Test Info
Issuer | https://testop.funet.fi |
---|---|
Profile | [] |
Test ID | OP-IDToken-SigEnc |
Test description | Signed and encrypted ID Token [Extra] |
Timestamp | 2019-04-29T13:19:32Z |
Conditions
signed-encrypted-idtoken: status=OK [Verifies that a IDToken was signed and then encrypted]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK
Trace Output
0 | phase | <--<-- 0 --- Webfinger -->--> |
0 | not expected to do | WebFinger |
0 | phase | <--<-- 1 --- Discovery -->--> |
0 | provider_config |
|
0 | http response |
|
0 | ProviderConfigurationResponse |
|
0 | phase | <--<-- 2 --- Registration -->--> |
0 | register |
|
0 | RegistrationRequest |
|
1 | http response |
|
1 | RegistrationResponse |
|
1 | phase | <--<-- 3 --- AsyncAuthn -->--> |
1 | AuthorizationRequest |
|
1 | redirect url | https://testop.funet.fi/idp/profile/oidc/authorize?state=4ByBmF9W1KMgkgjK&nonce=a7GisKP0nlJRQjZT&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&client_id=_ce9dc413146d6ed0e5643c0a2cabbe6a |
1 | redirect | https://testop.funet.fi/idp/profile/oidc/authorize?state=4ByBmF9W1KMgkgjK&nonce=a7GisKP0nlJRQjZT&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&client_id=_ce9dc413146d6ed0e5643c0a2cabbe6a |
4 | http args | {} |
4 | response | URL with fragment |
4 | response | access_token=AAdzZWNyZXQximpipG8Mmdg7aHuv7sS0Y8kcmeyBDo2yL2DeEMjjW4a7BBeCPsczcVOL98oiEPzTN-xmNkGM8InhXJQOWhP3CEad1p3xseeBmvcbiISTNAM8aNoOQ57DRvihxj7W-jJNsZTCMcnfdB5Pdfq9jLg7lfh54Qg1Vd6bVyIa9-zRe6EUtbTezzEFTLXJpU29J3rYFXgoWr0N87OSGBbR9Fa0NXVB9Xc_oL2LMXgotpozrpJ6VsCUCB-P5mM_VpKi2AXbfuDLxGyBIDYau9kDwM0myumcJ23WldSa5waNO8zoBA3oAYoc_WWJtoI4QQFSLRvrnMw0bgbRH8RnCBYJcN6txlFr8vqetm-w_Sj5tCTYYcNI3uOvBBTLyuKzQwpODS0Yk3bBNEA_oI4hWNxBP32HPzuk_XhXp7xHpD3VEhytpX9hpSPsCuRQJPFYcBhjtb1ADAThiVx_PlkG5pmLDMzfiiJeGjc_YBimEYB45ZaQMw&id_token=eyJjdHkiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBMV81In0.k1xFYbvXhEzf2cOsHw4KaI2PccgnQ_Zta_fgGGB6-9V6BzsV0AdvNYFW098MkkLGhXAo6oZpLz93e7twmXPg6sqWHKpnd0ePkQ59Ol2JM_QUOjrYw9eG8VACGjhNOFh9Hdr_LxAp2Sz2A9Wb9wLWBmIUokpZvkhx617rjUzxpNj8BV1UPqsLITwSAVda3li5V9vrdqaPjGBjvIXwhetStYHM3oQBlDshk3hPUydNs6UxOI8fc0bDSic9cGNeWtI9-rhH9Io_zf1VLQvLAGhI1TcvggknVOS8CIiCdWaA2ZNObx2NfrqoxMP1vLeFVTa0TwlcbdQwUY8YOU41Eq2mXg.EaPebgzK1-13gL5uVmCRCg.tduhG4dlE-11cZ7F17F44asoAxGhofXK2paU6Q_KL0DfTyuGZ81qgIa33Hw-hso9-71W5Jji4_XfV9kj2KcxQvPqUW-N0ehjTeAwwrQ6UcOCYt2M7JRwqJ8ppJxStgFvaCvq5MeATNrs0FqkZ_zFzynmqRFgIPju_K7qXsEgZJL3LEFJ7Y5kVlBv37k_lPdpAedEcZ8gydo1idFz7QdDe8C_B2J7WVoHzd8QoWo731Oa9GLGpMbmVpm0J3U2Q6GX8zhHdm8sMpS62u4dxNdFEkI-i-CwVYJXRZkWToipG9O-Mmqipv6DDlRi9P5rWUpsFi-WKN1R4ZO5gpK5-3LBXQ-DeietvpCobooqWEEqxTCApsdq_zjOqdBMwGQ-zstsXCNNAZp_DW0wL4h41b5F-5FqdkXKoPdymBjdwZsLuB_gt_7k60FE8cgYKiK7vo4A4UNHJNtnreRav9oRsrwyreMwMwuvD2rEmlffWhyqnXiSi4Y84gUCC9zScrTxOubzk7t1V2JZPF17GVBoaR_ZcXJB6_yahsv0Yqj4SDWJihxRiCfuMy4dblgzA935QmRKqrBhP13oog_BSX9U7k28MrzWZbj4KooLbzC8GccUSri4aNBaUZVn3w8CTtBZg5z3FZWsd7mu57iZwqB85--KdNH-O5fLL5mgxBrs-suYUkTimHC_8wnA1UpxNZDcgOC5x47IlAellKZf11szgCCkVBPaXirPg37CMWA-gd-nMA7NHiNI52PJrWXPpBunLiGXg5vX2Mtgm2w4c-je8FwTMPoF5fReuTH4LK6b-0lkSk0h2MU5LpVge1bP0CDM4bVAFZDJVQDtGcvvYuQ_8wT44TsFrHtmFzO74tgOdzW_ozynBd0cyLrAbq01wo--1HOXnVkkMllrpwbNG3_b9XubRGQewKV9bx-je4PKtZX0_GW_zIodiH_Ll553z-fNWKUGH2ECgFwxFjcBmHAxY-OASg.c8oGgZlVCffXky7q58R7bw&state=4ByBmF9W1KMgkgjK&token_type=Bearer&expires_in=600 |
