Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-10-01 08:37:44 INFO
TEST-RUNNER
Test instance spqPPxX701OXQyq created
baseUrl
https://www.certification.openid.net/test/a/idpy
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code token",
  "request_type": "plain_http_request",
  "response_mode": "form_post",
  "client_registration": "dynamic_client"
}
alias
idpy
description
oidcrp
planId
eX84TaVxc9bEQ
config
{
  "alias": "idpy",
  "description": "oidcrp",
  "server": {
    "discoveryUrl": "https://89.45.234.133:4000/.well-known/openid-configuration",
    "login_hint": "roland@89.45.234.133:4000"
  },
  "client2": {
    "client_name": "Anything"
  }
}
testName
oidcc-client-test-nonce-invalid
2021-10-01 08:37:44 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/idpy/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/idpy/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/idpy/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/idpy/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/idpy/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/idpy/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2021-10-01 08:37:44
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/idpy/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/idpy/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/idpy/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/idpy/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/idpy/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/idpy/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2021-10-01 08:37:45
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "7A1k9UqtIbLNVjU2suylPnq46_FBFrOnpag1DT2pjwtyUv6zOB432sclfkk09Xu_UzTZmS5vImSSKdJymT2k_pus9g_wYQAgUe3UR6Dgrdmi9JGZmo9LvCJ7Ki8juD5vE2BUSm8xyZTlvceZxTgnGXmTdJCfFg32zy9nAuj5Ct0",
      "kty": "RSA",
      "q": "q4e2-Um-p0wOXD3pH9ZRvx-HyVCVWVOU8yUQt_VU4bmDod44w4ULYw5Ggi7G-gtdzqorTd5_WVm9FTjfGUiOZXGE0VKG27Bta4FlKdVghybkFDXM_A40yGoadAPtshIpo8HKypfFLdYv6eT4nkxZ9KfQR4lD1Pp128io6vt5LMs",
      "d": "gwYUf4HaHkH6kghKYrD2WG5EK1NBFiSIEJxPk9Dep4Nfbhb8XSZ3bOQ0mL958ndk-qRpW_BvDecj6Zv42F2baOwaG5RkV-SC_2oOJyH3Tj8oYzxufib9hnWYHpQt-kmG642ega4qzOPil3BJFR5NixEe439eOFEJHK9DRVnIajMTIMGRpEBDOhgLxyz00OMw3-Ra-YSjuFSOWKZ14VjisChnBt9NS0v3O2IgywRcUVxBY-Q8R-ce1HmbsqJJSMtPBt0i5fzKVqjKnAiVGA3EtIm8H8sXQ8VEGdAZAktv2cCCXhc9AyzslHxAQbhLwz80DW10n8EQUA9bQ4lPUWQeSQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "10ad1b41-081f-4d98-b0b4-54c4faf2f039",
      "qi": "Y09WR7hEXp9bBdvK8enh-GuJH1bLtwN9mvVB1R-5qZIgc8gim5P9m59aN5LEzpLxjJWqgD2gPCKcwuAO9lDex4NWZ-CyDHo-ZZ-y5N2NiIRmxPLBvH9sNOR-gGH3DjCIkQCbUj4RMBDwv7TilIyamU1zi3ugHv05s4MVAqx_P94",
      "dp": "lFG6PPJGJOVvZhqbmwNctQxxgzcc2cHathkh9IbpMotTs1h8jedW2y3EnjwrfY_a4NJVY42soOSmfobQIP9928k_fYD4XkqxBCm296bbZgFZBekypc4iHT1hPFlQTWVVb8xYSkjh9LKNRJjVQvmMf9JHV7fDbh0qFnbHeCmgyjU",
      "dq": "cCobzSGa6T0Duu_FDMuRwv-0REFMmA_eu6xGJXTon343BFcTGU9bpdeE5cX-2S0rl2ORU6cl8WCME1-QC7F1ZAJ6ToK_qtLQilcftt5P87DLvid8Nmp3u4IecDTNbv8PeYTUvevGxXVk-XZ_2MummyRNPyoUUCXDggfR5W6xy0c",
      "n": "nioWN3kJOnmrOlP2kIWUrRyyE8X8CUmTA-a-3iQtoJl9CxZzqu4PlfqQxkoXLie_ZAX_ds-q9x84JiMVjiyPDmJZCIq0rvFaiejWFOO0kxeabJkRWbdV0jXB6zTxDy-M5PqevjXN3yDBRM42mchrNtZz-MSUrqvS7fczc60-rkq228Me3l3MCK1CiEpI6H1L2Cu9A2ekgn8qmJspqIz6-wqT13VSjH-OzWEU-ya0jUUfMYzAhHn9aIot5Uyh-UplZW7l2KPRPSRQ3i1Q5DTFhg7rSXlhE6R1GO62mmlLq7jVAMXSSJ2vbTNzLtN1NkpwXi1kDYChzyLphHC4XM6ZPw"
    },
    {
      "kty": "EC",
      "d": "utemJlC409rwgxlGTLfqCdLI8tZlKK2oDv99fXLHYcM",
      "use": "sig",
      "crv": "P-256",
      "kid": "b1d30ce3-394c-47f2-8c6a-3be102ea648b",
      "x": "OcmYGoIBQTMKiCFMkkJuF3Gh_EFXLLxo2E__bezMJnA",
      "y": "P3hYf0cLhmYD9XWQ3EgNJGfk4QAeqtfjP8WWXLKah-U"
    },
    {
      "kty": "EC",
      "d": "nMW-3B4yc-iKx3W5-8spa2HhIxXbshkp2-uVS325ta0",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "01bf9b9b-38b4-4f14-9ff5-d55377495135",
      "x": "anKBlzpfQuhgeov6PqKTDFOOYWS_UWfCZSPja5W9Jag",
      "y": "at2N38v8cS798IgtOLDwcLoD9u6bOS76IZfylpLemL4"
    },
    {
      "kty": "OKP",
      "d": "_weR4R6OYkI7knaEogL4B-JYFKqmEcTy2IUrUxT33fM",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "1f2bb1be-8133-4ca0-809f-259f7f3cb82b",
