Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-09-01 12:51:16 INFO
TEST-RUNNER
Test instance 5w9t61nBbbSR4nd created
baseUrl
https://www.certification.openid.net/test/5w9t61nBbbSR4nd
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "id_token token",
  "request_type": "plain_http_request",
  "response_mode": "form_post",
  "client_registration": "dynamic_client"
}
alias

                                
description
test suite runner for openid-client
planId
2AWaC6uTX8byR
config
{
  "description": "test suite runner for openid-client",
  "waitTimeoutSeconds": 2
}
testName
oidcc-client-test-invalid-iss
2020-09-01 12:51:16 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/",
  "authorization_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/token",
  "jwks_uri": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-09-01 12:51:16
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/",
  "authorization_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/token",
  "jwks_uri": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-09-01 12:51:17
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "7hLT2ZC0DyvZmtHcE0eBjHnpc7qyvsSd-7iL4LMq_Ohr3IAU5PEug6H0jH3xqVeKArNX9ca8DkwY7q5IJxJ5j8riXPPKTaf-JhIoXf2DT0h_FkES_R1RZZECOJJ2hrrbbJypklJZYRjBFFY19OZPVLtmuH9BBFZYZv9TKAERpJs",
      "kty": "RSA",
      "q": "rAfkJHTnImyKtZ9oBoJJJ-c1DpxYR4fJcVFdgV1BEvsQnmePcjYpbeJQUrNQs2XHQNtvqm2e_0m4ayRZHvPbRvihtwFabbi8pr8JrVD3UC0qEvLXnndlkhtGdtzZSS1z0oSrEpFmGbN6yqhXGV6MUmbGE9ZeeJ45V5CeE3HttOU",
      "d": "JJowbylq8ntUEcAKG_hdkUDg5pN3Xh2XPg451PujcIAzIU4uhkMwcbGxvEaIPfP6Dyn8jKN0gqaakl_w_JCuObWojlyz2wYh2WHYgfbYQWX7YFko0gMG5UJwWrXzl_E0PyyB3bd43HvcxeWYM08KdF7SaUlCIc_iSZ8y2TErdMdlLXCoST-zz6tTBVxl5UQlvPNcnufrF-qhnQD-dV8V8OzVJ0TLsHk9RxgTav9AkKy9NNfRWqLN3T3drnML_gXhAkyhnVi0i1gtF9mvv1V-C2OctSPGDKNA2vGutc-_KHvXgkj9s0jeQ5ruAMcPdETbXMkM1VRSrPmLKFV3lPp40Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "b9cbfb94-74cd-48b7-8457-2c58efd94166",
      "qi": "N1S8_tMv7lr6zM2zqAkJOM0lKw7axPD4qBZt_olm9emnun7Z3mHsLaWKpkL_bLDPP2VQFyfd1Vr3uSlXB83Ggb79W_ay-wvg_ItfhvEQlfvGYNUvx0BarlvEZsNENPg8JyhYrBjsnXF9QrkofmsstVFVcHZGFAi2WzbAdJp8rR0",
      "dp": "MNOZsVhVJXtn0LHTwfx7XFUwhPS4bhmjERpDTd1RJreAT6PRJTc1w_d2UU4PPxzeCDnCA30z2nbO8jy6PZEzb0M787ZoOk8G98Xnk4dH4_3JWsYT3-egZwU7gGDBgFZYZEkpGgJbpGdQShx4SnbltEoPAi3PJtWSoeUhp-W4OZs",
      "dq": "XBXpSJ6PLv0dDvWiUIGjOUnpO8Xy9283JIJiZCIP-GIOVkynG4LkkF5pkqtL0ovzqcMMthTx3EORBUEyt3_fa9Ehd32w8zTFPxjZzD2f9PoIIJZ_VuMgqqIRCQVVBnffHNxJWqocFjvdyedsoDbdNCqxcuL4NOa1WSsfgtckYAU",
