Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-09-06 07:15:00 INFO
TEST-RUNNER
Test instance ssNkJGCbbMKLqfJ created
baseUrl
https://www.certification.openid.net/test/a/idpy
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "server_metadata": "discovery",
  "response_mode": "default",
  "client_registration": "dynamic_client"
}
alias
idpy
description
oidcop
planId
TcuL2IL86QhSD
config
{
  "alias": "idpy",
  "description": "oidcop",
  "server": {
    "discoveryUrl": "https://89.45.234.133:4000/.well-known/openid-configuration",
    "login_hint": "roland@89.45.234.133:4000"
  },
  "client2": {
    "client_name": "Anything"
  }
}
testName
oidcc-prompt-login
2021-09-06 07:15:00 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-06 07:15:00
GetDynamicServerConfiguration
HTTP request
request_uri
https://89.45.234.133:4000/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-09-06 07:15:00 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3598",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:00 GMT"
}
response_body
{"version": "3.0", "token_endpoint_auth_methods_supported": ["client_secret_post", "client_secret_basic", "client_secret_jwt", "private_key_jwt"], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": true, "grant_types_supported": ["authorization_code", "implicit", "urn:ietf:params:oauth:grant-type:jwt-bearer", "refresh_token"], "subject_types_supported": ["public", "pairwise"], "registration_endpoint": "https://89.45.234.133:4000/registration", "introspection_endpoint": "https://89.45.234.133:4000/introspection", "response_types_supported": ["code", "token", "id_token", "code token", "code id_token", "id_token token", "code id_token token", "none"], "response_modes_supported": ["query", "fragment", "form_post"], "request_object_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "request_object_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "request_object_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "claim_types_supported": ["normal", "aggregated", "distributed"], "authorization_endpoint": "https://89.45.234.133:4000/authorization", "token_endpoint_auth_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "token_endpoint": "https://89.45.234.133:4000/token", "userinfo_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "userinfo_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "userinfo_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "client_authn_method": ["bearer_header", "bearer_body"], "userinfo_endpoint": "https://89.45.234.133:4000/userinfo", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true, "backchannel_logout_supported": true, "backchannel_logout_session_supported": true, "check_session_iframe": "https://89.45.234.133:4000/check_session_iframe", "end_session_endpoint": "https://89.45.234.133:4000/session", "issuer": "https://89.45.234.133:4000", "acr_values_supported": ["urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"], "jwks_uri": "https://89.45.234.133:4000/static/jwks.json", "scopes_supported": ["openid", "address", "research_and_scholarship", "email", "offline_access", "profile", "phone"], "claims_supported": ["family_name", "nickname", "profile", "name", "website", "locale", "email_verified", "middle_name", "phone_number", "iss", "address", "sub", "gender", "updated_at", "given_name", "phone_number_verified", "email", "zoneinfo", "eduperson_scoped_affiliation", "picture", "preferred_username", "birthdate"], "id_token_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "id_token_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "id_token_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"]}
2021-09-06 07:15:00