      "x": "YnhVKvtRNmM2TNkRoeQ5cz9vnYmOFsiKg2V3QjnyRzY"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "-Uck7ghzeHcVqAbAQHLR1ktVMZl5TxN7IJylOmNfZW_hsN4d3J3GVrRgwWzFipjOpS8FNh6VJqtqUpwOnL-4gFYdQh0-6f9fUZjCS-FXT2EouKR4BD6mX_qYpJdBL5Vg_rMIPw4Fu8a2EBlYefsDuHS21qtKi27WL9Qhaj6Yqv0",
      "kty": "RSA",
      "q": "xRcdbk9aSnMIwG_7eW7CkFapr8NjL9hmwki83ngHNmh579ZuAgWft-ZaZfhDArQmkUmtkct4qMB-P5IbYY-8dO9z3QvOJhCBiVflKvVottEkjcx1hmjRUNAB0Nl2XcX2dS7esC0DlBBRK6udP3gbKId04mDEZBM2BKKt2rnw0A8",
      "d": "SA7N3BxCSTN84p7IOvA81kwAGesbdY0SLEwTNvGNnwO6iYsvwj7ohVKjTyXYlSUeDnocVY6uKQfbrCdprWwJNwQ0v5Yv5ksE0j-l4cbdEybrkkM8G7ZCqoTpWKKZMh5IuCodGy-n8l0kmckvDH8W-dXaFEMSc_5vcHtwhkqPAIh8Qx4MdevLmGuQJN7Je9vXL1kNGussaxAMXX0kvF48-GwU-1Pud5Eeyde1-8o3e1Xy4qumRW2_yazeVfuZLG__DDBPwzfAVGRqK3xX6lCy4fERByEfi6D-zSXCskuFp6KWZsUCIFvYBDGdqa_j0QpfZsZcp0C4-u0iVSarO68fOQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "084ebd19-3a7a-4283-9b12-5ce3e8d355bb",
      "qi": "Yz6vPVWscbMETIRifcymVBXiIvj5bz7ijY7WgyhiuRZ3xc3zCznoSKPu1afzttFgWUEHNf7BvyL0vcenm9fxzs7hyhhp02yV9h6vIxp9mkabuw2Ct2E8vtsZy8B11jEuBMILGjwXF_D8n8jelofCdCUGwaHSG6s_i_X0_g_v0nQ",
      "dp": "ukB9CFlKJZ0ckkIRDVZ9EJeS3Q9mAz50BgbksX6kPX9d6y_asgc0tX3quTsTUh4gcG10gF5TZOQ4-eZeSKI7MbCmBcsiQeYsCySPL_D7snTO3z8L6WgCGb58pKXa77m2EjgkljBc-lNbnyXA5Ms3mW-jWTv847d505y1JtQEb-U",
      "alg": "RSA-OAEP",
      "dq": "sESFEOQtd4o8WIeOnENABYFMj6Kqsd7TwIz3ReyJXtK_w42-o1ZOS1XcoXgQznk6SRRhBJS6nApUnxxYGsBHpzmFITvuqkJ259PRZMNJXL_d9mfW8FgMZD80cIoc_68ORi2eAmiv25tgTTNWFq6fc3b6RYCQBITd-fVYkddclWc",
      "n": "v-pBd_bpUzcxExucBN-sgbhYM01StGHVAYgqukCR_QnjnI9f14mC-P1aijEfayntqiwpPHcuGFgwEILlSC_s46TyG-7O2Sb-YTyEzj9jIrIdvuHYD2wAzHzXU-zAbnBIpGfMiWr9zhhatS-VhtzR9AC_h8njYWrpTHGopifmkHcP8DFmB0MeZScZ0_LGYe58U34xdZVBfa63OkAMc3AcWJ-ueTF4nawjloXYJUsAkTWnldLNaybX6kwstohy5JKXqZ8ag_Zo1kLHfAEq8QPY0qlbSred3e-LPHHczNJkjkT8nAlBNDYaYGSP6phg74SMAAHaYES-wNrlE9842A-U0w"
    },
    {
      "kty": "EC",
      "d": "niBLGzZylVQf4Gb0BUaWi24AibMj9IRxHF3CBGzcTMg",
      "use": "enc",
      "crv": "P-256",
      "kid": "4a830bcf-f796-4dcc-942d-9ac85ab170a7",
      "x": "qv7IdUs5g6p9CmW5RsHfJUK6nsTyDrgj5hAuRIHlY64",
      "y": "fv8gu3HoIGjmwF3hAThGcCpWyDnU5OEi4HOI9nmZ3i4",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "10ad1b41-081f-4d98-b0b4-54c4faf2f039",
      "n": "nioWN3kJOnmrOlP2kIWUrRyyE8X8CUmTA-a-3iQtoJl9CxZzqu4PlfqQxkoXLie_ZAX_ds-q9x84JiMVjiyPDmJZCIq0rvFaiejWFOO0kxeabJkRWbdV0jXB6zTxDy-M5PqevjXN3yDBRM42mchrNtZz-MSUrqvS7fczc60-rkq228Me3l3MCK1CiEpI6H1L2Cu9A2ekgn8qmJspqIz6-wqT13VSjH-OzWEU-ya0jUUfMYzAhHn9aIot5Uyh-UplZW7l2KPRPSRQ3i1Q5DTFhg7rSXlhE6R1GO62mmlLq7jVAMXSSJ2vbTNzLtN1NkpwXi1kDYChzyLphHC4XM6ZPw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "d3db2394-5e3d-4105-85e0-9e890463826e",
      "n": "2pn1_33a0b3DKy5zl8ZC_ZptT7soNMAJnO1GWdn50fVrbQIR5PNkOjlItR3hzhEsv0EJfUBEwQ9_HxkvshHarMRVvOCml5ru7j5VHxo7bbmipsFTByc7jBOSOn5nf7LpHqzHu6DSz9mqCk_gMv7V-Cy-ZZDzk8cyVZPQ7zo8Efmh9wuHZJYf9OEEfLUQtWHhd2y3V68xXW5Rxozw1Rr_rxjZBS_PiLEMSJuhXkFZBzDDp09SKtGS9uDxCiStMYy0E3jETnxLSGM5QMYtI8xdyqEUNwq72-zX8zZ6e-kKpeyIK05K2D1X9UsDwLhiaoOsag7NxLqUnCy9yx8iOChahQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "b1d30ce3-394c-47f2-8c6a-3be102ea648b",
      "x": "OcmYGoIBQTMKiCFMkkJuF3Gh_EFXLLxo2E__bezMJnA",
      "y": "P3hYf0cLhmYD9XWQ3EgNJGfk4QAeqtfjP8WWXLKah-U"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "d35674dc-8729-4a9f-9385-9886f2e90142",
      "x": "gpVVzZEBG4QeN37bZZKE3-Jijr3LkmEZHcrxahRq9I8",
      "y": "RGSibPmmUNoF_ZE_Wud-LuALbNM5FqJRvl8ctRMwlDg"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "01bf9b9b-38b4-4f14-9ff5-d55377495135",
      "x": "anKBlzpfQuhgeov6PqKTDFOOYWS_UWfCZSPja5W9Jag",
      "y": "at2N38v8cS798IgtOLDwcLoD9u6bOS76IZfylpLemL4"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "1f2bb1be-8133-4ca0-809f-259f7f3cb82b",
      "x": "YnhVKvtRNmM2TNkRoeQ5cz9vnYmOFsiKg2V3QjnyRzY"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "084ebd19-3a7a-4283-9b12-5ce3e8d355bb",
      "alg": "RSA-OAEP",
      "n": "v-pBd_bpUzcxExucBN-sgbhYM01StGHVAYgqukCR_QnjnI9f14mC-P1aijEfayntqiwpPHcuGFgwEILlSC_s46TyG-7O2Sb-YTyEzj9jIrIdvuHYD2wAzHzXU-zAbnBIpGfMiWr9zhhatS-VhtzR9AC_h8njYWrpTHGopifmkHcP8DFmB0MeZScZ0_LGYe58U34xdZVBfa63OkAMc3AcWJ-ueTF4nawjloXYJUsAkTWnldLNaybX6kwstohy5JKXqZ8ag_Zo1kLHfAEq8QPY0qlbSred3e-LPHHczNJkjkT8nAlBNDYaYGSP6phg74SMAAHaYES-wNrlE9842A-U0w"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "4a830bcf-f796-4dcc-942d-9ac85ab170a7",
