Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-09-01 12:04:14 INFO
TEST-RUNNER
Test instance 3J4nd6i4xiA1OPW created
baseUrl
https://www.certification.openid.net/test/3J4nd6i4xiA1OPW
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "request_type": "request_uri",
  "client_registration": "dynamic_client",
  "response_mode": "default"
}
alias

                                
description
test suite runner for openid-client
planId
yOlk25gGaeYUc
config
{
  "description": "test suite runner for openid-client",
  "waitTimeoutSeconds": 2
}
testName
oidcc-client-test-discovery-issuer-mismatch
2020-09-01 12:04:14 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/",
  "authorization_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/token",
  "jwks_uri": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-09-01 12:04:14
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/",
  "authorization_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/token",
  "jwks_uri": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-09-01 12:04:14
SetRequestUriParameterSupportedToTrueInServerConfiguration
Enabled request_uri support in server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/",
  "authorization_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/token",
  "jwks_uri": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "PS256",
    "ES256"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_uri_parameter_supported": true,
  "require_request_uri_registration": false
}
2020-09-01 12:04:14
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "8JB05CQ1rzDoW1NQAiFImpiR2Aa4wbQ2HjiPxEjNlWfdhPyYRWpibexnwzQrpvY9AaP2qWPQLDWgu8sduK_oe6-j3IXoq0aSDzOe90YoWdcMAZe7ov8tAebuR3PFJ-l0R0UD_kzWar4TKy_jJf3zwZygqPpambMMZrpKpMRAie0",
      "kty": "RSA",
      "q": "oWBUH9DOiubdo-RtM44ngkucSMEnVLzTzIhDsGuZqEWMsl_oFIYpwjyfCYi3wMHKjQwu1SwJRdO3ivmPGP2zUSc-QhSKPqNLCfT4bOm455IOMpx_w3vWESXsuMFlkcpBRsfuuuIh4aFw6OVV-BdqAJgSR_-zWC-26Z6xpillku0",
      "d": "TuuOaUROog0W0d9Q2DSAFaI2T3hsoYaVUs1xIrcoRTA0gVXUj-2kbVh8st9b4X9NQ3kiRFNDx0kA7ziUng67QL0_vjwf7edImmY9pqz9AjnBNk2nCQz8oWD1L-QxAGUL_GOBRt5g3P6ZFqMUlwMy5rHtzK9reSJSeEUMBIgNtadragc1hxvWH0_0JHymizTwixMWV0ZGb8Un0bpyFf3mKxk_CfcvTlceIWltC2UJJucgfBwrkymwYvKc1mHqs9U8Vlb3j9wAqcz1W8cEx5abRbuFdQMWGm7lYXBN5bZ8TSvDNzD-dkOSBykb93LGtsWPYWj0n2-VIxhXS0OlEOeAMQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "8817da3b-a593-4bd3-ae02-b8dc050c682a",
      "qi": "C2JYEU3Iz5raIt6NRd44SjFBTD3I9PnxaYIZLP5LFnx3canNVyg2mfcdSvroRZe0dzTKCjk6soBGmCcK1ByGmvjc7Ia9VsxHrX5hloqYzNSZ-OdxJ0LjC3dNnKxQ2ohY-Xmq1VGBIuNMST552uSeZBrD2RZEUhKUV4qOeVxCSoY",
      "dp": "vnahFcBVgM-IKEZeIlGX2k7Rqegof7Te5C6EJTQ_EPubN5-GL-963u09eh_kL9zlkFbxBEwylc4f5I98iK09tC_r3L1o6bKGEeMdCUpSyE6rAtfPh83hJJBiN9BBWMhNd9_8uWq8mObE5nyTq5DVXYVU7nTJJsfMGcmFL87yCkE",
      "dq": "mT99I-mK-uVavXUDLt5kLpvXAlBLJXFcQPN2NGc6OE4z2oCxSCxQI6Cl9svalDZ0P5W-M7np5GG1_0gW2Ei0rPBzcxVGY012yTHVaLhbW62bxfxQaDeFhitZreoapmRHsQvUbaypODeznbeL-Flj1MSVN8JfcfN95EVLttvBFdE",
