0 | phase | <--<-- 0 --- Webfinger -->--> |
0 | not expected to do | WebFinger |
0 | phase | <--<-- 1 --- Discovery -->--> |
0 | provider_config | kwargs:{'issuer': 'https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default'}
|
0 | http response | url:https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/.well-known/openid-configuration status_code:200
|
0 | ProviderConfigurationResponse | {
"authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize",
"claim_types_supported": [
"normal"
],
"claims_parameter_supported": true,
"claims_supported": [
"realmName",
"preferred_username",
"given_name",
"uid",
"upn",
"groupIds",
"employee_id",
"name",
"tenantId",
"mobile_number",
"department",
"family_name",
"job_title",
"email"
],
"device_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/device_authorization",
"grant_types_supported": [
"authorization_code",
"implicit",
"client_credentials",
"password",
"refresh_token",
"urn:ietf:params:oauth:grant-type:device_code"
],
"id_token_encryption_alg_values_supported": [
"none"
],
"id_token_encryption_enc_values_supported": [
"none"
],
"id_token_signing_alg_values_supported": [
"none",
"HS256",
"HS384",
"HS512",
"RS256",
"RS384",
"RS512"
],
"introspection_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/introspect",
"issuer": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default",
"jwks_uri": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/jwks",
"request_object_encryption_alg_values_supported": [
"none"
],
"request_object_encryption_enc_values_supported": [
"none"
],
"request_object_signing_alg_values_supported": [
"none"
],
"request_parameter_supported": true,
"request_uri_parameter_supported": false,
"require_request_uri_registration": false,
"response_modes_supported": [
"query",
"fragment",
"form_post"
],
"response_types_supported": [
"code",
"none",
"token",
"id_token",
"token id_token",
"code id_token",
"code token",
"code token id_token"
],
"revocation_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/revoke",
"scopes_supported": [
"openid",
"profile",
"email",
"phone"
],
"subject_types_supported": [
"public"
],
"token_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/token",
"token_endpoint_auth_methods_supported": [
"client_secret_basic",
"client_secret_post"
],
"user_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/user_authorization",
"userinfo_encryption_alg_values_supported": [
"none"
],
"userinfo_encryption_enc_values_supported": [
"none"
],
"userinfo_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/userinfo",
"userinfo_signing_alg_values_supported": [
"none"
],
"version": "3.0"
}
|
0 | phase | <--<-- 2 --- Registration -->--> |
0 | not expected to do | Dynamic registration |
0 | phase | <--<-- 3 --- AsyncAuthn -->--> |
0 | AuthorizationRequest | {
"client_id": "5525f670-e6b3-41a9-afec-add4254aff3b",
"nonce": "sf43vjTUDDNzaK0j",
"redirect_uri": "https://op.certification.openid.net:61905/authz_cb",
"response_type": "id_token",
"scope": "openid",
"state": "tSiSGySgRTJao8hO"
}
|
0 | redirect url | https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize?state=tSiSGySgRTJao8hO&nonce=sf43vjTUDDNzaK0j&response_type=id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61905%2Fauthz_cb&client_id=5525f670-e6b3-41a9-afec-add4254aff3b |
