OpenID Certification OP Test

Test info

Profile: {'openid-configuration': 'config', 'response_type': 'code', 'crypto': 'none+sign', 'registration': 'static'}
Timestamp: 2015-04-10T02:34:36Z
Test description: Claims request with essential name claim [Basic, Implicit, Hybrid]
Test ID: OP-claims-essential
Issuer: https://openid.uni-id.info/express/

Test output


__AuthorizationRequest:pre__
[check-response-type]
	status: OK
	description: Checks that the asked for response type are among the supported
[check-endpoint]
	status: OK
	description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[check-http-response]
	status: OK
	description: Checks that the HTTP response status is within the 200 or 300 range
[verify-claims]
	status: OK
	description: Verifies that the UserInfo returned is consistent with what was asked for
__X:==== END ====__

Trace output


0.000280 ------------ DiscoveryRequest ------------
0.000290 Provider info discover from 'https://openid.uni-id.info/express/'
0.000297 --> URL: https://openid.uni-id.info/express/.well-known/openid-configuration
1.093790 ProviderConfigurationResponse: {
  "authorization_endpoint": "https://openid.uni-id.info/express/script/connect/authz_req/endpoint.seam",
  "claims_parameter_supported": false,
  "claims_supported": [
    "sub",
    "iss",
    "auth_time",
    "acr",
    "name",
    "given_name",
    "family_name",
    "nickname",
    "profile",
    "picture",
    "website",
    "email",
    "email_verified",
    "locale",
    "zoneinfo"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "issuer": "https://openid.uni-id.info/express/",
  "jwks_uri": "https://openid.uni-id.info/express/script/connect/jwks/endpoint.seam",
  "request_parameter_supported": false,
  "request_uri_parameter_supported": true,
  "require_request_uri_registration": true,
  "response_types_supported": [
    "code",
    "token",
    "id_token",
    "code token",
    "code id_token",
    "token id_token",
    "code token id_token"
  ],
  "scopes_supported": [
    "openid",
    "email",
    "phone",
    "address",
    "profile"
  ],
  "subject_types_supported": [
    "pairwise"
  ],
  "token_endpoint": "https://openid.uni-id.info/express/script/connect/token_req/endpoint.seam",
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post"
  ],
  "userinfo_endpoint": "https://openid.uni-id.info/express/script/connect/userinfo/endpoint.seam",
  "version": "3.0"
}
2.092815 JWKS: {
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "key1",
      "kty": "RSA",
      "n": "u8XnQhjM_rO43PGu6t2RHa6Y2hAGA63fjJfcyrrw9iu5Y3Xn7iQ3uJV93JL7RYmi55GtMB6PaRzBDckAQRVOHd8BoEPufX9567TpuThQRb2vL8ds1oL6X3p33C02HgU9rkBRGQHYi8oOaKtuUjXUeC-P-boFvHKLtvKbCbfX3Ys",
      "use": "sig"
    }
  ]
}
2.093649 ------------ AuthorizationRequest ------------
2.094248 --> URL: https://openid.uni-id.info/express/script/connect/authz_req/endpoint.seam?state=OHHBiS50E3I9112k&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60239%2Fauthz_cb&response_type=code&client_id=https%3A%2F%2Fopenid.uni-id.info%2Fconnect_consumer%2F&claims=%7B%22userinfo%22%3A+%7B%22name%22%3A+%7B%22essential%22%3A+true%7D%7D%7D&scope=openid
2.094256 --> BODY: None
2.511634 <-- code=eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiZGZMeXc5VjlxNU1DcHFzRXpObE5OdnpLVGhrVzJSOXMiLCJleHAiOjE0Mjg2MzY4OTIsImlhdCI6MTQyODYzMzI5MiwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.&state=OHHBiS50E3I9112k
2.511916 AuthorizationResponse: {
  "code": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiZGZMeXc5VjlxNU1DcHFzRXpObE5OdnpLVGhrVzJSOXMiLCJleHAiOjE0Mjg2MzY4OTIsImlhdCI6MTQyODYzMzI5MiwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.",
