Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-10-30 08:02:59 INFO
TEST-RUNNER
Test instance H5ykEUv1Kg9M1MD created
baseUrl
https://www.certification.openid.net/test/a/gluu-oxd-test
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "request_type": "plain_http_request",
  "response_mode": "default",
  "client_registration": "dynamic_client"
}
alias
gluu-oxd-test
description
Gluu oxd test
planId
MeblzABuwZGZ4
config
{
  "alias": "gluu-oxd-test",
  "description": "Gluu oxd test",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_aYTyJg7xpmEUcdL8is5KiFC6HRAwCF-CcA4GxvZXNaj7CnWQOlYQp-fg2-Nk0hQGGkOmhaFb35DTHr_Fa6ShoUjoeD0cORAy6PaEF1m6URs02s00OFDoYBudK-oUDNiPWQFJ8hrv4z1s2HmfB0x2e7QV_8dxW7xw1i7LTGk1fc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "veBnKgi99Hoqamh7_KPW3ipY4PJ18tyyLi33vI1y_g2Cs7swmNeAHYtc6b4A6Oz29D7cpuLzbSdMlPJoyFy8eq3T6bAoZnczq0JEFpvkeyme8HTEgRyVLLd82vGt68sIG32exWWMgOU-RuFzdJqP6bQtq5LwzqyVooIc1jna96E",
          "d": "DKBgwNmfjt9Ukk9RME3wB7TcUx3mGguBzhyA6lhKClAgtok9xJ7J0JfQ89Yg0uU5Pi3l-J0Qt9poPSCQYolt3AHxrrcI5YhPlbPeqpsHrAMSFK5SbB9zGo3zvfBlgpLvyqKQnrt7L-tKbmAhiUy0r9YmEfyACYzkaAyNR2F5OvGSGw0JrB8jhtYmgduN2VyYxNUlmFPqxYc7XdxWb0My0VwN4UJg4OPqlrkIaYKyovFbHbmgpP89IAabLhoIkmLeyyigVLFvjecvUliCyBJJpUH-QiLcgAU0CBKgjz9_2e8hkjGgqNv-W8kt1tlSzdgenZbgYqdvf6rf3Si0OedWYQ",
          "e": "AQAB",
          "use": "sig",
          "kid": "d15d02ac-b432-45ef-8c09-bde3811d0c9b",
          "qi": "j9oCr752UnXnC9lD-dlufwTJpSs4xGYthpvd0TwXd604VBeGeZ-3gPM1l4k6HqQ2QQ_s5d8116rBBWnAtNG5t1_dzUdIznv26ErNPeXZiQ8GvD1ai_yA7d8aR6sOUyTLVXAQnNZTYmHdhZf2Lc3rEFGpBefXMBY0i6eWwtFQVpA",
          "dp": "XPz3n8B_mY1KPxjLNNq3uEQ9XS7RVh5xMG3xo66P_0MJEVk9HMru-m2-ctcAlhAanPhWzBKZlIg7b9xfi7lWKk7BA2WO95wWTRGirgEv6zCUnOVelX0f6CNHWyvSjqRnzY3PfggxyCWLJdosPzAMyJKOetQiO_EyXKU46ZabkX0",
          "dq": "KGM3DmXVoc7qfr_Cv7ZJ2e-___kSxZnT_Kaib2TW9NsC1iAW8ivEgIRIOx_DKchdrw4_-O-FP86AJ554U0YGgUHANZDWxxTL1L2_pd969gegWx07PwtJX72XvSpzCBijnNVXlD1JaZFZcdI6sK6_tcIxhLE4r31eRrbOU3Ly9IE",
          "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw"
        }
      ]
    }
  },
  "client": {
    "client_id": "test-client-id-346334adgdsfgdfg3425",
    "client_secret": "test-client-secret-452wf246w3g324t34",
    "scope": "openid accounts",
    "redirect_uri": "https://www.gluu.org",
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIDZjCCAhqgAwIBAgIhAJZt5gX62poPeFj5+i2q9ozjpIKLoLQNw3zy8134lfRY MEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgw DQYJYIZIAWUDBAICBQCiAwIBMDAeMRwwGgYDVQQDDBNveGQgQ0EgQ2VydGlmaWNh dGVzMB4XDTIwMDgyNzEzMjg1OFoXDTIwMTIwNTEzMjkwNVowHjEcMBoGA1UEAwwT b3hkIENBIENlcnRpZmljYXRlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIo79ge2mJ055DBIQJ9Up6ODBC4ch72nQU6ZNLx/1JgpSokj2bXgDSxUN2rd SiFEWGv/u5CUKDpavYSMONIPGX+DH2rN10oZN/WFqP1ZSp/GzQbnf4SWn3rUtU8w p5bj+8XB+b1CtNbz2AMO11XnSoD2tWV5waS2fR4HBqct3Smo3Ek7Gno9oXEITGU2 94dEO3AXkoHLMZf+z6BTnQdPBWncHVYjz43YMxLr0hVidHQxTYzoU0RID6bRTug7 bfW8a6yrT2/hF1MCrCIe3Jd7HJrgV3sLIZFUX9p69v1Ghuu+lAVXiOYCkgQ5ab6T K6Oxq8okOOh74AaSUBzlW0ijoV0CAwEAAaMnMCUwIwYDVR0lBBwwGgYIKwYBBQUH AwEGCCsGAQUFBwMCBgRVHSUAMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAIC BQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMAOCAQEANbRPGBNr Nn+SeQdTeQQ6Gmp5tFTjs/hwshJ4YZCE5j3f6W8o2cN91TFK8lHTIK7zRj1c/yJf Xf27BPTFZOTvYzlHBkRKUptc7aCJgC5awwdalPxU7NEs2T6R8OaNWeuUtT9T6Oze si3Rx0hHmieqsYgnW+uHgLokI8vFickzXdTDiib1hE44+hQAwkRQ2IO8anjSGTAt LUF59D0O5XdJ0PVgq7I0tpNdKM5LcztY1mrq2B4fRLnVJsoz54qCuBNQG1i/MNYD 8Cx5ZxlehAtexm3rVMKuVy3wOpYId8feVPsqk+oXVgkiuV47McvD8NAzY3PXqB19 rXRsjI7iPJRkQQ\u003d\u003d\n-----END CERTIFICATE-----\n",
    "jwks": {
      "keys": [
        {
          "kid": "efe712dc-7820-4f36-90ae-b6e6b8490c0d_sig_ps256",
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "exp": 1607326752998,
          "x5c": [
            "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"
          ],
          "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw",
          "e": "AQAB"
        },
        {
          "kid": "1ae82071-038b-4e4b-8a2b-b2a8a196a350_enc_rsa1_5",
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA1_5",
          "exp": 1607326752998,