      "n": "l6VevJxj0I-yiE5hfyK7QWZyNKqIRlafidl-rSkpYcvoUsLo25sf9aYcaYB3nmN48lW-g_LCtE9aVXjo2XPv0ERWGkEXaShgoI4hSZ0016Wn9R-DCKta1I-XC58ul8R3iHGmcZcNUW0gl4c2BRZb7hzH6fEvTFMpQ4amBmFlnmTwk7IRIdQtNN-67vBaua3xlUEH3yuhm1SvxZgbL7kq9yen63VVua73SvjP-LPaQbub89xyFvxSTJ6FglZJEiXwIOCtfWAs-e5D5QEqyYyBr2hVR07uZjalMq6qqCS6dwpV79t11-zt42Dx3kGbl4a2GzY7nBsk8-jl9SKx3enaaQ"
    },
    {
      "kty": "EC",
      "d": "2a-v3ir9drEb3-dZX-3JD9EhsEds0B6OqvM54fAQ27k",
      "use": "sig",
      "crv": "P-256",
      "kid": "6acbbf7a-77ed-4649-8cf4-173af2c7bb77",
      "x": "Gx-um1YFSkR8U7wWjUldyb0aP4xLBjaDPYRg547BRNo",
      "y": "IzSIzQCFYVIQ8Q9zgK4cpwNo2cHq6IPW1pePGr7kG_M"
    },
    {
      "kty": "EC",
      "d": "VSfboOwuiavt2GlmFtu_dwfh5GqlyMEwN1HcSy3x-3s",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "8cd3f03c-2661-4220-b056-c748a39f50b9",
      "x": "RhtNFe0mFDqGEn9Ycy27YbhdCSBRL0szrXsKUCsiH3I",
      "y": "kaqH8kP02sivSDf9QmOHjrtAzBN89ywZSWtFuUk45dY"
    },
    {
      "kty": "OKP",
      "d": "W0H8_sd8EkPacb_bPxdRFUzZ_lC_a4_THheWXfVH0qk",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "acc44412-5591-4672-bf5a-67670d2d0604",
      "x": "VRyn_kWA4jt48gLAJkhnMd0WUqHoeZnc9NFL193h4-w"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "3qN421DJoBX-xFfsK6aArzRpzU9jmWYaKKOiyd3DLiE9a0XlZf7ebou16ICUWX8ncrRNK5HEflDoGnpPUVUohEJ4vaUkgplKkvC_bEBmEWQfyxz5PvVedFNYXgFI5l_plN6sObPpTGTH_KmyevQIYYI6M8q6KNT127fS8SSYtoE",
      "kty": "RSA",
      "q": "k_tC8F-k8_VHPDMZE9y-h_u-EuMsoUOWPb5dLueHjxBGJDjv9EozeRZDM96g3Z4sWDEpNNq3do2zwzI0HFQmT3xFF5MmlpWwFLNKVKEeduJ8hrFNQkOFcPHENBx_fCeWhQ9JO6R16s7x9Ufo0Ur4Vd0grkmPy7Df_xn2cYtofuM",
      "d": "DhR2IVEoXYmW9qmqSDszSzLfReC5Tl5bJpe3fDFCWmieVlyc2SJKrLt6oYETNt7pQVbf5r1tBZEtTVARsBQpCYyqY3c6xUGNXH4QAmUC66xHHp6xIjFrfJABysNupos0cYppcagwCXO_gDcZ75oRJWuen08MqrCR71EpFFxKiU4BAhChd7uh3M1iIAhilo4dACe-mqyvTNtLwiM_aw3f8DjyJPfjgp3_XQERoO2hk0OkquSj6Zeu5-htyTgQ-PmQXxRXtmfS3M1h2m8ACrKNd05RR-Eqr5UtnfIWmmbuR_27rkmq1ppMHbUkiGxhje7qso5whAUWsQBpwlW88nM6AQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "831901aa-4928-49e6-bcea-b1f1969d1b6a",
      "qi": "NJEBjPiuv13TqpUcIxZgcn0cxUGY4xAtKEDu2pn8-oKGtCUlumCIlC-jhbFQkRDCd69MGBQmyeYYUEMCEyOPUFn7wbyqj-ADDnkYkRm2fF1Nwe6mhVz_RJO-oTSbKyA4b7a6RNUTwDEesWBzjVjKq-k12BoCcAN2r7RkEdp2-J8",
      "dp": "ucotNsfKGf-A5RSCD0MZLBxPFnfjo8VimvtDA7Y-BKbUfEqNznnL4PBR0z5Jjg3gO4Zex7cTBF478qySuEqaTxSxcYD4YMvPQaQJ-iobgvPM3FDHZlSYh_ZtTbVAwo7Te9n-WwDZ9Vg804pBWP2AaO6l50aL5zsgGETkkTt6_QE",
      "alg": "RSA-OAEP",
      "dq": "Hq8JyTe7x04DkEr0Fzc9VorvdZEfTuzpuTHAtpoRdKumL5qSvq-oDqJ8GsQ9zNYgUcUXyzrSscVeEcpWHc2hB_g3h1TeunidQx2N-xBRdcsukOswnt3LTIkE6t1B3eeDgWGTCMfoH2D7sKVRdBw8c-le_mSIaW7qc0XZ4N9MMos",
