Test Info

Profile[]
Test descriptionScope requesting profile claims]
Timestamp2017-10-13T14:19:58Z
Issuerhttps://ofis.theoptimalcloud.com/odn/
Test IDOP-scope-profile

Conditions


check-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
verify-scopes: status=WARNING, message=The following claims were missing from the returned information: ['updated_at'] [Verifies that the claims corresponding to the requested scopes are returned]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.001phase<--<-- 2 --- Registration -->-->
0.001not expected to doDynamic registration
0.001phase<--<-- 3 --- AsyncAuthn -->-->
0.001AuthorizationRequest
{
    "client_id": "https://op.certification.openid.net/",
    "nonce": "wzOVQ9s0hVmEZRrL",
    "redirect_uri": "https://op.certification.openid.net:60044/authz_cb",
    "response_type": "id_token",
    "scope": "openid profile",
    "state": "fDfYKw2orIP7C2o7"
}
0.002redirect urlhttps://ofis.theoptimalcloud.com/odn/?nonce=wzOVQ9s0hVmEZRrL&response_type=id_token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=fDfYKw2orIP7C2o7&scope=openid+profile
0.002redirecthttps://ofis.theoptimalcloud.com/odn/?nonce=wzOVQ9s0hVmEZRrL&response_type=id_token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=fDfYKw2orIP7C2o7&scope=openid+profile
0.17http args{}
0.256responseaccess_token=Ffd51c2kQx97cTHLkIe3pkpZ2xQQERBISOOUjRjzshQ-ck2gK4WVEheljJoj5PzzCDqR-AsFUtPeyyGtFIeEkbZPoPLI5g_2By3U1QW4iGMw5RBbyM_xJ5v7OtAM_vM_mIYKNmkyTzwtI-EtOzzjvhINRyoOPL9yEJyw1Qp8cj8SkrDM7hknheYBfH1US3W7eLaXl48Zq8jqnNFEaKC1CFlHMzp-Fh1ywm9aDftj727eBc-LeBfUT8YtGCfIFoVik3cKvEgUn8eaOxg9tVAFBg&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.mdXHLM7H42W9pkjMf8n_xsyiW7pS0HbSV95l41a35vOk2p6xv_3PPjk1BG8J0Rj2QhS5b3zW_hmmKYlMb1mTX_opV1zCB7c3Z1rVjs7-2yiZXRQnIK5pNg32fn1ikbzCNMCOPgPttvYnfdMAyXz0qev1qujCEwwwYDJSzO7oEX_O5ElRYImeq8nshc0D2JkU_aqnMl-3AlPGJEz7RRWi7cGIxb5XAMg4S_gS-gt9j54vP5-Uk5peRMEKiErjgoLa6ZPFrC0D33z3qnujovelu6bvC5R1V7CPIMQ_YyIVOqRTfgf_6wUqmVqpVVEqLxjrY3uGiME9ZZR5J7tze_WrKQ&token_type=Bearer&state=fDfYKw2orIP7C2o7&expires_in=36000
0.256response{'access_token': 'Ffd51c2kQx97cTHLkIe3pkpZ2xQQERBISOOUjRjzshQ-ck2gK4WVEheljJoj5PzzCDqR-AsFUtPeyyGtFIeEkbZPoPLI5g_2By3U1QW4iGMw5RBbyM_xJ5v7OtAM_vM_mIYKNmkyTzwtI-EtOzzjvhINRyoOPL9yEJyw1Qp8cj8SkrDM7hknheYBfH1US3W7eLaXl48Zq8jqnNFEaKC1CFlHMzp-Fh1ywm9aDftj727eBc-LeBfUT8YtGCfIFoVik3cKvEgUn8eaOxg9tVAFBg', 'id_token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.mdXHLM7H42W9pkjMf8n_xsyiW7pS0HbSV95l41a35vOk2p6xv_3PPjk1BG8J0Rj2QhS5b3zW_hmmKYlMb1mTX_opV1zCB7c3Z1rVjs7-2yiZXRQnIK5pNg32fn1ikbzCNMCOPgPttvYnfdMAyXz0qev1qujCEwwwYDJSzO7oEX_O5ElRYImeq8nshc0D2JkU_aqnMl-3AlPGJEz7RRWi7cGIxb5XAMg4S_gS-gt9j54vP5-Uk5peRMEKiErjgoLa6ZPFrC0D33z3qnujovelu6bvC5R1V7CPIMQ_YyIVOqRTfgf_6wUqmVqpVVEqLxjrY3uGiME9ZZR5J7tze_WrKQ', 'state': 'fDfYKw2orIP7C2o7', 'expires_in': 36000, 'token_type': 'Bearer'}
0.34AuthorizationResponse
{
    "access_token": "Ffd51c2kQx97cTHLkIe3pkpZ2xQQERBISOOUjRjzshQ-ck2gK4WVEheljJoj5PzzCDqR-AsFUtPeyyGtFIeEkbZPoPLI5g_2By3U1QW4iGMw5RBbyM_xJ5v7OtAM_vM_mIYKNmkyTzwtI-EtOzzjvhINRyoOPL9yEJyw1Qp8cj8SkrDM7hknheYBfH1US3W7eLaXl48Zq8jqnNFEaKC1CFlHMzp-Fh1ywm9aDftj727eBc-LeBfUT8YtGCfIFoVik3cKvEgUn8eaOxg9tVAFBg",
    "expires_in": 36000,
    "id_token": {
        "at_hash": "B94Y1lFhzhpAQq0N23eKPA",
        "aud": [
            "https://op.certification.openid.net/"
        ],
        "birthdate": "1972-01-01",
        "c_hash": "UCxk6Q0CcUwi42PfZQJsGQ",
        "email": "jeff.bohren@optimalidm.com",
        "exp": 1507904998,
        "family_name": "Bohren",
        "gender": "male",
        "given_name": "Jeffrey",
        "iat": 1507904398,
        "iss": "https://ofis.theoptimalcloud.com/odn/",
        "locale": "en-US",
        "middle_name": "Scott",
        "name": "Jeffrey Bohren",
        "nbf": 1507904397,
        "nickname": "Jeffrey",
        "nonce": "wzOVQ9s0hVmEZRrL",
        "phone_number": "555-1212",
        "picture": "https://optimalidm.com",
        "preferred_username": "jeff.bohren@optimalidm.com",
        "profile": "https://optimalidm.com",
        "sub": "jBrDabUU7EGUyAxDB6KzCg==",
        "website": "http://optimalidm.com",
        "zoneinfo": "East US"
    },
    "state": "fDfYKw2orIP7C2o7",
    "token_type": "Bearer"
}
0.34phase<--<-- 4 --- AccessToken -->-->
0.34phase<--<-- 5 --- UserInfo -->-->
0.341phase<--<-- 6 --- Done -->-->
0.341end
0.341assertionCheckHTTPResponse
0.342conditioncheck-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
0.342assertionVerifyResponse
0.342conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
0.342assertionVerifyScopes
0.343conditionverify-scopes: status=WARNING, message=The following claims were missing from the returned information: ['updated_at'] [Verifies that the claims corresponding to the requested scopes are returned]
0.343conditionDone: status=OK

Result

WARNING
Warnings:
The following claims were missing from the returned information: ['updated_at']