          "x5c": [
            "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\u003d"
          ],
          "n": "woTz8lj4vH7xVLBrINlqrA8bSk7qSnE6rdaOsdkxnu7R2rmxVA0IpR0UVTOe7V_mQ6RCanjebS29EYR4fXf1t0TO862NUdHu7F_2Qf1NKTb1ZnwihwNbiJnytpoOA5iI2jXvfNIDX55KEIM4IcV0e_Cmp3-ynb2IVzluzkB3RFKShtYiIXLoGeMCCxS4_uUcryeAvspz5tQpPJclgzXgK_Q3G072JU-LIlKHKYkSVzZCWiymTYpkTOOKAZYNKfYClaCOngFqS1BBkdslzOXWxSjwajWPGy1KZmzNi7DkyDK5zXdf8iaS5Z2PW1TREAmLgvmQDOzW9rCZkEQqTjV_Aw",
          "e": "AQAB"
        }
      ]
    }
  }
}
testName
oidcc-client-test-signing-key-rotation-just-before-signing
2020-10-30 08:02:59 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-10-30 08:02:59
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-10-30 08:03:00
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "1doks63OKHa7VwyKSoa-mi5s4LiMwV8gV0e0u0Ktq93LFcYfC1YuW2cLLG1dcl-bntcLAES65Gl6KphApUigc_tWPqPZydHho8qmVYIZjO1xRohb_cd4LebZJPGJgxVIDWY2wO4_2qwNGRYbL2FaKCOFs5mEGQUuCEepz3yRcO8",
      "kty": "RSA",
      "q": "wcQZRno8MYq-PZJhAy8exJz4VLMcmuCw05lx0DQ4Dl-XFZuBbb2su0wQbJwNVX_b3XuxEkHDqnFhkwl4cnxojPKpw9J9WrocTK8u7gthVREiJYmOpxuvewr0hZqGNCN4WQencRzGQA_NKOp1iK0t2KuVM00y97hgnZHUxL7zHmU",
      "d": "iwiKnQsqaWG3EKLVxCAJvV2qYkNOmAjZpHaei_4dA2ptFwv6rdfrEWS0aROlVyKAal1iMA7vAJmNRKE4YTW2ij875__v_GPqbhzqiezSfksV7-6mSAx0VCblhW87h5r1SDT64vXmA6LOP9-v1-8K_k__OWfv_nop-xoVoXNxxZChlqfYFVhRxCJRa9L0s9oFt9zT4GXo90H38ZbeSl4KWGOab5Yx83zncRTBXVtge47G3TNhPnyYSfBQocU2VPVG1hMIc6jcER81BJAFICtr6nbG02etAihZRLQAtxE68AQXCcEz6-LOtyrJFvDTIekTppSRg4BForWsxaui1goF2Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "d5429614-0239-4035-8369-019dd513b348",
      "qi": "iCcye8YsdjI9ESDVpHIb_cy1TouMxa2i4aRjeWjeN1DB6DR-6bCEOL4VfQZ-wp9SCkQWLw_ihf1EbJxqMckCAYiKbWTmmapIYXIadPiTkM3sMmWVYnivHBbgvBnx3Ko7haBwUiaGEer_9EvVrLD523u5LvgnMlE8h1ZjQByTBys",
      "dp": "RT4QzCzmp6tqFVF2JZNje8C0eD7JNIN8kUYies-oNBHog_BWdPE-qVHACG6Q50uVs-SlJz0Z1oNgjxIlPF87tNIYpsee6P4QNVyUZvNtGnh3SQM15gIEI7ivborWn57waYZDDE0YV9GFnC3QN5MqAf0eeXynjQJkWUH69be7z_k",
      "dq": "tII3vaVQACMtePSttaam9ij5WwaFBm99q5JOKdULx7AbcsCsgYxqpw2EW3nBHj5_l8SMP-LOIjF_4de3wofNakkCB_BGYUfx5ypoANDPOs08T1XndBvhjTG2e-RpU5cbnWz4-vIAaluOF6jcF5illiy6UNGBQq8cKo5ZdXQhztU",
      "n": "od1FzLzxUXQI8TcWWyI6vAq_3Ugt7ZkFmqcRBkrZe-N_avObQDqdMxLNtz9IQHdv4VtsceVkXmSqdIyLcQgpcBf3e7xivV9FqlQkr19AimHysGxxoWBMQetC5IWmeFB_RoDP6ucNMx1WFdQPOUgPvbDeegcE0V1enDYoFKtZ8XSjlrxlS4Szn56KrP3Cn-qlvdwJhMpzWh7Kv-SSWu0nCOh4K0WXRucAzqiEcz1JFaYAMgUkJ-vIN3bvmNO_O4f2q_xpCGOccx9HWSwQK3ei2-47CvKEltoOdi1a2aJ7RqBjuifWoadnFXvzPGXtEmb56vOFFiMJNHcz0uJQxXqQSw"
    },
    {
      "kty": "EC",
      "d": "uxq0s4UE1XyNabCJH9g2Umm23sHCJyfJM2Prh-xicX0",
      "use": "sig",
      "crv": "P-256",
      "kid": "c4a1e108-5ed9-41b9-b97c-07bf5c990830",
      "x": "1yNQ9-JlZ1MBrIKGpYDJMqSQfHFIXrRg3BiMxTQa088",
      "y": "__twG0nlcnW0hw4wVqQt1Xh-6cU_krFQLr_uiCV6OPU"
    },
    {
      "kty": "EC",
      "d": "NYQLPEbsXvsNJVgJVydumDxCo9kexTYOaaSafydjo3k",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "f8528767-dd89-4d1c-b668-dc2bcb6721db",
      "x": "IxL_uB0w31Aqj34qXry0s5YkkX3-hN8kQtw-mAY3H3g",
      "y": "sePpcj4g_vpUvcUixilg_gTfnH0iAv7tk6kRodOSup8"
    },
    {
      "kty": "OKP",
      "d": "XCo9gVUv0vmdTLamt9j5I2s7GGXKzJB2cbUVBbRb9uA",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "b4ea0866-a5d3-4b79-9995-cb12b6c8e4de",
      "x": "0MzB71c9eYct5QgLBd2FWkU-5feRsqfESLHClijAt5g"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "7Rg_4afApkCoIGn1AywOwRjcGFQL1u7M-qazMcVgYhZacRu5xKrmYX7FSRk7vJYTGpcHxXL8nOGDyhYEdxY1z5rdnoIxFR7zqxQmgtaiQ2QF0lXhWhBBgjCWNdMYuC-KQbSSO_cEom2MHBpx2lN--1drDnoPAnFNhnsisIxZVBs",
      "kty": "RSA",
      "q": "zqGefSablXilZLqDsSsDdxoX88Tck5xLmfcYy8yShGQa1LLPeGzmI4mxxjRaSF4Qdr6amOqZJNQqvDDX9GKeWO4PqHEWpfEG39-HWYQuw-xBZiL9bcgSB_v9JOp6sWIRPCmjARjMqfZ46wLUDUfQ-EJvh7YI09Cn-IoeI8zTW-k",
      "d": "Q6PmNCFH3RuKgkNiqjmGjbTZo4hjjAArOCv-Gm2YyE6QQLb-eGukzVyq59BFyegZxxv8sOD_KBJoBYy4106-1tmwcNvX5TIYFKH2-txe0-Jivczqv7U4svSxbmdRBEXfffzZP17Dw8uiGU7C8lKjYIUTGzUkGX6enMz5pCoGpZ6WVzSAh6qclbKQ23mSRQrd0EjvasUftmwYmYLul9YyLzAl06SZ0iHMSTJbtnIdPM9t-lu7WZ4IG1dIjIiQJCuoHhKlCAj0qldZenXNYITp_j28Es3BUCw7d-EN6tqpHy4I6F4qxWnNyh22MKTZMHBHA-qW9hXpRJ86OhjMRDCRwQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "cca1df48-a98f-4286-b2e0-b07c3c017d61",