      "x": "qv7IdUs5g6p9CmW5RsHfJUK6nsTyDrgj5hAuRIHlY64",
      "y": "fv8gu3HoIGjmwF3hAThGcCpWyDnU5OEi4HOI9nmZ3i4",
      "alg": "ECDH-ES"
    }
  ]
}
2021-10-01 08:37:45 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-10-01 08:37:45 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-10-01 08:37:45 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": 1580000000
}
2021-10-01 08:37:45
StoreOriginalClientConfiguration
No client details on configuration, created an empty original_client_config object.
2021-10-01 08:37:45
ExtractClientNameFromStoredConfig
Extracted client_name from stored client configuration.
client_name
2021-10-01 08:37:45
oidcc-client-test-nonce-invalid
Setup Done
2021-10-01 08:37:53 INCOMING
oidcc-client-test-nonce-invalid
Incoming HTTP request to test instance spqPPxX701OXQyq
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "python-requests/2.25.1",
  "accept-encoding": "gzip, deflate",
  "accept": "*/*",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2021-10-01 08:37:53 OUTGOING
oidcc-client-test-nonce-invalid
Response to HTTP request to test instance spqPPxX701OXQyq
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/idpy/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/idpy/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/idpy/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/idpy/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/idpy/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/idpy/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-10-01 08:37:53 INCOMING
oidcc-client-test-nonce-invalid
Incoming HTTP request to test instance spqPPxX701OXQyq
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "python-requests/2.25.1",
  "accept-encoding": "gzip, deflate",
  "accept": "*/*",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
jwks
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Jwks endpoint
2021-10-01 08:37:53 OUTGOING
oidcc-client-test-nonce-invalid
Response to HTTP request to test instance spqPPxX701OXQyq
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "10ad1b41-081f-4d98-b0b4-54c4faf2f039",
      "n": "nioWN3kJOnmrOlP2kIWUrRyyE8X8CUmTA-a-3iQtoJl9CxZzqu4PlfqQxkoXLie_ZAX_ds-q9x84JiMVjiyPDmJZCIq0rvFaiejWFOO0kxeabJkRWbdV0jXB6zTxDy-M5PqevjXN3yDBRM42mchrNtZz-MSUrqvS7fczc60-rkq228Me3l3MCK1CiEpI6H1L2Cu9A2ekgn8qmJspqIz6-wqT13VSjH-OzWEU-ya0jUUfMYzAhHn9aIot5Uyh-UplZW7l2KPRPSRQ3i1Q5DTFhg7rSXlhE6R1GO62mmlLq7jVAMXSSJ2vbTNzLtN1NkpwXi1kDYChzyLphHC4XM6ZPw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "d3db2394-5e3d-4105-85e0-9e890463826e",
      "n": "2pn1_33a0b3DKy5zl8ZC_ZptT7soNMAJnO1GWdn50fVrbQIR5PNkOjlItR3hzhEsv0EJfUBEwQ9_HxkvshHarMRVvOCml5ru7j5VHxo7bbmipsFTByc7jBOSOn5nf7LpHqzHu6DSz9mqCk_gMv7V-Cy-ZZDzk8cyVZPQ7zo8Efmh9wuHZJYf9OEEfLUQtWHhd2y3V68xXW5Rxozw1Rr_rxjZBS_PiLEMSJuhXkFZBzDDp09SKtGS9uDxCiStMYy0E3jETnxLSGM5QMYtI8xdyqEUNwq72-zX8zZ6e-kKpeyIK05K2D1X9UsDwLhiaoOsag7NxLqUnCy9yx8iOChahQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "b1d30ce3-394c-47f2-8c6a-3be102ea648b",
      "x": "OcmYGoIBQTMKiCFMkkJuF3Gh_EFXLLxo2E__bezMJnA",
      "y": "P3hYf0cLhmYD9XWQ3EgNJGfk4QAeqtfjP8WWXLKah-U"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "d35674dc-8729-4a9f-9385-9886f2e90142",
      "x": "gpVVzZEBG4QeN37bZZKE3-Jijr3LkmEZHcrxahRq9I8",
      "y": "RGSibPmmUNoF_ZE_Wud-LuALbNM5FqJRvl8ctRMwlDg"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "01bf9b9b-38b4-4f14-9ff5-d55377495135",
      "x": "anKBlzpfQuhgeov6PqKTDFOOYWS_UWfCZSPja5W9Jag",
      "y": "at2N38v8cS798IgtOLDwcLoD9u6bOS76IZfylpLemL4"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "1f2bb1be-8133-4ca0-809f-259f7f3cb82b",
      "x": "YnhVKvtRNmM2TNkRoeQ5cz9vnYmOFsiKg2V3QjnyRzY"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "084ebd19-3a7a-4283-9b12-5ce3e8d355bb",
      "alg": "RSA-OAEP",
      "n": "v-pBd_bpUzcxExucBN-sgbhYM01StGHVAYgqukCR_QnjnI9f14mC-P1aijEfayntqiwpPHcuGFgwEILlSC_s46TyG-7O2Sb-YTyEzj9jIrIdvuHYD2wAzHzXU-zAbnBIpGfMiWr9zhhatS-VhtzR9AC_h8njYWrpTHGopifmkHcP8DFmB0MeZScZ0_LGYe58U34xdZVBfa63OkAMc3AcWJ-ueTF4nawjloXYJUsAkTWnldLNaybX6kwstohy5JKXqZ8ag_Zo1kLHfAEq8QPY0qlbSred3e-LPHHczNJkjkT8nAlBNDYaYGSP6phg74SMAAHaYES-wNrlE9842A-U0w"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "4a830bcf-f796-4dcc-942d-9ac85ab170a7",
