Test Info

Profile[]
Test descriptionRequest with response_type=id_token token
Timestamp2017-10-13T14:29:46Z
Issuerhttps://ofis.theoptimalcloud.com/odn/
Test IDOP-Response-id_token+token

Conditions


verify-authn-response: status=OK [Checks that the last response was a JSON encoded authentication message]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.0phase<--<-- 2 --- Registration -->-->
0.001not expected to doDynamic registration
0.001phase<--<-- 3 --- AsyncAuthn -->-->
0.001AuthorizationRequest
{
    "client_id": "https://op.certification.openid.net/",
    "nonce": "bcXXrN1wA2PZtc2v",
    "redirect_uri": "https://op.certification.openid.net:60044/authz_cb",
    "response_type": "id_token token",
    "scope": "openid",
    "state": "dhVadkDcBTBmPRwy"
}
0.001redirect urlhttps://ofis.theoptimalcloud.com/odn/?nonce=bcXXrN1wA2PZtc2v&response_type=id_token+token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=dhVadkDcBTBmPRwy&scope=openid
0.001redirecthttps://ofis.theoptimalcloud.com/odn/?nonce=bcXXrN1wA2PZtc2v&response_type=id_token+token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=dhVadkDcBTBmPRwy&scope=openid
0.195http args{}
0.278responseaccess_token=WA64QsRxlJ1mOiEg0TCX_atIdu-NvMOnVnqmDUv_ZbJjfJWKVn59CkthWYo0afV3GOpjkaf9iyXNuPeb0pMuq4GxVK25b-uLyjJJ9O3O7ji62NnND-pDIk7dCnpLCOVCDfOPIOiR7UDo4OlUeOR0LgldTVB_zFZ92QKJpwNGDp00tMKBXxL5nOo-XBCe31eGuzdY8CdN9e8GUqHIE758QDOVRfDJby02fEqPluu1loDox9VCcFfOpfDVwOkA3NGU&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.wvcvc-j4D9RSuokPnUPJlGLlwCTt8pnjz9gMtUQQid3LX9cwNjufiqTeCraO6uvKtWwFq7nwuVjMb0sjjBUmwBKTBGBOq3OPJ2mYfXw4HG-CBK64e6Mcifcn4WYs4TwCFseRb-dA4tyO1Y04nejYAentIY091CnnT36iSoSK9SW7DmwoGa7LavRrW-B5CJlAp6Ixs6C4taMI4eYgn6BLGHMyXwCEYrPpNBEojEggDmxUX9BPoaZSdgAA87T7vJ4wSxbXSMYvau9ZK9tSnDlE1T1QPI9ZqnjD80_xlSO2hiFGNK49ieiJwEZBytlcTDu1wP4bCLGGb-n_ANcev20J9Q&token_type=Bearer&state=dhVadkDcBTBmPRwy&expires_in=36000
0.279response{'access_token': 'WA64QsRxlJ1mOiEg0TCX_atIdu-NvMOnVnqmDUv_ZbJjfJWKVn59CkthWYo0afV3GOpjkaf9iyXNuPeb0pMuq4GxVK25b-uLyjJJ9O3O7ji62NnND-pDIk7dCnpLCOVCDfOPIOiR7UDo4OlUeOR0LgldTVB_zFZ92QKJpwNGDp00tMKBXxL5nOo-XBCe31eGuzdY8CdN9e8GUqHIE758QDOVRfDJby02fEqPluu1loDox9VCcFfOpfDVwOkA3NGU', 'id_token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.wvcvc-j4D9RSuokPnUPJlGLlwCTt8pnjz9gMtUQQid3LX9cwNjufiqTeCraO6uvKtWwFq7nwuVjMb0sjjBUmwBKTBGBOq3OPJ2mYfXw4HG-CBK64e6Mcifcn4WYs4TwCFseRb-dA4tyO1Y04nejYAentIY091CnnT36iSoSK9SW7DmwoGa7LavRrW-B5CJlAp6Ixs6C4taMI4eYgn6BLGHMyXwCEYrPpNBEojEggDmxUX9BPoaZSdgAA87T7vJ4wSxbXSMYvau9ZK9tSnDlE1T1QPI9ZqnjD80_xlSO2hiFGNK49ieiJwEZBytlcTDu1wP4bCLGGb-n_ANcev20J9Q', 'state': 'dhVadkDcBTBmPRwy', 'expires_in': 36000, 'token_type': 'Bearer'}
0.42AuthorizationResponse
{
    "access_token": "WA64QsRxlJ1mOiEg0TCX_atIdu-NvMOnVnqmDUv_ZbJjfJWKVn59CkthWYo0afV3GOpjkaf9iyXNuPeb0pMuq4GxVK25b-uLyjJJ9O3O7ji62NnND-pDIk7dCnpLCOVCDfOPIOiR7UDo4OlUeOR0LgldTVB_zFZ92QKJpwNGDp00tMKBXxL5nOo-XBCe31eGuzdY8CdN9e8GUqHIE758QDOVRfDJby02fEqPluu1loDox9VCcFfOpfDVwOkA3NGU",
    "expires_in": 36000,
    "id_token": {
        "at_hash": "JaM4E0VMWmYliN1XMd7HUg",
        "aud": [
            "https://op.certification.openid.net/"
        ],
        "birthdate": "1972-01-01",
        "c_hash": "t-n6zoGbFI2uj_fsqEBgQA",
        "email": "jeff.bohren@optimalidm.com",
        "exp": 1507905586,
        "family_name": "Bohren",
        "gender": "male",
        "given_name": "Jeffrey",
        "iat": 1507904986,
        "iss": "https://ofis.theoptimalcloud.com/odn/",
        "locale": "en-US",
        "middle_name": "Scott",
        "name": "Jeffrey Bohren",
        "nbf": 1507904985,
        "nickname": "Jeffrey",
        "nonce": "bcXXrN1wA2PZtc2v",
        "phone_number": "555-1212",
        "picture": "https://optimalidm.com",
        "preferred_username": "jeff.bohren@optimalidm.com",
        "profile": "https://optimalidm.com",
        "sub": "jBrDabUU7EGUyAxDB6KzCg==",
        "website": "http://optimalidm.com",
        "zoneinfo": "East US"
    },
    "state": "dhVadkDcBTBmPRwy",
    "token_type": "Bearer"
}
0.42phase<--<-- 4 --- Done -->-->
0.42end
0.421assertionVerifyAuthnResponse
0.421conditionverify-authn-response: status=OK [Checks that the last response was a JSON encoded authentication message]
0.421conditionDone: status=OK

Result

PASSED