Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-08-11 16:42:27 INFO
TEST-RUNNER
Test instance m17TRKfeTeZ8p5s created
baseUrl
https://www.certification.openid.net/test/a/RCProduction
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code id_token",
  "server_metadata": "discovery",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
RCProduction
description
planId
XXrZTEGrWh0KZ
config
{
  "alias": "RCProduction",
  "client": {
    "client_id": "test_hybrid",
    "redirect_uri": "https%3A%2F%2Ftopend.azurewebsites.net%2FPlugins%2FReadySignOn.ReadyConnect%2Flogincallback",
    "client_secret": "rctestsecret"
  },
  "server": {
    "discoveryUrl": "https://readyconnectsvc.readysignon.com/.well-known/openid-configuration"
  },
  "client_secret_post": {
    "client_id": "test_hybrid_secret_post",
    "client_secret": "rctestsecret"
  },
  "client2": {
    "client_id": "test_hybrid_2",
    "client_secret": "rctestsecret"
  }
}
testName
oidcc-max-age-10000
2021-08-11 16:42:27 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
2021-08-11 16:42:27
GetDynamicServerConfiguration
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-11 16:42:27 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json;charset\u003dUTF-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:26 GMT"
}
response_body
{
  "issuer": "https://readyconnectsvc.readysignon.com/",
  "authorization_endpoint": "https://readyconnectsvc.readysignon.com/connect/authorize",
  "token_endpoint": "https://readyconnectsvc.readysignon.com/connect/token",
  "introspection_endpoint": "https://readyconnectsvc.readysignon.com/connect/introspect",
  "end_session_endpoint": "https://readyconnectsvc.readysignon.com/connect/logout",
  "userinfo_endpoint": "https://readyconnectsvc.readysignon.com/connect/userinfo",
  "device_authorization_endpoint": "https://readyconnectsvc.readysignon.com/connect/device",
  "jwks_uri": "https://readyconnectsvc.readysignon.com/.well-known/jwks",
  "grant_types_supported": [
    "authorization_code",
    "urn:ietf:params:oauth:grant-type:device_code",
    "client_credentials",
    "implicit",
    "password",
    "refresh_token"
  ],
  "response_types_supported": [
    "code",
    "id_token",
    "id_token token",
    "token",
    "code id_token",
    "code id_token token",
    "code token"
  ],
  "response_modes_supported": [
    "form_post",
    "fragment",
    "query"
  ],
  "scopes_supported": [
    "openid",
    "offline_access",
    "rso_uc",
    "rso_idp",
    "rso_rid",
    "rso_ReadyPay",
    "rso_api_create",
    "rso_api_read",
    "rso_api_update",
    "rso_api_delete",
    "address",
    "email",
    "phone",
    "profile",
    "application.profile",
    "roles"
  ],
  "claims_supported": [
    "aud",
    "exp",
    "iat",
    "iss",
    "sub",
    "address",
    "birthdate",
    "email",
    "email_verified",
    "family_name",
    "gender",
    "given_name",
    "issuer",
    "locale",
    "middle_name",
    "name",
    "nickname",
    "phone_number",
    "phone_number_verified",
    "picture",
    "preferred_username",
    "profile",
    "subject",
    "updated_at",
    "website",
    "zoneinfo",
    "scope",
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"
  ],
  "request_object_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "code_challenge_methods_supported": [
    "S256"
  ],
  "subject_types_supported": [
    "public"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post"
  ],
  "introspection_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post"
  ],
  "external_providers_supported": [
    "Amazon",
    "Apple",
    "Bitbucket",
    "Dropbox",
    "Facebook",
    "GitHub",
    "Gitter",
    "Google",
    "Instagram",
    "LinkedIn",
    "Microsoft",
    "Paypal",
    "QQ",
    "Reddit",
    "Salesforce",
    "StackExchange",
    "Twitter",
    "Vimeo",
    "Weibo",
    "WordPress",
    "Yahoo",
    "Yammer",
    "ReadyConnect"
  ],
  "claims_parameter_supported": false,
  "request_parameter_supported": false,
  "request_uri_parameter_supported": false
}
2021-08-11 16:42:27
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{
  "issuer": "https://readyconnectsvc.readysignon.com/",
  "authorization_endpoint": "https://readyconnectsvc.readysignon.com/connect/authorize",
  "token_endpoint": "https://readyconnectsvc.readysignon.com/connect/token",
  "introspection_endpoint": "https://readyconnectsvc.readysignon.com/connect/introspect",
  "end_session_endpoint": "https://readyconnectsvc.readysignon.com/connect/logout",
  "userinfo_endpoint": "https://readyconnectsvc.readysignon.com/connect/userinfo",
  "device_authorization_endpoint": "https://readyconnectsvc.readysignon.com/connect/device",
  "jwks_uri": "https://readyconnectsvc.readysignon.com/.well-known/jwks",
  "grant_types_supported": [
    "authorization_code",
    "urn:ietf:params:oauth:grant-type:device_code",
    "client_credentials",
    "implicit",
    "password",
    "refresh_token"
  ],
  "response_types_supported": [
    "code",
    "id_token",
    "id_token token",
    "token",
    "code id_token",
    "code id_token token",
    "code token"
  ],
  "response_modes_supported": [
    "form_post",
    "fragment",
    "query"
  ],
  "scopes_supported": [
    "openid",
