Test Summary

Test Results

Expand All Collapse All
All times are UTC
2020-11-03 10:46:05 INFO
TEST-RUNNER
Test instance WmUwRke4Ry8G8Xf created
baseUrl
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "id_token",
  "server_metadata": "static",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
oam_ps4_op_implicit_openid
description
For Implicit flows
planId
no171YPam1FCG
config
{
  "alias": "oam_ps4_op_implicit_openid",
  "server": {
    "issuer": "http://150.136.116.143:7777/oauth2",
    "jwks_uri": "http://150.136.116.143:7777/oauth2/rest/security",
    "authorization_endpoint": "http://150.136.116.143:7777/oauth2/rest/authorize",
    "token_endpoint": "http://150.136.116.143:7777/oauth2/rest/token",
    "userinfo_endpoint": "http://150.136.116.143:7777/oauth2/rest/userinfo"
  },
  "client": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "client_secret_post": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "client2": {
    "client_id": "OIDCClient",
    "client_secret": "welcome1"
  },
  "description": "For Implicit flows"
}
testName
oidcc-max-age-1
2020-11-03 10:46:05 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
2020-11-03 10:46:05 SUCCESS
GetStaticServerConfiguration
Found a static server object
issuer
http://150.136.116.143:7777/oauth2
jwks_uri
http://150.136.116.143:7777/oauth2/rest/security
authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize
token_endpoint
http://150.136.116.143:7777/oauth2/rest/token
userinfo_endpoint
http://150.136.116.143:7777/oauth2/rest/userinfo
2020-11-03 10:46:05 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2020-11-03 10:46:05 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
authorization_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
token_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
userinfo_endpoint
{
  "testHost": "150.136.116.143",
  "testPort": 7777
}
2020-11-03 10:46:05
FetchServerKeys
Fetching server key
jwks_uri
http://150.136.116.143:7777/oauth2/rest/security
2020-11-03 10:46:05
FetchServerKeys
HTTP request
request_uri
http://150.136.116.143:7777/oauth2/rest/security
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2020-11-03 10:46:05 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Tue, 03 Nov 2020 10:46:05 GMT",
  "referrer-policy": "same-origin",
  "x-content-type-options": "nosniff",
  "content-length": "2369",
  "x-oracle-dms-ecid": "005gn6HqP^tFw005zzp2iW0005LX00009b",
  "x-oracle-dms-rid": "0:3",
  "x-xss-protection": "1; mode\u003dblock",
  "keep-alive": "timeout\u003d5, max\u003d100",
  "connection": "Keep-Alive",
  "content-type": "application/json"
}
response_body