      "qi": "I8-Nfmbx-zZn99VJQQ_zXltKg3BcnJ7j1n4UAaG16TOTOrgzqZi6L9vG9PPHZStg5orWNOheG9H8In7nR_vuwJ109RitNvn2ld_GNZK33wU5uWPBuK56KQvrJJ7p2aPrBFPmPfxh9d3PqmPostPFuc3AvRBlJT6Z6UlSg6AmCGw",
      "dp": "QeAH98mlREwYqpDmC5CVNN-UX4oSlBBbkZT5mu2NPxOY425hqhwV0KbpZ8sEBvznp-6osRqmx2v9Mwv1B6V7JAiSZPUlcAneh_0cSiQah4DmAS_tYhm8KdEYGzJg3uQOlPz32INknUC0uiY61f92-5ypWSdevj3-3UufMtB8DVs",
      "alg": "RSA-OAEP",
      "dq": "qBcft81taYWQfkWgFcLY-c13SK2PhmDxu1kgicFsO1i33ulrDxr_iE9eF8_E1fP3TrG1T8ogNK6H6TmOo9aJ2-wlPrBobSuKnRnYoECATo9lkDHMmb7UtDwQbTR2BNCzFo8EdEL5UxYWvY86c2dFnn9k_TBfM_gcfHnXFOZt1ek",
      "n": "v18ycKHtrkFr4kUa5TaD517Q1ftkcQhvUNhT4vP3k90VQV-Fc_oiULzDy8hzOe5yTzGCVJXy7TrAYuXxz15FpJY0uOtGhVlPsLdR99CKdSkkHmkKcIyrb1PR4fKkqi7P5tmqG_BMEELnyQQ_I48_eKUE0lZfNK4WJBy3jt8vhKPWlEfBehfZPDBfPF6vo4-e7PXmkAzp_Fnc3hy2eO_Iss2QeCOfv3hVPBVURi30JK9hK02kwdxUUE82ypvXbrQF_AboM31zCs6C1n6wyvMYaYRiQNYpYsxaKsTXZuSp6Nyb3dgV-oQxgyKxmcrPTqyliM7QuYp1E1OZYdrqVHQlkw"
    },
    {
      "kty": "EC",
      "d": "5CMiKExVcEW2D9FKMHIvbpWa_t2e685Qt54-tnAM0v8",
      "use": "enc",
      "crv": "P-256",
      "kid": "1a179c77-c329-4323-9cd6-c1b7889ce798",
      "x": "Mk5NPLnxl79jcKIA6QC7c1lr8b0nkfqybiqP_GHdStM",
      "y": "adKyyvXUv90oygh2Nyy4l-Sf5VeX90LCQKeM3tY3uEE",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "d5429614-0239-4035-8369-019dd513b348",
      "n": "od1FzLzxUXQI8TcWWyI6vAq_3Ugt7ZkFmqcRBkrZe-N_avObQDqdMxLNtz9IQHdv4VtsceVkXmSqdIyLcQgpcBf3e7xivV9FqlQkr19AimHysGxxoWBMQetC5IWmeFB_RoDP6ucNMx1WFdQPOUgPvbDeegcE0V1enDYoFKtZ8XSjlrxlS4Szn56KrP3Cn-qlvdwJhMpzWh7Kv-SSWu0nCOh4K0WXRucAzqiEcz1JFaYAMgUkJ-vIN3bvmNO_O4f2q_xpCGOccx9HWSwQK3ei2-47CvKEltoOdi1a2aJ7RqBjuifWoadnFXvzPGXtEmb56vOFFiMJNHcz0uJQxXqQSw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "8114401f-3920-4048-9b86-ccc0e5c2f393",
      "n": "pO0bw2gMIAKkWzDhHAd-EW0aK3tIorAngrTFl0YnfgrB2UDIullEzgSI7E2x8-rtAqSuAQqjT8vxlNTo3UcKHsp3EuN06bzkVJWswrJd9TwHwbp3V7vdW9A9WnURNGIU0okrYyOrjZdBot3Vek2OVB1CZb04HzMJiX2HEQ_PJrudutW4nz8PPlJCNFjfEliL5_Mb-xdFM0FS2AKp1sZJHd1vjdRnHIcR-dP488Dh6GOkAjPCqgH4YI5EOHX8V6-0gr66nOtRq4W2aCPRr0Sl1Q_kWKiOUHc-5UQMx9MtAfSxLxotEX_dZ4WxAYj-uJ8QAWgIjvYkxKcM71zai_frMQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "c4a1e108-5ed9-41b9-b97c-07bf5c990830",
      "x": "1yNQ9-JlZ1MBrIKGpYDJMqSQfHFIXrRg3BiMxTQa088",
      "y": "__twG0nlcnW0hw4wVqQt1Xh-6cU_krFQLr_uiCV6OPU"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "798b3451-9a3b-4fcf-b805-4f97c409e089",
      "x": "HJvwoG_AD2XR39SlM3k-PQbMhI7OJIpUQ_WzhVNQCAA",
      "y": "2q_jOQT29fXBWkWD6n7_eLr9qc8LPRXBxYT13aQV1rs"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "f8528767-dd89-4d1c-b668-dc2bcb6721db",
      "x": "IxL_uB0w31Aqj34qXry0s5YkkX3-hN8kQtw-mAY3H3g",
      "y": "sePpcj4g_vpUvcUixilg_gTfnH0iAv7tk6kRodOSup8"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "b4ea0866-a5d3-4b79-9995-cb12b6c8e4de",
      "x": "0MzB71c9eYct5QgLBd2FWkU-5feRsqfESLHClijAt5g"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "cca1df48-a98f-4286-b2e0-b07c3c017d61",
      "alg": "RSA-OAEP",
      "n": "v18ycKHtrkFr4kUa5TaD517Q1ftkcQhvUNhT4vP3k90VQV-Fc_oiULzDy8hzOe5yTzGCVJXy7TrAYuXxz15FpJY0uOtGhVlPsLdR99CKdSkkHmkKcIyrb1PR4fKkqi7P5tmqG_BMEELnyQQ_I48_eKUE0lZfNK4WJBy3jt8vhKPWlEfBehfZPDBfPF6vo4-e7PXmkAzp_Fnc3hy2eO_Iss2QeCOfv3hVPBVURi30JK9hK02kwdxUUE82ypvXbrQF_AboM31zCs6C1n6wyvMYaYRiQNYpYsxaKsTXZuSp6Nyb3dgV-oQxgyKxmcrPTqyliM7QuYp1E1OZYdrqVHQlkw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "1a179c77-c329-4323-9cd6-c1b7889ce798",
      "x": "Mk5NPLnxl79jcKIA6QC7c1lr8b0nkfqybiqP_GHdStM",
      "y": "adKyyvXUv90oygh2Nyy4l-Sf5VeX90LCQKeM3tY3uEE",
      "alg": "ECDH-ES"
    }
  ]
}
2020-10-30 08:03:00 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-10-30 08:03:00 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-10-30 08:03:00 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": "1580000000"
}
2020-10-30 08:03:00 SUCCESS
GetDynamicClientConfiguration
Created dynamic_client_registration_template object from the client configuration.
