Test info
Profile: {'openid-configuration': 'config', 'response_type': 'code', 'crypto': 'sign', 'registration': 'static'}
Timestamp: 2016-10-13T15:52:03Z
Test description: Trying to use authorization code twice should result in revoking previously issued access tokens [Basic, Hybrid]
Test ID: OP-OAuth-2nd-Revokes
Issuer: https://login-int.norton.com/sso/oidc1/token
Test output
__AuthorizationRequest:pre__
[check-response-type]
status: OK
description: Checks that the asked for response type are among the supported
[check-endpoint]
status: OK
description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[verify-response]
status: WARNING
description: Checks that the last response was one of a possible set of OpenID Connect Responses
info: Got a OpenIDSchema response
__X:==== END ====__
Trace output
0.000321 ------------ DiscoveryRequest ------------
0.000335 Provider info discover from 'https://login-int.norton.com/sso/oidc1/token'
0.000341 --> URL: https://login-int.norton.com/sso/oidc1/token/.well-known/openid-configuration
0.465946 ProviderConfigurationResponse: {
"authorization_endpoint": "https://login-int.norton.com/sso/idp/OIDC",
"claim_types_supported": [
"normal",
"aggregated"
],
"claims_parameter_supported": false,
"claims_supported": [
"birthdate",
"email_verified",
"address",
"gender",
"given_name",
"middle_name",
"locale",
"IdPData",
"SSN",
"LinkChildGUIDS",
"CustomAttributes",
"NortonGUID",
"updated_at",
"UserId",
"name",
"phone_number",
"PartnerUserId",
"family_name",
"email",
"VipTokenId"
],
"display_values_supported": [
"page"
],
"grant_types_supported": [
"authorization_code",
"refresh_token",
"symc_fed_idp_authorization_code",
"symc_fed_idp_access_token"
],
"id_token_signing_alg_values_supported": [
"RS256",
"RS384",
"RS512"
],
"issuer": "https://login-int.norton.com/sso/oidc1/token",
"jwks_uri": "https://login-int.norton.com/sso/oidc1/token/jwks",
"request_parameter_supported": false,
"request_uri_parameter_supported": false,
"require_request_uri_registration": false,
"response_modes_supported": [
"query"
],
"response_types_supported": [
"code"
],
"scopes_supported": [
"idsc_write",
"address",
"phone",
"openid",
"profile",
"nms_device_locate",
"idsc_read",
"nms_device_lock",
"email"
],
"subject_types_supported": [
"pairwise"
],
"token_endpoint": "https://login-int.norton.com/sso/oidc1/tokens",
"token_endpoint_auth_methods_supported": [
"client_secret_post",
"client_secret_basic"
],
"userinfo_endpoint": "https://login-int.norton.com/sso/oidc1/userinfo",
"userinfo_signing_alg_values_supported": [
"RS256",
"RS384",
"RS512"
],
"version": "3.0"
}
0.824064 JWKS: {
"keys": [
{
"alg": "RS256",
"e": "AQAB",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3",
"kty": "RSA",
"n": "gbJV5FqqKDWQSx5Jt9_-EYpwYZc-qcTxsdYLI-Y3qTj4fXHtxBWa9-Q_yf2AiJXOhCtly18DMvS3TmeBUDVad2pdowYyTCpwXlYdsYzcFybQSpQ3objr7yRFCIfKl9BM8dliLLsJxt_sjj7fvA9jl21QUtXjL1-Rbls9lI0Z-SnY43AjITAXwg3yPdJxDrwLQa7mQjrIsYtiQc_NmBnAtfJD5FMz4GmoTS_PN5giFp5pHYM9PFrETIAHrC3Wx1IxDwTI3SGiypMtyObaKnNuMFu1W6XeZuBTyTKKE4rIiV9YwlOGa2O1Cg-kCzmJyFjnf-BYp3-sQhUtnxgz4j0Q0w",
"use": "sig"
}
]
}
0.835947 ------------ AuthorizationRequest ------------