      "n": "n_v9BKQ2-ZXHMqRQG-f8nOm9IYEkmTMkJ9cohNteE8yRfewfoLDb_XD7j3TB5RiNSRwHoB2FyitRuv9omdOWmEspfSuTRXRsCGUbfC56UZTKqwRsxzYAe6KIeJQIS8Br6TPjFNGAbRPt3SRnALRCB70wC_IgWwCDj1cd9B39_AaNczmTT5pBdoDWuFmigc-JVrkekSuijWGLbF4oFrtFdyariCqFNJvBTot2YSUOgeyHOt0tCNIqk6ly5F1c2mqKNY-MxO7y1VqdjuU04YDCPH4r6cqh3vj3Bw5JvIaidjUXAnhlUAmsYyZaDhslNE1SaKCViPc2OZWJdiwIKwQ6pw"
    },
    {
      "kty": "EC",
      "d": "EAItbnvcpst7A3uk-JALv-ztXz4WOg1Hy0QePxisl9M",
      "use": "sig",
      "crv": "P-256",
      "kid": "12ba1fd2-60a4-4b4a-bcc9-d5993dd22c10",
      "x": "a7oq1IuVT_GoH2YTQhwZ-FKGqjVnQWdewQKoUzjlUps",
      "y": "JcOm1xIQEamg0RNpjthfCaq55aTQgV4w6nIad2fFImA"
    },
    {
      "kty": "EC",
      "d": "NWBpFs14oPloKKlbkLVQ6VI4Oz8cFUl4drUmNpdy_7c",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "d792bbe0-930e-4a65-8d08-4b52423caa36",
      "x": "c0-uIhGXyWmyaEsPduksKzF1D0HBcbc7pvoCsSh9n5I",
      "y": "WjToT_T3DAArRPZ70MjREENK1msSQbVHZU2krl8QMIg"
    },
    {
      "kty": "OKP",
      "d": "bYTAKX2ZOGw-iD42WFYCefX8jwl6YEEN9P6WI9nPR8c",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "d66e1937-df70-47cf-978d-d5ec50c47885",
      "x": "upIBI5XPQ0Xu2QbvWf9pf_oZd6Zj0vQVivVYC2ar68I"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "2hY12igSLkuwiaGwknKX2daSKvtjd10H1h2O_1B9RHvFMHWtVBz9_T44KYyoZCfIuACitxehrGgyUydtvat7_j92phc8tMSTVJKcstfvgfR5AkKzvSKSjqXL7AcVjNaErzty9vCFMifxq15fcIu8QfoB9yz-VQXBk4X3t29em0s",
      "kty": "RSA",
      "q": "y6NduTVDraPta4I0PCpIkJbY49aT55TKhDPaac96qPZSpWdhhAe6ETl8ftg6YTxS99ugE5QpBQQpbscufIpxBUs615OYgqMtxBRbG8UNzlsO7qL_S2pYD2LhpeFVlZ6hbj7QW8S3RGSaUhfJvhT_fS0q8nN5jqvslzFxJiKvFdU",
      "d": "DOo6LJqSBy2KJEJIGeeTz-CExxnIqNWr23JqGSXyrjLEjcPHfPF6aLdZnXU4vKf6mWW9ekutLAU8iMZa1QBytKCn821Hkr4NSVYw-eOXQIxvJPkAug_9_YM9vgHfmvxFaJ2QSPrckmfr8ppoBMhSG7YxgIGYP4Hy3W4HXhDfXLaFAABQwckM-OjYixwdXUVV_EI_AdSZcFxEy_0X-gvHnqjY3Ls8JObr6vPQCjYO_EJru5sg37Fz-gXD5xSlWQEivfN13XtbSW4C51UuxSGMab-QnoJjCbrYiN-cpI-0tfS7FMTOsG2mKVHzl5EuY6kedsT3vDoHSzZsojXE7oxhOQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "59b5fb14-e1c3-4eb6-b450-77517e68ad03",
      "qi": "ex3e2QuyUgNvWIb2l6JrGJF6U5haa4aiP8GTIhG5ujs1iXXRp8AWN3YZcGBE2C6b81FpT2iuIGroMxxizHh0y9VkgWTkP9GBmWsi2Rit1hiyiTEDBWQ3rbBF1j4Yimmb5Y0WJNMiswsrF7jR42dItz8uXP17vOzaCrB1vrz2xMs",
      "dp": "0NDZaXRazCc-9tlxtxewHC2esTcZay4RlcuhowdPmmYkTh0vBE3qSDPuFKKQja2mO8CoDEW9UNZH8WTcZ_Kte6kKk0fGoZNjOmRTU878jmMmBqsVbLCQwbMwiWPTF5JDY4G5t4ZfEsI6XQq0uY-ih0252hEjyQcE7ZslsGcbn_c",
      "alg": "RSA-OAEP",
      "dq": "M661pcDP-WzmX-e-zBpLKm8ugry98wN_Vog2ga5HykQh-5q-VB0F60M0xpioUG9X-1IBUZbDxmMlBNmGgdM9FgPe3kG2bklt3xrveJ_Nfjb8FjLGKmTGDrmg3VHQP9Xv0KQei3vkq3YA-J7S8-wuX52sDbai_kPCGylQN0aMOzU",
