Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-09-11 14:01:43 INFO
TEST-RUNNER
Test instance 6GsVdMeVlSVAScg created
baseUrl
https://www.certification.openid.net/test/a/idpy
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code id_token token",
  "server_metadata": "discovery",
  "response_mode": "form_post",
  "client_registration": "dynamic_client"
}
alias
idpy
description
oidcop
planId
Okm8cBmJjyOxE
config
{
  "alias": "idpy",
  "description": "oidcop",
  "server": {
    "discoveryUrl": "https://89.45.234.133:4000/.well-known/openid-configuration",
    "login_hint": "roland@89.45.234.133:4000"
  },
  "client2": {
    "client_name": "Anything"
  }
}
testName
oidcc-refresh-token
2021-09-11 14:01:43 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-11 14:01:43
GetDynamicServerConfiguration
HTTP request
request_uri
https://89.45.234.133:4000/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:01:44 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3598",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:44 GMT"
}
response_body
{"version": "3.0", "token_endpoint_auth_methods_supported": ["client_secret_post", "client_secret_basic", "client_secret_jwt", "private_key_jwt"], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": true, "grant_types_supported": ["authorization_code", "implicit", "urn:ietf:params:oauth:grant-type:jwt-bearer", "refresh_token"], "subject_types_supported": ["public", "pairwise"], "registration_endpoint": "https://89.45.234.133:4000/registration", "introspection_endpoint": "https://89.45.234.133:4000/introspection", "response_types_supported": ["code", "token", "id_token", "code token", "code id_token", "id_token token", "code id_token token", "none"], "response_modes_supported": ["query", "fragment", "form_post"], "request_object_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "request_object_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "request_object_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "claim_types_supported": ["normal", "aggregated", "distributed"], "authorization_endpoint": "https://89.45.234.133:4000/authorization", "token_endpoint_auth_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "token_endpoint": "https://89.45.234.133:4000/token", "userinfo_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "userinfo_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "userinfo_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "client_authn_method": ["bearer_header", "bearer_body"], "userinfo_endpoint": "https://89.45.234.133:4000/userinfo", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true, "backchannel_logout_supported": true, "backchannel_logout_session_supported": true, "check_session_iframe": "https://89.45.234.133:4000/check_session_iframe", "end_session_endpoint": "https://89.45.234.133:4000/session", "issuer": "https://89.45.234.133:4000", "acr_values_supported": ["urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"], "jwks_uri": "https://89.45.234.133:4000/static/jwks.json", "scopes_supported": ["profile", "email", "offline_access", "research_and_scholarship", "openid", "phone", "address"], "claims_supported": ["updated_at", "preferred_username", "given_name", "phone_number_verified", "email", "birthdate", "picture", "zoneinfo", "email_verified", "phone_number", "sub", "name", "family_name", "middle_name", "address", "eduperson_scoped_affiliation", "nickname", "website", "profile", "gender", "iss", "locale"], "id_token_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "id_token_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "id_token_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"]}
2021-09-11 14:01:44
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"version": "3.0", "token_endpoint_auth_methods_supported": ["client_secret_post", "client_secret_basic", "client_secret_jwt", "private_key_jwt"], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": true, "grant_types_supported": ["authorization_code", "implicit", "urn:ietf:params:oauth:grant-type:jwt-bearer", "refresh_token"], "subject_types_supported": ["public", "pairwise"], "registration_endpoint": "https://89.45.234.133:4000/registration", "introspection_endpoint": "https://89.45.234.133:4000/introspection", "response_types_supported": ["code", "token", "id_token", "code token", "code id_token", "id_token token", "code id_token token", "none"], "response_modes_supported": ["query", "fragment", "form_post"], "request_object_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "request_object_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "request_object_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "claim_types_supported": ["normal", "aggregated", "distributed"], "authorization_endpoint": "https://89.45.234.133:4000/authorization", "token_endpoint_auth_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "token_endpoint": "https://89.45.234.133:4000/token", "userinfo_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "userinfo_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "userinfo_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "client_authn_method": ["bearer_header", "bearer_body"], "userinfo_endpoint": "https://89.45.234.133:4000/userinfo", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true, "backchannel_logout_supported": true, "backchannel_logout_session_supported": true, "check_session_iframe": "https://89.45.234.133:4000/check_session_iframe", "end_session_endpoint": "https://89.45.234.133:4000/session", "issuer": "https://89.45.234.133:4000", "acr_values_supported": ["urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"], "jwks_uri": "https://89.45.234.133:4000/static/jwks.json", "scopes_supported": ["profile", "email", "offline_access", "research_and_scholarship", "openid", "phone", "address"], "claims_supported": ["updated_at", "preferred_username", "given_name", "phone_number_verified", "email", "birthdate", "picture", "zoneinfo", "email_verified", "phone_number", "sub", "name", "family_name", "middle_name", "address", "eduperson_scoped_affiliation", "nickname", "website", "profile", "gender", "iss", "locale"], "id_token_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "id_token_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "id_token_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"]}
2021-09-11 14:01:44 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
version
3.0
token_endpoint_auth_methods_supported
[
  "client_secret_post",
  "client_secret_basic",
  "client_secret_jwt",
  "private_key_jwt"
]
claims_parameter_supported
true
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
grant_types_supported
[
  "authorization_code",
  "implicit",
  "urn:ietf:params:oauth:grant-type:jwt-bearer",
  "refresh_token"
]
subject_types_supported
[
  "public",
  "pairwise"
]
registration_endpoint
https://89.45.234.133:4000/registration
introspection_endpoint
https://89.45.234.133:4000/introspection
response_types_supported
[
  "code",
  "token",
  "id_token",
  "code token",
  "code id_token",
  "id_token token",
  "code id_token token",
  "none"
]
response_modes_supported
[
  "query",
  "fragment",
  "form_post"
]
request_object_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
request_object_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
request_object_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
claim_types_supported
[
  "normal",
  "aggregated",
  "distributed"
]
authorization_endpoint
https://89.45.234.133:4000/authorization
token_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
token_endpoint
https://89.45.234.133:4000/token
userinfo_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
userinfo_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
userinfo_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
client_authn_method
[
  "bearer_header",
  "bearer_body"
]
userinfo_endpoint
https://89.45.234.133:4000/userinfo
frontchannel_logout_supported
true
frontchannel_logout_session_supported
true
backchannel_logout_supported
true
backchannel_logout_session_supported
true
check_session_iframe
https://89.45.234.133:4000/check_session_iframe
end_session_endpoint
https://89.45.234.133:4000/session
issuer
https://89.45.234.133:4000
acr_values_supported
[
  "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"
]
jwks_uri
https://89.45.234.133:4000/static/jwks.json
scopes_supported
[
  "profile",
  "email",
  "offline_access",
  "research_and_scholarship",
  "openid",
  "phone",
  "address"
]
claims_supported
[
  "updated_at",
  "preferred_username",
  "given_name",
  "phone_number_verified",
  "email",
  "birthdate",
  "picture",
  "zoneinfo",
  "email_verified",
  "phone_number",
  "sub",
  "name",
  "family_name",
  "middle_name",
  "address",
  "eduperson_scoped_affiliation",
  "nickname",
  "website",
  "profile",
  "gender",
  "iss",
  "locale"
]
id_token_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
id_token_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
2021-09-11 14:01:44 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-09-11 14:01:44 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
authorization_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
token_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
userinfo_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
2021-09-11 14:01:44
FetchServerKeys
Fetching server key
jwks_uri
https://89.45.234.133:4000/static/jwks.json
2021-09-11 14:01:44
FetchServerKeys
HTTP request
request_uri
https://89.45.234.133:4000/static/jwks.json
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:01:44 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-length": "691",
  "content-type": "application/json",
  "last-modified": "Sat, 11 Sep 2021 13:55:42 GMT",
  "cache-control": "public, max-age\u003d43200",
  "expires": "Sun, 12 Sep 2021 02:01:44 GMT",
  "etag": "\"1631368542.8061247-691-3956740992\"",
  "date": "Sat, 11 Sep 2021 14:01:44 GMT",
  "server": "Werkzeug/1.0.1 Python/3.8.10"
}
response_body
{"keys": [{"kty": "RSA", "use": "sig", "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ", "e": "AQAB", "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"}, {"kty": "EC", "use": "sig", "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA", "crv": "P-256", "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w", "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"}]}
2021-09-11 14:01:44
FetchServerKeys
Found JWK set string
jwk_string
{"keys": [{"kty": "RSA", "use": "sig", "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ", "e": "AQAB", "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"}, {"kty": "EC", "use": "sig", "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA", "crv": "P-256", "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w", "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"}]}
2021-09-11 14:01:44 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
      "e": "AQAB",
      "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA",
      "crv": "P-256",
      "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w",
      "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"
    }
  ]
}
2021-09-11 14:01:44 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
      "e": "AQAB",
      "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA",
      "crv": "P-256",
      "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w",
      "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"
    }
  ]
}
2021-09-11 14:01:44 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-09-11 14:01:44 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-09-11 14:01:44 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-09-11 14:01:44 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-09-11 14:01:44
StoreOriginalClientConfiguration
No client details on configuration, created an empty original_client_config object.
2021-09-11 14:01:44
ExtractClientNameFromStoredConfig
Extracted client_name from stored client configuration.
