Test info
Profile: {'openid-configuration': 'config', 'response_type': 'code', 'crypto': 'sign', 'registration': 'static'}
Timestamp: 2016-10-13T15:45:31Z
Test description: Scope requesting email claims [Basic, Implicit, Hybrid]
Test ID: OP-scope-email
Issuer: https://login-int.norton.com/sso/oidc1/token
Test output
__AuthorizationRequest:pre__
[check-response-type]
status: OK
description: Checks that the asked for response type are among the supported
[check-endpoint]
status: OK
description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[check-http-response]
status: OK
description: Checks that the HTTP response status is within the 200 or 300 range
[verify-response]
status: OK
description: Checks that the last response was one of a possible set of OpenID Connect Responses
[verify-scopes]
status: WARNING
description: Verifies that the claims corresponding to the requested scopes are returned
info: The following claims were missing from the returned information: ['email', 'email_verified']
__X:==== END ====__
Trace output
0.000297 ------------ DiscoveryRequest ------------
0.000312 Provider info discover from 'https://login-int.norton.com/sso/oidc1/token'
0.000319 --> URL: https://login-int.norton.com/sso/oidc1/token/.well-known/openid-configuration
0.349109 ProviderConfigurationResponse: {
"authorization_endpoint": "https://login-int.norton.com/sso/idp/OIDC",
"claim_types_supported": [
"normal",
"aggregated"
],
"claims_parameter_supported": false,
"claims_supported": [
"birthdate",
"email_verified",
"address",
"gender",
"given_name",
"middle_name",
"locale",
"IdPData",
"SSN",
"LinkChildGUIDS",
"CustomAttributes",
"NortonGUID",
"updated_at",
"UserId",
"name",
"phone_number",
"PartnerUserId",
"family_name",
"email",
"VipTokenId"
],
"display_values_supported": [
"page"
],
"grant_types_supported": [
"authorization_code",
"refresh_token",
"symc_fed_idp_authorization_code",
"symc_fed_idp_access_token"
],
"id_token_signing_alg_values_supported": [
"RS256",
"RS384",
"RS512"
],
"issuer": "https://login-int.norton.com/sso/oidc1/token",
"jwks_uri": "https://login-int.norton.com/sso/oidc1/token/jwks",
"request_parameter_supported": false,
"request_uri_parameter_supported": false,
"require_request_uri_registration": false,
"response_modes_supported": [
"query"
],
"response_types_supported": [
"code"
],
"scopes_supported": [
"idsc_write",
"address",
"phone",
"openid",
"profile",
"nms_device_locate",
"idsc_read",
"nms_device_lock",
"email"
],
"subject_types_supported": [
"pairwise"
],
"token_endpoint": "https://login-int.norton.com/sso/oidc1/tokens",
"token_endpoint_auth_methods_supported": [
"client_secret_post",
"client_secret_basic"
],
"userinfo_endpoint": "https://login-int.norton.com/sso/oidc1/userinfo",
"userinfo_signing_alg_values_supported": [
"RS256",
"RS384",
"RS512"
],
"version": "3.0"
}
0.687654 JWKS: {
"keys": [
{
"alg": "RS256",
"e": "AQAB",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3",
"kty": "RSA",