{"keys":[{"kty":"RSA","x5t#S256":"gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU=","e":"AQAB","x5t":"En1dewmONzyRjmViuNsuz_E_04g=","kid":"OIDCDomain","x5c":["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","MIICpzCCAhACAQAwDQYJKoZIhvcNAQEEBQAwgZsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlDdXBlcnRpbm8xFDASBgNVBAoTC09ibGl4LCBJbmMuMREwDwYDVQQLEwhOZXRQb2ludDE6MDgGA1UEAxMxTmV0UG9pbnQgU2ltcGxlIFNlY3VyaXR5IENBIC0gTm90IGZvciBHZW5lcmFsIFVzZTAeFw0wOTA0MDExMjU3MjJaFw0yNDAzMjgxMjU3MjJaMIGbMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTESMBAGA1UEBxMJQ3VwZXJ0aW5vMRQwEgYDVQQKEwtPYmxpeCwgSW5jLjERMA8GA1UECxMITmV0UG9pbnQxOjA4BgNVBAMTMU5ldFBvaW50IFNpbXBsZSBTZWN1cml0eSBDQSAtIE5vdCBmb3IgR2VuZXJhbCBVc2UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJS17Bq7S3tJHzERu66SJCIN/iaKF8W0IBTuR0/Qps/qivsFYqfHWzM1ZnTVizDTO1ZSy/614p6kfp6wsubm5LQF7AZj/7pUB+nP2ci0LJnb44U13mMaoZd6i8Y1iumiT1jGpsHTKO1zGXltkhKe3RweV++T8E8Toj3FbTv5Fe3RAgMBAAEwDQYJKoZIhvcNAQEEBQADgYEAO0EcLxZUAA9QIuW8cLMAbo+QO7ypB8lapKVHCETqrzrvMf5MQVaWafyWVP8/z69wO+8uRYT8CpjIlq9NtjEqwBp452237nVuogn9bPKjzzvGBRa/Zr8LJMAtn+BXr1gltomBbNWZQbc4Skurzw7yOYfiRMSHiRE51XE/kxn+qjc="],"key_ops":["sign"],"alg":"RS256","n":"hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"}]}
2020-11-03 10:46:05
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","x5t#S256":"gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU=","e":"AQAB","x5t":"En1dewmONzyRjmViuNsuz_E_04g=","kid":"OIDCDomain","x5c":["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","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"],"key_ops":["sign"],"alg":"RS256","n":"hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"}]}
2020-11-03 10:46:05 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "x5t#S256": "gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU\u003d",
      "e": "AQAB",
      "x5t": "En1dewmONzyRjmViuNsuz_E_04g\u003d",
      "kid": "OIDCDomain",
      "x5c": [
        "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\u003d",
        "MIICpzCCAhACAQAwDQYJKoZIhvcNAQEEBQAwgZsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlDdXBlcnRpbm8xFDASBgNVBAoTC09ibGl4LCBJbmMuMREwDwYDVQQLEwhOZXRQb2ludDE6MDgGA1UEAxMxTmV0UG9pbnQgU2ltcGxlIFNlY3VyaXR5IENBIC0gTm90IGZvciBHZW5lcmFsIFVzZTAeFw0wOTA0MDExMjU3MjJaFw0yNDAzMjgxMjU3MjJaMIGbMQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTESMBAGA1UEBxMJQ3VwZXJ0aW5vMRQwEgYDVQQKEwtPYmxpeCwgSW5jLjERMA8GA1UECxMITmV0UG9pbnQxOjA4BgNVBAMTMU5ldFBvaW50IFNpbXBsZSBTZWN1cml0eSBDQSAtIE5vdCBmb3IgR2VuZXJhbCBVc2UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJS17Bq7S3tJHzERu66SJCIN/iaKF8W0IBTuR0/Qps/qivsFYqfHWzM1ZnTVizDTO1ZSy/614p6kfp6wsubm5LQF7AZj/7pUB+nP2ci0LJnb44U13mMaoZd6i8Y1iumiT1jGpsHTKO1zGXltkhKe3RweV++T8E8Toj3FbTv5Fe3RAgMBAAEwDQYJKoZIhvcNAQEEBQADgYEAO0EcLxZUAA9QIuW8cLMAbo+QO7ypB8lapKVHCETqrzrvMf5MQVaWafyWVP8/z69wO+8uRYT8CpjIlq9NtjEqwBp452237nVuogn9bPKjzzvGBRa/Zr8LJMAtn+BXr1gltomBbNWZQbc4Skurzw7yOYfiRMSHiRE51XE/kxn+qjc\u003d"
      ],
      "key_ops": [
        "sign"
      ],
      "alg": "RS256",
      "n": "hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"
    }
  ]
}
2020-11-03 10:46:05 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "x5t#S256": "gOJ2KX4YVSR-y9VoqaFKGIGAmOprukhsGNYhRoUqtMU\u003d",
      "e": "AQAB",