0.836387 --> URL: https://login-int.norton.com/sso/idp/OIDC?scope=openid&state=2Ug6XCEWlSwjkaM6&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb&response_type=code&client_id=oidc-conformance-client-id
0.836395 --> BODY: None
1.791743 <-- code=AC-0WAyctvNX0fNqsXtQ23D56M-6aLCTHKRHvJvI4fcPhE-157bebe3ee7-int&state=2Ug6XCEWlSwjkaM6
1.792154 AuthorizationResponse: {
"code": "AC-0WAyctvNX0fNqsXtQ23D56M-6aLCTHKRHvJvI4fcPhE-157bebe3ee7-int",
"state": "2Ug6XCEWlSwjkaM6"
}
1.793540 ------------ AccessTokenRequest ------------
1.793918 --> URL: https://login-int.norton.com/sso/oidc1/tokens
1.793925 --> BODY: code=AC-0WAyctvNX0fNqsXtQ23D56M-6aLCTHKRHvJvI4fcPhE-157bebe3ee7-int&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb
1.793938 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQ6b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtc2VjcmV0'}
2.231561 <-- STATUS: 200
2.231641 <-- BODY: {"access_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM5MjIsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NzIyLCJpYXQiOjE0NzYzNzM5MjIsImp0aSI6IjYwMDMxZmE1LWJlZmMtNDllMy1hZjVjLTg0YmFlMjA5ZWI1YyJ9.RYOOpSJTjz0A6HKh8DrvJp3pYIAhHxLipfBBHByYFRQdr9cLzYHf430TMVDylnDjElBOXZfE7BtmVPm-7326PTcyTJuMFTjmjPDn78X09W0R4AIcMg_fjqPM903WO8ZBlBZbv0BuqhZ04-OmYSdzMCZWnZq02wPVyZFQ9x3S2QUVoWmW4Ea6wlG3jVgBurSKQmb0HZFK5tEUrhzx9E48mWZLQ8xLUSXdsxXaE3iqIhuvL3_JV6MiOgFuPhtne4ITmY-O8xeSR0cutX6eX92TnNqGrjZ63QoA6xumU6Q5TTghqYwMopI0t_OB5AxgoqxtZfi42u27U9HQrHujbipgng","id_token":"eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzkyMiwiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJhdXRoX3RpbWUiOjE0NzYzNzM3MjEsImlzcyI6Imh0dHBzOlwvXC9sb2dpbi1pbnQubm9ydG9uLmNvbVwvc3NvXC9vaWRjMVwvdG9rZW4iLCJleHAiOjE0NzYzNzU3MjIsImlhdCI6MTQ3NjM3MzkyMiwibm9uY2UiOiIzNmNhODIyYS03NDgzLTQ0MDgtOTM2ZS0yYmYzMDAyNzE4NTciLCJqdGkiOiJjYTQ1MDY3ZS04ZDBhLTQ1ZDAtYjcyOC1hN2E3ZTU2OGM1YjMifQ.Y9-twojvbLdSvA4UwbD8yvhMOz1h7KPmQYOto2ZMLLJYaGV_UqM4f_H3ty8-PYxWWPT1ZLrVwaLAQs134VzR_tZldt9E0eoECUezSMnXtzi_xtiP_oti5rScqr9ILagDymAoggtULH1q0bIfqUyDoNMPC59k1scXKnWXvxL06vR-m4TXmEYRe4Tx4Y6AxJVpyRvKEFIr7Cr0P993gpmHEVC1PQHtSjrXAo-r-btLvFDFuw5u-ueD-IKBRhWKZ-kALaQ0_HECHMbDqcU5ggK_JJwst03jlSRBL15kem5kcuETwErvqZq87_AS-xYRQbSklEa9djv8kDrsRijWD-5qmw","token_type":"Bearer","expires_in":1800}
2.603359 AccessTokenResponse: {
"access_token": "eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM5MjIsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NzIyLCJpYXQiOjE0NzYzNzM5MjIsImp0aSI6IjYwMDMxZmE1LWJlZmMtNDllMy1hZjVjLTg0YmFlMjA5ZWI1YyJ9.RYOOpSJTjz0A6HKh8DrvJp3pYIAhHxLipfBBHByYFRQdr9cLzYHf430TMVDylnDjElBOXZfE7BtmVPm-7326PTcyTJuMFTjmjPDn78X09W0R4AIcMg_fjqPM903WO8ZBlBZbv0BuqhZ04-OmYSdzMCZWnZq02wPVyZFQ9x3S2QUVoWmW4Ea6wlG3jVgBurSKQmb0HZFK5tEUrhzx9E48mWZLQ8xLUSXdsxXaE3iqIhuvL3_JV6MiOgFuPhtne4ITmY-O8xeSR0cutX6eX92TnNqGrjZ63QoA6xumU6Q5TTghqYwMopI0t_OB5AxgoqxtZfi42u27U9HQrHujbipgng",
"expires_in": 1800,
"id_token": {
"claims": {
"aud": [
"oidc-conformance-client-id"
],
"auth_time": 1476373721,
"azp": "oidc-conformance-client-id",
"exp": 1476375722,
"iat": 1476373922,
"iss": "https://login-int.norton.com/sso/oidc1/token",
"jti": "ca45067e-8d0a-45d0-b728-a7a7e568c5b3",
"nbf": 1476373922,