      "n": "rXrIsCCrWmH6UpwQYV31X1rcCcnxjQDtpEwOqyins3haRqRLzeO8vnPe4an1taKrcEAp-kn0VfeHbNEE2I6z0V-T6qgqZY_SNtshUpCPxkRMrf9axrAyPXRJUDTDpwE6PElLiFL70QNS-3Ql8g-T6fqAe5JF17aqtDpjYflA_QJrWncf1Nn3HP5ruDU3NI0OAcMrKGpzgrpUdHSwmJVsmlymkO3wcbIQxQgwcw7Nsq082Rr-B5Qbb-mvMTkibGoxgoTG6X5QeYE0ovwdcHWaXG_7SkjCJGP-Z_iGHHyfDjnzXt4vdexEizBEsLSKIHiyZaMZ21O2bOCv6wIwirlcZw"
    },
    {
      "kty": "EC",
      "d": "HXvdvgn4wYS7cu1RJK2xhz6g33QZHc6KkC2QZ1nqQJk",
      "use": "enc",
      "crv": "P-256",
      "kid": "7965c264-3964-4d57-870a-c5526f7b38a4",
      "x": "1FU1ndLC5rVPblm0WC2KyPnGQfWEXOFjCg3sgyTsO98",
      "y": "fx8k_CARcobr8SQPY2t9s6pu9EXyVgVqkpYNpau52Go",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "b9cbfb94-74cd-48b7-8457-2c58efd94166",
      "n": "n_v9BKQ2-ZXHMqRQG-f8nOm9IYEkmTMkJ9cohNteE8yRfewfoLDb_XD7j3TB5RiNSRwHoB2FyitRuv9omdOWmEspfSuTRXRsCGUbfC56UZTKqwRsxzYAe6KIeJQIS8Br6TPjFNGAbRPt3SRnALRCB70wC_IgWwCDj1cd9B39_AaNczmTT5pBdoDWuFmigc-JVrkekSuijWGLbF4oFrtFdyariCqFNJvBTot2YSUOgeyHOt0tCNIqk6ly5F1c2mqKNY-MxO7y1VqdjuU04YDCPH4r6cqh3vj3Bw5JvIaidjUXAnhlUAmsYyZaDhslNE1SaKCViPc2OZWJdiwIKwQ6pw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "bfff88b3-bcb0-4742-9531-dae8db8e40ef",
      "n": "wDHWHbKfLBJ8ao_iarVAvgiVCzfW1QhE1tfXWSzLSYLp6FlA2QZIRAfFRNpnC53L-Nf9o5yVkpy6K0wavNGjHa23PYOR91MjlCbsTnFWgcdtqPVkvHf-AjV6xEaJhHqzxSrmaOMPRSEIFQHGlCYKTNcq35ALpzGUYjKvaBnXhfNGRPHJmoBJQLh0n83e0RkIRBFFVD1UF8tlCHGk7ob7wamsO5EdO_rmotXILOgipqssmU7grOxFk-hbB74Wg-TRm0M7lD61Kc2pcoIR12Qeuw_9ZK5myxkiP2EEvxkfIKx9pIzRH_hAOKVp2TrBy2jRMbLnWwRrsdAqzZSacSQMzw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "12ba1fd2-60a4-4b4a-bcc9-d5993dd22c10",
      "x": "a7oq1IuVT_GoH2YTQhwZ-FKGqjVnQWdewQKoUzjlUps",
      "y": "JcOm1xIQEamg0RNpjthfCaq55aTQgV4w6nIad2fFImA"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "ce00d9f1-9ee2-4d9d-ade8-050dbe676a8c",
      "x": "G07we0dko3ak-peyhRNWwnZiYRBeZS1CJfi8BCwWI38",
      "y": "PRt-IaGHa-NbFcDHATUaRwiM78Sxp04i4pv3q-bLeP0"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "d792bbe0-930e-4a65-8d08-4b52423caa36",
      "x": "c0-uIhGXyWmyaEsPduksKzF1D0HBcbc7pvoCsSh9n5I",
      "y": "WjToT_T3DAArRPZ70MjREENK1msSQbVHZU2krl8QMIg"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "d66e1937-df70-47cf-978d-d5ec50c47885",
      "x": "upIBI5XPQ0Xu2QbvWf9pf_oZd6Zj0vQVivVYC2ar68I"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "59b5fb14-e1c3-4eb6-b450-77517e68ad03",
      "alg": "RSA-OAEP",
      "n": "rXrIsCCrWmH6UpwQYV31X1rcCcnxjQDtpEwOqyins3haRqRLzeO8vnPe4an1taKrcEAp-kn0VfeHbNEE2I6z0V-T6qgqZY_SNtshUpCPxkRMrf9axrAyPXRJUDTDpwE6PElLiFL70QNS-3Ql8g-T6fqAe5JF17aqtDpjYflA_QJrWncf1Nn3HP5ruDU3NI0OAcMrKGpzgrpUdHSwmJVsmlymkO3wcbIQxQgwcw7Nsq082Rr-B5Qbb-mvMTkibGoxgoTG6X5QeYE0ovwdcHWaXG_7SkjCJGP-Z_iGHHyfDjnzXt4vdexEizBEsLSKIHiyZaMZ21O2bOCv6wIwirlcZw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "7965c264-3964-4d57-870a-c5526f7b38a4",