client_id
test-client-id-346334adgdsfgdfg3425
client_secret
test-client-secret-452wf246w3g324t34
scope
openid accounts
redirect_uri
https://www.gluu.org
certificate
-----BEGIN CERTIFICATE-----
MIIDZjCCAhqgAwIBAgIhAJZt5gX62poPeFj5+i2q9ozjpIKLoLQNw3zy8134lfRY MEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgw DQYJYIZIAWUDBAICBQCiAwIBMDAeMRwwGgYDVQQDDBNveGQgQ0EgQ2VydGlmaWNh dGVzMB4XDTIwMDgyNzEzMjg1OFoXDTIwMTIwNTEzMjkwNVowHjEcMBoGA1UEAwwT b3hkIENBIENlcnRpZmljYXRlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIo79ge2mJ055DBIQJ9Up6ODBC4ch72nQU6ZNLx/1JgpSokj2bXgDSxUN2rd SiFEWGv/u5CUKDpavYSMONIPGX+DH2rN10oZN/WFqP1ZSp/GzQbnf4SWn3rUtU8w p5bj+8XB+b1CtNbz2AMO11XnSoD2tWV5waS2fR4HBqct3Smo3Ek7Gno9oXEITGU2 94dEO3AXkoHLMZf+z6BTnQdPBWncHVYjz43YMxLr0hVidHQxTYzoU0RID6bRTug7 bfW8a6yrT2/hF1MCrCIe3Jd7HJrgV3sLIZFUX9p69v1Ghuu+lAVXiOYCkgQ5ab6T K6Oxq8okOOh74AaSUBzlW0ijoV0CAwEAAaMnMCUwIwYDVR0lBBwwGgYIKwYBBQUH AwEGCCsGAQUFBwMCBgRVHSUAMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAIC BQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMAOCAQEANbRPGBNr Nn+SeQdTeQQ6Gmp5tFTjs/hwshJ4YZCE5j3f6W8o2cN91TFK8lHTIK7zRj1c/yJf Xf27BPTFZOTvYzlHBkRKUptc7aCJgC5awwdalPxU7NEs2T6R8OaNWeuUtT9T6Oze si3Rx0hHmieqsYgnW+uHgLokI8vFickzXdTDiib1hE44+hQAwkRQ2IO8anjSGTAt LUF59D0O5XdJ0PVgq7I0tpNdKM5LcztY1mrq2B4fRLnVJsoz54qCuBNQG1i/MNYD 8Cx5ZxlehAtexm3rVMKuVy3wOpYId8feVPsqk+oXVgkiuV47McvD8NAzY3PXqB19 rXRsjI7iPJRkQQ==
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kid": "efe712dc-7820-4f36-90ae-b6e6b8490c0d_sig_ps256",
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "exp": 1607326752998,
      "x5c": [
        "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"
      ],
      "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw",
      "e": "AQAB"
    },
    {
      "kid": "1ae82071-038b-4e4b-8a2b-b2a8a196a350_enc_rsa1_5",
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA1_5",
      "exp": 1607326752998,
      "x5c": [
        "MIIC/jCCAeagAwIBAgIhAOW7o23N2ByVGsbVMP40zO8bWFZn3197iWzq8GlEg+liMA0GCSqGSIb3DQEBCwUAMB4xHDAaBgNVBAMME294ZCBDQSBDZXJ0aWZpY2F0ZXMwHhcNMjAwODI5MDczOTA0WhcNMjAxMjA3MDczOTEyWjAeMRwwGgYDVQQDDBNveGQgQ0EgQ2VydGlmaWNhdGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoTz8lj4vH7xVLBrINlqrA8bSk7qSnE6rdaOsdkxnu7R2rmxVA0IpR0UVTOe7V/mQ6RCanjebS29EYR4fXf1t0TO862NUdHu7F/2Qf1NKTb1ZnwihwNbiJnytpoOA5iI2jXvfNIDX55KEIM4IcV0e/Cmp3+ynb2IVzluzkB3RFKShtYiIXLoGeMCCxS4/uUcryeAvspz5tQpPJclgzXgK/Q3G072JU+LIlKHKYkSVzZCWiymTYpkTOOKAZYNKfYClaCOngFqS1BBkdslzOXWxSjwajWPGy1KZmzNi7DkyDK5zXdf8iaS5Z2PW1TREAmLgvmQDOzW9rCZkEQqTjV/AwIDAQABoycwJTAjBgNVHSUEHDAaBggrBgEFBQcDAQYIKwYBBQUHAwIGBFUdJQAwDQYJKoZIhvcNAQELBQADggEBAHnZKla/EfTowH5fk+gWRw9Xce+ncM85fAGJr1nTvV3Kq1k0wOs4di30JyKKFYLOMvRrhCHbMOaLSUnj+V2nFDIJQ3a84ZLKjOuUMLw28CnK4xlbNgqPXrrMNgxwls0QcUBuFPQUlIZ8KMLA4UN8qbu4qg2ntGmyTj7mPlHzGDtR9yviMDzk+LcR0Znl8cxe2lnIRv4ZG9sx+dA7SrwyTdxWDh7UZ+AL/RJK/rojh0R95rjxr1KdXqf0+Wk22ozhIzm8mSoJVQbVosNLxKaGmbUiXaboDkfc7zzavm0u3TP1SUhizJHu4gjKXAi+7zOFQ6h+wnjpjb9/NYHCLRUrifY\u003d"
      ],
      "n": "woTz8lj4vH7xVLBrINlqrA8bSk7qSnE6rdaOsdkxnu7R2rmxVA0IpR0UVTOe7V_mQ6RCanjebS29EYR4fXf1t0TO862NUdHu7F_2Qf1NKTb1ZnwihwNbiJnytpoOA5iI2jXvfNIDX55KEIM4IcV0e_Cmp3-ynb2IVzluzkB3RFKShtYiIXLoGeMCCxS4_uUcryeAvspz5tQpPJclgzXgK_Q3G072JU-LIlKHKYkSVzZCWiymTYpkTOOKAZYNKfYClaCOngFqS1BBkdslzOXWxSjwajWPGy1KZmzNi7DkyDK5zXdf8iaS5Z2PW1TREAmLgvmQDOzW9rCZkEQqTjV_Aw",
      "e": "AQAB"
    }
  ]
}
2020-10-30 08:03:00
oidcc-client-test-signing-key-rotation-just-before-signing
Setup Done
2020-10-30 08:08:36 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "text/plain,application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2020-10-30 08:08:36 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2020-10-30 08:08:38 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json",
  "content-type": "application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "886",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
register
incoming_body_form_params
incoming_method
POST
incoming_body_json
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256"
}
incoming_query_string_params
{}
incoming_body
{
  "access_token_as_jwt" : "false",
  "allow_spontaneous_scopes" : false,
  "token_endpoint_auth_signing_alg" : "RS256",
  "post_logout_redirect_uris" : [ "https://www.gluu.org" ],
  "grant_types" : [ "authorization_code", "client_credentials" ],
  "application_type" : "web",
  "rpt_as_jwt" : "false",
  "redirect_uris" : [ "https://www.gluu.org" ],
  "oxd_id" : "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method" : "client_secret_basic",
  "frontchannel_logout_uri" : "https://www.gluu.org",
  "frontchannel_logout_session_required" : false,
  "scope" : "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims" : "false",
  "require_auth_time" : false,
  "client_name" : "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types" : [ "code" ],
  "id_token_signed_response_alg" : "RS256"
}
Registration endpoint
2020-10-30 08:08:38 SUCCESS
OIDCCExtractDynamicRegistrationRequest
Extracted dynamic client registration request
request
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256"
}
2020-10-30 08:08:38 INFO
EnsureRegistrationRequestContainsAtLeastOneContact
This application requires that registration requests contain at least one contact.
2020-10-30 08:08:38 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "authorization_code",
  "client_credentials"
]
response_types
[
  "code"
]
2020-10-30 08:08:38 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://www.gluu.org"
]
2020-10-30 08:08:38 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2020-10-30 08:08:38 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2020-10-30 08:08:38 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2020-10-30 08:08:38 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2020-10-30 08:08:38 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2020-10-30 08:08:38 SUCCESS
ValidateIdTokenSignedResponseAlg
id_token_signed_response_alg is one of the known algorithms
alg
RS256
2020-10-30 08:08:38 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2020-10-30 08:08:38 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:08:38 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2020-10-30 08:08:38 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2020-10-30 08:08:38 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2020-10-30 08:08:38 SUCCESS
ValidateTokenEndpointAuthSigningAlg
token_endpoint_auth_signing_alg is set but it is not applicable to client authentication method
token_endpoint_auth_signing_alg
RS256
token_endpoint_auth_method
client_secret_basic
2020-10-30 08:08:38 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2020-10-30 08:08:38 SUCCESS
ValidateRequireAuthTime
require_auth_time is encoded as a boolean
require_auth_time
false
2020-10-30 08:08:38 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2020-10-30 08:08:38 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2020-10-30 08:08:38 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2020-10-30 08:08:38 SUCCESS
ValidateClientRegistrationRequestSectorIdentifierUri
A sector_identifier_uri was not provided
2020-10-30 08:08:38 SUCCESS
OIDCCRegisterClient
Registered client
client
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_keYUXKfcEIDtRXT75539$}\u003d\\}"
}
2020-10-30 08:08:38
OIDCCCreateClientSecretForDynamicClient
Set the secret for registered client
client_secret
secret_vcutpgpZZCwQtRBtHKogvRFsMhxrSRCfILQDHfqgLklDwCfwsB7523344883;=]-]
2020-10-30 08:08:38 SUCCESS
EnsureTokenEndPointAuthMethodIsClientSecretBasic
token_endpoint_auth_method is 'client_secret_basic' as expected
2020-10-30 08:08:38 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_keYUXKfcEIDtRXT75539$}\u003d\\}",
  "client_secret": "secret_vcutpgpZZCwQtRBtHKogvRFsMhxrSRCfILQDHfqgLklDwCfwsB7523344883;\u003d]-]"
}
2020-10-30 08:08:38 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path
jwks_uri
mapped
object
client
2020-10-30 08:08:38 SUCCESS
OIDCCExtractServerSigningAlg
Selected signing algorithm based on client id_token_signed_response_alg.