      "n": "gLJi5KAD88mawGW4OwlWazC3sJftr94QUKa98ZoejREX4q9Z90HnQfyxRXhZZtU7EFtyhpTOnuQugSfhul8DatEVEfs5W8WJ0f4EurLarX6QfeL_0T9BsgDw4405soQ2cKRYsSbV2yU86QclcXfr_L4XYj8f1sUcM890zrSf3psPFDAaiY2ysaDwPbQB2WQL7I7yEIwob_DVHg4F_fcVYvXT1JisI0b180BmNVYChLL6VLE_A0jqyU4pkZZJfo2ktbK4ruL1W9UeB5y6up8H4MYvm6mj4daVwsfBw28mAfd8Hf5abwyM0joh1-6hhO2-fpnnYUDXGwwnCgnpzKVSYw"
    },
    {
      "kty": "EC",
      "d": "R6bV5Ifze08vI-XO5JRTjfdatiTNi8fHHhaFCtOkevo",
      "use": "enc",
      "crv": "P-256",
      "kid": "a1c1158b-979d-4131-b085-b1effc24696a",
      "x": "-7N8LZtfS7Lah8vgMeAizvl_ryDGYtnsKuAFQht8Ifw",
      "y": "2AvVOiqXp1qRebKOYY7LgK7RiuOe7A1SW71vWNICYk4",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "8817da3b-a593-4bd3-ae02-b8dc050c682a",
      "n": "l6VevJxj0I-yiE5hfyK7QWZyNKqIRlafidl-rSkpYcvoUsLo25sf9aYcaYB3nmN48lW-g_LCtE9aVXjo2XPv0ERWGkEXaShgoI4hSZ0016Wn9R-DCKta1I-XC58ul8R3iHGmcZcNUW0gl4c2BRZb7hzH6fEvTFMpQ4amBmFlnmTwk7IRIdQtNN-67vBaua3xlUEH3yuhm1SvxZgbL7kq9yen63VVua73SvjP-LPaQbub89xyFvxSTJ6FglZJEiXwIOCtfWAs-e5D5QEqyYyBr2hVR07uZjalMq6qqCS6dwpV79t11-zt42Dx3kGbl4a2GzY7nBsk8-jl9SKx3enaaQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "1e7c8fc8-dc9a-41a9-b88e-fc5bd5395c2f",
      "n": "n4Z9UHCZUAA-teWKH-yksE7YD88m7LoP7CLoEqBXVgbN9ELhTibQ2pKbzQ-mHtAmtNf_c1y1eEQBeN7kSaHZNGYvRhR33kdUvLxaKdjSkhO9LJA_0oKPiTdiXLrnCUWUF_wzgWHR79dZ6zpoRMfPlXzIFcp4xcVsRg5vJnobUQbKdYKEOD9z6m5xoxxvcHmHecz29FhBc3DY7IjD2C4UH4Z9xBS8pf27OmKpxMAuE2pg60ifnX-QhdXwYivmfMQMp4xpnedAvMnQWxussei0iq9POSGaUc4_M8Vs0xVvVi_V6QDWzUYL3akjwuVH_3Zm_VJWs1H11BFV-lkA_RRqOw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "6acbbf7a-77ed-4649-8cf4-173af2c7bb77",
      "x": "Gx-um1YFSkR8U7wWjUldyb0aP4xLBjaDPYRg547BRNo",
      "y": "IzSIzQCFYVIQ8Q9zgK4cpwNo2cHq6IPW1pePGr7kG_M"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "c0d8b7f7-02ba-423b-9665-8b87c5ef47b0",
      "x": "JMsHCJUJaw7oOgZ3JUhYNFLQNE7uTa-PxDzid5Q_0VM",
      "y": "bWwtmUySBVs3uodUCh4aBwBVRlRTQ7R7y7vbLlqHlI8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "8cd3f03c-2661-4220-b056-c748a39f50b9",
      "x": "RhtNFe0mFDqGEn9Ycy27YbhdCSBRL0szrXsKUCsiH3I",
      "y": "kaqH8kP02sivSDf9QmOHjrtAzBN89ywZSWtFuUk45dY"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "acc44412-5591-4672-bf5a-67670d2d0604",
      "x": "VRyn_kWA4jt48gLAJkhnMd0WUqHoeZnc9NFL193h4-w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "831901aa-4928-49e6-bcea-b1f1969d1b6a",
      "alg": "RSA-OAEP",
      "n": "gLJi5KAD88mawGW4OwlWazC3sJftr94QUKa98ZoejREX4q9Z90HnQfyxRXhZZtU7EFtyhpTOnuQugSfhul8DatEVEfs5W8WJ0f4EurLarX6QfeL_0T9BsgDw4405soQ2cKRYsSbV2yU86QclcXfr_L4XYj8f1sUcM890zrSf3psPFDAaiY2ysaDwPbQB2WQL7I7yEIwob_DVHg4F_fcVYvXT1JisI0b180BmNVYChLL6VLE_A0jqyU4pkZZJfo2ktbK4ruL1W9UeB5y6up8H4MYvm6mj4daVwsfBw28mAfd8Hf5abwyM0joh1-6hhO2-fpnnYUDXGwwnCgnpzKVSYw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "a1c1158b-979d-4131-b085-b1effc24696a",
      "x": "-7N8LZtfS7Lah8vgMeAizvl_ryDGYtnsKuAFQht8Ifw",
      "y": "2AvVOiqXp1qRebKOYY7LgK7RiuOe7A1SW71vWNICYk4",
      "alg": "ECDH-ES"
    }
  ]
}
