut+yAwQFZKkZt9OHZJcrCJuP6OBO53eCEb0hAI4s+4vcMM4C/iA7tlP/+6nCdHM3JNBCCDTfZdBpgATK8AgK9+fvnwcAMwgAW+rJE1B8Y4rnF1EpA2iHfDcCQx+4QPyS4QgPBesCAwEAAaNyMHAwCQYDVR0TBAIwADAfBgNVHSMEGDAWgBRm3WjLa38lbEYCuiCPct0ZaSED2DAOBgNVHQ8BAf8EBAMCBsAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0RAQH/BBMwEYEPYmRjQGV4YW1wbGUuY29tMAoGCCqGSM49BAMCA0cAMEQCIBQsjR2BGHSFyrUICFRPV1VB6iI+Gxd1S5mY2fIoIMTFAiBV7PxmaJCDqsRs8NQ3XKWGRfRiZFF8upqiPN6SUo3shw==

key

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

ca

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

2021-08-25 18:45:50	SUCCESS RFC7517-1.1	ValidateClientJWKsPrivatePart Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url

2021-08-25 18:45:50

(2) More

SUCCESS

ExtractJWKsFromStaticClientConfiguration

Extracted client JWK

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "dakid",
      "alg": "PS256",
      "n": "sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q",
      "e": "AQAB",
      "d": "ohc3fs8UBct98U2ciCFQM1VRt59X7wRek7ZTIjxfv3DT5USoEWqnRMviX4uf9_rxMEAIGEJermfF4NYm-4UHdEa8Yz6Ia8oJf2AKF-kcPJ61725v6vl909rEEZuAvIIXLr2JUrCpp6eed0gJxG2eyqxHQUTVF8bSMC7viff2CAe4RPdiSDWQBUGoM13svSC5cdZlHxz134mHthMh7zdk47tGHJZaS8AyjeRlU7sRzYFHY76NPoaF8YKBjU97nysXQkkNqcKOTt-ZK1ZYafdEowBYxO2nQEx4wKL56nxqkr1u93XBrEEt62mOftwGgozaDyHwer0C0bD_FQZut5rLAQ",
      "p": "7LHmQtYeFeKSop1R7tBXbTDDtdmgI3woVFwnexbelvK1Ll-Pm8ZBmClbFuBusacANfPNccbbPd6QElkkbcVhPI5q2BBdoO7ga-QZPB9WgQeUBKjGQFkJa6fV144_vQozYppDneulQJ9sFSaU6VkDYq4maJmFNozxV8_4keSfDSE",
      "q": "wHyqoGzxWvMWJneQm_GJB0EQGQb_ypnpDF3vgL6ACCgv8mcDW8ZGlue5BlCK5QbtgRyhJch1gFjNCcMJY8p_lriMX1tfEvoDi8yo-Dhmn0nvEQ-0mG1x-26cgLyA0K06LRxh9GO7069Safo3xEPKNflphfVOct1YapTQpewfNtk",
      "dp": "3cwGnXLPVmquRbtt339TrXoYqvt3WEkr8YE5bdqMUp60sPPTOoGZTeDS_qjokYiQZf5D8e4J2_wGvWrS_BoNeBVsgXM0iW3O1ssz6mbjRJ25UnRk8j982Gi5tfgSOi6o4Cj2W7FJdTjuqxMwT0meJoZSb4oMjoWcUlEL-IpnkIE",
      "dq": "s9ZF3CisvpqKwVnII8pgigSBs8BUT8fIcqN41sIlAHn7gfA4tQ_kd6z7syig_CWi1JQZAyHslgNhXZN5PGC_H-RAUf8eLq6jjYOjAnY_eucqkrgntJncelr3oVd8ynpt9iOkaR6dJ8OPri_21km3rQHfUybDKpIev0VWQw7-gtE",
      "qi": "By6K5EAIOIypaL2r6n5BdXSzNuA1r6SBgeIzwB_kQP02CGB6iPle5_tLm9MFMYnN2WayRlCqfNBKbZ700wK4zLBThbwbbMWX8C3FxCaxDvaUemh9u-Ls-3MnFLMtKTZcl5K7BQ7HHx0WUlXW5gDtLbjwRkvanzdIEiTN5ALCtQc"
    },
    {
      "kty": "EC",
      "kid": "hTmLGw",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "zayjCNChbil1lRhGFTOfD7IsDI1uTcCt8whjMo42EZg",
      "y": "LL5EYIHi3zM16i6nUJzwvG-GJLwjE7GyArT4PxPNQDs",
      "crv": "P-256",
      "d": "nP-nIU2smk3SPM5kFYgXtrpV6OpQDAW3Jrri7A2ZbIA"
    }
  ]
}

public_client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "dakid",
      "alg": "PS256",
      "n": "sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "hTmLGw",
      "x": "zayjCNChbil1lRhGFTOfD7IsDI1uTcCt8whjMo42EZg",
      "y": "LL5EYIHi3zM16i6nUJzwvG-GJLwjE7GyArT4PxPNQDs",
      "alg": "ECDH-ES"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS OIDCC-10.1	CheckForKeyIdInClientJWKs All keys contain kids

2021-08-25 18:45:50

(1) More

SUCCESS

RFC7517-4.5

CheckDistinctKeyIdValueInClientJWKs

Distinct 'kid' value in all keys of client_jwks

see	https://bitbucket.org/openid/connect/issues/1127

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-8.6

FAPICheckKeyAlgInClientJWKs

Keys in client JWKS all have permitted 'alg'

permitted

[
  "ES256",
  "PS256"
]

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-BASE-5.2.2-6 FAPI1-BASE-5.2.2-5

FAPIEnsureMinimumClientKeyLength

Validated minimum key lengths for client_jwks

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "dakid",
      "alg": "PS256",
      "n": "sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q",
      "e": "AQAB",
      "d": "ohc3fs8UBct98U2ciCFQM1VRt59X7wRek7ZTIjxfv3DT5USoEWqnRMviX4uf9_rxMEAIGEJermfF4NYm-4UHdEa8Yz6Ia8oJf2AKF-kcPJ61725v6vl909rEEZuAvIIXLr2JUrCpp6eed0gJxG2eyqxHQUTVF8bSMC7viff2CAe4RPdiSDWQBUGoM13svSC5cdZlHxz134mHthMh7zdk47tGHJZaS8AyjeRlU7sRzYFHY76NPoaF8YKBjU97nysXQkkNqcKOTt-ZK1ZYafdEowBYxO2nQEx4wKL56nxqkr1u93XBrEEt62mOftwGgozaDyHwer0C0bD_FQZut5rLAQ",
      "p": "7LHmQtYeFeKSop1R7tBXbTDDtdmgI3woVFwnexbelvK1Ll-Pm8ZBmClbFuBusacANfPNccbbPd6QElkkbcVhPI5q2BBdoO7ga-QZPB9WgQeUBKjGQFkJa6fV144_vQozYppDneulQJ9sFSaU6VkDYq4maJmFNozxV8_4keSfDSE",
      "q": "wHyqoGzxWvMWJneQm_GJB0EQGQb_ypnpDF3vgL6ACCgv8mcDW8ZGlue5BlCK5QbtgRyhJch1gFjNCcMJY8p_lriMX1tfEvoDi8yo-Dhmn0nvEQ-0mG1x-26cgLyA0K06LRxh9GO7069Safo3xEPKNflphfVOct1YapTQpewfNtk",
      "dp": "3cwGnXLPVmquRbtt339TrXoYqvt3WEkr8YE5bdqMUp60sPPTOoGZTeDS_qjokYiQZf5D8e4J2_wGvWrS_BoNeBVsgXM0iW3O1ssz6mbjRJ25UnRk8j982Gi5tfgSOi6o4Cj2W7FJdTjuqxMwT0meJoZSb4oMjoWcUlEL-IpnkIE",
      "dq": "s9ZF3CisvpqKwVnII8pgigSBs8BUT8fIcqN41sIlAHn7gfA4tQ_kd6z7syig_CWi1JQZAyHslgNhXZN5PGC_H-RAUf8eLq6jjYOjAnY_eucqkrgntJncelr3oVd8ynpt9iOkaR6dJ8OPri_21km3rQHfUybDKpIev0VWQw7-gtE",
      "qi": "By6K5EAIOIypaL2r6n5BdXSzNuA1r6SBgeIzwB_kQP02CGB6iPle5_tLm9MFMYnN2WayRlCqfNBKbZ700wK4zLBThbwbbMWX8C3FxCaxDvaUemh9u-Ls-3MnFLMtKTZcl5K7BQ7HHx0WUlXW5gDtLbjwRkvanzdIEiTN5ALCtQc"
    },
    {
      "kty": "EC",
      "kid": "hTmLGw",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "zayjCNChbil1lRhGFTOfD7IsDI1uTcCt8whjMo42EZg",
      "y": "LL5EYIHi3zM16i6nUJzwvG-GJLwjE7GyArT4PxPNQDs",
      "crv": "P-256",
      "d": "nP-nIU2smk3SPM5kFYgXtrpV6OpQDAW3Jrri7A2ZbIA"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS	ValidateMTLSCertificatesAsX509 Mutual TLS authentication cert validated as X.509

