Test Info
Issuer | https://testop.funet.fi |
---|---|
Profile | [] |
Test ID | OP-prompt-none-LoggedIn |
Test description | Request with prompt=none when logged in [Basic, Implicit, Hybrid] |
Timestamp | 2019-04-29T13:28:42Z |
Conditions
same-authn: status=OK [Verifies that the same authentication was used twice in the flow.]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK
Trace Output
0 | phase | <--<-- 0 --- Webfinger -->--> |
0 | not expected to do | WebFinger |
0 | phase | <--<-- 1 --- Discovery -->--> |
0 | provider_config |
|
1 | http response |
|
1 | ProviderConfigurationResponse |
|
1 | phase | <--<-- 2 --- Registration -->--> |
1 | register |
|
1 | RegistrationRequest |
|
2 | http response |
|
2 | RegistrationResponse |
|
2 | phase | <--<-- 3 --- AsyncAuthn -->--> |
2 | AuthorizationRequest |
|
2 | redirect url | https://testop.funet.fi/idp/profile/oidc/authorize?state=6T5yijpKeAUnaOBh&nonce=tEeas14bTHFLa6nY&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&client_id=_a515672a3bc26e5b4b7451a3df52b3c7 |
2 | redirect | https://testop.funet.fi/idp/profile/oidc/authorize?state=6T5yijpKeAUnaOBh&nonce=tEeas14bTHFLa6nY&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&client_id=_a515672a3bc26e5b4b7451a3df52b3c7 |
4 | http args | {} |
5 | response | URL with fragment |
5 | response | access_token=AAdzZWNyZXQxTv65n1pI2Yt0aNyqECvyHo9ZniUSBPeDmgd1x0qMzIpwkliRFcf7OWqgCLLPNyuKToYZFkm7e3BUjKolua4pwnB7PWps2jY-8fZI89yF8SmxDkoBIt-CpTDZzMi76ctWvHNKQer23Bu0grtrm94tjRAD9QsjE4X6SOeJk4HsqSsp2SwEYJf_jFR300Kjlt579bLF9alBVFimDOEtC8b3cubSDZMxlo37Q6L59ukVQ9KQ_lsQS11wZ3MOub92Q7Sq4mB4z9-ciWFlIYAtBvPgQh0mYc74slCuhq65R3glj2eJBtkVVib1c_tFBVrz5VOhb4ZeKzq593lZ0uHBqdcDll6CO1fQ_l5ePfoFvvc4F2Lq9mRLROjhi-oarTDxJFqaaqjiMeu7HBf4btboRvFmjH5KflBONm2LuTbqLA0Ioc83e87MtcZHMhxBZKJ2yjo_6FPofI-TZPpRFYcoj3miKp4isnLKOLODhOYkADTJLg&id_token=eyJraWQiOiJ0ZXN0a2V5UlMiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiUkQzMllwTVdPTTlSYTlJdnlkV3F5ZyIsInN1YiI6IlZVRzQ3NzdZUDNOTVU1S1JGRVNYNlNLUkFQWExFNE1JIiwiYXVkIjoiX2E1MTU2NzJhM2JjMjZlNWI0Yjc0NTFhM2RmNTJiM2M3IiwiYWNyIjoicGFzc3dvcmQiLCJhdXRoX3RpbWUiOjE1NTY1NDQ1MDEsImlzcyI6Imh0dHBzOlwvXC90ZXN0b3AuZnVuZXQuZmkiLCJleHAiOjE1NTY1NDgxMjAsImlhdCI6MTU1NjU0NDUyMCwibm9uY2UiOiJ0RWVhczE0YlRIRkxhNm5ZIn0.BYuZPHZaCdVOcNnEgx_5tRoOPdfoPMsE_lRePThbVR2CuO9dXe8zaPEIRtPjWtGCJJNN5YnZOx1J6TFwNx2KRWMjCz5JBKS6gcEeMZhLI9EqT4XRjpLwRtB-GtFi5FDb9PoJzuYebooJNfC_yvekf_Iavh9NKvY1hlNF1ytux1qlXV7lmTFU5Cwr83MBfDWhKNihULbSD1y638koMGTcADjMsdiFmOdieQuuSMTAyuzrqMs6ghMfDDfW-WN99oemgD-hgD4CL3tLxRqj9bDgTwIOOqcHb-a_tLbOvi-WbWjD7bjZp0-hrFb7DtDwoPgo84gtMopolBoyIqEXbvCxuw&state=6T5yijpKeAUnaOBh&token_type=Bearer&expires_in=600 |