client_name
2021-09-11 14:01:44 SUCCESS
GenerateRS256ClientJWKs
Generated client JWKs
client_jwks
{
  "keys": [
    {
      "p": "t_qWcvIQCw2vE07l1WwbtSkDjrBTExl5Ozlvs3A2sbCyKekZ2YF7-RcQCgRVCgASqoIDkg3uNxUnu-c4rTnqnJfp8d0JxTb2zul3SFddRMhZILLCcNMrMoe3vRQBWUY_IvNiIMVyZ6DKqsp2cHxC9oWSXM5V6nRLHw9nLM0Ilf0",
      "kty": "RSA",
      "q": "tE-v7j8VKIE-WmKVDWkLzDUdcNYjc7nbj-disZAbsW6nUay2ywtnMNCz9J7VSlRo9bB-7cWAAyub9qhS2nTo7B3p9ezZsJv1dES56PUz5tLAzkDkNFkRI5eci4_DcgQH_m7kLSgtIvCsTnpkAdrVVlYxa3RtCtrkF4zfOTCyg2M",
      "d": "czQFqTByJnlpMJcDY6Ob8OQb5dmN6lUUCGzsnyjExOMqrXSghbz1qbRnPVFEgWioYcZfBaDzJ-oGoBGDaDF3vW1pY4ctgGq2c0VMYAqDyUcGIsKkLSDYrTDc7t_ee621hh7yFLKf4w0wqjJ3iqk85R6Tr65-gIb13bTsbKQHO1kt3mLl3qx-yq-kXxnRBVnV5GgztTMTTX-22xfLrdoq2nEQzUuU8JPY_IZV4zkqMxwjk0cNmMAJ2FoSnWWbuaoWBySjy74Nst9kCkttlRwWn-3B0aMV7SRBdgyhEDZuYJHlhRgc92BezvqJbp6T0ZYKcsW53EgisrdpRij_JlN_QQ",
      "e": "AQAB",
      "use": "sig",
      "qi": "dPLNMhVP1F8fNQnMMviR-_QnSq8dBNdXvFxVq_Vjg8D1-o1QDzkotzF0oaRlPNm-pEbCBQaHBX_WIB6LdDlEs0NdskTWahBOyjeHOQ1WmTU__qsUjkqzBzC5xYr8j6Wo7_P21ZK0L2IQFY8o6Umt900YfCW2IdGXGTlSFCbV0Ag",
      "dp": "P1NzwbDsMMHPB1ha5_FEQEETxmOO1L4p6mbEugDf8p2dVau0iBd3sq9rh-ch1kVcJ3CFBhrhafhQKu9VpNqQlMH9dpDcshNPNL1Ln4ziv7AubYDaSLeG4OeyKNTf-fih9sfLePg9fsnruInj5qf-7JfhXyxuijrpOJG2s8cHM4k",
      "alg": "RS256",
      "dq": "cJXlOzTmaDEzFsrBWOtDc5GivWboIgVl5BfNVyOtNv_pt6TJSkTnfOKDyvU2JsBH_UjkKGEOimw7aSs2-LLREUWoZWcrkgv_mkajcqNQcgscWmzIUStf-UJcfAQbPGDqAOOK0-tnK47td98R_NqAJPWSzA6ZW5LLoyzR4OrYPBM",
      "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "alg": "RS256",
      "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
    }
  ]
}
2021-09-11 14:01:44 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-09-11 14:01:44
CreateEmptyDynamicRegistrationRequest
Created empty dynamic registration request
2021-09-11 14:01:44
AddClientNameToDynamicRegistrationRequest
Added client_name to registration request
client_name
OIDF Conformance Test 6GsVdMeVlSVAScg
2021-09-11 14:01:44
AddAuthorizationCodeGrantTypeToDynamicRegistrationRequest
Added 'authorization_code' to 'grant_types'
grant_types
[
  "authorization_code"
]
2021-09-11 14:01:44
AddImplicitGrantTypeToDynamicRegistrationRequest
Added 'implicit' to 'grant_types'
grant_types
[
  "authorization_code",
  "implicit"
]
2021-09-11 14:01:44
AddPublicJwksToDynamicRegistrationRequest
Added client public JWKS to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  }
}
2021-09-11 14:01:44
AddTokenEndpointAuthMethodToDynamicRegistrationRequestFromEnvironment
Added token endpoint auth method to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic"
}
2021-09-11 14:01:44
AddResponseTypesArrayToDynamicRegistrationRequestFromEnvironment
Added response_types array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ]
}
2021-09-11 14:01:44
AddRedirectUriToDynamicRegistrationRequest
Added redirect_uris array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-11 14:01:44
AddContactsToDynamicRegistrationRequest
Added contacts array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ]
}
2021-09-11 14:01:44
AddRefreshTokenGrantTypeToDynamicRegistrationRequest
Added 'refresh_token' to 'grant_types'
grant_types
[
  "authorization_code",
  "implicit",
  "refresh_token"
]
2021-09-11 14:01:44
CallDynamicRegistrationEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/registration
request_method
POST
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "content-type": "application/json",
  "content-length": "745"
}
request_body
{"client_name":"OIDF Conformance Test 6GsVdMeVlSVAScg","grant_types":["authorization_code","implicit","refresh_token"],"jwks":{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","alg":"RS256","n":"gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"}]},"token_endpoint_auth_method":"client_secret_basic","response_types":["code id_token token"],"redirect_uris":["https://www.certification.openid.net/test/a/idpy/callback"],"contacts":["certification@oidf.org"]}
2021-09-11 14:01:45 RESPONSE
CallDynamicRegistrationEndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
CREATED
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1157",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1631368905|SIsOLKSA/0FBRUPi|dYlnU6slmPy5QnRKO5BMu52yxnzEto0Lg3GGFeuGnacKRu5u5KuI7o0m6v5HQCQJe/4pPMm75pxu6KyTZAQNLePow5Wpm6Slj8nVI35hvzjcJga/s3ZxrXzlusYHJREd+j9Lbh3J1U8\u003d|25aF7McyCRqz+V98JrpyHw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:45 GMT"
}
response_body
{"client_id": "lzPsFELNZE0k2yjIZ_-NBw", "registration_access_token": "G-k9TuscLJ2kBXJG5V3pCVIipi43jgfMh_yI5JrfWCA", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=lzPsFELNZE0k2yjIZ_-NBw", "client_id_issued_at": 1631368905, "client_secret": "f8691e09e0e185734a66179df5f9699a625e3e4db8ee49adb64c9182", "client_secret_expires_at": 1633960905, "application_type": "web", "response_types": ["code id_token token"], "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg", "grant_types": ["authorization_code", "implicit", "refresh_token"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
2021-09-11 14:01:45
CallDynamicRegistrationEndpoint
Parsed registration endpoint response
status
201
endpoint_name
dynamic registration
headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1157",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1631368905|SIsOLKSA/0FBRUPi|dYlnU6slmPy5QnRKO5BMu52yxnzEto0Lg3GGFeuGnacKRu5u5KuI7o0m6v5HQCQJe/4pPMm75pxu6KyTZAQNLePow5Wpm6Slj8nVI35hvzjcJga/s3ZxrXzlusYHJREd+j9Lbh3J1U8\u003d|25aF7McyCRqz+V98JrpyHw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:45 GMT"
}
body
{"client_id": "lzPsFELNZE0k2yjIZ_-NBw", "registration_access_token": "G-k9TuscLJ2kBXJG5V3pCVIipi43jgfMh_yI5JrfWCA", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=lzPsFELNZE0k2yjIZ_-NBw", "client_id_issued_at": 1631368905, "client_secret": "f8691e09e0e185734a66179df5f9699a625e3e4db8ee49adb64c9182", "client_secret_expires_at": 1633960905, "application_type": "web", "response_types": ["code id_token token"], "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg", "grant_types": ["authorization_code", "implicit", "refresh_token"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
body_json
{
  "client_id": "lzPsFELNZE0k2yjIZ_-NBw",
  "registration_access_token": "G-k9TuscLJ2kBXJG5V3pCVIipi43jgfMh_yI5JrfWCA",
  "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id\u003dlzPsFELNZE0k2yjIZ_-NBw",
  "client_id_issued_at": 1631368905,
  "client_secret": "f8691e09e0e185734a66179df5f9699a625e3e4db8ee49adb64c9182",
  "client_secret_expires_at": 1633960905,
  "application_type": "web",
  "response_types": [
    "code id_token token"
  ],
  "client_name": "OIDF Conformance Test 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit",
    "refresh_token"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "alg": "RS256",
        "n": "gZV2jMTSTL-1YnT_cwHucdEqZmG8CUr38Im9wnC1k4-WVz14FYA-UNHaC5ES0TPRybjt80aD2k5y_GpPV4K5Tsto7YxuH8_fyx19VZ8SeHj8JCxR5jjCF3O5arzQ6gOpMgngzXB3U0IiVtXKxQ5o4aU1zrqR8KDOSGMHJHPxX-7DdgpcjxzTEScSJ__BQqkDc4_u40ErruTA12wIBKvHEz1pcMAqxcyaolc3Bn7-yveqY2pa2MxWIQF4PnRD8eswWQHlHm7odAoQrUIibs-UICElm57yAzCODoTbjecqOhMieBe0P6cFNHZ7wIwkcqA1jq5KZW220xPrRceraPx31w"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "contacts": [
    "certification@oidf.org"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-11 14:01:45 SUCCESS
EnsureContentTypeJson
endpoint_response Content-Type: header is application/json
2021-09-11 14:01:45 SUCCESS
EnsureHttpStatusCodeIs201
dynamic registration endpoint returned the expected http status
http_status
201
2021-09-11 14:01:45 SUCCESS
CheckNoErrorFromDynamicRegistrationEndpoint
Dynamic registration endpoint did not return an error.
2021-09-11 14:01:45 SUCCESS
ExtractDynamicRegistrationResponse
Extracted client from dynamic registration response
client_id
lzPsFELNZE0k2yjIZ_-NBw
2021-09-11 14:01:45 SUCCESS
ExtractClientManagementCredentials
Extracted dynamic registration management credentials
registration_client_uri
https://89.45.234.133:4000/registration_api?client_id=lzPsFELNZE0k2yjIZ_-NBw
registration_access_token
G-k9TuscLJ2kBXJG5V3pCVIipi43jgfMh_yI5JrfWCA
2021-09-11 14:01:45
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-09-11 14:01:45
SetScopeInClientConfigurationToOpenIdOfflineAccessIfServerSupportsOfflineAccess
Set scope in client configuration to "openid offline_access"as 'scope_supported' contains 'offline_access'
scope
openid offline_access
2021-09-11 14:01:45 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_post",
  "client_secret_basic",
  "client_secret_jwt",
  "private_key_jwt"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-09-11 14:01:45
StoreOriginalClient2Configuration
Found a original_client_config object
client_name
Anything
2021-09-11 14:01:45
ExtractClientNameFromStoredConfig
Extracted client_name from stored client configuration.
client_name
Anything
2021-09-11 14:01:45 SUCCESS
GenerateRS256ClientJWKs
Generated client JWKs
client_jwks
{
  "keys": [
    {
      "p": "6BmXzuzsfnl7vP0vFf148FkhlUegDkglYZ2GZs5YqaGWfw59ZaghJIPJE-3eKBHgp3UP7PdRcJrVICK4lNcIPiFg70oq4aF7maJx0bp9ZexJ1lbEWMfoYmJ-SHO5HMqPeq-LS_ROa0zfcFIeEpI-kfr7dxHjaou8v-YQZSUAYQk",
      "kty": "RSA",
      "q": "nEi7fv2k1uxBVhQd8vhiue2rvhFalZjuVm_rixeWTgTaYBAHfMl9sD0JIjlMf-x-Wmy8F7Hl6RV346RswAUNRtG3Q6YYl0j5aM3mB7fcyNxV6-8jP4P4ziuHevlaKB38t4apk6JOyt9K644RiLN-34LdhevqkyYbbf4qNC9LRBk",
      "d": "JycAkn_IpUhZaJXCZ9LkDOY30irwtXhMSv1dm7g2C8LubFT3lXxLjTgORQLZnD82DuUcYrLuUB9vNOWBAVDv4WcTrh16HPu733mob0xh8XA_ssxohfC5W_wBLkQ-P-WqITNVDxyAhcsBW241_UhxicFm3fTP8K_tvt8pXooTakByClKJuMadGmOuWxSeJXtPxWbIFgtsQCgWR7-RLH7CjhVqghfb77fRwuu6bMJ0Ft1EMK0pV5jAzj4LQzefUA1fr71G3G7K1tSlXN9ti9yI9Y0zPxHKpUvvg8ujBSKaajP9eToqO2jNUCV_QXG7_80zue1m68EPUVCrQWCgS7hlwQ",
      "e": "AQAB",
      "use": "sig",
      "qi": "4RR5PTiWnyoGr_jghnyFX_TXlKyTk3W3AaE-kwv7i0NvQcwVnCQo4Y6PI3cGCjU-PpDJE58_2jLjOJ22B8IyhVZCaYlgjWDpVHNM9kYFaMkNe_rdDSYHVYCKQOsgem5zkW6a9ZOWaoadvusz10vAf7xyCeCuVthO2cpAhsmuuM0",
      "dp": "JNMasOwKQa7IoR2SgOysaYXavDKXBG0R8UDq-Bi5HIDUvefwoVZhm8eE-bJ90uGzQR5jnndG5pTKR8T6gDL1zdXB6XVdBFt4ntGVOW9bQfaRaH5vvJ5LEoEKBDjIH_dLeG2trile38tckBeXSd8GKmclyqh96oOtOM0pwMJ0IvE",
      "alg": "RS256",
      "dq": "ZIhtBF3Joe_Mf8DlGx0o9Q2sgtHLAZylBLluPcVojLuWdmEZT-6Vib9ZlshhK5FIHob_4AYyLWQAAVIOGt-lEL9rMnswKnFo70A0Dxb5UcRbCTCF7h_I92cM-dBZbKENpklb4HpyURKesTRslxFQNhuKwNFnzkyfLHxpTbR2qFE",
      "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "alg": "RS256",
      "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
    }
  ]
}
2021-09-11 14:01:45 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-09-11 14:01:45
CreateEmptyDynamicRegistrationRequest
Created empty dynamic registration request
2021-09-11 14:01:45
AddClientNameToDynamicRegistrationRequest
Added client_name to registration request