Verify configuration of second client

2021-08-25 18:45:50

(3) More

SUCCESS

GetStaticClient2Configuration

Found a static second client object

client_id

c__fapi-jwt-par2

scope

openid

jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "daotherkid",
      "alg": "PS256",
      "n": "lG76rfhCZ5xRaKf39CCMvrTJLL7x_mNwN1hdk6vIvAkL8iIjOYgmNo0E7DZIH4PXxJHVX9Ef6G4aZaC6-bfTPTsjR39HO6aV1dLSSZircjflNACkwsytg5D7MO_6W-gwoXmMAA9n6iMBQ0wUaw9Tn1Jk_qlX8HcF2Je-Z5WNYNyfh2SRpdCwsCgoRq4wqmOvhWTIccy7pPzQy-IfHIdN8VSKfvwWR4DlAJlzpGsWSlSQS-rDkbVKnax63BZQOR3K7aOt5sJwrh3niR5gtI7CYjjkjuq6KlulAPTnKNfZnQ2j8nmyvjRV57hZg9Z-rzEVcGY-gQJ8VHhY8AyVkN3EmQ",
      "e": "AQAB",
      "d": "ScKocYEXxpMIZWBqt_bg2ffOrJyqdoaFggs4XSSVWNOKCyXpqTI-AweqtZL33ilPNJBfnwC1wXPNTElGAMfXger8ShA2nq7WcG4WL5pdQCIElQXo2iCJ7QJDwPrPx5IncGaNKo59Tf1dKEsLLnRsUpTIOUB_wa_zyMEHTkQkAEh5VrFDcT5l4Pz7uEcBjrPP-xvRXalK9H8E7xq8YMg0BByp0ogd-qnyNPTK-0iqSPBn5Gj-8lNEiqvBkY_i0S5VoBTBvh7HsLnmIsoqB1yGkEJNxijL463cNB5SekRTztiC7mz7f9-oJe9OLHqpcjwBAuEEJY-ekoftVY8kNvk2gQ",
      "p": "_7mhydczsf1-RlgazC1ElW1kDTdcVh9xtfiPRlLjjAklNxtKOVDxNXzPb8qsqqG6hXtio39ixH5vTGLVJRMz_jL0V_bPC4VH-s7zaKFxZWa2Fn79zRJv4KcS59Oi-2d1noR0lztDeyFdKBO2F3q9yjY4GUU0GPyt7Q1FmmsBSfE",
      "q": "lJfS4NDe2-E3QoW7TX2XGSixV50N76zo-V6KHp5CeYvtF4NHlQwRm8sD3NBKSCWg_hDhZYrFPIXJnoaTLSrzaDP_EX64ix9v_O48IWLvmUSb21XXk3g7gc1sYXIYn7UZm12Xe4P8LoStJep21xZZH6P4Nn3AaSCStq0_-ZkyvSk",
      "dp": "IVmxSuSA_m6D4GKvI_-nWSGKEdstdKHnL4c6ED7RJDsxGk250V3IB2S-nOK-wAYVkED2LUJ4vA2NMFYXXB10A2vbx_kNKYB5UbFZt0SOyF2r06U-LleANbk0Uv2b3NOyWDkIB40YEN_aCVcAwXElfVCy4kDPOY8Ck87OTAQ2h9E",
      "dq": "W0g5X6pwfZsJG3CT87KnU-lPqIbuvMH4DNkq-Ew4gfqXl84p90IGvzIkGU5Lk66qC-nKzVpGeDun9B6v4xtzlBv9IX47WBvj6_leLxRcJEelh0RgvlMqGz9ayTISNmpGZM9F87bNALa4t4Ylo1QzQ-Cy5qaxwOMlvdsIZgjaxqE",
      "qi": "XrW0v41psl4xeZ_imnUoZypy0GHeoar7uYYQd6ROssFA8DQjCzj0wfG-MaTd4NaBRcOuoxTJ1p6LgVe3Wfp3lnnoW4pK0EP1mC5LTlEx8SihzlcyPyCwRQgyJ-XggguF2KgU0fo01QP3mZwCtTGZ85Y173FtCbxR4_SZhVu8QJ8"
    },
    {
      "kty": "RSA",
      "kid": "g4VpZQ",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "sru5fupwET_tFy3Y8Ghk3y6Mx2wWw82T4QcM_xxbFZidQzdjMy6959hctYQ0z73XkZ0gYlbwx58hpbYA7b85nStzd0efPsaHcLzHjqV7vYU7s7C2rwyQN2dEBA8sF7Llga-WCCM-37KwI5-WYMMN19vO23g82rm2p_ORP0F01qe7UKQJZNqpep21-hXhUp8czDrBwwSAgwg0MLG9Ffiq5BVSbWMM4ituxK7Dss7oASwM90kdNzwAuRK-0WAuMlxzCJqRJW0JdHS3CGrCHIvjNYKRSsUIcrqjRROpP7ev_L-R-ObITzke8UoYdC6Jq-K5biTKYagRbifnoKgIcLZUyQ",
      "e": "AQAB",
      "d": "NhHYUe62LGG8ZdC22jOaoHHCoOmwEVf1rpOleN-pJmVe3eC5n9g6FxM7KKZwG5CA0EpKa7WFbb5UPX9L1KCO218ztRfzstf4TUCu1hZ10qWlo_yHp3kTf887oka8vgaeq5bkul1_PckexAgZQ_h-DZkvgPFk535bJX_nps00fWMLOSIqKUudS3LiotEknoCF7oaGY4L6BIuu6D41R7vIw0Be4yQfr1sxU_OwMGhDAL8evX1FB0MkxgM42dtmc2MSlSzYgm0zgyLd7ZMaSSyyPgdttzJyL5g2sBxviicTIZyzLzwuj4CH4Oe3mVbSR9gO7hJcFEiDBTmHSY071HMtAQ",
      "p": "1w5j4DsHb5ZCiBK24OcfSxR77cu8fl2EGwxZiew5EBAIlQoPiBZQGXmQXhuPaivU6nUXfQm42ypKW2vX2m3OCRG-BYSKEj6goz7NhFHyGfG-UAE5wV0hhg3v2ZMce57mm7y94Wbuo9qZr4CtAiS2LRz0TUQyN9BKux_dBxAjrFk",
      "q": "1ML-md6F83rwAX08CtTz2AgAq0qmyoAjfsNVKKCbDnU0-QyeqGpOPoBUjKLw1lJN7AlVkSQVhT_CYsNMdi6Sn60qTr5HX28uHTvSzbVwCQQ3Yn1fQSuEoap79JHygE7fEm-2yQ7ifitGzm2z8a9Gfe5eF9klfh-MYzzKNnoTHfE",
      "dp": "CFQMViCzFwUwqmhfILKSqauvaPQc5p_kf8-ooAi_5PlZ-7uaAmEq1PG6P4q9sRTld_b04-i-ee5XVtcEUvcxpXREcZ5CYpZ-ThQejWNHBu4vupVxkSV0KObdRQXHcpoiwCE9ET-VOk866GsJSC33yCN46o0bjMHKQxjmzGE5oHE",
      "dq": "yYDISwhiSwAzEOYAGK4pJ4AkyhYQs5b6hxMOs0SwtdexzPHzzcOoyS8XZH7po8IdhKAuhyDqtOF3A7y9zOw897e0axFxXWRaA1vmQedF7XQt1DyzG3DQ06A4d6BGUNjiEn71WaScRCxOijGCDDMZiylXujRxeur8Nfyb805YjrE",
      "qi": "ix_ZaWpPw0XYUJk0AXmnM-hcTifv-X-B6z-0z-RTrg0NPQJS40wr9j7qY1y9iBSu2ZhMqXJS9JZ7nBAGyRiqooghcxjrIJOKAUqRrbrXvgH75Mf9cHLxTNuz1AFmSrC2xsOlARPfpCJpIUS0Ub0h-UbEsuCTQMExHDWBjmb4opE"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS	ValidateMTLSCertificates2Header MTLS certificates header is valid

2021-08-25 18:45:50

(3) More

SUCCESS

ExtractMTLSCertificates2FromConfiguration

Mutual TLS authentication credentials loaded

cert

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

key

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

ca

MIIB5jCCAYugAwIBAgIBFjAKBggqhkjOPQQDAjBWMQswCQYDVQQGEwJVUzEbMBkGA1UECgwSTGV0J3MgQXV0aGVudGljYXRlMSowKAYDVQQDDCFMZXQncyBBdXRoZW50aWNhdGUgUm9vdCBBdXRob3JpdHkwHhcNMjAwMTE0MjEzMjMwWhcNMzAwMTExMjEzMjMwWjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxBIEludGVybWVkaWF0ZSBDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJf+aA54RC5pyLAR5yfXVYmNpgd+CGUTDp2KOGhc0gK91zxhHesEYkdXkpS2UN8Kati+yHtWCV3kkhCngGyv7RqjZjBkMB0GA1UdDgQWBBRm3WjLa38lbEYCuiCPct0ZaSED2DAfBgNVHSMEGDAWgBTEA2Q6eecKu9g9yb5glbkhhVINGDASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBhjAKBggqhkjOPQQDAgNJADBGAiEA5pLvaFwRRkxomIAtDIwg9D7gC1xzxBl4r28EzmSO1pcCIQCJUShpSXO9HDIQMUgH69fNDEMHXD3RRX5gP7kuu2KGMg==

2021-08-25 18:45:50	SUCCESS RFC7517-1.1	ValidateClientJWKsPrivatePart Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url

2021-08-25 18:45:50

(2) More

SUCCESS

ExtractJWKsFromStaticClientConfiguration

Extracted client JWK

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "daotherkid",
      "alg": "PS256",
      "n": "lG76rfhCZ5xRaKf39CCMvrTJLL7x_mNwN1hdk6vIvAkL8iIjOYgmNo0E7DZIH4PXxJHVX9Ef6G4aZaC6-bfTPTsjR39HO6aV1dLSSZircjflNACkwsytg5D7MO_6W-gwoXmMAA9n6iMBQ0wUaw9Tn1Jk_qlX8HcF2Je-Z5WNYNyfh2SRpdCwsCgoRq4wqmOvhWTIccy7pPzQy-IfHIdN8VSKfvwWR4DlAJlzpGsWSlSQS-rDkbVKnax63BZQOR3K7aOt5sJwrh3niR5gtI7CYjjkjuq6KlulAPTnKNfZnQ2j8nmyvjRV57hZg9Z-rzEVcGY-gQJ8VHhY8AyVkN3EmQ",
      "e": "AQAB",
      "d": "ScKocYEXxpMIZWBqt_bg2ffOrJyqdoaFggs4XSSVWNOKCyXpqTI-AweqtZL33ilPNJBfnwC1wXPNTElGAMfXger8ShA2nq7WcG4WL5pdQCIElQXo2iCJ7QJDwPrPx5IncGaNKo59Tf1dKEsLLnRsUpTIOUB_wa_zyMEHTkQkAEh5VrFDcT5l4Pz7uEcBjrPP-xvRXalK9H8E7xq8YMg0BByp0ogd-qnyNPTK-0iqSPBn5Gj-8lNEiqvBkY_i0S5VoBTBvh7HsLnmIsoqB1yGkEJNxijL463cNB5SekRTztiC7mz7f9-oJe9OLHqpcjwBAuEEJY-ekoftVY8kNvk2gQ",
      "p": "_7mhydczsf1-RlgazC1ElW1kDTdcVh9xtfiPRlLjjAklNxtKOVDxNXzPb8qsqqG6hXtio39ixH5vTGLVJRMz_jL0V_bPC4VH-s7zaKFxZWa2Fn79zRJv4KcS59Oi-2d1noR0lztDeyFdKBO2F3q9yjY4GUU0GPyt7Q1FmmsBSfE",
      "q": "lJfS4NDe2-E3QoW7TX2XGSixV50N76zo-V6KHp5CeYvtF4NHlQwRm8sD3NBKSCWg_hDhZYrFPIXJnoaTLSrzaDP_EX64ix9v_O48IWLvmUSb21XXk3g7gc1sYXIYn7UZm12Xe4P8LoStJep21xZZH6P4Nn3AaSCStq0_-ZkyvSk",
      "dp": "IVmxSuSA_m6D4GKvI_-nWSGKEdstdKHnL4c6ED7RJDsxGk250V3IB2S-nOK-wAYVkED2LUJ4vA2NMFYXXB10A2vbx_kNKYB5UbFZt0SOyF2r06U-LleANbk0Uv2b3NOyWDkIB40YEN_aCVcAwXElfVCy4kDPOY8Ck87OTAQ2h9E",
      "dq": "W0g5X6pwfZsJG3CT87KnU-lPqIbuvMH4DNkq-Ew4gfqXl84p90IGvzIkGU5Lk66qC-nKzVpGeDun9B6v4xtzlBv9IX47WBvj6_leLxRcJEelh0RgvlMqGz9ayTISNmpGZM9F87bNALa4t4Ylo1QzQ-Cy5qaxwOMlvdsIZgjaxqE",
      "qi": "XrW0v41psl4xeZ_imnUoZypy0GHeoar7uYYQd6ROssFA8DQjCzj0wfG-MaTd4NaBRcOuoxTJ1p6LgVe3Wfp3lnnoW4pK0EP1mC5LTlEx8SihzlcyPyCwRQgyJ-XggguF2KgU0fo01QP3mZwCtTGZ85Y173FtCbxR4_SZhVu8QJ8"
    },
    {
      "kty": "RSA",
      "kid": "g4VpZQ",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "sru5fupwET_tFy3Y8Ghk3y6Mx2wWw82T4QcM_xxbFZidQzdjMy6959hctYQ0z73XkZ0gYlbwx58hpbYA7b85nStzd0efPsaHcLzHjqV7vYU7s7C2rwyQN2dEBA8sF7Llga-WCCM-37KwI5-WYMMN19vO23g82rm2p_ORP0F01qe7UKQJZNqpep21-hXhUp8czDrBwwSAgwg0MLG9Ffiq5BVSbWMM4ituxK7Dss7oASwM90kdNzwAuRK-0WAuMlxzCJqRJW0JdHS3CGrCHIvjNYKRSsUIcrqjRROpP7ev_L-R-ObITzke8UoYdC6Jq-K5biTKYagRbifnoKgIcLZUyQ",
      "e": "AQAB",
      "d": "NhHYUe62LGG8ZdC22jOaoHHCoOmwEVf1rpOleN-pJmVe3eC5n9g6FxM7KKZwG5CA0EpKa7WFbb5UPX9L1KCO218ztRfzstf4TUCu1hZ10qWlo_yHp3kTf887oka8vgaeq5bkul1_PckexAgZQ_h-DZkvgPFk535bJX_nps00fWMLOSIqKUudS3LiotEknoCF7oaGY4L6BIuu6D41R7vIw0Be4yQfr1sxU_OwMGhDAL8evX1FB0MkxgM42dtmc2MSlSzYgm0zgyLd7ZMaSSyyPgdttzJyL5g2sBxviicTIZyzLzwuj4CH4Oe3mVbSR9gO7hJcFEiDBTmHSY071HMtAQ",
      "p": "1w5j4DsHb5ZCiBK24OcfSxR77cu8fl2EGwxZiew5EBAIlQoPiBZQGXmQXhuPaivU6nUXfQm42ypKW2vX2m3OCRG-BYSKEj6goz7NhFHyGfG-UAE5wV0hhg3v2ZMce57mm7y94Wbuo9qZr4CtAiS2LRz0TUQyN9BKux_dBxAjrFk",
      "q": "1ML-md6F83rwAX08CtTz2AgAq0qmyoAjfsNVKKCbDnU0-QyeqGpOPoBUjKLw1lJN7AlVkSQVhT_CYsNMdi6Sn60qTr5HX28uHTvSzbVwCQQ3Yn1fQSuEoap79JHygE7fEm-2yQ7ifitGzm2z8a9Gfe5eF9klfh-MYzzKNnoTHfE",
      "dp": "CFQMViCzFwUwqmhfILKSqauvaPQc5p_kf8-ooAi_5PlZ-7uaAmEq1PG6P4q9sRTld_b04-i-ee5XVtcEUvcxpXREcZ5CYpZ-ThQejWNHBu4vupVxkSV0KObdRQXHcpoiwCE9ET-VOk866GsJSC33yCN46o0bjMHKQxjmzGE5oHE",
      "dq": "yYDISwhiSwAzEOYAGK4pJ4AkyhYQs5b6hxMOs0SwtdexzPHzzcOoyS8XZH7po8IdhKAuhyDqtOF3A7y9zOw897e0axFxXWRaA1vmQedF7XQt1DyzG3DQ06A4d6BGUNjiEn71WaScRCxOijGCDDMZiylXujRxeur8Nfyb805YjrE",
      "qi": "ix_ZaWpPw0XYUJk0AXmnM-hcTifv-X-B6z-0z-RTrg0NPQJS40wr9j7qY1y9iBSu2ZhMqXJS9JZ7nBAGyRiqooghcxjrIJOKAUqRrbrXvgH75Mf9cHLxTNuz1AFmSrC2xsOlARPfpCJpIUS0Ub0h-UbEsuCTQMExHDWBjmb4opE"
    }
  ]
}