      "x5t": "En1dewmONzyRjmViuNsuz_E_04g\u003d",
      "kid": "OIDCDomain",
      "x5c": [
        "MIICpzCCAhACBGgkPRAwDQYJKoZIhvcNAQELBQAwgZsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRIwEAYDVQQHEwlDdXBlcnRpbm8xFDASBgNVBAoTC09ibGl4LCBJbmMuMREwDwYDVQQLEwhOZXRQb2ludDE6MDgGA1UEAxMxTmV0UG9pbnQgU2ltcGxlIFNlY3VyaXR5IENBIC0gTm90IGZvciBHZW5lcmFsIFVzZTAeFw0yMDA5MDQwNzIwMjNaFw0yMDEwMDQwNzIwMjNaMBUxEzARBgNVBAMTCk9JRENEb21haW4wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCE1YmdpICWkYIT4ODv7FyYpPdNTm0wSNlv0nhTYFScESxE6aX7fvjsloFr7oIRbK2596iM0F7pCegCedTYYpX6WM/YMS1NNf6SHFWJu1xewo7g8yRPbISYW4X4Zxr4qP3Gpozrx/Ei9ls5n46uPy9NyRZ4HXllkbXLLPtOGdYqIVrZ5eijC7y9qPpsF1/KizE07AQ13LnA6im89OTjRu0+xRi38nmy9ogIgRpcd0zFwfyl/ksof/d4mnJZhn8+2yykhzBs3bi+5tuvZwasxpPzGqYmFWwCeA0rsBZJDwwcK6x97Z2t43nsah+abG1wuASQDAutWUsgo7jjItOPvE9/AgMBAAEwDQYJKoZIhvcNAQELBQADgYEAUZkEsKbI80tHJ9gqmhFm95WkbM6OLhxhdrzI4CU2zJ/VuuZPRUaRoJlRHtfH+NVLIjhLKu45Vjm/a8oMHLO3HoPO196x+z5Iqa8u2erQ0vlNwMMpmp7lLo1JhlXHYwOLcqIfcot5IZ1k+zf0yYQk4J0mVcXV7WGCySQ6Obe/f9U\u003d",
        "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\u003d"
      ],
      "key_ops": [
        "sign"
      ],
      "alg": "RS256",
      "n": "hNWJnaSAlpGCE-Dg7-xcmKT3TU5tMEjZb9J4U2BUnBEsROml-3747JaBa-6CEWytufeojNBe6QnoAnnU2GKV-ljP2DEtTTX-khxVibtcXsKO4PMkT2yEmFuF-Gca-Kj9xqaM68fxIvZbOZ-Orj8vTckWeB15ZZG1yyz7ThnWKiFa2eXoowu8vaj6bBdfyosxNOwENdy5wOopvPTk40btPsUYt_J5svaICIEaXHdMxcH8pf5LKH_3eJpyWYZ_PtsspIcwbN24vubbr2cGrMaT8xqmJhVsAngNK7AWSQ8MHCusfe2dreN57GofmmxtcLgEkAwLrVlLIKO44yLTj7xPfw"
    }
  ]
}
2020-11-03 10:46:05 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2020-11-03 10:46:05 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2020-11-03 10:46:05 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2020-11-03 10:46:05 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2020-11-03 10:46:05 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
OIDCClient
client_secret
welcome1
2020-11-03 10:46:05
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2020-11-03 10:46:05 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
http://150.136.116.143:7777/oauth2/rest/userinfo
2020-11-03 10:46:05
oidcc-max-age-1
Setup Done
Make request to authorization endpoint
2020-11-03 10:46:05 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
2020-11-03 10:46:05
CreateRandomStateValue
Created state value
requested_state_length
10
state
05LOuQBlOJ
2020-11-03 10:46:05 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
05LOuQBlOJ
2020-11-03 10:46:05
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
17ItwUMuXq
2020-11-03 10:46:05 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
05LOuQBlOJ
nonce
17ItwUMuXq
2020-11-03 10:46:05 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
05LOuQBlOJ
nonce
17ItwUMuXq
response_type
id_token
2020-11-03 10:46:05 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=05LOuQBlOJ&nonce=17ItwUMuXq&response_type=id_token
2020-11-03 10:46:05 REDIRECT
