Test Info

Profile[]
Test descriptionScope requesting address claims
Timestamp2017-10-13T14:35:55Z
Issuerhttps://ofis.theoptimalcloud.com/odn/
Test IDOP-scope-address

Conditions


check-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
verify-scopes: status=OK [Verifies that the claims corresponding to the requested scopes are returned]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.0phase<--<-- 2 --- Registration -->-->
0.001not expected to doDynamic registration
0.001phase<--<-- 3 --- AsyncAuthn -->-->
0.001AuthorizationRequest
{
    "client_id": "https://op.certification.openid.net/",
    "nonce": "CcCTUxreHHzh7qxd",
    "redirect_uri": "https://op.certification.openid.net:60044/authz_cb",
    "response_type": "id_token token",
    "scope": "openid address",
    "state": "tzgK5fRyr54rRx1m"
}
0.001redirect urlhttps://ofis.theoptimalcloud.com/odn/?nonce=CcCTUxreHHzh7qxd&response_type=id_token+token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=tzgK5fRyr54rRx1m&scope=openid+address
0.001redirecthttps://ofis.theoptimalcloud.com/odn/?nonce=CcCTUxreHHzh7qxd&response_type=id_token+token&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60044%2Fauthz_cb&client_id=https%3A%2F%2Fop.certification.openid.net%2F&state=tzgK5fRyr54rRx1m&scope=openid+address
0.197http args{}
0.308responseaccess_token=yODVcfVAaVQ9r05-aqybBwW7zXyB5DOdGYM9t0RDjjJqTdLn6065mGqM0RVIOajdQyzhhcMa3-4JHF9mBbxbJEbLQxz7lPdugFtRodwEXJQQoYIYXRDe8k2O6leSO4PUFw81Hm4gCVM7nqf9_GvzlPi1W9OgEJUmz_1ivdC3-1-0fldi6aSQJA8iDnoOItIzWIDkcsBGylKYvio8Qx3_0MwXjD8btmTCw7GARzzvQ-7uNgS9vK0RNB8MIvE0TTRubL7fiVkep0iM-0LfVx48CA&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.eyJzdWIiOiJqQnJEYWJVVTdFR1V5QXhEQjZLekNnPT0iLCJlbWFpbCI6ImplZmYuYm9ocmVuQG9wdGltYWxpZG0uY29tIiwiZ2l2ZW5fbmFtZSI6IkplZmZyZXkiLCJmYW1pbHlfbmFtZSI6IkJvaHJlbiIsIm5hbWUiOiJKZWZmcmV5IEJvaHJlbiIsIm1pZGRsZV9uYW1lIjoiU2NvdHQiLCJwcmVmZXJyZWRfdXNlcm5hbWUiOiJqZWZmLmJvaHJlbkBvcHRpbWFsaWRtLmNvbSIsInBob25lX251bWJlciI6IjU1NS0xMjEyIiwibmlja25hbWUiOiJKZWZmcmV5IiwicHJvZmlsZSI6Imh0dHBzOi8vb3B0aW1hbGlkbS5jb20iLCJwaWN0dXJlIjoiaHR0cHM6Ly9vcHRpbWFsaWRtLmNvbSIsIndlYnNpdGUiOiJodHRwOi8vb3B0aW1hbGlkbS5jb20iLCJnZW5kZXIiOiJtYWxlIiwiYmlydGhkYXRlIjoiMTk3Mi0wMS0wMSIsInpvbmVpbmZvIjoiRWFzdCBVUyIsImxvY2FsZSI6ImVuLVVTIiwibm9uY2UiOiJDY0NUVXhyZUhIemg3cXhkIiwiYXRfaGFzaCI6Im9PR050ZVU4UEd4cGJ6N1lST1hoYnciLCJjX2hhc2giOiJlUE4xNHRJbDY1MWxzY1lPX01PTGFRIiwiaWF0IjoxNTA3OTA1MzU0LCJpc3MiOiJodHRwczovL29maXMudGhlb3B0aW1hbGNsb3VkLmNvbS9vZG4vIiwiYXVkIjoiaHR0cHM6Ly9vcC5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvIiwiZXhwIjoxNTA3OTA1OTU0LCJuYmYiOjE1MDc5MDUzNTN9.SviLexz4fN0CCDtZgZRmUd4qRQnllGugXhrNpym8N09zktJ29Cvvke9ZvKhIQ5CRkSPSZ3ffPibmpp1PU0NI7iDEUC51G8AUtA60jR97fIwHV4iPYlEIWZIpg0hINgznQj_bNOjuLaU3RP0k9GZPiyI3nsS052jRXMNebYIfovLaEkPaRRci_tLwgDwtHpGpVkWpR8mYQ0Bx2sIp4HVPiHPEDjuzJuJD0u4x8U5Ei2XQlAuLAvom40zJFBx3MrzWdkTs4Z9vmUrOsEyFoy1givKEH00-4M5cEWas9qn1C9S85nfr6MlxSz7sebWia77So9AQEE_5yXxxbYhsO4GGLg&token_type=Bearer&state=tzgK5fRyr54rRx1m&expires_in=36000
0.309response{'access_token': 'yODVcfVAaVQ9r05-aqybBwW7zXyB5DOdGYM9t0RDjjJqTdLn6065mGqM0RVIOajdQyzhhcMa3-4JHF9mBbxbJEbLQxz7lPdugFtRodwEXJQQoYIYXRDe8k2O6leSO4PUFw81Hm4gCVM7nqf9_GvzlPi1W9OgEJUmz_1ivdC3-1-0fldi6aSQJA8iDnoOItIzWIDkcsBGylKYvio8Qx3_0MwXjD8btmTCw7GARzzvQ-7uNgS9vK0RNB8MIvE0TTRubL7fiVkep0iM-0LfVx48CA', 'id_token': 'eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Il9zZnJweWVzUFVyQTl5TkhXYXBOZXYwOVlYQSJ9.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.SviLexz4fN0CCDtZgZRmUd4qRQnllGugXhrNpym8N09zktJ29Cvvke9ZvKhIQ5CRkSPSZ3ffPibmpp1PU0NI7iDEUC51G8AUtA60jR97fIwHV4iPYlEIWZIpg0hINgznQj_bNOjuLaU3RP0k9GZPiyI3nsS052jRXMNebYIfovLaEkPaRRci_tLwgDwtHpGpVkWpR8mYQ0Bx2sIp4HVPiHPEDjuzJuJD0u4x8U5Ei2XQlAuLAvom40zJFBx3MrzWdkTs4Z9vmUrOsEyFoy1givKEH00-4M5cEWas9qn1C9S85nfr6MlxSz7sebWia77So9AQEE_5yXxxbYhsO4GGLg', 'state': 'tzgK5fRyr54rRx1m', 'expires_in': 36000, 'token_type': 'Bearer'}
0.397AuthorizationResponse
{
    "access_token": "yODVcfVAaVQ9r05-aqybBwW7zXyB5DOdGYM9t0RDjjJqTdLn6065mGqM0RVIOajdQyzhhcMa3-4JHF9mBbxbJEbLQxz7lPdugFtRodwEXJQQoYIYXRDe8k2O6leSO4PUFw81Hm4gCVM7nqf9_GvzlPi1W9OgEJUmz_1ivdC3-1-0fldi6aSQJA8iDnoOItIzWIDkcsBGylKYvio8Qx3_0MwXjD8btmTCw7GARzzvQ-7uNgS9vK0RNB8MIvE0TTRubL7fiVkep0iM-0LfVx48CA",
    "expires_in": 36000,
    "id_token": {
        "at_hash": "oOGNteU8PGxpbz7YROXhbw",
        "aud": [
            "https://op.certification.openid.net/"
        ],
        "birthdate": "1972-01-01",
        "c_hash": "ePN14tIl651lscYO_MOLaQ",
        "email": "jeff.bohren@optimalidm.com",
        "exp": 1507905954,
        "family_name": "Bohren",
        "gender": "male",
        "given_name": "Jeffrey",
        "iat": 1507905354,
        "iss": "https://ofis.theoptimalcloud.com/odn/",
        "locale": "en-US",
        "middle_name": "Scott",
        "name": "Jeffrey Bohren",
        "nbf": 1507905353,
        "nickname": "Jeffrey",
        "nonce": "CcCTUxreHHzh7qxd",
        "phone_number": "555-1212",
        "picture": "https://optimalidm.com",
        "preferred_username": "jeff.bohren@optimalidm.com",
        "profile": "https://optimalidm.com",
        "sub": "jBrDabUU7EGUyAxDB6KzCg==",
        "website": "http://optimalidm.com",
