Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-10-30 08:12:06 INFO
TEST-RUNNER
Test instance WDBOBgafKWoMG6k created
baseUrl
https://www.certification.openid.net/test/a/gluu-oxd-test
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "request_type": "plain_http_request",
  "response_mode": "default",
  "client_registration": "dynamic_client"
}
alias
gluu-oxd-test
description
Gluu oxd test
planId
MeblzABuwZGZ4
config
{
  "alias": "gluu-oxd-test",
  "description": "Gluu oxd test",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_aYTyJg7xpmEUcdL8is5KiFC6HRAwCF-CcA4GxvZXNaj7CnWQOlYQp-fg2-Nk0hQGGkOmhaFb35DTHr_Fa6ShoUjoeD0cORAy6PaEF1m6URs02s00OFDoYBudK-oUDNiPWQFJ8hrv4z1s2HmfB0x2e7QV_8dxW7xw1i7LTGk1fc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "veBnKgi99Hoqamh7_KPW3ipY4PJ18tyyLi33vI1y_g2Cs7swmNeAHYtc6b4A6Oz29D7cpuLzbSdMlPJoyFy8eq3T6bAoZnczq0JEFpvkeyme8HTEgRyVLLd82vGt68sIG32exWWMgOU-RuFzdJqP6bQtq5LwzqyVooIc1jna96E",
          "d": "DKBgwNmfjt9Ukk9RME3wB7TcUx3mGguBzhyA6lhKClAgtok9xJ7J0JfQ89Yg0uU5Pi3l-J0Qt9poPSCQYolt3AHxrrcI5YhPlbPeqpsHrAMSFK5SbB9zGo3zvfBlgpLvyqKQnrt7L-tKbmAhiUy0r9YmEfyACYzkaAyNR2F5OvGSGw0JrB8jhtYmgduN2VyYxNUlmFPqxYc7XdxWb0My0VwN4UJg4OPqlrkIaYKyovFbHbmgpP89IAabLhoIkmLeyyigVLFvjecvUliCyBJJpUH-QiLcgAU0CBKgjz9_2e8hkjGgqNv-W8kt1tlSzdgenZbgYqdvf6rf3Si0OedWYQ",
          "e": "AQAB",
          "use": "sig",
          "kid": "d15d02ac-b432-45ef-8c09-bde3811d0c9b",
          "qi": "j9oCr752UnXnC9lD-dlufwTJpSs4xGYthpvd0TwXd604VBeGeZ-3gPM1l4k6HqQ2QQ_s5d8116rBBWnAtNG5t1_dzUdIznv26ErNPeXZiQ8GvD1ai_yA7d8aR6sOUyTLVXAQnNZTYmHdhZf2Lc3rEFGpBefXMBY0i6eWwtFQVpA",
          "dp": "XPz3n8B_mY1KPxjLNNq3uEQ9XS7RVh5xMG3xo66P_0MJEVk9HMru-m2-ctcAlhAanPhWzBKZlIg7b9xfi7lWKk7BA2WO95wWTRGirgEv6zCUnOVelX0f6CNHWyvSjqRnzY3PfggxyCWLJdosPzAMyJKOetQiO_EyXKU46ZabkX0",
          "dq": "KGM3DmXVoc7qfr_Cv7ZJ2e-___kSxZnT_Kaib2TW9NsC1iAW8ivEgIRIOx_DKchdrw4_-O-FP86AJ554U0YGgUHANZDWxxTL1L2_pd969gegWx07PwtJX72XvSpzCBijnNVXlD1JaZFZcdI6sK6_tcIxhLE4r31eRrbOU3Ly9IE",
          "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw"
        }
      ]
    }
  },
  "client": {
    "client_id": "test-client-id-346334adgdsfgdfg3425",
    "client_secret": "test-client-secret-452wf246w3g324t34",
    "scope": "openid accounts",
    "redirect_uri": "https://www.gluu.org",
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIDZjCCAhqgAwIBAgIhAJZt5gX62poPeFj5+i2q9ozjpIKLoLQNw3zy8134lfRY MEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgw DQYJYIZIAWUDBAICBQCiAwIBMDAeMRwwGgYDVQQDDBNveGQgQ0EgQ2VydGlmaWNh dGVzMB4XDTIwMDgyNzEzMjg1OFoXDTIwMTIwNTEzMjkwNVowHjEcMBoGA1UEAwwT b3hkIENBIENlcnRpZmljYXRlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIo79ge2mJ055DBIQJ9Up6ODBC4ch72nQU6ZNLx/1JgpSokj2bXgDSxUN2rd SiFEWGv/u5CUKDpavYSMONIPGX+DH2rN10oZN/WFqP1ZSp/GzQbnf4SWn3rUtU8w p5bj+8XB+b1CtNbz2AMO11XnSoD2tWV5waS2fR4HBqct3Smo3Ek7Gno9oXEITGU2 94dEO3AXkoHLMZf+z6BTnQdPBWncHVYjz43YMxLr0hVidHQxTYzoU0RID6bRTug7 bfW8a6yrT2/hF1MCrCIe3Jd7HJrgV3sLIZFUX9p69v1Ghuu+lAVXiOYCkgQ5ab6T K6Oxq8okOOh74AaSUBzlW0ijoV0CAwEAAaMnMCUwIwYDVR0lBBwwGgYIKwYBBQUH AwEGCCsGAQUFBwMCBgRVHSUAMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAIC BQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMAOCAQEANbRPGBNr Nn+SeQdTeQQ6Gmp5tFTjs/hwshJ4YZCE5j3f6W8o2cN91TFK8lHTIK7zRj1c/yJf Xf27BPTFZOTvYzlHBkRKUptc7aCJgC5awwdalPxU7NEs2T6R8OaNWeuUtT9T6Oze si3Rx0hHmieqsYgnW+uHgLokI8vFickzXdTDiib1hE44+hQAwkRQ2IO8anjSGTAt LUF59D0O5XdJ0PVgq7I0tpNdKM5LcztY1mrq2B4fRLnVJsoz54qCuBNQG1i/MNYD 8Cx5ZxlehAtexm3rVMKuVy3wOpYId8feVPsqk+oXVgkiuV47McvD8NAzY3PXqB19 rXRsjI7iPJRkQQ\u003d\u003d\n-----END CERTIFICATE-----\n",
    "jwks": {
      "keys": [
        {
          "kid": "efe712dc-7820-4f36-90ae-b6e6b8490c0d_sig_ps256",
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "exp": 1607326752998,
          "x5c": [
            "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"
          ],
          "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw",
          "e": "AQAB"
        },
        {
          "kid": "1ae82071-038b-4e4b-8a2b-b2a8a196a350_enc_rsa1_5",
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA1_5",
          "exp": 1607326752998,
          "x5c": [
            "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\u003d"
          ],
          "n": "woTz8lj4vH7xVLBrINlqrA8bSk7qSnE6rdaOsdkxnu7R2rmxVA0IpR0UVTOe7V_mQ6RCanjebS29EYR4fXf1t0TO862NUdHu7F_2Qf1NKTb1ZnwihwNbiJnytpoOA5iI2jXvfNIDX55KEIM4IcV0e_Cmp3-ynb2IVzluzkB3RFKShtYiIXLoGeMCCxS4_uUcryeAvspz5tQpPJclgzXgK_Q3G072JU-LIlKHKYkSVzZCWiymTYpkTOOKAZYNKfYClaCOngFqS1BBkdslzOXWxSjwajWPGy1KZmzNi7DkyDK5zXdf8iaS5Z2PW1TREAmLgvmQDOzW9rCZkEQqTjV_Aw",
          "e": "AQAB"
        }
      ]
    }
  }
}
testName
oidcc-client-test-signing-key-rotation
2020-10-30 08:12:06 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-10-30 08:12:06
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2020-10-30 08:12:06
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "3kSfuZs_7d0U_jhoq6GZi0oop90Nu_2HRxQwDU9DytXFTjdXlOhU1cep3CNkL-WI3P08SeBZjwXBMk1f2clBFrwSwRrAK0uTERRc3b8yTQ2IwShYP_HyO9GRT_CvhlUV4MQEkSfT98GtBmP-Lde66VzWxWGLXchLjvX33EFB7Sc",
      "kty": "RSA",
      "q": "sxCMExhkwxNdNxn6vVMFH3pZ_A4sOokdJ20sBc0n53ooFwiMKiIN2Z1h1Zs0D4XIJ5PDT6_1whOlol_nJX88o4cyXlnY33n4Zz25ixNRTWF-FltmtiOI9vaZwuscB-Bs9euBAKxCcky-tvrnDP6KEqF-cfWYBAqhFL5nYix9Bkc",
      "d": "ByK--e2_sL5_zlbaondq5PMTif7-wUyn1dca7Gf8kzBgKJzAFd9iDZ1Jlxoyu62EI7kBvM2qBcN3YHaqwX_JPSamL1-k9AidbHLdSrk7gv0ZtPzEXFxl25kucnW9mw7T5w1eUQNs7n_gq6gYipcFcFdHiFsCHmCJTIKcXhL_0OXZ-ccCHB6ZYGxd6PZ2l8TwY4KbOMYDm26rvK0Im2UtJFSdNvC68oNNtwZ-OjhlJt3K1gAjylzdX7W0qKU6mhrEZFZRro3jNCTmcw6k-11VfJmAynU4ySRzzpAecodtGuMKn81K2NV1sGu9iCikzNUfmon2lpi26ndfIquDTOSXAQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "ba888706-e813-4aac-8fdf-ec020b75f5cf",
      "qi": "b9C63J2qL_F-7PWEzb6AyOPz-iHH0y9hQ0MHBkIoaQOGjjkEjA6g3UrCpE4K6hb6tkE9UJrzgwHg2nbSoPdajqNN7o_Fx8mIsk6r97RwiNIImnviAxrJvsrHEBJ3quz_lkqTDDa0LLrogHPH1nOP8-fkr85BjBfnwwa5Bq-55GU",
      "dp": "ZwQ5X4ZEOBPa0gUFBl9s0fE6LKs43WOhWmFR8ClHy3AO9bSSxDJ2d2sGIEDLA6QILhy036y69Z3-MDlKbp9nqojazGOAo9BwRl9At4oRX0Mhmhz_4gtacT0tc3ajc8hlznorf7eM9-ztK-QWf9rYB6b-6BbQyFO4KXd5PL2GN8s",