    "offline_access",
    "rso_uc",
    "rso_idp",
    "rso_rid",
    "rso_ReadyPay",
    "rso_api_create",
    "rso_api_read",
    "rso_api_update",
    "rso_api_delete",
    "address",
    "email",
    "phone",
    "profile",
    "application.profile",
    "roles"
  ],
  "claims_supported": [
    "aud",
    "exp",
    "iat",
    "iss",
    "sub",
    "address",
    "birthdate",
    "email",
    "email_verified",
    "family_name",
    "gender",
    "given_name",
    "issuer",
    "locale",
    "middle_name",
    "name",
    "nickname",
    "phone_number",
    "phone_number_verified",
    "picture",
    "preferred_username",
    "profile",
    "subject",
    "updated_at",
    "website",
    "zoneinfo",
    "scope",
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"
  ],
  "request_object_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "code_challenge_methods_supported": [
    "S256"
  ],
  "subject_types_supported": [
    "public"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post"
  ],
  "introspection_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post"
  ],
  "external_providers_supported": [
    "Amazon",
    "Apple",
    "Bitbucket",
    "Dropbox",
    "Facebook",
    "GitHub",
    "Gitter",
    "Google",
    "Instagram",
    "LinkedIn",
    "Microsoft",
    "Paypal",
    "QQ",
    "Reddit",
    "Salesforce",
    "StackExchange",
    "Twitter",
    "Vimeo",
    "Weibo",
    "WordPress",
    "Yahoo",
    "Yammer",
    "ReadyConnect"
  ],
  "claims_parameter_supported": false,
  "request_parameter_supported": false,
  "request_uri_parameter_supported": false
}
2021-08-11 16:42:27 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://readyconnectsvc.readysignon.com/
authorization_endpoint
https://readyconnectsvc.readysignon.com/connect/authorize
token_endpoint
https://readyconnectsvc.readysignon.com/connect/token
introspection_endpoint
https://readyconnectsvc.readysignon.com/connect/introspect
end_session_endpoint
https://readyconnectsvc.readysignon.com/connect/logout
userinfo_endpoint
https://readyconnectsvc.readysignon.com/connect/userinfo
device_authorization_endpoint
https://readyconnectsvc.readysignon.com/connect/device
jwks_uri
https://readyconnectsvc.readysignon.com/.well-known/jwks
grant_types_supported
[
  "authorization_code",
  "urn:ietf:params:oauth:grant-type:device_code",
  "client_credentials",
  "implicit",
  "password",
  "refresh_token"
]
response_types_supported
[
  "code",
  "id_token",
  "id_token token",
  "token",
  "code id_token",
  "code id_token token",
  "code token"
]
response_modes_supported
[
  "form_post",
  "fragment",
  "query"
]
scopes_supported
[
  "openid",
  "offline_access",
  "rso_uc",
  "rso_idp",
  "rso_rid",
  "rso_ReadyPay",
  "rso_api_create",
  "rso_api_read",
  "rso_api_update",
  "rso_api_delete",
  "address",
  "email",
  "phone",
  "profile",
  "application.profile",
  "roles"
]
claims_supported
[
  "aud",
  "exp",
  "iat",
  "iss",
  "sub",
  "address",
  "birthdate",
  "email",
  "email_verified",
  "family_name",
  "gender",
  "given_name",
  "issuer",
  "locale",
  "middle_name",
  "name",
  "nickname",
  "phone_number",
  "phone_number_verified",
  "picture",
  "preferred_username",
  "profile",
  "subject",
  "updated_at",
  "website",
  "zoneinfo",
  "scope",
  "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
  "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"
]
request_object_signing_alg_values_supported
[
  "RS256"
]
id_token_signing_alg_values_supported
[
  "RS256"
]
code_challenge_methods_supported
[
  "S256"
]
subject_types_supported
[
  "public"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_post"
]
introspection_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_post"
]
external_providers_supported
[
  "Amazon",
  "Apple",
  "Bitbucket",
  "Dropbox",
  "Facebook",
  "GitHub",
  "Gitter",
  "Google",
  "Instagram",
  "LinkedIn",
  "Microsoft",
  "Paypal",
  "QQ",
  "Reddit",
  "Salesforce",
  "StackExchange",
  "Twitter",
  "Vimeo",
  "Weibo",
  "WordPress",
  "Yahoo",
  "Yammer",
  "ReadyConnect"
]
claims_parameter_supported
false
request_parameter_supported
false
request_uri_parameter_supported
false
2021-08-11 16:42:27 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-08-11 16:42:27 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
authorization_endpoint
{
  "testHost": "readyconnectsvc.readysignon.com",
  "testPort": 443
}
token_endpoint
{
  "testHost": "readyconnectsvc.readysignon.com",
  "testPort": 443
}
userinfo_endpoint
{
  "testHost": "readyconnectsvc.readysignon.com",
  "testPort": 443
}
2021-08-11 16:42:27
FetchServerKeys
Fetching server key
jwks_uri
https://readyconnectsvc.readysignon.com/.well-known/jwks
2021-08-11 16:42:27
FetchServerKeys
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/.well-known/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-11 16:42:27 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json;charset\u003dUTF-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:27 GMT"
}
response_body
{
  "keys": [
    {
      "kid": "F30F54511354A03276BD5964394404969B850FD3",
      "use": "sig",
      "kty": "RSA",
      "alg": "RS256",
      "e": "AQAB",