5 | response | {'access_token': 'AAdzZWNyZXQxTv65n1pI2Yt0aNyqECvyHo9ZniUSBPeDmgd1x0qMzIpwkliRFcf7OWqgCLLPNyuKToYZFkm7e3BUjKolua4pwnB7PWps2jY-8fZI89yF8SmxDkoBIt-CpTDZzMi76ctWvHNKQer23Bu0grtrm94tjRAD9QsjE4X6SOeJk4HsqSsp2SwEYJf_jFR300Kjlt579bLF9alBVFimDOEtC8b3cubSDZMxlo37Q6L59ukVQ9KQ_lsQS11wZ3MOub92Q7Sq4mB4z9-ciWFlIYAtBvPgQh0mYc74slCuhq65R3glj2eJBtkVVib1c_tFBVrz5VOhb4ZeKzq593lZ0uHBqdcDll6CO1fQ_l5ePfoFvvc4F2Lq9mRLROjhi-oarTDxJFqaaqjiMeu7HBf4btboRvFmjH5KflBONm2LuTbqLA0Ioc83e87MtcZHMhxBZKJ2yjo_6FPofI-TZPpRFYcoj3miKp4isnLKOLODhOYkADTJLg', 'id_token': 'eyJraWQiOiJ0ZXN0a2V5UlMiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiUkQzMllwTVdPTTlSYTlJdnlkV3F5ZyIsInN1YiI6IlZVRzQ3NzdZUDNOTVU1S1JGRVNYNlNLUkFQWExFNE1JIiwiYXVkIjoiX2E1MTU2NzJhM2JjMjZlNWI0Yjc0NTFhM2RmNTJiM2M3IiwiYWNyIjoicGFzc3dvcmQiLCJhdXRoX3RpbWUiOjE1NTY1NDQ1MDEsImlzcyI6Imh0dHBzOlwvXC90ZXN0b3AuZnVuZXQuZmkiLCJleHAiOjE1NTY1NDgxMjAsImlhdCI6MTU1NjU0NDUyMCwibm9uY2UiOiJ0RWVhczE0YlRIRkxhNm5ZIn0.BYuZPHZaCdVOcNnEgx_5tRoOPdfoPMsE_lRePThbVR2CuO9dXe8zaPEIRtPjWtGCJJNN5YnZOx1J6TFwNx2KRWMjCz5JBKS6gcEeMZhLI9EqT4XRjpLwRtB-GtFi5FDb9PoJzuYebooJNfC_yvekf_Iavh9NKvY1hlNF1ytux1qlXV7lmTFU5Cwr83MBfDWhKNihULbSD1y638koMGTcADjMsdiFmOdieQuuSMTAyuzrqMs6ghMfDDfW-WN99oemgD-hgD4CL3tLxRqj9bDgTwIOOqcHb-a_tLbOvi-WbWjD7bjZp0-hrFb7DtDwoPgo84gtMopolBoyIqEXbvCxuw', 'state': '6T5yijpKeAUnaOBh', 'token_type': 'Bearer', 'expires_in': 600} |
5 | AuthorizationResponse |
|
5 | phase | <--<-- 4 --- AccessToken -->--> |
5 | phase | <--<-- 5 --- AsyncAuthn -->--> |
5 | AuthorizationRequest |
|
5 | redirect url | https://testop.funet.fi/idp/profile/oidc/authorize?state=MTIcupp2Sr4D22Uh&nonce=Lo7RIMxVcohASR2h&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&prompt=none&client_id=_a515672a3bc26e5b4b7451a3df52b3c7 |
5 | redirect | https://testop.funet.fi/idp/profile/oidc/authorize?state=MTIcupp2Sr4D22Uh&nonce=Lo7RIMxVcohASR2h&response_type=id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60028%2Fauthz_cb&prompt=none&client_id=_a515672a3bc26e5b4b7451a3df52b3c7 |
6 | http args | {} |
6 | response | URL with fragment |
6 | response | access_token=AAdzZWNyZXQx7tKwgG_z7WqBEYDGkXGat5o10X6KOuicNe2r0-uP8JKV_bZBCWFO3eFcy-4bu4tVaz9WguqNCw7nPkWnPEx41PqplMDbxMjumbLwvTMHTg6AWlflUNt9TjzrVpW9-nD629aEAAl9HEAHociziKCN_xQkwxCbnedBboidSlBB0oIjTYHjY2qMj9sq04MF0X_OyDHIyEoHPjfti0P19yOUxTZ2qxgEfgbFz_i0EFkijXreNmf23afIcq59gK3CAVQUXyBM_R0i_awNqwcAAJ6c3qWyvGhzBSnRGol1C9fK2xIoLDatortHb7DATDGLO84HD_rI34GHauugSSd57HSc-PmV7qJPBFh3Fz1etbh_3i8CXeF3iKfNOgH_91gQiOzogSxn4dGBGq8iATJLXo4bAbJ47ILQ-pbACAh6Q2YXh_cNLkIiIfTGeDLLuYhG3ugx3GI41j5uRj7EhkaexT