      "dq": "alACujubZ26Rw2s7QTiPLBc6YboQbFiH5Kaeonshm_8c2kAK5-D8FB2qvmW9TRICueyy4xb3dFix2GvUEqEuYXCdaQMzDcuevb0Z8gZwGN8vOxrdKnqCkQ3sUJvCMrL-PiuqlbmwYahK-tyQXViqpVEYf5RuwseEx4ocW19Kg3U",
      "n": "m3hZlt7GriTQEkTZTcqrQ-mS0I5cnu22rjUr35Ea0s3m5IC9f_RrUaVhDfB_I2zrrg4U64YHGaibkYkgA57fDvgdG7rr4zKByusKsDb_ratLEkDLq6OX1FgA_aIMUsKiiwB09_pg2D00ufAEUE2elYIII57ZTzRl4FUuWy4eSgU3bcP10ak-eRrq4b0-l6TO5BWYocy4AsBGnrOsVskE0szYnawTvfs3FRA5-bYm2IDSgZeVAr-igoPMXcdGCPK0vV-B6ark0SDMD8wzNMDzyiy_V1JNF_g3H6a771vdYnWwzMqPoF51c074QXasUwdnigprIfj1KJDcY5N_JOKv0Q"
    },
    {
      "kty": "EC",
      "d": "6dI--z_R84cKgmrKa79P7xbIZJV27Oz5-v56QDncnks",
      "use": "sig",
      "crv": "P-256",
      "kid": "eeec2ed6-43ab-43b2-ac4c-2f5c321d1493",
      "x": "TePt76cQOCB5I0XPczpqzJy6vl_lthUvjuhpYAsLF8k",
      "y": "E1S60RezMjCY9QBGzqY-At62DYh3Mlnz4o4KKuZSXx8"
    },
    {
      "kty": "EC",
      "d": "jsCE1Rixu3ABvU0LTPgEz4jbTeuqYGdrjzVkyLKzGf0",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "2f8f5783-e77c-47b8-9518-144dbfcea174",
      "x": "AhknJPkkrDBJahl_lzS40CovGsKsqf6Mzpxxgc1CkMg",
      "y": "_9EfJwRB7B_22gY0xkrf3U9aL2aW9JcXshp-LFHV1aU"
    },
    {
      "kty": "OKP",
      "d": "d2zRVlEBughMnYi6iw_4hIQyLxIXnKYHfOdhcmKud4w",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "a92414c9-e552-4f47-912d-1089d95470f6",
      "x": "whgCC0S0zgv3FkDKUHpoMXHOU10b96f8deEAEjGdTgA"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "uYAIEuIktbx8Wqk-J2VmjfMO6RilqcqxTtPZItw0cToR7sAB3532UE6LNwUA3d_5IszjAV609WalmjpHb8xFRvKToT9DAbRAMr4fkjuqmrFRQ7WDkpgiFx2OqTJkX8IjF9W0WOfSceq0PO89YnqnZW3udwAirohdnZotyQUGAsk",
      "kty": "RSA",
      "q": "sLH8r2Rf-WeAIO9zQf3Nue28rFr_FIUkk3apRNdmPeZAkJPTkxXCF-6-VpRCPKgdIqzsfVf-U7g8voY157fctt-84JYaJ5Q2W0m1pSZ47RgsjJXksIxHZwah7FBmytQPzQVWI02cb56TSREVPMKVTCVu8TUOJ_Rqt-p1NC3vUp0",
      "d": "cy8j8otq7N9mK2xZwUDvv3__5aNiEj4YaaBKf-0c3ovITY9tDAMeXHtPUowvpCDymT6jwwQO-660Nrkw8i-uO7uGKPv-1Z9-bxHR3zrFjbaTRcT-OVggncvGWOavFoz4ElC3ELifZ0-Pged41Aan_k8Q5Y3dcD3bw0ApsKYqie0eJNpspDiKEW2xVlhHbuy-cfMbTlYK3Ko-Ml6AKYyIicjVJYWhdWApWKBipbOh5fBxDQLQFhOTZu9qAqyY-KqPq9Kdwoab3Vw_4ycwUndja1dJDkKudsOArhyPv-DBAqyxLiuj-qpRhgErtmzLK5_lT5L4KKM0LT3JLbIeAJUUIQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "a42ffd0d-7ac3-4e75-987c-728698a9f326",
      "qi": "WxBOHOa7bsLzvs-RJ_hHgw_sZl4MjbFjcAuIWfx8l2kax6Gaw5nDl9HyLQ4yVrSaYh0UO6WLE32F3XYq7tLs9n6HhNk0yqN5PDQEMdSbzM2Q4nPe3cBxujwsw8O063y0WcrkXZHWd95XdK6ItG3J6mxtxko7JOjihx0lTM5VAHo",
      "dp": "gHmKHfn-TthikDATWhnCs6GZvBtT8YruzpevFZPJxnnfnaniIkw3Iluj09FlTkYnONEKkBJV5njXTT_75hRmDsNHODCmafG7XOmM2Cz29fjFPc3jeI5hXf0cp1a9agz9XS6nn8O_XyKc_m775s7oTTmcJVM0sgjEPblg6I7QIPE",
      "alg": "RSA-OAEP",
      "dq": "V3Thcxalgla-To72Z3VuPFb1igHIO6ni_rI--fn7eyvaTTU-BZFBboMW5tefKVK0iRM6QpgpI9sPBeZ8C-MvdbysSiVBcNGlTe3f4Ix4UjIi6rrOZKwqM05PGx54om_wGjRH_FVP1teQYxv3fQl6yCPHE9CE3zXVFI8Rz-_kguk",
      "n": "gAj-K6-7QjrdW9cEQf4jJWNLaiVQWxQaGld1Ba6XSFGf5mX8z38JGEHgQCwxlkZcZgrZxp_AOTwhxQQD0XlN5bQrvB4q3NF1Vhk_nEsIfZ-Rhg0-OgcsPYTnqEdZAxQnZ6a8BgZ8zCgHMlvCIgw37d0c6EqpIUu2I4Iwtks-S4vQ_xf_AEqkO7tLmr_cYuNVn6DpZuJHcsWMenlifK9vVKQAMfuKU66s8SP3Mk5Kjn0Trwi_v2eSaDp6-ddl0v17J7FGh_F8VjKFZWc_obRUz5Goh07xYChplI_SI-JPCQsdxABkBDRvJK_bLBRLkhfUbTRJgzEppbkd_qTR8DsXRQ"
    },
    {
      "kty": "EC",
      "d": "K5X98bDk46hYCBE-WMf2vvz7e6dvQa09qQr2YnjwzKM",
      "use": "enc",
      "crv": "P-256",
      "kid": "e3b58f6c-0130-47f1-88e7-8dc09335867b",
      "x": "3wxcfeWWZ99dUjQ-DC5ixQaNSHYktVjqSpyK5op0CgQ",
      "y": "OA5Enu7iP8CZREsgwI9vwBt_T0t1kCQd-Gbvy0kvQ94",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "ba888706-e813-4aac-8fdf-ec020b75f5cf",
      "n": "m3hZlt7GriTQEkTZTcqrQ-mS0I5cnu22rjUr35Ea0s3m5IC9f_RrUaVhDfB_I2zrrg4U64YHGaibkYkgA57fDvgdG7rr4zKByusKsDb_ratLEkDLq6OX1FgA_aIMUsKiiwB09_pg2D00ufAEUE2elYIII57ZTzRl4FUuWy4eSgU3bcP10ak-eRrq4b0-l6TO5BWYocy4AsBGnrOsVskE0szYnawTvfs3FRA5-bYm2IDSgZeVAr-igoPMXcdGCPK0vV-B6ark0SDMD8wzNMDzyiy_V1JNF_g3H6a771vdYnWwzMqPoF51c074QXasUwdnigprIfj1KJDcY5N_JOKv0Q"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "5810df16-1305-482a-9f2e-16ffb8a37e94",
      "n": "jZPotQjyK7ohD66VM7YWjQDuRC4ODrGUNm6AK2-sgog2qxMt_Lg0SRfidnl18V4H1B4qQZ0bptVy6gN4xmyFzTOjHTrMMV3BTIAsdVJqCL2xkb7UnP4NPfJ08nSQvFBu550yUX8B0csnNBFxGuAzlImtBXgpbKcM-kwTLmXZ_AUq2xhGRdgb-EfEwToGOm8nqCtyavVYDHQyK-woes-_q-nzuVATC2qsMWMMFw32WdDhat1r3Ruz2r3QcGHR_J7zqQhdKmL0isH0UXE1KQNXPTZdxDN_JesW_z2X7WxZgku5-qdOe_zjlB5WO86cpATxS8AtjrUC1vlss-p9zwdaCQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "eeec2ed6-43ab-43b2-ac4c-2f5c321d1493",
      "x": "TePt76cQOCB5I0XPczpqzJy6vl_lthUvjuhpYAsLF8k",
      "y": "E1S60RezMjCY9QBGzqY-At62DYh3Mlnz4o4KKuZSXx8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "797c711d-613a-4922-9a64-38e769ca2410",
      "x": "NzpZDP43_BJz2WkkLSxE0IZOR2tEQ7ZNHehIDUMrWE4",
      "y": "HFxjm06dpYISHAxtTG-04OLNK28-GHz7kY_LdlFSCgA"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "2f8f5783-e77c-47b8-9518-144dbfcea174",
      "x": "AhknJPkkrDBJahl_lzS40CovGsKsqf6Mzpxxgc1CkMg",
      "y": "_9EfJwRB7B_22gY0xkrf3U9aL2aW9JcXshp-LFHV1aU"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "a92414c9-e552-4f47-912d-1089d95470f6",
      "x": "whgCC0S0zgv3FkDKUHpoMXHOU10b96f8deEAEjGdTgA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a42ffd0d-7ac3-4e75-987c-728698a9f326",
      "alg": "RSA-OAEP",
      "n": "gAj-K6-7QjrdW9cEQf4jJWNLaiVQWxQaGld1Ba6XSFGf5mX8z38JGEHgQCwxlkZcZgrZxp_AOTwhxQQD0XlN5bQrvB4q3NF1Vhk_nEsIfZ-Rhg0-OgcsPYTnqEdZAxQnZ6a8BgZ8zCgHMlvCIgw37d0c6EqpIUu2I4Iwtks-S4vQ_xf_AEqkO7tLmr_cYuNVn6DpZuJHcsWMenlifK9vVKQAMfuKU66s8SP3Mk5Kjn0Trwi_v2eSaDp6-ddl0v17J7FGh_F8VjKFZWc_obRUz5Goh07xYChplI_SI-JPCQsdxABkBDRvJK_bLBRLkhfUbTRJgzEppbkd_qTR8DsXRQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "e3b58f6c-0130-47f1-88e7-8dc09335867b",
      "x": "3wxcfeWWZ99dUjQ-DC5ixQaNSHYktVjqSpyK5op0CgQ",
      "y": "OA5Enu7iP8CZREsgwI9vwBt_T0t1kCQd-Gbvy0kvQ94",
      "alg": "ECDH-ES"
    }
  ]
}
2020-10-30 08:12:06 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-10-30 08:12:06 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-10-30 08:12:06 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": "1580000000"
}
2020-10-30 08:12:06 SUCCESS
GetDynamicClientConfiguration
Created dynamic_client_registration_template object from the client configuration.