      "x": "qv7IdUs5g6p9CmW5RsHfJUK6nsTyDrgj5hAuRIHlY64",
      "y": "fv8gu3HoIGjmwF3hAThGcCpWyDnU5OEi4HOI9nmZ3i4",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2021-10-01 08:37:54 INCOMING
oidcc-client-test-nonce-invalid
Incoming HTTP request to test instance spqPPxX701OXQyq
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "python-requests/2.25.1",
  "accept-encoding": "gzip, deflate",
  "accept": "*/*",
  "content-type": "application/json",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "703",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
register
incoming_body_form_params
incoming_method
POST
incoming_body_json
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ]
}
incoming_query_string_params
{}
incoming_body
{"application_type": "web", "response_types": ["code", "id_token"], "contacts": ["ops@example.com"], "token_endpoint_auth_method": "client_secret_basic", "redirect_uris": ["https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5", "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5", "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5", "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"], "jwks_uri": "https://89.45.234.133:8090/static/jwks.json", "grant_types": ["authorization_code", "implicit"]}
Registration endpoint
2021-10-01 08:37:54 SUCCESS
OIDCCExtractDynamicRegistrationRequest
Extracted dynamic client registration request
request
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ]
}
2021-10-01 08:37:54 SUCCESS
EnsureRegistrationRequestContainsAtLeastOneContact
Registration request contains valid contacts
contacts
[
  "ops@example.com"
]
2021-10-01 08:37:54 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "authorization_code",
  "implicit"
]
response_types
[
  "code",
  "id_token"
]
2021-10-01 08:37:54 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
]
2021-10-01 08:37:54 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2021-10-01 08:37:54 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2021-10-01 08:37:54 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2021-10-01 08:37:54 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2021-10-01 08:37:54 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2021-10-01 08:37:54 INFO
ValidateIdTokenSignedResponseAlg
Skipped evaluation due to missing required element: client id_token_signed_response_alg
path
id_token_signed_response_alg
mapped
object
client
2021-10-01 08:37:54 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2021-10-01 08:37:54 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2021-10-01 08:37:54 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2021-10-01 08:37:54 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2021-10-01 08:37:54 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2021-10-01 08:37:54 INFO
ValidateTokenEndpointAuthSigningAlg
Skipped evaluation due to missing required element: client token_endpoint_auth_signing_alg
path
token_endpoint_auth_signing_alg
mapped
object
client
2021-10-01 08:37:54 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2021-10-01 08:37:54 INFO
ValidateRequireAuthTime
Skipped evaluation due to missing required element: client require_auth_time
path
require_auth_time
mapped
object
client
2021-10-01 08:37:54 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2021-10-01 08:37:54 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2021-10-01 08:37:54 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2021-10-01 08:37:54 SUCCESS
ValidateClientRegistrationRequestSectorIdentifierUri
A sector_identifier_uri was not provided
2021-10-01 08:37:54 SUCCESS
OIDCCRegisterClient
Registered client
client
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "client_id": "client_GybebOYUCzJChZJ76196*].$,"
}
2021-10-01 08:37:54
OIDCCCreateClientSecretForDynamicClient
Set the secret for registered client
client_secret
secret_spsaJySGTZIRQJoYhxunxzmoSmrDsOQriVPgqOAFcgrXdhjtJc3888956228-;*$'
2021-10-01 08:37:54 SUCCESS
EnsureTokenEndPointAuthMethodIsClientSecretBasic
token_endpoint_auth_method is 'client_secret_basic' as expected