selected_algorithm
RS256
id_token_signed_response_alg
RS256
2020-10-30 08:08:38
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2020-10-30 08:08:38 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 774e91ad-54e1-4ddb-97c8-0d104b4ee750",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_keYUXKfcEIDtRXT75539$}\u003d\\}",
  "client_secret": "secret_vcutpgpZZCwQtRBtHKogvRFsMhxrSRCfILQDHfqgLklDwCfwsB7523344883;\u003d]-]"
}
outgoing_path
register
2020-10-30 08:08:39 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_161)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "response_type": "code",
  "client_id": "client_keYUXKfcEIDtRXT75539$}\u003d\\}",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "occm4nmemva6kvlat8d135mr15",
  "nonce": "ldeh35p386m4j0penudgn5rfc5"
}
incoming_body
Authorization endpoint
2020-10-30 08:08:39 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2020-10-30 08:08:39 SUCCESS
OIDCCEnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid"
]
expected
openid
2020-10-30 08:08:39 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "response_type": "code",
  "client_id": "client_keYUXKfcEIDtRXT75539$}\u003d\\}",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "occm4nmemva6kvlat8d135mr15",
  "nonce": "ldeh35p386m4j0penudgn5rfc5"
}
2020-10-30 08:08:39 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid
2020-10-30 08:08:39 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
ldeh35p386m4j0penudgn5rfc5
2020-10-30 08:08:39 SUCCESS
EnsureResponseTypeIsCode
Response type is expected value
expected
code
2020-10-30 08:08:39 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_keYUXKfcEIDtRXT75539$}=\}
2020-10-30 08:08:39 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://www.gluu.org
expected
[
  "https://www.gluu.org"
]
2020-10-30 08:08:39 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid"
]
expected
openid
2020-10-30 08:08:39 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2020-10-30 08:08:39 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
d7RjvSxhAo
2020-10-30 08:08:39 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
g8u6m0uCDEQo4b5ll4sNpQ
2020-10-30 08:08:39 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "occm4nmemva6kvlat8d135mr15"
}
2020-10-30 08:08:39 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "occm4nmemva6kvlat8d135mr15",
  "code": "d7RjvSxhAo"
}
2020-10-30 08:08:39
SendAuthorizationResponseWithResponseModeQuery
Redirecting back to client
uri
https://www.gluu.org?state=occm4nmemva6kvlat8d135mr15&code=d7RjvSxhAo
2020-10-30 08:08:39 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.gluu.org?state=occm4nmemva6kvlat8d135mr15&code=d7RjvSxhAo]
outgoing_path
authorize
2020-10-30 08:08:42 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Basic Y2xpZW50X2tlWVVYS2ZjRUlEdFJYVDc1NTM5JTI0JTdEJTNEJTVDJTdEOnNlY3JldF92Y3V0cGdwWlpDd1F0UkJ0SEtvZ3ZSRnNNaHhyU1JDZklMUURIZnFnTGtsRHdDZndzQjc1MjMzNDQ4ODMlM0IlM0QlNUQtJTVE",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "85",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
token
incoming_body_form_params
{
  "code": "d7RjvSxhAo",
  "grant_type": "authorization_code",
  "redirect_uri": "https://www.gluu.org"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
code=d7RjvSxhAo&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fwww.gluu.org
Token endpoint
2020-10-30 08:08:42 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
client_keYUXKfcEIDtRXT75539$}=\}
client_secret
secret_vcutpgpZZCwQtRBtHKogvRFsMhxrSRCfILQDHfqgLklDwCfwsB7523344883;=]-]
method
client_secret_basic
2020-10-30 08:08:42 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2020-10-30 08:08:42 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
d7RjvSxhAo
2020-10-30 08:08:42 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://www.gluu.org
2020-10-30 08:08:42 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d
2020-10-30 08:08:42 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
LHeIA0HrF0uwL0uhGZkTlQ
2020-10-30 08:08:42 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/gluu-oxd-test/
sub
user-subject-1234531
aud
client_keYUXKfcEIDtRXT75539$}=\}
nonce
ldeh35p386m4j0penudgn5rfc5
iat
1604045322
exp
1604045622
2020-10-30 08:08:42 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
LHeIA0HrF0uwL0uhGZkTlQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "sub": "user-subject-1234531",
  "aud": "client_keYUXKfcEIDtRXT75539$}\u003d\\}",
  "nonce": "ldeh35p386m4j0penudgn5rfc5",
  "iat": 1604045322,
  "exp": 1604045622,
  "at_hash": "LHeIA0HrF0uwL0uhGZkTlQ"
}
2020-10-30 08:08:42
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "0qeGchhpN32YGQ6ibGhk6aAHQVZIqan_Vut_tmpgMgjqYRysaYbyNBoX4peX7OUwVoY4Uzpdmo-FYOGjfftinwWU763lFGjjtYDdpDybbzr7QJJyTJAEZ9d1VbhvgGjN7WHS92iXdvvck9UBnlFbjNeI_I-VDVA-3ZnYLVhOmHc",
      "kty": "RSA",
      "q": "njjEuYB5UIvRktb0-PqISzCl8HSRf1AtefOuX3JMUVY5CkchcrDUqhG_QCNA1YC4asMb5V7QjG0E87TvJm_UPR2etxWKjd5Qb31AgVXtnpxfBIfBF4qf5_q10S12S_-DVtWo0NVlHEXCUpR_Q1uRAn75ov1Hmnjdgg8uY1bEK1k",