      "n": "pvzpdv-K3zBm3EsEMEeNwho5Ej8S8PYlOIcmU9Cq88KF4lRKpHMKzxg8LiUJq13qKf4n3dWaAamGRksjuQMBjuOM_6iSbeDobncZn2QqKp3JUVdTXGYO0hG1VgDE264joTouQJlYW3FPKnSBSnvpgsC7uDMHFIM6_j17qChkSUUz-sMhsMg6z6w0Idg_c_iCteFKo8Q3OSH7T9NvyjwD9Tn7NTESRXBu3_6Dwyj9sSXDIG2Nr8S0ul1Ou6pCGv56Y_FFzG6o3dWv9SxjjKDKrfgjelgDmadOpvFwBmS94N6YMwnfc2RN9c4gmyl73yj9cayGj4Xex9rUOaqhudngKQ",
      "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
      "x5c": [
        "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"
      ]
    }
  ]
}
2021-08-11 16:42:27
FetchServerKeys
Found JWK set string
jwk_string
{
  "keys": [
    {
      "kid": "F30F54511354A03276BD5964394404969B850FD3",
      "use": "sig",
      "kty": "RSA",
      "alg": "RS256",
      "e": "AQAB",
      "n": "pvzpdv-K3zBm3EsEMEeNwho5Ej8S8PYlOIcmU9Cq88KF4lRKpHMKzxg8LiUJq13qKf4n3dWaAamGRksjuQMBjuOM_6iSbeDobncZn2QqKp3JUVdTXGYO0hG1VgDE264joTouQJlYW3FPKnSBSnvpgsC7uDMHFIM6_j17qChkSUUz-sMhsMg6z6w0Idg_c_iCteFKo8Q3OSH7T9NvyjwD9Tn7NTESRXBu3_6Dwyj9sSXDIG2Nr8S0ul1Ou6pCGv56Y_FFzG6o3dWv9SxjjKDKrfgjelgDmadOpvFwBmS94N6YMwnfc2RN9c4gmyl73yj9cayGj4Xex9rUOaqhudngKQ",
      "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
      "x5c": [
        "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"
      ]
    }
  ]
}
2021-08-11 16:42:27 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kid": "F30F54511354A03276BD5964394404969B850FD3",
      "use": "sig",
      "kty": "RSA",
      "alg": "RS256",
      "e": "AQAB",
      "n": "pvzpdv-K3zBm3EsEMEeNwho5Ej8S8PYlOIcmU9Cq88KF4lRKpHMKzxg8LiUJq13qKf4n3dWaAamGRksjuQMBjuOM_6iSbeDobncZn2QqKp3JUVdTXGYO0hG1VgDE264joTouQJlYW3FPKnSBSnvpgsC7uDMHFIM6_j17qChkSUUz-sMhsMg6z6w0Idg_c_iCteFKo8Q3OSH7T9NvyjwD9Tn7NTESRXBu3_6Dwyj9sSXDIG2Nr8S0ul1Ou6pCGv56Y_FFzG6o3dWv9SxjjKDKrfgjelgDmadOpvFwBmS94N6YMwnfc2RN9c4gmyl73yj9cayGj4Xex9rUOaqhudngKQ",
      "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
      "x5c": [
        "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\u003d"
      ]
    }
  ]
}
2021-08-11 16:42:27 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kid": "F30F54511354A03276BD5964394404969B850FD3",
      "use": "sig",
      "kty": "RSA",
      "alg": "RS256",
      "e": "AQAB",
      "n": "pvzpdv-K3zBm3EsEMEeNwho5Ej8S8PYlOIcmU9Cq88KF4lRKpHMKzxg8LiUJq13qKf4n3dWaAamGRksjuQMBjuOM_6iSbeDobncZn2QqKp3JUVdTXGYO0hG1VgDE264joTouQJlYW3FPKnSBSnvpgsC7uDMHFIM6_j17qChkSUUz-sMhsMg6z6w0Idg_c_iCteFKo8Q3OSH7T9NvyjwD9Tn7NTESRXBu3_6Dwyj9sSXDIG2Nr8S0ul1Ou6pCGv56Y_FFzG6o3dWv9SxjjKDKrfgjelgDmadOpvFwBmS94N6YMwnfc2RN9c4gmyl73yj9cayGj4Xex9rUOaqhudngKQ",
      "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
      "x5c": [
        "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\u003d"
      ]
    }
  ]
}
2021-08-11 16:42:27 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-08-11 16:42:27 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-08-11 16:42:27 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-08-11 16:42:27 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-08-11 16:42:27 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
test_hybrid
redirect_uri
https%3A%2F%2Ftopend.azurewebsites.net%2FPlugins%2FReadySignOn.ReadyConnect%2Flogincallback
client_secret
rctestsecret
2021-08-11 16:42:27 INFO
ValidateClientJWKsPrivatePart
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-11 16:42:27 INFO
ExtractJWKsFromStaticClientConfiguration
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-11 16:42:27 INFO
CheckDistinctKeyIdValueInClientJWKs
Skipped evaluation due to missing required element: client jwks
path
jwks
mapped
object
client
2021-08-11 16:42:27
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-08-11 16:42:27 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_basic",
  "client_secret_post"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-08-11 16:42:27 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
https://readyconnectsvc.readysignon.com/connect/userinfo
2021-08-11 16:42:27
oidcc-max-age-10000
Setup Done
Make request to authorization endpoint
2021-08-11 16:42:27 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
2021-08-11 16:42:27
CreateRandomStateValue
Created state value
requested_state_length
10
state
EWPsoa5PB2
2021-08-11 16:42:27 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
EWPsoa5PB2
2021-08-11 16:42:27
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
hW8Ft8wJC2
2021-08-11 16:42:27 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
EWPsoa5PB2
nonce
hW8Ft8wJC2
2021-08-11 16:42:27 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
EWPsoa5PB2
nonce
hW8Ft8wJC2
response_type
code id_token
2021-08-11 16:42:27 SUCCESS
AddMaxAge15000ToAuthorizationEndpointRequest
Added max_age=15000 to authorization endpoint request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
EWPsoa5PB2
nonce
hW8Ft8wJC2
response_type
code id_token
max_age
15000
2021-08-11 16:42:27 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://readyconnectsvc.readysignon.com/connect/authorize?client_id=test_hybrid&redirect_uri=https://www.certification.openid.net/test/a/RCProduction/callback&scope=openid&state=EWPsoa5PB2&nonce=hW8Ft8wJC2&response_type=code%20id_token&max_age=15000
2021-08-11 16:42:27 REDIRECT
oidcc-max-age-10000
Redirecting to authorization endpoint
redirect_to
