Test info

Profile: {'openid-configuration': 'config', 'response_type': 'code', 'crypto': 'sign', 'registration': 'static'}
Timestamp: 2016-10-13T15:50:28Z
Test description: Requesting ID Token with max_age=10000 seconds restriction [Basic, Implicit, Hybrid]
Test ID: OP-Req-max_age=10000
Issuer: https://login-int.norton.com/sso/oidc1/token

Test output


__AuthorizationRequest:pre__
[check-response-type]
	status: OK
	description: Checks that the asked for response type are among the supported
[check-endpoint]
	status: OK
	description: Checks that the necessary endpoint exists at a server
__AuthorizationRequest:pre__
[check-response-type]
	status: OK
	description: Checks that the asked for response type are among the supported
[check-endpoint]
	status: OK
	description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[verify-response]
	status: OK
	description: Checks that the last response was one of a possible set of OpenID Connect Responses
[claims-check]
	status: OK
	description: Checks if specific claims is present or not
[auth_time-check]
	status: OK
	description: Check that the auth_time returned in the ID Token is in the expected range.
[same-authn]
	status: OK
	description: Verifies that the same authentication was used twice in the flow.
__X:==== END ====__

Trace output


0.000299 ------------ DiscoveryRequest ------------
0.000313 Provider info discover from 'https://login-int.norton.com/sso/oidc1/token'
0.000319 --> URL: https://login-int.norton.com/sso/oidc1/token/.well-known/openid-configuration
0.456428 ProviderConfigurationResponse: {
  "authorization_endpoint": "https://login-int.norton.com/sso/idp/OIDC",
  "claim_types_supported": [
    "normal",
    "aggregated"
  ],
  "claims_parameter_supported": false,
  "claims_supported": [
    "birthdate",
    "email_verified",
    "address",
    "gender",
    "given_name",
    "middle_name",
    "locale",
    "IdPData",
    "SSN",
    "LinkChildGUIDS",
    "CustomAttributes",
    "NortonGUID",
    "updated_at",
    "UserId",
    "name",
    "phone_number",
    "PartnerUserId",
    "family_name",
    "email",
    "VipTokenId"
  ],
  "display_values_supported": [
    "page"
  ],
  "grant_types_supported": [
    "authorization_code",
    "refresh_token",
    "symc_fed_idp_authorization_code",
    "symc_fed_idp_access_token"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512"
  ],
  "issuer": "https://login-int.norton.com/sso/oidc1/token",
  "jwks_uri": "https://login-int.norton.com/sso/oidc1/token/jwks",
  "request_parameter_supported": false,
  "request_uri_parameter_supported": false,
  "require_request_uri_registration": false,
  "response_modes_supported": [
    "query"
  ],
  "response_types_supported": [
    "code"