client_name
Anything 6GsVdMeVlSVAScg
2021-09-11 14:01:45
AddAuthorizationCodeGrantTypeToDynamicRegistrationRequest
Added 'authorization_code' to 'grant_types'
grant_types
[
  "authorization_code"
]
2021-09-11 14:01:45
AddImplicitGrantTypeToDynamicRegistrationRequest
Added 'implicit' to 'grant_types'
grant_types
[
  "authorization_code",
  "implicit"
]
2021-09-11 14:01:45
AddPublicJwksToDynamicRegistrationRequest
Added client public JWKS to dynamic registration request
dynamic_registration_request
{
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  }
}
2021-09-11 14:01:45
AddTokenEndpointAuthMethodToDynamicRegistrationRequestFromEnvironment
Added token endpoint auth method to dynamic registration request
dynamic_registration_request
{
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic"
}
2021-09-11 14:01:45
AddResponseTypesArrayToDynamicRegistrationRequestFromEnvironment
Added response_types array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ]
}
2021-09-11 14:01:45
AddRedirectUriToDynamicRegistrationRequest
Added redirect_uris array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-11 14:01:45
AddContactsToDynamicRegistrationRequest
Added contacts array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code id_token token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ]
}
2021-09-11 14:01:45
AddRefreshTokenGrantTypeToDynamicRegistrationRequest
Added 'refresh_token' to 'grant_types'
grant_types
[
  "authorization_code",
  "implicit",
  "refresh_token"
]
2021-09-11 14:01:45
CallDynamicRegistrationEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/registration
request_method
POST
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "content-type": "application/json",
  "content-length": "732"
}
request_body
{"client_name":"Anything 6GsVdMeVlSVAScg","grant_types":["authorization_code","implicit","refresh_token"],"jwks":{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","alg":"RS256","n":"jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"}]},"token_endpoint_auth_method":"client_secret_basic","response_types":["code id_token token"],"redirect_uris":["https://www.certification.openid.net/test/a/idpy/callback"],"contacts":["certification@oidf.org"]}
2021-09-11 14:01:45 RESPONSE
CallDynamicRegistrationEndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
CREATED
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1144",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1631368905|kNA3KSYdcE1b5MRg|VlTGyWrHvs+10dOo/xvsAk6610ODHyn0Eo7Ay8AcX6Rk7QMw4H71J7kN+0YgYZz4kvoAfriOnDc+hfJwTzuVcQzZy/U+fQas4lPIrXjcRXO+qjHvh+B4X5m7SFAuXtHw4PDQ9l0zopw\u003d|+Ptn461bKQK77B/QWqpjbw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:45 GMT"
}
response_body
{"client_id": "QsrFvuHjqHoJQF37Pc89wg", "registration_access_token": "tgqOp3OORS3c0xeyp1Tc2I0q8WTtkM9itfgrIQNM3gs", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=QsrFvuHjqHoJQF37Pc89wg", "client_id_issued_at": 1631368905, "client_secret": "e06583e0e2d944504b2864f9a6b28926fbb0faceafcde0b6bfcd6b0e", "client_secret_expires_at": 1633960905, "application_type": "web", "response_types": ["code id_token token"], "client_name": "Anything 6GsVdMeVlSVAScg", "grant_types": ["authorization_code", "implicit", "refresh_token"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
2021-09-11 14:01:45
CallDynamicRegistrationEndpoint
Parsed registration endpoint response
status
201
endpoint_name
dynamic registration
headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1144",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1631368905|kNA3KSYdcE1b5MRg|VlTGyWrHvs+10dOo/xvsAk6610ODHyn0Eo7Ay8AcX6Rk7QMw4H71J7kN+0YgYZz4kvoAfriOnDc+hfJwTzuVcQzZy/U+fQas4lPIrXjcRXO+qjHvh+B4X5m7SFAuXtHw4PDQ9l0zopw\u003d|+Ptn461bKQK77B/QWqpjbw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:45 GMT"
}
body
{"client_id": "QsrFvuHjqHoJQF37Pc89wg", "registration_access_token": "tgqOp3OORS3c0xeyp1Tc2I0q8WTtkM9itfgrIQNM3gs", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=QsrFvuHjqHoJQF37Pc89wg", "client_id_issued_at": 1631368905, "client_secret": "e06583e0e2d944504b2864f9a6b28926fbb0faceafcde0b6bfcd6b0e", "client_secret_expires_at": 1633960905, "application_type": "web", "response_types": ["code id_token token"], "client_name": "Anything 6GsVdMeVlSVAScg", "grant_types": ["authorization_code", "implicit", "refresh_token"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
body_json
{
  "client_id": "QsrFvuHjqHoJQF37Pc89wg",
  "registration_access_token": "tgqOp3OORS3c0xeyp1Tc2I0q8WTtkM9itfgrIQNM3gs",
  "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id\u003dQsrFvuHjqHoJQF37Pc89wg",
  "client_id_issued_at": 1631368905,
  "client_secret": "e06583e0e2d944504b2864f9a6b28926fbb0faceafcde0b6bfcd6b0e",
  "client_secret_expires_at": 1633960905,
  "application_type": "web",
  "response_types": [
    "code id_token token"
  ],
  "client_name": "Anything 6GsVdMeVlSVAScg",
  "grant_types": [
    "authorization_code",
    "implicit",
    "refresh_token"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "alg": "RS256",
        "n": "jbGJsp8GXMdOy-xOvC08Qu0xwJDMtDpTB0aJObBhFwObgaqkVJeArcMB5S89Pb8ITLjIn8pog0Tg1Vwgf16_E0ggTgzskZOkC1S4L3Q8E_3sgZsjyOKD55dZVUcvZu1wYlrftD_y6eXV0o8N6tuU4CKdgEkHPrjpvwM9ngaAkCQSNqbEf6g_UOmLcAByLj3KfWfNpBgXRT1fIYC3cbOGC8zPcut9EG2ARORwQupDBTCj2CzE_Htzvg27dWugUP1Ms5tBABd4CLdemk_TYtwU4voaZ5CCYsoH_jZ9XJ1rg0O2j9PcO2B6DkrHo2mZ6KOb6ttcbhAxnBLpLJB1y3Ld4Q"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "contacts": [
    "certification@oidf.org"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-11 14:01:45 SUCCESS
EnsureContentTypeJson
endpoint_response Content-Type: header is application/json
2021-09-11 14:01:45 SUCCESS
EnsureHttpStatusCodeIs201
dynamic registration endpoint returned the expected http status
http_status
201
2021-09-11 14:01:45 SUCCESS
CheckNoErrorFromDynamicRegistrationEndpoint
Dynamic registration endpoint did not return an error.
2021-09-11 14:01:45 SUCCESS
ExtractDynamicRegistrationResponse
Extracted client from dynamic registration response
client_id
QsrFvuHjqHoJQF37Pc89wg
2021-09-11 14:01:45 SUCCESS
ExtractClientManagementCredentials
Extracted dynamic registration management credentials
registration_client_uri
https://89.45.234.133:4000/registration_api?client_id=QsrFvuHjqHoJQF37Pc89wg
registration_access_token
tgqOp3OORS3c0xeyp1Tc2I0q8WTtkM9itfgrIQNM3gs
2021-09-11 14:01:45
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-09-11 14:01:45
SetScopeInClientConfigurationToOpenIdOfflineAccessIfServerSupportsOfflineAccess
Set scope in client configuration to "openid offline_access"as 'scope_supported' contains 'offline_access'
scope
openid offline_access
2021-09-11 14:01:45 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_post",
  "client_secret_basic",
  "client_secret_jwt",
  "private_key_jwt"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-09-11 14:01:45 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
https://89.45.234.133:4000/userinfo
2021-09-11 14:01:45
oidcc-refresh-token
Setup Done
Make request to authorization endpoint
2021-09-11 14:01:45 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
2021-09-11 14:01:45
CreateRandomStateValue
Created state value
requested_state_length
10
state
EDW5Nq9iPb
2021-09-11 14:01:45 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
EDW5Nq9iPb
2021-09-11 14:01:45
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
aY56a6ABn8
2021-09-11 14:01:45 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
EDW5Nq9iPb
nonce
aY56a6ABn8
2021-09-11 14:01:45 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
EDW5Nq9iPb
nonce
aY56a6ABn8
response_type
code id_token token
2021-09-11 14:01:45
SetAuthorizationEndpointRequestResponseModeToFormPost
Added response_mode parameter to request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
EDW5Nq9iPb
nonce
aY56a6ABn8
response_type
code id_token token
response_mode
form_post
2021-09-11 14:01:45 SUCCESS
AddPromptConsentToAuthorizationEndpointRequestIfScopeContainsOfflineAccess
Added prompt=consent to authorization endpoint request
client_id
lzPsFELNZE0k2yjIZ_-NBw
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
EDW5Nq9iPb
nonce
aY56a6ABn8
response_type
code id_token token
response_mode
form_post
prompt
consent
2021-09-11 14:01:45 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://89.45.234.133:4000/authorization?client_id=lzPsFELNZE0k2yjIZ_-NBw&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid%20offline_access&state=EDW5Nq9iPb&nonce=aY56a6ABn8&response_type=code%20id_token%20token&response_mode=form_post&prompt=consent
2021-09-11 14:01:45 REDIRECT
oidcc-refresh-token
Redirecting to authorization endpoint
redirect_to
https://89.45.234.133:4000/authorization?client_id=lzPsFELNZE0k2yjIZ_-NBw&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid%20offline_access&state=EDW5Nq9iPb&nonce=aY56a6ABn8&response_type=code%20id_token%20token&response_mode=form_post&prompt=consent
2021-09-11 14:01:53 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance 6GsVdMeVlSVAScg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded",
  "origin": "https://89.45.234.133:4000",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://89.45.234.133:4000/verify/user",
  "accept-language": "en-us",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "3160",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
callback
incoming_body_form_params
{
  "state": "EDW5Nq9iPb",
  "scope": "[\u0027openid\u0027, \u0027offline_access\u0027]",
  "code": "Z0FBQUFBQmhQTGJSR2hfZDVkU3gwWWJSRW9hbHowVjZUU3hoLWpvWFB5ekJSUDc5OEZHUndKMGNQMjZwMVFpaHNyaHZzYWdDUnZkWTVfUnJoUThCd0VDeHJMM1NGa3hiVkNsaXpNZ0ZHR25GZnA0aUFScTI0b3dFVFowaDlmU0MtcUZfSUlrb2FNNEFGQjZlcTU5eFBVVGhrT01zMElOZzMwT0xqdUZRcmh5ejZUS1htdTVkTTlFc2hVbUp5ampYQ3VLcnRmWGZqUy1ONEFiQTZGWWJ5MjBielVEeWppNlN5bVdsMXp2cVh1Y08yamo2S243RTlQdkY0ZkdDb0o2SjdJcy0ycUMweUtQVjAzeGdhWFp0ZDZjUkQwMWJPd0tFbEJQNHM0X3llNGxfSmxhRUx2TGFRMlgtY2NwME02dVRxZUlDaG1BODZwaHQxQ3QzUGxZUTRmS2E4ZVZFUWw0ZFUzeEhmZHo0c2Q5cTlVNXBVdURnZklBRU1OTS1aT3pDT1BkM1E0dlh5Tl9OUDlIREc1WHJJX0hnc1JDWnNiZ1N1YzVZYUdfQVAtZ3luZERNMEppS2tkMUhpdEkyWE1VZkV5NXZObmprbUFiZG0xV0dtYjBTUlNtQlpQWTE1NmxGeU4zT0pZcmRNYmFPX1NVMl9JMnhzb2h6UllNQkdjdHZRSHN6SHNLTnJsVDB6WV9IaTBuWnppeDN1WWo4UWVWMVZQeUVURWR1MzZ4TnRscjg5aHY1UjZFZkxaTWlsZnJpLTEyckk1ZzNzenl2TFNaclVOdHlTRUtDZUNJOW9yV1J5WGNmNVh6cTZvcE85UTYxU3Y3MVVLdl9uTzJ5dHpZMHY0LTNSakZEZkViWg\u003d\u003d",
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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._kx5VKDXG_VDcwcnZKFIoC7bJXuMFc293Zl-1pxoodYiIodlTrES7DeaqYZykOVKbWv0Nt8cRk_j10h6ILLj7Q",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