https://readyconnectsvc.readysignon.com/connect/authorize?client_id=test_hybrid&redirect_uri=https://www.certification.openid.net/test/a/RCProduction/callback&scope=openid&state=EWPsoa5PB2&nonce=hW8Ft8wJC2&response_type=code%20id_token&max_age=15000
2021-08-11 16:42:29 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance m17TRKfeTeZ8p5s
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "dnt": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-11 16:42:29 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/CfH8qRc7cVIbqJTgDI31",
  "fullUrl": "https://www.certification.openid.net/test/a/RCProduction/implicit/CfH8qRc7cVIbqJTgDI31"
}
2021-08-11 16:42:29 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance m17TRKfeTeZ8p5s
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/RCProduction/implicit/CfH8qRc7cVIbqJTgDI31, returnUrl=/log-detail.html?log=m17TRKfeTeZ8p5s}]
outgoing_path
callback
2021-08-11 16:42:30 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance m17TRKfeTeZ8p5s
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "accept": "*/*",
  "dnt": "1",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/RCProduction/callback",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1034",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/CfH8qRc7cVIbqJTgDI31
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#code=wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ&state=EWPsoa5PB2
2021-08-11 16:42:30 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance m17TRKfeTeZ8p5s
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/CfH8qRc7cVIbqJTgDI31
2021-08-11 16:42:30
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "code",
    "value": "wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ"
  },
  {
    "name": "id_token",
    "value": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ"
  },
  {
    "name": "state",
    "value": "EWPsoa5PB2"
  }
]
2021-08-11 16:42:30 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
code
wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ
state
EWPsoa5PB2
2021-08-11 16:42:30 REDIRECT-IN
oidcc-max-age-10000
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "dnt": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "code": "wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ",
  "state": "EWPsoa5PB2"
}
post_body
Verify authorization endpoint response
2021-08-11 16:42:30 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-08-11 16:42:30 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-08-11 16:42:30 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-08-11 16:42:30
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-08-11 16:42:30 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-08-11 16:42:30 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
EWPsoa5PB2
2021-08-11 16:42:30 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ
2021-08-11 16:42:30 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ
header
{
  "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
  "kid": "F30F54511354A03276BD5964394404969B850FD3",
  "typ": "JWT",
  "alg": "RS256"
}
claims
{
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "c_hash": "YY6uczvmM4oiHXHgzE9MkQ",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "7aa5c787-3898-417f-bd90-7718f46f86a4",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701349,
  "nonce": "hW8Ft8wJC2",
  "iat": 1628700149
}
2021-08-11 16:42:30 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
hW8Ft8wJC2
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJjX2hhc2giOiJZWTZ1Y3p2bU00b2lIWEhnekU5TWtRIiwib2lfdGtuX2lkIjoiN2FhNWM3ODctMzg5OC00MTdmLWJkOTAtNzcxOGY0NmY4NmE0IiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNDksImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNDl9.FadmlBBQUVv7cN-uavJZ1AzvJwwqjJA_pFUVH1BESJV6N-mym0TZh1jz4xQM_wCkkmj7VZWXd3292GfA7Ocz5fM1sgL3r0y1QNdwtAVmKkAkE0EVK4h5Jd-0oZ1vR9cZx4DpBqOUYTHbbDN2fz8GIC2gZzMER5jwDAD3U6nDUuAHS7ntsF-dLal4FggaUcJ2WctYy83Bl9z9LJjl13pU2Iqkfsz0ZwEf3iX1PFETLLw-iB32CkM1fQBA31OR1k4oo1NoehqQh2ae2si9d_K-7auIp5yp0QulChZY0fH528tcXFQefukIejbLO_v2nKDg8wpgOrZbnq8bNxZxaE7PmQ
2021-08-11 16:42:30 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
8d2282d0-6c12-478c-af52-dfffde94c2c1
2021-08-11 16:42:30 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
2021-08-11 16:42:30 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic dGVzdF9oeWJyaWQ6cmN0ZXN0c2VjcmV0
2021-08-11 16:42:30
CallTokenEndpoint
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/connect/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic dGVzdF9oeWJyaWQ6cmN0ZXN0c2VjcmV0",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "171"
}
request_body
grant_type=authorization_code&code=wfLJ6id1gtK63mLVDFLGU_eHLWyed9slRkseXW1EBjQ&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2FRCProduction%2Fcallback
2021-08-11 16:42:30 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "cache-control": "no-store",
  "pragma": "no-cache",
  "content-type": "application/json;charset\u003dUTF-8",
  "expires": "Thu, 01 Jan 1970 00:00:00 GMT",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:29 GMT"
}
response_body
{
  "access_token": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M",
  "token_type": "Bearer",
  "expires_in": 3600,