oidcc-max-age-1
Redirecting to authorization endpoint
redirect_to
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=05LOuQBlOJ&nonce=17ItwUMuXq&response_type=id_token
2020-11-03 10:46:12 INCOMING
oidcc-max-age-1
Incoming HTTP request to test instance WmUwRke4Ry8G8Xf
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2020-11-03 10:46:12 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/cqf3UvEXuWZmcf1IEHOP",
  "fullUrl": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/cqf3UvEXuWZmcf1IEHOP"
}
2020-11-03 10:46:12 OUTGOING
oidcc-max-age-1
Response to HTTP request to test instance WmUwRke4Ry8G8Xf
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/cqf3UvEXuWZmcf1IEHOP, returnUrl=/log-detail.html?log=WmUwRke4Ry8G8Xf}]
outgoing_path
callback
2020-11-03 10:46:12 INCOMING
oidcc-max-age-1
Incoming HTTP request to test instance WmUwRke4Ry8G8Xf
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "*/*",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "origin": "https://www.certification.openid.net",
  "dnt": "1",
  "referer": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1044",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/cqf3UvEXuWZmcf1IEHOP
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#id_token=eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ&state=05LOuQBlOJ
2020-11-03 10:46:12 OUTGOING
oidcc-max-age-1
Response to HTTP request to test instance WmUwRke4Ry8G8Xf
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/cqf3UvEXuWZmcf1IEHOP
2020-11-03 10:46:12
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "id_token",
    "value": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ"
  },
  {
    "name": "state",
    "value": "05LOuQBlOJ"
  }
]
2020-11-03 10:46:12 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ
state
05LOuQBlOJ
2020-11-03 10:46:12 REDIRECT-IN
oidcc-max-age-1
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "id_token": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ",
  "state": "05LOuQBlOJ"
}
post_body
Verify authorization endpoint response
2020-11-03 10:46:12 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2020-11-03 10:46:12 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2020-11-03 10:46:12 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2020-11-03 10:46:12 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2020-11-03 10:46:12 SUCCESS
CheckMatchingStateParameter
State parameter correctly returned
state
05LOuQBlOJ
2020-11-03 10:46:12 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ
header
{
  "x5t": "En1dewmONzyRjmViuNsuz_E_04g",
  "kid": "OIDCDomain",
  "alg": "RS256"
}
claims
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400341,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604403972,
  "iat": 1604400372,
  "nonce": "17ItwUMuXq",
  "jti": "986LzxH2rxoupTuC8ia0JA",
  "sid": "a5AVJ6A2FZ9335AomXtupw\u003d\u003d~ScUm0BKbM3Jxz/lZzzY+2jzvvtjoEPlEUp+qxrfsrx+T1KSJZgaKeWwhbRrs3dUThcVgMYFYRNEDOr/c6DVGfAAUhXe4PXNB8t5k7i4/A0kylXxCR2+qDKn8uTH0NDVi"