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"version": "3.0", "token_endpoint_auth_methods_supported": ["client_secret_post", "client_secret_basic", "client_secret_jwt", "private_key_jwt"], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": true, "grant_types_supported": ["authorization_code", "implicit", "urn:ietf:params:oauth:grant-type:jwt-bearer", "refresh_token"], "subject_types_supported": ["public", "pairwise"], "registration_endpoint": "https://89.45.234.133:4000/registration", "introspection_endpoint": "https://89.45.234.133:4000/introspection", "response_types_supported": ["code", "token", "id_token", "code token", "code id_token", "id_token token", "code id_token token", "none"], "response_modes_supported": ["query", "fragment", "form_post"], "request_object_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "request_object_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "request_object_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "claim_types_supported": ["normal", "aggregated", "distributed"], "authorization_endpoint": "https://89.45.234.133:4000/authorization", "token_endpoint_auth_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "token_endpoint": "https://89.45.234.133:4000/token", "userinfo_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "userinfo_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "userinfo_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"], "client_authn_method": ["bearer_header", "bearer_body"], "userinfo_endpoint": "https://89.45.234.133:4000/userinfo", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true, "backchannel_logout_supported": true, "backchannel_logout_session_supported": true, "check_session_iframe": "https://89.45.234.133:4000/check_session_iframe", "end_session_endpoint": "https://89.45.234.133:4000/session", "issuer": "https://89.45.234.133:4000", "acr_values_supported": ["urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"], "jwks_uri": "https://89.45.234.133:4000/static/jwks.json", "scopes_supported": ["openid", "address", "research_and_scholarship", "email", "offline_access", "profile", "phone"], "claims_supported": ["family_name", "nickname", "profile", "name", "website", "locale", "email_verified", "middle_name", "phone_number", "iss", "address", "sub", "gender", "updated_at", "given_name", "phone_number_verified", "email", "zoneinfo", "eduperson_scoped_affiliation", "picture", "preferred_username", "birthdate"], "id_token_signing_alg_values_supported": ["RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "HS256", "HS384", "HS512", "PS256", "PS384", "PS512"], "id_token_encryption_alg_values_supported": ["RSA-OAEP", "RSA-OAEP-256", "A128KW", "A192KW", "A256KW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW"], "id_token_encryption_enc_values_supported": ["A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM"]}
2021-09-06 07:15:00 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
version
3.0
token_endpoint_auth_methods_supported
[
  "client_secret_post",
  "client_secret_basic",
  "client_secret_jwt",
  "private_key_jwt"
]
claims_parameter_supported
true
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
grant_types_supported
[
  "authorization_code",
  "implicit",
  "urn:ietf:params:oauth:grant-type:jwt-bearer",
  "refresh_token"
]
subject_types_supported
[
  "public",
  "pairwise"
]
registration_endpoint
https://89.45.234.133:4000/registration
introspection_endpoint
https://89.45.234.133:4000/introspection
response_types_supported
[
  "code",
  "token",
  "id_token",
  "code token",
  "code id_token",
  "id_token token",
  "code id_token token",
  "none"
]
response_modes_supported
[
  "query",
  "fragment",
  "form_post"
]
request_object_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
request_object_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
request_object_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
claim_types_supported
[
  "normal",
  "aggregated",
  "distributed"
]
authorization_endpoint
https://89.45.234.133:4000/authorization
token_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
token_endpoint
https://89.45.234.133:4000/token
userinfo_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
userinfo_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
userinfo_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
client_authn_method
[
  "bearer_header",
  "bearer_body"
]
userinfo_endpoint
https://89.45.234.133:4000/userinfo
frontchannel_logout_supported
true
