Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-11-03 10:47:23 INFO
TEST-RUNNER
Test instance HVkszxfGrrRwgac created
baseUrl
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "id_token",
  "server_metadata": "static",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
oam_ps4_op_implicit_openid
description
For Implicit flows
planId
no171YPam1FCG
config
{
  "alias": "oam_ps4_op_implicit_openid",
  "server": {
    "issuer": "http://150.136.116.143:7777/oauth2",
    "jwks_uri": "http://150.136.116.143:7777/oauth2/rest/security",
    "authorization_endpoint": "http://150.136.116.143:7777/oauth2/rest/authorize",
    "token_endpoint": "http://150.136.116.143:7777/oauth2/rest/token",
    "userinfo_endpoint": "http://150.136.116.143:7777/oauth2/rest/userinfo"
  },
  "client": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "client_secret_post": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "client2": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "description": "For Implicit flows"
}
testName
oidcc-max-age-10000
2020-11-03 10:47:23 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
2020-11-03 10:47:23 SUCCESS
GetStaticServerConfiguration
Found a static server object
issuer
http://150.136.116.143:7777/oauth2
jwks_uri
http://150.136.116.143:7777/oauth2/rest/security
authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize
token_endpoint
http://150.136.116.143:7777/oauth2/rest/token
userinfo_endpoint
http://150.136.116.143:7777/oauth2/rest/userinfo
2020-11-03 10:47:23 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2020-11-03 10:47:23 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
authorization_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
token_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
userinfo_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
2020-11-03 10:47:23
FetchServerKeys
Fetching server key
jwks_uri
http://150.136.116.143:7777/oauth2/rest/security
2020-11-03 10:47:23
FetchServerKeys
HTTP request
request_uri
http://150.136.116.143:7777/oauth2/rest/security
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2020-11-03 10:47:23 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Tue, 03 Nov 2020 10:47:23 GMT",
  "referrer-policy": "same-origin",
  "x-content-type-options": "nosniff",
  "content-length": "2369",
  "x-oracle-dms-ecid": "005gn6MYPsbFw005zzp2iW0005LX00009m",
  "x-oracle-dms-rid": "0:3",
  "x-xss-protection": "1; mode\u003dblock",
  "keep-alive": "timeout\u003d5, max\u003d100",
  "connection": "Keep-Alive",
  "content-type": "application/json"
}
response_body
{"keys":[{"kty":"RSA","x5t#S256":"gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU=","e":"AQAB","x5t":"En1dewmONzyRjmViuNsuz_E_04g=","kid":"OIDCDomain","x5c":["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","MIICpzCCAhACAQAwDQYJKoZIhvcNAQEEBQAwgZsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlDdXBlcnRpbm8xFDASBgNVBAoTC09ibGl4LCBJbmMuMREwDwYDVQQLEwhOZXRQb2ludDE6MDgGA1UEAxMxTmV0UG9pbnQgU2ltcGxlIFNlY3VyaXR5IENBIC0gTm90IGZvciBHZW5lcmFsIFVzZTAeFw0wOTA0MDExMjU3MjJaFw0yNDAzMjgxMjU3MjJaMIGbMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTESMBAGA1UEBxMJQ3VwZXJ0aW5vMRQwEgYDVQQKEwtPYmxpeCwgSW5jLjERMA8GA1UECxMITmV0UG9pbnQxOjA4BgNVBAMTMU5ldFBvaW50IFNpbXBsZSBTZWN1cml0eSBDQSAtIE5vdCBmb3IgR2VuZXJhbCBVc2UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJS17Bq7S3tJHzERu66SJCIN/iaKF8W0IBTuR0/Qps/qivsFYqfHWzM1ZnTVizDTO1ZSy/614p6kfp6wsubm5LQF7AZj/7pUB+nP2ci0LJnb44U13mMaoZd6i8Y1iumiT1jGpsHTKO1zGXltkhKe3RweV++T8E8Toj3FbTv5Fe3RAgMBAAEwDQYJKoZIhvcNAQEEBQADgYEAO0EcLxZUAA9QIuW8cLMAbo+QO7ypB8lapKVHCETqrzrvMf5MQVaWafyWVP8/z69wO+8uRYT8CpjIlq9NtjEqwBp452237nVuogn9bPKjzzvGBRa/Zr8LJMAtn+BXr1gltomBbNWZQbc4Skurzw7yOYfiRMSHiRE51XE/kxn+qjc="],"key_ops":["sign"],"alg":"RS256","n":"hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"}]}
2020-11-03 10:47:23