client_id
test-client-id-346334adgdsfgdfg3425
client_secret
test-client-secret-452wf246w3g324t34
scope
openid accounts
redirect_uri
https://www.gluu.org
certificate
-----BEGIN CERTIFICATE-----
MIIDZjCCAhqgAwIBAgIhAJZt5gX62poPeFj5+i2q9ozjpIKLoLQNw3zy8134lfRY MEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAICBQChHDAaBgkqhkiG9w0BAQgw DQYJYIZIAWUDBAICBQCiAwIBMDAeMRwwGgYDVQQDDBNveGQgQ0EgQ2VydGlmaWNh dGVzMB4XDTIwMDgyNzEzMjg1OFoXDTIwMTIwNTEzMjkwNVowHjEcMBoGA1UEAwwT b3hkIENBIENlcnRpZmljYXRlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIo79ge2mJ055DBIQJ9Up6ODBC4ch72nQU6ZNLx/1JgpSokj2bXgDSxUN2rd SiFEWGv/u5CUKDpavYSMONIPGX+DH2rN10oZN/WFqP1ZSp/GzQbnf4SWn3rUtU8w p5bj+8XB+b1CtNbz2AMO11XnSoD2tWV5waS2fR4HBqct3Smo3Ek7Gno9oXEITGU2 94dEO3AXkoHLMZf+z6BTnQdPBWncHVYjz43YMxLr0hVidHQxTYzoU0RID6bRTug7 bfW8a6yrT2/hF1MCrCIe3Jd7HJrgV3sLIZFUX9p69v1Ghuu+lAVXiOYCkgQ5ab6T K6Oxq8okOOh74AaSUBzlW0ijoV0CAwEAAaMnMCUwIwYDVR0lBBwwGgYIKwYBBQUH AwEGCCsGAQUFBwMCBgRVHSUAMEEGCSqGSIb3DQEBCjA0oA8wDQYJYIZIAWUDBAIC BQChHDAaBgkqhkiG9w0BAQgwDQYJYIZIAWUDBAICBQCiAwIBMAOCAQEANbRPGBNr Nn+SeQdTeQQ6Gmp5tFTjs/hwshJ4YZCE5j3f6W8o2cN91TFK8lHTIK7zRj1c/yJf Xf27BPTFZOTvYzlHBkRKUptc7aCJgC5awwdalPxU7NEs2T6R8OaNWeuUtT9T6Oze si3Rx0hHmieqsYgnW+uHgLokI8vFickzXdTDiib1hE44+hQAwkRQ2IO8anjSGTAt LUF59D0O5XdJ0PVgq7I0tpNdKM5LcztY1mrq2B4fRLnVJsoz54qCuBNQG1i/MNYD 8Cx5ZxlehAtexm3rVMKuVy3wOpYId8feVPsqk+oXVgkiuV47McvD8NAzY3PXqB19 rXRsjI7iPJRkQQ==
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kid": "efe712dc-7820-4f36-90ae-b6e6b8490c0d_sig_ps256",
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "exp": 1607326752998,
      "x5c": [
        "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"
      ],
      "n": "vCH0I9_HsIxZnA-vbUfteJ3YPzhSpKE1uh4mZ36U-RzmDTWIvJsTFU83EVHXQp1Tvx0FtFcH4a8pynFoGXtD3AUajJlH0yN7EXU15K-NZ0OMZaS-7WWpkh5XHx3pphq8X7RLY3GEhPXdO_OKKq0IYi03npqG2y7v52DWaTbVGb_Z4nJ-D2b0buUWG9JGknFEEHiDJn0kvrDHor2Fv5Fx8USVUfdZDlQrW6ZTMYVMQhTam3LqDrzvk-HXKrgUUAMmN49r-2AUHEMJBBT2urtTpC57vdEGCBK4HiyXh_bgcFCmxi5DZ5G2jbScTFLoJI95wwgjuo4Mj9ZokCzOdnHhVw",
      "e": "AQAB"
    },
    {
      "kid": "1ae82071-038b-4e4b-8a2b-b2a8a196a350_enc_rsa1_5",
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA1_5",
      "exp": 1607326752998,
      "x5c": [
        "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\u003d"
      ],
      "n": "woTz8lj4vH7xVLBrINlqrA8bSk7qSnE6rdaOsdkxnu7R2rmxVA0IpR0UVTOe7V_mQ6RCanjebS29EYR4fXf1t0TO862NUdHu7F_2Qf1NKTb1ZnwihwNbiJnytpoOA5iI2jXvfNIDX55KEIM4IcV0e_Cmp3-ynb2IVzluzkB3RFKShtYiIXLoGeMCCxS4_uUcryeAvspz5tQpPJclgzXgK_Q3G072JU-LIlKHKYkSVzZCWiymTYpkTOOKAZYNKfYClaCOngFqS1BBkdslzOXWxSjwajWPGy1KZmzNi7DkyDK5zXdf8iaS5Z2PW1TREAmLgvmQDOzW9rCZkEQqTjV_Aw",
      "e": "AQAB"
    }
  ]
}
2020-10-30 08:12:06
oidcc-client-test-signing-key-rotation
Setup Done
2020-10-30 08:13:53 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "text/plain,application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2020-10-30 08:13:53 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/gluu-oxd-test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/gluu-oxd-test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2020-10-30 08:13:55 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json",
  "content-type": "application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "886",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
register
incoming_body_form_params
incoming_method
POST
incoming_body_json
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256"
}
incoming_query_string_params
{}
incoming_body
{
  "access_token_as_jwt" : "false",
  "allow_spontaneous_scopes" : false,
  "token_endpoint_auth_signing_alg" : "RS256",
  "post_logout_redirect_uris" : [ "https://www.gluu.org" ],
  "grant_types" : [ "authorization_code", "client_credentials" ],
  "application_type" : "web",
  "rpt_as_jwt" : "false",
  "redirect_uris" : [ "https://www.gluu.org" ],
  "oxd_id" : "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method" : "client_secret_basic",
  "frontchannel_logout_uri" : "https://www.gluu.org",
  "frontchannel_logout_session_required" : false,
  "scope" : "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims" : "false",
  "require_auth_time" : false,
  "client_name" : "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types" : [ "code" ],
  "id_token_signed_response_alg" : "RS256"
}
Registration endpoint
2020-10-30 08:13:55 SUCCESS
OIDCCExtractDynamicRegistrationRequest
Extracted dynamic client registration request
request
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256"
}
2020-10-30 08:13:55 INFO
EnsureRegistrationRequestContainsAtLeastOneContact
This application requires that registration requests contain at least one contact.