0 | redirect | https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize?state=tSiSGySgRTJao8hO&nonce=sf43vjTUDDNzaK0j&response_type=id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61905%2Fauthz_cb&client_id=5525f670-e6b3-41a9-afec-add4254aff3b |
1 | http args | {} |
2 | response | URL with fragment |
2 | response | grant_id=25ddc16a-cf68-484a-9228-631fac88d775&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InNlcnZlciJ9.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.HQKbfXs7YCBMR6oejN6CApWn61bt-rwuJwDUp4FNPbE-ykBufjHXv8GAGrTxcOdAexxthdRC0u0Wngap1wBk3FcDuRFjeJynGWi5i8nH6c_QDqyBvD0UihZcWzheoxg_zU1S9WqXJ2UveuPWSbhKxgjEV3JJcay7URQpzMOHaMt4AiyEVltpDn3tQWl_I06mKHBJdPOH5yGGHtAUWxa7tnHTQhZYfvr4hXn62b61l7zw4jhjRpNwvlqkZICcyw0RiuTsslg1GvZaHV86ZWQg6Q-nGXJV56_QLKA6-gbk2wN0Az4SSftqtfeRH2pkBi7-SQvbtwxfCvMrWat2yOHaKw&state=tSiSGySgRTJao8hO |
2 | response | {'grant_id': '25ddc16a-cf68-484a-9228-631fac88d775', 'id_token': 'eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InNlcnZlciJ9.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.HQKbfXs7YCBMR6oejN6CApWn61bt-rwuJwDUp4FNPbE-ykBufjHXv8GAGrTxcOdAexxthdRC0u0Wngap1wBk3FcDuRFjeJynGWi5i8nH6c_QDqyBvD0UihZcWzheoxg_zU1S9WqXJ2UveuPWSbhKxgjEV3JJcay7URQpzMOHaMt4AiyEVltpDn3tQWl_I06mKHBJdPOH5yGGHtAUWxa7tnHTQhZYfvr4hXn62b61l7zw4jhjRpNwvlqkZICcyw0RiuTsslg1GvZaHV86ZWQg6Q-nGXJV56_QLKA6-gbk2wN0Az4SSftqtfeRH2pkBi7-SQvbtwxfCvMrWat2yOHaKw', 'state': 'tSiSGySgRTJao8hO'} |
2 | AuthorizationResponse | {
"grant_id": "25ddc16a-cf68-484a-9228-631fac88d775",
"id_token": {
"acr": "urn:ibm:security:policy:id:1",
"aud": [
"5525f670-e6b3-41a9-afec-add4254aff3b"
],
"displayName": "Geetha D",
"email": "geethanjali.d@ibm.com",
"exp": 1568198566,
"ext": {
"tenantId": "oidc-prod-eu01a-test1.ice.ibmcloud.com"
},
"family_name": "D",
"given_name": "Geetha",
"groupIds": [
"allUsers",
"admin"
],
"iat": 1568191366,
"iss": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default",
"name": "Geetha D",
"nonce": "sf43vjTUDDNzaK0j",
"preferred_username": "geethanjali.d@ibm.com",
"realmName": "cloudIdentityRealm",
"s_hash": "aNaXY_XsaTncZ_hHpjU4_g",
"sub": "640004KG4P",
"tenantId": "oidc-prod-eu01a-test1.ice.ibmcloud.com",
"uid": "640004KG4P",
"uniqueSecurityName": "640004KG4P",
"userType": "regular"
},
"state": "tSiSGySgRTJao8hO"
}
|
2 | phase | <--<-- 4 --- AccessToken -->--> |
2 | phase | <--<-- 5 --- Note -->--> |
4 | phase | <--<-- 6 --- Webfinger -->--> |
4 | not expected to do | WebFinger |
4 | phase | <--<-- 7 --- Discovery -->--> |
4 | provider_config | kwargs:{'issuer': 'https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default'}
|
5 | http response | url:https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/.well-known/openid-configuration status_code:200
|
5 | ProviderConfigurationResponse | {
"authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize",
"claim_types_supported": [
"normal"
],
"claims_parameter_supported": true,
"claims_supported": [
"realmName",
"preferred_username",
"given_name",
"uid",
"upn",
"groupIds",
"employee_id",
"name",
"tenantId",
"mobile_number",
"department",
"family_name",
"job_title",
"email"