  "scope": "openid",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A"
}
2021-08-11 16:42:30
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{
  "access_token": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M",
  "token_type": "Bearer",
  "expires_in": 3600,
  "scope": "openid",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A"
}
2021-08-11 16:42:30 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M
token_type
Bearer
expires_in
3600
scope
openid
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A
2021-08-11 16:42:30 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-11 16:42:30 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M
2021-08-11 16:42:30 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M
type
Bearer
2021-08-11 16:42:30 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
3600
2021-08-11 16:42:30 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
3600
2021-08-11 16:42:30 INFO
CheckForRefreshTokenValue
Couldn't find refresh token
2021-08-11 16:42:30 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A
header
{
  "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
  "kid": "F30F54511354A03276BD5964394404969B850FD3",
  "typ": "JWT",
  "alg": "RS256"
}
claims
{
  "at_hash": "_h1OzKG9rsIyU5zEOXGxkQ",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "6b9ab0c9-5744-4105-9612-74d435bf9569",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701350,
  "nonce": "hW8Ft8wJC2",
  "iat": 1628700150
}
2021-08-11 16:42:30 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
hW8Ft8wJC2
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A
2021-08-11 16:42:30 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6ImhXOEZ0OHdKQzIiLCJhdF9oYXNoIjoiX2gxT3pLRzlyc0l5VTV6RU9YR3hrUSIsIm9pX3Rrbl9pZCI6IjZiOWFiMGM5LTU3NDQtNDEwNS05NjEyLTc0ZDQzNWJmOTU2OSIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUwLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUwfQ.PDeblfvE4fcwkmZ5ZPqeN94JqAqziSCWg8XiHsCQ0Iy4-GWNyVCVwF1Hg577Tqt0u52wtZzlJM7L6Xh8vJk0L461Kn-JSmWFrjKcFFKU1T9y5IcmpF1kGa7VR_AbS9s9q_cW3h76CngFvEe95spSqAxL0aTAublmuhM8tBI24cJo9HUdCT5qAhYVtIwaCcAgFQ09QDHle73UKg32eHnEFlo1msK_8qA_RWTY_ROiHcjZM3RrjiVX0gd0BHBxgy9TbblEfiEFAY-8bGJZgKIMt8-CHefg0y_rpUTpuLknp_dwKnHhMJOlM2BSJu5tHVGYTqbScfb_lOUDH3LRZzU50A
2021-08-11 16:42:30 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
8d2282d0-6c12-478c-af52-dfffde94c2c1
2021-08-11 16:42:30 SUCCESS
VerifyIdTokenSubConsistentHybridFlow
authorization endpoint and token endpoint id_token have same sub
sub_auth_endpoint
8d2282d0-6c12-478c-af52-dfffde94c2c1
sub_token_endpoint
8d2282d0-6c12-478c-af52-dfffde94c2c1
Userinfo endpoint tests
2021-08-11 16:42:30
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/connect/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.BoyXkw7DiU8l5vI6-3_fGrgSoNIv-fs3_DYqK-bEjznkrUJmrZISvEpkqdVkBIiZsMAJBur7R1rnfO1fG3W4PuHxvI9z21S9Zu2nAvfqddCRoU44TfOqHUwhxnICWv5e01l1ku4U0Dp3Wf0or5lNT59tV3m596nXrg5Pvr7z0SkEbtQKuVNlCpXj5zvgTg3DVLyWKb4fF4LBz9JE6d8-yc5ebTs7m4yGdtyE9C0ru2y-kWJ8lHQ1hP2Z32mAgWh9DNIkZWjuQBV5LOYtuuO2Tqvf6Q6O3MoitT2G57OImOWyBY9-ZA72xmQhJpKrYzAvZkmGjWFpmrVkWvqxwJL5Rg.9xxHMVl0NHIOUQfc80BoqA.YN3Ec9g-xcAbPikCDgFEjMHuTyX6sfNzTb_IBxCkuxszGvc5oSRJhHWWDPBo9zdNqOK5x_FpNtvP5jMsUMEF7-0LBYXRZ0I9VYLUN0tDmTS0DeRpiViulNMGzC03guvpk52Cv5MuA_4zAcvg8L0vzUP08sZ6qEBu9E3UoxpsnSiv_UmVCmAL03RU6XJmCHpbDMZHhVtRAbRBw1B9fneGvOvfKp3n1YwDPvsjt83gQna-_6eznKdAJknomueUKXS5aspSuLoG6ZQ_IStcdakSZmToTNTfEJfFateLsS14zIsbYI6YqIwtl6OHusoMEIijZh0Qn4e-QFxqj81Qzxg3X5hBMIjKpswsY47Pe11PFVsJMAl7Ypq9SnOKVaU_uZbU1NQYA5jNSvodW0yJdUI4HdqPqyy51voME-RlygEf-3BTwYuxyBUTmLqTwszps78yx1_N0ZzvIHLdzM-MQNynUhkinRcXvM8nt34T3ct_QJf43nNieCr8mfYK5sGWdMUbsf7sML6GW2mURSkwd9kHzWrKF1j23ZW5SSiInKZHpIDqgkN9DRcixTdzQkVxsZyNAYuuGrsUc8RRiZ8LBHKgHNJxt9l4F8TDp71rdht2mjFLSJUwRyOZa4CNRUHnx4OIKlw67IXXIfBR0VYKuBhNjpxaKXUXgUTAom7OM_vVAV23W0P-C7tdtk0NSylIn51Dsfq2X4I4f7ase0vTZ8ZDMAbQdjh7JCzADn_c3fbyA3dn6JCpmrhXSWyj3sxOudTCaC55ljQiKngEgVz-cZ337RU6vz56ipF2F48VDIHMf9IUJL_z2_NBR1E2L_37RfgA__PF4E28bu_sY0stEyTWAOJUBc3Iwt7tb_5BJjbtZtDlT37KutXhjshjrPThn87qYFSH_eS0B1o0gbctFGzlGziNeC1CECm_5vCrwcKOryKXvNZXxhyqGtlJpUwKWjVfJuRYsMIFJKg7fcPZKA4cW8g6EG9YoLseDyvzeRFq01RWcNyXAMuM9cxd89f2tbdOSpWnqm4g-skuXVN_TKjezGzuRYH_FvHFiyTPKTJWZYG0nWaPyrkVLrmhFfz4vzkIAaMgCgSRAOuB9bfYPJ1HQsPkG4BysQkuLlugelQCBRE5Ue_wbQ7pywQ9YCcNuVqFi0-hl6BRzB8YY-cG3XqkK7eeQ6TJ3_bb5tNvNAelmrNaCwlb5YR51qOVvgAy4R7wlcwOZIbscftfgpTaAyDwnLtZRAJhhEob7dG5NhZhFjIXUqpznIlUkDB4T9rkRF29kQ8hyJeanRbEg99pHCJDormZpAWr56PeTUJbXgLp_rbL1C-98uU1VBHuJiwjTv1-EOpZXb1uvuis-9Nhge6o8RfGfDlHw3YHRSu9V1E_fIJanNMcjndu9650xg06kyeh.U1qhXDn4z-52HMbM-kszreUKQ4y26NkslCs5kCjWU0M",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-08-11 16:42:30 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:30 GMT"
}
response_body
{"sub":"8d2282d0-6c12-478c-af52-dfffde94c2c1","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"8d2282d0-6c12-478c-af52-dfffde94c2c1"}
2021-08-11 16:42:30 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:30 GMT"
}
status_code
{
  "code": 200
}
body
{"sub":"8d2282d0-6c12-478c-af52-dfffde94c2c1","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"8d2282d0-6c12-478c-af52-dfffde94c2c1"}
2021-08-11 16:42:30 SUCCESS
CheckIdTokenAuthTimeClaimPresentDueToMaxAge