2020-10-30 08:13:55 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "authorization_code",
  "client_credentials"
]
response_types
[
  "code"
]
2020-10-30 08:13:55 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://www.gluu.org"
]
2020-10-30 08:13:55 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2020-10-30 08:13:55 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2020-10-30 08:13:55 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2020-10-30 08:13:55 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2020-10-30 08:13:55 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2020-10-30 08:13:55 SUCCESS
ValidateIdTokenSignedResponseAlg
id_token_signed_response_alg is one of the known algorithms
alg
RS256
2020-10-30 08:13:55 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2020-10-30 08:13:55 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:13:55 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2020-10-30 08:13:55 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2020-10-30 08:13:55 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2020-10-30 08:13:55 SUCCESS
ValidateTokenEndpointAuthSigningAlg
token_endpoint_auth_signing_alg is set but it is not applicable to client authentication method
token_endpoint_auth_signing_alg
RS256
token_endpoint_auth_method
client_secret_basic
2020-10-30 08:13:55 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2020-10-30 08:13:55 SUCCESS
ValidateRequireAuthTime
require_auth_time is encoded as a boolean
require_auth_time
false
2020-10-30 08:13:55 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2020-10-30 08:13:55 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2020-10-30 08:13:55 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2020-10-30 08:13:55 SUCCESS
ValidateClientRegistrationRequestSectorIdentifierUri
A sector_identifier_uri was not provided
2020-10-30 08:13:55 SUCCESS
OIDCCRegisterClient
Registered client
client
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027"
}
2020-10-30 08:13:55
OIDCCCreateClientSecretForDynamicClient
Set the secret for registered client
client_secret
secret_hlsRIamhTbckFrNtThZBufrEOHhvPoNVGMivxUDSMfHyGIEnTz4924940789|>?%,
2020-10-30 08:13:55 SUCCESS
EnsureTokenEndPointAuthMethodIsClientSecretBasic
token_endpoint_auth_method is 'client_secret_basic' as expected
2020-10-30 08:13:55 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "client_secret": "secret_hlsRIamhTbckFrNtThZBufrEOHhvPoNVGMivxUDSMfHyGIEnTz4924940789|\u003e?%,"
}
2020-10-30 08:13:55 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path
jwks_uri
mapped
object
client
2020-10-30 08:13:55 SUCCESS
OIDCCExtractServerSigningAlg
Selected signing algorithm based on client id_token_signed_response_alg.
selected_algorithm
RS256
id_token_signed_response_alg
RS256
2020-10-30 08:13:55
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2020-10-30 08:13:55 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "access_token_as_jwt": "false",
  "allow_spontaneous_scopes": false,
  "token_endpoint_auth_signing_alg": "RS256",
  "post_logout_redirect_uris": [
    "https://www.gluu.org"
  ],
  "grant_types": [
    "authorization_code",
    "client_credentials"
  ],
  "application_type": "web",
  "rpt_as_jwt": "false",
  "redirect_uris": [
    "https://www.gluu.org"
  ],
  "oxd_id": "6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "token_endpoint_auth_method": "client_secret_basic",
  "frontchannel_logout_uri": "https://www.gluu.org",
  "frontchannel_logout_session_required": false,
  "scope": "openid",
  "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": "false",
  "require_auth_time": false,
  "client_name": "oxd client for rp: 6c9ab990-5925-4a54-ae90-eb7fbb6edd27",
  "response_types": [
    "code"
  ],
  "id_token_signed_response_alg": "RS256",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "client_secret": "secret_hlsRIamhTbckFrNtThZBufrEOHhvPoNVGMivxUDSMfHyGIEnTz4924940789|\u003e?%,"
}
outgoing_path
register
2020-10-30 08:13:56 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_161)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "response_type": "code",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "nonce": "m6qllglltkam3hfhig96i9lhug"
}
incoming_body
Authorization endpoint
2020-10-30 08:13:56 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2020-10-30 08:13:56 SUCCESS
OIDCCEnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid"
]
expected
openid
2020-10-30 08:13:56 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "response_type": "code",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "nonce": "m6qllglltkam3hfhig96i9lhug"
}
2020-10-30 08:13:56 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid
2020-10-30 08:13:56 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
m6qllglltkam3hfhig96i9lhug
2020-10-30 08:13:56 SUCCESS
EnsureResponseTypeIsCode
Response type is expected value
expected
code
2020-10-30 08:13:56 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_BccaJDzEoFIXjuP17748;%,.'
2020-10-30 08:13:56 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://www.gluu.org
expected
[
  "https://www.gluu.org"
]
2020-10-30 08:13:56 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid"
]
expected
openid
2020-10-30 08:13:56 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2020-10-30 08:13:56 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
FsiMAnOPqE
2020-10-30 08:13:56 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
waK0yyfRodOWMpCp5disPA
2020-10-30 08:13:56 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "30idi5et4k0dn19buk9j6i7tog"
}
2020-10-30 08:13:56 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "code": "FsiMAnOPqE"
}
2020-10-30 08:13:56
SendAuthorizationResponseWithResponseModeQuery
Redirecting back to client
uri
https://www.gluu.org?state=30idi5et4k0dn19buk9j6i7tog&code=FsiMAnOPqE
2020-10-30 08:13:56 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.gluu.org?state=30idi5et4k0dn19buk9j6i7tog&code=FsiMAnOPqE]
outgoing_path
authorize
2020-10-30 08:13:59 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Basic Y2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4JTNCJTI1JTJDLiUyNzpzZWNyZXRfaGxzUklhbWhUYmNrRnJOdFRoWkJ1ZnJFT0hodlBvTlZHTWl2eFVEU01mSHlHSUVuVHo0OTI0OTQwNzg5JTdDJTNFJTNGJTI1JTJD",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "85",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
token
incoming_body_form_params
{
  "code": "FsiMAnOPqE",
  "grant_type": "authorization_code",
  "redirect_uri": "https://www.gluu.org"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
code=FsiMAnOPqE&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fwww.gluu.org
Token endpoint
2020-10-30 08:13:59 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
client_BccaJDzEoFIXjuP17748;%,.'
client_secret
secret_hlsRIamhTbckFrNtThZBufrEOHhvPoNVGMivxUDSMfHyGIEnTz4924940789|>?%,
method
client_secret_basic