],
"device_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/device_authorization",
"grant_types_supported": [
"authorization_code",
"implicit",
"client_credentials",
"password",
"refresh_token",
"urn:ietf:params:oauth:grant-type:device_code"
],
"id_token_encryption_alg_values_supported": [
"none"
],
"id_token_encryption_enc_values_supported": [
"none"
],
"id_token_signing_alg_values_supported": [
"none",
"HS256",
"HS384",
"HS512",
"RS256",
"RS384",
"RS512"
],
"introspection_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/introspect",
"issuer": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default",
"jwks_uri": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/jwks",
"request_object_encryption_alg_values_supported": [
"none"
],
"request_object_encryption_enc_values_supported": [
"none"
],
"request_object_signing_alg_values_supported": [
"none"
],
"request_parameter_supported": true,
"request_uri_parameter_supported": false,
"require_request_uri_registration": false,
"response_modes_supported": [
"query",
"fragment",
"form_post"
],
"response_types_supported": [
"code",
"none",
"token",
"id_token",
"token id_token",
"code id_token",
"code token",
"code token id_token"
],
"revocation_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/revoke",
"scopes_supported": [
"openid",
"profile",
"email",
"phone"
],
"subject_types_supported": [
"public"
],
"token_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/token",
"token_endpoint_auth_methods_supported": [
"client_secret_basic",
"client_secret_post"
],
"user_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/user_authorization",
"userinfo_encryption_alg_values_supported": [
"none"
],
"userinfo_encryption_enc_values_supported": [
"none"
],
"userinfo_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/userinfo",
"userinfo_signing_alg_values_supported": [
"none"
],
"version": "3.0"
}
|
5 | phase | <--<-- 8 --- Registration -->--> |
5 | not expected to do | Dynamic registration |
5 | phase | <--<-- 9 --- AsyncAuthn -->--> |
5 | AuthorizationRequest | {
"client_id": "5525f670-e6b3-41a9-afec-add4254aff3b",
"max_age": 1,
"nonce": "CT8shquK8NRqWCuN",
"redirect_uri": "https://op.certification.openid.net:61905/authz_cb",
"response_type": "id_token",
"scope": "openid",
"state": "kTBCDH7cAH8ORMOP"
}
|
5 | redirect url | https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize?state=kTBCDH7cAH8ORMOP&nonce=CT8shquK8NRqWCuN&response_type=id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61905%2Fauthz_cb&max_age=1&client_id=5525f670-e6b3-41a9-afec-add4254aff3b |
5 | redirect | https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize?state=kTBCDH7cAH8ORMOP&nonce=CT8shquK8NRqWCuN&response_type=id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61905%2Fauthz_cb&max_age=1&client_id=5525f670-e6b3-41a9-afec-add4254aff3b |
37 | http args | {} |
38 | response | URL with fragment |
38 | response | grant_id=bddf0b2b-db6f-4f6d-9002-0f03d0ddf374&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InNlcnZlciJ9.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.nuvMmFveOHHqlYfjxenQdBjKlHKfeHGb5G7jV_w_l4RYi3Z7j-QtZIgbfMqqQQY9hIRK7TvfDfmTrsUgY-goIJAOgtytiDsDoeFxE7jRSjP0JUjIr56wQv4b3dsxFTqToWiVeDSSJsc-cEbUmi86RRoty5QmJAFqXaf__wYijgz2k-JzdUGE0B8n8DeTzeqANJO5XAupb3kr4D62Zms8SwXJv9x65DW0NwYyyJLzVFEnbm3a1PyXTD76GNIqU_E5bPu0oE1BHKG2w4ssnANZXG7WEEXGQHhokgm_cm_jNEBCugj4Ebzhn2L3QpKBvliwrV9BcyfebsDymICMIASb5Q&state=kTBCDH7cAH8ORMOP |