  ],
  "scopes_supported": [
    "idsc_write",
    "address",
    "phone",
    "openid",
    "profile",
    "nms_device_locate",
    "idsc_read",
    "nms_device_lock",
    "email"
  ],
  "subject_types_supported": [
    "pairwise"
  ],
  "token_endpoint": "https://login-int.norton.com/sso/oidc1/tokens",
  "token_endpoint_auth_methods_supported": [
    "client_secret_post",
    "client_secret_basic"
  ],
  "userinfo_endpoint": "https://login-int.norton.com/sso/oidc1/userinfo",
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512"
  ],
  "version": "3.0"
}
0.895794 JWKS: {
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3",
      "kty": "RSA",
      "n": "gbJV5FqqKDWQSx5Jt9_-EYpwYZc-qcTxsdYLI-Y3qTj4fXHtxBWa9-Q_yf2AiJXOhCtly18DMvS3TmeBUDVad2pdowYyTCpwXlYdsYzcFybQSpQ3objr7yRFCIfKl9BM8dliLLsJxt_sjj7fvA9jl21QUtXjL1-Rbls9lI0Z-SnY43AjITAXwg3yPdJxDrwLQa7mQjrIsYtiQc_NmBnAtfJD5FMz4GmoTS_PN5giFp5pHYM9PFrETIAHrC3Wx1IxDwTI3SGiypMtyObaKnNuMFu1W6XeZuBTyTKKE4rIiV9YwlOGa2O1Cg-kCzmJyFjnf-BYp3-sQhUtnxgz4j0Q0w",
      "use": "sig"
    }
  ]
}
0.907777 ------------ AuthorizationRequest ------------
0.908182 --> URL: https://login-int.norton.com/sso/idp/OIDC?scope=openid&state=JL7WTHX5KhdNva80&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb&response_type=code&client_id=oidc-conformance-client-id
0.908190 --> BODY: None
1.511997 <-- code=AC-yRL801qnG0dqAhwQzc35fLEdVEap9fE_A2LoHQ11GGg-157bebccc2b-int&state=JL7WTHX5KhdNva80
1.512395 AuthorizationResponse: {
  "code": "AC-yRL801qnG0dqAhwQzc35fLEdVEap9fE_A2LoHQ11GGg-157bebccc2b-int",
  "state": "JL7WTHX5KhdNva80"
}
1.512740 ------------ AccessTokenRequest ------------
1.513100 --> URL: https://login-int.norton.com/sso/oidc1/tokens
1.513106 --> BODY: code=AC-yRL801qnG0dqAhwQzc35fLEdVEap9fE_A2LoHQ11GGg-157bebccc2b-int&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb
1.513118 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQ6b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtc2VjcmV0'}
1.957558 <-- STATUS: 200
1.957638 <-- BODY: {"access_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM4MjcsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NjI3LCJpYXQiOjE0NzYzNzM4MjcsImp0aSI6IjQ0MDZiOWVhLTNkMjMtNGQ3My1hNjdjLWIxY2RjYTU4NDM2MSJ9.a9jCZ5A20aEdovL3msERap4hySQQ0xmsJTPSYzgQB6Soqt-53k9sI9Ktufrj0bY8v9jrnbpD-fR-xLnP8lZzWAG7UA0ONgVS_0mwS1K1s0pO6CwT81hkRV-Qnx37dEqOcQP6Nhus9NiZxwRH6G1kUonDxoxHFODfb2S9cAxpF1iey0jNl-idB5ClvdwUwVnl8xKOFhFCd--UAE6zVcuO3uNsEIZboRM6eT_YpYIdLHm5cNXBUsaNvxEKy1GjLCsxzr9a9Ijuw9GO808ARwSsOQIpgrqoapQJidtCWhqfKo3E_Ektrz2Wd_MOHNsJPzDUtTFpcPpvG_jOjlxgiCa8bA","id_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzgyNywiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJhdXRoX3RpbWUiOjE0NzYzNzM3MjEsImlzcyI6Imh