2020-10-30 08:13:59 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2020-10-30 08:13:59 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
FsiMAnOPqE
2020-10-30 08:13:59 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://www.gluu.org
2020-10-30 08:13:59 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da
2020-10-30 08:13:59 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
XfWoL3EcaL9FNtkdEt4sAw
2020-10-30 08:13:59 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/gluu-oxd-test/
sub
user-subject-1234531
aud
client_BccaJDzEoFIXjuP17748;%,.'
nonce
m6qllglltkam3hfhig96i9lhug
iat
1604045639
exp
1604045939
2020-10-30 08:13:59 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
XfWoL3EcaL9FNtkdEt4sAw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "sub": "user-subject-1234531",
  "aud": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "nonce": "m6qllglltkam3hfhig96i9lhug",
  "iat": 1604045639,
  "exp": 1604045939,
  "at_hash": "XfWoL3EcaL9FNtkdEt4sAw"
}
2020-10-30 08:13:59 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJiYTg4ODcwNi1lODEzLTRhYWMtOGZkZi1lYzAyMGI3NWY1Y2YiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiWGZXb0wzRWNhTDlGTnRrZEV0NHNBdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTM5LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjM5fQ.GAm9XToIKWfSVbGuUp7B77npt5TC6i80m5JMPbJWtHSpoVdHqxXvz71LgHMKDFKDD_p7dYzBZpVqZg0UvzqheisfGQQohkFh0KZQPBYkqKcLSyK0nXkVAP_GwqLuE_jGLN_pEXg74CQXSS3dO82ogCrrb3cAfQNCGkCeTrtG49n8BU8KojzY19Qe8KOUs2uowaZbanEOlEvY_dDqp3QJhakOeaZKcM-W6EVrr12uVjzLwgjt7UeN8DTD39wgvfigMQXTTGAQfTzf8HovQA9lFHeb_8GkfA24KebodRdEQdnl3uyNLGw9wnDCX0MwfmrvlMAX9BC3fM81Zna3BlS8aQ
key
{"p":"3kSfuZs_7d0U_jhoq6GZi0oop90Nu_2HRxQwDU9DytXFTjdXlOhU1cep3CNkL-WI3P08SeBZjwXBMk1f2clBFrwSwRrAK0uTERRc3b8yTQ2IwShYP_HyO9GRT_CvhlUV4MQEkSfT98GtBmP-Lde66VzWxWGLXchLjvX33EFB7Sc","kty":"RSA","q":"sxCMExhkwxNdNxn6vVMFH3pZ_A4sOokdJ20sBc0n53ooFwiMKiIN2Z1h1Zs0D4XIJ5PDT6_1whOlol_nJX88o4cyXlnY33n4Zz25ixNRTWF-FltmtiOI9vaZwuscB-Bs9euBAKxCcky-tvrnDP6KEqF-cfWYBAqhFL5nYix9Bkc","d":"ByK--e2_sL5_zlbaondq5PMTif7-wUyn1dca7Gf8kzBgKJzAFd9iDZ1Jlxoyu62EI7kBvM2qBcN3YHaqwX_JPSamL1-k9AidbHLdSrk7gv0ZtPzEXFxl25kucnW9mw7T5w1eUQNs7n_gq6gYipcFcFdHiFsCHmCJTIKcXhL_0OXZ-ccCHB6ZYGxd6PZ2l8TwY4KbOMYDm26rvK0Im2UtJFSdNvC68oNNtwZ-OjhlJt3K1gAjylzdX7W0qKU6mhrEZFZRro3jNCTmcw6k-11VfJmAynU4ySRzzpAecodtGuMKn81K2NV1sGu9iCikzNUfmon2lpi26ndfIquDTOSXAQ","e":"AQAB","use":"sig","kid":"ba888706-e813-4aac-8fdf-ec020b75f5cf","qi":"b9C63J2qL_F-7PWEzb6AyOPz-iHH0y9hQ0MHBkIoaQOGjjkEjA6g3UrCpE4K6hb6tkE9UJrzgwHg2nbSoPdajqNN7o_Fx8mIsk6r97RwiNIImnviAxrJvsrHEBJ3quz_lkqTDDa0LLrogHPH1nOP8-fkr85BjBfnwwa5Bq-55GU","dp":"ZwQ5X4ZEOBPa0gUFBl9s0fE6LKs43WOhWmFR8ClHy3AO9bSSxDJ2d2sGIEDLA6QILhy036y69Z3-MDlKbp9nqojazGOAo9BwRl9At4oRX0Mhmhz_4gtacT0tc3ajc8hlznorf7eM9-ztK-QWf9rYB6b-6BbQyFO4KXd5PL2GN8s","dq":"alACujubZ26Rw2s7QTiPLBc6YboQbFiH5Kaeonshm_8c2kAK5-D8FB2qvmW9TRICueyy4xb3dFix2GvUEqEuYXCdaQMzDcuevb0Z8gZwGN8vOxrdKnqCkQ3sUJvCMrL-PiuqlbmwYahK-tyQXViqpVEYf5RuwseEx4ocW19Kg3U","n":"m3hZlt7GriTQEkTZTcqrQ-mS0I5cnu22rjUr35Ea0s3m5IC9f_RrUaVhDfB_I2zrrg4U64YHGaibkYkgA57fDvgdG7rr4zKByusKsDb_ratLEkDLq6OX1FgA_aIMUsKiiwB09_pg2D00ufAEUE2elYIII57ZTzRl4FUuWy4eSgU3bcP10ak-eRrq4b0-l6TO5BWYocy4AsBGnrOsVskE0szYnawTvfs3FRA5-bYm2IDSgZeVAr-igoPMXcdGCPK0vV-B6ark0SDMD8wzNMDzyiy_V1JNF_g3H6a771vdYnWwzMqPoF51c074QXasUwdnigprIfj1KJDcY5N_JOKv0Q"}
algorithm
RS256
2020-10-30 08:13:59 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2020-10-30 08:13:59 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da
token_type
Bearer
id_token
eyJraWQiOiJiYTg4ODcwNi1lODEzLTRhYWMtOGZkZi1lYzAyMGI3NWY1Y2YiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiWGZXb0wzRWNhTDlGTnRrZEV0NHNBdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTM5LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjM5fQ.GAm9XToIKWfSVbGuUp7B77npt5TC6i80m5JMPbJWtHSpoVdHqxXvz71LgHMKDFKDD_p7dYzBZpVqZg0UvzqheisfGQQohkFh0KZQPBYkqKcLSyK0nXkVAP_GwqLuE_jGLN_pEXg74CQXSS3dO82ogCrrb3cAfQNCGkCeTrtG49n8BU8KojzY19Qe8KOUs2uowaZbanEOlEvY_dDqp3QJhakOeaZKcM-W6EVrr12uVjzLwgjt7UeN8DTD39wgvfigMQXTTGAQfTzf8HovQA9lFHeb_8GkfA24KebodRdEQdnl3uyNLGw9wnDCX0MwfmrvlMAX9BC3fM81Zna3BlS8aQ
scope
openid
2020-10-30 08:13:59 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJiYTg4ODcwNi1lODEzLTRhYWMtOGZkZi1lYzAyMGI3NWY1Y2YiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiWGZXb0wzRWNhTDlGTnRrZEV0NHNBdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTM5LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjM5fQ.GAm9XToIKWfSVbGuUp7B77npt5TC6i80m5JMPbJWtHSpoVdHqxXvz71LgHMKDFKDD_p7dYzBZpVqZg0UvzqheisfGQQohkFh0KZQPBYkqKcLSyK0nXkVAP_GwqLuE_jGLN_pEXg74CQXSS3dO82ogCrrb3cAfQNCGkCeTrtG49n8BU8KojzY19Qe8KOUs2uowaZbanEOlEvY_dDqp3QJhakOeaZKcM-W6EVrr12uVjzLwgjt7UeN8DTD39wgvfigMQXTTGAQfTzf8HovQA9lFHeb_8GkfA24KebodRdEQdnl3uyNLGw9wnDCX0MwfmrvlMAX9BC3fM81Zna3BlS8aQ",
  "scope": "openid"
}
outgoing_path
token
2020-10-30 08:14:00 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
jwks
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Jwks endpoint
2020-10-30 08:14:00 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "ba888706-e813-4aac-8fdf-ec020b75f5cf",
      "n": "m3hZlt7GriTQEkTZTcqrQ-mS0I5cnu22rjUr35Ea0s3m5IC9f_RrUaVhDfB_I2zrrg4U64YHGaibkYkgA57fDvgdG7rr4zKByusKsDb_ratLEkDLq6OX1FgA_aIMUsKiiwB09_pg2D00ufAEUE2elYIII57ZTzRl4FUuWy4eSgU3bcP10ak-eRrq4b0-l6TO5BWYocy4AsBGnrOsVskE0szYnawTvfs3FRA5-bYm2IDSgZeVAr-igoPMXcdGCPK0vV-B6ark0SDMD8wzNMDzyiy_V1JNF_g3H6a771vdYnWwzMqPoF51c074QXasUwdnigprIfj1KJDcY5N_JOKv0Q"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "5810df16-1305-482a-9f2e-16ffb8a37e94",
      "n": "jZPotQjyK7ohD66VM7YWjQDuRC4ODrGUNm6AK2-sgog2qxMt_Lg0SRfidnl18V4H1B4qQZ0bptVy6gN4xmyFzTOjHTrMMV3BTIAsdVJqCL2xkb7UnP4NPfJ08nSQvFBu550yUX8B0csnNBFxGuAzlImtBXgpbKcM-kwTLmXZ_AUq2xhGRdgb-EfEwToGOm8nqCtyavVYDHQyK-woes-_q-nzuVATC2qsMWMMFw32WdDhat1r3Ruz2r3QcGHR_J7zqQhdKmL0isH0UXE1KQNXPTZdxDN_JesW_z2X7WxZgku5-qdOe_zjlB5WO86cpATxS8AtjrUC1vlss-p9zwdaCQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "eeec2ed6-43ab-43b2-ac4c-2f5c321d1493",
      "x": "TePt76cQOCB5I0XPczpqzJy6vl_lthUvjuhpYAsLF8k",
      "y": "E1S60RezMjCY9QBGzqY-At62DYh3Mlnz4o4KKuZSXx8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "797c711d-613a-4922-9a64-38e769ca2410",
      "x": "NzpZDP43_BJz2WkkLSxE0IZOR2tEQ7ZNHehIDUMrWE4",
      "y": "HFxjm06dpYISHAxtTG-04OLNK28-GHz7kY_LdlFSCgA"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "2f8f5783-e77c-47b8-9518-144dbfcea174",
      "x": "AhknJPkkrDBJahl_lzS40CovGsKsqf6Mzpxxgc1CkMg",
      "y": "_9EfJwRB7B_22gY0xkrf3U9aL2aW9JcXshp-LFHV1aU"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "a92414c9-e552-4f47-912d-1089d95470f6",
      "x": "whgCC0S0zgv3FkDKUHpoMXHOU10b96f8deEAEjGdTgA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a42ffd0d-7ac3-4e75-987c-728698a9f326",
      "alg": "RSA-OAEP",