public_client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "daotherkid",
      "alg": "PS256",
      "n": "lG76rfhCZ5xRaKf39CCMvrTJLL7x_mNwN1hdk6vIvAkL8iIjOYgmNo0E7DZIH4PXxJHVX9Ef6G4aZaC6-bfTPTsjR39HO6aV1dLSSZircjflNACkwsytg5D7MO_6W-gwoXmMAA9n6iMBQ0wUaw9Tn1Jk_qlX8HcF2Je-Z5WNYNyfh2SRpdCwsCgoRq4wqmOvhWTIccy7pPzQy-IfHIdN8VSKfvwWR4DlAJlzpGsWSlSQS-rDkbVKnax63BZQOR3K7aOt5sJwrh3niR5gtI7CYjjkjuq6KlulAPTnKNfZnQ2j8nmyvjRV57hZg9Z-rzEVcGY-gQJ8VHhY8AyVkN3EmQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "g4VpZQ",
      "alg": "RSA-OAEP",
      "n": "sru5fupwET_tFy3Y8Ghk3y6Mx2wWw82T4QcM_xxbFZidQzdjMy6959hctYQ0z73XkZ0gYlbwx58hpbYA7b85nStzd0efPsaHcLzHjqV7vYU7s7C2rwyQN2dEBA8sF7Llga-WCCM-37KwI5-WYMMN19vO23g82rm2p_ORP0F01qe7UKQJZNqpep21-hXhUp8czDrBwwSAgwg0MLG9Ffiq5BVSbWMM4ituxK7Dss7oASwM90kdNzwAuRK-0WAuMlxzCJqRJW0JdHS3CGrCHIvjNYKRSsUIcrqjRROpP7ev_L-R-ObITzke8UoYdC6Jq-K5biTKYagRbifnoKgIcLZUyQ"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS OIDCC-10.1	CheckForKeyIdInClientJWKs All keys contain kids

2021-08-25 18:45:50

(1) More

SUCCESS

RFC7517-4.5

CheckDistinctKeyIdValueInClientJWKs

Distinct 'kid' value in all keys of client_jwks

see	https://bitbucket.org/openid/connect/issues/1127

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-8.6

FAPICheckKeyAlgInClientJWKs

Keys in client JWKS all have permitted 'alg'

permitted

[
  "ES256",
  "PS256"
]

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-BASE-5.2.2-6 FAPI1-BASE-5.2.2-5

FAPIEnsureMinimumClientKeyLength

Validated minimum key lengths for client_jwks

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "kid": "daotherkid",
      "alg": "PS256",
      "n": "lG76rfhCZ5xRaKf39CCMvrTJLL7x_mNwN1hdk6vIvAkL8iIjOYgmNo0E7DZIH4PXxJHVX9Ef6G4aZaC6-bfTPTsjR39HO6aV1dLSSZircjflNACkwsytg5D7MO_6W-gwoXmMAA9n6iMBQ0wUaw9Tn1Jk_qlX8HcF2Je-Z5WNYNyfh2SRpdCwsCgoRq4wqmOvhWTIccy7pPzQy-IfHIdN8VSKfvwWR4DlAJlzpGsWSlSQS-rDkbVKnax63BZQOR3K7aOt5sJwrh3niR5gtI7CYjjkjuq6KlulAPTnKNfZnQ2j8nmyvjRV57hZg9Z-rzEVcGY-gQJ8VHhY8AyVkN3EmQ",
      "e": "AQAB",
      "d": "ScKocYEXxpMIZWBqt_bg2ffOrJyqdoaFggs4XSSVWNOKCyXpqTI-AweqtZL33ilPNJBfnwC1wXPNTElGAMfXger8ShA2nq7WcG4WL5pdQCIElQXo2iCJ7QJDwPrPx5IncGaNKo59Tf1dKEsLLnRsUpTIOUB_wa_zyMEHTkQkAEh5VrFDcT5l4Pz7uEcBjrPP-xvRXalK9H8E7xq8YMg0BByp0ogd-qnyNPTK-0iqSPBn5Gj-8lNEiqvBkY_i0S5VoBTBvh7HsLnmIsoqB1yGkEJNxijL463cNB5SekRTztiC7mz7f9-oJe9OLHqpcjwBAuEEJY-ekoftVY8kNvk2gQ",
      "p": "_7mhydczsf1-RlgazC1ElW1kDTdcVh9xtfiPRlLjjAklNxtKOVDxNXzPb8qsqqG6hXtio39ixH5vTGLVJRMz_jL0V_bPC4VH-s7zaKFxZWa2Fn79zRJv4KcS59Oi-2d1noR0lztDeyFdKBO2F3q9yjY4GUU0GPyt7Q1FmmsBSfE",
      "q": "lJfS4NDe2-E3QoW7TX2XGSixV50N76zo-V6KHp5CeYvtF4NHlQwRm8sD3NBKSCWg_hDhZYrFPIXJnoaTLSrzaDP_EX64ix9v_O48IWLvmUSb21XXk3g7gc1sYXIYn7UZm12Xe4P8LoStJep21xZZH6P4Nn3AaSCStq0_-ZkyvSk",
      "dp": "IVmxSuSA_m6D4GKvI_-nWSGKEdstdKHnL4c6ED7RJDsxGk250V3IB2S-nOK-wAYVkED2LUJ4vA2NMFYXXB10A2vbx_kNKYB5UbFZt0SOyF2r06U-LleANbk0Uv2b3NOyWDkIB40YEN_aCVcAwXElfVCy4kDPOY8Ck87OTAQ2h9E",
      "dq": "W0g5X6pwfZsJG3CT87KnU-lPqIbuvMH4DNkq-Ew4gfqXl84p90IGvzIkGU5Lk66qC-nKzVpGeDun9B6v4xtzlBv9IX47WBvj6_leLxRcJEelh0RgvlMqGz9ayTISNmpGZM9F87bNALa4t4Ylo1QzQ-Cy5qaxwOMlvdsIZgjaxqE",
      "qi": "XrW0v41psl4xeZ_imnUoZypy0GHeoar7uYYQd6ROssFA8DQjCzj0wfG-MaTd4NaBRcOuoxTJ1p6LgVe3Wfp3lnnoW4pK0EP1mC5LTlEx8SihzlcyPyCwRQgyJ-XggguF2KgU0fo01QP3mZwCtTGZ85Y173FtCbxR4_SZhVu8QJ8"
    },
    {
      "kty": "RSA",
      "kid": "g4VpZQ",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "sru5fupwET_tFy3Y8Ghk3y6Mx2wWw82T4QcM_xxbFZidQzdjMy6959hctYQ0z73XkZ0gYlbwx58hpbYA7b85nStzd0efPsaHcLzHjqV7vYU7s7C2rwyQN2dEBA8sF7Llga-WCCM-37KwI5-WYMMN19vO23g82rm2p_ORP0F01qe7UKQJZNqpep21-hXhUp8czDrBwwSAgwg0MLG9Ffiq5BVSbWMM4ituxK7Dss7oASwM90kdNzwAuRK-0WAuMlxzCJqRJW0JdHS3CGrCHIvjNYKRSsUIcrqjRROpP7ev_L-R-ObITzke8UoYdC6Jq-K5biTKYagRbifnoKgIcLZUyQ",
      "e": "AQAB",
      "d": "NhHYUe62LGG8ZdC22jOaoHHCoOmwEVf1rpOleN-pJmVe3eC5n9g6FxM7KKZwG5CA0EpKa7WFbb5UPX9L1KCO218ztRfzstf4TUCu1hZ10qWlo_yHp3kTf887oka8vgaeq5bkul1_PckexAgZQ_h-DZkvgPFk535bJX_nps00fWMLOSIqKUudS3LiotEknoCF7oaGY4L6BIuu6D41R7vIw0Be4yQfr1sxU_OwMGhDAL8evX1FB0MkxgM42dtmc2MSlSzYgm0zgyLd7ZMaSSyyPgdttzJyL5g2sBxviicTIZyzLzwuj4CH4Oe3mVbSR9gO7hJcFEiDBTmHSY071HMtAQ",
      "p": "1w5j4DsHb5ZCiBK24OcfSxR77cu8fl2EGwxZiew5EBAIlQoPiBZQGXmQXhuPaivU6nUXfQm42ypKW2vX2m3OCRG-BYSKEj6goz7NhFHyGfG-UAE5wV0hhg3v2ZMce57mm7y94Wbuo9qZr4CtAiS2LRz0TUQyN9BKux_dBxAjrFk",
      "q": "1ML-md6F83rwAX08CtTz2AgAq0qmyoAjfsNVKKCbDnU0-QyeqGpOPoBUjKLw1lJN7AlVkSQVhT_CYsNMdi6Sn60qTr5HX28uHTvSzbVwCQQ3Yn1fQSuEoap79JHygE7fEm-2yQ7ifitGzm2z8a9Gfe5eF9klfh-MYzzKNnoTHfE",
      "dp": "CFQMViCzFwUwqmhfILKSqauvaPQc5p_kf8-ooAi_5PlZ-7uaAmEq1PG6P4q9sRTld_b04-i-ee5XVtcEUvcxpXREcZ5CYpZ-ThQejWNHBu4vupVxkSV0KObdRQXHcpoiwCE9ET-VOk866GsJSC33yCN46o0bjMHKQxjmzGE5oHE",
      "dq": "yYDISwhiSwAzEOYAGK4pJ4AkyhYQs5b6hxMOs0SwtdexzPHzzcOoyS8XZH7po8IdhKAuhyDqtOF3A7y9zOw897e0axFxXWRaA1vmQedF7XQt1DyzG3DQ06A4d6BGUNjiEn71WaScRCxOijGCDDMZiylXujRxeur8Nfyb805YjrE",
      "qi": "ix_ZaWpPw0XYUJk0AXmnM-hcTifv-X-B6z-0z-RTrg0NPQJS40wr9j7qY1y9iBSu2ZhMqXJS9JZ7nBAGyRiqooghcxjrIJOKAUqRrbrXvgH75Mf9cHLxTNuz1AFmSrC2xsOlARPfpCJpIUS0Ub0h-UbEsuCTQMExHDWBjmb4opE"
    }
  ]
}

2021-08-25 18:45:50	SUCCESS	ValidateMTLSCertificatesAsX509 Mutual TLS authentication cert validated as X.509

2021-08-25 18:45:50

(2) More

SUCCESS

GetResourceEndpointConfiguration

Found a resource endpoint object

resourceUrl	https://par-what-is-it-good-for.ping-eng.com:3000/ext/au/cdr/mock
cdrVersion	3

2021-08-25 18:45:50

(1) More

SUCCESS

SetProtectedResourceUrlToSingleResourceEndpoint

Set protected resource URL

protected_resource_url

https://par-what-is-it-good-for.ping-eng.com:3000/ext/au/cdr/mock

2021-08-25 18:45:50

(1) More

SUCCESS

ExtractTLSTestValuesFromResourceConfiguration

Extracted TLS information from resource endpoint

resource_endpoint

{
  "testHost": "par-what-is-it-good-for.ping-eng.com",
  "testPort": 3000
}

2021-08-25 18:45:50

(2) More

SUCCESS

ExtractTLSTestValuesFromOBResourceConfiguration

Extracted TLS information from resource endpoint

accounts_resource_endpoint	{ "testHost": "par-what-is-it-good-for.ping-eng.com", "testPort": 3000 }
accounts_request_endpoint	{ "testHost": "par-what-is-it-good-for.ping-eng.com", "testPort": 3000 }

2021-08-25 18:45:50		fapi1-advanced-final-ensure-request-object-with-long-state Setup Done

Make request to authorization endpoint

2021-08-25 18:45:50

(3) More

SUCCESS

CreateAuthorizationEndpointRequestFromClientInformation

Created authorization endpoint request

client_id	c__fapi-jwt-par1
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
scope	openid other

2021-08-25 18:45:50

(1) More

SUCCESS

CDR-levels-of-assurance-loas

AddCdrAcrClaimToAuthorizationEndpointRequest

Added acr claim to authorization_endpoint_request

authorization_endpoint_request

{
  "client_id": "c__fapi-jwt-par1",
  "redirect_uri": "https://www.certification.openid.net/test/a/pi/callback",
  "scope": "openid other",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    }
  }
}

2021-08-25 18:45:50

(1) More

SUCCESS

CDR-request-object

AddCdrSharingDurationClaimToAuthorizationEndpointRequest

Added sharing_duration claim to authorization_endpoint_request

authorization_endpoint_request

{
  "client_id": "c__fapi-jwt-par1",
  "redirect_uri": "https://www.certification.openid.net/test/a/pi/callback",
  "scope": "openid other",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  }
}

