Test Info

Profile[]
Test descriptionRequest with prompt=login
Timestamp2017-10-13T14:15:47Z
Issuerhttps://ofis.theoptimalcloud.com/odn/
Test IDOP-prompt-login

Conditions


multiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.001phase<--<-- 2 --- Registration -->-->
0.001not expected to doDynamic registration
0.001phase<--<-- 3 --- AsyncAuthn -->-->
0.002AuthorizationRequest
{
    "client_id": "https://op.certification.openid.net/",
    "nonce": "bmn5QEsZKufJGrJH",
    "redirect_uri": "https://op.certification.openid.net:60044/authz_cb",
    "response_type": "id_token",
    "scope": "openid",
    "state": "PGGULOjXYZfM8KHV"
}
0.002redirect urlhttps://ofis.theoptimalcloud.com/odn/?nonce=bmn5QEsZKufJGrJH&response_type=id_token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=PGGULOjXYZfM8KHV&scope=openid
0.002redirecthttps://ofis.theoptimalcloud.com/odn/?nonce=bmn5QEsZKufJGrJH&response_type=id_token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=PGGULOjXYZfM8KHV&scope=openid
0.211http args{}
0.295responseaccess_token=Go74lX0DA4fIYIqT9uTAxhc_N8MR8BUNPKicnUFSQdhA_TWOq_rofRHxvzCc8tneKZgoSAHm9MvwsbT9jlIleVXjt1SLuESCxiFdbHvHvLkwjGgmTaOf_MOouIL8NMJnS72117_BpA5hHLChXFAwkw0qUtqKnJSaZH_1KRzpfYOtWtaJsfM3t8kc8SUZICKUgW4_2M0W16Yyk8xFdGB0QT3XbOfuC_3IB7fv5FW53d9MpOLGYpV6kHrk2_3A2nBA&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.xxruB7JzTgYU7kgCsm_PUGsDRfi1PkbG6n1T1N082-N06pgD6XSwW2E2BbxFUPFCiIhqv-tYmy5g8UKsGiDo8MdxRcnJB5EzLYH1lZoiU21cl3yI3qTnamDxNK5PYUGvTjLFFcsz48_5bE8VIF45b9HXocJB6ucIMYYcobl1XQ0NDOG8a6u6TaD2C8-qeZRsXsR9E5yLw4pZxLA0dRZCPx6hamVUOneyxKp9Ov0wGIaI_dctkimH2i9WVZBKaloqK-9o2iYdJyL49ZLBlny-6j0I7DjgxigexN2De8dTmGubGwqfsjgyt71_O4x7pEzsnz1tYZpmXYRxOjnqnr2Jqw&token_type=Bearer&state=PGGULOjXYZfM8KHV&expires_in=36000
0.296response{'access_token': 'Go74lX0DA4fIYIqT9uTAxhc_N8MR8BUNPKicnUFSQdhA_TWOq_rofRHxvzCc8tneKZgoSAHm9MvwsbT9jlIleVXjt1SLuESCxiFdbHvHvLkwjGgmTaOf_MOouIL8NMJnS72117_BpA5hHLChXFAwkw0qUtqKnJSaZH_1KRzpfYOtWtaJsfM3t8kc8SUZICKUgW4_2M0W16Yyk8xFdGB0QT3XbOfuC_3IB7fv5FW53d9MpOLGYpV6kHrk2_3A2nBA', 'id_token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.xxruB7JzTgYU7kgCsm_PUGsDRfi1PkbG6n1T1N082-N06pgD6XSwW2E2BbxFUPFCiIhqv-tYmy5g8UKsGiDo8MdxRcnJB5EzLYH1lZoiU21cl3yI3qTnamDxNK5PYUGvTjLFFcsz48_5bE8VIF45b9HXocJB6ucIMYYcobl1XQ0NDOG8a6u6TaD2C8-qeZRsXsR9E5yLw4pZxLA0dRZCPx6hamVUOneyxKp9Ov0wGIaI_dctkimH2i9WVZBKaloqK-9o2iYdJyL49ZLBlny-6j0I7DjgxigexN2De8dTmGubGwqfsjgyt71_O4x7pEzsnz1tYZpmXYRxOjnqnr2Jqw', 'state': 'PGGULOjXYZfM8KHV', 'expires_in': 36000, 'token_type': 'Bearer'}
0.439AuthorizationResponse
{