frontchannel_logout_session_supported
true
backchannel_logout_supported
true
backchannel_logout_session_supported
true
check_session_iframe
https://89.45.234.133:4000/check_session_iframe
end_session_endpoint
https://89.45.234.133:4000/session
issuer
https://89.45.234.133:4000
acr_values_supported
[
  "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"
]
jwks_uri
https://89.45.234.133:4000/static/jwks.json
scopes_supported
[
  "openid",
  "address",
  "research_and_scholarship",
  "email",
  "offline_access",
  "profile",
  "phone"
]
claims_supported
[
  "family_name",
  "nickname",
  "profile",
  "name",
  "website",
  "locale",
  "email_verified",
  "middle_name",
  "phone_number",
  "iss",
  "address",
  "sub",
  "gender",
  "updated_at",
  "given_name",
  "phone_number_verified",
  "email",
  "zoneinfo",
  "eduperson_scoped_affiliation",
  "picture",
  "preferred_username",
  "birthdate"
]
id_token_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "HS256",
  "HS384",
  "HS512",
  "PS256",
  "PS384",
  "PS512"
]
id_token_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256",
  "A128KW",
  "A192KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
2021-09-06 07:15:00 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-09-06 07:15:00 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
authorization_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
token_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
userinfo_endpoint
{
  "testHost": "89.45.234.133",
  "testPort": 4000
}
2021-09-06 07:15:00
FetchServerKeys
Fetching server key
jwks_uri
https://89.45.234.133:4000/static/jwks.json
2021-09-06 07:15:00
FetchServerKeys
HTTP request
request_uri
https://89.45.234.133:4000/static/jwks.json
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-09-06 07:15:01 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-length": "691",
  "content-type": "application/json",
  "last-modified": "Mon, 06 Sep 2021 07:14:54 GMT",
  "cache-control": "public, max-age\u003d43200",
  "expires": "Mon, 06 Sep 2021 19:15:00 GMT",
  "etag": "\"1630912494.4546452-691-3956740992\"",
  "date": "Mon, 06 Sep 2021 07:15:00 GMT",
  "server": "Werkzeug/1.0.1 Python/3.8.10"
}
response_body
{"keys": [{"kty": "RSA", "use": "sig", "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ", "e": "AQAB", "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"}, {"kty": "EC", "use": "sig", "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA", "crv": "P-256", "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w", "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"}]}
2021-09-06 07:15:01
FetchServerKeys
Found JWK set string
jwk_string
{"keys": [{"kty": "RSA", "use": "sig", "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ", "e": "AQAB", "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"}, {"kty": "EC", "use": "sig", "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA", "crv": "P-256", "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w", "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"}]}
2021-09-06 07:15:01 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
      "e": "AQAB",
      "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA",
      "crv": "P-256",
      "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w",
      "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"
    }
  ]
}
2021-09-06 07:15:01 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
      "e": "AQAB",
      "n": "4DuoJU7Kdqz37-ZyqVZT_gwfVgV4h6TENLkQNRpQIIGrq7BhaNr9Li4ocZIu7x6N_KAKk-59pB4Xk1rjwMFGU7eKV3V1HBe2Nr-br8sU1Jw5ON8Z6_eV5L6c1i9asCklacYaMbxVVD3Unu0B964nrXm6Ct2vsLM-5sVNlOvMHHpS9HbJxByVSCyr43-riM4drq_5z806LLMU9_3KoOTI5a4NTtZpWmymWOJ_3uOdINJ6nun68rnNoHmrM_Cg302VkDb9vSQBw4WEgjXRYoeHRq9hx1IxOjK-8YFtQxrWcFJH4ntUqWPBxlhdpCM1clbhh7S8NfOcN-36Wblff7uFQw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "azRaTWlLTWZTM0ZLSUFZLVNjYm5Cd3FISmlMTVVkbVVJa2FnR0d5WkRmNA",
      "crv": "P-256",
      "x": "5hTpuQ1G3UMbypveGTh64PASzqrfhFllfqMFdNUlY9w",
      "y": "cg80sEOIDMcg5Stg4ubxpAnW_MXD71moNznzBF1toAU"
    }
  ]
}