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","x5t#S256":"gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU=","e":"AQAB","x5t":"En1dewmONzyRjmViuNsuz_E_04g=","kid":"OIDCDomain","x5c":["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","MIICpzCCAhACAQAwDQYJKoZIhvcNAQEEBQAwgZsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlDdXBlcnRpbm8xFDASBgNVBAoTC09ibGl4LCBJbmMuMREwDwYDVQQLEwhOZXRQb2ludDE6MDgGA1UEAxMxTmV0UG9pbnQgU2ltcGxlIFNlY3VyaXR5IENBIC0gTm90IGZvciBHZW5lcmFsIFVzZTAeFw0wOTA0MDExMjU3MjJaFw0yNDAzMjgxMjU3MjJaMIGbMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTESMBAGA1UEBxMJQ3VwZXJ0aW5vMRQwEgYDVQQKEwtPYmxpeCwgSW5jLjERMA8GA1UECxMITmV0UG9pbnQxOjA4BgNVBAMTMU5ldFBvaW50IFNpbXBsZSBTZWN1cml0eSBDQSAtIE5vdCBmb3IgR2VuZXJhbCBVc2UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJS17Bq7S3tJHzERu66SJCIN/iaKF8W0IBTuR0/Qps/qivsFYqfHWzM1ZnTVizDTO1ZSy/614p6kfp6wsubm5LQF7AZj/7pUB+nP2ci0LJnb44U13mMaoZd6i8Y1iumiT1jGpsHTKO1zGXltkhKe3RweV++T8E8Toj3FbTv5Fe3RAgMBAAEwDQYJKoZIhvcNAQEEBQADgYEAO0EcLxZUAA9QIuW8cLMAbo+QO7ypB8lapKVHCETqrzrvMf5MQVaWafyWVP8/z69wO+8uRYT8CpjIlq9NtjEqwBp452237nVuogn9bPKjzzvGBRa/Zr8LJMAtn+BXr1gltomBbNWZQbc4Skurzw7yOYfiRMSHiRE51XE/kxn+qjc="],"key_ops":["sign"],"alg":"RS256","n":"hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"}]}
2020-11-03 10:47:23 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "x5t#S256": "gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU\u003d",
      "e": "AQAB",
      "x5t": "En1dewmONzyRjmViuNsuz_E_04g\u003d",
      "kid": "OIDCDomain",
      "x5c": [
        "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\u003d",
        "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\u003d"
      ],
      "key_ops": [
        "sign"
      ],
      "alg": "RS256",
      "n": "hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"
    }
  ]
}
2020-11-03 10:47:23 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "x5t#S256": "gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU\u003d",
      "e": "AQAB",
      "x5t": "En1dewmONzyRjmViuNsuz_E_04g\u003d",
      "kid": "OIDCDomain",
      "x5c": [
        "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\u003d",
        "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\u003d"
      ],
      "key_ops": [
        "sign"
      ],
      "alg": "RS256",
      "n": "hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"
    }
  ]
}
2020-11-03 10:47:23 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-11-03 10:47:23 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2020-11-03 10:47:23 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-11-03 10:47:23 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2020-11-03 10:47:23 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
OIDCClient
client_secret
welcome1
2020-11-03 10:47:23
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2020-11-03 10:47:23 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
http://150.136.116.143:7777/oauth2/rest/userinfo
2020-11-03 10:47:23
oidcc-max-age-10000
Setup Done
Make request to authorization endpoint
2020-11-03 10:47:23 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
2020-11-03 10:47:23
CreateRandomStateValue
Created state value
requested_state_length
10
state
4ALVhRbRkD
2020-11-03 10:47:23 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
4ALVhRbRkD
2020-11-03 10:47:23
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
STTReWuysQ
2020-11-03 10:47:23 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
4ALVhRbRkD
nonce
STTReWuysQ
2020-11-03 10:47:23 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
4ALVhRbRkD
nonce
STTReWuysQ
response_type
id_token
2020-11-03 10:47:23 SUCCESS
AddMaxAge15000ToAuthorizationEndpointRequest
Added max_age=15000 to authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
4ALVhRbRkD
nonce
STTReWuysQ
response_type
id_token
max_age
15000
2020-11-03 10:47:23 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=4ALVhRbRkD&nonce=STTReWuysQ&response_type=id_token&max_age=15000
2020-11-03 10:47:23 REDIRECT
oidcc-max-age-10000
Redirecting to authorization endpoint
redirect_to
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=4ALVhRbRkD&nonce=STTReWuysQ&response_type=id_token&max_age=15000