2021-08-25 18:45:50

(2) More

CreateRandomStateValue

Created state value

requested_state_length

state

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:50

(5) More

SUCCESS

AddStateToAuthorizationEndpointRequest

Added state parameter to request

client_id	c__fapi-jwt-par1
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
scope	openid other
claims	{ "id_token": { "acr": { "value": "urn:cds.au:cdr:2", "essential": true } }, "sharing_duration": 7776000 }
state	QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:50

(2) More

CreateRandomNonceValue

Created nonce value

requested_nonce_length	10
nonce	xETcPHhnwh

2021-08-25 18:45:50

(6) More

SUCCESS

AddNonceToAuthorizationEndpointRequest

Added nonce parameter to request

client_id	c__fapi-jwt-par1
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
scope	openid other
claims	{ "id_token": { "acr": { "value": "urn:cds.au:cdr:2", "essential": true } }, "sharing_duration": 7776000 }
state	QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A
nonce	xETcPHhnwh

2021-08-25 18:45:50

(7) More

SUCCESS

SetAuthorizationEndpointRequestResponseTypeToCodeIdtoken

Added response_type parameter to request

client_id	c__fapi-jwt-par1
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
scope	openid other
claims	{ "id_token": { "acr": { "value": "urn:cds.au:cdr:2", "essential": true } }, "sharing_duration": 7776000 }
state	QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A
nonce	xETcPHhnwh
response_type	code id_token

2021-08-25 18:45:50

(1) More

CreateRandomCodeVerifier

Created code_verifier value

code_verifier

ZnPJ_5G0FrSYGO1YBc.kItbqj5k8eA8Q_UuP1E5J53F_P4lLzO8Q2jlfZ4KRolX7eEUSTaWRZE.3kmc08DEpWNDyGiitp8OFc2xND.9d~W.apM99Kte8wTQpFN5CXOOA

2021-08-25 18:45:50

(1) More

CreateS256CodeChallenge

Created code_challenge value

code_challenge

dt02LXZ39mYAXtObq6iGddauNTwyTBWWKArRGkvjVBI

2021-08-25 18:45:50

(9) More

SUCCESS

RFC7636-4.3

AddCodeChallengeToAuthorizationEndpointRequest

Added code_challenge and code_challenge_method parameters to request

client_id	c__fapi-jwt-par1
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
scope	openid other
claims	{ "id_token": { "acr": { "value": "urn:cds.au:cdr:2", "essential": true } }, "sharing_duration": 7776000 }
state	QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A
nonce	xETcPHhnwh
response_type	code id_token
code_challenge	dt02LXZ39mYAXtObq6iGddauNTwyTBWWKArRGkvjVBI
code_challenge_method	S256

2021-08-25 18:45:50

(1) More

SUCCESS

ConvertAuthorizationEndpointRequestToRequestObject

Created request object claims

request_object_claims

{
  "client_id": "c__fapi-jwt-par1",
  "redirect_uri": "https://www.certification.openid.net/test/a/pi/callback",
  "scope": "openid other",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  },
  "state": "QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A",
  "nonce": "xETcPHhnwh",
  "response_type": "code id_token",
  "code_challenge": "dt02LXZ39mYAXtObq6iGddauNTwyTBWWKArRGkvjVBI",
  "code_challenge_method": "S256"
}

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-5.2.2-17

AddNbfToRequestObject

Added nbf to request object claims

nbf	1.62991715E9

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-5.2.2-13

AddExpToRequestObject

Added exp to request object claims

exp	1.62991745E9

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-5.2.2-14

AddAudToRequestObject

Added aud to request object claims

aud	https://par-what-is-it-good-for.ping-eng.com:9031

2021-08-25 18:45:50

(1) More

SUCCESS

OIDCC-6.1

AddIssToRequestObject

Added iss to request object claims

iss	c__fapi-jwt-par1

2021-08-25 18:45:50

(1) More

SUCCESS

FAPI1-ADV-5.2.3-8

AddClientIdToRequestObject

Added client_id to request object claims

client_id

c__fapi-jwt-par1

2021-08-25 18:45:50

(4) More

SUCCESS

SignRequestObject

Signed the request object

claims	{"iss":"c__fapi-jwt-par1","response_type":"code id_token","code_challenge_method":"S256","nonce":"xETcPHhnwh","client_id":"c__fapi-jwt-par1","aud":"https:\/\/par-what-is-it-good-for.ping-eng.com:9031","nbf":1629917150,"scope":"openid other","claims":{"sharing_duration":7776000,"id_token":{"acr":{"value":"urn:cds.au:cdr:2","essential":true}}},"redirect_uri":"https:\/\/www.certification.openid.net\/test\/a\/pi\/callback","state":"QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A","exp":1629917450,"code_challenge":"dt02LXZ39mYAXtObq6iGddauNTwyTBWWKArRGkvjVBI"}
header	{"kid":"dakid","alg":"PS256"}
request_object	eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.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.Nfq9eS2qx12QAPheaJNau4qgrE8AQaDnU1C--jpzpf1TrmI4qWmWe9YIthzQZsiupEoHX9HOadu64xHICQlG-6uuvt6zjJF6e7EKtHEIH450555bM2hKLZhltDZvBHhL3saRmy3q9u28l09_6pUY55hWifRsqS-fLY-ZMB2Y1HSsPgSsZamEMUo7l-4yJZMPuFa9lafJvos6vaxWzNNpCVhg-JAjVxA0HjSnuEZaAyVciXgYbVbj0Za_LYjWbl5NRGjsWeQCvLfY8WiRSyPzi7x8KMN-GI8IsHMM4nNFKGmrafOQoFvLcrWAmP1XjNCykHRLxIAfIHsSxXtgXDRMpw
key	{"p":"7LHmQtYeFeKSop1R7tBXbTDDtdmgI3woVFwnexbelvK1Ll-Pm8ZBmClbFuBusacANfPNccbbPd6QElkkbcVhPI5q2BBdoO7ga-QZPB9WgQeUBKjGQFkJa6fV144_vQozYppDneulQJ9sFSaU6VkDYq4maJmFNozxV8_4keSfDSE","kty":"RSA","q":"wHyqoGzxWvMWJneQm_GJB0EQGQb_ypnpDF3vgL6ACCgv8mcDW8ZGlue5BlCK5QbtgRyhJch1gFjNCcMJY8p_lriMX1tfEvoDi8yo-Dhmn0nvEQ-0mG1x-26cgLyA0K06LRxh9GO7069Safo3xEPKNflphfVOct1YapTQpewfNtk","d":"ohc3fs8UBct98U2ciCFQM1VRt59X7wRek7ZTIjxfv3DT5USoEWqnRMviX4uf9_rxMEAIGEJermfF4NYm-4UHdEa8Yz6Ia8oJf2AKF-kcPJ61725v6vl909rEEZuAvIIXLr2JUrCpp6eed0gJxG2eyqxHQUTVF8bSMC7viff2CAe4RPdiSDWQBUGoM13svSC5cdZlHxz134mHthMh7zdk47tGHJZaS8AyjeRlU7sRzYFHY76NPoaF8YKBjU97nysXQkkNqcKOTt-ZK1ZYafdEowBYxO2nQEx4wKL56nxqkr1u93XBrEEt62mOftwGgozaDyHwer0C0bD_FQZut5rLAQ","e":"AQAB","kid":"dakid","qi":"By6K5EAIOIypaL2r6n5BdXSzNuA1r6SBgeIzwB_kQP02CGB6iPle5_tLm9MFMYnN2WayRlCqfNBKbZ700wK4zLBThbwbbMWX8C3FxCaxDvaUemh9u-Ls-3MnFLMtKTZcl5K7BQ7HHx0WUlXW5gDtLbjwRkvanzdIEiTN5ALCtQc","dp":"3cwGnXLPVmquRbtt339TrXoYqvt3WEkr8YE5bdqMUp60sPPTOoGZTeDS_qjokYiQZf5D8e4J2_wGvWrS_BoNeBVsgXM0iW3O1ssz6mbjRJ25UnRk8j982Gi5tfgSOi6o4Cj2W7FJdTjuqxMwT0meJoZSb4oMjoWcUlEL-IpnkIE","alg":"PS256","dq":"s9ZF3CisvpqKwVnII8pgigSBs8BUT8fIcqN41sIlAHn7gfA4tQ_kd6z7syig_CWi1JQZAyHslgNhXZN5PGC_H-RAUf8eLq6jjYOjAnY_eucqkrgntJncelr3oVd8ynpt9iOkaR6dJ8OPri_21km3rQHfUybDKpIev0VWQw7-gtE","n":"sfiwoB_Ix6eYm07Bneu7aitqrol1DvTpVWII8vSR7LYEmR2yoOwqsqnLPEwvloFvc726vE0_QG8eM2PDZX8uz3I6o0GsqNa1LXtVYy-YMu4wyoX5SiXxajnFaBx0OqrGJF1GdGaOvpQNokxfYxekLz4U2_gnIm9ogwoKA6BSwjCJzBHoTLbF6IzvciSsSKuUWibnw4iSl-G1Mwgfa4IXVPwMFvix4WuBW7E66w8d6kPf0lmW2SOiaVcByLaATZZ5jQE1mxiXuq53z_rN0WaLaLcEo52_DfoN1hCacQ_ggpNvdMogWY5e7sK5nQIbRx3lSdqmwHbdg_O8aA-GWpYW-Q"}

2021-08-25 18:45:50

(1) More

SUCCESS

BuildRequestObjectPostToPAREndpoint

request

eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.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.Nfq9eS2qx12QAPheaJNau4qgrE8AQaDnU1C--jpzpf1TrmI4qWmWe9YIthzQZsiupEoHX9HOadu64xHICQlG-6uuvt6zjJF6e7EKtHEIH450555bM2hKLZhltDZvBHhL3saRmy3q9u28l09_6pUY55hWifRsqS-fLY-ZMB2Y1HSsPgSsZamEMUo7l-4yJZMPuFa9lafJvos6vaxWzNNpCVhg-JAjVxA0HjSnuEZaAyVciXgYbVbj0Za_LYjWbl5NRGjsWeQCvLfY8WiRSyPzi7x8KMN-GI8IsHMM4nNFKGmrafOQoFvLcrWAmP1XjNCykHRLxIAfIHsSxXtgXDRMpw

2021-08-25 18:45:50

(6) More

SUCCESS

CreateClientAuthenticationAssertionClaims

Created client assertion claims

iss	c__fapi-jwt-par1
sub	c__fapi-jwt-par1
aud	https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2
jti	nNpJB98Q2uYQ35p1gdaC
iat	1629917150
exp	1629917210

2021-08-25 18:45:50

(6) More

SUCCESS

PAR-2

UpdateClientAuthenticationAssertionClaimsWithISSAud

Updated audience in client assertion claims

iss	c__fapi-jwt-par1
sub	c__fapi-jwt-par1
jti	nNpJB98Q2uYQ35p1gdaC
iat	1629917150
exp	1629917210
aud	https://par-what-is-it-good-for.ping-eng.com:9031

2021-08-25 18:45:50

(1) More

SUCCESS

SignClientAuthenticationAssertion

Signed the client assertion

client_assertion

eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxMCwiaWF0IjoxNjI5OTE3MTUwLCJqdGkiOiJuTnBKQjk4UTJ1WVEzNXAxZ2RhQyJ9.Y-GT4hH-oQWNDrsHjGMurEv2MM24xhWnPPXSK4fOqKwKd3UR3a8lJAO57kVM9xycm3l1dZCnMYBgz5EQGaMRVq7fDnKyWTc2yuxcOpf-FxHA5C0n4F86Qb3cGRpnM5lVTuikJMP6cYALUJY4-ZXrV90IUs8wA9iwP_Ebog9BvLNImxfTM_yZrmOUdaZOOUrPxI-hlJu7nHysQLvnZKOGKYU_cnuqZ0ox3ecpkMocq4XtaaBeMGB0b12wLiGentLx4e87m6HQcx9i0xPFVoYes0Unp__gVxyn0IXnPGRnSUdzeAIJea_EhLs6KoLOMGd5w7_nNL508jRe_KeCo7rxTQ