      "n": "gAj-K6-7QjrdW9cEQf4jJWNLaiVQWxQaGld1Ba6XSFGf5mX8z38JGEHgQCwxlkZcZgrZxp_AOTwhxQQD0XlN5bQrvB4q3NF1Vhk_nEsIfZ-Rhg0-OgcsPYTnqEdZAxQnZ6a8BgZ8zCgHMlvCIgw37d0c6EqpIUu2I4Iwtks-S4vQ_xf_AEqkO7tLmr_cYuNVn6DpZuJHcsWMenlifK9vVKQAMfuKU66s8SP3Mk5Kjn0Trwi_v2eSaDp6-ddl0v17J7FGh_F8VjKFZWc_obRUz5Goh07xYChplI_SI-JPCQsdxABkBDRvJK_bLBRLkhfUbTRJgzEppbkd_qTR8DsXRQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "e3b58f6c-0130-47f1-88e7-8dc09335867b",
      "x": "3wxcfeWWZ99dUjQ-DC5ixQaNSHYktVjqSpyK5op0CgQ",
      "y": "OA5Enu7iP8CZREsgwI9vwBt_T0t1kCQd-Gbvy0kvQ94",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2020-10-30 08:14:02 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
userinfo
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Userinfo endpoint
2020-10-30 08:14:02 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token
Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da
2020-10-30 08:14:02 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
Bee9VeAUBx4dr4jHhnWh44vuBfJIPbGH4fuzk0v6XNmptcI4da
2020-10-30 08:14:02 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub
user-subject-1234531
2020-10-30 08:14:02
ClearAccessTokenFromRequest
Condition ran but did not log anything
2020-10-30 08:14:02 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:14:02 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:14:02 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path
userinfo_encrypted_response_alg
mapped
object
client
2020-10-30 08:14:02 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "sub": "user-subject-1234531"
}
outgoing_path
userinfo
2020-10-30 08:14:03 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_161)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "response_type": "code",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "nonce": "m6qllglltkam3hfhig96i9lhug"
}
incoming_body
2020-10-30 08:14:04
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "704QM7Gl8A0MTEce0wAPkuQk5heD469IaWjluEyx1BmFAgmhgNTKIhbrSKh9dra0o03BFdy6JbayM25P1mphC9v46PXIVZAx1zV0pQMuM45_p51sYX-Ul_awr3-CttC3v_1pIZyrp7sbBMsrbmozy4CS_zYmEM_DR5OP98CxcgU",
      "kty": "RSA",
      "q": "o36JsWAmtKfDIYLk3sJs0LaHOa0gg8qF39q1ZhVx1-WC-qszqGUEcl3AK2wZ2UWviT4zaYXS3ghyNGqtjC2NRErML4HFpVRLAqTRdR65BOL78PoX7bI1t7QFwz8Z0-R81oNmCh3xOuCC8bzz9Fr5cbetIwbJZT0aR5b6XpM-DEM",
      "d": "WiLkCEKU44sovgTR5l3HJWYAA1anxNlHEd94myrZFVJp_zcnF5IfcdToneEdEmO1ADhCRnSvXQ1n1zSvd9GQzn6TFUFwlFtcCA3YJ-gs_ljeb1y3aflI_62l2rsU47jMhRsS99s2YBNcUTZBGMmIXUka4wF5YA4eF7L_FULOvZI08NZLqv7KRsD_Ljv2TTaXolXfrd-XLatkYnRjWcgYwOcKclzY5sm68wP7SNbhAIrFAQV9UmqjOneYKByRBRz9pA8TKVjycZPJd3Vs1dwMFNZUXT2owFsAtkXSF80pwTqyienNGPLii5EcvhUSH0lYaH3-o0AJv8jfX2PRLMhj4Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "c6150225-8c8b-4067-b105-31ea1233a874",
      "qi": "rdpxP3nwOXHU8-6-VQQMtouTJgYbYohbRhcS8Rh3HLHpeUoUOgrLJleN8bDL5bHQR0c3GHFys4okNPUNWt47cwIaDjXceMXytuIYTPRe5B7pY_6yzxrRowk0TKFCSRsK6vFDH9nJiwk8S9ixeMl9P-i0RRA52haV54kQASpwkSc",
      "dp": "his2WkVXy-cE5h9Z4OM_2BOhvH-iqp0z9CWj5ljZuxkzwZi0vA6R5dsDv5D4Bv8Y-BY4E5HVrB9qeft3N7gdAREr1TE4SQC3cPm_lGTcGnviho90nJVzMmBVX5AWMXmEDFiAASBd_YSh-WYPy7AvqgFEaWJqpTJXQmIxba7TziE",
      "dq": "dDzIpGUZ36LOZorrMTzFpHXBGk5uKYTZPVf_U_63G6m_P3xsk7KOQMlKkRSgJAsZS9f_MWzFiLo0h_O4Q0s3fnA3TydSX8LYOZ74k-4t2L2QJbmJPaNP8bV5y2CXekCeSNzOtS6ojRWFw1x1jSsI4cKWw6pVkTap8m_yvT6uBIU",
      "n": "mNT9c3kUad2WdeB5F94tv2RCFPk2QQUxKj8RvbzlN4aNbe0gO7kLtaMUVqSXxiUV_RFQ-uFHx9BYaRm3OkO4QgQXIIlgmswM2FpJ8_l2VWYOM6D9GoYgU94FFtEGlrqQXzZj5bUDfgmsJ3A2W11Xf3d1C8Pj7YExcpau2q8k2qGNu5Z0PsYic429UMBM2zxw6OOdBkKSvzUeThNhqbgguuq1UUtkwLMDLJNi_32Zoc-WCiglySF2-J-xrl4eLHaBHfqh41P8ZJGWqXC0V6LvVDlmA6W63-Y930PDZkDH8tSn6bkYg22eYO7mjR2BlW7i5DRrDGsVTB8Ec5ooO_8TTw"
    },
    {
      "kty": "EC",
      "d": "HjzbBAVlF-I6nYdGGPpfJFGs1rbm5PSmo3dkocFTJ80",
      "use": "sig",
      "crv": "P-256",
      "kid": "ccb0467c-f0f4-4faa-98d9-540bcb230e1e",
      "x": "Gb_oyH1CfqcYivspGVY7xg3GKTVhqzjRRVC38xWfPZA",
      "y": "vFIxgXAJ2GhdD-8uYvVIG3irt-ZVPzGYtPrKD9tit_4"
    },
    {
      "kty": "EC",
      "d": "LEjzwA3RuiBx3awCE4D1u-bQTTLlfHOWxJZ2kcp8f58",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "645db190-f077-4dc0-adec-5618027b41d0",
      "x": "V_j-y5cNhJt96nbgb2lzatqA8JYB3oGIncJBZ1oLRRQ",
      "y": "fIyuhpVAoiwcv3rXDEOSWFMJf_eBFsfh5t0iRc68B5Q"
    },
    {
      "kty": "OKP",
      "d": "V_RgH4aT9lfSfWA03WONajmMKRxhC2av7qESNAO65K4",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "976bcef1-bf65-4a43-9eef-b40ce9684d11",
      "x": "p9PfmmYabYIdQS_qElqaJFV6qIOvlF1beBPxDNJHmmc"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "0CO4-BrRXzCq05VpI3yR79MpqPQSRXbHLSVBJVVCsv_9SuxflFBTyrMJtYd1juR1iK91he-1-Y5-fjFAjQzBBHYSQLMRlzDWI8e7I9ZK1UfgL2ssnb1gFn5VE_Ffk8kQtZxIT-jQj-t3E5BbC036uGWONWEXtsT1sb4ChZwS5SE",
      "kty": "RSA",
      "q": "qOkalf2ym3ty_byz0v-u8nHLqcTkVC4Syq4gyITv0W4HnzY5J-gXRsLkGKS5FUL8VahJGWsgPqAksAPn_ZdvSPov7MHVf40Ktq2o3sYLiTuklxh0bvRXiL2bXSLBAL5V8rL369ph9PWK-LU_39iYLUhNcdNAZVbT-35HM_6F4L0",
      "d": "DXP5WzqdLSrPehzjEQjC3T2ScPmO41kd5GkCLwAV8gxYVt3YEU5RyARFC2phv_Hvq4v1AVXqswpHO8GIsOZNHX1qqQOOS3BXP_BUyZEk2SykcRkiwsrgo209a-7GNeo9gRJftRuOthxuh0mUNfgZ07hI0ix05Dl6Ra4RDDQUBlcoQhz-_OLU4kfuE6gKCC2SSqzRcKB7uRL3KLRVicrXTvLRcY9fzFBCSq_8C8zNi0crga3tvYzRVna4CXu8LUbm8IGiWB8SnV3MilWmD8U39TLtZTlSRiwo8-kH3XsoRJlu9ygyt1DNQixz48rP6uIJYoZ3UROQH6_S_fBanEvGAQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "945e2165-26bd-4bc3-84e1-fecd2d2ebc47",
      "qi": "s-p5TPIkeNR_AOVd_cA6xgTEBU4efGxsx_EHZt8wQqJIbDsS2pmE8WdjkS51G0_DLeyBJylSpqeKhyU6Y_cL9r6N99LjKCZuhr9HEdv43FqddRLPO_uhjC7pjDlNptbdi223qjumDzTXoikF2sbK2Ap1xKNBsBGq4FFE-nqYD9g",
      "dp": "SZeX2wGAbevDOrRlTErLPsSmwjoqC62HlwrJEe4neyrP4CHbWZFdTxomoKyYgEF-3SlMoGK1MNuVFgFMFZMg2_bzVTT7Tz3ROS1xmaY3J1oWhi2axNskkk9wvXBmntZEtjHfz4E93OUgYSZ1SnXz5CbkNTNzMwhI5uOL-LnKZIE",
      "alg": "RSA-OAEP",
      "dq": "GCRRF3UOTSjE071f2l2PDLn1CQvKMrnvF6bxqpdNi5p1Xm0qmCiVAxkh7t_EUGSlmjyWThrAnhLXi4zTYKx_TGft56IAuN1Y1alWhJi711599Naa9azYwgOPrC0mdsu9jxXDV6N78r4RoeCOA5l6jqZR4131S0awv7ZZyPWs_uU",
      "n": "iVT3g79CLzZBl4p-j7Q7kusXtTGZegTVoitUDsO_Aio0ICWZkOwvdxHoD-1igVfeuSqb4nMAhEQJz4rIv__rvCc-TXJVxZFpwrwUz5aqcKrj_0PxKdrQPc1P9QCQYFtfCRYzqGeCYRovCrDeAhYAylUJMIoXUHu2mH87Q_4YVzhx7FaMvDyX02LlZsXxOwBiW-QZ_2FSFwCTpUQxFlg0HMIZXNjotXhAT-YZSgr3asht7ZLlWvBVV6GvaXc99iLA5OCES6X2OI0w6eoB3qlMliLJEn3HnB9DXTHUEdryoAg3FkaHWMpjLum5-pZw4W2VobreiIQuGjDST2bvipUJXQ"
    },
    {
      "kty": "EC",
      "d": "wPH0jF6ATI7V0ipJ4dezge4cmNqULoGx8ULE44fyKHk",
      "use": "enc",
      "crv": "P-256",
      "kid": "37e15ac4-809e-4938-b8f5-8df1ce769f7b",
      "x": "lZkdrU3NSUE5hJQenrABPUY3fL6L3HdI0JuPXfUHMiQ",
      "y": "LdKen7aEI5BVx4jExQtaQhMZtbGsZd2GNl2q8fg68qY",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "c6150225-8c8b-4067-b105-31ea1233a874",
      "n": "mNT9c3kUad2WdeB5F94tv2RCFPk2QQUxKj8RvbzlN4aNbe0gO7kLtaMUVqSXxiUV_RFQ-uFHx9BYaRm3OkO4QgQXIIlgmswM2FpJ8_l2VWYOM6D9GoYgU94FFtEGlrqQXzZj5bUDfgmsJ3A2W11Xf3d1C8Pj7YExcpau2q8k2qGNu5Z0PsYic429UMBM2zxw6OOdBkKSvzUeThNhqbgguuq1UUtkwLMDLJNi_32Zoc-WCiglySF2-J-xrl4eLHaBHfqh41P8ZJGWqXC0V6LvVDlmA6W63-Y930PDZkDH8tSn6bkYg22eYO7mjR2BlW7i5DRrDGsVTB8Ec5ooO_8TTw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "9938c0c9-22e4-4584-9805-9f26acc0065c",