2021-09-06 07:15:01 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-09-06 07:15:01 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-09-06 07:15:01 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-09-06 07:15:01 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-09-06 07:15:01
StoreOriginalClientConfiguration
No client details on configuration, created an empty original_client_config object.
2021-09-06 07:15:01
ExtractClientNameFromStoredConfig
Extracted client_name from stored client configuration.
client_name
2021-09-06 07:15:01 SUCCESS
GenerateRS256ClientJWKs
Generated client JWKs
client_jwks
{
  "keys": [
    {
      "p": "-22JSoNbUqPP-rTLhL9kDAiGpFU3tMnoM-LtpLF8aAiwc0mVoaFJb_855EMpBE4nGHpKxyCzTvEzA4d-k0Q3QE-iprEFY6MkVUVctbM5qW3ra8dfsQWq7ad4nTjU-eaCJ7FgMoBuj3z2kIVXTbIleqUTd4dsiUsu80aXzlnIdXU",
      "kty": "RSA",
      "q": "4zj8f8QwQoMFiiHPKl1l4xp7Vt6FCB7u4DHZhonlZTQMLTNVpv-7kMerwHj4iuhAj2KysDBGqctn8AipO5wXENUVvMfHkNL89OCdOndSSoU4GHh0y5enRdY-trPasvIUetCqVDPnELkzpPZ_AweKZ0ZJNReG1GQef5bn6x7VOgc",
      "d": "xufxe4PjBiR-uMmDtldkbSoKAj99Sf1LD7ZuBq1jWbXhaXt3m2Ppxr-U1ED3IchyJVdt-0meUg-gaPLytnACckLFKb6gogXtq1I3f2v0sd04XxptCKToK3sWmzMLWXbqP3S6iYg0q5LChdAR2JzIy0ZeT-kIG75li2H5Y2tO6r6_euJd_gsMLO5Wl-XtIJYtaDK2hJtylzg0yhkxF4-gdjSrXiXzfed_Nxl1Ny6gaf3D5m1iSRFEq0j8XWb5X37pP4F8_tXSWT1Yx5Zvcd6dCreAfr7bi7AQKyoLbyeaJuaTGrTqmsj8PceBEsjTca02jFDivMxunq7KJjh0ToNoWQ",
      "e": "AQAB",
      "use": "sig",
      "qi": "oEFe7IosW90lKVkJboctykVWHmxjk1KUe40u_UjWMj_BGnnET5Z7s70EGdb80QdoSMn1llMLdD7l7wMrhJUOlodzV8Vh77RkhXZgcLEbYZWuKADLy5V2WxjOulB9nMtdegvhLcdHSOe_m0VBvguO6Fi1ot6Y_LruU5FR_6F7DL0",
      "dp": "K5zMe8hdRvBzWyGRS-2HBS9Va5v8lbeQN6_dWPwQgFtBgD37XpYDjxHOkPG1Y7HKxkwwPGpHsCHWn34ZTqI-k0E9DX0XWjkqTEBD3KDCF8mhVIi46JP7Gk46dcst5ks9uHTkIt50Tx92BYuboTaNmcCYp9st0ILiGgDcxEZ-pyE",
      "alg": "RS256",
      "dq": "NaZU6A34nxu0iSLmeUhIMFEmYiJ0IrC7EjBy_fM9OKILZfjC9oVXUh3zDaUCejnQVIqnSjZ72MdwKRrCapK2V4EYetRo6GcI1wDZ3t4hjfrafdyjJxcNpc2qTRU2RB4oe78dGHiQzEAOU5rn7l0vbqcHzgNaEHf7Q4DsDXXgPq0",
      "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "alg": "RS256",
      "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
    }
  ]
}
2021-09-06 07:15:01 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-09-06 07:15:01
CreateEmptyDynamicRegistrationRequest
Created empty dynamic registration request
2021-09-06 07:15:01
AddClientNameToDynamicRegistrationRequest
Added client_name to registration request
client_name
OIDF Conformance Test ssNkJGCbbMKLqfJ
2021-09-06 07:15:01
AddAuthorizationCodeGrantTypeToDynamicRegistrationRequest
Added 'authorization_code' to 'grant_types'
grant_types
[
  "authorization_code"
]
2021-09-06 07:15:01
AddPublicJwksToDynamicRegistrationRequest
Added client public JWKS to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  }
}
2021-09-06 07:15:01
AddTokenEndpointAuthMethodToDynamicRegistrationRequestFromEnvironment
Added token endpoint auth method to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic"
}
2021-09-06 07:15:01
AddResponseTypesArrayToDynamicRegistrationRequestFromEnvironment
Added response_types array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code"
  ]
}
2021-09-06 07:15:01
AddRedirectUriToDynamicRegistrationRequest
Added redirect_uris array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-06 07:15:01
AddContactsToDynamicRegistrationRequest
Added contacts array to dynamic registration request
dynamic_registration_request
{
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "response_types": [
    "code"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ]
}
2021-09-06 07:15:01
CallDynamicRegistrationEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/registration
request_method
POST
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "content-type": "application/json",
  "content-length": "703"
}
request_body
{"client_name":"OIDF Conformance Test ssNkJGCbbMKLqfJ","grant_types":["authorization_code"],"jwks":{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","alg":"RS256","n":"3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"}]},"token_endpoint_auth_method":"client_secret_basic","response_types":["code"],"redirect_uris":["https://www.certification.openid.net/test/a/idpy/callback"],"contacts":["certification@oidf.org"]}