0dHBzOlwvXC9sb2dpbi1pbnQubm9ydG9uLmNvbVwvc3NvXC9vaWRjMVwvdG9rZW4iLCJleHAiOjE0NzYzNzU2MjcsImlhdCI6MTQ3NjM3MzgyNywibm9uY2UiOiIyZWZlM2FjNC0wN2E2LTRjYjAtYjIxYS1kOThhMzdjNzc4YWEiLCJqdGkiOiIzMDg5OTE3Yy05YjJlLTQ1MWItODA4OC0xZGRjYzExMzlmY2UifQ.aKF-tvQJA284qYxvwsmayAqepOQ0ypvlNbvd5o0vaewMMVukVPatcBN1yMARrqJB3o5lPgVzvxJb8ZN6MLFJucYvRZYFhgVsDFF1hnJ3YVtruPRwxpT2sz8gU9h9xlSmLpFFBKitIHKm8Zv3hiJ2oDIGN1ZDRJXeyzW5A1jhxZxtgkhtX2rV4u5m8nIpQd8QqGSp-lPAkJ3guXUOqOunGZIQLq3q6EtJXpDfR8pDEn_FE_AdZsdjz8Fhq6o0Y_ALWRRMNQpLHe5bI2OigFCq3oPbW5ocrRjd-rkWLmvSZZG9qO1W5BoVu6iDJ_i3PvAEhuJFZ6f162qVK-TZJ8y3Bg","token_type":"Bearer","expires_in":1800}
2.391220 AccessTokenResponse: {
  "access_token": "eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM4MjcsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NjI3LCJpYXQiOjE0NzYzNzM4MjcsImp0aSI6IjQ0MDZiOWVhLTNkMjMtNGQ3My1hNjdjLWIxY2RjYTU4NDM2MSJ9.a9jCZ5A20aEdovL3msERap4hySQQ0xmsJTPSYzgQB6Soqt-53k9sI9Ktufrj0bY8v9jrnbpD-fR-xLnP8lZzWAG7UA0ONgVS_0mwS1K1s0pO6CwT81hkRV-Qnx37dEqOcQP6Nhus9NiZxwRH6G1kUonDxoxHFODfb2S9cAxpF1iey0jNl-idB5ClvdwUwVnl8xKOFhFCd--UAE6zVcuO3uNsEIZboRM6eT_YpYIdLHm5cNXBUsaNvxEKy1GjLCsxzr9a9Ijuw9GO808ARwSsOQIpgrqoapQJidtCWhqfKo3E_Ektrz2Wd_MOHNsJPzDUtTFpcPpvG_jOjlxgiCa8bA",
  "expires_in": 1800,
  "id_token": {
    "claims": {
      "aud": [
        "oidc-conformance-client-id"
      ],
      "auth_time": 1476373721,
      "azp": "oidc-conformance-client-id",
      "exp": 1476375627,
      "iat": 1476373827,
      "iss": "https://login-int.norton.com/sso/oidc1/token",
      "jti": "3089917c-9b2e-451b-8088-1ddcc1139fce",
      "nbf": 1476373827,
      "nonce": "2efe3ac4-07a6-4cb0-b21a-d98a37c778aa",
      "sub": "503371910290583957085147024123389456"
    },
    "jws header parameters": {
      "alg": "RS256",
      "kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
    }
  },
  "token_type": "Bearer"
}
2.403595 ------------ AuthorizationRequest ------------
2.403997 --> URL: https://login-int.norton.com/sso/idp/OIDC?max_age=10000&state=SKNMOGu6pa3bBy6H&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb&response_type=code&client_id=oidc-conformance-client-id&scope=openid
2.404005 --> BODY: None
2.709575 <-- code=AC-SVoFMD_Mcj8TdRh8mnDZPMBna05891eiBJsOrh8q4vY-157bebcd0d2-int&state=SKNMOGu6pa3bBy6H
2.709941 AuthorizationResponse: {
  "code": "AC-SVoFMD_Mcj8TdRh8mnDZPMBna05891eiBJsOrh8q4vY-157bebcd0d2-int",
  "state": "SKNMOGu6pa3bBy6H"
}
2.710258 ------------ AccessTokenRequest ------------
2.710587 --> URL: https://login-int.norton.com/sso/oidc1/tokens
2.710593 --> BODY: code=AC-SVoFMD_Mcj8TdRh8mnDZPMBna05891eiBJsOrh8q4vY-157bebcd0d2-int&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb
2.710604 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQ6b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtc2VjcmV0'}
3.168730 <-- STATUS: 200
3.168811 <-- BODY: {"access_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM4MjgsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NjI4LCJpYXQiOjE0NzYzNzM4MjgsImp0aSI6IjFhMmQxM2Q1LTFlZGItNDdjYS04MzVmLTU1ODJhYzg5ZGZiMCJ9.foXAVl4PtyUAewNNns9z-hakVN5maxgV_dTVMa6NJCSmuH5dUU05DbLljBTSmL3JH7uajR-uLfp4U2lUe8uNNrPe-GuyIRE3I9TBki62mV6A28gKIC4qb4-0m2ziiGoQR2tZqg8wSxmk43mEIaqRgmIeXX5L3FdBskeHRaAQZGg2dvG8U-Cee3K3LCly8iCqXHlQLJFEqJx0tr6VtcumzUQ5_Hr4yiC1fiFSli6lKWSBWTgqu6636jJ9sLpYIGgUz22zslpvfcekzygq5jvPXaLb-WffuEZRnn0jwRfJuac7jnRyZo0n8lBCqa0z_yGAAVx6GZKa9WsOhjalODp33Q","id_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzgyOCwiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJhdXRoX3RpbWUiOjE0NzYzNzM3MjEsImlzcyI6Imh0dHBzOlwvXC9sb2dpbi1pbnQubm9ydG9uLmNvbVwvc3NvXC9vaWRjMVwvdG9rZW4iLCJleHAiOjE0NzYzNzU2MjgsImlhdCI6MTQ3NjM3MzgyOCwibm9uY2UiOiJjMWZhNmNlMi0wZjhhLTRiZGItOTQzMC0zMDBjOTcxZDE1ZDgiLCJqdGkiOiIyZDk5OTliZS1iNzcyLTRmMzQtOGUxZC0wZmJhYTgwM2E2ZTEifQ.dh6mn8QaqU03uKJj0fZMENKv1E-LocZU_NVCm4uIUPnIgwpmxXlLPJ-dhv5Mr2EusvdCTVAGGBnCAtH8DEKLEa4-Mvj3_1cMHs7VLTOx9WgRxIXLI7JaOsfkx9jNSj6-Bml_1FUEU9o7L109odLJtSwNSP0x14yir0zfpYQGC5sp9Q-_TYC8FNhY506pfjpG5b6XrRGRIuYD2NFvbAlsYWRDKPYGmBcNy3fmjBaxVvlabfjDuf9dGeplZc8VedxyURFzqVrC06IMhuGvlqYDt8Bl1koNvCEnUlpEZe5awEVM__EBap8qwrAraA2jCV1X0B7-cyhQFh7GJQADN8QaVw","token_type":"Bearer","expires_in":1800}
3.177084 AccessTokenResponse: {
  "access_token": "eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM4MjgsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NjI4LCJpYXQiOjE0NzYzNzM4MjgsImp0aSI6IjFhMmQxM2Q1LTFlZGItNDdjYS04MzVmLTU1ODJhYzg5ZGZiMCJ9.foXAVl4PtyUAewNNns9z-hakVN5maxgV_dTVMa6NJCSmuH5dUU05DbLljBTSmL3JH7uajR-uLfp4U2lUe8uNNrPe-GuyIRE3I9TBki62mV6A28gKIC4qb4-0m2ziiGoQR2tZqg8wSxmk43mEIaqRgmIeXX5L3FdBskeHRaAQZGg2dvG8U-Cee3K3LCly8iCqXHlQLJFEqJx0tr6VtcumzUQ5_Hr4yiC1fiFSli6lKWSBWTgqu6636jJ9sLpYIGgUz22zslpvfcekzygq5jvPXaLb-WffuEZRnn0jwRfJuac7jnRyZo0n8lBCqa0z_yGAAVx6GZKa9WsOhjalODp33Q",
  "expires_in": 1800,
  "id_token": {
    "claims": {
      "aud": [
        "oidc-conformance-client-id"
      ],
      "auth_time": 1476373721,
      "azp": "oidc-conformance-client-id",
      "exp": 1476375628,
      "iat": 1476373828,
      "iss": "https://login-int.norton.com/sso/oidc1/token",
      "jti": "2d9999be-b772-4f34-8e1d-0fbaa803a6e1",
      "nbf": 1476373828,
      "nonce": "c1fa6ce2-0f8a-4bdb-9430-300c971d15d8",
      "sub": "503371910290583957085147024123389456"
    },
    "jws header parameters": {
      "alg": "RS256",
      "kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
    }
  },
  "token_type": "Bearer"
}
3.189365 ==== END ====

Result

PASSED