      "x": "1FU1ndLC5rVPblm0WC2KyPnGQfWEXOFjCg3sgyTsO98",
      "y": "fx8k_CARcobr8SQPY2t9s6pu9EXyVgVqkpYNpau52Go",
      "alg": "ECDH-ES"
    }
  ]
}
2020-09-01 12:51:17 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-09-01 12:51:17 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-09-01 12:51:17 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": "1580000000"
}
2020-09-01 12:51:17 SUCCESS
GetDynamicClientConfiguration
No client details on configuration, created an empty dynamic_client_registration_template object.
2020-09-01 12:51:17
oidcc-client-test-invalid-iss
Setup Done
2020-09-01 12:51:20 INCOMING
oidcc-client-test-invalid-iss
Incoming HTTP request to test instance 5w9t61nBbbSR4nd
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/3.15.9 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2020-09-01 12:51:20 OUTGOING
oidcc-client-test-invalid-iss
Response to HTTP request to test instance 5w9t61nBbbSR4nd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/",
  "authorization_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/token",
  "jwks_uri": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2020-09-01 12:51:20 INCOMING
oidcc-client-test-invalid-iss
Incoming HTTP request to test instance 5w9t61nBbbSR4nd
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/3.15.9 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate",
  "content-type": "application/json",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "161",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
register
incoming_body_form_params
incoming_method
POST
incoming_body_json
{
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "id_token token"
  ],
  "grant_types": [
    "implicit"
  ],
  "redirect_uris": [
    "https://rp.example.com/cb"
  ]
}
incoming_query_string_params
{}
incoming_body
{"token_endpoint_auth_method":"client_secret_basic","response_types":["id_token token"],"grant_types":["implicit"],"redirect_uris":["https://rp.example.com/cb"]}
Registration endpoint
2020-09-01 12:51:20 SUCCESS
OIDCCExtractDynamicRegistrationRequest
Extracted dynamic client registration request
request
{
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "id_token token"
  ],
  "grant_types": [
    "implicit"
  ],
  "redirect_uris": [
    "https://rp.example.com/cb"
  ]
}
2020-09-01 12:51:20 INFO
EnsureRegistrationRequestContainsAtLeastOneContact
This application requires that registration requests contain at least one contact.