auth_time is present in the id_token, as required for a authentication where the max_age parameter was used
id_token
{
  "at_hash": "_h1OzKG9rsIyU5zEOXGxkQ",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "6b9ab0c9-5744-4105-9612-74d435bf9569",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701350,
  "nonce": "hW8Ft8wJC2",
  "iat": 1628700150
}
Second authorization: Make request to authorization endpoint
2021-08-11 16:42:30 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
2021-08-11 16:42:30
CreateRandomStateValue
Created state value
requested_state_length
10
state
K8bNhFAqvf
2021-08-11 16:42:30 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
K8bNhFAqvf
2021-08-11 16:42:30
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
8n0BcEb85e
2021-08-11 16:42:30 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
K8bNhFAqvf
nonce
8n0BcEb85e
2021-08-11 16:42:30 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
K8bNhFAqvf
nonce
8n0BcEb85e
response_type
code id_token
2021-08-11 16:42:30 SUCCESS
AddMaxAge10000ToAuthorizationEndpointRequest
Added max_age=10000 to authorization endpoint request
client_id
test_hybrid
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
scope
openid
state
K8bNhFAqvf
nonce
8n0BcEb85e
response_type
code id_token
max_age
10000
2021-08-11 16:42:30 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://readyconnectsvc.readysignon.com/connect/authorize?client_id=test_hybrid&redirect_uri=https://www.certification.openid.net/test/a/RCProduction/callback&scope=openid&state=K8bNhFAqvf&nonce=8n0BcEb85e&response_type=code%20id_token&max_age=10000
2021-08-11 16:42:30 REDIRECT
oidcc-max-age-10000
Redirecting to authorization endpoint
redirect_to
https://readyconnectsvc.readysignon.com/connect/authorize?client_id=test_hybrid&redirect_uri=https://www.certification.openid.net/test/a/RCProduction/callback&scope=openid&state=K8bNhFAqvf&nonce=8n0BcEb85e&response_type=code%20id_token&max_age=10000
2021-08-11 16:42:32 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance m17TRKfeTeZ8p5s
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "dnt": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-11 16:42:32 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/7Tfd5B9rzycdQHBsdwRU",
  "fullUrl": "https://www.certification.openid.net/test/a/RCProduction/implicit/7Tfd5B9rzycdQHBsdwRU"
}
2021-08-11 16:42:32 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance m17TRKfeTeZ8p5s
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/RCProduction/implicit/7Tfd5B9rzycdQHBsdwRU, returnUrl=/log-detail.html?log=m17TRKfeTeZ8p5s}]
outgoing_path
callback
2021-08-11 16:42:32 INCOMING
oidcc-max-age-10000
Incoming HTTP request to test instance m17TRKfeTeZ8p5s
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "accept": "*/*",
  "dnt": "1",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/RCProduction/callback",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "1034",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/7Tfd5B9rzycdQHBsdwRU
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#code=Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w&state=K8bNhFAqvf
2021-08-11 16:42:32 OUTGOING
oidcc-max-age-10000
Response to HTTP request to test instance m17TRKfeTeZ8p5s
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/7Tfd5B9rzycdQHBsdwRU
2021-08-11 16:42:32
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "code",
    "value": "Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us"
  },
  {
    "name": "id_token",
    "value": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w"
  },
  {
    "name": "state",
    "value": "K8bNhFAqvf"
  }
]
2021-08-11 16:42:32 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
code
Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w
state
K8bNhFAqvf
2021-08-11 16:42:32 REDIRECT-IN
oidcc-max-age-10000
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "dnt": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://www.certification.openid.net/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d1021C78C13A3488867CE747782EEF247",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "code": "Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w",
  "state": "K8bNhFAqvf"
}
post_body
Second authorization: Verify authorization endpoint response
2021-08-11 16:42:32 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-08-11 16:42:32 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-08-11 16:42:32 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-08-11 16:42:32
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-08-11 16:42:32 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-08-11 16:42:32 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
K8bNhFAqvf
2021-08-11 16:42:32 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us
2021-08-11 16:42:32 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w
header
{
  "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
  "kid": "F30F54511354A03276BD5964394404969B850FD3",
  "typ": "JWT",
  "alg": "RS256"
}
claims
{
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "c_hash": "CucgYXyhNaEVhN-DD8QiLQ",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "48139bb5-18aa-4c24-9271-fe0c510a39b0",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701352,