2021-09-06 07:15:01 RESPONSE
CallDynamicRegistrationEndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
CREATED
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1113",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1630912501|FS6tY5+Yi1pgF8dj|VEzpiIb2GEkqJAiKl56RDrsOsehSS1avQJdUg5Rm1C0BJoZAM23VzjoBwi7Jm6qAJBcNuXcgZG/So+2AH0yvtw4Ss5VQCNW1ajBdDcekonpy7OiMr84INMST3xv30Dj35TZP78KcKG8\u003d|WBkCrsMi1IdQuhRBb/VtJw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:01 GMT"
}
response_body
{"client_id": "Zfk79UOsw0cvAm1CNbTgnQ", "registration_access_token": "jHA2Go0XXAbvwc6DyN36lJPZC3JVTiD-7ZbRedo2dxo", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=Zfk79UOsw0cvAm1CNbTgnQ", "client_id_issued_at": 1630912501, "client_secret": "21e945071b374aa7558255d71bb79807bd3602548bbddf2b9b5b334a", "client_secret_expires_at": 1633504501, "application_type": "web", "response_types": ["code"], "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ", "grant_types": ["authorization_code"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
2021-09-06 07:15:01
CallDynamicRegistrationEndpoint
Parsed registration endpoint response
status
201
endpoint_name
dynamic registration
headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1113",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op_rp\u003d1630912501|FS6tY5+Yi1pgF8dj|VEzpiIb2GEkqJAiKl56RDrsOsehSS1avQJdUg5Rm1C0BJoZAM23VzjoBwi7Jm6qAJBcNuXcgZG/So+2AH0yvtw4Ss5VQCNW1ajBdDcekonpy7OiMr84INMST3xv30Dj35TZP78KcKG8\u003d|WBkCrsMi1IdQuhRBb/VtJw\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:01 GMT"
}
body
{"client_id": "Zfk79UOsw0cvAm1CNbTgnQ", "registration_access_token": "jHA2Go0XXAbvwc6DyN36lJPZC3JVTiD-7ZbRedo2dxo", "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id=Zfk79UOsw0cvAm1CNbTgnQ", "client_id_issued_at": 1630912501, "client_secret": "21e945071b374aa7558255d71bb79807bd3602548bbddf2b9b5b334a", "client_secret_expires_at": 1633504501, "application_type": "web", "response_types": ["code"], "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ", "grant_types": ["authorization_code"], "jwks": {"keys": [{"kty": "RSA", "e": "AQAB", "alg": "RS256", "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"}]}, "token_endpoint_auth_method": "client_secret_basic", "contacts": ["certification@oidf.org"], "redirect_uris": ["https://www.certification.openid.net/test/a/idpy/callback"]}
body_json
{
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ",
  "registration_access_token": "jHA2Go0XXAbvwc6DyN36lJPZC3JVTiD-7ZbRedo2dxo",
  "registration_client_uri": "https://89.45.234.133:4000/registration_api?client_id\u003dZfk79UOsw0cvAm1CNbTgnQ",
  "client_id_issued_at": 1630912501,
  "client_secret": "21e945071b374aa7558255d71bb79807bd3602548bbddf2b9b5b334a",
  "client_secret_expires_at": 1633504501,
  "application_type": "web",
  "response_types": [
    "code"
  ],
  "client_name": "OIDF Conformance Test ssNkJGCbbMKLqfJ",
  "grant_types": [
    "authorization_code"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "alg": "RS256",
        "n": "3yoYsGnyboAbVd55tCsngLAbMNm5j5AbwUPzawZKBJbusvra8LLDFKBCs8XU5Wryq--NtszgG0Sp_oiNFxzPhEI1p2RXSVPXhyUy1z5yrsbz8eZ8NQmtChKDLkqugg8MbR81V3LxZpArg0hwMns8WBYYXk901HqPbqvcszK_WA5uY5CWmy_kIDSY1kp8uUZWk4E-9VIAO72BjztUhOusb-9NBnNN8KatWkcQvN3eXV8LIBI6wV2sn1Y8PcFvLhtZyseZLFG9RHX6k-xW0QPdTm9NG9VAKL4aqits1yZ-KRqlpsoIjgUmBQj0BbZ_rrzi-Ti94M3bc81NF33wT3C4Mw"
      }
    ]
  },
  "token_endpoint_auth_method": "client_secret_basic",
  "contacts": [
    "certification@oidf.org"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/idpy/callback"
  ]
}
2021-09-06 07:15:01 SUCCESS
EnsureContentTypeJson
endpoint_response Content-Type: header is application/json
2021-09-06 07:15:01 SUCCESS
EnsureHttpStatusCodeIs201
dynamic registration endpoint returned the expected http status
http_status
201
2021-09-06 07:15:01 SUCCESS
CheckNoErrorFromDynamicRegistrationEndpoint
Dynamic registration endpoint did not return an error.