  "state": "OHHBiS50E3I9112k"
}
2.512222 ------------ AccessTokenRequest ------------
2.512536 --> URL: https://openid.uni-id.info/express/script/connect/token_req/endpoint.seam
2.512543 --> BODY: code=eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiZGZMeXc5VjlxNU1DcHFzRXpObE5OdnpLVGhrVzJSOXMiLCJleHAiOjE0Mjg2MzY4OTIsImlhdCI6MTQyODYzMzI5MiwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60239%2Fauthz_cb
2.512553 --> HEADERS: {'Content-type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic aHR0cHM6Ly9vcGVuaWQudW5pLWlkLmluZm8vY29ubmVjdF9jb25zdW1lci86Y2xpZW50X3NlY3JldA=='}
3.608843 <-- STATUS: 200
3.608887 <-- BODY: {"scope":"openid","expires_in":1799,"token_type":"bearer","refresh_token":"eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiR2FnVnVFbUl4OEFobHlyYUxMVXpPWU1SOGNES1NXWk0iLCJleHAiOjE0Mjg2NTEyOTQsImlhdCI6MTQyODYzMzI5NCwidG9rZW5UeXBlIjoicmVmcmVzaF90b2tlbiIsInZlciI6IjEuMCJ9.","access_token":"eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiR2FnVnVFbUl4OEFobHlyYUxMVXpPWU1SOGNES1NXWk0iLCJleHAiOjE0Mjg2MzUwOTQsImlhdCI6MTQyODYzMzI5NCwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.","id_token":"eyJhbGciOiJSUzI1NiIsImtpZCI6ImtleTEiLCJ0eXAiOiJKV1QifQ.eyJhdWQiOiJodHRwczovL29wZW5pZC51bmktaWQuaW5mby9jb25uZWN0X2NvbnN1bWVyLyIsImV4cCI6MTQyODYzNTA5NCwiaWF0IjoxNDI4NjMzMjk0LCJpc3MiOiJodHRwczovL29wZW5pZC51bmktaWQuaW5mby9leHByZXNzLyIsInN1YiI6IjI4Nll3YndtdXNIYnpwakJ2Q2E2d1NaMHlHWFRhQ0tMIiwidXNlcl9pZCI6IjI4Nll3YndtdXNIYnpwakJ2Q2E2d1NaMHlHWFRhQ0tMIn0.pSJV9glBkbs38lbMw52f2eQMcU6FBI7bcxMKDBqO8pVu9YJdos3yZC1EBgQ4BIstW2zyrW4JUeOCjDijhF08hBBKde8UNDP8boE4mCsUwut0EhQZjhYBJVBRHNtMiGvz0no9gB3koTizD7J5M73LYTvKnT4tgkBbFCdNQSPGLw8"}
4.612802 AccessTokenResponse: {
  "access_token": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiR2FnVnVFbUl4OEFobHlyYUxMVXpPWU1SOGNES1NXWk0iLCJleHAiOjE0Mjg2MzUwOTQsImlhdCI6MTQyODYzMzI5NCwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.",
  "expires_in": 1799,
  "id_token": {
    "claims": {
      "aud": [
        "https://openid.uni-id.info/connect_consumer/"
      ],
      "exp": 1428635094,
      "iat": 1428633294,
      "iss": "https://openid.uni-id.info/express/",
      "sub": "286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL",
      "user_id": "286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL"
    },
    "jws header parameters": {
      "alg": "RS256",
      "kid": "key1",
      "typ": "JWT"
    }
  },
  "refresh_token": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiR2FnVnVFbUl4OEFobHlyYUxMVXpPWU1SOGNES1NXWk0iLCJleHAiOjE0Mjg2NTEyOTQsImlhdCI6MTQyODYzMzI5NCwidG9rZW5UeXBlIjoicmVmcmVzaF90b2tlbiIsInZlciI6IjEuMCJ9.",
  "scope": "openid",
  "token_type": "bearer"
}
4.614072 ------------ UserInfoRequest ------------
4.614334 --> URL: https://openid.uni-id.info/express/script/connect/userinfo/endpoint.seam
4.614341 --> BODY: None
4.614352 --> HEADERS: {'Authorization': u'Bearer eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiR2FnVnVFbUl4OEFobHlyYUxMVXpPWU1SOGNES1NXWk0iLCJleHAiOjE0Mjg2MzUwOTQsImlhdCI6MTQyODYzMzI5NCwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.'}
5.701254 <-- STATUS: 200
5.701303 Available verification keys: [(u'key1', u'RSA')]
5.701327 Available decryption keys: [('a0', 'RSA'), ('a3', 'EC')]
5.701347 <-- BODY: {"sub":"286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL","name":null}
5.701770 UserInfo: {
  "name": null,
  "sub": "286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL"
}
5.702787 ==== END ====

Result

PASSED