      "n": "gE0CV9nHmXT4C4CUle4xNKnTDU0MrjtSw0wFD_JJ2u1NknwNh_DMcoKolY2vmfV4X1f9L9hhP8IZuMHxTqNchMDvY7aW2zI_-dT6wb34jjNeycaXK77afsy2EgY77DH2AOGaUC-Ch1OXSQiedvs6rywJyYOlA0mG_Z2ZSqODdZFTiMj9ysCub4R9nZVat7aJIhW8ocsDA9lHO8gU29I5VmDsslTCUCWJQCwBRdjeNMeEYyeHppPm5nYyWrKuFg2-_b3WkKligj1_1BkS1kwGgB0OE1thXsVOI8gzAHVLQtX4XTKWVf8CFOeVBqdsmX1wiZ1GqKcF3fE2QSlp0qk9TQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "ccb0467c-f0f4-4faa-98d9-540bcb230e1e",
      "x": "Gb_oyH1CfqcYivspGVY7xg3GKTVhqzjRRVC38xWfPZA",
      "y": "vFIxgXAJ2GhdD-8uYvVIG3irt-ZVPzGYtPrKD9tit_4"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "4503b94a-d518-4a88-bfd9-7a7178d84f78",
      "x": "ozm0DhypyrvpapGbbUn7sMOHyooxa87Fw0WBDrHi5NM",
      "y": "J5FaLlFFhfWxFajuiUirTZM9W7hhAPDXHlWUJc_AYWo"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "645db190-f077-4dc0-adec-5618027b41d0",
      "x": "V_j-y5cNhJt96nbgb2lzatqA8JYB3oGIncJBZ1oLRRQ",
      "y": "fIyuhpVAoiwcv3rXDEOSWFMJf_eBFsfh5t0iRc68B5Q"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "976bcef1-bf65-4a43-9eef-b40ce9684d11",
      "x": "p9PfmmYabYIdQS_qElqaJFV6qIOvlF1beBPxDNJHmmc"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "945e2165-26bd-4bc3-84e1-fecd2d2ebc47",
      "alg": "RSA-OAEP",
      "n": "iVT3g79CLzZBl4p-j7Q7kusXtTGZegTVoitUDsO_Aio0ICWZkOwvdxHoD-1igVfeuSqb4nMAhEQJz4rIv__rvCc-TXJVxZFpwrwUz5aqcKrj_0PxKdrQPc1P9QCQYFtfCRYzqGeCYRovCrDeAhYAylUJMIoXUHu2mH87Q_4YVzhx7FaMvDyX02LlZsXxOwBiW-QZ_2FSFwCTpUQxFlg0HMIZXNjotXhAT-YZSgr3asht7ZLlWvBVV6GvaXc99iLA5OCES6X2OI0w6eoB3qlMliLJEn3HnB9DXTHUEdryoAg3FkaHWMpjLum5-pZw4W2VobreiIQuGjDST2bvipUJXQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "37e15ac4-809e-4938-b8f5-8df1ce769f7b",
      "x": "lZkdrU3NSUE5hJQenrABPUY3fL6L3HdI0JuPXfUHMiQ",
      "y": "LdKen7aEI5BVx4jExQtaQhMZtbGsZd2GNl2q8fg68qY",
      "alg": "ECDH-ES"
    }
  ]
}
Second Authorization Request
2020-10-30 08:14:04 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2020-10-30 08:14:04 SUCCESS
OIDCCEnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid"
]
expected
openid
2020-10-30 08:14:04 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "response_type": "code",
  "client_id": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "redirect_uri": "https://www.gluu.org",
  "scope": "openid",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "nonce": "m6qllglltkam3hfhig96i9lhug"
}
2020-10-30 08:14:04 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid
2020-10-30 08:14:04 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
m6qllglltkam3hfhig96i9lhug
2020-10-30 08:14:04 SUCCESS
EnsureResponseTypeIsCode
Response type is expected value
expected
code
2020-10-30 08:14:04 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_BccaJDzEoFIXjuP17748;%,.'
2020-10-30 08:14:04 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://www.gluu.org
expected
[
  "https://www.gluu.org"
]
2020-10-30 08:14:04 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid"
]
expected
openid
2020-10-30 08:14:04 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2020-10-30 08:14:04 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
yW1LR02GJj
2020-10-30 08:14:04 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
9n4Xa72hNeE5D6LzohoFvQ
2020-10-30 08:14:04 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "30idi5et4k0dn19buk9j6i7tog"
}
2020-10-30 08:14:04 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.gluu.org",
  "state": "30idi5et4k0dn19buk9j6i7tog",
  "code": "yW1LR02GJj"
}
2020-10-30 08:14:04
SendAuthorizationResponseWithResponseModeQuery
Redirecting back to client
uri
https://www.gluu.org?state=30idi5et4k0dn19buk9j6i7tog&code=yW1LR02GJj
2020-10-30 08:14:04 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.gluu.org?state=30idi5et4k0dn19buk9j6i7tog&code=yW1LR02GJj]
outgoing_path
authorize
2020-10-30 08:14:06 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Basic Y2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4JTNCJTI1JTJDLiUyNzpzZWNyZXRfaGxzUklhbWhUYmNrRnJOdFRoWkJ1ZnJFT0hodlBvTlZHTWl2eFVEU01mSHlHSUVuVHo0OTI0OTQwNzg5JTdDJTNFJTNGJTI1JTJD",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "85",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
token
incoming_body_form_params
{
  "code": "yW1LR02GJj",
  "grant_type": "authorization_code",
  "redirect_uri": "https://www.gluu.org"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
code=yW1LR02GJj&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fwww.gluu.org
Token endpoint
2020-10-30 08:14:06 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
client_BccaJDzEoFIXjuP17748;%,.'
client_secret
secret_hlsRIamhTbckFrNtThZBufrEOHhvPoNVGMivxUDSMfHyGIEnTz4924940789|>?%,
method
client_secret_basic
2020-10-30 08:14:06 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2020-10-30 08:14:06 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
yW1LR02GJj
2020-10-30 08:14:06 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://www.gluu.org
2020-10-30 08:14:06 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD
2020-10-30 08:14:06 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
mETqbZeAB3cyoI_ilemweA
2020-10-30 08:14:06 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/gluu-oxd-test/
sub
user-subject-1234531
aud
client_BccaJDzEoFIXjuP17748;%,.'
nonce
m6qllglltkam3hfhig96i9lhug
iat
1604045646
exp
1604045946
2020-10-30 08:14:06 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
mETqbZeAB3cyoI_ilemweA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/gluu-oxd-test/",
  "sub": "user-subject-1234531",
  "aud": "client_BccaJDzEoFIXjuP17748;%,.\u0027",
  "nonce": "m6qllglltkam3hfhig96i9lhug",
  "iat": 1604045646,
  "exp": 1604045946,
  "at_hash": "mETqbZeAB3cyoI_ilemweA"
}
2020-10-30 08:14:06 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJjNjE1MDIyNS04YzhiLTQwNjctYjEwNS0zMWVhMTIzM2E4NzQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoibUVUcWJaZUFCM2N5b0lfaWxlbXdlQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTQ2LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjQ2fQ.iaN9TPHqHMu6YQ2cB5pB-JUK7MTGRJ_7pgas6WqmqeXv69Gh5w8C96QJgl0BVevVxJELdBBdd32a_e_C7bDQDbCc69AO7FMSlL864Q9t6eH9WrS20YpD4e4VgGTiIkrzYEZE8GsvBeEfeZ9DFo3RWonbxNgfl5-NmbMuzneYgN5lJJ4ongkPRAs9FezMnPf6SrxQjIpnFzc8YoyhNGLY5RS5qdVyvSJvIqgSAtUi5Q5RZj8vvrZ9Lf2e2TsXlHa3wf78M9bi1KNjVhMRuAcl8ALajurLge_PPt-bGc9pudyxELglldWTMRMKirzRazvCXsj6C7_QfJDy963m6upURw
key