        "zoneinfo": "East US"
    },
    "state": "tzgK5fRyr54rRx1m",
    "token_type": "Bearer"
}
0.397phase<--<-- 4 --- AccessToken -->-->
0.397phase<--<-- 5 --- UserInfo -->-->
0.398do_user_info_request
kwargs:{'authn_method': 'bearer_header', 'state': 'tzgK5fRyr54rRx1m', 'method': 'GET'}
0.398request{'body': None}
0.398request_urlhttps://ofis.theoptimalcloud.com/odn.id/api/userprofile
0.398request_http_args{'headers': {'Authorization': 'Bearer yODVcfVAaVQ9r05-aqybBwW7zXyB5DOdGYM9t0RDjjJqTdLn6065mGqM0RVIOajdQyzhhcMa3-4JHF9mBbxbJEbLQxz7lPdugFtRodwEXJQQoYIYXRDe8k2O6leSO4PUFw81Hm4gCVM7nqf9_GvzlPi1W9OgEJUmz_1ivdC3-1-0fldi6aSQJA8iDnoOItIzWIDkcsBGylKYvio8Qx3_0MwXjD8btmTCw7GARzzvQ-7uNgS9vK0RNB8MIvE0TTRubL7fiVkep0iM-0LfVx48CA'}}
0.477http response
url:https://ofis.theoptimalcloud.com/odn.id/api/userprofile status_code:200
0.477OpenIDSchema
{
    "address": {},
    "birthdate": "1972-01-01",
    "email": "jeff.bohren@optimalidm.com",
    "email_verified": false,
    "family_name": "Bohren",
    "gender": "male",
    "given_name": "Jeffrey",
    "locale": "en-US",
    "middle_name": "Scott",
    "name": "Jeffrey Bohren",
    "nickname": "Jeffrey",
    "phone_number": "555-1212",
    "phone_number_verified": false,
    "picture": "https://optimalidm.com",
    "preferred_username": "jeff.bohren@optimalidm.com",
    "profile": "https://optimalidm.com",
    "sub": "jBrDabUU7EGUyAxDB6KzCg==",
    "updated_at": 0,
    "website": "http://optimalidm.com",
    "zoneinfo": "East US"
}
0.477OpenIDSchema
{
    "address": {},
    "birthdate": "1972-01-01",
    "email": "jeff.bohren@optimalidm.com",
    "email_verified": false,
    "family_name": "Bohren",
    "gender": "male",
    "given_name": "Jeffrey",
    "locale": "en-US",
    "middle_name": "Scott",
    "name": "Jeffrey Bohren",
    "nickname": "Jeffrey",
    "phone_number": "555-1212",
    "phone_number_verified": false,
    "picture": "https://optimalidm.com",
    "preferred_username": "jeff.bohren@optimalidm.com",
    "profile": "https://optimalidm.com",
    "sub": "jBrDabUU7EGUyAxDB6KzCg==",
    "updated_at": 0,
    "website": "http://optimalidm.com",
    "zoneinfo": "East US"
}
0.477phase<--<-- 6 --- Done -->-->
0.477end
0.478assertionCheckHTTPResponse
0.478conditioncheck-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
0.479assertionVerifyResponse
0.479conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
0.479assertionVerifyScopes
0.479conditionverify-scopes: status=OK [Verifies that the claims corresponding to the requested scopes are returned]
0.479conditionDone: status=OK

Result

PASSED