      "d": "TE2jksH0zpb-nL9kneUWJ1ehER5zrehaOKagMv4_A5znSBXl7PFr--cECzkix15uE2N5LlCCFBgwtWjGNebqaljcuDd5H1GP177DZp4UF4ndWFTmaK1H_P1viA4v45aQoRcfFytz6a1A9-ggj1JEDCI6I7-7PDHwaTznnohVkznlFA_iGhw__zNLlXis0mOsgEFjEm__7OgB0KbSqK5fZOWzGJiweP5y7jBtyKaV_AmyFYMdOz45Dhf0siMHA9SkK9A6McX-jwUhihsDDBZTh_xIDPEX1-jqJrYGmLwBtA5MaXMCeU79NmRzVkWJOKDgYTMw9qThKd7mJlbhV_lvEQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "fbab88bf-b017-49f8-9d1a-b893b87b1a47",
      "qi": "tp4ixpavZ7YDCXaZbWNwDauSvS4WUr8nqPCvVq3DHAoDAbufgjo_wQ-lPv29DADBvIIr3HylG_rWJl7rCS69fdlTF5P8Zve-yCZEULMcJoAg_GEO5K4ra3UbWiBuAvJvhyQJ-ZbM3EuMUoGJf4akrnUE2p3BikkSjbknkQyaKIo",
      "dp": "FQV6uTAOb-csonN_aeoRB-9cSfzeS3AXdwkROZbr-pJBMWe3HODGksR31bjjBFTqufey7ztH1AC2grCBrDTF5rCb6D8mOR8uehJeC-GwcS0lnY__r_w_NE2f--nn1pye0C2O6_mYA9uma2o6Ox5LUIbBuNJrQWTcoSiVFhFV5ok",
      "dq": "JxsU1FyCn3vPUqG6bodNhHgDq4jEJVllxAyMfp67aicLdhTamYRHK7mzMWEFNz_XVNvgWzKyDOMtJCcGLNPa-zgE8G9sjV_zNXsZpF3emyM_ANmkyfLDTwzSP18jK-l9RssMLIFxuikrvEljovxQvPMxNC2xsuZIqUqjRn49ghE",
      "n": "gjIbgLu9YRbZbWT3JpGo1izOOSuI_YOd3qPfuZsrm9zoU1JY8dvlB0qnzWE153DDYTG4A_T96vd7Dh6yaoCm5xMJNjH733csUzKn4GP-n9sHI78gdoDk6-afbQhWceV2BEb_dkoLDuroxDpc3i4a4FloVCcao9KgxSmdr5ruWsR6LHZSP4PNDN4EHwvbfGCUGw078uc9Src6cCguo7o5SnGfAaOY5fEw1gyu1LW0hNHf4XKvgZa-O6-FMojP7zAPv5nhfw9dhxYukm06sChXQmm2lXq_B4m9Ch-QOZ8-nU4XICiRXtXZB3jalGfnbbZ-HaW6vHFtCaZC8SECnAr-Xw"
    },
    {
      "kty": "EC",
      "d": "s_mTN5O830kdZMheYuyw9-5h8wDtVruuDKvyPHSiGKw",
      "use": "sig",
      "crv": "P-256",
      "kid": "53a1aa57-ab96-4592-8472-8ebbca12ae0f",
      "x": "sBtwSmWs6ub-x9cDnWZ2oeAdy-KUdfwhoSso8352N28",
      "y": "wHWN_ewbTKoZMOR9zANGJvnQaok7zYmLZjHgqBLP0rM"
    },
    {
      "kty": "EC",
      "d": "vM-LLYWRsVG840EZld9w9KYRNpHP76LbXTeSnMwNfcY",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "b51b51fc-1e7f-4b46-89e5-77cfcbee935d",
      "x": "i1wsRnwTfLzo4BYuZiuu2juNncHtMqP9dGAOajbAwV4",
      "y": "0fcfPENvb6cv0eunYZXsoJFxrGwkXtbmaa3bet6ctBw"
    },
    {
      "kty": "OKP",
      "d": "w_D8jYLyFIynO__HVdsArRne7_43d1YroPQJHtI_w6M",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "fd5014ef-c27b-4d9a-a8d4-5fb4d1cc3143",
      "x": "grGlWZS-lCgn4NM89S702f0iF4m1W5v5gpDnwZL5lSY"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "1XCUjIHm6cJjt2TLxu4y_q-iVdW5G6wXUTmzAHFd1ZD0-SAqtG19CxIq5gnkUIPXTwUmQE2kTJg-qtas9hd0wtAkAM0Ta2gA40AXRCS3IyGxlvnpA7AU53WHbUr6ty-l8c709MXYOrRT95cxdWEYPEJDndJYkQdwCAEKk2YWceE",
      "kty": "RSA",
      "q": "0WKK8JnDXBZzmre99hw-OD_YSxHzondbI2pwXydRAuQizQg-Lrz4yVcpfoD15b9IkqbURZvQVeW4cEvmHT40_YDMUkjYorzeX4RLnN7ZLhCyK-fu7__LzA6YQa8gd0saSZGKyiqC3kqizgqpAT_47oofJ29VKrnRCGYRWxM1GIM",
      "d": "oFIcVhq27f5Xiuj7yR627Z0qLJ4ewsrKhUfF3ADMdL5GLt823Vl9igfclmxHzMMcp36dtJtE_FusNGE1ysfQPrK72qpKNtU3kgIIxy5X4-wq9PcPlpw96ntzBwyGFq09vfaIkEdakh1ZDAiKhtAm6z6V5ri5VjKuZOeBIQyqsSMBKxQk4KV6bqTT0U9dECeW7t3lB_LwCQsvW2GvT77NEtbxI9WlKpF2aP2DncO2KWBgUZezk411x735NclhY37U5ksU9ig6uhG9N7FZ-YMqPpsbxJgN7H2hn5Jti_ykSyDJSRLxrBGTFQcZ7wiRujAZ1IcIguU47lLJzJicdInBgQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3d92ee5-3506-4a99-bb60-ffce7295757b",
      "qi": "0XZX2hmCdQk_2MPpVtD3m83XElTbNizwwmz2l5IyHdG_d28s0I_TY5-jwwtxq_mOBHqByozEsQvKuypec1gnAGbb5FMt_LYtpJcKUlA-7hS5ERj9tfmOVfaZ5U5kp7a3s0HBdyvdFehGHLTn5mgIDavvWprF2NvHyb7Dd--3WrM",
      "dp": "r_bGoSgfRSy7pOB2l6SdahdGUFmI6GVyO8bD6mOMJpwBOrnoOyPg6RWrREd3cWGgSkdGh9D62SLS12lw4tnnqwyKAhcQIYZ25ONbyxQx38bRcFTMY_vw3_mnEtWz6P5hYv9qN7o8T_mHGCIP5mOL5XID6MMXvUlSdWbWXzrU2kE",
      "alg": "RSA-OAEP",
      "dq": "v1CD1O0Z1IVrIZ3rgvkxXKHxVj5T10mpS4XQoRDCc5rRtXdnobrmssjiUAUzKLYLcHvgjq2cwS-Bw5GF84hIUKyjhDetQZzCrpGpqO7xj6aPtZBZAI8_vfZD5hhG2NkVbsz9_FS1eLjHYu3YmBzEregkKRsPvVdFCKCCES5OoFM",
      "n": "rpMSNt2pa03AbJ5_BJQxBL0gOTO6arwlQsON67JZtDbu8sttBOScglDLEiYnmIiguX_snipjcd5U82PjtK-qJDOHbaNp-dsFnquQMI3S-UnLClyO336CX00AwC_3kyADc1AjSCWuUojBHSj9Khhnw-4j56oLwIVooBeSq78F0WVAoYQXg0XeqHnSnBaDYxZqePsGD4NDQVzd3b5FaNlMe3kgrNuiLp1FrNCoEU1T7jxg6Qh87OfD3rbBP93Sm986SQb3h80lC8l9C8Dp2zhWTvzCs8k-3YhfukeAN0n_HslnefhGkdcd9URMzvWcwrYb1lnkyHY5iXKBznQTnr5eIw"
    },
    {
      "kty": "EC",
      "d": "25gGO-FEoXlDqOLboxSXJ1MNe6D-ZwE9ScCH3d887mA",
      "use": "enc",
      "crv": "P-256",
      "kid": "8ac5c4f8-e8c4-49fe-baf3-b223f42dad46",
      "x": "LN7pN-BhdtxwfSr29ttqKj0JMURov4ep2ReoCqAzhuY",
      "y": "WrZLZOOukYRU0voVoejkckFU4_LRPGUIl-V3eE9pVzc",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "fbab88bf-b017-49f8-9d1a-b893b87b1a47",
      "n": "gjIbgLu9YRbZbWT3JpGo1izOOSuI_YOd3qPfuZsrm9zoU1JY8dvlB0qnzWE153DDYTG4A_T96vd7Dh6yaoCm5xMJNjH733csUzKn4GP-n9sHI78gdoDk6-afbQhWceV2BEb_dkoLDuroxDpc3i4a4FloVCcao9KgxSmdr5ruWsR6LHZSP4PNDN4EHwvbfGCUGw078uc9Src6cCguo7o5SnGfAaOY5fEw1gyu1LW0hNHf4XKvgZa-O6-FMojP7zAPv5nhfw9dhxYukm06sChXQmm2lXq_B4m9Ch-QOZ8-nU4XICiRXtXZB3jalGfnbbZ-HaW6vHFtCaZC8SECnAr-Xw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "a00524f1-b5dc-4db6-bb8a-10ff605b84c8",