state=EDW5Nq9iPb&scope=%5B%27openid%27%2C+%27offline_access%27%5D&code=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%3D%3D&access_token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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._kx5VKDXG_VDcwcnZKFIoC7bJXuMFc293Zl-1pxoodYiIodlTrES7DeaqYZykOVKbWv0Nt8cRk_j10h6ILLj7Q&token_type=Bearer&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA
2021-09-11 14:01:53 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/eNTXrQFKwrywxLpw24ba",
  "fullUrl": "https://www.certification.openid.net/test/a/idpy/implicit/eNTXrQFKwrywxLpw24ba"
}
2021-09-11 14:01:53 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance 6GsVdMeVlSVAScg
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/idpy/implicit/eNTXrQFKwrywxLpw24ba, returnUrl=/log-detail.html?log=6GsVdMeVlSVAScg}]
outgoing_path
callback
2021-09-11 14:01:53 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance 6GsVdMeVlSVAScg
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-us",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://www.certification.openid.net/test/a/idpy/callback",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/eNTXrQFKwrywxLpw24ba
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-09-11 14:01:53 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance 6GsVdMeVlSVAScg
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/eNTXrQFKwrywxLpw24ba
2021-09-11 14:01:53 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-09-11 14:01:53 REDIRECT-IN
oidcc-refresh-token
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded",
  "origin": "https://89.45.234.133:4000",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://89.45.234.133:4000/verify/user",
  "accept-language": "en-us",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "3160",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
http_method
POST
url_fragment
{}
post_body
{
  "state": "EDW5Nq9iPb",
  "scope": "[\u0027openid\u0027, \u0027offline_access\u0027]",
  "code": "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\u003d\u003d",
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXSwgImp0aSI6ICJkMTFiNWVkYzEzMDgxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAibHpQc0ZFTE5aRTBrMnlqSVpfLU5CdyIsICJzdWIiOiAibHpQc0ZFTE5aRTBrMnlqSVpfLU5CdyIsICJzaWQiOiAiWjBGQlFVRkJRbWhRVEdKU1V5MWlhRnBwYWpST2JrSlZZbGgzZUdoUFVGUTJTR2hxYXpWR1FrWjJYMjV2VkZoc1psaE5OMHMyVG5oUk1VNXdUVmR5VDFaUGNYcFdZVE5STnpSdWFtTm9kWFpUY0UweWNXRk9kM1UxU2xWdVZEbHNPVXBRYURObVUxQjZkMXAxY1RRNFdYbGFaR2MyVEdFMGNrbDZkVTl0UzNaVE5qbDBPRVpRZW1SdmVYTnlSV2gzZFRsdk1FOUdTV0l3U25OQ2JrNXVaa1pmTVZOVmNuWnJRVWxzYzJkSFNqSkhjM1UxVEhSU1NVeEVhbWhKVVZGRFJqVlRka001YkdScFptZDNhMlp0VG1Wd1JFVkhVbkpCVmxndFVuaG1jSFJzTm1aa2MxTklTVmRyYzNjMVVtTkdjVFpLZVd4YWF6MD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMxMzY4OTEzLCAiZXhwIjogMTYzMTM3MjUxM30._kx5VKDXG_VDcwcnZKFIoC7bJXuMFc293Zl-1pxoodYiIodlTrES7DeaqYZykOVKbWv0Nt8cRk_j10h6ILLj7Q",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA"
}
Verify authorization endpoint response
2021-09-11 14:01:53 SUCCESS
CheckCallbackHttpMethodIsPost
HTTP method used at redirect_uri is 'POST'
2021-09-11 14:01:53 SUCCESS
CheckCallbackContentTypeIsFormUrlEncoded
content-type header to redirect_uri has the expected value
content_type
application/x-www-form-urlencoded
expected
application/x-www-form-urlencoded
2021-09-11 14:01:53 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-09-11 14:01:53 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-09-11 14:01:53 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-09-11 14:01:53
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-09-11 14:01:53 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-09-11 14:01:53 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
EDW5Nq9iPb
2021-09-11 14:01:53 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
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
2021-09-11 14:01:53 SUCCESS
ExtractAccessTokenFromAuthorizationResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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._kx5VKDXG_VDcwcnZKFIoC7bJXuMFc293Zl-1pxoodYiIodlTrES7DeaqYZykOVKbWv0Nt8cRk_j10h6ILLj7Q
type
Bearer
2021-09-11 14:01:53 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "at_hash": "BqfmqBVOxwdOlsJGMs6zOg",
  "sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11",
  "iss": "https://89.45.234.133:4000",
  "nonce": "aY56a6ABn8",
  "client_id": "lzPsFELNZE0k2yjIZ_-NBw",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "c_hash": "_dGUfC7fWkgblOIfhhODzQ",
  "aud": "lzPsFELNZE0k2yjIZ_-NBw",
  "auth_time": 1631368913,
  "scope": [
    "openid",
    "offline_access"
  ],
  "exp": 1631369213,
  "iat": 1631368913,
  "jti": "d11b5ede130811ec8c99b12594190b0f"
}
2021-09-11 14:01:53 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-11 14:01:53 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
aY56a6ABn8
2021-09-11 14:01:53 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-11 14:01:53 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA
2021-09-11 14:01:53 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.W2xRLDVIaYJiA0flPTN68lQg2JCmoUU5DSXa5nO_MIfd_2rOFYZ5RHo1SIExUJ3gUsXhOXiJMPpvZsfD_sma-zMrk0ZwKr0D4yUdJh9xhiBtCsGA2eHDx4BzYjPKEftQG4zFStmhG24Yd0l8WxzGVZdBw9vrgxRm2jWiplLtcLUWkapjIM6FYVwq1M_tJThauUAhGI9LXU11I8cOb4xePZQ3U59KZL2dvu-4wN5SaERmYceM2-WQBTaHoq2maARYidAHY0jz8zliwm5STXxOF8-yUvRXSATca_ky2-gnui7ovXNX8h1IA2Jw5S386xy8VNtMr88sEtDMzUwWjj0NTA
2021-09-11 14:01:53 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
Userinfo endpoint tests
2021-09-11 14:01:53
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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._kx5VKDXG_VDcwcnZKFIoC7bJXuMFc293Zl-1pxoodYiIodlTrES7DeaqYZykOVKbWv0Nt8cRk_j10h6ILLj7Q",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:01:53 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:53 GMT"
}
response_body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:01:53 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:53 GMT"
}
body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:01:53 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
Z0FBQUFBQmhQTGJSR2hfZDVkU3gwWWJSRW9hbHowVjZUU3hoLWpvWFB5ekJSUDc5OEZHUndKMGNQMjZwMVFpaHNyaHZzYWdDUnZkWTVfUnJoUThCd0VDeHJMM1NGa3hiVkNsaXpNZ0ZHR25GZnA0aUFScTI0b3dFVFowaDlmU0MtcUZfSUlrb2FNNEFGQjZlcTU5eFBVVGhrT01zMElOZzMwT0xqdUZRcmh5ejZUS1htdTVkTTlFc2hVbUp5ampYQ3VLcnRmWGZqUy1ONEFiQTZGWWJ5MjBielVEeWppNlN5bVdsMXp2cVh1Y08yamo2S243RTlQdkY0ZkdDb0o2SjdJcy0ycUMweUtQVjAzeGdhWFp0ZDZjUkQwMWJPd0tFbEJQNHM0X3llNGxfSmxhRUx2TGFRMlgtY2NwME02dVRxZUlDaG1BODZwaHQxQ3QzUGxZUTRmS2E4ZVZFUWw0ZFUzeEhmZHo0c2Q5cTlVNXBVdURnZklBRU1OTS1aT3pDT1BkM1E0dlh5Tl9OUDlIREc1WHJJX0hnc1JDWnNiZ1N1YzVZYUdfQVAtZ3luZERNMEppS2tkMUhpdEkyWE1VZkV5NXZObmprbUFiZG0xV0dtYjBTUlNtQlpQWTE1NmxGeU4zT0pZcmRNYmFPX1NVMl9JMnhzb2h6UllNQkdjdHZRSHN6SHNLTnJsVDB6WV9IaTBuWnppeDN1WWo4UWVWMVZQeUVURWR1MzZ4TnRscjg5aHY1UjZFZkxaTWlsZnJpLTEyckk1ZzNzenl2TFNaclVOdHlTRUtDZUNJOW9yV1J5WGNmNVh6cTZvcE85UTYxU3Y3MVVLdl9uTzJ5dHpZMHY0LTNSakZEZkViWg==
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-11 14:01:53 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg==
2021-09-11 14:01:53
CallTokenEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "996"
}
request_body
grant_type=authorization_code&code=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%3D%3D&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fidpy%2Fcallback
2021-09-11 14:01:54 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3081",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1631368914|yrtWNm64DQ2S7lno|oFb7GLSMnuV3NwgphnYdZrOWvGXOigFeOk4JmOP6Vt2FS84WfsQebHfQM7tMTSMd/MzTQYt7bm2bPuvDDk0q/EAYeX6tc8r8m2NOpHS6Yw35daGohqfqlrQTzj+sNbE8w2YlTG4idVceQHkFATx/qHL+dmFhdgFRTVQpbFs4NlfhkHqJPqU/IqBu3ORrw+Tj4wpExfhmkcilDKPfAU5jWozXDA6RtJQJb8UVzCi/P3xl1gknLiZ0lE4exBbojMfHK3F7Cett|TWG4yNFiOZ93e8fVlggxzA\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:54 GMT"
}
response_body
{"token_type": "Bearer", "scope": "openid offline_access", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXSwgImp0aSI6ICJkMWU4YWQ5OTEzMDgxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAibHpQc0ZFTE5aRTBrMnlqSVpfLU5CdyIsICJzdWIiOiAibHpQc0ZFTE5aRTBrMnlqSVpfLU5CdyIsICJzaWQiOiAiWjBGQlFVRkJRbWhRVEdKU1V5MWlhRnBwYWpST2JrSlZZbGgzZUdoUFVGUTJTR2hxYXpWR1FrWjJYMjV2VkZoc1psaE5OMHMyVG5oUk1VNXdUVmR5VDFaUGNYcFdZVE5STnpSdWFtTm9kWFpUY0UweWNXRk9kM1UxU2xWdVZEbHNPVXBRYURObVUxQjZkMXAxY1RRNFdYbGFaR2MyVEdFMGNrbDZkVTl0UzNaVE5qbDBPRVpRZW1SdmVYTnlSV2gzZFRsdk1FOUdTV0l3U25OQ2JrNXVaa1pmTVZOVmNuWnJRVWxzYzJkSFNqSkhjM1UxVEhSU1NVeEVhbWhKVVZGRFJqVlRka001YkdScFptZDNhMlp0VG1Wd1JFVkhVbkpCVmxndFVuaG1jSFJzTm1aa2MxTklTVmRyYzNjMVVtTkdjVFpLZVd4YWF6MD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMxMzY4OTE0LCAiZXhwIjogMTYzMTM3MjUxNH0.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A", "expires_in": 1800, "refresh_token": "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", "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA"}
2021-09-11 14:01:54
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"token_type": "Bearer", "scope": "openid offline_access", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A", "expires_in": 1800, "refresh_token": "Z0FBQUFBQmhQTGJTcFpxVnNTT1ZrLVdCMXkwSmxuOEJhbi04Rk54UFA0RFA1SF9Famd3cXNZSV8xSS1tN1lGdXFLdnlkZEw0YmhkRFZMaFZ3ZkJHYTNQVVB2TXJNZGRDZi1YSUdzSFFzUkFsYVZsSGJfQnhBdDRSZkVJWjh3UjltNnNOaHo3NVc2cXZxZGltWHJJYzdDRHE3RFpxbXdLdHo1S0F4MW92Y2t2dXFCM2ZudFdQN1RpWFExMXNDakc1U3U0clg5N1lSUC1PUnJHUmJHRy14Nk9UcnNCckRCWXBsOF91OWFxTHpsWDFvZE5Ud2xUbEk5LUllRHZHY3JpVVFVQnpSS0NtMTlJcmdNcmZyaUc3MElocjlUeHF4dExydmZiUXdaZzdObENvMkh0Zm5iZmtXcmhoaWdMcENUanI5SzVhRmQ2MGhkZFhTYllncXBnSVBTeU1tQVlxeUQ4aWlhMF9EVzN3NDJneHlTRFZlMWlNcUQ1STQ3Q05UcExtSjV3VGYyWlFjdlVtQ0p3MDRrVU1RX2hyUk11eG1pdHB1a3l6dDQwVkFQVlEtc0JVWm5IVE5qTS1HTUJxTjJUTl9lYllOVHBBZ2lKNnJqdU5LNXJiUXFobFQtZzVKdlNEYk01MEZkVDg5RV9fR0NTQklvQ1laQWpWN2t5UzY1QWswaDg3T3djUlZQblc4UUF2S0tlR0Vjbm9teVVSeWZTU1luUlI5ZHcxOWNVbWJCV3AzamstU2VJX0N3MDI5aEdlQWN3SXdxeFZwQk9DWlNRbE5TeEFIbzhTNUZsRDQzcUdRanR1VEFSY2JaaGVoazZXT2dodWhJYVFjc0xEYmwxMGF2RmFQVkpyMk9aaw==", "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA"}
2021-09-11 14:01:54 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
token_type
Bearer
scope
openid offline_access
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A
expires_in
1800
refresh_token
Z0FBQUFBQmhQTGJTcFpxVnNTT1ZrLVdCMXkwSmxuOEJhbi04Rk54UFA0RFA1SF9Famd3cXNZSV8xSS1tN1lGdXFLdnlkZEw0YmhkRFZMaFZ3ZkJHYTNQVVB2TXJNZGRDZi1YSUdzSFFzUkFsYVZsSGJfQnhBdDRSZkVJWjh3UjltNnNOaHo3NVc2cXZxZGltWHJJYzdDRHE3RFpxbXdLdHo1S0F4MW92Y2t2dXFCM2ZudFdQN1RpWFExMXNDakc1U3U0clg5N1lSUC1PUnJHUmJHRy14Nk9UcnNCckRCWXBsOF91OWFxTHpsWDFvZE5Ud2xUbEk5LUllRHZHY3JpVVFVQnpSS0NtMTlJcmdNcmZyaUc3MElocjlUeHF4dExydmZiUXdaZzdObENvMkh0Zm5iZmtXcmhoaWdMcENUanI5SzVhRmQ2MGhkZFhTYllncXBnSVBTeU1tQVlxeUQ4aWlhMF9EVzN3NDJneHlTRFZlMWlNcUQ1STQ3Q05UcExtSjV3VGYyWlFjdlVtQ0p3MDRrVU1RX2hyUk11eG1pdHB1a3l6dDQwVkFQVlEtc0JVWm5IVE5qTS1HTUJxTjJUTl9lYllOVHBBZ2lKNnJqdU5LNXJiUXFobFQtZzVKdlNEYk01MEZkVDg5RV9fR0NTQklvQ1laQWpWN2t5UzY1QWswaDg3T3djUlZQblc4UUF2S0tlR0Vjbm9teVVSeWZTU1luUlI5ZHcxOWNVbWJCV3AzamstU2VJX0N3MDI5aEdlQWN3SXdxeFZwQk9DWlNRbE5TeEFIbzhTNUZsRDQzcUdRanR1VEFSY2JaaGVoazZXT2dodWhJYVFjc0xEYmwxMGF2RmFQVkpyMk9aaw==