2021-10-01 08:37:54 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "client_id": "client_GybebOYUCzJChZJ76196*].$,",
  "client_secret": "secret_spsaJySGTZIRQJoYhxunxzmoSmrDsOQriVPgqOAFcgrXdhjtJc3888956228-;*$\u0027"
}
2021-10-01 08:37:54
FetchClientKeys
Fetching client keys
jwks_uri
https://89.45.234.133:8090/static/jwks.json
2021-10-01 08:37:54
FetchClientKeys
HTTP request
request_uri
https://89.45.234.133:8090/static/jwks.json
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-10-01 08:37:54 RESPONSE
FetchClientKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-length": "691",
  "content-type": "application/json",
  "last-modified": "Fri, 01 Oct 2021 08:37:53 GMT",
  "cache-control": "public, max-age\u003d43200",
  "expires": "Fri, 01 Oct 2021 20:37:54 GMT",
  "etag": "\"1633077473.107856-691-625874018\"",
  "date": "Fri, 01 Oct 2021 08:37:54 GMT",
  "server": "Werkzeug/1.0.1 Python/3.8.10"
}
response_body
{"keys": [{"kty": "RSA", "use": "sig", "kid": "ZnM1b012dmhUSjh5X05VOUhpN0pXZVlSSEVjQ2J5dEkyQXEwTWQ2UjdhRQ", "n": "tkih6m_RcAr9RozD7IrHS0KjdLHSjMYuT2uRdtbTEJx1jBV6sDADoP3IskBFlwKssFAfZmtjSLETX7JUyIBkhUfTU0OKdVVrfTslfbUw4_m4OyaJmB6POycCH-zk-we9GnP1rjvfPIaaWLVtNM6r2wC-MTWv4MEL1sp-G0nj63oC53hc83q0pxaJqaDr7fMSZCUswL209DnSSn5aF80teBDUS-wOjLvihFIKSDZf0r3t9ObxYsT4tPbq7hQQc2K9XlYADfr-cmBQtwXg9h1jI31s5p-xI1SWzABQm2ZdCovcGjl9GopHsqtCINU7LCK7noRgwxHPERcJwDOX06IRmw", "e": "AQAB"}, {"kty": "EC", "use": "sig", "kid": "S0p4OFlHMzdtNzFjZlpoWkpKNnVmMHM1RHAyVlFtbXlrUjRhdjVpNXBLWQ", "crv": "P-256", "x": "MEFzjCvTrLMkOcRgdLWYpK4b_xrKOn5XAKJvOhYqZTM", "y": "-T_OakJ08j_rRP4Imn1p3L4rG60cQk72Nh4HX_tDDd0"}]}
2021-10-01 08:37:54
FetchClientKeys
Found JWK set string
jwk_string
{"keys": [{"kty": "RSA", "use": "sig", "kid": "ZnM1b012dmhUSjh5X05VOUhpN0pXZVlSSEVjQ2J5dEkyQXEwTWQ2UjdhRQ", "n": "tkih6m_RcAr9RozD7IrHS0KjdLHSjMYuT2uRdtbTEJx1jBV6sDADoP3IskBFlwKssFAfZmtjSLETX7JUyIBkhUfTU0OKdVVrfTslfbUw4_m4OyaJmB6POycCH-zk-we9GnP1rjvfPIaaWLVtNM6r2wC-MTWv4MEL1sp-G0nj63oC53hc83q0pxaJqaDr7fMSZCUswL209DnSSn5aF80teBDUS-wOjLvihFIKSDZf0r3t9ObxYsT4tPbq7hQQc2K9XlYADfr-cmBQtwXg9h1jI31s5p-xI1SWzABQm2ZdCovcGjl9GopHsqtCINU7LCK7noRgwxHPERcJwDOX06IRmw", "e": "AQAB"}, {"kty": "EC", "use": "sig", "kid": "S0p4OFlHMzdtNzFjZlpoWkpKNnVmMHM1RHAyVlFtbXlrUjRhdjVpNXBLWQ", "crv": "P-256", "x": "MEFzjCvTrLMkOcRgdLWYpK4b_xrKOn5XAKJvOhYqZTM", "y": "-T_OakJ08j_rRP4Imn1p3L4rG60cQk72Nh4HX_tDDd0"}]}
2021-10-01 08:37:54 SUCCESS
FetchClientKeys
Downloaded and added client JWK set to client
client
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "client_id": "client_GybebOYUCzJChZJ76196*].$,",
  "client_secret": "secret_spsaJySGTZIRQJoYhxunxzmoSmrDsOQriVPgqOAFcgrXdhjtJc3888956228-;*$\u0027",
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "use": "sig",
        "kid": "ZnM1b012dmhUSjh5X05VOUhpN0pXZVlSSEVjQ2J5dEkyQXEwTWQ2UjdhRQ",
        "n": "tkih6m_RcAr9RozD7IrHS0KjdLHSjMYuT2uRdtbTEJx1jBV6sDADoP3IskBFlwKssFAfZmtjSLETX7JUyIBkhUfTU0OKdVVrfTslfbUw4_m4OyaJmB6POycCH-zk-we9GnP1rjvfPIaaWLVtNM6r2wC-MTWv4MEL1sp-G0nj63oC53hc83q0pxaJqaDr7fMSZCUswL209DnSSn5aF80teBDUS-wOjLvihFIKSDZf0r3t9ObxYsT4tPbq7hQQc2K9XlYADfr-cmBQtwXg9h1jI31s5p-xI1SWzABQm2ZdCovcGjl9GopHsqtCINU7LCK7noRgwxHPERcJwDOX06IRmw",
        "e": "AQAB"
      },
      {
        "kty": "EC",
        "use": "sig",
        "kid": "S0p4OFlHMzdtNzFjZlpoWkpKNnVmMHM1RHAyVlFtbXlrUjRhdjVpNXBLWQ",
        "crv": "P-256",
        "x": "MEFzjCvTrLMkOcRgdLWYpK4b_xrKOn5XAKJvOhYqZTM",
        "y": "-T_OakJ08j_rRP4Imn1p3L4rG60cQk72Nh4HX_tDDd0"
      }
    ]
  }
}
2021-10-01 08:37:54 SUCCESS
OIDCCExtractServerSigningAlg
Using the default algorithm for the first key in server jwks
signing_algorithm
RS256
2021-10-01 08:37:54
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2021-10-01 08:37:54 OUTGOING
oidcc-client-test-nonce-invalid
Response to HTTP request to test instance spqPPxX701OXQyq
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "application_type": "web",
  "response_types": [
    "code",
    "id_token"
  ],
  "contacts": [
    "ops@example.com"
  ],
  "token_endpoint_auth_method": "client_secret_basic",
  "redirect_uris": [
    "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
    "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
  ],