    "access_token": "Go74lX0DA4fIYIqT9uTAxhc_N8MR8BUNPKicnUFSQdhA_TWOq_rofRHxvzCc8tneKZgoSAHm9MvwsbT9jlIleVXjt1SLuESCxiFdbHvHvLkwjGgmTaOf_MOouIL8NMJnS72117_BpA5hHLChXFAwkw0qUtqKnJSaZH_1KRzpfYOtWtaJsfM3t8kc8SUZICKUgW4_2M0W16Yyk8xFdGB0QT3XbOfuC_3IB7fv5FW53d9MpOLGYpV6kHrk2_3A2nBA",
    "expires_in": 36000,
    "id_token": {
        "at_hash": "zQRarYitzkMrix7KIgfh7g",
        "aud": [
            "https://op.certification.openid.net/"
        ],
        "birthdate": "1972-01-01",
        "c_hash": "TcRmrWvsFtOwylrawi3FnQ",
        "email": "jeff.bohren@optimalidm.com",
        "exp": 1507904731,
        "family_name": "Bohren",
        "gender": "male",
        "given_name": "Jeffrey",
        "iat": 1507904131,
        "iss": "https://ofis.theoptimalcloud.com/odn/",
        "locale": "en-US",
        "middle_name": "Scott",
        "name": "Jeffrey Bohren",
        "nbf": 1507904130,
        "nickname": "Jeffrey",
        "nonce": "bmn5QEsZKufJGrJH",
        "phone_number": "555-1212",
        "picture": "https://optimalidm.com",
        "preferred_username": "jeff.bohren@optimalidm.com",
        "profile": "https://optimalidm.com",
        "sub": "jBrDabUU7EGUyAxDB6KzCg==",
        "website": "http://optimalidm.com",
        "zoneinfo": "East US"
    },
    "state": "PGGULOjXYZfM8KHV",
    "token_type": "Bearer"
}
0.439phase<--<-- 4 --- AccessToken -->-->
0.44phase<--<-- 5 --- Note -->-->
2.397phase<--<-- 6 --- AsyncAuthn -->-->
2.398AuthorizationRequest
{
    "client_id": "https://op.certification.openid.net/",
    "nonce": "VVOEXYDRAc6CqPAn",
    "prompt": [
        "login"
    ],
    "redirect_uri": "https://op.certification.openid.net:60044/authz_cb",
    "response_type": "id_token",
    "scope": "openid",
    "state": "RYIbbZGZw6mLgFjS"
}
2.398redirect urlhttps://ofis.theoptimalcloud.com/odn/?nonce=VVOEXYDRAc6CqPAn&state=RYIbbZGZw6mLgFjS&prompt=login&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&response_type=id_token&scope=openid
2.398redirecthttps://ofis.theoptimalcloud.com/odn/?nonce=VVOEXYDRAc6CqPAn&state=RYIbbZGZw6mLgFjS&prompt=login&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&response_type=id_token&scope=openid
15.716http args{}
15.842responseaccess_token=a4FZKjqF4OjuouOMrRlXKsPgAQ_DbppHdfr9mR3HpyuabXZxg7EJl0hJoQH6wPDHEy07mtC8PUIR2jZnSMDEHZvJqGHaTs921NJBFH3OmyT80ahW-ZapETdTlwpQ3D47UlDq9mr6dt5qAshaGhKpVjCEQBjVBZh7CJwadgZWty0ee16yiStO82lv_mI7W7sCpV1ZE3leyF3MhdNVu3Km2k9QGBIdfFaG-bguGwr1at86dxb8LjMJuPQSxcpNMRlF&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.lO-MtYhtD-Uyp_dJzwgz1YG9V9fdd3RSHiKCT8QtBbJh5nq4_LP0Mz7kEhuW151hOf8pasTRxcUO4Kl2gmcp9r7xr76zEev0kfX0T6mBI0mEc7SAl949Eoi2fJqwWyD8GaV35aUUePKxI3gVNjyqeGeJH8uTE0D4UDCWPsskfTdNGjuMFVvB-IAmKL6DgX3lINUD8g0AxbUoSiJHXTsedQbDCc76rcqmc4IcJj67RPNXsdnFtkOx5f64T5PhlD1bevjYockxyulSQj8sgfwjpN2I-hwpo2WuQjZ-JhvqsDog6XDDsn1zSNcOoYB-RE7MbkgbiNoTYHH-pAxF9iFi-g&token_type=Bearer&state=RYIbbZGZw6mLgFjS&expires_in=36000