38 | response | {'grant_id': 'bddf0b2b-db6f-4f6d-9002-0f03d0ddf374', 'id_token': 'eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InNlcnZlciJ9.eyJnaXZlbl9uYW1lIjoiR2VldGhhIiwic19oYXNoIjoidmQtM181Nkh6eVJrekl4NXdHRXVIUSIsInVuaXF1ZVNlY3VyaXR5TmFtZSI6IjY0MDAwNEtHNFAiLCJ0ZW5hbnRJZCI6Im9pZGMtcHJvZC1ldTAxYS10ZXN0MS5pY2UuaWJtY2xvdWQuY29tIiwicmVhbG1OYW1lIjoiY2xvdWRJZGVudGl0eVJlYWxtIiwicHJlZmVycmVkX3VzZXJuYW1lIjoiZ2VldGhhbmphbGkuZEBpYm0uY29tIiwibmFtZSI6IkdlZXRoYSBEIiwibm9uY2UiOiJDVDhzaHF1SzhOUnFXQ3VOIiwiZW1haWwiOiJnZWV0aGFuamFsaS5kQGlibS5jb20iLCJhY3IiOiJ1cm46aWJtOnNlY3VyaXR5OnBvbGljeTppZDoxIiwidXNlclR5cGUiOiJyZWd1bGFyIiwiZGlzcGxheU5hbWUiOiJHZWV0aGEgRCIsImZhbWlseV9uYW1lIjoiRCIsImF1dGhfdGltZSI6MTU2ODE5MTQwMSwiZ3JvdXBJZHMiOlsiYWxsVXNlcnMiLCJhZG1pbiJdLCJ1aWQiOiI2NDAwMDRLRzRQIiwiZXh0Ijp7InRlbmFudElkIjoib2lkYy1wcm9kLWV1MDFhLXRlc3QxLmljZS5pYm1jbG91ZC5jb20ifSwiaXNzIjoiaHR0cHM6Ly9vaWRjLXByb2QtZXUwMWEtdGVzdDEuaWNlLmlibWNsb3VkLmNvbS9vaWRjL2VuZHBvaW50L2RlZmF1bHQiLCJhdWQiOiI1NTI1ZjY3MC1lNmIzLTQxYTktYWZlYy1hZGQ0MjU0YWZmM2IiLCJzdWIiOiI2NDAwMDRLRzRQIiwiaWF0IjoxNTY4MTkxNDAyLCJleHAiOjE1NjgxOTg2MDJ9.nuvMmFveOHHqlYfjxenQdBjKlHKfeHGb5G7jV_w_l4RYi3Z7j-QtZIgbfMqqQQY9hIRK7TvfDfmTrsUgY-goIJAOgtytiDsDoeFxE7jRSjP0JUjIr56wQv4b3dsxFTqToWiVeDSSJsc-cEbUmi86RRoty5QmJAFqXaf__wYijgz2k-JzdUGE0B8n8DeTzeqANJO5XAupb3kr4D62Zms8SwXJv9x65DW0NwYyyJLzVFEnbm3a1PyXTD76GNIqU_E5bPu0oE1BHKG2w4ssnANZXG7WEEXGQHhokgm_cm_jNEBCugj4Ebzhn2L3QpKBvliwrV9BcyfebsDymICMIASb5Q', 'state': 'kTBCDH7cAH8ORMOP'} |
38 | AuthorizationResponse | {
"grant_id": "bddf0b2b-db6f-4f6d-9002-0f03d0ddf374",
"id_token": {
"acr": "urn:ibm:security:policy:id:1",
"aud": [
"5525f670-e6b3-41a9-afec-add4254aff3b"
],
"auth_time": 1568191401,
"displayName": "Geetha D",
"email": "geethanjali.d@ibm.com",
"exp": 1568198602,
"ext": {
"tenantId": "oidc-prod-eu01a-test1.ice.ibmcloud.com"
},
"family_name": "D",
"given_name": "Geetha",
"groupIds": [
"allUsers",
"admin"
],
"iat": 1568191402,
"iss": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default",
"name": "Geetha D",
"nonce": "CT8shquK8NRqWCuN",
"preferred_username": "geethanjali.d@ibm.com",
"realmName": "cloudIdentityRealm",
"s_hash": "vd-3_56HzyRkzIx5wGEuHQ",
"sub": "640004KG4P",
"tenantId": "oidc-prod-eu01a-test1.ice.ibmcloud.com",
"uid": "640004KG4P",
"uniqueSecurityName": "640004KG4P",
"userType": "regular"
},
"state": "kTBCDH7cAH8ORMOP"
}
|
38 | phase | <--<-- 10 --- AccessToken -->--> |
38 | phase | <--<-- 11 --- Done -->--> |
38 | end | |
38 | assertion | ClaimsCheck |
38 | condition | claims-check: status=OK [Checks if specific claims is present or not] |
38 | assertion | AuthTimeCheck |
38 | condition | auth_time-check: status=OK [Check that the auth_time returned in the ID Token is in the expected range.] |
38 | assertion | MultipleSignOn |
38 | condition | multiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow] |
38 | assertion | VerifyResponse |
38 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
38 | condition | Done: status=OK |