  "jwks_uri": "https://89.45.234.133:8090/static/jwks.json",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "client_id": "client_GybebOYUCzJChZJ76196*].$,",
  "client_secret": "secret_spsaJySGTZIRQJoYhxunxzmoSmrDsOQriVPgqOAFcgrXdhjtJc3888956228-;*$\u0027",
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "use": "sig",
        "kid": "ZnM1b012dmhUSjh5X05VOUhpN0pXZVlSSEVjQ2J5dEkyQXEwTWQ2UjdhRQ",
        "n": "tkih6m_RcAr9RozD7IrHS0KjdLHSjMYuT2uRdtbTEJx1jBV6sDADoP3IskBFlwKssFAfZmtjSLETX7JUyIBkhUfTU0OKdVVrfTslfbUw4_m4OyaJmB6POycCH-zk-we9GnP1rjvfPIaaWLVtNM6r2wC-MTWv4MEL1sp-G0nj63oC53hc83q0pxaJqaDr7fMSZCUswL209DnSSn5aF80teBDUS-wOjLvihFIKSDZf0r3t9ObxYsT4tPbq7hQQc2K9XlYADfr-cmBQtwXg9h1jI31s5p-xI1SWzABQm2ZdCovcGjl9GopHsqtCINU7LCK7noRgwxHPERcJwDOX06IRmw",
        "e": "AQAB"
      },
      {
        "kty": "EC",
        "use": "sig",
        "kid": "S0p4OFlHMzdtNzFjZlpoWkpKNnVmMHM1RHAyVlFtbXlrUjRhdjVpNXBLWQ",
        "crv": "P-256",
        "x": "MEFzjCvTrLMkOcRgdLWYpK4b_xrKOn5XAKJvOhYqZTM",
        "y": "-T_OakJ08j_rRP4Imn1p3L4rG60cQk72Nh4HX_tDDd0"
      }
    ]
  },
  "id_token_signed_response_alg": "RS256"
}
outgoing_path
register
2021-10-01 08:37:55 INCOMING
oidcc-client-test-nonce-invalid
Incoming HTTP request to test instance spqPPxX701OXQyq
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "cookie": "JSESSIONID\u003dC72C28B7C54F724771359E5F9D552F52; __utma\u003d201319536.1325286560.1632909994.1632989957.1631776378.4; __utmc\u003d201319536; __utmz\u003d201319536.1632985063.2.2.utmcsr\u003dt.co|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "accept-language": "en-us",
  "referer": "https://89.45.234.133:8090/authz_fp_cb/12e26e441208cd0bc7043807c0407f325f49cba135ace3d28e65bb5047491128",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "scope": "openid profile email address phone",
  "response_type": "code token",
  "nonce": "2PAt0fzzDo9oBmgpEE42A6fF",
  "response_mode": "form_post",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU",
  "client_id": "client_GybebOYUCzJChZJ76196*].$,"
}
incoming_body
Authorization endpoint
2021-10-01 08:37:55 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2021-10-01 08:37:55 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "profile",
  "email",
  "address",
  "phone"
]
expected
openid
2021-10-01 08:37:55 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "scope": "openid profile email address phone",
  "response_type": "code token",
  "nonce": "2PAt0fzzDo9oBmgpEE42A6fF",
  "response_mode": "form_post",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU",
  "client_id": "client_GybebOYUCzJChZJ76196*].$,"
}
2021-10-01 08:37:55 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid profile email address phone
2021-10-01 08:37:55 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
2PAt0fzzDo9oBmgpEE42A6fF
2021-10-01 08:37:55 SUCCESS
EnsureResponseTypeIsCodeToken
Response type is expected value
expected
code token
2021-10-01 08:37:55 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_GybebOYUCzJChZJ76196*].$,
2021-10-01 08:37:55 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5
expected
[
  "https://89.45.234.133:8090/authz_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/authz_im_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "https://89.45.234.133:8090/req_uri/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5"
]
2021-10-01 08:37:55 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "profile",
  "email",
  "address",
  "phone"
]
expected
openid
2021-10-01 08:37:55 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2021-10-01 08:37:55 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq
2021-10-01 08:37:55 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
FATWp2Ht3-QqEoXjcajlFQ
2021-10-01 08:37:55 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
E8XpYyRXWpQNiZi2tpfDJZhnxodVBBAOWLPc7AGe3xMBBBSogB
2021-10-01 08:37:55 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
P_FW6H0SilTjDgr8wSpLBg
2021-10-01 08:37:55 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU"
}
2021-10-01 08:37:55 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU",
  "code": "C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq"
}
2021-10-01 08:37:55
AddTokenToAuthorizationEndpointResponseParams