      "n": "h6oF6XDeogrklMbWdM8yGhIT3kM8av-da1qrfMjebAWmkYxCHAdjbUgpb8iS-P6SfnQi_gSHizUquBACu9afcBsC2vKvfNpulr88_e-CN2z9wobJL0bq1YcT0JSPC1XPEHgEMGyn6UVfgikjSWQ27toc06lcm0OBgrp-riwBswbQAFnVJZWAdq3GhL102LsQE6m9Yj_gf48hYXwkCyddnq5adk7iBvMJelFpwx6bGVWYnTorrgBuDKOQzgQSwExvDiPsjaDsQfz4TjNNUO3QMuu1_8XtbSCV1gqj-AhTR-1bU7h3jRxgpgDSHMNyC5SWg2nU-ps603mGD1T9vkFgww"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "53a1aa57-ab96-4592-8472-8ebbca12ae0f",
      "x": "sBtwSmWs6ub-x9cDnWZ2oeAdy-KUdfwhoSso8352N28",
      "y": "wHWN_ewbTKoZMOR9zANGJvnQaok7zYmLZjHgqBLP0rM"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "124d2cae-10bf-4218-911f-e5ca0a2fd61e",
      "x": "s4xMmf4hm9ip9--gliPv_GW_X3f3Ow5j1agdms_Dea4",
      "y": "VNlrsV3ZhBSXq2-KL2BvIXwkpxY9f525kQpoXGfXEIM"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "b51b51fc-1e7f-4b46-89e5-77cfcbee935d",
      "x": "i1wsRnwTfLzo4BYuZiuu2juNncHtMqP9dGAOajbAwV4",
      "y": "0fcfPENvb6cv0eunYZXsoJFxrGwkXtbmaa3bet6ctBw"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "fd5014ef-c27b-4d9a-a8d4-5fb4d1cc3143",
      "x": "grGlWZS-lCgn4NM89S702f0iF4m1W5v5gpDnwZL5lSY"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3d92ee5-3506-4a99-bb60-ffce7295757b",
      "alg": "RSA-OAEP",
      "n": "rpMSNt2pa03AbJ5_BJQxBL0gOTO6arwlQsON67JZtDbu8sttBOScglDLEiYnmIiguX_snipjcd5U82PjtK-qJDOHbaNp-dsFnquQMI3S-UnLClyO336CX00AwC_3kyADc1AjSCWuUojBHSj9Khhnw-4j56oLwIVooBeSq78F0WVAoYQXg0XeqHnSnBaDYxZqePsGD4NDQVzd3b5FaNlMe3kgrNuiLp1FrNCoEU1T7jxg6Qh87OfD3rbBP93Sm986SQb3h80lC8l9C8Dp2zhWTvzCs8k-3YhfukeAN0n_HslnefhGkdcd9URMzvWcwrYb1lnkyHY5iXKBznQTnr5eIw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "8ac5c4f8-e8c4-49fe-baf3-b223f42dad46",
      "x": "LN7pN-BhdtxwfSr29ttqKj0JMURov4ep2ReoCqAzhuY",
      "y": "WrZLZOOukYRU0voVoejkckFU4_LRPGUIl-V3eE9pVzc",
      "alg": "ECDH-ES"
    }
  ]
}
2020-10-30 08:08:42 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJmYmFiODhiZi1iMDE3LTQ5ZjgtOWQxYS1iODkzYjg3YjFhNDciLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTEhlSUEwSHJGMHV3TDB1aEdaa1RsUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X2tlWVVYS2ZjRUlEdFJYVDc1NTM5JH09XFx9IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2dsdXUtb3hkLXRlc3RcLyIsImV4cCI6MTYwNDA0NTYyMiwibm9uY2UiOiJsZGVoMzVwMzg2bTRqMHBlbnVkZ241cmZjNSIsImlhdCI6MTYwNDA0NTMyMn0.V1gVMuq_sH4wflhcY9Xs2z3gISB92qcFxqMENpzzi9MeC8gkcE_2E4LrKmJXHr7sYKnMCGVa-lxSSEtAL83_RjkPVfGGYQTgcaJS9URBs2BuZ5T3yRgQYW6uR9DUIvLAci8BScS5tDjeJl1cABNxRrEtS_a6Jf4mykTBkSThmcdYUWQndXwdej_PjE8oBFIcEe6nnzU2d9GOK_b5G3ppWJtNWTNmZhG7KOu-7Y5U4CNaD-FucWZk7jRThjDQxGxd4e2ZR7wjqcVYhT6X3-Owwey414qpc7oG4oQj9DseKIFzoj1An5cCHbqE2uzdxTPT9TniC2VQ2T5oh9R1EeUvTg
key
{"p":"0qeGchhpN32YGQ6ibGhk6aAHQVZIqan_Vut_tmpgMgjqYRysaYbyNBoX4peX7OUwVoY4Uzpdmo-FYOGjfftinwWU763lFGjjtYDdpDybbzr7QJJyTJAEZ9d1VbhvgGjN7WHS92iXdvvck9UBnlFbjNeI_I-VDVA-3ZnYLVhOmHc","kty":"RSA","q":"njjEuYB5UIvRktb0-PqISzCl8HSRf1AtefOuX3JMUVY5CkchcrDUqhG_QCNA1YC4asMb5V7QjG0E87TvJm_UPR2etxWKjd5Qb31AgVXtnpxfBIfBF4qf5_q10S12S_-DVtWo0NVlHEXCUpR_Q1uRAn75ov1Hmnjdgg8uY1bEK1k","d":"TE2jksH0zpb-nL9kneUWJ1ehER5zrehaOKagMv4_A5znSBXl7PFr--cECzkix15uE2N5LlCCFBgwtWjGNebqaljcuDd5H1GP177DZp4UF4ndWFTmaK1H_P1viA4v45aQoRcfFytz6a1A9-ggj1JEDCI6I7-7PDHwaTznnohVkznlFA_iGhw__zNLlXis0mOsgEFjEm__7OgB0KbSqK5fZOWzGJiweP5y7jBtyKaV_AmyFYMdOz45Dhf0siMHA9SkK9A6McX-jwUhihsDDBZTh_xIDPEX1-jqJrYGmLwBtA5MaXMCeU79NmRzVkWJOKDgYTMw9qThKd7mJlbhV_lvEQ","e":"AQAB","use":"sig","kid":"fbab88bf-b017-49f8-9d1a-b893b87b1a47","qi":"tp4ixpavZ7YDCXaZbWNwDauSvS4WUr8nqPCvVq3DHAoDAbufgjo_wQ-lPv29DADBvIIr3HylG_rWJl7rCS69fdlTF5P8Zve-yCZEULMcJoAg_GEO5K4ra3UbWiBuAvJvhyQJ-ZbM3EuMUoGJf4akrnUE2p3BikkSjbknkQyaKIo","dp":"FQV6uTAOb-csonN_aeoRB-9cSfzeS3AXdwkROZbr-pJBMWe3HODGksR31bjjBFTqufey7ztH1AC2grCBrDTF5rCb6D8mOR8uehJeC-GwcS0lnY__r_w_NE2f--nn1pye0C2O6_mYA9uma2o6Ox5LUIbBuNJrQWTcoSiVFhFV5ok","dq":"JxsU1FyCn3vPUqG6bodNhHgDq4jEJVllxAyMfp67aicLdhTamYRHK7mzMWEFNz_XVNvgWzKyDOMtJCcGLNPa-zgE8G9sjV_zNXsZpF3emyM_ANmkyfLDTwzSP18jK-l9RssMLIFxuikrvEljovxQvPMxNC2xsuZIqUqjRn49ghE","n":"gjIbgLu9YRbZbWT3JpGo1izOOSuI_YOd3qPfuZsrm9zoU1JY8dvlB0qnzWE153DDYTG4A_T96vd7Dh6yaoCm5xMJNjH733csUzKn4GP-n9sHI78gdoDk6-afbQhWceV2BEb_dkoLDuroxDpc3i4a4FloVCcao9KgxSmdr5ruWsR6LHZSP4PNDN4EHwvbfGCUGw078uc9Src6cCguo7o5SnGfAaOY5fEw1gyu1LW0hNHf4XKvgZa-O6-FMojP7zAPv5nhfw9dhxYukm06sChXQmm2lXq_B4m9Ch-QOZ8-nU4XICiRXtXZB3jalGfnbbZ-HaW6vHFtCaZC8SECnAr-Xw"}
algorithm
RS256
2020-10-30 08:08:42 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2020-10-30 08:08:42 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d
token_type
Bearer
id_token
eyJraWQiOiJmYmFiODhiZi1iMDE3LTQ5ZjgtOWQxYS1iODkzYjg3YjFhNDciLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTEhlSUEwSHJGMHV3TDB1aEdaa1RsUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X2tlWVVYS2ZjRUlEdFJYVDc1NTM5JH09XFx9IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2dsdXUtb3hkLXRlc3RcLyIsImV4cCI6MTYwNDA0NTYyMiwibm9uY2UiOiJsZGVoMzVwMzg2bTRqMHBlbnVkZ241cmZjNSIsImlhdCI6MTYwNDA0NTMyMn0.V1gVMuq_sH4wflhcY9Xs2z3gISB92qcFxqMENpzzi9MeC8gkcE_2E4LrKmJXHr7sYKnMCGVa-lxSSEtAL83_RjkPVfGGYQTgcaJS9URBs2BuZ5T3yRgQYW6uR9DUIvLAci8BScS5tDjeJl1cABNxRrEtS_a6Jf4mykTBkSThmcdYUWQndXwdej_PjE8oBFIcEe6nnzU2d9GOK_b5G3ppWJtNWTNmZhG7KOu-7Y5U4CNaD-FucWZk7jRThjDQxGxd4e2ZR7wjqcVYhT6X3-Owwey414qpc7oG4oQj9DseKIFzoj1An5cCHbqE2uzdxTPT9TniC2VQ2T5oh9R1EeUvTg