2021-08-25 18:45:50

(1) More

SUCCESS

AddClientAssertionToPAREndpointParameters

Added client assertion to request

request

{
  "request": "eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.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.Nfq9eS2qx12QAPheaJNau4qgrE8AQaDnU1C--jpzpf1TrmI4qWmWe9YIthzQZsiupEoHX9HOadu64xHICQlG-6uuvt6zjJF6e7EKtHEIH450555bM2hKLZhltDZvBHhL3saRmy3q9u28l09_6pUY55hWifRsqS-fLY-ZMB2Y1HSsPgSsZamEMUo7l-4yJZMPuFa9lafJvos6vaxWzNNpCVhg-JAjVxA0HjSnuEZaAyVciXgYbVbj0Za_LYjWbl5NRGjsWeQCvLfY8WiRSyPzi7x8KMN-GI8IsHMM4nNFKGmrafOQoFvLcrWAmP1XjNCykHRLxIAfIHsSxXtgXDRMpw",
  "client_assertion": "eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxMCwiaWF0IjoxNjI5OTE3MTUwLCJqdGkiOiJuTnBKQjk4UTJ1WVEzNXAxZ2RhQyJ9.Y-GT4hH-oQWNDrsHjGMurEv2MM24xhWnPPXSK4fOqKwKd3UR3a8lJAO57kVM9xycm3l1dZCnMYBgz5EQGaMRVq7fDnKyWTc2yuxcOpf-FxHA5C0n4F86Qb3cGRpnM5lVTuikJMP6cYALUJY4-ZXrV90IUs8wA9iwP_Ebog9BvLNImxfTM_yZrmOUdaZOOUrPxI-hlJu7nHysQLvnZKOGKYU_cnuqZ0ox3ecpkMocq4XtaaBeMGB0b12wLiGentLx4e87m6HQcx9i0xPFVoYes0Unp__gVxyn0IXnPGRnSUdzeAIJea_EhLs6KoLOMGd5w7_nNL508jRe_KeCo7rxTQ",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}

2021-08-25 18:45:50

(5) More

CallPAREndpoint

HTTP request

request_uri	https://par-what-is-it-good-for.ping-eng.com:9031/as/par.oauth2
request_method	POST
request_headers	{ "accept": "application/json;charset\u003dUTF-8", "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8", "accept-charset": "utf-8", "content-length": "2309" }
request_body	request=eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.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.Nfq9eS2qx12QAPheaJNau4qgrE8AQaDnU1C--jpzpf1TrmI4qWmWe9YIthzQZsiupEoHX9HOadu64xHICQlG-6uuvt6zjJF6e7EKtHEIH450555bM2hKLZhltDZvBHhL3saRmy3q9u28l09_6pUY55hWifRsqS-fLY-ZMB2Y1HSsPgSsZamEMUo7l-4yJZMPuFa9lafJvos6vaxWzNNpCVhg-JAjVxA0HjSnuEZaAyVciXgYbVbj0Za_LYjWbl5NRGjsWeQCvLfY8WiRSyPzi7x8KMN-GI8IsHMM4nNFKGmrafOQoFvLcrWAmP1XjNCykHRLxIAfIHsSxXtgXDRMpw&client_assertion=eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxMCwiaWF0IjoxNjI5OTE3MTUwLCJqdGkiOiJuTnBKQjk4UTJ1WVEzNXAxZ2RhQyJ9.Y-GT4hH-oQWNDrsHjGMurEv2MM24xhWnPPXSK4fOqKwKd3UR3a8lJAO57kVM9xycm3l1dZCnMYBgz5EQGaMRVq7fDnKyWTc2yuxcOpf-FxHA5C0n4F86Qb3cGRpnM5lVTuikJMP6cYALUJY4-ZXrV90IUs8wA9iwP_Ebog9BvLNImxfTM_yZrmOUdaZOOUrPxI-hlJu7nHysQLvnZKOGKYU_cnuqZ0ox3ecpkMocq4XtaaBeMGB0b12wLiGentLx4e87m6HQcx9i0xPFVoYes0Unp__gVxyn0IXnPGRnSUdzeAIJea_EhLs6KoLOMGd5w7_nNL508jRe_KeCo7rxTQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
request_mutual_tls	{ "cert": "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\u003d\u003d", "key": "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\u003d", "ca": "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\u003d\u003d" }

2021-08-25 18:45:50

(4) More

RESPONSE

CallPAREndpoint

HTTP response

response_status_code	201 CREATED
response_status_text	Created
response_headers	{ "date": "Wed, 25 Aug 2021 18:45:50 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003dXfWjSCAcyRB35qcRDpBxqZ; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "transfer-encoding": "chunked" }
response_body	{"expires_in":15,"request_uri":"urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI"}

2021-08-25 18:45:50	SUCCESS PAR-2.1	CallPAREndpoint Storing pushed_authorization_endpoint_response_http_status 201

2021-08-25 18:45:50

(2) More

SUCCESS

PAR-2.1

CallPAREndpoint

Parsed pushed authorization request endpoint response

expires_in	15
request_uri	urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI

2021-08-25 18:45:50	SUCCESS PAR-2.2 PAR-2.3	CheckIfPAREndpointResponseError pushed authorization request endpoint correct response.

2021-08-25 18:45:50

(1) More

SUCCESS

PAR-2.2

CheckForRequestUriValue

Found valid request_uri

request_uri

urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI

2021-08-25 18:45:50

(1) More

SUCCESS

PAR-2.2

CheckForPARResponseExpiresIn

Found expires_in

expires_in

2021-08-25 18:45:50	SUCCESS	ExtractRequestUriFromPARResponse Extracted the request_uri: urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI

2021-08-25 18:45:50

(2) More

SUCCESS

PAR-7.1 PAR-2.2 JAR-10.2

EnsureMinimumRequestUriEntropy

Calculated shannon entropy seems sufficient

actual	327.9362934179671
expected	128.0

2021-08-25 18:45:50

(1) More

SUCCESS

PAR-4

BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint

Sending to authorization endpoint

redirect_to_authorization_endpoint

https://par-what-is-it-good-for.ping-eng.com:9031/as/authorization.oauth2?request_uri=urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI&client_id=c__fapi-jwt-par1&redirect_uri=https://www.certification.openid.net/test/a/pi/callback&scope=openid%20other&response_type=code%20id_token

2021-08-25 18:45:50

(1) More

REDIRECT

fapi1-advanced-final-ensure-request-object-with-long-state

Redirecting to authorization endpoint

redirect_to

https://par-what-is-it-good-for.ping-eng.com:9031/as/authorization.oauth2?request_uri=urn:ietf:params:oauth:request_uri:NYMfkFfEkqU21d6k24sXaBGR7jjDCzuI&client_id=c__fapi-jwt-par1&redirect_uri=https://www.certification.openid.net/test/a/pi/callback&scope=openid%20other&response_type=code%20id_token

2021-08-25 18:45:50

(1) More

REVIEW

ExpectRequestObjectWithLongStateErrorPage

If the server does not return an invalid_request error back to the client, it must show an error page (saying server rejects long state at authorization endpoint - upload a screenshot of the error page) or must successfully authenticate and return the state correctly.

image_no_longer_required

true

2021-08-25 18:45:55

(7) More

INCOMING

fapi1-advanced-final-ensure-request-object-with-long-state

Incoming HTTP request to test instance mGlBQArTUeeoPOn

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Firefox/91.0", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,/;q\u003d0.8", "accept-language": "en-US,en;q\u003d0.5", "accept-encoding": "gzip, deflate, br", "referer": "https://par-what-is-it-good-for.ping-eng.com:9031/", "cookie": "__utma\u003d201319536.1543712019.1535389192.1629841095.1629910220.306; __utmz\u003d201319536.1626984986.282.70.utmcsr\u003dgoogle\|utmccn\u003d(organic)\|utmcmd\u003dorganic\|utmctr\u003d(not%20provided); _ga\u003dGA1.2.1543712019.1535389192; JSESSIONID\u003d3F24D7E79A6ED466CA2F99FEBBB887B8; __utmc\u003d201319536; login_tab\u003dgoogleplus; expected_tab\u003dgoogleplus; welcome_info_name\u003dBrian%20Campbell", "upgrade-insecure-requests": "1", "sec-fetch-dest": "document", "sec-fetch-mode": "navigate", "sec-fetch-site": "cross-site", "sec-fetch-user": "?1", "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256", "x-ssl-protocol": "TLSv1.2", "connection": "close", "x-forwarded-host": "www.certification.openid.net", "x-forwarded-server": "www.certification.openid.net" }
incoming_path	callback
incoming_body_form_params
incoming_method	GET
incoming_body_json
incoming_query_string_params	{}
incoming_body

2021-08-25 18:45:55

(1) More

SUCCESS

CreateRandomImplicitSubmitUrl

Created random implicit submission URL

implicit_submit

{
  "path": "implicit/lrJ87h9vxLoVctXsyHcO",
  "fullUrl": "https://www.certification.openid.net/test/a/pi/implicit/lrJ87h9vxLoVctXsyHcO"
}

2021-08-25 18:45:55

(2) More

OUTGOING

fapi1-advanced-final-ensure-request-object-with-long-state

Response to HTTP request to test instance mGlBQArTUeeoPOn

outgoing	ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/pi/implicit/lrJ87h9vxLoVctXsyHcO, returnUrl=/log-detail.html?log=mGlBQArTUeeoPOn}]
outgoing_path	callback

2021-08-25 18:45:55

(7) More

INCOMING

fapi1-advanced-final-ensure-request-object-with-long-state

Incoming HTTP request to test instance mGlBQArTUeeoPOn

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Firefox/91.0", "accept": "/", "accept-language": "en-US,en;q\u003d0.5", "accept-encoding": "gzip, deflate, br", "content-type": "text/plain", "x-requested-with": "XMLHttpRequest", "origin": "https://www.certification.openid.net", "referer": "https://www.certification.openid.net/test/a/pi/callback", "cookie": "__utma\u003d201319536.1543712019.1535389192.1629841095.1629910220.306; __utmz\u003d201319536.1626984986.282.70.utmcsr\u003dgoogle\|utmccn\u003d(organic)\|utmcmd\u003dorganic\|utmctr\u003d(not%20provided); _ga\u003dGA1.2.1543712019.1535389192; JSESSIONID\u003d3F24D7E79A6ED466CA2F99FEBBB887B8; __utmc\u003d201319536; login_tab\u003dgoogleplus; expected_tab\u003dgoogleplus; welcome_info_name\u003dBrian%20Campbell", "sec-fetch-dest": "empty", "sec-fetch-mode": "cors", "sec-fetch-site": "same-origin", "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256", "x-ssl-protocol": "TLSv1.2", "content-length": "1935", "x-forwarded-host": "www.certification.openid.net", "x-forwarded-server": "www.certification.openid.net", "connection": "close" }
incoming_path	implicit/lrJ87h9vxLoVctXsyHcO
incoming_body_form_params
incoming_method	POST
incoming_body_json
incoming_query_string_params	{}
incoming_body	#code=5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD&id_token=eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ&state=QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:55

(4) More

OUTGOING

fapi1-advanced-final-ensure-request-object-with-long-state

Response to HTTP request to test instance mGlBQArTUeeoPOn

outgoing_status_code	204
outgoing_headers	{}
outgoing_body
outgoing_path	implicit/lrJ87h9vxLoVctXsyHcO

2021-08-25 18:45:55

(1) More

ExtractImplicitHashToCallbackResponse

Extracted response from URL fragment

parameters

[
  {
    "name": "code",
    "value": "5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD"
  },
  {
    "name": "id_token",
    "value": "eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ"
  },
  {
    "name": "state",
    "value": "QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A"
  }
]

2021-08-25 18:45:55

(3) More

SUCCESS

ExtractImplicitHashToCallbackResponse

Extracted the hash values

code

5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD

id_token

eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ

state

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:55

(5) More

REDIRECT-IN

fapi1-advanced-final-ensure-request-object-with-long-state

Authorization endpoint response captured

url_query	{}
headers	{ "host": "www.certification.openid.net", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Firefox/91.0", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,/;q\u003d0.8", "accept-language": "en-US,en;q\u003d0.5", "accept-encoding": "gzip, deflate, br", "referer": "https://par-what-is-it-good-for.ping-eng.com:9031/", "cookie": "__utma\u003d201319536.1543712019.1535389192.1629841095.1629910220.306; __utmz\u003d201319536.1626984986.282.70.utmcsr\u003dgoogle\|utmccn\u003d(organic)\|utmcmd\u003dorganic\|utmctr\u003d(not%20provided); _ga\u003dGA1.2.1543712019.1535389192; JSESSIONID\u003d3F24D7E79A6ED466CA2F99FEBBB887B8; __utmc\u003d201319536; login_tab\u003dgoogleplus; expected_tab\u003dgoogleplus; welcome_info_name\u003dBrian%20Campbell", "upgrade-insecure-requests": "1", "sec-fetch-dest": "document", "sec-fetch-mode": "navigate", "sec-fetch-site": "cross-site", "sec-fetch-user": "?1", "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256", "x-ssl-protocol": "TLSv1.2", "connection": "close", "x-forwarded-host": "www.certification.openid.net", "x-forwarded-server": "www.certification.openid.net" }
http_method	GET
url_fragment	{ "code": "5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD", "id_token": "eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ", "state": "QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A" }
post_body

Verify authorization endpoint response

2021-08-25 18:45:55	SUCCESS OAuth2-RT-5	RejectErrorInUrlQuery 'error' is not present in URL query returned from authorization endpoint

2021-08-25 18:45:55	SUCCESS OIDCC-3.3.2.5	RejectAuthCodeInUrlQuery Authorization code is not present in URL query returned from authorization endpoint

2021-08-25 18:45:55	SUCCESS	CheckMatchingCallbackParameters Callback parameters successfully verified

2021-08-25 18:45:55	SUCCESS OIDCC-3.3.2.5	RejectStateInUrlQueryForHybridFlow state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)

2021-08-25 18:45:55	SUCCESS	CheckIfAuthorizationEndpointError No error from authorization endpoint

2021-08-25 18:45:55

(3) More

SUCCESS

ValidateSuccessfulHybridResponseFromAuthorizationEndpoint

authorization endpoint response does not include unexpected parameters

code

5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD

id_token

eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ

state

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:55

(1) More

SUCCESS

OIDCC-3.2.2.5 JARM-4.4-2

CheckStateInAuthorizationResponse

State in response correctly returned

state

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

2021-08-25 18:45:55		ValidateIssInAuthorizationResponse No 'iss' value in authorization response.