Added token and token_type to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU",
  "code": "C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq",
  "access_token": "E8XpYyRXWpQNiZi2tpfDJZhnxodVBBAOWLPc7AGe3xMBBBSogB",
  "token_type": "Bearer"
}
2021-10-01 08:37:55 OUTGOING
oidcc-client-test-nonce-invalid
Response to HTTP request to test instance spqPPxX701OXQyq
outgoing
ModelAndView [view="formPostResponseMode"; model={formAction=https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5, formParameters={"state":"08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU","code":"C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq","access_token":"E8XpYyRXWpQNiZi2tpfDJZhnxodVBBAOWLPc7AGe3xMBBBSogB","token_type":"Bearer"}}]
outgoing_path
authorize
2021-10-01 08:37:56 INCOMING
oidcc-client-test-nonce-invalid
Incoming HTTP request to test instance spqPPxX701OXQyq
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "python-requests/2.25.1",
  "accept-encoding": "gzip, deflate",
  "accept": "*/*",
  "authorization": "Basic Y2xpZW50X0d5YmViT1lVQ3pKQ2haSjc2MTk2JTJBJTVELiUyNCUyQzpzZWNyZXRfc3BzYUp5U0dUWklSUUpvWWh4dW54em1vU21yRHNPUXJpVlBncU9BRmNnclhkaGp0SmMzODg4OTU2MjI4LSUzQiUyQSUyNCUyNw\u003d\u003d",
  "content-type": "application/x-www-form-urlencoded",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "286",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "redirect_uri": "https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5",
  "client_id": "client_GybebOYUCzJChZJ76196*].$,",
  "state": "08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU",
  "code": "C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&redirect_uri=https%3A%2F%2F89.45.234.133%3A8090%2Fauthz_fp_cb%2F0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5&client_id=client_GybebOYUCzJChZJ76196*%5D.%24%2C&state=08TGO2rJ4OHgCZVfK6QE7cfS3it9WEPU&code=C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq
Token endpoint
2021-10-01 08:37:56 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
client_GybebOYUCzJChZJ76196*].$,
client_secret
secret_spsaJySGTZIRQJoYhxunxzmoSmrDsOQriVPgqOAFcgrXdhjtJc3888956228-;*$'
method
client_secret_basic
2021-10-01 08:37:56 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2021-10-01 08:37:56 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
C9nnKUZIePsagFUD1Phe7YYiqSb1LSXq
2021-10-01 08:37:56 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://89.45.234.133:8090/authz_fp_cb/0754965d07bf3649dbda67b18023f6f604dd4c7b9d99d7163d23451545032ec5
2021-10-01 08:37:56 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
TP3Iqgsk4ilFb7H8KlSVnZTIAd0ZYxMcEEkEAhfPruRpw3cEze
2021-10-01 08:37:56 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
pvBZFikn440j9SYFhnBELQ
2021-10-01 08:37:56 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/idpy/
sub
user-subject-1234531
aud
client_GybebOYUCzJChZJ76196*].$,
nonce
2PAt0fzzDo9oBmgpEE42A6fF
iat
1633077476
exp
1633077776
2021-10-01 08:37:56 SUCCESS
AddInvalidNonceValueToIdToken
Added invalid nonce to ID token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/idpy/",
  "sub": "user-subject-1234531",
  "aud": "client_GybebOYUCzJChZJ76196*].$,",
  "nonce": "2PAt0fzzDo9oBmgpEE42A6fF1",
  "iat": 1633077476,
  "exp": 1633077776
}
nonce
2PAt0fzzDo9oBmgpEE42A6fF1
2021-10-01 08:37:56 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
pvBZFikn440j9SYFhnBELQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/idpy/",
  "sub": "user-subject-1234531",
  "aud": "client_GybebOYUCzJChZJ76196*].$,",
  "nonce": "2PAt0fzzDo9oBmgpEE42A6fF1",
  "iat": 1633077476,
  "exp": 1633077776,
  "at_hash": "pvBZFikn440j9SYFhnBELQ"
}
2021-10-01 08:37:56 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiIxMGFkMWI0MS0wODFmLTRkOTgtYjBiNC01NGM0ZmFmMmYwMzkiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoicHZCWkZpa240NDBqOVNZRmhuQkVMUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0d5YmViT1lVQ3pKQ2haSjc2MTk2Kl0uJCwiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvaWRweVwvIiwiZXhwIjoxNjMzMDc3Nzc2LCJub25jZSI6IjJQQXQwZnp6RG85b0JtZ3BFRTQyQTZmRjEiLCJpYXQiOjE2MzMwNzc0NzZ9.Y3zXYKphdXaIFs3fZlmJvNYLTXeoHBHeZhqjWWlL6DVd1_EE1l5T-9lzgVBBS6SvmUms_nu9zcwXlBxgc7BEiZjPDavtP61Di6xPHP69kOeLXUErEyKbobE88sm7L4INCNnL9L8qQoKPmgm8-blRGE6jQc8qK_EEY7V_YPSbde6qJ7rjdZ1-oPVzlPjLWjg2CUOmmenxx-s_6BajhfaqlZSzxf1cydFCSgA2gtt2QkNLi3sK7zHuIk1SDmCzpyN65FL6m74f_LpLiOwC8zuGsl4Ts5ltBxYq8NjbPRxOoEHI2Zb3c2yJ_CtfI-XqMQjGFUqkRgu1sfqaJWN3eddMEg