2020-09-01 12:51:20 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "implicit"
]
response_types
[
  "id_token token"
]
2020-09-01 12:51:20 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://rp.example.com/cb"
]
2020-09-01 12:51:20 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2020-09-01 12:51:20 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2020-09-01 12:51:20 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2020-09-01 12:51:20 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2020-09-01 12:51:20 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2020-09-01 12:51:20 INFO
ValidateIdTokenSignedResponseAlg
Skipped evaluation due to missing required element: client id_token_signed_response_alg
path
id_token_signed_response_alg
mapped
object
client
2020-09-01 12:51:20 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2020-09-01 12:51:20 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-09-01 12:51:20 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2020-09-01 12:51:20 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2020-09-01 12:51:20 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2020-09-01 12:51:20 INFO
ValidateTokenEndpointAuthSigningAlg
Skipped evaluation due to missing required element: client token_endpoint_auth_signing_alg
path
token_endpoint_auth_signing_alg
mapped
object
client
2020-09-01 12:51:20 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2020-09-01 12:51:20 INFO
ValidateRequireAuthTime
Skipped evaluation due to missing required element: client require_auth_time
path
require_auth_time
mapped
object
client
2020-09-01 12:51:20 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2020-09-01 12:51:20 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2020-09-01 12:51:20 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2020-09-01 12:51:20 SUCCESS
ValidateClientRegistrationRequestSectorIdentifierUri
A sector_identifier_uri was not provided
2020-09-01 12:51:20 SUCCESS
OIDCCRegisterClient
Registered client
client
{
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "id_token token"
  ],
  "grant_types": [
    "implicit"
  ],
  "redirect_uris": [
    "https://rp.example.com/cb"
  ],
  "client_id": "client_NYeXABdxlmsWERo71196__/.;"
}
2020-09-01 12:51:20
OIDCCCreateClientSecretForDynamicClient
Set the secret for registered client
client_secret
secret_CQZcPQDirddBGPHBlUSodlgHZzqGkdIhYXxajpmhfYVTiWPZNT5231428754$}}{[
2020-09-01 12:51:20 SUCCESS
EnsureTokenEndPointAuthMethodIsClientSecretBasic
token_endpoint_auth_method is 'client_secret_basic' as expected
2020-09-01 12:51:20 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "id_token token"
  ],
  "grant_types": [
    "implicit"
  ],
  "redirect_uris": [
    "https://rp.example.com/cb"
  ],
  "client_id": "client_NYeXABdxlmsWERo71196__/.;",
  "client_secret": "secret_CQZcPQDirddBGPHBlUSodlgHZzqGkdIhYXxajpmhfYVTiWPZNT5231428754$}}{["
}
2020-09-01 12:51:20 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path
jwks_uri
mapped
object
client
2020-09-01 12:51:20 SUCCESS
OIDCCExtractServerSigningAlg
Using the default algorithm for the first key in server jwks
signing_algorithm
RS256
2020-09-01 12:51:20
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2020-09-01 12:51:20 OUTGOING
oidcc-client-test-invalid-iss