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTEzLCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDFlOGFkOWQxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogImx6UHNGRUxOWkUwazJ5aklaXy1OQnciLCAibm9uY2UiOiAiYVk1NmE2QUJuOCIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkxNCwgImV4cCI6IDE2MzEzNjkyMTQsICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXX0.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA
2021-09-11 14:01:54 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-11 14:01:54 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A
2021-09-11 14:01:54 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A
type
Bearer
2021-09-11 14:01:54 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-11 14:01:54 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-11 14:01:54 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
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
2021-09-11 14:01:54 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTEzLCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDFlOGFkOWQxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogImx6UHNGRUxOWkUwazJ5aklaXy1OQnciLCAibm9uY2UiOiAiYVk1NmE2QUJuOCIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkxNCwgImV4cCI6IDE2MzEzNjkyMTQsICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXX0.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "lzPsFELNZE0k2yjIZ_-NBw",
  "auth_time": 1631368913,
  "scope": [
    "openid",
    "offline_access"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1631369214,
  "nonce": "aY56a6ABn8",
  "iat": 1631368914,
  "jti": "d1e8ad9d130811ec8c99b12594190b0f",
  "client_id": "lzPsFELNZE0k2yjIZ_-NBw"
}
2021-09-11 14:01:54 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-11 14:01:54 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
aY56a6ABn8
2021-09-11 14:01:54 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-11 14:01:54 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTEzLCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDFlOGFkOWQxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogImx6UHNGRUxOWkUwazJ5aklaXy1OQnciLCAibm9uY2UiOiAiYVk1NmE2QUJuOCIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkxNCwgImV4cCI6IDE2MzEzNjkyMTQsICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXX0.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA
2021-09-11 14:01:54 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTEzLCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDFlOGFkOWQxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogImx6UHNGRUxOWkUwazJ5aklaXy1OQnciLCAibm9uY2UiOiAiYVk1NmE2QUJuOCIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkxNCwgImV4cCI6IDE2MzEzNjkyMTQsICJhdWQiOiBbImx6UHNGRUxOWkUwazJ5aklaXy1OQnciXX0.KHaJM1IPGL25UWiIvXW0KxGlCv0do_5sj1549rOhV0JERdWuz_wFgf9qwMi7yMG3GZtUxUno-yTwKajqYlG82gYCEBhTNacXqsXyBmkg-TCpv-AqdxUuzuUs3BKgOiPplZs6XQcgqX0RMQgW-EadHoODSksLsjyrS4VptPeIslqK_ni59qoNh41xn1ibsuwvxXvlQy6EBOV_RQbO_sy7b60AXq5l2sQxbFIDdCQNFIz50ONQmdDVDtUxoRsOwHct9LtPOTeH0A4d2zaWUOtpGD1BMj8VOcpETPVh0luV4MnmLZxUMqSl2-H6cUbSLqKwkW0TVXaZVSCdVvw8gZSxEA
2021-09-11 14:01:54 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
2021-09-11 14:01:54 SUCCESS
VerifyIdTokenSubConsistentHybridFlow
authorization endpoint and token endpoint id_token have same sub
sub_auth_endpoint
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
sub_token_endpoint
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
2021-09-11 14:01:54 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
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
2021-09-11 14:01:54 SUCCESS
EnsureServerConfigurationSupportsRefreshToken
The server configuration indicates support for refresh tokens
supported_grant_types
[
  "authorization_code",
  "implicit",
  "urn:ietf:params:oauth:grant-type:jwt-bearer",
  "refresh_token"
]
2021-09-11 14:01:54 SUCCESS
EnsureRefreshTokenContainsAllowedCharactersOnly
Refresh token does not contain any illegal characters
Refresh Token Request
2021-09-11 14:01:54 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
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
2021-09-11 14:01:54 SUCCESS
AddScopeToTokenEndpointRequest
Added scope of 'openid offline_access' to token endpoint request
grant_type
refresh_token
refresh_token
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
scope
openid offline_access
2021-09-11 14:01:54 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg==
2021-09-11 14:01:54 SUCCESS
WaitForOneSecond
Pausing for 1 seconds
2021-09-11 14:01:55 SUCCESS
WaitForOneSecond
Woke up after 1 seconds sleep
2021-09-11 14:01:55
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "943"
}
request_body
grant_type=refresh_token&refresh_token=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%3D%3D&scope=openid+offline_access
2021-09-11 14:01:55 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "2040",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1631368915|36QuMNOQbHOWOR8F|azOpRwMgHf0vcoCXEI8uM0dB950tJMPc1z7LxSmhqMcZewu7HnW4PyEIwKm97DHPzwgF/7zazSF6qbPKHFB7nfizCioKegu+YHoeJ8ozLTN7r2+T8/Pzah6YLQd47tW+9O9wZGCjy4K8nwxs44sowQXfAg9By4roe9Pt+DhvdSCMpivSnTRW8kRea/a8CWfxPj9tN0b4bGuAOmPI0ff0mB8rngE9+Ckg0SFl/WyOjGEAOEttz3XELj5Vh2KLaF1lHBWFQNvw|37/ltAsafMxvFZr5zdnYHg\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:55 GMT"
}
response_body
{"access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.LVrdrGW51YuKDMnIN6rJ4thUviZlWd5Jf1e9CiVlo3oYZkORDjghphbiwq1PK50Zt8UQaCiOqIKj4UAWd4paug", "token_type": "Bearer", "scope": "openid offline_access", "expires_in": 1800, "refresh_token": "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"}
2021-09-11 14:01:55 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.LVrdrGW51YuKDMnIN6rJ4thUviZlWd5Jf1e9CiVlo3oYZkORDjghphbiwq1PK50Zt8UQaCiOqIKj4UAWd4paug
token_type
Bearer
scope
openid offline_access
expires_in
1800
refresh_token
Z0FBQUFBQmhQTGJUclRGLXFCVnNxMXhJQXpWdU1WQ3IwVFJGY2hsTWhSc0dRcTd6ZHNiamJuMkhxdHZyRXFXXzR5TDkzMDdqTTBXenZyNnR5d200OThMdFZGcFpKMTJreC1zYlJjZkRJYm1Ga3hyYk1IS0tReTdhcEVzcjVSUjA4Qks2Tkp2TnVqREIwbDEwYUpLdWJpSW5YVERnMVJqLXhvZWRjUV9uMzV3VlR6QWV3U1ZrajNoTWEwRlZjdUpNQnNMd0dEakg4bUVFVW40RUppV3gycnhzLVp0VnpPb2M4XzRXeFZwVVhmRE45SUtCZTFUNmxObDg0SmJXbFgwbmVZdGQ1Z2QxOGd4WmlpcjNFTVFYem9uNzBIVldsdktXUzB4NmpYV1BGVlRRS1V6TEdtaVNfNTRsWkR2Zl9GdlllWnZTTjh1RElVampaMGxQQTZKVlB5MVd6Ukp6STJUZThvWlJSNDRMVEYxOElzY3NLamlXdWlvUm1fWkFOZ3pmWkpJd0Q2c044YVpTQVVPRlZ2VkotQ2RtVjMyOEJQeVlMTXFXMWdnV1kzM1JFdG40R2ZMdUIxR1duZmYtQjhIS3BrV1lfUkZmOXlYVnJOT25GRVhkZWQtQkt1Rld0NUNGM2RQXzBNTkdlcW9tTGFjazRXZVVwY1VKTTNmOVh3NF92aFpGNENNYnBDeVdmdGRBb080SFJidG1FanhQUXI1M2YzbThvRkFaM290MmlhdVRGOFVVR3BFX3ZFSjFwczhUeDhkTHBSdnhtTDJyYlVlN2JUbU9hNzFlWl9GRENFR01PYjRha0RWQnB4dlVQcElvYWJkempyMHd1MXN5cE9tbFJ2d3pFcHNQSzY2MQ==
2021-09-11 14:01:55 SUCCESS
CheckTokenEndpointHttpStatus200
Token endpoint http status code was 200
2021-09-11 14:01:55 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-09-11 14:01:55 SUCCESS
CheckTokenEndpointCacheHeaders
'pragma' and 'cache-control' headers in token endpoint response contain expected values.
cache_control_header
no-store
pragma_header
no-cache
2021-09-11 14:01:55 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-11 14:01:55 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.LVrdrGW51YuKDMnIN6rJ4thUviZlWd5Jf1e9CiVlo3oYZkORDjghphbiwq1PK50Zt8UQaCiOqIKj4UAWd4paug
type
Bearer
2021-09-11 14:01:55 SUCCESS
CheckTokenTypeIsBearer
Token type is bearer
2021-09-11 14:01:55 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
5953.484222555296
expected
96.0
2021-09-11 14:01:55 SUCCESS
EnsureAccessTokenContainsAllowedCharactersOnly
Access token does not contain any illegal characters
2021-09-11 14:01:55 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-11 14:01:55 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-11 14:01:55 SUCCESS
EnsureAccessTokenValuesAreDifferent
Access token values are not the same
first_access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.cMbQGKAAxTNejbt2DvPFOLFD-i4M6CCadpIrcHi5Wgzn3XDb4CzYkP9sIwvRUe359mAS2BdvlNDKaMhEtJBm3A
second_access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.LVrdrGW51YuKDMnIN6rJ4thUviZlWd5Jf1e9CiVlo3oYZkORDjghphbiwq1PK50Zt8UQaCiOqIKj4UAWd4paug
2021-09-11 14:01:55 INFO
ExtractIdTokenFromTokenResponse
Couldn't find id_token in token_endpoint_response
2021-09-11 14:01:55 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
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
2021-09-11 14:01:55 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
6976
required
128
2021-09-11 14:01:55 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
4853.340762812179
expected
96.0
2021-09-11 14:01:55 INFO
CompareIdTokenClaims
Skipped evaluation due to missing required object: second_id_token
expected
second_id_token
mapped
second_id_token
Userinfo endpoint tests
2021-09-11 14:01:55
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.LVrdrGW51YuKDMnIN6rJ4thUviZlWd5Jf1e9CiVlo3oYZkORDjghphbiwq1PK50Zt8UQaCiOqIKj4UAWd4paug",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:01:56 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:56 GMT"
}
response_body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:01:56 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:01:56 GMT"
}
body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
Second client: Make request to authorization endpoint
2021-09-11 14:01:56 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
2021-09-11 14:01:56
CreateRandomStateValue
Created state value
requested_state_length
10
state
XdUOUtjo8Y
2021-09-11 14:01:56 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
XdUOUtjo8Y
2021-09-11 14:01:56
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
fXk5Zkuj3q
2021-09-11 14:01:56 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
XdUOUtjo8Y
nonce
fXk5Zkuj3q
2021-09-11 14:01:56 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
XdUOUtjo8Y
nonce
fXk5Zkuj3q
response_type
code id_token token
2021-09-11 14:01:56
SetAuthorizationEndpointRequestResponseModeToFormPost
Added response_mode parameter to request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
XdUOUtjo8Y
nonce
fXk5Zkuj3q
response_type
code id_token token
response_mode
form_post
2021-09-11 14:01:56 SUCCESS
AddPromptConsentToAuthorizationEndpointRequestIfScopeContainsOfflineAccess
Added prompt=consent to authorization endpoint request
client_id
QsrFvuHjqHoJQF37Pc89wg
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid offline_access