key
{"p":"7A1k9UqtIbLNVjU2suylPnq46_FBFrOnpag1DT2pjwtyUv6zOB432sclfkk09Xu_UzTZmS5vImSSKdJymT2k_pus9g_wYQAgUe3UR6Dgrdmi9JGZmo9LvCJ7Ki8juD5vE2BUSm8xyZTlvceZxTgnGXmTdJCfFg32zy9nAuj5Ct0","kty":"RSA","q":"q4e2-Um-p0wOXD3pH9ZRvx-HyVCVWVOU8yUQt_VU4bmDod44w4ULYw5Ggi7G-gtdzqorTd5_WVm9FTjfGUiOZXGE0VKG27Bta4FlKdVghybkFDXM_A40yGoadAPtshIpo8HKypfFLdYv6eT4nkxZ9KfQR4lD1Pp128io6vt5LMs","d":"gwYUf4HaHkH6kghKYrD2WG5EK1NBFiSIEJxPk9Dep4Nfbhb8XSZ3bOQ0mL958ndk-qRpW_BvDecj6Zv42F2baOwaG5RkV-SC_2oOJyH3Tj8oYzxufib9hnWYHpQt-kmG642ega4qzOPil3BJFR5NixEe439eOFEJHK9DRVnIajMTIMGRpEBDOhgLxyz00OMw3-Ra-YSjuFSOWKZ14VjisChnBt9NS0v3O2IgywRcUVxBY-Q8R-ce1HmbsqJJSMtPBt0i5fzKVqjKnAiVGA3EtIm8H8sXQ8VEGdAZAktv2cCCXhc9AyzslHxAQbhLwz80DW10n8EQUA9bQ4lPUWQeSQ","e":"AQAB","use":"sig","kid":"10ad1b41-081f-4d98-b0b4-54c4faf2f039","qi":"Y09WR7hEXp9bBdvK8enh-GuJH1bLtwN9mvVB1R-5qZIgc8gim5P9m59aN5LEzpLxjJWqgD2gPCKcwuAO9lDex4NWZ-CyDHo-ZZ-y5N2NiIRmxPLBvH9sNOR-gGH3DjCIkQCbUj4RMBDwv7TilIyamU1zi3ugHv05s4MVAqx_P94","dp":"lFG6PPJGJOVvZhqbmwNctQxxgzcc2cHathkh9IbpMotTs1h8jedW2y3EnjwrfY_a4NJVY42soOSmfobQIP9928k_fYD4XkqxBCm296bbZgFZBekypc4iHT1hPFlQTWVVb8xYSkjh9LKNRJjVQvmMf9JHV7fDbh0qFnbHeCmgyjU","dq":"cCobzSGa6T0Duu_FDMuRwv-0REFMmA_eu6xGJXTon343BFcTGU9bpdeE5cX-2S0rl2ORU6cl8WCME1-QC7F1ZAJ6ToK_qtLQilcftt5P87DLvid8Nmp3u4IecDTNbv8PeYTUvevGxXVk-XZ_2MummyRNPyoUUCXDggfR5W6xy0c","n":"nioWN3kJOnmrOlP2kIWUrRyyE8X8CUmTA-a-3iQtoJl9CxZzqu4PlfqQxkoXLie_ZAX_ds-q9x84JiMVjiyPDmJZCIq0rvFaiejWFOO0kxeabJkRWbdV0jXB6zTxDy-M5PqevjXN3yDBRM42mchrNtZz-MSUrqvS7fczc60-rkq228Me3l3MCK1CiEpI6H1L2Cu9A2ekgn8qmJspqIz6-wqT13VSjH-OzWEU-ya0jUUfMYzAhHn9aIot5Uyh-UplZW7l2KPRPSRQ3i1Q5DTFhg7rSXlhE6R1GO62mmlLq7jVAMXSSJ2vbTNzLtN1NkpwXi1kDYChzyLphHC4XM6ZPw"}
algorithm
RS256
2021-10-01 08:37:56 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2021-10-01 08:37:56 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
TP3Iqgsk4ilFb7H8KlSVnZTIAd0ZYxMcEEkEAhfPruRpw3cEze
token_type
Bearer
id_token
eyJraWQiOiIxMGFkMWI0MS0wODFmLTRkOTgtYjBiNC01NGM0ZmFmMmYwMzkiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoicHZCWkZpa240NDBqOVNZRmhuQkVMUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0d5YmViT1lVQ3pKQ2haSjc2MTk2Kl0uJCwiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvaWRweVwvIiwiZXhwIjoxNjMzMDc3Nzc2LCJub25jZSI6IjJQQXQwZnp6RG85b0JtZ3BFRTQyQTZmRjEiLCJpYXQiOjE2MzMwNzc0NzZ9.Y3zXYKphdXaIFs3fZlmJvNYLTXeoHBHeZhqjWWlL6DVd1_EE1l5T-9lzgVBBS6SvmUms_nu9zcwXlBxgc7BEiZjPDavtP61Di6xPHP69kOeLXUErEyKbobE88sm7L4INCNnL9L8qQoKPmgm8-blRGE6jQc8qK_EEY7V_YPSbde6qJ7rjdZ1-oPVzlPjLWjg2CUOmmenxx-s_6BajhfaqlZSzxf1cydFCSgA2gtt2QkNLi3sK7zHuIk1SDmCzpyN65FL6m74f_LpLiOwC8zuGsl4Ts5ltBxYq8NjbPRxOoEHI2Zb3c2yJ_CtfI-XqMQjGFUqkRgu1sfqaJWN3eddMEg
scope
openid profile email address phone
2021-10-01 08:37:56 OUTGOING
oidcc-client-test-nonce-invalid
Response to HTTP request to test instance spqPPxX701OXQyq
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "TP3Iqgsk4ilFb7H8KlSVnZTIAd0ZYxMcEEkEAhfPruRpw3cEze",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiIxMGFkMWI0MS0wODFmLTRkOTgtYjBiNC01NGM0ZmFmMmYwMzkiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoicHZCWkZpa240NDBqOVNZRmhuQkVMUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0d5YmViT1lVQ3pKQ2haSjc2MTk2Kl0uJCwiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvaWRweVwvIiwiZXhwIjoxNjMzMDc3Nzc2LCJub25jZSI6IjJQQXQwZnp6RG85b0JtZ3BFRTQyQTZmRjEiLCJpYXQiOjE2MzMwNzc0NzZ9.Y3zXYKphdXaIFs3fZlmJvNYLTXeoHBHeZhqjWWlL6DVd1_EE1l5T-9lzgVBBS6SvmUms_nu9zcwXlBxgc7BEiZjPDavtP61Di6xPHP69kOeLXUErEyKbobE88sm7L4INCNnL9L8qQoKPmgm8-blRGE6jQc8qK_EEY7V_YPSbde6qJ7rjdZ1-oPVzlPjLWjg2CUOmmenxx-s_6BajhfaqlZSzxf1cydFCSgA2gtt2QkNLi3sK7zHuIk1SDmCzpyN65FL6m74f_LpLiOwC8zuGsl4Ts5ltBxYq8NjbPRxOoEHI2Zb3c2yJ_CtfI-XqMQjGFUqkRgu1sfqaJWN3eddMEg",
  "scope": "openid profile email address phone"
}
outgoing_path
token
2021-10-01 08:38:01 FINISHED
oidcc-client-test-nonce-invalid
Test has run to completion
testmodule_result
PASSED
2021-10-01 08:38:06
TEST-RUNNER
Alias has now been claimed by another test
alias
idpy
new_test_id
ftA6tnhyRS8buOi
Test Results