2021-08-25 18:45:55

(1) More

SUCCESS

ExtractAuthorizationCodeFromAuthorizationResponse

Found authorization code

code	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD

2021-08-25 18:45:55

(2) More

SUCCESS

RFC6819-5.1.4.2-2 RFC6749-10.10

EnsureMinimumAuthorizationCodeLength

Authorization code is of sufficient length

actual	320
required	128

2021-08-25 18:45:55

(2) More

SUCCESS

RFC6819-5.1.4.2-2 RFC6749-10.10

EnsureMinimumAuthorizationCodeEntropy

Calculated shannon entropy seems sufficient

actual	194.122236293331
expected	96.0

2021-08-25 18:45:55

(4) More

SUCCESS

FAPI1-ADV-5.2.2.1-4

ExtractIdTokenFromAuthorizationResponse

Found and parsed the id_token from authorization_endpoint_response

value	eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q
header	{ "kid": "4iyEtpvwwglPOUJAAn4KxvUDwZU", "alg": "PS256" }
claims	{ "sub": "9wP41AdG199SOGrKiKhaIYVtjahdxokCI6P1vfZcxi0Sd_yORcpK3v4", "aud": "c__fapi-jwt-par1", "acr": "urn:cds.au:cdr:2", "c_hash": "2MlWUHaikIf3l0qRP0-SkA", "s_hash": "v7fp7jBPO7i34hDYvTeFaA", "auth_time": 1629917075, "iss": "https://par-what-is-it-good-for.ping-eng.com:9031", "exp": 1629917455, "iat": 1629917155, "nonce": "xETcPHhnwh", "jti": "1vNgkohaGZ4p7uODVegLc9" }
jwe_header	{ "epk": { "kty": "EC", "crv": "P-256", "x": "BlzUyvmur5MKb1dI9gOlEt1hR6I-k45dqGtsrjpClow", "y": "uQxJJihmfZ3pTxOc3n2xq9EVpjrC1F20wLeK1OsNuiU" }, "kid": "hTmLGw", "cty": "JWT", "enc": "A128CBC-HS256", "alg": "ECDH-ES" }

2021-08-25 18:45:55	SUCCESS FAPI1-ADV-5.2.2.1-4	ValidateIdToken ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks

2021-08-25 18:45:55

(1) More

SUCCESS

OIDCC-10.1

EnsureIdTokenContainsKid

kid was found in the ID token header

kid	4iyEtpvwwglPOUJAAn4KxvUDwZU

2021-08-25 18:45:55

(1) More

SUCCESS

OIDCC-2

ValidateIdTokenNonce

Nonce values match

nonce

xETcPHhnwh

2021-08-25 18:45:55

(2) More

SUCCESS

OIDCC-5.5.1.1

ValidateIdTokenACRClaimAgainstRequest

acr value in id_token is (one of) the requested values

actual	urn:cds.au:cdr:2
requested	[ "urn:cds.au:cdr:2" ]

2021-08-25 18:45:55

(1) More

SUCCESS

FAPI1-ADV-5.2.2.1-4

ValidateIdTokenSignature

id_token signature validated

id_token

eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q

2021-08-25 18:45:55

(1) More

SUCCESS

FAPI1-ADV-5.2.2.1-4

ValidateIdTokenSignatureUsingKid

id_token signature validated

id_token

eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q

2021-08-25 18:45:55

(1) More

SUCCESS

FAPI1-BASE-5.2.2.1-6 OB-5.2.2-8

CheckForSubjectInIdToken

Found 'sub' in id_token

sub	9wP41AdG199SOGrKiKhaIYVtjahdxokCI6P1vfZcxi0Sd_yORcpK3v4

2021-08-25 18:45:55

(2) More

SUCCESS

FAPI1-ADV-8.6

FAPIValidateIdTokenSigningAlg

id_token was signed with a permitted algorithm

permitted	[ "ES256", "PS256" ]
alg	PS256

2021-08-25 18:45:55

(1) More

SUCCESS

FAPI1-ADV-8.6.1-1

FAPIValidateIdTokenEncryptionAlg

id_token was encrypted with a permitted algorithm

alg

ECDH-ES

2021-08-25 18:45:55

(1) More

SUCCESS

OIDCC-10.1

FAPIValidateEncryptedIdTokenHasKid

kid was found in the encrypted ID token header

kid

hTmLGw

2021-08-25 18:45:55	SUCCESS CDR-tokens	ValidateIdTokenEncrypted id_token was encrypted

2021-08-25 18:45:55

(2) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

ExtractSHash

Extracted s_hash from ID Token

s_hash	v7fp7jBPO7i34hDYvTeFaA
alg	PS256

2021-08-25 18:45:55

(3) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

ValidateSHash

s_hash validated successfully

expected_hash

v7fp7jBPO7i34hDYvTeFaA

unhashed_value

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

id_token_hash

v7fp7jBPO7i34hDYvTeFaA

2021-08-25 18:45:55

(2) More

SUCCESS

OIDCC-3.3.2.11

ExtractCHash

Extracted c_hash from ID Token

c_hash	2MlWUHaikIf3l0qRP0-SkA
alg	PS256

2021-08-25 18:45:55

(3) More

SUCCESS

OIDCC-3.3.2.11

ValidateCHash

c_hash validated successfully

expected_hash	2MlWUHaikIf3l0qRP0-SkA
unhashed_value	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD
id_token_hash	2MlWUHaikIf3l0qRP0-SkA

Call token endpoint

2021-08-25 18:45:55

(3) More

SUCCESS

CreateTokenEndpointRequestForAuthorizationCodeGrant

grant_type	authorization_code
code	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD
redirect_uri	https://www.certification.openid.net/test/a/pi/callback

2021-08-25 18:45:55

(6) More

SUCCESS

CreateClientAuthenticationAssertionClaims

Created client assertion claims

iss	c__fapi-jwt-par1
sub	c__fapi-jwt-par1
aud	https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2
jti	nXdTVhFB9CLsqVTwRJXH
iat	1629917155
exp	1629917215

2021-08-25 18:45:55

(1) More

SUCCESS

SignClientAuthenticationAssertion

Signed the client assertion

client_assertion

eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMyXC9hc1wvdG9rZW4ub2F1dGgyIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxNSwiaWF0IjoxNjI5OTE3MTU1LCJqdGkiOiJuWGRUVmhGQjlDTHNxVlR3UkpYSCJ9.Q6As40A7munQt9KlJeg-P9o72iGNu1LUJQ-ckvKGccKPC5s7AcIAK6EuBa_33mrDhQdirnDGHqUqrwR-o1BWGcx59B7PAn0PUBP4gp-4S0Qt5GSF8TrYcCG8b33KI_wFPIc2vEzGckqfH0HiZUqHzBI9LAs4z0PCcVQzAW_qMkbbjooV6HWjebTmaEEMqfgAPalnkgMgT7MebUyqtGmrPQ2yoOOWzsQouXqaiHjBTJqWfeLZQZ-9-6HNOIftRPwW8nCl7OumlUnDfvhZTKwmxwIL6n6lSK7R4lQRcpCwgPBJb0yvBCDXh9Ukx10PWXyclZHKmzB1bbj-drrF34qETQ

2021-08-25 18:45:55

(5) More

AddClientAssertionToTokenEndpointRequest

Added client assertion

grant_type	authorization_code
code	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
client_assertion	eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMyXC9hc1wvdG9rZW4ub2F1dGgyIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxNSwiaWF0IjoxNjI5OTE3MTU1LCJqdGkiOiJuWGRUVmhGQjlDTHNxVlR3UkpYSCJ9.Q6As40A7munQt9KlJeg-P9o72iGNu1LUJQ-ckvKGccKPC5s7AcIAK6EuBa_33mrDhQdirnDGHqUqrwR-o1BWGcx59B7PAn0PUBP4gp-4S0Qt5GSF8TrYcCG8b33KI_wFPIc2vEzGckqfH0HiZUqHzBI9LAs4z0PCcVQzAW_qMkbbjooV6HWjebTmaEEMqfgAPalnkgMgT7MebUyqtGmrPQ2yoOOWzsQouXqaiHjBTJqWfeLZQZ-9-6HNOIftRPwW8nCl7OumlUnDfvhZTKwmxwIL6n6lSK7R4lQRcpCwgPBJb0yvBCDXh9Ukx10PWXyclZHKmzB1bbj-drrF34qETQ
client_assertion_type	urn:ietf:params:oauth:client-assertion-type:jwt-bearer

2021-08-25 18:45:55

(6) More

AddCodeVerifierToTokenEndpointRequest

grant_type	authorization_code
code	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD
redirect_uri	https://www.certification.openid.net/test/a/pi/callback
client_assertion	eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMyXC9hc1wvdG9rZW4ub2F1dGgyIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxNSwiaWF0IjoxNjI5OTE3MTU1LCJqdGkiOiJuWGRUVmhGQjlDTHNxVlR3UkpYSCJ9.Q6As40A7munQt9KlJeg-P9o72iGNu1LUJQ-ckvKGccKPC5s7AcIAK6EuBa_33mrDhQdirnDGHqUqrwR-o1BWGcx59B7PAn0PUBP4gp-4S0Qt5GSF8TrYcCG8b33KI_wFPIc2vEzGckqfH0HiZUqHzBI9LAs4z0PCcVQzAW_qMkbbjooV6HWjebTmaEEMqfgAPalnkgMgT7MebUyqtGmrPQ2yoOOWzsQouXqaiHjBTJqWfeLZQZ-9-6HNOIftRPwW8nCl7OumlUnDfvhZTKwmxwIL6n6lSK7R4lQRcpCwgPBJb0yvBCDXh9Ukx10PWXyclZHKmzB1bbj-drrF34qETQ
client_assertion_type	urn:ietf:params:oauth:client-assertion-type:jwt-bearer
code_verifier	ZnPJ_5G0FrSYGO1YBc.kItbqj5k8eA8Q_UuP1E5J53F_P4lLzO8Q2jlfZ4KRolX7eEUSTaWRZE.3kmc08DEpWNDyGiitp8OFc2xND.9d~W.apM99Kte8wTQpFN5CXOOA

2021-08-25 18:45:55

(5) More

CallTokenEndpoint

HTTP request

request_uri	https://par-what-is-it-good-for.ping-eng.com:9032/as/token.oauth2
request_method	POST
request_headers	{ "accept": "application/json;charset\u003dUTF-8", "accept-charset": "utf-8", "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8", "content-length": "1047" }
request_body	grant_type=authorization_code&code=5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fpi%2Fcallback&client_assertion=eyJraWQiOiJkYWtpZCIsImFsZyI6IlBTMjU2In0.eyJzdWIiOiJjX19mYXBpLWp3dC1wYXIxIiwiYXVkIjoiaHR0cHM6XC9cL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMyXC9hc1wvdG9rZW4ub2F1dGgyIiwiaXNzIjoiY19fZmFwaS1qd3QtcGFyMSIsImV4cCI6MTYyOTkxNzIxNSwiaWF0IjoxNjI5OTE3MTU1LCJqdGkiOiJuWGRUVmhGQjlDTHNxVlR3UkpYSCJ9.Q6As40A7munQt9KlJeg-P9o72iGNu1LUJQ-ckvKGccKPC5s7AcIAK6EuBa_33mrDhQdirnDGHqUqrwR-o1BWGcx59B7PAn0PUBP4gp-4S0Qt5GSF8TrYcCG8b33KI_wFPIc2vEzGckqfH0HiZUqHzBI9LAs4z0PCcVQzAW_qMkbbjooV6HWjebTmaEEMqfgAPalnkgMgT7MebUyqtGmrPQ2yoOOWzsQouXqaiHjBTJqWfeLZQZ-9-6HNOIftRPwW8nCl7OumlUnDfvhZTKwmxwIL6n6lSK7R4lQRcpCwgPBJb0yvBCDXh9Ukx10PWXyclZHKmzB1bbj-drrF34qETQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&code_verifier=ZnPJ_5G0FrSYGO1YBc.kItbqj5k8eA8Q_UuP1E5J53F_P4lLzO8Q2jlfZ4KRolX7eEUSTaWRZE.3kmc08DEpWNDyGiitp8OFc2xND.9d%7EW.apM99Kte8wTQpFN5CXOOA
request_mutual_tls	{ "cert": "MIICmjCCAkGgAwIBAgIBCzAKBggqhkjOPQQDAjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxBIEludGVybWVkaWF0ZSBDQTAeFw0yMTA2MTQxNTU1NTRaFw0yMjA2MjQxNTU1NTRaMDUxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDTzEZMBcGA1UEAwwQY19fZmFwaS1qd3QtcGFyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+tnvgEmbWc4Zn1sKrX0nuERDRZRSBietUo630U7eo+PBxBrpqWnjkVhlhab+iKls782djfbBBeMq3GWt4mzLWBZGmil1KCsXpO7wg1ogfjTA9f8U/ZmBWIg2ZP82s3M75bZi2HIKEpXSj24Td32iPgYutZ+DRbfqhhE8j1Q2axcLkpqXAwFSguPT7bz4KHtRXhQsv14fgNU2+vut+yAwQFZKkZt9OHZJcrCJuP6OBO53eCEb0hAI4s+4vcMM4C/iA7tlP/+6nCdHM3JNBCCDTfZdBpgATK8AgK9+fvnwcAMwgAW+rJE1B8Y4rnF1EpA2iHfDcCQx+4QPyS4QgPBesCAwEAAaNyMHAwCQYDVR0TBAIwADAfBgNVHSMEGDAWgBRm3WjLa38lbEYCuiCPct0ZaSED2DAOBgNVHQ8BAf8EBAMCBsAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0RAQH/BBMwEYEPYmRjQGV4YW1wbGUuY29tMAoGCCqGSM49BAMCA0cAMEQCIBQsjR2BGHSFyrUICFRPV1VB6iI+Gxd1S5mY2fIoIMTFAiBV7PxmaJCDqsRs8NQ3XKWGRfRiZFF8upqiPN6SUo3shw\u003d\u003d", "key": "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\u003d", "ca": "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\u003d\u003d" }