Response to HTTP request to test instance 5w9t61nBbbSR4nd
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "id_token token"
  ],
  "grant_types": [
    "implicit"
  ],
  "redirect_uris": [
    "https://rp.example.com/cb"
  ],
  "client_id": "client_NYeXABdxlmsWERo71196__/.;",
  "client_secret": "secret_CQZcPQDirddBGPHBlUSodlgHZzqGkdIhYXxajpmhfYVTiWPZNT5231428754$}}{[",
  "id_token_signed_response_alg": "RS256"
}
outgoing_path
register
2020-09-01 12:51:21 INCOMING
oidcc-client-test-invalid-iss
Incoming HTTP request to test instance 5w9t61nBbbSR4nd
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "got/9.6.0 (https://github.com/sindresorhus/got)",
  "accept-encoding": "gzip, deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "client_id": "client_NYeXABdxlmsWERo71196__/.;",
  "scope": "openid",
  "response_type": "id_token token",
  "redirect_uri": "https://rp.example.com/cb",
  "state": "Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I",
  "nonce": "Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs",
  "response_mode": "form_post"
}
incoming_body
Authorization endpoint
2020-09-01 12:51:21 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2020-09-01 12:51:21 SUCCESS
OIDCCEnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid"
]
expected
openid
2020-09-01 12:51:21 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "client_NYeXABdxlmsWERo71196__/.;",
  "scope": "openid",
  "response_type": "id_token token",
  "redirect_uri": "https://rp.example.com/cb",
  "state": "Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I",
  "nonce": "Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs",
  "response_mode": "form_post"
}
2020-09-01 12:51:21 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid
2020-09-01 12:51:21 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs
2020-09-01 12:51:21 SUCCESS
EnsureResponseTypeIsIdTokenToken
Response type is expected value
expected
id_token token
2020-09-01 12:51:21 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_NYeXABdxlmsWERo71196__/.;
2020-09-01 12:51:21 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://rp.example.com/cb
expected
[
  "https://rp.example.com/cb"
]
2020-09-01 12:51:21 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid"
]
expected
openid
2020-09-01 12:51:21 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2020-09-01 12:51:21 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
LpibMOHTE329Ox0iJpH0IvT7Uyymv62DpKkDhMXdAvSc7wzNRt
2020-09-01 12:51:21 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
MVpkoaNbvAHnH0nJpVNfjA
2020-09-01 12:51:21 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/5w9t61nBbbSR4nd/
sub
user-subject-1234531
aud
client_NYeXABdxlmsWERo71196__/.;
nonce
Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs
iat
1598964681
exp
1598964981
2020-09-01 12:51:21 SUCCESS
AddInvalidIssValueToIdToken
Added invalid iss to ID token claims
iss
https://www.certification.openid.net/test/5w9t61nBbbSR4nd/1
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/1",
  "sub": "user-subject-1234531",
  "aud": "client_NYeXABdxlmsWERo71196__/.;",
  "nonce": "Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs",
  "iat": 1598964681,
  "exp": 1598964981
}
2020-09-01 12:51:21 INFO
AddCHashToIdTokenClaims
Skipped evaluation due to missing required string: c_hash