2020-11-03 10:47:31 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance HVkszxfGrrRwgac
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2020-11-03 10:47:31 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/MQQFsevwsWgAN57Dddgy",
  "fullUrl": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/MQQFsevwsWgAN57Dddgy"
}
2020-11-03 10:47:31 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance HVkszxfGrrRwgac
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/MQQFsevwsWgAN57Dddgy, returnUrl=/log-detail.html?log=HVkszxfGrrRwgac}]
outgoing_path
callback
2020-11-03 10:47:32 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance HVkszxfGrrRwgac
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "*/*",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "origin": "https://www.certification.openid.net",
  "dnt": "1",
  "referer": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1044",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/MQQFsevwsWgAN57Dddgy
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#id_token=eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg&state=4ALVhRbRkD
2020-11-03 10:47:32 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance HVkszxfGrrRwgac
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/MQQFsevwsWgAN57Dddgy
2020-11-03 10:47:32
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "id_token",
    "value": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg"
  },
  {
    "name": "state",
    "value": "4ALVhRbRkD"
  }
]
2020-11-03 10:47:32 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg
state
4ALVhRbRkD
2020-11-03 10:47:32 REDIRECT-IN
oidcc-max-age-10000
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "id_token": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg",
  "state": "4ALVhRbRkD"
}
post_body
Verify authorization endpoint response
2020-11-03 10:47:32 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2020-11-03 10:47:32 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2020-11-03 10:47:32 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2020-11-03 10:47:32 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2020-11-03 10:47:32 SUCCESS
CheckMatchingStateParameter
State parameter correctly returned
state
4ALVhRbRkD
2020-11-03 10:47:32 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg
header
{
  "x5t": "En1dewmONzyRjmViuNsuz_E_04g",
  "kid": "OIDCDomain",
  "alg": "RS256"
}
claims
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404051,
  "iat": 1604400451,
  "nonce": "STTReWuysQ",
  "jti": "-cyJZzeClBLqigcXhYBFXw",
  "sid": "SyqEQi3dkyY+Fm5kKfL6WQ\u003d\u003d~PNQsUkZhwDcA2K0qXlNV+5io0HVG4+dvBR/6pUFUuG/Kbj6b4bRkhGsL1VWFUMC7g0kfCQTn5y17S/GxXF2+eLSgcsVXvW8qwpGGNBQL/0Epjx7MOpD+ZN5fzVLztV9l"
}
2020-11-03 10:47:32 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2020-11-03 10:47:32 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
STTReWuysQ
2020-11-03 10:47:32 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2020-11-03 10:47:32 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg
2020-11-03 10:47:32 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA1MSwiaWF0IjoxNjA0NDAwNDUxLCJub25jZSI6IlNUVFJlV3V5c1EiLCJqdGkiOiItY3lKWnplQ2xCTHFpZ2NYaFlCRlh3IiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJTeXFFUWkzZGt5WStGbTVrS2ZMNldRPT1-UE5Rc1VrWmh3RGNBMkswcVhsTlYrNWlvMEhWRzQrZHZCUi82cFVGVXVHL0tiajZiNGJSa2hHc0wxVldGVU1DN2cwa2ZDUVRuNXkxN1MvR3hYRjIrZUxTZ2NzVlh2Vzhxd3BHR05CUUwvMEVwang3TU9wRCtaTjVmelZMenRWOWwiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.TxeebYSb4eVYP4H4ZXi-HR4DRatq__pZYV4fzQd8fI0kW_n8-8AblakDci7WnRtXHccTMqo4B34dnYAbdaADGGE_S6EhGm4n824H_ag0qMCx23VpzgWq5UDqfBq_obCExq38T4Rp5Qc3tsuKJhx1dIr2wQI-s7yJZbM5tk6UHdJ7N_HbShfEmbfUVAL0fRc5Krh6AoZXxpUjaKuyz4hy4F3CruifpJ6I71InL75tE2QsXGFEZf7aSznaokhxeGQ74aZNLZWhbVbkR2KXzzAM8ehgu8tK-FFDeGFAfm-jX1T4q0rNmqolEgh-nbRGpmVixDJD8AMJXtMlMTfIMHAlXg
2020-11-03 10:47:32 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
testuser1