state
XdUOUtjo8Y
nonce
fXk5Zkuj3q
response_type
code id_token token
response_mode
form_post
prompt
consent
2021-09-11 14:01:56 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://89.45.234.133:4000/authorization?client_id=QsrFvuHjqHoJQF37Pc89wg&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid%20offline_access&state=XdUOUtjo8Y&nonce=fXk5Zkuj3q&response_type=code%20id_token%20token&response_mode=form_post&prompt=consent
2021-09-11 14:01:56 REDIRECT
oidcc-refresh-token
Redirecting to authorization endpoint
redirect_to
https://89.45.234.133:4000/authorization?client_id=QsrFvuHjqHoJQF37Pc89wg&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid%20offline_access&state=XdUOUtjo8Y&nonce=fXk5Zkuj3q&response_type=code%20id_token%20token&response_mode=form_post&prompt=consent
2021-09-11 14:02:07 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance 6GsVdMeVlSVAScg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded",
  "origin": "https://89.45.234.133:4000",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://89.45.234.133:4000/verify/user",
  "accept-language": "en-us",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "3160",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
callback
incoming_body_form_params
{
  "state": "XdUOUtjo8Y",
  "scope": "[\u0027openid\u0027, \u0027offline_access\u0027]",
  "code": "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\u003d\u003d",
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJhdWQiOiBbIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciXSwgImp0aSI6ICJkOWJlYTQ0YTEzMDgxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzdWIiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzaWQiOiAiWjBGQlFVRkJRbWhRVEdKbVRsVlJORWh4YkVwTFUyeG9jVlpZTFVOWGJtNXVOM2swU2xSQmIxUllVeko1VkVRd2NrNU1OSE0xV1hGU05VSjNjRzlpTmxkUU5qaHZaSGszZERWdlFWaDNPRWhtUnpsWVZsUmhSMmRIZDA5a1RUZGxVREZRZFdkeVJ6a3libWRhVFVNMmRVWmpVR3hmZUdjelkwMVVNbU5JUjFBMFdGWlpPVUV5UjFsVVkxUkVlRWh0TUZod1YyaG5WbTF5VTBSSFZVOWlURkJIYVMxbFZHSTBWWHB4V1dGYVVVdHBUa3gyUjJKNmVtWTFaRVIxT1hwQmJWZGxMVlV5TURoMFJteHBYM1ZxYjBkcU5IQmhjV3N4UkUxM1NIVXRkWGhHV2s1VE5FNVplRTVsVGpkbWFGTkphVnBQUjI4NWN6MD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMxMzY4OTI3LCAiZXhwIjogMTYzMTM3MjUyN30.DRdaPB6oiPCG6-2I6WeX6p-1toX5jD_R4So6eSNkGSqAY_Fka4NVjLM0-V7LO_j8DXFg2sbR-269qe9rzZfdZg",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTI3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDliZWE0NGMxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciLCAiY19oYXNoIjogIktsbWJfYndxSF9HZ3N1dEd5OXNLQ1EiLCAiYXRfaGFzaCI6ICIxTWplYXBYWVR1RVlSOG5ZTGVZN3pBIiwgIm5vbmNlIjogImZYazVaa3VqM3EiLCAiaXNzIjogImh0dHBzOi8vODkuNDUuMjM0LjEzMzo0MDAwIiwgImlhdCI6IDE2MzEzNjg5MjcsICJleHAiOiAxNjMxMzY5MjI3LCAiYXVkIjogWyJRc3JGdnVIanFIb0pRRjM3UGM4OXdnIl19.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
state=XdUOUtjo8Y&scope=%5B%27openid%27%2C+%27offline_access%27%5D&code=Z0FBQUFBQmhQTGJmaWtUN2VJUWNiaXgwNDVNSE1aQ2NVZF9qOHlIVGwtaUJYNmtTYm5QS3BrLWhYQ2FfUk1WbU9taXVfRlZBSURKQWJIYjBaQnZJZklpY3RrTzJGUmQwZjdrem1pcEdBUWFwbkRhWnBOZnlNNlljbnBOcjFoT010eGpCSHhDeFZCbzN0RU9xSXdSVlAybUZUbVBfeHRPUFg3WHN1VmtTSHVuajJqQXVvVjQzaG9IWXpDSmJIYmhMWjVRenJERFl5S1N5VElzMUJWek4yVkFYdF9US05sTzcxQTZwNFNDYXN1WDlLU19PcGVyZDZreVNpemtTMW56VklxMGN2dUVzcjJUdXdDcXRxX0djal83SG4zRTZ0VWtwbkt4UTJnQ2JOSzFiN3d4a2JCbF9QOFRhZXlnOTNIZVVSd09NZ2hDSHlsWWZMOVlKTlZodjFqT2NkSGIzc3pDSU5qSVRXOHpvX3VmZHEyMEdHaFViUUhFUEFfRE1IWDBXVWlhM284a25UaUVQb2d2QjQtUVpXLU5lcjhUTjc1dEVfTEpoVmdaSU1JMHVVdW9nbzM4TFZCQTI1RXFyRHBVQktiMVczM2YxVTFQY0l1Qnp4em0zeVNaSEFnYzQ0eDFuTGJXUU9CSTdnSmRtZEw1NWxKdWpFOWdIUVQ5T2tTc1o2N0xaVjRfaVNoYU1JUlJqTWJkNXlsQmxoLWJnOXoyc3ZyWFQtTGRZUTRYTjZaa2tQaG5vS2J2eGhhZUNhTlI2OUNfR1dpY05WWXBTbEI2enVSMFMzb3NVa1JWV2NhYkpVdk92SGdnTURnSEh0TkgtbzRjMDFHN0hVOHNpQUNVWlA5NjlmUnNUa1RSQg%3D%3D&access_token=eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJhdWQiOiBbIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciXSwgImp0aSI6ICJkOWJlYTQ0YTEzMDgxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzdWIiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzaWQiOiAiWjBGQlFVRkJRbWhRVEdKbVRsVlJORWh4YkVwTFUyeG9jVlpZTFVOWGJtNXVOM2swU2xSQmIxUllVeko1VkVRd2NrNU1OSE0xV1hGU05VSjNjRzlpTmxkUU5qaHZaSGszZERWdlFWaDNPRWhtUnpsWVZsUmhSMmRIZDA5a1RUZGxVREZRZFdkeVJ6a3libWRhVFVNMmRVWmpVR3hmZUdjelkwMVVNbU5JUjFBMFdGWlpPVUV5UjFsVVkxUkVlRWh0TUZod1YyaG5WbTF5VTBSSFZVOWlURkJIYVMxbFZHSTBWWHB4V1dGYVVVdHBUa3gyUjJKNmVtWTFaRVIxT1hwQmJWZGxMVlV5TURoMFJteHBYM1ZxYjBkcU5IQmhjV3N4UkUxM1NIVXRkWGhHV2s1VE5FNVplRTVsVGpkbWFGTkphVnBQUjI4NWN6MD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMxMzY4OTI3LCAiZXhwIjogMTYzMTM3MjUyN30.DRdaPB6oiPCG6-2I6WeX6p-1toX5jD_R4So6eSNkGSqAY_Fka4NVjLM0-V7LO_j8DXFg2sbR-269qe9rzZfdZg&token_type=Bearer&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA
2021-09-11 14:02:07 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/HjRz2LIB1DnHTtTBRYA5",
  "fullUrl": "https://www.certification.openid.net/test/a/idpy/implicit/HjRz2LIB1DnHTtTBRYA5"
}
2021-09-11 14:02:07 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance 6GsVdMeVlSVAScg
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/idpy/implicit/HjRz2LIB1DnHTtTBRYA5, returnUrl=/log-detail.html?log=6GsVdMeVlSVAScg}]
outgoing_path
callback
2021-09-11 14:02:07 INCOMING
oidcc-refresh-token
Incoming HTTP request to test instance 6GsVdMeVlSVAScg
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-us",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://www.certification.openid.net/test/a/idpy/callback",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/HjRz2LIB1DnHTtTBRYA5
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-09-11 14:02:07 OUTGOING
oidcc-refresh-token
Response to HTTP request to test instance 6GsVdMeVlSVAScg
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/HjRz2LIB1DnHTtTBRYA5
2021-09-11 14:02:07 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-09-11 14:02:07 REDIRECT-IN
oidcc-refresh-token
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded",
  "origin": "https://89.45.234.133:4000",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d7D21555BD1F4C7F8C15109D308E54B63; __utma\u003d201319536.1870777121.1629795278.1631344149.1631352103.13; __utmc\u003d201319536; __utmz\u003d201319536.1631260756.11.4.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/plan-detail.html; expected_tab\u003dgoogleplus; welcome_info_name\u003dRoland%20Hedberg",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://89.45.234.133:4000/verify/user",
  "accept-language": "en-us",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "3160",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
http_method
POST
url_fragment
{}
post_body
{
  "state": "XdUOUtjo8Y",
  "scope": "[\u0027openid\u0027, \u0027offline_access\u0027]",
  "code": "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\u003d\u003d",
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.DRdaPB6oiPCG6-2I6WeX6p-1toX5jD_R4So6eSNkGSqAY_Fka4NVjLM0-V7LO_j8DXFg2sbR-269qe9rzZfdZg",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTI3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZDliZWE0NGMxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciLCAiY19oYXNoIjogIktsbWJfYndxSF9HZ3N1dEd5OXNLQ1EiLCAiYXRfaGFzaCI6ICIxTWplYXBYWVR1RVlSOG5ZTGVZN3pBIiwgIm5vbmNlIjogImZYazVaa3VqM3EiLCAiaXNzIjogImh0dHBzOi8vODkuNDUuMjM0LjEzMzo0MDAwIiwgImlhdCI6IDE2MzEzNjg5MjcsICJleHAiOiAxNjMxMzY5MjI3LCAiYXVkIjogWyJRc3JGdnVIanFIb0pRRjM3UGM4OXdnIl19.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA"
}
Second client: Verify authorization endpoint response
2021-09-11 14:02:07 SUCCESS
CheckCallbackHttpMethodIsPost
HTTP method used at redirect_uri is 'POST'
2021-09-11 14:02:07 SUCCESS
CheckCallbackContentTypeIsFormUrlEncoded
content-type header to redirect_uri has the expected value
content_type
application/x-www-form-urlencoded
expected
application/x-www-form-urlencoded
2021-09-11 14:02:07 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-09-11 14:02:07 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-09-11 14:02:07 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-09-11 14:02:07
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-09-11 14:02:07 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-09-11 14:02:07 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
XdUOUtjo8Y
2021-09-11 14:02:07 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
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
2021-09-11 14:02:07 SUCCESS
ExtractAccessTokenFromAuthorizationResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.DRdaPB6oiPCG6-2I6WeX6p-1toX5jD_R4So6eSNkGSqAY_Fka4NVjLM0-V7LO_j8DXFg2sbR-269qe9rzZfdZg
type
Bearer
2021-09-11 14:02:07 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "at_hash": "1MjeapXYTuEYR8nYLeY7zA",
  "sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11",
  "iss": "https://89.45.234.133:4000",
  "nonce": "fXk5Zkuj3q",
  "client_id": "QsrFvuHjqHoJQF37Pc89wg",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "c_hash": "Klmb_bwqH_GgsutGy9sKCQ",
  "aud": "QsrFvuHjqHoJQF37Pc89wg",
  "auth_time": 1631368927,
  "scope": [
    "openid",
    "offline_access"
  ],
  "exp": 1631369227,
  "iat": 1631368927,
  "jti": "d9bea44c130811ec8c99b12594190b0f"
}
2021-09-11 14:02:07 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-11 14:02:07 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
fXk5Zkuj3q
2021-09-11 14:02:07 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-11 14:02:07 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA
2021-09-11 14:02:07 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.iktB8Zxgp6_UXM3IpVZOYBhdo8QXN2WGFc84YIdncqdOmwGQxHkb3GnnuFSK_7b1nwLcyKwl_d0qu24zFGaN2sHvsfwZ7Z8W27_dRiqvjwEVUFY86ggL-nFislrA77jbpnIsSFEFjR_0ZOD_4gbuRpmACb7XHq3TokpjtTuiL4_egpSg_sOZnjJifMMiSeq5-dBvrhtLnl344JLNJhegsCzeh7cV_QGJyVzu-pYGgIm_Ev-pQ-FkYkck4Pt8Y7AMLELT0NJXkPOyWwbO4Mxb1YkUL1UhcmDkG7TtF4N0m36vP570RVXhN9ugfMtLSlt5WbbQp2SXdnIaICaGrqUQPA
2021-09-11 14:02:07 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
Second client: Userinfo endpoint tests
2021-09-11 14:02:08
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.DRdaPB6oiPCG6-2I6WeX6p-1toX5jD_R4So6eSNkGSqAY_Fka4NVjLM0-V7LO_j8DXFg2sbR-269qe9rzZfdZg",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:02:08 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:08 GMT"
}
response_body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:02:08 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:08 GMT"
}
body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:02:08 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
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
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-11 14:02:08 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic UXNyRnZ1SGpxSG9KUUYzN1BjODl3ZzplMDY1ODNlMGUyZDk0NDUwNGIyODY0ZjlhNmIyODkyNmZiYjBmYWNlYWZjZGUwYjZiZmNkNmIwZQ==