  "nonce": "8n0BcEb85e",
  "iat": 1628700152
}
2021-08-11 16:42:32 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-11 16:42:32 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
8n0BcEb85e
2021-08-11 16:42:32 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-11 16:42:32 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w
2021-08-11 16:42:32 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJvaV9hdV9pZCI6ImUzNWE4NzEyLTJjZDgtNDAxMC1iNjhiLTk3ZTNjZGE5YTQ0OSIsImF1dGhfdGltZSI6MTYyODcwMDEyNywiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJjX2hhc2giOiJDdWNnWVh5aE5hRVZoTi1ERDhRaUxRIiwib2lfdGtuX2lkIjoiNDgxMzliYjUtMThhYS00YzI0LTkyNzEtZmUwYzUxMGEzOWIwIiwiYXVkIjoidGVzdF9oeWJyaWQiLCJleHAiOjE2Mjg3MDEzNTIsImlzcyI6Imh0dHBzOi8vcmVhZHljb25uZWN0c3ZjLnJlYWR5c2lnbm9uLmNvbS8iLCJpYXQiOjE2Mjg3MDAxNTJ9.hGnfqVyh4SEO8kM_br0Ll7zvepX1Qj_v_zOchLkirzG-pnRbWuYusYIfMCuMwcRiYw5nuLx5JD5kgfLpkOSA4HOf-4MJ7HmC7jjNU9RKomKT26KEc_8kGnu9OL392dAGFBDzUuIVrul6qDrFJbHCC9VdkP6yg7gCzZhQenTetaxR-q200F1mxmj8J-3DY4KEvZpA8S3UPYMPxw3jpqItxEmdBHISUT_NHbJoIex41frjUsJ-J03VGj-G6RX4B_R6V6KwJaJGUaRIE3lpIU1BspTE9UHSHL_poTGZwuaQHV_O1rmfclCQcT5A8tnX0mx1sDIY0zVo9BWywceAioJF5w
2021-08-11 16:42:32 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
8d2282d0-6c12-478c-af52-dfffde94c2c1
2021-08-11 16:42:32 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us
redirect_uri
https://www.certification.openid.net/test/a/RCProduction/callback
2021-08-11 16:42:32 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic dGVzdF9oeWJyaWQ6cmN0ZXN0c2VjcmV0
2021-08-11 16:42:32
CallTokenEndpoint
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/connect/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic dGVzdF9oeWJyaWQ6cmN0ZXN0c2VjcmV0",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "171"
}
request_body
grant_type=authorization_code&code=Jh58HOQ8EvZfKrWx5QNDbcTc2NaoBH_Gvhe7xxDm5Us&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2FRCProduction%2Fcallback
2021-08-11 16:42:33 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "cache-control": "no-store",
  "pragma": "no-cache",
  "content-type": "application/json;charset\u003dUTF-8",
  "expires": "Thu, 01 Jan 1970 00:00:00 GMT",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:32 GMT"
}
response_body
{
  "access_token": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q",
  "token_type": "Bearer",
  "expires_in": 3600,
  "scope": "openid",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA"
}
2021-08-11 16:42:33
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{
  "access_token": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q",
  "token_type": "Bearer",
  "expires_in": 3600,
  "scope": "openid",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA"
}
2021-08-11 16:42:33 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q
token_type
Bearer
expires_in
3600
scope
openid
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA
2021-08-11 16:42:33 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-11 16:42:33 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q
2021-08-11 16:42:33 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q
type
Bearer
2021-08-11 16:42:33 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
3600
2021-08-11 16:42:33 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
3600
2021-08-11 16:42:33 INFO
CheckForRefreshTokenValue
Couldn't find refresh token
2021-08-11 16:42:33 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA
header
{
  "x5t": "8w9UURNUoDJ2vVlkOUQElpuFD9M",
  "kid": "F30F54511354A03276BD5964394404969B850FD3",
  "typ": "JWT",
  "alg": "RS256"
}
claims
{
  "at_hash": "inngXSVvDyXZUS-GM8N0nA",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "b9662778-2f1e-4cbf-906a-9234cef319d2",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701353,
  "nonce": "8n0BcEb85e",
  "iat": 1628700153
}
2021-08-11 16:42:33 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-11 16:42:33 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
8n0BcEb85e
2021-08-11 16:42:33 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-11 16:42:33 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA
2021-08-11 16:42:33 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IkYzMEY1NDUxMTM1NEEwMzI3NkJENTk2NDM5NDQwNDk2OUI4NTBGRDMiLCJ4NXQiOiI4dzlVVVJOVW9ESjJ2VmxrT1VRRWxwdUZEOU0iLCJ0eXAiOiJKV1QifQ.eyJzdWIiOiI4ZDIyODJkMC02YzEyLTQ3OGMtYWY1Mi1kZmZmZGU5NGMyYzEiLCJhdXRoX3RpbWUiOjE2Mjg3MDAxMjcsIm9pX2F1X2lkIjoiZTM1YTg3MTItMmNkOC00MDEwLWI2OGItOTdlM2NkYTlhNDQ5IiwiYXpwIjoidGVzdF9oeWJyaWQiLCJub25jZSI6IjhuMEJjRWI4NWUiLCJhdF9oYXNoIjoiaW5uZ1hTVnZEeVhaVVMtR004TjBuQSIsIm9pX3Rrbl9pZCI6ImI5NjYyNzc4LTJmMWUtNGNiZi05MDZhLTkyMzRjZWYzMTlkMiIsImF1ZCI6InRlc3RfaHlicmlkIiwiZXhwIjoxNjI4NzAxMzUzLCJpc3MiOiJodHRwczovL3JlYWR5Y29ubmVjdHN2Yy5yZWFkeXNpZ25vbi5jb20vIiwiaWF0IjoxNjI4NzAwMTUzfQ.Uy9gy3agQIpSupkYc1J17c06DQGWp9joMeRuUeF5eQrAyJvNlqVcRIjrzP4pt33nkw0SHQnc6MjjDZ947MNxgqqcnx-bu_X1nlw9uPLfJplgW6y6uTGHsJ1ClSRNH_W36HIjlwv-yDJCfciTgznGjD9-GzjHbN-UQCkL3Dv63iTyTQ8w6T-jrWdXDZbnEp3Cu4ZtADJtBMM9qGMN7Rv2ab4XUzL3aMJ1Yh2WpVDJnvAD3kiBhsF6wlJWEGsU3_-WyjWvwwSNlJ82kT_mOYteXDf3uI5MU4lTxLkBiZ-YOi5O1DsAj__ddXhyb7Uj8KUU5gY6ZPalaMf4B9C--71EvA
2021-08-11 16:42:33 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