{"p":"704QM7Gl8A0MTEce0wAPkuQk5heD469IaWjluEyx1BmFAgmhgNTKIhbrSKh9dra0o03BFdy6JbayM25P1mphC9v46PXIVZAx1zV0pQMuM45_p51sYX-Ul_awr3-CttC3v_1pIZyrp7sbBMsrbmozy4CS_zYmEM_DR5OP98CxcgU","kty":"RSA","q":"o36JsWAmtKfDIYLk3sJs0LaHOa0gg8qF39q1ZhVx1-WC-qszqGUEcl3AK2wZ2UWviT4zaYXS3ghyNGqtjC2NRErML4HFpVRLAqTRdR65BOL78PoX7bI1t7QFwz8Z0-R81oNmCh3xOuCC8bzz9Fr5cbetIwbJZT0aR5b6XpM-DEM","d":"WiLkCEKU44sovgTR5l3HJWYAA1anxNlHEd94myrZFVJp_zcnF5IfcdToneEdEmO1ADhCRnSvXQ1n1zSvd9GQzn6TFUFwlFtcCA3YJ-gs_ljeb1y3aflI_62l2rsU47jMhRsS99s2YBNcUTZBGMmIXUka4wF5YA4eF7L_FULOvZI08NZLqv7KRsD_Ljv2TTaXolXfrd-XLatkYnRjWcgYwOcKclzY5sm68wP7SNbhAIrFAQV9UmqjOneYKByRBRz9pA8TKVjycZPJd3Vs1dwMFNZUXT2owFsAtkXSF80pwTqyienNGPLii5EcvhUSH0lYaH3-o0AJv8jfX2PRLMhj4Q","e":"AQAB","use":"sig","kid":"c6150225-8c8b-4067-b105-31ea1233a874","qi":"rdpxP3nwOXHU8-6-VQQMtouTJgYbYohbRhcS8Rh3HLHpeUoUOgrLJleN8bDL5bHQR0c3GHFys4okNPUNWt47cwIaDjXceMXytuIYTPRe5B7pY_6yzxrRowk0TKFCSRsK6vFDH9nJiwk8S9ixeMl9P-i0RRA52haV54kQASpwkSc","dp":"his2WkVXy-cE5h9Z4OM_2BOhvH-iqp0z9CWj5ljZuxkzwZi0vA6R5dsDv5D4Bv8Y-BY4E5HVrB9qeft3N7gdAREr1TE4SQC3cPm_lGTcGnviho90nJVzMmBVX5AWMXmEDFiAASBd_YSh-WYPy7AvqgFEaWJqpTJXQmIxba7TziE","dq":"dDzIpGUZ36LOZorrMTzFpHXBGk5uKYTZPVf_U_63G6m_P3xsk7KOQMlKkRSgJAsZS9f_MWzFiLo0h_O4Q0s3fnA3TydSX8LYOZ74k-4t2L2QJbmJPaNP8bV5y2CXekCeSNzOtS6ojRWFw1x1jSsI4cKWw6pVkTap8m_yvT6uBIU","n":"mNT9c3kUad2WdeB5F94tv2RCFPk2QQUxKj8RvbzlN4aNbe0gO7kLtaMUVqSXxiUV_RFQ-uFHx9BYaRm3OkO4QgQXIIlgmswM2FpJ8_l2VWYOM6D9GoYgU94FFtEGlrqQXzZj5bUDfgmsJ3A2W11Xf3d1C8Pj7YExcpau2q8k2qGNu5Z0PsYic429UMBM2zxw6OOdBkKSvzUeThNhqbgguuq1UUtkwLMDLJNi_32Zoc-WCiglySF2-J-xrl4eLHaBHfqh41P8ZJGWqXC0V6LvVDlmA6W63-Y930PDZkDH8tSn6bkYg22eYO7mjR2BlW7i5DRrDGsVTB8Ec5ooO_8TTw"}
algorithm
RS256
2020-10-30 08:14:06 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2020-10-30 08:14:06 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD
token_type
Bearer
id_token
eyJraWQiOiJjNjE1MDIyNS04YzhiLTQwNjctYjEwNS0zMWVhMTIzM2E4NzQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoibUVUcWJaZUFCM2N5b0lfaWxlbXdlQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTQ2LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjQ2fQ.iaN9TPHqHMu6YQ2cB5pB-JUK7MTGRJ_7pgas6WqmqeXv69Gh5w8C96QJgl0BVevVxJELdBBdd32a_e_C7bDQDbCc69AO7FMSlL864Q9t6eH9WrS20YpD4e4VgGTiIkrzYEZE8GsvBeEfeZ9DFo3RWonbxNgfl5-NmbMuzneYgN5lJJ4ongkPRAs9FezMnPf6SrxQjIpnFzc8YoyhNGLY5RS5qdVyvSJvIqgSAtUi5Q5RZj8vvrZ9Lf2e2TsXlHa3wf78M9bi1KNjVhMRuAcl8ALajurLge_PPt-bGc9pudyxELglldWTMRMKirzRazvCXsj6C7_QfJDy963m6upURw
scope
openid
2020-10-30 08:14:06 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJjNjE1MDIyNS04YzhiLTQwNjctYjEwNS0zMWVhMTIzM2E4NzQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoibUVUcWJaZUFCM2N5b0lfaWxlbXdlQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JjY2FKRHpFb0ZJWGp1UDE3NzQ4OyUsLiciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvZ2x1dS1veGQtdGVzdFwvIiwiZXhwIjoxNjA0MDQ1OTQ2LCJub25jZSI6Im02cWxsZ2xsdGthbTNoZmhpZzk2aTlsaHVnIiwiaWF0IjoxNjA0MDQ1NjQ2fQ.iaN9TPHqHMu6YQ2cB5pB-JUK7MTGRJ_7pgas6WqmqeXv69Gh5w8C96QJgl0BVevVxJELdBBdd32a_e_C7bDQDbCc69AO7FMSlL864Q9t6eH9WrS20YpD4e4VgGTiIkrzYEZE8GsvBeEfeZ9DFo3RWonbxNgfl5-NmbMuzneYgN5lJJ4ongkPRAs9FezMnPf6SrxQjIpnFzc8YoyhNGLY5RS5qdVyvSJvIqgSAtUi5Q5RZj8vvrZ9Lf2e2TsXlHa3wf78M9bi1KNjVhMRuAcl8ALajurLge_PPt-bGc9pudyxELglldWTMRMKirzRazvCXsj6C7_QfJDy963m6upURw",
  "scope": "openid"
}
outgoing_path
token
2020-10-30 08:14:07 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
jwks
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Jwks endpoint
2020-10-30 08:14:07 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "c6150225-8c8b-4067-b105-31ea1233a874",
      "n": "mNT9c3kUad2WdeB5F94tv2RCFPk2QQUxKj8RvbzlN4aNbe0gO7kLtaMUVqSXxiUV_RFQ-uFHx9BYaRm3OkO4QgQXIIlgmswM2FpJ8_l2VWYOM6D9GoYgU94FFtEGlrqQXzZj5bUDfgmsJ3A2W11Xf3d1C8Pj7YExcpau2q8k2qGNu5Z0PsYic429UMBM2zxw6OOdBkKSvzUeThNhqbgguuq1UUtkwLMDLJNi_32Zoc-WCiglySF2-J-xrl4eLHaBHfqh41P8ZJGWqXC0V6LvVDlmA6W63-Y930PDZkDH8tSn6bkYg22eYO7mjR2BlW7i5DRrDGsVTB8Ec5ooO_8TTw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "9938c0c9-22e4-4584-9805-9f26acc0065c",
      "n": "gE0CV9nHmXT4C4CUle4xNKnTDU0MrjtSw0wFD_JJ2u1NknwNh_DMcoKolY2vmfV4X1f9L9hhP8IZuMHxTqNchMDvY7aW2zI_-dT6wb34jjNeycaXK77afsy2EgY77DH2AOGaUC-Ch1OXSQiedvs6rywJyYOlA0mG_Z2ZSqODdZFTiMj9ysCub4R9nZVat7aJIhW8ocsDA9lHO8gU29I5VmDsslTCUCWJQCwBRdjeNMeEYyeHppPm5nYyWrKuFg2-_b3WkKligj1_1BkS1kwGgB0OE1thXsVOI8gzAHVLQtX4XTKWVf8CFOeVBqdsmX1wiZ1GqKcF3fE2QSlp0qk9TQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "ccb0467c-f0f4-4faa-98d9-540bcb230e1e",
      "x": "Gb_oyH1CfqcYivspGVY7xg3GKTVhqzjRRVC38xWfPZA",
      "y": "vFIxgXAJ2GhdD-8uYvVIG3irt-ZVPzGYtPrKD9tit_4"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "4503b94a-d518-4a88-bfd9-7a7178d84f78",
      "x": "ozm0DhypyrvpapGbbUn7sMOHyooxa87Fw0WBDrHi5NM",
      "y": "J5FaLlFFhfWxFajuiUirTZM9W7hhAPDXHlWUJc_AYWo"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "645db190-f077-4dc0-adec-5618027b41d0",
      "x": "V_j-y5cNhJt96nbgb2lzatqA8JYB3oGIncJBZ1oLRRQ",
      "y": "fIyuhpVAoiwcv3rXDEOSWFMJf_eBFsfh5t0iRc68B5Q"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "976bcef1-bf65-4a43-9eef-b40ce9684d11",
      "x": "p9PfmmYabYIdQS_qElqaJFV6qIOvlF1beBPxDNJHmmc"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "945e2165-26bd-4bc3-84e1-fecd2d2ebc47",
      "alg": "RSA-OAEP",
      "n": "iVT3g79CLzZBl4p-j7Q7kusXtTGZegTVoitUDsO_Aio0ICWZkOwvdxHoD-1igVfeuSqb4nMAhEQJz4rIv__rvCc-TXJVxZFpwrwUz5aqcKrj_0PxKdrQPc1P9QCQYFtfCRYzqGeCYRovCrDeAhYAylUJMIoXUHu2mH87Q_4YVzhx7FaMvDyX02LlZsXxOwBiW-QZ_2FSFwCTpUQxFlg0HMIZXNjotXhAT-YZSgr3asht7ZLlWvBVV6GvaXc99iLA5OCES6X2OI0w6eoB3qlMliLJEn3HnB9DXTHUEdryoAg3FkaHWMpjLum5-pZw4W2VobreiIQuGjDST2bvipUJXQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "37e15ac4-809e-4938-b8f5-8df1ce769f7b",
      "x": "lZkdrU3NSUE5hJQenrABPUY3fL6L3HdI0JuPXfUHMiQ",
      "y": "LdKen7aEI5BVx4jExQtaQhMZtbGsZd2GNl2q8fg68qY",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2020-10-30 08:14:09 INCOMING
oidcc-client-test-signing-key-rotation
Incoming HTTP request to test instance WDBOBgafKWoMG6k
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "Apache-HttpClient/4.5.3 (Java/1.8.0_231)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
userinfo
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Userinfo endpoint
2020-10-30 08:14:09 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token
x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD
2020-10-30 08:14:09 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
x08xSkIiBuy8tkMEpqPQZqaDJRqZNek7oWjFMtuIOnBFkUiZyD
2020-10-30 08:14:09 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub
user-subject-1234531
2020-10-30 08:14:09
ClearAccessTokenFromRequest
Condition ran but did not log anything
2020-10-30 08:14:09 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:14:09 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2020-10-30 08:14:09 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path
userinfo_encrypted_response_alg
mapped
object
client
2020-10-30 08:14:09 OUTGOING
oidcc-client-test-signing-key-rotation
Response to HTTP request to test instance WDBOBgafKWoMG6k
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "sub": "user-subject-1234531"
}
outgoing_path
userinfo
2020-10-30 08:14:09 FINISHED
oidcc-client-test-signing-key-rotation
Test has run to completion
testmodule_result
PASSED
Test Results