15.843response{'access_token': 'a4FZKjqF4OjuouOMrRlXKsPgAQ_DbppHdfr9mR3HpyuabXZxg7EJl0hJoQH6wPDHEy07mtC8PUIR2jZnSMDEHZvJqGHaTs921NJBFH3OmyT80ahW-ZapETdTlwpQ3D47UlDq9mr6dt5qAshaGhKpVjCEQBjVBZh7CJwadgZWty0ee16yiStO82lv_mI7W7sCpV1ZE3leyF3MhdNVu3Km2k9QGBIdfFaG-bguGwr1at86dxb8LjMJuPQSxcpNMRlF', 'id_token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.lO-MtYhtD-Uyp_dJzwgz1YG9V9fdd3RSHiKCT8QtBbJh5nq4_LP0Mz7kEhuW151hOf8pasTRxcUO4Kl2gmcp9r7xr76zEev0kfX0T6mBI0mEc7SAl949Eoi2fJqwWyD8GaV35aUUePKxI3gVNjyqeGeJH8uTE0D4UDCWPsskfTdNGjuMFVvB-IAmKL6DgX3lINUD8g0AxbUoSiJHXTsedQbDCc76rcqmc4IcJj67RPNXsdnFtkOx5f64T5PhlD1bevjYockxyulSQj8sgfwjpN2I-hwpo2WuQjZ-JhvqsDog6XDDsn1zSNcOoYB-RE7MbkgbiNoTYHH-pAxF9iFi-g', 'state': 'RYIbbZGZw6mLgFjS', 'expires_in': 36000, 'token_type': 'Bearer'}
15.847AuthorizationResponse
{
    "access_token": "a4FZKjqF4OjuouOMrRlXKsPgAQ_DbppHdfr9mR3HpyuabXZxg7EJl0hJoQH6wPDHEy07mtC8PUIR2jZnSMDEHZvJqGHaTs921NJBFH3OmyT80ahW-ZapETdTlwpQ3D47UlDq9mr6dt5qAshaGhKpVjCEQBjVBZh7CJwadgZWty0ee16yiStO82lv_mI7W7sCpV1ZE3leyF3MhdNVu3Km2k9QGBIdfFaG-bguGwr1at86dxb8LjMJuPQSxcpNMRlF",
    "expires_in": 36000,
    "id_token": {
        "at_hash": "5Btf_gECgoksccD8fDy9Fw",
        "aud": [
            "https://op.certification.openid.net/"
        ],
        "birthdate": "1972-01-01",
        "c_hash": "3WPB9uGVlfEOm7sVZiy-Tg",
        "email": "jeff.bohren@optimalidm.com",
        "exp": 1507904747,
        "family_name": "Bohren",
        "gender": "male",
        "given_name": "Jeffrey",
        "iat": 1507904147,
        "iss": "https://ofis.theoptimalcloud.com/odn/",
        "locale": "en-US",
        "middle_name": "Scott",
        "name": "Jeffrey Bohren",
        "nbf": 1507904145,
        "nickname": "Jeffrey",
        "nonce": "VVOEXYDRAc6CqPAn",
        "phone_number": "555-1212",
        "picture": "https://optimalidm.com",
        "preferred_username": "jeff.bohren@optimalidm.com",
        "profile": "https://optimalidm.com",
        "sub": "jBrDabUU7EGUyAxDB6KzCg==",
        "website": "http://optimalidm.com",
        "zoneinfo": "East US"
    },
    "state": "RYIbbZGZw6mLgFjS",
    "token_type": "Bearer"
}
15.848phase<--<-- 7 --- AccessToken -->-->
15.848phase<--<-- 8 --- Done -->-->
15.848end
15.848assertionMultipleSignOn
15.848conditionmultiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow]
15.849assertionVerifyResponse
15.849conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
15.849conditionDone: status=OK

Result

PASSED