0 | phase | <--<-- 0 --- Note -->--> |
3 | phase | <--<-- 1 --- Webfinger -->--> |
3 | not expected to do | WebFinger |
3 | phase | <--<-- 2 --- Discovery -->--> |
3 | not expected to do | Dynamic discovery |
3 | phase | <--<-- 3 --- Registration -->--> |
3 | not expected to do | Dynamic registration |
3 | phase | <--<-- 4 --- AsyncAuthn -->--> |
3 | AuthorizationRequest | {
"client_id": "oidcConformance_clientId",
"nonce": "KoxPajC8asUFItrS",
"prompt": [
"none"
],
"redirect_uri": "https://op.certification.openid.net:60272/authz_cb",
"response_type": "code",
"scope": "openid",
"state": "5kJuWlMBgjR2eweV"
}
|
3 | redirect url | https://oidc-test.ergon.ch/auth-oidc/oauth2/oidcConformance_clientId?state=5kJuWlMBgjR2eweV&nonce=KoxPajC8asUFItrS&response_type=code&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60272%2Fauthz_cb&prompt=none&client_id=oidcConformance_clientId |
3 | redirect | https://oidc-test.ergon.ch/auth-oidc/oauth2/oidcConformance_clientId?state=5kJuWlMBgjR2eweV&nonce=KoxPajC8asUFItrS&response_type=code&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60272%2Fauthz_cb&prompt=none&client_id=oidcConformance_clientId |
3 | response | Response URL with query part |
3 | response | {'error': 'login_required', 'state': '5kJuWlMBgjR2eweV', 'error_description': 'Invalid OpenID Connect Authorization Request: Client suppressed user interaction (prompt none), but user is not authenticated.'} |
3 | response | {'error': 'login_required', 'state': '5kJuWlMBgjR2eweV', 'error_description': 'Invalid OpenID Connect Authorization Request: Client suppressed user interaction (prompt none), but user is not authenticated.'} |
3 | AuthorizationErrorResponse | {
"error": "login_required",
"error_description": "Invalid OpenID Connect Authorization Request: Client suppressed user interaction (prompt none), but user is not authenticated.",
"state": "5kJuWlMBgjR2eweV"
}
|
3 | AuthorizationErrorResponse | {
"error": "login_required",
"error_description": "Invalid OpenID Connect Authorization Request: Client suppressed user interaction (prompt none), but user is not authenticated.",
"state": "5kJuWlMBgjR2eweV"
}
|
3 | phase | <--<-- 5 --- Done -->--> |
3 | end | |
3 | assertion | VerifyErrorMessage |
3 | condition | verify-error-response: status=OK [Checks that the last response was a JSON encoded error message] |
3 | condition | Done: status=OK |