}
2020-11-03 10:46:12 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2020-11-03 10:46:12 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
17ItwUMuXq
2020-11-03 10:46:12 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2020-11-03 10:46:12 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ
2020-11-03 10:46:12 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwMzk3MiwiaWF0IjoxNjA0NDAwMzcyLCJub25jZSI6IjE3SXR3VU11WHEiLCJqdGkiOiI5ODZMenhIMnJ4b3VwVHVDOGlhMEpBIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiJhNUFWSjZBMkZaOTMzNUFvbVh0dXB3PT1-U2NVbTBCS2JNM0p4ei9sWnp6WSsyanp2dnRqb0VQbEVVcCtxeHJmc3J4K1QxS1NKWmdhS2VXd2hiUnJzM2RVVGhjVmdNWUZZUk5FRE9yL2M2RFZHZkFBVWhYZTRQWE5COHQ1azdpNC9BMGt5bFh4Q1IyK3FES244dVRIME5EVmkiLCJhdXRoX3RpbWUiOjE2MDQ0MDAzNDEsImFtciI6WyJwd2QiXX0.SP5Y_tNESKS7XdD0WqyXULIOPRtzRYeG9RlWgx9KuTO_XiLqw1EpFgf4TkAMg21v_j_9rMieHjrYF0m3sHpSnfsncb1sMMnQuDm-9kH4GlGODlYYTz2azLjZ1usEzdLc4_kuKUsv_TE7PCfS5Bkk4Ph19CBpP5vRMCFLDmZTYc6TUytPRFVbQ8IWL50wTL4CbFAl3CCa8tAr5dZcbcZcLVrzR80U__4xdzGd-v4BbBAsfqRJOCXv46s7qBpvu5Egoo37snE0VrKyUI_EWkl4t8MKxw9N0J59TY3JNEGR6LJFI0YQxkmU-lJgJUn08PhUnrJtJPHJSePuunKohEedZQ
2020-11-03 10:46:12 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
testuser1
Second authorization: Make request to authorization endpoint
2020-11-03 10:46:12 SUCCESS
WaitFor2Seconds
Pausing for 2 seconds
2020-11-03 10:46:14 SUCCESS
WaitFor2Seconds
Woke up after 2 seconds sleep
2020-11-03 10:46:14 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
2020-11-03 10:46:14
CreateRandomStateValue
Created state value
requested_state_length
10
state
IZOo8U7Hg0
2020-11-03 10:46:14 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
IZOo8U7Hg0
2020-11-03 10:46:14
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
pcsTAvv6bu
2020-11-03 10:46:14 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
IZOo8U7Hg0
nonce
pcsTAvv6bu
2020-11-03 10:46:14 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
IZOo8U7Hg0
nonce
pcsTAvv6bu
response_type
id_token
2020-11-03 10:46:14 SUCCESS
AddMaxAge1ToAuthorizationEndpointRequest
Added max_age=1 to authorization endpoint request
client_id
OIDCClient
redirect_uri
https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback
scope
openid
state
IZOo8U7Hg0
nonce
pcsTAvv6bu
response_type
id_token
max_age
1
2020-11-03 10:46:14 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=IZOo8U7Hg0&nonce=pcsTAvv6bu&response_type=id_token&max_age=1
2020-11-03 10:46:14 REDIRECT
oidcc-max-age-1
Redirecting to authorization endpoint
redirect_to
http://150.136.116.143:7777/oauth2/rest/authorize?client_id=OIDCClient&redirect_uri=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback&scope=openid&state=IZOo8U7Hg0&nonce=pcsTAvv6bu&response_type=id_token&max_age=1
2020-11-03 10:46:14 REVIEW IMAGE
ExpectSecondLoginPage
The server must ask the user to login for a second time; a screenshot of this must be uploaded.