expected
c_hash
2020-09-01 12:51:21 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
MVpkoaNbvAHnH0nJpVNfjA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/5w9t61nBbbSR4nd/1",
  "sub": "user-subject-1234531",
  "aud": "client_NYeXABdxlmsWERo71196__/.;",
  "nonce": "Zsa5GiA6OX3IIiBivPtjEn_BXfeBLm1Dthn69H3wJUs",
  "iat": 1598964681,
  "exp": 1598964981,
  "at_hash": "MVpkoaNbvAHnH0nJpVNfjA"
}
2020-09-01 12:51:21 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJiOWNiZmI5NC03NGNkLTQ4YjctODQ1Ny0yYzU4ZWZkOTQxNjYiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTVZwa29hTmJ2QUhuSDBuSnBWTmZqQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X05ZZVhBQmR4bG1zV0VSbzcxMTk2X19cLy47IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcLzV3OXQ2MW5CYmJTUjRuZFwvMSIsImV4cCI6MTU5ODk2NDk4MSwibm9uY2UiOiJac2E1R2lBNk9YM0lJaUJpdlB0akVuX0JYZmVCTG0xRHRobjY5SDN3SlVzIiwiaWF0IjoxNTk4OTY0NjgxfQ.HQU6i18B8gZf5P34NZ-mdHT6J0dj-vWSz6kYSTKWPS-98xFuA6dtK7O71gcgewxMesVF4uQ6OW9zlrBtSh-vUh32rT2gqTHm-FoqbZOqdS9Q6d8cqrO2Q19h_7WRvbDwYfR8T7N_Nv2xSEb3uGGtc29cvfMTpQq8At7dU-W__3fml3sSJdCn66w8XMdwFIu0OmbVmwevpuovqA9B-d6M-ACnXxXdFAOQtsVTjnZi7i031HXw7sY9vS2es9XIZnIcWRZsEt6bWutyXY1DnlOj-3S3_o0HSKPD0z8AxiFI4u-w4hZ7C3GOgeuACeR1OseYfmWBunwEeo_TPKN_tr8d7w
key
{"p":"7hLT2ZC0DyvZmtHcE0eBjHnpc7qyvsSd-7iL4LMq_Ohr3IAU5PEug6H0jH3xqVeKArNX9ca8DkwY7q5IJxJ5j8riXPPKTaf-JhIoXf2DT0h_FkES_R1RZZECOJJ2hrrbbJypklJZYRjBFFY19OZPVLtmuH9BBFZYZv9TKAERpJs","kty":"RSA","q":"rAfkJHTnImyKtZ9oBoJJJ-c1DpxYR4fJcVFdgV1BEvsQnmePcjYpbeJQUrNQs2XHQNtvqm2e_0m4ayRZHvPbRvihtwFabbi8pr8JrVD3UC0qEvLXnndlkhtGdtzZSS1z0oSrEpFmGbN6yqhXGV6MUmbGE9ZeeJ45V5CeE3HttOU","d":"JJowbylq8ntUEcAKG_hdkUDg5pN3Xh2XPg451PujcIAzIU4uhkMwcbGxvEaIPfP6Dyn8jKN0gqaakl_w_JCuObWojlyz2wYh2WHYgfbYQWX7YFko0gMG5UJwWrXzl_E0PyyB3bd43HvcxeWYM08KdF7SaUlCIc_iSZ8y2TErdMdlLXCoST-zz6tTBVxl5UQlvPNcnufrF-qhnQD-dV8V8OzVJ0TLsHk9RxgTav9AkKy9NNfRWqLN3T3drnML_gXhAkyhnVi0i1gtF9mvv1V-C2OctSPGDKNA2vGutc-_KHvXgkj9s0jeQ5ruAMcPdETbXMkM1VRSrPmLKFV3lPp40Q","e":"AQAB","use":"sig","kid":"b9cbfb94-74cd-48b7-8457-2c58efd94166","qi":"N1S8_tMv7lr6zM2zqAkJOM0lKw7axPD4qBZt_olm9emnun7Z3mHsLaWKpkL_bLDPP2VQFyfd1Vr3uSlXB83Ggb79W_ay-wvg_ItfhvEQlfvGYNUvx0BarlvEZsNENPg8JyhYrBjsnXF9QrkofmsstVFVcHZGFAi2WzbAdJp8rR0","dp":"MNOZsVhVJXtn0LHTwfx7XFUwhPS4bhmjERpDTd1RJreAT6PRJTc1w_d2UU4PPxzeCDnCA30z2nbO8jy6PZEzb0M787ZoOk8G98Xnk4dH4_3JWsYT3-egZwU7gGDBgFZYZEkpGgJbpGdQShx4SnbltEoPAi3PJtWSoeUhp-W4OZs","dq":"XBXpSJ6PLv0dDvWiUIGjOUnpO8Xy9283JIJiZCIP-GIOVkynG4LkkF5pkqtL0ovzqcMMthTx3EORBUEyt3_fa9Ehd32w8zTFPxjZzD2f9PoIIJZ_VuMgqqIRCQVVBnffHNxJWqocFjvdyedsoDbdNCqxcuL4NOa1WSsfgtckYAU","n":"n_v9BKQ2-ZXHMqRQG-f8nOm9IYEkmTMkJ9cohNteE8yRfewfoLDb_XD7j3TB5RiNSRwHoB2FyitRuv9omdOWmEspfSuTRXRsCGUbfC56UZTKqwRsxzYAe6KIeJQIS8Br6TPjFNGAbRPt3SRnALRCB70wC_IgWwCDj1cd9B39_AaNczmTT5pBdoDWuFmigc-JVrkekSuijWGLbF4oFrtFdyariCqFNJvBTot2YSUOgeyHOt0tCNIqk6ly5F1c2mqKNY-MxO7y1VqdjuU04YDCPH4r6cqh3vj3Bw5JvIaidjUXAnhlUAmsYyZaDhslNE1SaKCViPc2OZWJdiwIKwQ6pw"}
algorithm
RS256
2020-09-01 12:51:21 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2020-09-01 12:51:21 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://rp.example.com/cb",
  "state": "Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I"
}
2020-09-01 12:51:21 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://rp.example.com/cb",