2020-11-03 10:47:32 SUCCESS
CheckIdTokenAuthTimeClaimPresentDueToMaxAge
auth_time is present in the id_token, as required for a authentication where the max_age parameter was used
id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404051,
  "iat": 1604400451,
  "nonce": "STTReWuysQ",
  "jti": "-cyJZzeClBLqigcXhYBFXw",
  "sid": "SyqEQi3dkyY+Fm5kKfL6WQ\u003d\u003d~PNQsUkZhwDcA2K0qXlNV+5io0HVG4+dvBR/6pUFUuG/Kbj6b4bRkhGsL1VWFUMC7g0kfCQTn5y17S/GxXF2+eLSgcsVXvW8qwpGGNBQL/0Epjx7MOpD+ZN5fzVLztV9l"
}
Second authorization: Make request to authorization endpoint
2020-11-03 10:47:32 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
2020-11-03 10:47:32
CreateRandomStateValue
Created state value
requested_state_length
10
state
u54os3jGhV
2020-11-03 10:47:32 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
u54os3jGhV
2020-11-03 10:47:32
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
BYWFYwSlSN
2020-11-03 10:47:32 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
u54os3jGhV
nonce
BYWFYwSlSN
2020-11-03 10:47:32 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
u54os3jGhV
nonce
BYWFYwSlSN
response_type
id_token
2020-11-03 10:47:32 SUCCESS
AddMaxAge10000ToAuthorizationEndpointRequest
Added max_age=10000 to authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
u54os3jGhV
nonce
BYWFYwSlSN
response_type
id_token
max_age
10000
2020-11-03 10:47:32 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=u54os3jGhV&nonce=BYWFYwSlSN&response_type=id_token&max_age=10000
2020-11-03 10:47:32 REDIRECT
oidcc-max-age-10000
Redirecting to authorization endpoint
redirect_to
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=u54os3jGhV&nonce=BYWFYwSlSN&response_type=id_token&max_age=10000
2020-11-03 10:47:40 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance HVkszxfGrrRwgac
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2020-11-03 10:47:40 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/GgQzm2h3dmfMLHSH1C20",
  "fullUrl": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/GgQzm2h3dmfMLHSH1C20"
}
2020-11-03 10:47:40 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance HVkszxfGrrRwgac
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/GgQzm2h3dmfMLHSH1C20, returnUrl=/log-detail.html?log=HVkszxfGrrRwgac}]
outgoing_path
callback
2020-11-03 10:47:41 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance HVkszxfGrrRwgac
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "*/*",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "origin": "https://www.certification.openid.net",
  "dnt": "1",
  "referer": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1044",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/GgQzm2h3dmfMLHSH1C20
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#id_token=eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ&state=u54os3jGhV
2020-11-03 10:47:41 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance HVkszxfGrrRwgac
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/GgQzm2h3dmfMLHSH1C20
2020-11-03 10:47:41
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "id_token",
    "value": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ"
  },
  {
    "name": "state",
    "value": "u54os3jGhV"
  }
]
2020-11-03 10:47:41 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ
state
u54os3jGhV
2020-11-03 10:47:41 REDIRECT-IN
oidcc-max-age-10000
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "id_token": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ",
  "state": "u54os3jGhV"
}
post_body
Second authorization: Verify authorization endpoint response
2020-11-03 10:47:41 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2020-11-03 10:47:41 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2020-11-03 10:47:41 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2020-11-03 10:47:41 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2020-11-03 10:47:41 SUCCESS
CheckMatchingStateParameter
State parameter correctly returned
state
u54os3jGhV
2020-11-03 10:47:41 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ
header
{
  "x5t": "En1dewmONzyRjmViuNsuz_E_04g",
  "kid": "OIDCDomain",
  "alg": "RS256"
}
claims
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404060,
  "iat": 1604400460,
  "nonce": "BYWFYwSlSN",
  "jti": "EOE-QCCJiiLYRrVgQz7FLA",
  "sid": "WYwiyP98hMrtgw9eX02+BQ\u003d\u003d~n9OzenauTLz3szZ/dq6U3M8wtd9JLAkPq2cRQdhGOga7wyEdAJPt+xuolWgMZ1HK1HpPMkzET91J14O+yI4Dwjx41M6RVaUusyoBbSpx2PyRNF3B8OuZnjkUUlF72YLY"
}
2020-11-03 10:47:41 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2020-11-03 10:47:41 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
BYWFYwSlSN
2020-11-03 10:47:41 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2020-11-03 10:47:41 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ
2020-11-03 10:47:41 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDA2MCwiaWF0IjoxNjA0NDAwNDYwLCJub25jZSI6IkJZV0ZZd1NsU04iLCJqdGkiOiJFT0UtUUNDSmlpTFlSclZnUXo3RkxBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJXWXdpeVA5OGhNcnRndzllWDAyK0JRPT1-bjlPemVuYXVUTHozc3paL2RxNlUzTTh3dGQ5SkxBa1BxMmNSUWRoR09nYTd3eUVkQUpQdCt4dW9sV2dNWjFISzFIcFBNa3pFVDkxSjE0Tyt5STREd2p4NDFNNlJWYVV1c3lvQmJTcHgyUHlSTkYzQjhPdVpuamtVVWxGNzJZTFkiLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.YVTYxDBk1zg7TbY3GJedpgAGadSKa666UQs082-5BeA0laBvNCyoPDTB0P9x72zIyXo4HQywwX00ujOTvutm0U9MoG0w8MJmiYnOk0OeV8zF5-99V44G5nw2ahLFYP3t0o0S60zGMAxW3I6ZX7tdm4LtCC9IPxcpbIzIVWpOtzEfu2Md7AfSIvogXCI5Sw5Pdxk0yqV_dmJWC55XFfYQC-fPDUylGZjxSe7vxFghAER5SR9Og859KlLSca8HFMRCyGPCUE1nTyNan1m7fci173_MZPnjlp73U5KMVrcnl_xv_xs1yMVmaZvSfJzkIMde0zFxjwD5BjOji695EubrSQ
2020-11-03 10:47:41 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
testuser1
2020-11-03 10:47:41 SUCCESS
CheckIdTokenAuthTimeClaimPresentDueToMaxAge
auth_time is present in the id_token, as required for a authentication where the max_age parameter was used
id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404060,
  "iat": 1604400460,
  "nonce": "BYWFYwSlSN",
  "jti": "EOE-QCCJiiLYRrVgQz7FLA",
  "sid": "WYwiyP98hMrtgw9eX02+BQ\u003d\u003d~n9OzenauTLz3szZ/dq6U3M8wtd9JLAkPq2cRQdhGOga7wyEdAJPt+xuolWgMZ1HK1HpPMkzET91J14O+yI4Dwjx41M6RVaUusyoBbSpx2PyRNF3B8OuZnjkUUlF72YLY"
}
2020-11-03 10:47:41 SUCCESS
CheckIdTokenAuthTimeClaimsSameIfPresent
auth_time is the same in the second id_token
first_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404051,
  "iat": 1604400451,
  "nonce": "STTReWuysQ",
  "jti": "-cyJZzeClBLqigcXhYBFXw",
  "sid": "SyqEQi3dkyY+Fm5kKfL6WQ\u003d\u003d~PNQsUkZhwDcA2K0qXlNV+5io0HVG4+dvBR/6pUFUuG/Kbj6b4bRkhGsL1VWFUMC7g0kfCQTn5y17S/GxXF2+eLSgcsVXvW8qwpGGNBQL/0Epjx7MOpD+ZN5fzVLztV9l"
}
second_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404060,
  "iat": 1604400460,
  "nonce": "BYWFYwSlSN",
  "jti": "EOE-QCCJiiLYRrVgQz7FLA",
  "sid": "WYwiyP98hMrtgw9eX02+BQ\u003d\u003d~n9OzenauTLz3szZ/dq6U3M8wtd9JLAkPq2cRQdhGOga7wyEdAJPt+xuolWgMZ1HK1HpPMkzET91J14O+yI4Dwjx41M6RVaUusyoBbSpx2PyRNF3B8OuZnjkUUlF72YLY"
}
2020-11-03 10:47:41 SUCCESS
CheckIdTokenSubConsistentForSecondAuthorization
sub is the same in the second id_token
first_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404051,
  "iat": 1604400451,
  "nonce": "STTReWuysQ",
  "jti": "-cyJZzeClBLqigcXhYBFXw",
  "sid": "SyqEQi3dkyY+Fm5kKfL6WQ\u003d\u003d~PNQsUkZhwDcA2K0qXlNV+5io0HVG4+dvBR/6pUFUuG/Kbj6b4bRkhGsL1VWFUMC7g0kfCQTn5y17S/GxXF2+eLSgcsVXvW8qwpGGNBQL/0Epjx7MOpD+ZN5fzVLztV9l"
}
second_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404060,
  "iat": 1604400460,
  "nonce": "BYWFYwSlSN",
  "jti": "EOE-QCCJiiLYRrVgQz7FLA",
  "sid": "WYwiyP98hMrtgw9eX02+BQ\u003d\u003d~n9OzenauTLz3szZ/dq6U3M8wtd9JLAkPq2cRQdhGOga7wyEdAJPt+xuolWgMZ1HK1HpPMkzET91J14O+yI4Dwjx41M6RVaUusyoBbSpx2PyRNF3B8OuZnjkUUlF72YLY"
}
2020-11-03 10:47:41 FINISHED
oidcc-max-age-10000
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2020-11-03 10:47:41 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2020-11-03 10:47:52
TEST-RUNNER
Alias has now been claimed by another test
alias
oam_ps4_op_implicit_openid
new_test_id
nzg9SFmIo5P09xx
Test Results