"n": "gbJV5FqqKDWQSx5Jt9_-EYpwYZc-qcTxsdYLI-Y3qTj4fXHtxBWa9-Q_yf2AiJXOhCtly18DMvS3TmeBUDVad2pdowYyTCpwXlYdsYzcFybQSpQ3objr7yRFCIfKl9BM8dliLLsJxt_sjj7fvA9jl21QUtXjL1-Rbls9lI0Z-SnY43AjITAXwg3yPdJxDrwLQa7mQjrIsYtiQc_NmBnAtfJD5FMz4GmoTS_PN5giFp5pHYM9PFrETIAHrC3Wx1IxDwTI3SGiypMtyObaKnNuMFu1W6XeZuBTyTKKE4rIiV9YwlOGa2O1Cg-kCzmJyFjnf-BYp3-sQhUtnxgz4j0Q0w",
"use": "sig"
}
]
}
0.700783 ------------ AuthorizationRequest ------------
0.701185 --> URL: https://login-int.norton.com/sso/idp/OIDC?scope=openid+email&state=bfdmxe8ABGFOsfcN&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb&response_type=code&client_id=oidc-conformance-client-id
0.701193 --> BODY: None
0.986716 <-- code=AC-uNmIRAjs_QWGuS0kSw_Ii7rxl0up-G30VLNTGNBvsc8-157beb82fd8-int&state=bfdmxe8ABGFOsfcN
0.987108 AuthorizationResponse: {
"code": "AC-uNmIRAjs_QWGuS0kSw_Ii7rxl0up-G30VLNTGNBvsc8-157beb82fd8-int",
"state": "bfdmxe8ABGFOsfcN"
}
0.987441 ------------ AccessTokenRequest ------------
0.987783 --> URL: https://login-int.norton.com/sso/oidc1/tokens
0.987789 --> BODY: code=AC-uNmIRAjs_QWGuS0kSw_Ii7rxl0up-G30VLNTGNBvsc8-157beb82fd8-int&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb
0.987802 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQ6b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtc2VjcmV0'}
6.535368 <-- STATUS: 200
6.535445 <-- BODY: {"access_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM1MzAsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzMyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1MzMwLCJpYXQiOjE0NzYzNzM1MzAsImp0aSI6IjMwZTBkN2MxLTUzODktNDEyMS1iNDU3LTQ0MmJjNDI4NDA4OCJ9.K2v-SKJ4ch-IWRlGIE94KLQMO9l1b61Fcrw6FMu8XyLSv7JeWhPwkO35dz4EZ777bYU4h4vNgrE99Cjm7dCviP_iJemG8PGNY_ZJaR193aMgh-Yf2tBOa6aY2uFUpyuEHnO-e-nDeAhLaOhQIU-1GQ_nPwyDp0rcBp0ITyuilnDPBXCeRFxxCwg62yUdIbE9xL4XAQcL-L7OX3kCelzo2892913DIAsEG1LwmgyW-jmzTyV5U_hBa-XzGSdat_6vvDq-U7RiAAuN7K1GvHYTXhQbkgPJ7dMS5L5PrtKOCx-VhTwMDZz_NIhUyLEemP60P-I789sjGXnNhLMMyKCIVA","id_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzUzMCwiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJhdXRoX3RpbWUiOjE0NzYzNzMzMjEsImlzcyI6Imh0dHBzOlwvXC9sb2dpbi1pbnQubm9ydG9uLmNvbVwvc3NvXC9vaWRjMVwvdG9rZW4iLCJleHAiOjE0NzYzNzUzMzAsImlhdCI6MTQ3NjM3MzUzMCwibm9uY2UiOiIwNzBlMDg2YS1hMTAzLTQwMzAtYWVjMS05NGVhYTQ1OTljNDciLCJqdGkiOiJhOGQ4ODZmZS01YTRjLTQyMDUtOTIyNS03YzQ0Y2NiYjlhMzkifQ.RKSO-_928Fkg3oHS2GxPgmx2evuKagooJNDAy6jhOklCWuYqjOftNkZjtvJxuvapbp75XDbuLg809IaiU_ip3lJKkbG-Sew0Cy1PvtpPG2nGBCeTfytdETMVVX5uIpw6YbfaWreqeG-t3ltTf6uNCnOrRE32u8sJ6Q5qXaXaozR3DGPU06G6fq-BFmbXZdH55pe1SMfEx4ZuKY4DCdXlI1hKyj1ZTwn-lEHilfN9llnNJsR0FTjDzkq8RM7wWmmzeujbr3EcVUORF5BBsUmOyVhQeD2hdR6S__nQEes_QGNID3FRHpkN3-F3rXiyDC1W-zAec2htd9j0V2kto3mALQ","token_type":"Bearer","expires_in":1800}
6.976080 AccessTokenResponse: {