2021-08-25 18:45:56

(4) More

RESPONSE

CallTokenEndpoint

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Wed, 25 Aug 2021 18:45:56 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003dJggnEjiltCzhHLcLiq8u05; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "transfer-encoding": "chunked" }
response_body	{"access_token":"eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ","refresh_token":"M6veDmdDMHhwMC5hMYSECgbbylQRmXsBZnJDrbCxgA","id_token":"eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ","token_type":"Bearer","expires_in":3599}

2021-08-25 18:45:56

(1) More

CallTokenEndpoint

Token endpoint response

token_endpoint_response

{"access_token":"eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ","refresh_token":"M6veDmdDMHhwMC5hMYSECgbbylQRmXsBZnJDrbCxgA","id_token":"eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ","token_type":"Bearer","expires_in":3599}

2021-08-25 18:45:56

(5) More

SUCCESS

CallTokenEndpoint

Parsed token endpoint response

access_token	eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ
refresh_token	M6veDmdDMHhwMC5hMYSECgbbylQRmXsBZnJDrbCxgA
id_token	eyJhbGciOiJFQ0RILUVTIiwiZW5jIjoiQTEyOENCQy1IUzI1NiIsImN0eSI6IkpXVCIsImtpZCI6ImhUbUxHdyIsImVwayI6eyJrdHkiOiJFQyIsIngiOiJCbHpVeXZtdXI1TUtiMWRJOWdPbEV0MWhSNkktazQ1ZHFHdHNyanBDbG93IiwieSI6InVReEpKaWhtZlozcFR4T2MzbjJ4cTlFVnBqckMxRjIwd0xlSzFPc051aVUiLCJjcnYiOiJQLTI1NiJ9fQ..B1aB1lV71tr_yyqEs9hpaQ.ymYtcT5b1Kb_xTO6UT2cW0bUhQHBI5Zi9itul_4iZKzlBsApavGVLM6eV5cyuIHIrBZOlAEj1-QKLrAejFMWHk3Xe1ttZZ-foVi_Ni7CmsZUgaA6KeYi9KXJTJoTsd3j4h2wBk6V70GrCG4mNFn3On900t7ZdQJRJE436NvfjVY11cpIdu5u_rZxXrx_mqfIdvpSaKFaircBDp084vwZWrtfpPsYymDXoxpVS8wTgH1puX8Ntym3-UgZBPQ_VAqcV-zFMDxn8zWFjOr4CMbRNAim14NrPuRFqMMWbXaaDbvVBa0OU-6hlzTp471uADWUSKLic8dUgQrTFhIC97mfNSir2tEzI3kWVJatB0dN8as4FPPs8uYRDPWRLOB8rXUjzGE6CvXZM_3-fNivTlmyYS9RL3oDFqbHg1_BvRaGREgdMz_N40ZpS400RGQCEUoddbcRrqkrHHD7x5aHWJJqA_EfC3h8TYNVILmPhQ3hPxjfVdLpq-TSGr1G9OWPhm_m_nfRy6eH-u9RsghBvSLqgSMjdGNCR46Cebp5kjfthPpi-R011v0wGR4vQ5nLjF_a-ijIvgwtTSMk0cFjDB3n7qOX67_fZAwNuMgIzVrpGGKIl9roxzkx9cYI6J8Rgd61olqGvIpoYczUfUU7x7dd0oI7U6l2c9Hk0-9v7I4DGd0REJM28kV_04ykxfaIK5eb9WjoopY5Ki8vOyI3StXvG-x-Aa6krbYdVA9qQiUBQYEQdif73D87JAtaxJbFqyb8b-57UQyWXEqe-li_A7YhMRVn_I5CbiMFuxmZhDRDb0jFKZysg4eobOwumczTyVFnHT76dDepQMWvIo4RRMUsyiLpBdIuo6f2cxOhOyxaz61bhdPaNCT-UMWa6G7T1Gcju08EPdrhAX6EkSXowVsljyAarRY2IU64tLOa43p-gE2JcMXzsP0FV--NPBg5mhykRuVWr1AfzAtd1T_UMze7MkC0_d_i-7FalPEWuImvxPecZyav-rxxx-OnjlZ8qP6OwA4DY7xnYndABmIWkeWfJvcLlfgL6Ui7-gEGg_MUuKjnug61hyPwIvHHew34xgRhCdzq4Mw32_AdhK_e2QFe50QX86hUFhnZ_SKN59JlkscFqfP71u11ZDJP4nt4B9REwX5loUFARiRmaB9il131fQ.1l0mN3TN8S1q0S1DwCQgWQ
token_type	Bearer
expires_in	3599

Verify token endpoint response

2021-08-25 18:45:56	SUCCESS	CheckIfTokenEndpointResponseError No error from token endpoint

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-5.2.2-14

CheckForAccessTokenValue

Found an access token

access_token

eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ

2021-08-25 18:45:56

(2) More

SUCCESS

ExtractAccessTokenFromTokenResponse

Extracted the access token

value	eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ
type	Bearer

2021-08-25 18:45:56

(1) More

SUCCESS

RFC6749-5.1

ExtractExpiresInFromTokenEndpointResponse

Extracted 'expires_in'

expires_in

2021-08-25 18:45:56

(1) More

SUCCESS

RFC6749-5.1

ValidateExpiresIn

expires_in passed all validation checks

expires_in

2021-08-25 18:45:56

(1) More

SUCCESS

CheckForRefreshTokenValue

Found a refresh token

refresh_token

M6veDmdDMHhwMC5hMYSECgbbylQRmXsBZnJDrbCxgA

2021-08-25 18:45:56

(2) More

SUCCESS

RFC6749-10.10

EnsureMinimumRefreshTokenLength

Refresh token is of sufficient length

actual	336
required	128

2021-08-25 18:45:56

(2) More

SUCCESS

RFC6749-10.10

EnsureMinimumRefreshTokenEntropy

Calculated shannon entropy seems sufficient

actual	198.21266925021754
expected	96.0

2021-08-25 18:45:56

(2) More

SUCCESS

FAPI1-BASE-5.2.2-16

EnsureMinimumAccessTokenLength

Access token is of sufficient length

actual	3144
required	128

2021-08-25 18:45:56

(2) More

SUCCESS

FAPI1-BASE-5.2.2-16

EnsureMinimumAccessTokenEntropy

Calculated shannon entropy seems sufficient

actual	2226.9734793676876
expected	96.0

2021-08-25 18:45:56

(4) More

SUCCESS

FAPI1-BASE-5.2.2.1-6 OIDCC-3.3.2.5

ExtractIdTokenFromTokenResponse

Found and parsed the id_token from token_endpoint_response

value	eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q
header	{ "kid": "4iyEtpvwwglPOUJAAn4KxvUDwZU", "alg": "PS256" }
claims	{ "sub": "9wP41AdG199SOGrKiKhaIYVtjahdxokCI6P1vfZcxi0Sd_yORcpK3v4", "aud": "c__fapi-jwt-par1", "acr": "urn:cds.au:cdr:2", "c_hash": "2MlWUHaikIf3l0qRP0-SkA", "s_hash": "v7fp7jBPO7i34hDYvTeFaA", "auth_time": 1629917075, "iss": "https://par-what-is-it-good-for.ping-eng.com:9031", "exp": 1629917455, "iat": 1629917155, "nonce": "xETcPHhnwh", "jti": "1vNgkohaGZ4p7uODVegLc9" }
jwe_header	{ "epk": { "kty": "EC", "crv": "P-256", "x": "BlzUyvmur5MKb1dI9gOlEt1hR6I-k45dqGtsrjpClow", "y": "uQxJJihmfZ3pTxOc3n2xq9EVpjrC1F20wLeK1OsNuiU" }, "kid": "hTmLGw", "cty": "JWT", "enc": "A128CBC-HS256", "alg": "ECDH-ES" }

2021-08-25 18:45:56	SUCCESS FAPI1-BASE-5.2.2.1-6	ValidateIdToken ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks

2021-08-25 18:45:56

(1) More

SUCCESS

OIDCC-10.1

EnsureIdTokenContainsKid

kid was found in the ID token header

kid	4iyEtpvwwglPOUJAAn4KxvUDwZU

2021-08-25 18:45:56

(1) More

SUCCESS

OIDCC-2

ValidateIdTokenNonce

Nonce values match

nonce

xETcPHhnwh

2021-08-25 18:45:56

(2) More

SUCCESS

OIDCC-5.5.1.1

ValidateIdTokenACRClaimAgainstRequest

acr value in id_token is (one of) the requested values

actual	urn:cds.au:cdr:2
requested	[ "urn:cds.au:cdr:2" ]

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-5.2.2.1-6

ValidateIdTokenSignature

id_token signature validated

id_token

eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-5.2.2.1-6

ValidateIdTokenSignatureUsingKid

id_token signature validated

id_token

eyJhbGciOiJQUzI1NiIsImtpZCI6IjRpeUV0cHZ3d2dsUE9VSkFBbjRLeHZVRHdaVSJ9.eyJzdWIiOiI5d1A0MUFkRzE5OVNPR3JLaUtoYUlZVnRqYWhkeG9rQ0k2UDF2ZlpjeGkwU2RfeU9SY3BLM3Y0IiwiYXVkIjoiY19fZmFwaS1qd3QtcGFyMSIsImp0aSI6IjF2Tmdrb2hhR1o0cDd1T0RWZWdMYzkiLCJpc3MiOiJodHRwczovL3Bhci13aGF0LWlzLWl0LWdvb2QtZm9yLnBpbmctZW5nLmNvbTo5MDMxIiwiaWF0IjoxNjI5OTE3MTU1LCJleHAiOjE2Mjk5MTc0NTUsImFjciI6InVybjpjZHMuYXU6Y2RyOjIiLCJhdXRoX3RpbWUiOjE2Mjk5MTcwNzUsIm5vbmNlIjoieEVUY1BIaG53aCIsImNfaGFzaCI6IjJNbFdVSGFpa0lmM2wwcVJQMC1Ta0EiLCJzX2hhc2giOiJ2N2ZwN2pCUE83aTM0aERZdlRlRmFBIn0.d2_w7ZOA7RRgsyi26nMUnnA4OOaNinLU6qzsSATYugVQ1ZvtR2PAv5tmTssCEus3TxwiIZElR26T0RGdGTKD0hU3u54lfHGM3h1ZxUH1UHQSLhe_Jnd_NXwJ7_GLxKcc1zwW2qrtkiCk5BdWFtKG65dDZ79b6wrZvWEibo4j_M0MLIBal225R3pwemxwZHiatwJa7xuyGW5v0qrjWCCKL7ST1K1OYGVkl9mk4eGn7O1-ffqBcWaDezaxenlA8IhDPi8Hzl1UhxBFfv-LoU6wKqO5jamUu1Ex_Rz8LH9bfulenf2HBort4PqVPh5bb9fDZ1UmHc2fGcQ4VbgxPS7g4Q