4 | response | {'access_token': 'AAdzZWNyZXQximpipG8Mmdg7aHuv7sS0Y8kcmeyBDo2yL2DeEMjjW4a7BBeCPsczcVOL98oiEPzTN-xmNkGM8InhXJQOWhP3CEad1p3xseeBmvcbiISTNAM8aNoOQ57DRvihxj7W-jJNsZTCMcnfdB5Pdfq9jLg7lfh54Qg1Vd6bVyIa9-zRe6EUtbTezzEFTLXJpU29J3rYFXgoWr0N87OSGBbR9Fa0NXVB9Xc_oL2LMXgotpozrpJ6VsCUCB-P5mM_VpKi2AXbfuDLxGyBIDYau9kDwM0myumcJ23WldSa5waNO8zoBA3oAYoc_WWJtoI4QQFSLRvrnMw0bgbRH8RnCBYJcN6txlFr8vqetm-w_Sj5tCTYYcNI3uOvBBTLyuKzQwpODS0Yk3bBNEA_oI4hWNxBP32HPzuk_XhXp7xHpD3VEhytpX9hpSPsCuRQJPFYcBhjtb1ADAThiVx_PlkG5pmLDMzfiiJeGjc_YBimEYB45ZaQMw', 'id_token': 'eyJjdHkiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiYWxnIjoiUlNBMV81In0.k1xFYbvXhEzf2cOsHw4KaI2PccgnQ_Zta_fgGGB6-9V6BzsV0AdvNYFW098MkkLGhXAo6oZpLz93e7twmXPg6sqWHKpnd0ePkQ59Ol2JM_QUOjrYw9eG8VACGjhNOFh9Hdr_LxAp2Sz2A9Wb9wLWBmIUokpZvkhx617rjUzxpNj8BV1UPqsLITwSAVda3li5V9vrdqaPjGBjvIXwhetStYHM3oQBlDshk3hPUydNs6UxOI8fc0bDSic9cGNeWtI9-rhH9Io_zf1VLQvLAGhI1TcvggknVOS8CIiCdWaA2ZNObx2NfrqoxMP1vLeFVTa0TwlcbdQwUY8YOU41Eq2mXg.EaPebgzK1-13gL5uVmCRCg.tduhG4dlE-11cZ7F17F44asoAxGhofXK2paU6Q_KL0DfTyuGZ81qgIa33Hw-hso9-71W5Jji4_XfV9kj2KcxQvPqUW-N0ehjTeAwwrQ6UcOCYt2M7JRwqJ8ppJxStgFvaCvq5MeATNrs0FqkZ_zFzynmqRFgIPju_K7qXsEgZJL3LEFJ7Y5kVlBv37k_lPdpAedEcZ8gydo1idFz7QdDe8C_B2J7WVoHzd8QoWo731Oa9GLGpMbmVpm0J3U2Q6GX8zhHdm8sMpS62u4dxNdFEkI-i-CwVYJXRZkWToipG9O-Mmqipv6DDlRi9P5rWUpsFi-WKN1R4ZO5gpK5-3LBXQ-DeietvpCobooqWEEqxTCApsdq_zjOqdBMwGQ-zstsXCNNAZp_DW0wL4h41b5F-5FqdkXKoPdymBjdwZsLuB_gt_7k60FE8cgYKiK7vo4A4UNHJNtnreRav9oRsrwyreMwMwuvD2rEmlffWhyqnXiSi4Y84gUCC9zScrTxOubzk7t1V2JZPF17GVBoaR_ZcXJB6_yahsv0Yqj4SDWJihxRiCfuMy4dblgzA935QmRKqrBhP13oog_BSX9U7k28MrzWZbj4KooLbzC8GccUSri4aNBaUZVn3w8CTtBZg5z3FZWsd7mu57iZwqB85--KdNH-O5fLL5mgxBrs-suYUkTimHC_8wnA1UpxNZDcgOC5x47IlAellKZf11szgCCkVBPaXirPg37CMWA-gd-nMA7NHiNI52PJrWXPpBunLiGXg5vX2Mtgm2w4c-je8FwTMPoF5fReuTH4LK6b-0lkSk0h2MU5LpVge1bP0CDM4bVAFZDJVQDtGcvvYuQ_8wT44TsFrHtmFzO74tgOdzW_ozynBd0cyLrAbq01wo--1HOXnVkkMllrpwbNG3_b9XubRGQewKV9bx-je4PKtZX0_GW_zIodiH_Ll553z-fNWKUGH2ECgFwxFjcBmHAxY-OASg.c8oGgZlVCffXky7q58R7bw', 'state': '4ByBmF9W1KMgkgjK', 'token_type': 'Bearer', 'expires_in': 600} |
4 | AuthorizationResponse |
|
4 | phase | <--<-- 4 --- AccessToken -->--> |
4 | phase | <--<-- 5 --- Done -->--> |
4 | end | |
4 | assertion | CheckSignedEncryptedIDToken |
4 | condition | signed-encrypted-idtoken: status=OK [Verifies that a IDToken was signed and then encrypted] |
4 | assertion | VerifyResponse |
4 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
4 | condition | Done: status=OK |
Result
PASSED