Test info

Profile: {'openid-configuration': 'no-config', 'response_type': 'code', 'crypto': 'none', 'registration': 'static'}
Timestamp: 2016-02-03T05:12:44Z
Test description: Claims request with essential name claim [Basic, Implicit, Hybrid]
Test ID: OP-claims-essential
Issuer: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/

Test output


__AuthorizationRequest:pre__
[check-response-type]
	status: OK
	description: Checks that the asked for response type are among the supported
[check-endpoint]
	status: OK
	description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[check-http-response]
	status: OK
	description: Checks that the HTTP response status is within the 200 or 300 range
[verify-claims]
	status: WARNING
	description: Verifies that the UserInfo returned is consistent with what was asked for
	info: Missing required claim: name, Unexpected claims in response: [u'iss', u'aud']
__X:==== END ====__

Trace output


0.000442 ------------ AuthorizationRequest ------------
0.001041 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/AuthorizationEndpoint?state=0qptC5Z8cp52PFmY&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60347%2Fauthz_cb&response_type=code&client_id=CLIANT9999&claims=%7B%22userinfo%22%3A+%7B%22name%22%3A+%7B%22essential%22%3A+true%7D%7D%7D&scope=openid
0.001049 --> BODY: None
34.355827 <-- state=0qptC5Z8cp52PFmY&code=63lBpnHzwepKGISq
34.356261 AuthorizationResponse: {
  "code": "63lBpnHzwepKGISq",
  "state": "0qptC5Z8cp52PFmY"
}
34.356634 ------------ AccessTokenRequest ------------
34.357024 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/AuthorizationCode/
34.357030 --> BODY: code=63lBpnHzwepKGISq&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60347%2Fauthz_cb
34.357043 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic Q0xJQU5UOTk5OTpjbGlhbnRfOTk5OQ=='}
34.828075 <-- STATUS: 200
34.828123 <-- BODY: {"scope":"","expires_in":3600,"token_type":"Bearer","id_token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJub25lIn0.eyJleHAiOjE0NTQ0Nzk5NjIsImF6cCI6IkNMSUFOVDk5OTkiLCJzdWIiOiJzZWlub3UxMjg0NiIsImF1ZCI6IkNMSUFOVDk5OTkiLCJpc3MiOiJodHRwczpcL1wvZHVhbHN0YWNrLjNhLXRlc3QtMTI1NjkyMjUzMy5hcC1ub3J0aGVhc3QtMS5lbGIuYW1hem9uYXdzLmNvbTo4MDgxXC8iLCJpYXQiOjE0NTQ0NzYzNjJ9.","access_token":"vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi"}
34.830120 AccessTokenResponse: {
  "access_token": "vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi",
  "expires_in": 3600,
  "id_token": {
    "claims": {
      "aud": [
        "CLIANT9999"
      ],
      "azp": "CLIANT9999",
      "exp": 1454479962,
      "iat": 1454476362,
      "iss": "https://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/",
      "sub": "seinou12846"
    },
    "jws header parameters": {
      "alg": "none",
      "typ": "JWT"
    }
  },
  "token_type": "Bearer"
}
34.841131 ------------ UserInfoRequest ------------
34.841499 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/UserInfoEndpoint/
34.841505 --> BODY: None
34.841516 --> HEADERS: {'Authorization': u'Bearer vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi'}
35.270110 <-- STATUS: 200
35.691140 Available verification keys: [(u'2011-04-29', u'RSA')]
35.691196 Available decryption keys: [('a0', 'RSA'), ('a3', 'EC')]
35.691218 <-- BODY: {"sub":"seinou12846","iss":"https:\/\/dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081\/","aud":"CLIANT9999"}
35.692261 UserInfo: {
  "aud": "CLIANT9999",
  "iss": "https://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/",
  "sub": "seinou12846"
}
35.703241 ==== END ====

Result

WARNING
Warnings:
Missing required claim: name, Unexpected claims in response: [u'iss', u'aud']