scope
openid
2020-10-30 08:08:42 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJmYmFiODhiZi1iMDE3LTQ5ZjgtOWQxYS1iODkzYjg3YjFhNDciLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiTEhlSUEwSHJGMHV3TDB1aEdaa1RsUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X2tlWVVYS2ZjRUlEdFJYVDc1NTM5JH09XFx9IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2dsdXUtb3hkLXRlc3RcLyIsImV4cCI6MTYwNDA0NTYyMiwibm9uY2UiOiJsZGVoMzVwMzg2bTRqMHBlbnVkZ241cmZjNSIsImlhdCI6MTYwNDA0NTMyMn0.V1gVMuq_sH4wflhcY9Xs2z3gISB92qcFxqMENpzzi9MeC8gkcE_2E4LrKmJXHr7sYKnMCGVa-lxSSEtAL83_RjkPVfGGYQTgcaJS9URBs2BuZ5T3yRgQYW6uR9DUIvLAci8BScS5tDjeJl1cABNxRrEtS_a6Jf4mykTBkSThmcdYUWQndXwdej_PjE8oBFIcEe6nnzU2d9GOK_b5G3ppWJtNWTNmZhG7KOu-7Y5U4CNaD-FucWZk7jRThjDQxGxd4e2ZR7wjqcVYhT6X3-Owwey414qpc7oG4oQj9DseKIFzoj1An5cCHbqE2uzdxTPT9TniC2VQ2T5oh9R1EeUvTg",
  "scope": "openid"
}
outgoing_path
token
2020-10-30 08:08:44 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
jwks
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Jwks endpoint
2020-10-30 08:08:44 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "fbab88bf-b017-49f8-9d1a-b893b87b1a47",
      "n": "gjIbgLu9YRbZbWT3JpGo1izOOSuI_YOd3qPfuZsrm9zoU1JY8dvlB0qnzWE153DDYTG4A_T96vd7Dh6yaoCm5xMJNjH733csUzKn4GP-n9sHI78gdoDk6-afbQhWceV2BEb_dkoLDuroxDpc3i4a4FloVCcao9KgxSmdr5ruWsR6LHZSP4PNDN4EHwvbfGCUGw078uc9Src6cCguo7o5SnGfAaOY5fEw1gyu1LW0hNHf4XKvgZa-O6-FMojP7zAPv5nhfw9dhxYukm06sChXQmm2lXq_B4m9Ch-QOZ8-nU4XICiRXtXZB3jalGfnbbZ-HaW6vHFtCaZC8SECnAr-Xw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "a00524f1-b5dc-4db6-bb8a-10ff605b84c8",
      "n": "h6oF6XDeogrklMbWdM8yGhIT3kM8av-da1qrfMjebAWmkYxCHAdjbUgpb8iS-P6SfnQi_gSHizUquBACu9afcBsC2vKvfNpulr88_e-CN2z9wobJL0bq1YcT0JSPC1XPEHgEMGyn6UVfgikjSWQ27toc06lcm0OBgrp-riwBswbQAFnVJZWAdq3GhL102LsQE6m9Yj_gf48hYXwkCyddnq5adk7iBvMJelFpwx6bGVWYnTorrgBuDKOQzgQSwExvDiPsjaDsQfz4TjNNUO3QMuu1_8XtbSCV1gqj-AhTR-1bU7h3jRxgpgDSHMNyC5SWg2nU-ps603mGD1T9vkFgww"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "53a1aa57-ab96-4592-8472-8ebbca12ae0f",
      "x": "sBtwSmWs6ub-x9cDnWZ2oeAdy-KUdfwhoSso8352N28",
      "y": "wHWN_ewbTKoZMOR9zANGJvnQaok7zYmLZjHgqBLP0rM"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "124d2cae-10bf-4218-911f-e5ca0a2fd61e",
      "x": "s4xMmf4hm9ip9--gliPv_GW_X3f3Ow5j1agdms_Dea4",
      "y": "VNlrsV3ZhBSXq2-KL2BvIXwkpxY9f525kQpoXGfXEIM"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "b51b51fc-1e7f-4b46-89e5-77cfcbee935d",
      "x": "i1wsRnwTfLzo4BYuZiuu2juNncHtMqP9dGAOajbAwV4",
      "y": "0fcfPENvb6cv0eunYZXsoJFxrGwkXtbmaa3bet6ctBw"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "fd5014ef-c27b-4d9a-a8d4-5fb4d1cc3143",
      "x": "grGlWZS-lCgn4NM89S702f0iF4m1W5v5gpDnwZL5lSY"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3d92ee5-3506-4a99-bb60-ffce7295757b",
      "alg": "RSA-OAEP",
      "n": "rpMSNt2pa03AbJ5_BJQxBL0gOTO6arwlQsON67JZtDbu8sttBOScglDLEiYnmIiguX_snipjcd5U82PjtK-qJDOHbaNp-dsFnquQMI3S-UnLClyO336CX00AwC_3kyADc1AjSCWuUojBHSj9Khhnw-4j56oLwIVooBeSq78F0WVAoYQXg0XeqHnSnBaDYxZqePsGD4NDQVzd3b5FaNlMe3kgrNuiLp1FrNCoEU1T7jxg6Qh87OfD3rbBP93Sm986SQb3h80lC8l9C8Dp2zhWTvzCs8k-3YhfukeAN0n_HslnefhGkdcd9URMzvWcwrYb1lnkyHY5iXKBznQTnr5eIw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "8ac5c4f8-e8c4-49fe-baf3-b223f42dad46",
      "x": "LN7pN-BhdtxwfSr29ttqKj0JMURov4ep2ReoCqAzhuY",
      "y": "WrZLZOOukYRU0voVoejkckFU4_LRPGUIl-V3eE9pVzc",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2020-10-30 08:08:45 INCOMING
oidcc-client-test-signing-key-rotation-just-before-signing
Incoming HTTP request to test instance H5ykEUv1Kg9M1MD
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
userinfo
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Userinfo endpoint
2020-10-30 08:08:45 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token
ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d
2020-10-30 08:08:45 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
ftH2nTNNOVgdXYoplBHfu5gfXLIJrfeAH3mhStnyK2cvTFcq1d
2020-10-30 08:08:45 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub
user-subject-1234531
2020-10-30 08:08:45
ClearAccessTokenFromRequest
Condition ran but did not log anything
2020-10-30 08:08:45 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:08:45 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:08:45 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path
userinfo_encrypted_response_alg
mapped
object
client
2020-10-30 08:08:45 OUTGOING
oidcc-client-test-signing-key-rotation-just-before-signing
Response to HTTP request to test instance H5ykEUv1Kg9M1MD
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "sub": "user-subject-1234531"
}
outgoing_path
userinfo
2020-10-30 08:08:45 FINISHED
oidcc-client-test-signing-key-rotation-just-before-signing
Test has run to completion
testmodule_result
PASSED
2020-10-30 08:11:42
TEST-RUNNER
Alias has now been claimed by another test
alias
gluu-oxd-test
new_test_id
IpzUfaYV5kZrHV9
Test Results