img
updatedAt
1604400425557
2020-11-03 10:46:49 INCOMING
oidcc-max-age-1
Incoming HTTP request to test instance WmUwRke4Ry8G8Xf
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2020-11-03 10:46:49 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/L23ev8ShlTe5pEk4lm1I",
  "fullUrl": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/L23ev8ShlTe5pEk4lm1I"
}
2020-11-03 10:46:49 OUTGOING
oidcc-max-age-1
Response to HTTP request to test instance WmUwRke4Ry8G8Xf
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/implicit/L23ev8ShlTe5pEk4lm1I, returnUrl=/log-detail.html?log=WmUwRke4Ry8G8Xf}]
outgoing_path
callback
2020-11-03 10:46:49 INCOMING
oidcc-max-age-1
Incoming HTTP request to test instance WmUwRke4Ry8G8Xf
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "*/*",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "origin": "https://www.certification.openid.net",
  "dnt": "1",
  "referer": "https://www.certification.openid.net/test/a/oam_ps4_op_implicit_openid/callback",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1044",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/L23ev8ShlTe5pEk4lm1I
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#id_token=eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ&state=IZOo8U7Hg0
2020-11-03 10:46:49 OUTGOING
oidcc-max-age-1
Response to HTTP request to test instance WmUwRke4Ry8G8Xf
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/L23ev8ShlTe5pEk4lm1I
2020-11-03 10:46:50
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "id_token",
    "value": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ"
  },
  {
    "name": "state",
    "value": "IZOo8U7Hg0"
  }
]
2020-11-03 10:46:50 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ
state
IZOo8U7Hg0
2020-11-03 10:46:50 REDIRECT-IN
oidcc-max-age-1
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,*/*;q\u003d0.8",
  "accept-language": "en-US,en;q\u003d0.5",
  "accept-encoding": "gzip, deflate, br",
  "dnt": "1",
  "cookie": "JSESSIONID\u003d033F82E8777A0E2D73120EF9B2FFB960",
  "upgrade-insecure-requests": "1",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "id_token": "eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ",
  "state": "IZOo8U7Hg0"
}
post_body
Second authorization: Verify authorization endpoint response
2020-11-03 10:46:50 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2020-11-03 10:46:50 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2020-11-03 10:46:50 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2020-11-03 10:46:50 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2020-11-03 10:46:50 SUCCESS
CheckMatchingStateParameter
State parameter correctly returned
state
IZOo8U7Hg0
2020-11-03 10:46:50 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ
header
{
  "x5t": "En1dewmONzyRjmViuNsuz_E_04g",
  "kid": "OIDCDomain",
  "alg": "RS256"
}
claims
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404009,
  "iat": 1604400409,
  "nonce": "pcsTAvv6bu",
  "jti": "oGk-bMaan6T-94J3q7DpfQ",
  "sid": "0zUC12aP19+KJ08t+jRKPw\u003d\u003d~ZLETTmTfiD96b7cL+f7I/ldBinTHovsVjwy+tWG+KD/cp6GpbIO2s8QhgUxCw4Yrz/rnVFjxMnCYVog+uXLHAWdsjTeP9Gii/LzVYVCwj+/L5HGELARMpn1bJtwFqZKO"
}
2020-11-03 10:46:50 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2020-11-03 10:46:50 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
pcsTAvv6bu