3VxiuKt6ulbt7FwKzEtd3bSHU&id_token=eyJraWQiOiJ0ZXN0a2V5UlMiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTXNTamJlSmRTTW1BQ0xjcGE1WTVjZyIsInN1YiI6IlZVRzQ3NzdZUDNOTVU1S1JGRVNYNlNLUkFQWExFNE1JIiwiYXVkIjoiX2E1MTU2NzJhM2JjMjZlNWI0Yjc0NTFhM2RmNTJiM2M3IiwiYWNyIjoicGFzc3dvcmQiLCJhdXRoX3RpbWUiOjE1NTY1NDQ1MDEsImlzcyI6Imh0dHBzOlwvXC90ZXN0b3AuZnVuZXQuZmkiLCJleHAiOjE1NTY1NDgxMjIsImlhdCI6MTU1NjU0NDUyMiwibm9uY2UiOiJMbzdSSU14VmNvaEFTUjJoIn0.DgCzkZcf3sJqz_XE0jauijAeEeLOFsEV35n5xsbAtZZIwf0vcYCutj9gECiVML5IVkmJgzXV7o3vk7ZfQmORNk1dvJiVy4OAOHRG6XATfbGjKhK52SvsXW86oaFKQtNPduGpmQJRk27a9T4MZNNrjJsIyvRLdOjiYdLvlqlwfvuJ_icyGa-DV4jaO5QhYRtMix7VhCSTvSEieVNCm5Rzv2-U_OVKA2BgA-9vSZobBA3hOiykUdTmNOIYbvP-MBwxkCAmOGfsGXLX-d0vsAhNUphLMP9hPE_8v5SH1qjFnHw5IHwv2ZPMo30c32KnH0SyutB7tZSALqtrs3BuwNWDqA&state=MTIcupp2Sr4D22Uh&token_type=Bearer&expires_in=600 |
6 | response | {'access_token': 'AAdzZWNyZXQx7tKwgG_z7WqBEYDGkXGat5o10X6KOuicNe2r0-uP8JKV_bZBCWFO3eFcy-4bu4tVaz9WguqNCw7nPkWnPEx41PqplMDbxMjumbLwvTMHTg6AWlflUNt9TjzrVpW9-nD629aEAAl9HEAHociziKCN_xQkwxCbnedBboidSlBB0oIjTYHjY2qMj9sq04MF0X_OyDHIyEoHPjfti0P19yOUxTZ2qxgEfgbFz_i0EFkijXreNmf23afIcq59gK3CAVQUXyBM_R0i_awNqwcAAJ6c3qWyvGhzBSnRGol1C9fK2xIoLDatortHb7DATDGLO84HD_rI34GHauugSSd57HSc-PmV7qJPBFh3Fz1etbh_3i8CXeF3iKfNOgH_91gQiOzogSxn4dGBGq8iATJLXo4bAbJ47ILQ-pbACAh6Q2YXh_cNLkIiIfTGeDLLuYhG3ugx3GI41j5uRj7EhkaexT3VxiuKt6ulbt7FwKzEtd3bSHU', 'id_token': 'eyJraWQiOiJ0ZXN0a2V5UlMiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTXNTamJlSmRTTW1BQ0xjcGE1WTVjZyIsInN1YiI6IlZVRzQ3NzdZUDNOTVU1S1JGRVNYNlNLUkFQWExFNE1JIiwiYXVkIjoiX2E1MTU2NzJhM2JjMjZlNWI0Yjc0NTFhM2RmNTJiM2M3IiwiYWNyIjoicGFzc3dvcmQiLCJhdXRoX3RpbWUiOjE1NTY1NDQ1MDEsImlzcyI6Imh0dHBzOlwvXC90ZXN0b3AuZnVuZXQuZmkiLCJleHAiOjE1NTY1NDgxMjIsImlhdCI6MTU1NjU0NDUyMiwibm9uY2UiOiJMbzdSSU14VmNvaEFTUjJoIn0.DgCzkZcf3sJqz_XE0jauijAeEeLOFsEV35n5xsbAtZZIwf0vcYCutj9gECiVML5IVkmJgzXV7o3vk7ZfQmORNk1dvJiVy4OAOHRG6XATfbGjKhK52SvsXW86oaFKQtNPduGpmQJRk27a9T4MZNNrjJsIyvRLdOjiYdLvlqlwfvuJ_icyGa-DV4jaO5QhYRtMix7VhCSTvSEieVNCm5Rzv2-U_OVKA2BgA-9vSZobBA3hOiykUdTmNOIYbvP-MBwxkCAmOGfsGXLX-d0vsAhNUphLMP9hPE_8v5SH1qjFnHw5IHwv2ZPMo30c32KnH0SyutB7tZSALqtrs3BuwNWDqA', 'state': 'MTIcupp2Sr4D22Uh', 'token_type': 'Bearer', 'expires_in': 600} |
6 | AuthorizationResponse |
|
6 | phase | <--<-- 6 --- AccessToken -->--> |
6 | phase | <--<-- 7 --- Done -->--> |
6 | end | |
6 | assertion | SameAuthn |
6 | condition | same-authn: status=OK [Verifies that the same authentication was used twice in the flow.] |
6 | assertion | VerifyResponse |
6 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
6 | condition | Done: status=OK |
Result
PASSED