  "state": "Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I",
  "id_token": "eyJraWQiOiJiOWNiZmI5NC03NGNkLTQ4YjctODQ1Ny0yYzU4ZWZkOTQxNjYiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTVZwa29hTmJ2QUhuSDBuSnBWTmZqQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X05ZZVhBQmR4bG1zV0VSbzcxMTk2X19cLy47IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcLzV3OXQ2MW5CYmJTUjRuZFwvMSIsImV4cCI6MTU5ODk2NDk4MSwibm9uY2UiOiJac2E1R2lBNk9YM0lJaUJpdlB0akVuX0JYZmVCTG0xRHRobjY5SDN3SlVzIiwiaWF0IjoxNTk4OTY0NjgxfQ.HQU6i18B8gZf5P34NZ-mdHT6J0dj-vWSz6kYSTKWPS-98xFuA6dtK7O71gcgewxMesVF4uQ6OW9zlrBtSh-vUh32rT2gqTHm-FoqbZOqdS9Q6d8cqrO2Q19h_7WRvbDwYfR8T7N_Nv2xSEb3uGGtc29cvfMTpQq8At7dU-W__3fml3sSJdCn66w8XMdwFIu0OmbVmwevpuovqA9B-d6M-ACnXxXdFAOQtsVTjnZi7i031HXw7sY9vS2es9XIZnIcWRZsEt6bWutyXY1DnlOj-3S3_o0HSKPD0z8AxiFI4u-w4hZ7C3GOgeuACeR1OseYfmWBunwEeo_TPKN_tr8d7w"
}
2020-09-01 12:51:21
AddTokenToAuthorizationEndpointResponseParams
Added token and token_type to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://rp.example.com/cb",
  "state": "Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I",
  "id_token": "eyJraWQiOiJiOWNiZmI5NC03NGNkLTQ4YjctODQ1Ny0yYzU4ZWZkOTQxNjYiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTVZwa29hTmJ2QUhuSDBuSnBWTmZqQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X05ZZVhBQmR4bG1zV0VSbzcxMTk2X19cLy47IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcLzV3OXQ2MW5CYmJTUjRuZFwvMSIsImV4cCI6MTU5ODk2NDk4MSwibm9uY2UiOiJac2E1R2lBNk9YM0lJaUJpdlB0akVuX0JYZmVCTG0xRHRobjY5SDN3SlVzIiwiaWF0IjoxNTk4OTY0NjgxfQ.HQU6i18B8gZf5P34NZ-mdHT6J0dj-vWSz6kYSTKWPS-98xFuA6dtK7O71gcgewxMesVF4uQ6OW9zlrBtSh-vUh32rT2gqTHm-FoqbZOqdS9Q6d8cqrO2Q19h_7WRvbDwYfR8T7N_Nv2xSEb3uGGtc29cvfMTpQq8At7dU-W__3fml3sSJdCn66w8XMdwFIu0OmbVmwevpuovqA9B-d6M-ACnXxXdFAOQtsVTjnZi7i031HXw7sY9vS2es9XIZnIcWRZsEt6bWutyXY1DnlOj-3S3_o0HSKPD0z8AxiFI4u-w4hZ7C3GOgeuACeR1OseYfmWBunwEeo_TPKN_tr8d7w",
  "access_token": "LpibMOHTE329Ox0iJpH0IvT7Uyymv62DpKkDhMXdAvSc7wzNRt",
  "token_type": "Bearer"
}
2020-09-01 12:51:21 OUTGOING
oidcc-client-test-invalid-iss
Response to HTTP request to test instance 5w9t61nBbbSR4nd
outgoing
ModelAndView [view="formPostResponseMode"; model={formAction=https://rp.example.com/cb, formParameters={"state":"Bg5fJCCWYhflfBmWUu0xTduMxPcu5PyzYX5Hi55-D2I","id_token":"eyJraWQiOiJiOWNiZmI5NC03NGNkLTQ4YjctODQ1Ny0yYzU4ZWZkOTQxNjYiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTVZwa29hTmJ2QUhuSDBuSnBWTmZqQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X05ZZVhBQmR4bG1zV0VSbzcxMTk2X19cLy47IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcLzV3OXQ2MW5CYmJTUjRuZFwvMSIsImV4cCI6MTU5ODk2NDk4MSwibm9uY2UiOiJac2E1R2lBNk9YM0lJaUJpdlB0akVuX0JYZmVCTG0xRHRobjY5SDN3SlVzIiwiaWF0IjoxNTk4OTY0NjgxfQ.HQU6i18B8gZf5P34NZ-mdHT6J0dj-vWSz6kYSTKWPS-98xFuA6dtK7O71gcgewxMesVF4uQ6OW9zlrBtSh-vUh32rT2gqTHm-FoqbZOqdS9Q6d8cqrO2Q19h_7WRvbDwYfR8T7N_Nv2xSEb3uGGtc29cvfMTpQq8At7dU-W__3fml3sSJdCn66w8XMdwFIu0OmbVmwevpuovqA9B-d6M-ACnXxXdFAOQtsVTjnZi7i031HXw7sY9vS2es9XIZnIcWRZsEt6bWutyXY1DnlOj-3S3_o0HSKPD0z8AxiFI4u-w4hZ7C3GOgeuACeR1OseYfmWBunwEeo_TPKN_tr8d7w","access_token":"LpibMOHTE329Ox0iJpH0IvT7Uyymv62DpKkDhMXdAvSc7wzNRt","token_type":"Bearer"}}]
outgoing_path
authorize
2020-09-01 12:51:23 FINISHED
oidcc-client-test-invalid-iss
Test has run to completion
testmodule_result
PASSED
Test Results