2020-11-03 10:46:50 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2020-11-03 10:46:50 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ
2020-11-03 10:46:50 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJPSURDRG9tYWluIiwieDV0IjoiRW4xZGV3bU9OenlSam1WaXVOc3V6X0VfMDRnIiwiYWxnIjoiUlMyNTYifQ.eyJpc3MiOiJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIiwic3ViIjoidGVzdHVzZXIxIiwiYXVkIjpbIk9JRENDbGllbnQiLCJodHRwOi8vMTUwLjEzNi4xMTYuMTQzOjc3Nzcvb2F1dGgyIl0sImV4cCI6MTYwNDQwNDAwOSwiaWF0IjoxNjA0NDAwNDA5LCJub25jZSI6InBjc1RBdnY2YnUiLCJqdGkiOiJvR2stYk1hYW42VC05NEozcTdEcGZRIiwiYXpwIjoiT0lEQ0NsaWVudCIsImFjciI6IjIiLCJzaWQiOiIwelVDMTJhUDE5K0tKMDh0K2pSS1B3PT1-WkxFVFRtVGZpRDk2YjdjTCtmN0kvbGRCaW5USG92c1Zqd3krdFdHK0tEL2NwNkdwYklPMnM4UWhnVXhDdzRZcnovcm5WRmp4TW5DWVZvZyt1WExIQVdkc2pUZVA5R2lpL0x6VllWQ3dqKy9MNUhHRUxBUk1wbjFiSnR3RnFaS08iLCJhdXRoX3RpbWUiOjE2MDQ0MDA0MDcsImFtciI6WyJwd2QiXX0.As9lYrh_V31x4UnSlPIKY-uZqeljdszmXiEDZMeipt8ad8L_5Wp0jRC8vfW4n_r3fsBjYHIQ2wWBDOAven-m4FuoaynMCoSFdb3vZm_xd-AFSwQTAAjWguYPxygf_t5woVVjE-9RKqIJ3PfNPokZMB3Z1Mki1iU6PDeoprR09lxlujYx0CrS9OoKvjtlbgIkNsadePEYhD-wDTfOSn1wG6gi7E_3o1Ml4ZkEAtLP9MNnU-OXrYuxB1Nzst8QnaLTvTJP8RzESnwnQzdLkOfgMjTJe5EJZFf8WlsUsvX43kX9OL0wgor1Eh5TsPrqEZOiiTVIcrUVujl2Ot3BrFNGTQ
2020-11-03 10:46:50 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
testuser1
2020-11-03 10:46:50 SUCCESS
CheckIdTokenAuthTimeClaimPresentDueToMaxAge
auth_time is present in the id_token, as required for a authentication where the max_age parameter was used
id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404009,
  "iat": 1604400409,
  "nonce": "pcsTAvv6bu",
  "jti": "oGk-bMaan6T-94J3q7DpfQ",
  "sid": "0zUC12aP19+KJ08t+jRKPw\u003d\u003d~ZLETTmTfiD96b7cL+f7I/ldBinTHovsVjwy+tWG+KD/cp6GpbIO2s8QhgUxCw4Yrz/rnVFjxMnCYVog+uXLHAWdsjTeP9Gii/LzVYVCwj+/L5HGELARMpn1bJtwFqZKO"
}
2020-11-03 10:46:50 SUCCESS
CheckSecondIdTokenAuthTimeIsLaterIfPresent
auth_time is later in the second id_token
first_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400341,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604403972,
  "iat": 1604400372,
  "nonce": "17ItwUMuXq",
  "jti": "986LzxH2rxoupTuC8ia0JA",
  "sid": "a5AVJ6A2FZ9335AomXtupw\u003d\u003d~ScUm0BKbM3Jxz/lZzzY+2jzvvtjoEPlEUp+qxrfsrx+T1KSJZgaKeWwhbRrs3dUThcVgMYFYRNEDOr/c6DVGfAAUhXe4PXNB8t5k7i4/A0kylXxCR2+qDKn8uTH0NDVi"
}
second_id_token
{
  "sub": "testuser1",
  "aud": [
    "OIDCClient",
    "http://150.136.116.143:7777/oauth2"
  ],
  "acr": "2",
  "azp": "OIDCClient",
  "auth_time": 1604400407,
  "amr": [
    "pwd"
  ],
  "iss": "http://150.136.116.143:7777/oauth2",
  "exp": 1604404009,
  "iat": 1604400409,
  "nonce": "pcsTAvv6bu",
  "jti": "oGk-bMaan6T-94J3q7DpfQ",
  "sid": "0zUC12aP19+KJ08t+jRKPw\u003d\u003d~ZLETTmTfiD96b7cL+f7I/ldBinTHovsVjwy+tWG+KD/cp6GpbIO2s8QhgUxCw4Yrz/rnVFjxMnCYVog+uXLHAWdsjTeP9Gii/LzVYVCwj+/L5HGELARMpn1bJtwFqZKO"
}
2020-11-03 10:46:50 SUCCESS
CheckIdTokenAuthTimeIsRecentIfPresent
auth_time in id_token is recent
auth_time
"Nov 3, 2020, 10:46:47 AM"
now
"Nov 3, 2020, 10:46:50 AM"
2020-11-03 10:47:21 FINISHED
oidcc-max-age-1
Test has run to completion
testmodule_result
REVIEW
Unregister dynamically registered client
2020-11-03 10:47:21 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2020-11-03 10:47:23
TEST-RUNNER
Alias has now been claimed by another test
alias
oam_ps4_op_implicit_openid
new_test_id
HVkszxfGrrRwgac
Test Results