8d2282d0-6c12-478c-af52-dfffde94c2c1
2021-08-11 16:42:33 SUCCESS
VerifyIdTokenSubConsistentHybridFlow
authorization endpoint and token endpoint id_token have same sub
sub_auth_endpoint
8d2282d0-6c12-478c-af52-dfffde94c2c1
sub_token_endpoint
8d2282d0-6c12-478c-af52-dfffde94c2c1
Second authorization: Userinfo endpoint tests
2021-08-11 16:42:33
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://readyconnectsvc.readysignon.com/connect/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZDQkMtSFM1MTIiLCJraWQiOiJGOTI1NjZCM0M4NDkyNzhDODhFMzA4NUQ2N0UzNDZGMTVFQTAzMzRBIiwidHlwIjoiYXQrand0In0.h-hj9je4bU9uJ8mK_pntxcOC1l6UqrHLKticjVCPj9HLWk9UTZTtWrMjQd-H6wE84U5RO04rp1a23D92-rvJ43mlfbYFB68KJVKVjAlivdYwVgIhR7C9aJT0QMNS86vQlNjw-FUHOeEiDvdFGCEfg60dmlWlR_Yeboq50CLW2L5M1MGaD9p_DM5E2oXONc_k6GxKSTMG-QjBs9pVFdNs9GL725YO8J01sTLqQPeHMlHaE6Gh2heRC3s9nXVllJQnS6VqsTr4lXZsOZqPvbBnYp1SEN-uLoL9krGDdxHJ57kGXdPvmPSMX2FOOPIvYmzAtvH4nvzq1zsXQgyVapTU2Q.j6Tysr4JMom1nz6K-_i6PA.FWVbPStcy-vfXTPKfgqT5Mr60iAAQ3VnnDWf7cDYbVCJLg-5vphgovmvUj43b6HfS1_xsVxla4U58hGsE3ETOBP8zZngpDpaT3FszsNR1Jelii3j65bo9V-rhOdzh30m97CbcsTlW2csH0n5IJw6R0P7pfPSVsmq7HRHd_xDVInx1w4NVmelnPaSQgeaE8d1UIp3JJBC7Kg1jMjjaHaFXrBwZRwxYfB1EU8CyAMHWxYsozAScfxzpQfwr_Tm5jqfjrnFWMS7oh4ZGaAekOaAltbGLlL9PlB_UAt-p2vwliqGdm_1SZNULvbrYuPPc6ih8vfswSopfrGvMIn8Oj65pqo0Rs_q12dE6xJ-Y9CmGBQvrudzcvviFy2jrVeJL4kC5FuXe6jwwBsIo37z_MTQE3k4UHVSUak_R4tAfVJpygCp232tBAikBuhOd0_lBns4BJR16dGnK8tbdL2rmaj_D0RziZBGDuNq-Mnr8IdjOf8awZOuna58AqX3b-klsfIEVX_Vpkq-P-jYhNVo0n36kCTFAcnBD8OQhN_mbHEkwrX9ZYu4MV72Bc-qfU5Seice1YkdsmRVonDZW2GVTFahtZESaYzrq_hgzr_oNDBdG7xFnFlvYYLPDuMUXXG_hYw0xzVWd-n76XCEE76i4yKLD8CuTUV16rrE95KosOxjUJJhdbl1PG0zLQ7nUKZ8DKcU-ni0hlieWSYd0HTeC6mnp3x5zk6QTUhJKuD7--OvlIQaCdj23uMQMPCeknFPS9dIdZkjBXZ2CFBCeRxerS3EJkWQn7jTHpqo4jxvyuaJDiVnWg3sEnM3K32zjVtTYelMVsE5Q7McMvE9OTokruiKJu6MVPSHwKhRS5yO_tKUFEhJnOXPpzzlZTwj7RPiXLzpu-LV-ClJlLbyWi0BK6i1oMAGNQ0HEqVyoEGeBp22V5L5tay9Xvha1Y6cI8-ir0Ca3hl0_hjLgJCdzb5iW2qtGXpMKgcZ_VZOF6J5Wq5vKcTpN-ZettsY-s1W8A_0LFsX9puuyoOR5AjP4dyTGq7vNeFKEf3ZelBdBpUw_WFs2fS8oJP0ejGXrNmukMdG4Z8lBQ4U2hDT4XHi1dy8-_mrz6u7MLBOOQiUJhiG6-BoLtSTsjgbTt3vq-3fLI6iZvdFlvtTGXqiwkNtP5acB91xkEXPDM3ea-Y4LU0iXRHNvM9NCsrTkgE1HD2mw8L3zY_QgtOX-nQmkdEsDPrU6bq4odSiSPXCSk8uvbcimYdIl6601IvFzNb6TLaX0pCXKM5HOypjaDGYqBDu5ZJepPu3MjXoGaoumPWnlQ5zdJCgx915752cbjYSUq8y4Rfz1DTitVdR1FmZuA_hjhmEkEdJDJMNFlgh3U5X9TO3wAR87UUJAe_3TXyoH8Rb9NcALPGv.xCDxpPejJVEKPUhKLHVjYGlccnJbsZXFWsRooULTq6Q",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-08-11 16:42:33 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:32 GMT"
}
response_body
{"sub":"8d2282d0-6c12-478c-af52-dfffde94c2c1","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"8d2282d0-6c12-478c-af52-dfffde94c2c1"}
2021-08-11 16:42:33 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "vary": "Accept-Encoding",
  "server": "Microsoft-IIS/10.0",
  "x-powered-by": "ASP.NET",
  "date": "Wed, 11 Aug 2021 16:42:32 GMT"
}
status_code
{
  "code": 200
}
body
{"sub":"8d2282d0-6c12-478c-af52-dfffde94c2c1","http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier":"8d2282d0-6c12-478c-af52-dfffde94c2c1"}
2021-08-11 16:42:33 SUCCESS
CheckIdTokenAuthTimeClaimPresentDueToMaxAge
auth_time is present in the id_token, as required for a authentication where the max_age parameter was used
id_token
{
  "at_hash": "inngXSVvDyXZUS-GM8N0nA",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "b9662778-2f1e-4cbf-906a-9234cef319d2",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701353,
  "nonce": "8n0BcEb85e",
  "iat": 1628700153
}
2021-08-11 16:42:33 SUCCESS
CheckIdTokenAuthTimeClaimsSameIfPresent
auth_time is the same in the second id_token
first_id_token
{
  "at_hash": "_h1OzKG9rsIyU5zEOXGxkQ",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "6b9ab0c9-5744-4105-9612-74d435bf9569",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701350,
  "nonce": "hW8Ft8wJC2",
  "iat": 1628700150
}
second_id_token
{
  "at_hash": "inngXSVvDyXZUS-GM8N0nA",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "b9662778-2f1e-4cbf-906a-9234cef319d2",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701353,
  "nonce": "8n0BcEb85e",
  "iat": 1628700153
}
2021-08-11 16:42:33 SUCCESS
CheckIdTokenSubConsistentForSecondAuthorization
sub is the same in the second id_token
first_id_token
{
  "at_hash": "_h1OzKG9rsIyU5zEOXGxkQ",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "6b9ab0c9-5744-4105-9612-74d435bf9569",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701350,
  "nonce": "hW8Ft8wJC2",
  "iat": 1628700150
}
second_id_token
{
  "at_hash": "inngXSVvDyXZUS-GM8N0nA",
  "sub": "8d2282d0-6c12-478c-af52-dfffde94c2c1",
  "aud": "test_hybrid",
  "azp": "test_hybrid",
  "auth_time": 1628700127,
  "oi_tkn_id": "b9662778-2f1e-4cbf-906a-9234cef319d2",
  "iss": "https://readyconnectsvc.readysignon.com/",
  "oi_au_id": "e35a8712-2cd8-4010-b68b-97e3cda9a449",
  "exp": 1628701353,
  "nonce": "8n0BcEb85e",
  "iat": 1628700153
}
2021-08-11 16:42:33 FINISHED
oidcc-max-age-10000
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2021-08-11 16:42:33 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2021-08-11 16:42:35
TEST-RUNNER
Alias has now been claimed by another test
alias
RCProduction
new_test_id
PiVq6avjZ4KfIb3
Test Results