2020-09-01 12:04:14 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-09-01 12:04:14 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-09-01 12:04:14 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": "1580000000"
}
2020-09-01 12:04:14 SUCCESS
GetDynamicClientConfiguration
No client details on configuration, created an empty dynamic_client_registration_template object.
2020-09-01 12:04:14
oidcc-client-test-discovery-issuer-mismatch
Setup Done
2020-09-01 12:04:15 INCOMING
oidcc-client-test-discovery-issuer-mismatch
Incoming HTTP request to test instance 3J4nd6i4xiA1OPW
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/3.15.9 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
/.well-known/webfinger
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "resource": "acct:3J4nd6i4xiA1OPW.oidcc-client-test-discovery-issuer-mismatch@www.certification.openid.net",
  "rel": "http://openid.net/specs/connect/1.0/issuer"
}
incoming_body
Webfinger Request
2020-09-01 12:04:15
CreateWebfingerResponse
Created webfinger response
webfinger_response
{
  "subject": "acct:3J4nd6i4xiA1OPW.oidcc-client-test-discovery-issuer-mismatch@www.certification.openid.net",
  "links": [
    {
      "rel": "http://openid.net/specs/connect/1.0/issuer",
      "href": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/"
    }
  ]
}
2020-09-01 12:04:15 OUTGOING
oidcc-client-test-discovery-issuer-mismatch
Response to HTTP request to test instance 3J4nd6i4xiA1OPW
outgoing
{"subject":"acct:3J4nd6i4xiA1OPW.oidcc-client-test-discovery-issuer-mismatch@www.certification.openid.net","links":[{"rel":"http://openid.net/specs/connect/1.0/issuer","href":"https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/"}]}
outgoing_path
/.well-known/webfinger
2020-09-01 12:04:15 INCOMING
oidcc-client-test-discovery-issuer-mismatch
Incoming HTTP request to test instance 3J4nd6i4xiA1OPW
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/3.15.9 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2020-09-01 12:04:15
ChangeIssuerInServerConfigurationToBeInvalid
Added invalid issuer to server configuration
issuer
https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/INVALID
Discovery endpoint
2020-09-01 12:04:15 OUTGOING
oidcc-client-test-discovery-issuer-mismatch
Response to HTTP request to test instance 3J4nd6i4xiA1OPW
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/INVALID",
  "authorization_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/token",
  "jwks_uri": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/3J4nd6i4xiA1OPW/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "PS256",
    "ES256"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_uri_parameter_supported": true,
  "require_request_uri_registration": false
}
outgoing_path
.well-known/openid-configuration
2020-09-01 12:04:17 FINISHED
oidcc-client-test-discovery-issuer-mismatch
Test has run to completion
testmodule_result
PASSED
Test Results