2021-09-11 14:02:08
CallTokenEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic UXNyRnZ1SGpxSG9KUUYzN1BjODl3ZzplMDY1ODNlMGUyZDk0NDUwNGIyODY0ZjlhNmIyODkyNmZiYjBmYWNlYWZjZGUwYjZiZmNkNmIwZQ\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "996"
}
request_body
grant_type=authorization_code&code=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%3D%3D&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fidpy%2Fcallback
2021-09-11 14:02:08 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3081",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1631368928|KdSo3RgMVTnHZuey|dZ626atjU3FRVJZYqAXMq/Ot27iQRjaE9C2SmrOZGFjCssUVWq1o+kshBF0LeaaAHWGD042FBjXuLA6lxv2TEgKRfuAg5L1py493t/+1GV9eYhSMXTC8Qb8X/UXQ06j9GgMqNNSUZLhK+VgKhUS80vfKUQ2HaVSqB3+2Y5GXjJ5ILwmKZzhMAB1UXO4Cftc0L7R4/ZA5jCz9ENvY3Y7ugYMKWqiUGTC7OGp4lckqMNNzM/70MaG2tftjr/IPYAUcK0WG9I+V|E1Zjba+Rc/eWe8olzbn9VQ\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:08 GMT"
}
response_body
{"token_type": "Bearer", "scope": "openid offline_access", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJhdWQiOiBbIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciXSwgImp0aSI6ICJkYThhZTk3YjEzMDgxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzdWIiOiAiUXNyRnZ1SGpxSG9KUUYzN1BjODl3ZyIsICJzaWQiOiAiWjBGQlFVRkJRbWhRVEdKbVRsVlJORWh4YkVwTFUyeG9jVlpZTFVOWGJtNXVOM2swU2xSQmIxUllVeko1VkVRd2NrNU1OSE0xV1hGU05VSjNjRzlpTmxkUU5qaHZaSGszZERWdlFWaDNPRWhtUnpsWVZsUmhSMmRIZDA5a1RUZGxVREZRZFdkeVJ6a3libWRhVFVNMmRVWmpVR3hmZUdjelkwMVVNbU5JUjFBMFdGWlpPVUV5UjFsVVkxUkVlRWh0TUZod1YyaG5WbTF5VTBSSFZVOWlURkJIYVMxbFZHSTBWWHB4V1dGYVVVdHBUa3gyUjJKNmVtWTFaRVIxT1hwQmJWZGxMVlV5TURoMFJteHBYM1ZxYjBkcU5IQmhjV3N4UkUxM1NIVXRkWGhHV2s1VE5FNVplRTVsVGpkbWFGTkphVnBQUjI4NWN6MD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMxMzY4OTI4LCAiZXhwIjogMTYzMTM3MjUyOH0.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg", "expires_in": 1800, "refresh_token": "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", "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw"}
2021-09-11 14:02:08
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"token_type": "Bearer", "scope": "openid offline_access", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg", "expires_in": 1800, "refresh_token": "Z0FBQUFBQmhQTGJnamZVVHBodGhoNVAtV0V5RVZGSi1tTzl3UThtcnRqRHdxZ1hqQWdZaDJSclI5aFNNbkxUR2txdXotMHF5N0s4WHVMT1VlZG5ZUERoSkducEJwZF9SWWdBYlJIZm9IOGE0Vld4NWlCYV90SmFYUnVFM0tLRTJFOWgxUVZydWF2VjlYMVhxcGp0bFZpUXRFN0dOUGI5b0pVaFpEc1Q1cTN1ZFBKdm9kbjE1eWNfZWFIcVZuWlNMMXB6RzFqSGVJakhqdW10VVRpNVNzUXZUVGJyOW42WWpPU196UVRQUmt1UVVVWmlNcFZ0cUVNM2txbDVzY3lGbXIzb3I3Z1JsMG1aWnJaUE5yODIwZGRfeVZ1WnlnX29nUWpPaFZlOHYxd19RSGVSQThzb2NfUWlYbjY5OGRMRmZkUFpGWWxQZVJjaWZCMDl3dUNTVGFac3RINTdtbnh3c05US1RTSjM3OXNMLWU4b25kT0l6TVYwN1pXbnI0MVhHVjBONWNQeS1jMjdlb3Awc09FMElwcFhnR281d1NzQ2p1TU1qMmFHUE9TYm5pXzQ5YkZHOWpVa2w2dEJQalY2RlNiaHkzUzRHWFI1bXQ1LTRwZVczakg0YXR6c1hGLTdkTkRNZzJMNWtOdTU0UmE1WldsaFEwY2NRbHlxRjZnbVNjZ2pCRFRJcnR3QUlXZlVmRkw5NGswMnFDOXBkZ0FZcnZPMXQ1bnBNVGxQV2J5NWQ0Ni1uNmR1THdscVNGeHFOX21FNHU4TzdqQ3hxREI5N2ZRUGhPYXNCb3d5X0c2VWtKSHVGa053LXNYdW5iekxneVhJM3p0ek5KeDhWMjJzZWtGQmhzREVfc3Z2dw==", "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw"}
2021-09-11 14:02:08 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
token_type
Bearer
scope
openid offline_access
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg
expires_in
1800
refresh_token
Z0FBQUFBQmhQTGJnamZVVHBodGhoNVAtV0V5RVZGSi1tTzl3UThtcnRqRHdxZ1hqQWdZaDJSclI5aFNNbkxUR2txdXotMHF5N0s4WHVMT1VlZG5ZUERoSkducEJwZF9SWWdBYlJIZm9IOGE0Vld4NWlCYV90SmFYUnVFM0tLRTJFOWgxUVZydWF2VjlYMVhxcGp0bFZpUXRFN0dOUGI5b0pVaFpEc1Q1cTN1ZFBKdm9kbjE1eWNfZWFIcVZuWlNMMXB6RzFqSGVJakhqdW10VVRpNVNzUXZUVGJyOW42WWpPU196UVRQUmt1UVVVWmlNcFZ0cUVNM2txbDVzY3lGbXIzb3I3Z1JsMG1aWnJaUE5yODIwZGRfeVZ1WnlnX29nUWpPaFZlOHYxd19RSGVSQThzb2NfUWlYbjY5OGRMRmZkUFpGWWxQZVJjaWZCMDl3dUNTVGFac3RINTdtbnh3c05US1RTSjM3OXNMLWU4b25kT0l6TVYwN1pXbnI0MVhHVjBONWNQeS1jMjdlb3Awc09FMElwcFhnR281d1NzQ2p1TU1qMmFHUE9TYm5pXzQ5YkZHOWpVa2w2dEJQalY2RlNiaHkzUzRHWFI1bXQ1LTRwZVczakg0YXR6c1hGLTdkTkRNZzJMNWtOdTU0UmE1WldsaFEwY2NRbHlxRjZnbVNjZ2pCRFRJcnR3QUlXZlVmRkw5NGswMnFDOXBkZ0FZcnZPMXQ1bnBNVGxQV2J5NWQ0Ni1uNmR1THdscVNGeHFOX21FNHU4TzdqQ3hxREI5N2ZRUGhPYXNCb3d5X0c2VWtKSHVGa053LXNYdW5iekxneVhJM3p0ek5KeDhWMjJzZWtGQmhzREVfc3Z2dw==
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw
2021-09-11 14:02:08 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-11 14:02:08 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg
2021-09-11 14:02:08 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg
type
Bearer
2021-09-11 14:02:08 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-11 14:02:08 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-11 14:02:08 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
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
2021-09-11 14:02:08 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTI3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZGE4YWU5N2YxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciLCAibm9uY2UiOiAiZlhrNVprdWozcSIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkyOCwgImV4cCI6IDE2MzEzNjkyMjgsICJhdWQiOiBbIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciXX0.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "QsrFvuHjqHoJQF37Pc89wg",
  "auth_time": 1631368927,
  "scope": [
    "openid",
    "offline_access"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1631369228,
  "nonce": "fXk5Zkuj3q",
  "iat": 1631368928,
  "jti": "da8ae97f130811ec8c99b12594190b0f",
  "client_id": "QsrFvuHjqHoJQF37Pc89wg"
}
2021-09-11 14:02:08 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-11 14:02:08 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
fXk5Zkuj3q
2021-09-11 14:02:08 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-11 14:02:08 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw
2021-09-11 14:02:08 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiM2MyNzdlZTkzNDUyOTNlMGMxZTFmYTQ4MWM2OTlhODNkOTgzYWRkZmY1NGE5ZGZkOGEwYWExODMyZjIyM2QxMSIsICJhdXRoX3RpbWUiOiAxNjMxMzY4OTI3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIiwgIm9mZmxpbmVfYWNjZXNzIl0sICJqdGkiOiAiZGE4YWU5N2YxMzA4MTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciLCAibm9uY2UiOiAiZlhrNVprdWozcSIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMTM2ODkyOCwgImV4cCI6IDE2MzEzNjkyMjgsICJhdWQiOiBbIlFzckZ2dUhqcUhvSlFGMzdQYzg5d2ciXX0.1pYZ0NoB1tddyAXLRLzi7iUwEOEIC8SNJaEcEQgbHjaj4Ixf_HLqHsoqQj-XkK_tDNKLaLkXFA0L5Gbo6LCdQwWZVIRXdF6IzCDguSAKcKlbUI1N1RYq44fXekTmGEI8LDv1UF6X5xaLCxb475d0wokL4N45maJ2myS7kHQuKnD0iN8c66FWd25t2BJheZ08crXKDyxUOm4jOMcLgKlC0LkPSLH0R0sqE9FmWCK3gIAcUclG-Yj_4LuX8v85gMgrpngn6secPI07RojPu6CRtkSowj9RJQDvHlAdpD4eOjNVJgNMxISbjM-Tnuau7_Pi-wTBogKymF5GYjYkGXqcvw
2021-09-11 14:02:08 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
2021-09-11 14:02:08 SUCCESS
VerifyIdTokenSubConsistentHybridFlow
authorization endpoint and token endpoint id_token have same sub
sub_auth_endpoint
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
sub_token_endpoint
3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11
2021-09-11 14:02:08 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
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
2021-09-11 14:02:08 SUCCESS
EnsureServerConfigurationSupportsRefreshToken
The server configuration indicates support for refresh tokens
supported_grant_types
[
  "authorization_code",
  "implicit",
  "urn:ietf:params:oauth:grant-type:jwt-bearer",
  "refresh_token"
]
2021-09-11 14:02:08 SUCCESS
EnsureRefreshTokenContainsAllowedCharactersOnly
Refresh token does not contain any illegal characters
Second client: Refresh Token Request
2021-09-11 14:02:08 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
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
2021-09-11 14:02:08 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic UXNyRnZ1SGpxSG9KUUYzN1BjODl3ZzplMDY1ODNlMGUyZDk0NDUwNGIyODY0ZjlhNmIyODkyNmZiYjBmYWNlYWZjZGUwYjZiZmNkNmIwZQ==
2021-09-11 14:02:08 SUCCESS
WaitForOneSecond
Pausing for 1 seconds
2021-09-11 14:02:09 SUCCESS
WaitForOneSecond
Woke up after 1 seconds sleep
2021-09-11 14:02:09
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic UXNyRnZ1SGpxSG9KUUYzN1BjODl3ZzplMDY1ODNlMGUyZDk0NDUwNGIyODY0ZjlhNmIyODkyNmZiYjBmYWNlYWZjZGUwYjZiZmNkNmIwZQ\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "915"
}
request_body
grant_type=refresh_token&refresh_token=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%3D%3D
2021-09-11 14:02:10 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "2040",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1631368930|WEteG4XcVne/dbod|jxbSfHKXQgoXQpxKe5hCM7HHLSWvblasS9JpycB9sxrGYKzN9KClKUtrvI/aXPHaMsXBiFXUQl087DSBLbkVo+JvyPr/D8H7GL51vFgo9+5dT7DqV1lCwrtruN80H8A8VUPcDYHfvjVxCXAkNGu0ZorgTnvo1ZfzSuhsLO+6j31HRO3vVx2ldhOV5+fF5rHyBDJgo9K8ky14DC3LZnA8TRWGI2VFCaq45JmnzR35qiiN2WRM7rY3F3KIKO9mwqr4hcwfYVqM|a8U2JIUGkpiI340m3aVP9Q\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:10 GMT"
}
response_body
{"access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.wC3IdnLR6EVCIvYFHhS_oFq2Y6fJE7vRW9Asd9zBlKnqhlUCkqiO60LQYw2lSoIHd8ZlnoiNqTPb-d4NyFmywQ", "token_type": "Bearer", "scope": "openid offline_access", "expires_in": 1800, "refresh_token": "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"}
2021-09-11 14:02:10 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.wC3IdnLR6EVCIvYFHhS_oFq2Y6fJE7vRW9Asd9zBlKnqhlUCkqiO60LQYw2lSoIHd8ZlnoiNqTPb-d4NyFmywQ
token_type
Bearer
scope
openid offline_access
expires_in
1800
refresh_token
Z0FBQUFBQmhQTGJpNnA2TThPaE1LaG9rdTdxcy03amxIbXFXa2hiSEpuMUtYRVRxNmY2aGRMNFZHazlfc3hhYTdQM1NfZVRxZTBWZ3V3eW1WWGZYZDI2QW03d09aTEktcUY4dGwzMXVGeU1KSmJ3T3BLcm5iMV9QdWlzOGpZanlnYnJVRjJzaGUtSTREZ2xjenl5dlpQYWUyWkE4RlJyNEZ2elFfZnhLaVdpZ3RiSDkwMDJ5SGF2X3VZemhESEkwWUxXajdoZk01TVdwQ3NNOWY3Tk1lVUIwTExpQUhxLXF5anZaVll2RnBVQ28xZHhYYm1yRkpVa241bnllNnM1SV82dDBobHNlUXdiT3pJbUdQeW93a0xqVVltVUdERXQwS3ZTQ2VQZlp1VVQ1MFBTZDNZb2pyWWpxMzB1QkpJLUpoVHQySzZKTFA2TUZDWWxlSUJCY0x2UjJXaDU1X1c5SkxaT0xKR1JTNk5jVm9KR1BkR3c2NFlDeDZZenBaSUVlWTR3dVpySi1tUnI0MU56U3hTMUJzUkhDM3p4Z2dIMHE0a3d6aHlNdWhuU2JqY1V1Vlc1d2RnRE1lNjJsdHRVWFVnamJtRExTSGdpZmVQNjNmSWQ1REw4emw5UzV0OTdPM0tLMmNjV3l1UEpEN3RiZWh4N2ZVZXhSdzdoRmpnVFg1UVd3ZkhtaUdRRHhSZVQ2V1pxbVlKaG5CVkk4aG9fZjZiS3I0VjhVcS1XaE5PcFBfVTZqdkhmQzBlcGgySjgyNWlXU1RnRDBMeHAwSFZ3cHA2MXlBcVRmRFhWS0pqYzgtX1JMTjYtSVc2bF8wWnJ0OUFLRU8tS3VMZEMyVnJYZ1hMVkVRUnRxOE9PZg==
2021-09-11 14:02:10 SUCCESS
CheckTokenEndpointHttpStatus200
Token endpoint http status code was 200
2021-09-11 14:02:10 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-09-11 14:02:10 SUCCESS
CheckTokenEndpointCacheHeaders
'pragma' and 'cache-control' headers in token endpoint response contain expected values.