"nonce": "36ca822a-7483-4408-936e-2bf300271857",
"sub": "503371910290583957085147024123389456"
},
"jws header parameters": {
"alg": "RS256",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
}
},
"token_type": "Bearer"
}
2.615708 ------------ AccessTokenRequest ------------
2.616087 --> URL: https://login-int.norton.com/sso/oidc1/tokens
2.616094 --> BODY: code=AC-0WAyctvNX0fNqsXtQ23D56M-6aLCTHKRHvJvI4fcPhE-157bebe3ee7-int&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60671%2Fauthz_cb
2.616106 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQ6b2lkYy1jb25mb3JtYW5jZS1jbGllbnQtc2VjcmV0'}
3.012842 <-- STATUS: 400
3.012984 ErrorResponse: {
"error": "invalid_grant",
"error_description": "Expired code or token"
}
3.025284 ------------ UserInfoRequest ------------
3.025589 --> URL: https://login-int.norton.com/sso/oidc1/userinfo
3.025596 --> BODY: None
3.025615 --> HEADERS: {'Authorization': u'Bearer eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJuYmYiOjE0NzYzNzM5MjIsIk5vcnRvbkdVSUQiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhenAiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsImF1dGhfdGltZSI6MTQ3NjM3MzcyMSwic2NvcGUiOiIiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NzIyLCJpYXQiOjE0NzYzNzM5MjIsImp0aSI6IjYwMDMxZmE1LWJlZmMtNDllMy1hZjVjLTg0YmFlMjA5ZWI1YyJ9.RYOOpSJTjz0A6HKh8DrvJp3pYIAhHxLipfBBHByYFRQdr9cLzYHf430TMVDylnDjElBOXZfE7BtmVPm-7326PTcyTJuMFTjmjPDn78X09W0R4AIcMg_fjqPM903WO8ZBlBZbv0BuqhZ04-OmYSdzMCZWnZq02wPVyZFQ9x3S2QUVoWmW4Ea6wlG3jVgBurSKQmb0HZFK5tEUrhzx9E48mWZLQ8xLUSXdsxXaE3iqIhuvL3_JV6MiOgFuPhtne4ITmY-O8xeSR0cutX6eX92TnNqGrjZ63QoA6xumU6Q5TTghqYwMopI0t_OB5AxgoqxtZfi42u27U9HQrHujbipgng'}
3.329345 <-- STATUS: 200
3.329418 Available verification keys: [(u'02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3', u'RSA')]
3.329452 Available decryption keys: [('a0', 'RSA'), ('a3', 'EC')]
3.329506 <-- BODY: eyJraWQiOiIwMmQ2ZDdhOTU3ZTczNGI3YTRiZDIzZGNmZTU5NTI0NWE0ZDI1MTc2NWU4MDJiNDk3ODgyMTAwMmE1MTYyMGEzIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiI1MDMzNzE5MTAyOTA1ODM5NTcwODUxNDcwMjQxMjMzODk0NTYiLCJhdWQiOiJvaWRjLWNvbmZvcm1hbmNlLWNsaWVudC1pZCIsIm5iZiI6MTQ3NjM3MzkyMywiYXpwIjoib2lkYy1jb25mb3JtYW5jZS1jbGllbnQtaWQiLCJpc3MiOiJodHRwczpcL1wvbG9naW4taW50Lm5vcnRvbi5jb21cL3Nzb1wvb2lkYzFcL3Rva2VuIiwiZXhwIjoxNDc2Mzc1NzIzLCJpYXQiOjE0NzYzNzM5MjN9.G_r4mkgi2SVPJo6iyijId70qUslrxTizwhoDUmGrOWoIvy5kTJuBfiWgx4wdWOASSokMclVn1Lrb7aWj5FiK6xJ9ZFkq4p4VNMkSHrGvoMWgi6wfuLPocic0qGZD-AXVdBRhqw2wRzRECM25LcBr4hU4u_fPhV2_MbCHmvIx9ZO-yv89EnGS39jfhM2fB24F6hi2Dup-gKGN_UB8CJ8sTuo0ldgETYgAE0cZsR6PcwIisRfkxdUkUvg-riUJLlBhM7ALPMfEFbo5BQfqz86Jfop-LdwOUzTcfUIWFjqvwtqthCUFpXyf9KApcG2TY8RinqakmfD9K5KfOZ2Nzd-XjQ
3.336433 JWT header:
3.336450 UserInfo: {
"claims": {
"aud": "oidc-conformance-client-id",
"azp": "oidc-conformance-client-id",
"exp": 1476375723,
"iat": 1476373923,
"iss": "https://login-int.norton.com/sso/oidc1/token",
"nbf": 1476373923,
"sub": "503371910290583957085147024123389456"
},
"jws header parameters": {
"alg": "RS256",
"kid": "02d6d7a957e734b7a4bd23dcfe595245a4d251765e802b4978821002a51620a3"
}
}
3.348922 ==== END ====
Result
WARNING
Warnings:
Got a OpenIDSchema response