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-5.2.2.1-6 OB-5.2.2-8

CheckForSubjectInIdToken

Found 'sub' in id_token

sub	9wP41AdG199SOGrKiKhaIYVtjahdxokCI6P1vfZcxi0Sd_yORcpK3v4

2021-08-25 18:45:56

(2) More

SUCCESS

FAPI1-ADV-8.6

FAPIValidateIdTokenSigningAlg

id_token was signed with a permitted algorithm

permitted	[ "ES256", "PS256" ]
alg	PS256

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-ADV-8.6.1-1

FAPIValidateIdTokenEncryptionAlg

id_token was encrypted with a permitted algorithm

alg

ECDH-ES

2021-08-25 18:45:56

(1) More

SUCCESS

OIDCC-10.1

FAPIValidateEncryptedIdTokenHasKid

kid was found in the encrypted ID token header

kid

hTmLGw

2021-08-25 18:45:56	SUCCESS CDR-tokens	ValidateIdTokenEncrypted id_token was encrypted

2021-08-25 18:45:56

(2) More

SUCCESS

OIDCC-3.3.2.11

ExtractCHash

Extracted c_hash from ID Token

c_hash	2MlWUHaikIf3l0qRP0-SkA
alg	PS256

2021-08-25 18:45:56

(2) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

ExtractSHash

Extracted s_hash from ID Token

s_hash	v7fp7jBPO7i34hDYvTeFaA
alg	PS256

2021-08-25 18:45:56	INFO OIDCC-3.3.2.11	ExtractAtHash Couldn't find at_hash in ID token

2021-08-25 18:45:56

(3) More

SUCCESS

OIDCC-3.3.2.11

ValidateCHash

c_hash validated successfully

expected_hash	2MlWUHaikIf3l0qRP0-SkA
unhashed_value	5Z6lT-Ek4CRI8R0oyrV9ZbOOgb6Ck7GrdSHJrNYD
id_token_hash	2MlWUHaikIf3l0qRP0-SkA

2021-08-25 18:45:56

(3) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

ValidateSHash

s_hash validated successfully

expected_hash

v7fp7jBPO7i34hDYvTeFaA

unhashed_value

QVU1DfkBiX69OQ61thUbSsAJv31meAnxaFSkZcnfhlGcgOOSyMkHIsMRlUTpYCt8MPXV4dvZiCgQSJJ3Kr3hgqaar4WmqzhT2O0Ndiy0h2zSRRA68edDhjMvKNCTTRkOm05dcUKl1yJgFH4FqDF01BLWjqDpBBFt9spifMK8uNPcn6s1C7EWC1h5UF30NPMKEYwcoecRUcHdpubXScCleRnZnnvX3xQk7zKNEb3sf5BEzhu8cI3n7w8yOiETXmbFvwhbODr2sNvkUU8ZasdVfLcNJ7MvyK8nABOwQb00cYODIBAO05fuzvESapA9RPsc9NZY6CvZpUlrz4x3z8atOdkVn8he0J7LGOWJ156rBahA9ooRSQtHb1tNmwbVLR7A

id_token_hash

v7fp7jBPO7i34hDYvTeFaA

2021-08-25 18:45:56

(2) More

INFO

OIDCC-3.3.2.11

ValidateAtHash

Skipped evaluation due to missing required object: at_hash

expected	at_hash
mapped

Verify at_hash in the authorization endpoint id_token

2021-08-25 18:45:56	INFO OIDCC-3.3.2.11	ExtractAtHash Couldn't find at_hash in ID token

2021-08-25 18:45:56

(2) More

INFO

OIDCC-3.3.2.11

ValidateAtHash

Skipped evaluation due to missing required object: at_hash

expected	at_hash
mapped

Resource server endpoint tests

2021-08-25 18:45:56

(1) More

CreateEmptyResourceEndpointRequestHeaders

Created empty headers

resource_endpoint_request_headers

{}

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-6.2.2-3

AddFAPIAuthDateToResourceEndpointRequest

Added x-fapi-auth-date to resource endpoint request headers

resource_endpoint_request_headers

{
  "x-fapi-auth-date": "Wed, 25 Aug 2021 18:45:56 GMT"
}

2021-08-25 18:45:56

(1) More

AddIpV4FapiCustomerIpAddressToResourceEndpointRequest

Added x-fapi-customer-ip-address containing IPv4 address to resource endpoint request headers

resource_endpoint_request_headers

{
  "x-fapi-auth-date": "Wed, 25 Aug 2021 18:45:56 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119"
}

2021-08-25 18:45:56

(3) More

AddCdrXCdsClientHeadersToResourceEndpointRequest

Added x-cds-client-headers to resource_endpoint_request_headers

x-fapi-auth-date	Wed, 25 Aug 2021 18:45:56 GMT
x-fapi-customer-ip-address	198.51.100.119
x-cds-client-headers	TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0KSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvNzkuMC4zOTQ1Ljg4IFNhZmFyaS81MzcuMzY=

2021-08-25 18:45:56

(1) More

CreateRandomFAPIInteractionId

Created interaction ID

fapi_interaction_id

19d0fb1f-31ba-438a-882b-01fabcc5e3c3

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-6.2.2-5

AddFAPIInteractionIdToResourceEndpointRequest

Added x-fapi-interaction-id to resource endpoint request headers

resource_endpoint_request_headers

{
  "x-fapi-auth-date": "Wed, 25 Aug 2021 18:45:56 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119",
  "x-cds-client-headers": "TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0KSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvNzkuMC4zOTQ1Ljg4IFNhZmFyaS81MzcuMzY\u003d",
  "x-fapi-interaction-id": "19d0fb1f-31ba-438a-882b-01fabcc5e3c3"
}

2021-08-25 18:45:56		AddCdrXvToResourceEndpointRequest Added x-v to resource_endpoint_request_headers

2021-08-25 18:45:56

(5) More

CallProtectedResourceWithBearerTokenAndCustomHeaders

HTTP request

request_uri	https://par-what-is-it-good-for.ping-eng.com:3000/ext/au/cdr/mock
request_method	GET
request_headers	{ "accept": "application/json;charset\u003dUTF-8", "x-fapi-auth-date": "Wed, 25 Aug 2021 18:45:56 GMT", "x-fapi-customer-ip-address": "198.51.100.119", "x-cds-client-headers": "TW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0KSBBcHBsZVdlYktpdC81MzcuMzYgKEtIVE1MLCBsaWtlIEdlY2tvKSBDaHJvbWUvNzkuMC4zOTQ1Ljg4IFNhZmFyaS81MzcuMzY\u003d", "x-fapi-interaction-id": "19d0fb1f-31ba-438a-882b-01fabcc5e3c3", "x-v": "3", "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImM1aVBRcHFpNFRmZnVVN0RRcFEyMi01Um9uYyIsInBpLmF0bSI6Imx1eWcifQ.eyJzY29wZSI6Im9wZW5pZCBvdGhlciIsImNsaWVudF9pZCI6ImNfX2ZhcGktand0LXBhcjEiLCJzdWIiOiJqb2UiLCJpaWQiOiJUQkQiLCJjbmYiOnsieDV0I1MyNTYiOiJNVFFJc1paLTV2T3F6bUt1U2xzbjJyc1VTV3hmT2ZJaWhubkdNdmV6X0ZvIn0sImV4cCI6MTYyOTkyMDc1Nn0.jvp-CUWvd3NKSEmahYktw5Zn_noELa67z5diTplBOrexXZjrwEyLId1yOnkPrWxE90Otbhu5fAxBtmPbx3WhEQ", "accept-charset": "utf-8", "content-length": "0" }
request_body
request_mutual_tls	{ "cert": "MIICmjCCAkGgAwIBAgIBCzAKBggqhkjOPQQDAjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxBIEludGVybWVkaWF0ZSBDQTAeFw0yMTA2MTQxNTU1NTRaFw0yMjA2MjQxNTU1NTRaMDUxCzAJBgNVBAYTAlVTMQswCQYDVQQIDAJDTzEZMBcGA1UEAwwQY19fZmFwaS1qd3QtcGFyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+tnvgEmbWc4Zn1sKrX0nuERDRZRSBietUo630U7eo+PBxBrpqWnjkVhlhab+iKls782djfbBBeMq3GWt4mzLWBZGmil1KCsXpO7wg1ogfjTA9f8U/ZmBWIg2ZP82s3M75bZi2HIKEpXSj24Td32iPgYutZ+DRbfqhhE8j1Q2axcLkpqXAwFSguPT7bz4KHtRXhQsv14fgNU2+vut+yAwQFZKkZt9OHZJcrCJuP6OBO53eCEb0hAI4s+4vcMM4C/iA7tlP/+6nCdHM3JNBCCDTfZdBpgATK8AgK9+fvnwcAMwgAW+rJE1B8Y4rnF1EpA2iHfDcCQx+4QPyS4QgPBesCAwEAAaNyMHAwCQYDVR0TBAIwADAfBgNVHSMEGDAWgBRm3WjLa38lbEYCuiCPct0ZaSED2DAOBgNVHQ8BAf8EBAMCBsAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0RAQH/BBMwEYEPYmRjQGV4YW1wbGUuY29tMAoGCCqGSM49BAMCA0cAMEQCIBQsjR2BGHSFyrUICFRPV1VB6iI+Gxd1S5mY2fIoIMTFAiBV7PxmaJCDqsRs8NQ3XKWGRfRiZFF8upqiPN6SUo3shw\u003d\u003d", "key": "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\u003d", "ca": "MIIB5jCCAYugAwIBAgIBFjAKBggqhkjOPQQDAjBWMQswCQYDVQQGEwJVUzEbMBkGA1UECgwSTGV0J3MgQXV0aGVudGljYXRlMSowKAYDVQQDDCFMZXQncyBBdXRoZW50aWNhdGUgUm9vdCBBdXRob3JpdHkwHhcNMjAwMTE0MjEzMjMwWhcNMzAwMTExMjEzMjMwWjA6MRswGQYDVQQKDBJMZXQncyBBdXRoZW50aWNhdGUxGzAZBgNVBAMMEkxBIEludGVybWVkaWF0ZSBDQTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJf+aA54RC5pyLAR5yfXVYmNpgd+CGUTDp2KOGhc0gK91zxhHesEYkdXkpS2UN8Kati+yHtWCV3kkhCngGyv7RqjZjBkMB0GA1UdDgQWBBRm3WjLa38lbEYCuiCPct0ZaSED2DAfBgNVHSMEGDAWgBTEA2Q6eecKu9g9yb5glbkhhVINGDASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBhjAKBggqhkjOPQQDAgNJADBGAiEA5pLvaFwRRkxomIAtDIwg9D7gC1xzxBl4r28EzmSO1pcCIQCJUShpSXO9HDIQMUgH69fNDEMHXD3RRX5gP7kuu2KGMg\u003d\u003d" }

2021-08-25 18:45:56

(4) More

RESPONSE

CallProtectedResourceWithBearerTokenAndCustomHeaders

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Wed, 25 Aug 2021 18:45:56 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003dT4JpN2k6TnvEQ8WxI6mJgb; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "transfer-encoding": "chunked", "x-fapi-interaction-id": "19d0fb1f-31ba-438a-882b-01fabcc5e3c3" }
response_body	{"some data":"goes here"}

2021-08-25 18:45:56

(4) More

SUCCESS

FAPI1-BASE-6.2.1-1 FAPI1-BASE-6.2.1-3

CallProtectedResourceWithBearerTokenAndCustomHeaders

Got a response from the resource endpoint

status	200
endpoint_name	resource
headers	{ "date": "Wed, 25 Aug 2021 18:45:56 GMT", "x-frame-options": "SAMEORIGIN", "referrer-policy": "origin", "cache-control": "no-cache, no-store", "pragma": "no-cache", "expires": "Thu, 01 Jan 1970 00:00:00 GMT", "content-type": "application/json;charset\u003dutf-8", "set-cookie": "PF\u003dT4JpN2k6TnvEQ8WxI6mJgb; Path\u003d/; Secure; HttpOnly; SameSite\u003dNone", "transfer-encoding": "chunked", "x-fapi-interaction-id": "19d0fb1f-31ba-438a-882b-01fabcc5e3c3" }
body	{"some data":"goes here"}

2021-08-25 18:45:56

(2) More

SUCCESS

FAPI1-BASE-6.2.1-11

CheckForDateHeaderInResourceResponse

Date header present and validated

date	Wed, 25 Aug 2021 18:45:56 GMT
skew	556

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-6.2.1-11

CheckForFAPIInteractionIdInResourceResponse

Found x-fapi-interaction-id

interaction_id

19d0fb1f-31ba-438a-882b-01fabcc5e3c3

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-6.2.1-11

EnsureMatchingFAPIInteractionId

Interaction ID matched

fapi_interaction_id

19d0fb1f-31ba-438a-882b-01fabcc5e3c3

2021-08-25 18:45:56

(1) More

SUCCESS

FAPI1-BASE-6.2.1-9 FAPI1-BASE-6.2.1-10

EnsureResourceResponseReturnedJsonContentType

Response content type is json

content_type

application/json;charset=utf-8

2021-08-25 18:45:56

(1) More

FINISHED

fapi1-advanced-final-ensure-request-object-with-long-state

Test has run to completion

testmodule_result

PASSED

2021-08-25 18:45:58

(2) More

TEST-RUNNER

Alias has now been claimed by another test

alias	pi
new_test_id	FdFdkwA7CQogYME

Test Summary

Test Results