cache_control_header
no-store
pragma_header
no-cache
2021-09-11 14:02:10 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-11 14:02:10 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.wC3IdnLR6EVCIvYFHhS_oFq2Y6fJE7vRW9Asd9zBlKnqhlUCkqiO60LQYw2lSoIHd8ZlnoiNqTPb-d4NyFmywQ
type
Bearer
2021-09-11 14:02:10 SUCCESS
CheckTokenTypeIsBearer
Token type is bearer
2021-09-11 14:02:10 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
5936.639698848363
expected
96.0
2021-09-11 14:02:10 SUCCESS
EnsureAccessTokenContainsAllowedCharactersOnly
Access token does not contain any illegal characters
2021-09-11 14:02:10 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-11 14:02:10 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-11 14:02:10 SUCCESS
EnsureAccessTokenValuesAreDifferent
Access token values are not the same
first_access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.-fNsKU9HYq9FSpjgGFX3HvzOs2iDX2Q7W7Jpejh9kVpsMVppFxloTMkh0n8bpdD3fDfXBIg-dkdG7qZdFO13qg
second_access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.wC3IdnLR6EVCIvYFHhS_oFq2Y6fJE7vRW9Asd9zBlKnqhlUCkqiO60LQYw2lSoIHd8ZlnoiNqTPb-d4NyFmywQ
2021-09-11 14:02:10 INFO
ExtractIdTokenFromTokenResponse
Couldn't find id_token in token_endpoint_response
2021-09-11 14:02:10 SUCCESS
ExtractRefreshTokenFromTokenResponse
Extracted refresh token from response
refresh_token
Z0FBQUFBQmhQTGJpNnA2TThPaE1LaG9rdTdxcy03amxIbXFXa2hiSEpuMUtYRVRxNmY2aGRMNFZHazlfc3hhYTdQM1NfZVRxZTBWZ3V3eW1WWGZYZDI2QW03d09aTEktcUY4dGwzMXVGeU1KSmJ3T3BLcm5iMV9QdWlzOGpZanlnYnJVRjJzaGUtSTREZ2xjenl5dlpQYWUyWkE4RlJyNEZ2elFfZnhLaVdpZ3RiSDkwMDJ5SGF2X3VZemhESEkwWUxXajdoZk01TVdwQ3NNOWY3Tk1lVUIwTExpQUhxLXF5anZaVll2RnBVQ28xZHhYYm1yRkpVa241bnllNnM1SV82dDBobHNlUXdiT3pJbUdQeW93a0xqVVltVUdERXQwS3ZTQ2VQZlp1VVQ1MFBTZDNZb2pyWWpxMzB1QkpJLUpoVHQySzZKTFA2TUZDWWxlSUJCY0x2UjJXaDU1X1c5SkxaT0xKR1JTNk5jVm9KR1BkR3c2NFlDeDZZenBaSUVlWTR3dVpySi1tUnI0MU56U3hTMUJzUkhDM3p4Z2dIMHE0a3d6aHlNdWhuU2JqY1V1Vlc1d2RnRE1lNjJsdHRVWFVnamJtRExTSGdpZmVQNjNmSWQ1REw4emw5UzV0OTdPM0tLMmNjV3l1UEpEN3RiZWh4N2ZVZXhSdzdoRmpnVFg1UVd3ZkhtaUdRRHhSZVQ2V1pxbVlKaG5CVkk4aG9fZjZiS3I0VjhVcS1XaE5PcFBfVTZqdkhmQzBlcGgySjgyNWlXU1RnRDBMeHAwSFZ3cHA2MXlBcVRmRFhWS0pqYzgtX1JMTjYtSVc2bF8wWnJ0OUFLRU8tS3VMZEMyVnJYZ1hMVkVRUnRxOE9PZg==
2021-09-11 14:02:10 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
6976
required
128
2021-09-11 14:02:10 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
4870.789980385723
expected
96.0
2021-09-11 14:02:10 INFO
CompareIdTokenClaims
Skipped evaluation due to missing required object: second_id_token
expected
second_id_token
mapped
second_id_token
Second client: Userinfo endpoint tests
2021-09-11 14:02:10
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.wC3IdnLR6EVCIvYFHhS_oFq2Y6fJE7vRW9Asd9zBlKnqhlUCkqiO60LQYw2lSoIHd8ZlnoiNqTPb-d4NyFmywQ",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:02:10 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:10 GMT"
}
response_body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-11 14:02:10 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:10 GMT"
}
body
{"sub": "3c277ee9345293e0c1e1fa481c699a83d983addff54a9dfd8a0aa1832f223d11", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
Attempting to use refresh_token issued to client 2 with client 1
2021-09-11 14:02:10 SUCCESS
CreateRefreshTokenRequest
Created token endpoint request parameters
grant_type
refresh_token
refresh_token
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
2021-09-11 14:02:10 SUCCESS
AddScopeToTokenEndpointRequest
Added scope of 'openid offline_access' to token endpoint request
grant_type
refresh_token
refresh_token
Z0FBQUFBQmhQTGJpNnA2TThPaE1LaG9rdTdxcy03amxIbXFXa2hiSEpuMUtYRVRxNmY2aGRMNFZHazlfc3hhYTdQM1NfZVRxZTBWZ3V3eW1WWGZYZDI2QW03d09aTEktcUY4dGwzMXVGeU1KSmJ3T3BLcm5iMV9QdWlzOGpZanlnYnJVRjJzaGUtSTREZ2xjenl5dlpQYWUyWkE4RlJyNEZ2elFfZnhLaVdpZ3RiSDkwMDJ5SGF2X3VZemhESEkwWUxXajdoZk01TVdwQ3NNOWY3Tk1lVUIwTExpQUhxLXF5anZaVll2RnBVQ28xZHhYYm1yRkpVa241bnllNnM1SV82dDBobHNlUXdiT3pJbUdQeW93a0xqVVltVUdERXQwS3ZTQ2VQZlp1VVQ1MFBTZDNZb2pyWWpxMzB1QkpJLUpoVHQySzZKTFA2TUZDWWxlSUJCY0x2UjJXaDU1X1c5SkxaT0xKR1JTNk5jVm9KR1BkR3c2NFlDeDZZenBaSUVlWTR3dVpySi1tUnI0MU56U3hTMUJzUkhDM3p4Z2dIMHE0a3d6aHlNdWhuU2JqY1V1Vlc1d2RnRE1lNjJsdHRVWFVnamJtRExTSGdpZmVQNjNmSWQ1REw4emw5UzV0OTdPM0tLMmNjV3l1UEpEN3RiZWh4N2ZVZXhSdzdoRmpnVFg1UVd3ZkhtaUdRRHhSZVQ2V1pxbVlKaG5CVkk4aG9fZjZiS3I0VjhVcS1XaE5PcFBfVTZqdkhmQzBlcGgySjgyNWlXU1RnRDBMeHAwSFZ3cHA2MXlBcVRmRFhWS0pqYzgtX1JMTjYtSVc2bF8wWnJ0OUFLRU8tS3VMZEMyVnJYZ1hMVkVRUnRxOE9PZg==
scope
openid offline_access
2021-09-11 14:02:10 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg==
2021-09-11 14:02:10
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic bHpQc0ZFTE5aRTBrMnlqSVpfLU5CdzpmODY5MWUwOWUwZTE4NTczNGE2NjE3OWRmNWY5Njk5YTYyNWUzZTRkYjhlZTQ5YWRiNjRjOTE4Mg\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "943"
}
request_body
grant_type=refresh_token&refresh_token=Z0FBQUFBQmhQTGJpNnA2TThPaE1LaG9rdTdxcy03amxIbXFXa2hiSEpuMUtYRVRxNmY2aGRMNFZHazlfc3hhYTdQM1NfZVRxZTBWZ3V3eW1WWGZYZDI2QW03d09aTEktcUY4dGwzMXVGeU1KSmJ3T3BLcm5iMV9QdWlzOGpZanlnYnJVRjJzaGUtSTREZ2xjenl5dlpQYWUyWkE4RlJyNEZ2elFfZnhLaVdpZ3RiSDkwMDJ5SGF2X3VZemhESEkwWUxXajdoZk01TVdwQ3NNOWY3Tk1lVUIwTExpQUhxLXF5anZaVll2RnBVQ28xZHhYYm1yRkpVa241bnllNnM1SV82dDBobHNlUXdiT3pJbUdQeW93a0xqVVltVUdERXQwS3ZTQ2VQZlp1VVQ1MFBTZDNZb2pyWWpxMzB1QkpJLUpoVHQySzZKTFA2TUZDWWxlSUJCY0x2UjJXaDU1X1c5SkxaT0xKR1JTNk5jVm9KR1BkR3c2NFlDeDZZenBaSUVlWTR3dVpySi1tUnI0MU56U3hTMUJzUkhDM3p4Z2dIMHE0a3d6aHlNdWhuU2JqY1V1Vlc1d2RnRE1lNjJsdHRVWFVnamJtRExTSGdpZmVQNjNmSWQ1REw4emw5UzV0OTdPM0tLMmNjV3l1UEpEN3RiZWh4N2ZVZXhSdzdoRmpnVFg1UVd3ZkhtaUdRRHhSZVQ2V1pxbVlKaG5CVkk4aG9fZjZiS3I0VjhVcS1XaE5PcFBfVTZqdkhmQzBlcGgySjgyNWlXU1RnRDBMeHAwSFZ3cHA2MXlBcVRmRFhWS0pqYzgtX1JMTjYtSVc2bF8wWnJ0OUFLRU8tS3VMZEMyVnJYZ1hMVkVRUnRxOE9PZg%3D%3D&scope=openid+offline_access
2021-09-11 14:02:11 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
BAD REQUEST
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "63",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:11 GMT"
}
response_body
{"error": "invalid_grant", "error_description": "Wrong client"}
2021-09-11 14:02:11 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
invalid_grant
error_description
Wrong client
2021-09-11 14:02:11 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_grant
2021-09-11 14:02:11 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2021-09-11 14:02:11 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-09-11 14:02:11 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidGrant
Token Endpoint response error returned expected 'error' of 'invalid_grant'
expected
[
  "invalid_grant"
]
2021-09-11 14:02:11 FINISHED
oidcc-refresh-token
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2021-09-11 14:02:11
UnregisterDynamicallyRegisteredClient
HTTP request
request_uri
https://89.45.234.133:4000/registration_api?client_id=lzPsFELNZE0k2yjIZ_-NBw
request_method
DELETE
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "authorization": "Bearer G-k9TuscLJ2kBXJG5V3pCVIipi43jgfMh_yI5JrfWCA",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:02:11 RESPONSE
UnregisterDynamicallyRegisteredClient
HTTP response
response_status_code
405 METHOD_NOT_ALLOWED
response_status_text
METHOD NOT ALLOWED
response_headers
{
  "content-type": "text/html; charset\u003dutf-8",
  "allow": "OPTIONS, HEAD, GET",
  "content-length": "178",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:11 GMT"
}
response_body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
2021-09-11 14:02:11 INFO
UnregisterDynamicallyRegisteredClient
Error when calling registration_client_uri
code
405
body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
status
METHOD NOT ALLOWED
Second client: Unregister dynamically registered client
2021-09-11 14:02:11
UnregisterDynamicallyRegisteredClient
HTTP request
request_uri
https://89.45.234.133:4000/registration_api?client_id=QsrFvuHjqHoJQF37Pc89wg
request_method
DELETE
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "authorization": "Bearer tgqOp3OORS3c0xeyp1Tc2I0q8WTtkM9itfgrIQNM3gs",
  "content-length": "0"
}
request_body

                                
2021-09-11 14:02:12 RESPONSE
UnregisterDynamicallyRegisteredClient
HTTP response
response_status_code
405 METHOD_NOT_ALLOWED
response_status_text
METHOD NOT ALLOWED
response_headers
{
  "content-type": "text/html; charset\u003dutf-8",
  "allow": "OPTIONS, HEAD, GET",
  "content-length": "178",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Sat, 11 Sep 2021 14:02:12 GMT"
}
response_body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
2021-09-11 14:02:12 INFO
UnregisterDynamicallyRegisteredClient
Error when calling registration_client_uri
code
405
body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
status
METHOD NOT ALLOWED
Test Results