"access_token": "eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM1MzAsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzMyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1MzMwLCJpYXQiOjE0NzYzNzM1MzAsImp0aSI6IjMwZTBkN2MxLTUzODktNDEyMS1iNDU3LTQ0MmJjNDI4NDA4OCJ9.K2v-SKJ4ch-IWRlGIE94KLQMO9l1b61Fcrw6FMu8XyLSv7JeWhPwkO35dz4EZ777bYU4h4vNgrE99Cjm7dCviP_iJemG8PGNY_ZJaR193aMgh-Yf2tBOa6aY2uFUpyuEHnO-e-nDeAhLaOhQIU-1GQ_nPwyDp0rcBp0ITyuilnDPBXCeRFxxCwg62yUdIbE9xL4XAQcL-L7OX3kCelzo2892913DIAsEG1LwmgyW-jmzTyV5U_hBa-XzGSdat_6vvDq-U7RiAAuN7K1GvHYTXhQbkgPJ7dMS5L5PrtKOCx-VhTwMDZz_NIhUyLEemP60P-I789sjGXnNhLMMyKCIVA",
"expires_in": 1800,
"id_token": {
"claims": {
"aud": [
"oidc-conformance-client-id"
],
"auth_time": 1476373321,
"azp": "oidc-conformance-client-id",
"exp": 1476375330,
"iat": 1476373530,
"iss": "https://login-int.norton.com/sso/oidc1/token",
"jti": "a8d886fe-5a4c-4205-9225-7c44ccbb9a39",
"nbf": 1476373530,
"nonce": "070e086a-a103-4030-aec1-94eaa4599c47",
"sub": "503371910290583957085147024123389456"
},
"jws header parameters": {
"alg": "RS256",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
}
},
"token_type": "Bearer"
}
6.988504 ------------ UserInfoRequest ------------
6.988790 --> URL: https://login-int.norton.com/sso/oidc1/userinfo
6.988796 --> BODY: None
6.988814 --> HEADERS: {'Authorization': u'Bearer eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM1MzAsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzMyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1MzMwLCJpYXQiOjE0NzYzNzM1MzAsImp0aSI6IjMwZTBkN2MxLTUzODktNDEyMS1iNDU3LTQ0MmJjNDI4NDA4OCJ9.K2v-SKJ4ch-IWRlGIE94KLQMO9l1b61Fcrw6FMu8XyLSv7JeWhPwkO35dz4EZ777bYU4h4vNgrE99Cjm7dCviP_iJemG8PGNY_ZJaR193aMgh-Yf2tBOa6aY2uFUpyuEHnO-e-nDeAhLaOhQIU-1GQ_nPwyDp0rcBp0ITyuilnDPBXCeRFxxCwg62yUdIbE9xL4XAQcL-L7OX3kCelzo2892913DIAsEG1LwmgyW-jmzTyV5U_hBa-XzGSdat_6vvDq-U7RiAAuN7K1GvHYTXhQbkgPJ7dMS5L5PrtKOCx-VhTwMDZz_NIhUyLEemP60P-I789sjGXnNhLMMyKCIVA'}
7.365928 <-- STATUS: 200
7.366000 Available verification keys: [(u'02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3', u'RSA')]
7.366035 Available decryption keys: [('a0', 'RSA'), ('a3', 'EC')]
7.366085 <-- BODY: eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzUzMCwiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1MzMwLCJpYXQiOjE0NzYzNzM1MzB9.DW9rbHZEl9-3ZaEEjqEsuopCJJApMJW4HsSjXYUvpJgYO5Y5BT5KyQT9flXor5gxsjG7TYRMjVSU0-kLJFRVEds1GmTuRR61f1e10RSrHlaY64dO1nD34FKsAc_RklwNn9PSj09EC-0YVo_FotN936yDfdaPiJe3JJE4nP-c4Q5uQNcmu5GDT_0FaK_cOfxqgng9ZHRs79yKjgz_zDd8F98ioO0SrNfWmJNBw_LlDlwtPkgLesStlDcOQCZPx3QFVpqH848lBwTJnLESyYbymtsNSdmz3XaZIKjQhQVVk2gY86cZ3BnOcMHZ5r5MtF3AmdEIgmwOHkA87R4_wIb6og
7.372924 JWT header:
7.372942 UserInfo: {
"claims": {
"aud": "oidc-conformance-client-id",
"azp": "oidc-conformance-client-id",
"exp": 1476375330,
"iat": 1476373530,
"iss": "https://login-int.norton.com/sso/oidc1/token",
"nbf": 1476373530,
"sub": "503371910290583957085147024123389456"
},
"jws header parameters": {
"alg": "RS256",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
}
}
7.385484 ==== END ====
Result
WARNING
Warnings:
The following claims were missing from the returned information: ['email', 'email_verified']