2021-09-06 07:15:01 SUCCESS
ExtractDynamicRegistrationResponse
Extracted client from dynamic registration response
client_id
Zfk79UOsw0cvAm1CNbTgnQ
2021-09-06 07:15:01 SUCCESS
ExtractClientManagementCredentials
Extracted dynamic registration management credentials
registration_client_uri
https://89.45.234.133:4000/registration_api?client_id=Zfk79UOsw0cvAm1CNbTgnQ
registration_access_token
jHA2Go0XXAbvwc6DyN36lJPZC3JVTiD-7ZbRedo2dxo
2021-09-06 07:15:01
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2021-09-06 07:15:01 SUCCESS
EnsureServerConfigurationSupportsClientSecretBasic
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "client_secret_post",
  "client_secret_basic",
  "client_secret_jwt",
  "private_key_jwt"
]
expected
[
  "client_secret_basic"
]
minimum_matches_required
1
2021-09-06 07:15:01 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
https://89.45.234.133:4000/userinfo
2021-09-06 07:15:01
oidcc-prompt-login
Setup Done
Make request to authorization endpoint
2021-09-06 07:15:01 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
2021-09-06 07:15:01
CreateRandomStateValue
Created state value
requested_state_length
10
state
S8bVbiJzEJ
2021-09-06 07:15:01 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
S8bVbiJzEJ
2021-09-06 07:15:01
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
YUrdAdhDLc
2021-09-06 07:15:01 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
S8bVbiJzEJ
nonce
YUrdAdhDLc
2021-09-06 07:15:01 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
S8bVbiJzEJ
nonce
YUrdAdhDLc
response_type
code
2021-09-06 07:15:01 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://89.45.234.133:4000/authorization?client_id=Zfk79UOsw0cvAm1CNbTgnQ&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid&state=S8bVbiJzEJ&nonce=YUrdAdhDLc&response_type=code
2021-09-06 07:15:01 REDIRECT
oidcc-prompt-login
Redirecting to authorization endpoint
redirect_to
https://89.45.234.133:4000/authorization?client_id=Zfk79UOsw0cvAm1CNbTgnQ&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid&state=S8bVbiJzEJ&nonce=YUrdAdhDLc&response_type=code
2021-09-06 07:15:07 INCOMING
oidcc-prompt-login
Incoming HTTP request to test instance ssNkJGCbbMKLqfJ
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "accept-language": "en-us",
  "referer": "https://89.45.234.133:4000/authorization?client_id\u003dZfk79UOsw0cvAm1CNbTgnQ\u0026redirect_uri\u003dhttps://www.certification.openid.net/test/a/idpy/callback\u0026scope\u003dopenid\u0026state\u003dS8bVbiJzEJ\u0026nonce\u003dYUrdAdhDLc\u0026response_type\u003dcode",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "state": "S8bVbiJzEJ",
  "scope": "openid",
  "code": "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\u003d\u003d",
  "session_state": "d73ba4ee25c72236cb5cb6d273c58f0d88d3b6e27e22fa8bc10a309fa0260df8.oH0trlHG5N2gGpygyRL-wg",
  "iss": "https://89.45.234.133:4000",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
incoming_body
2021-09-06 07:15:07 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/MdgESXcBWPZcCMUMWaVz",
  "fullUrl": "https://www.certification.openid.net/test/a/idpy/implicit/MdgESXcBWPZcCMUMWaVz"
}
2021-09-06 07:15:07 OUTGOING
oidcc-prompt-login
Response to HTTP request to test instance ssNkJGCbbMKLqfJ
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/idpy/implicit/MdgESXcBWPZcCMUMWaVz, returnUrl=/log-detail.html?log=ssNkJGCbbMKLqfJ}]
outgoing_path
callback
2021-09-06 07:15:08 INCOMING
oidcc-prompt-login
Incoming HTTP request to test instance ssNkJGCbbMKLqfJ
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-us",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://www.certification.openid.net/test/a/idpy/callback?state\u003dS8bVbiJzEJ\u0026scope\u003dopenid\u0026code\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%3D%3D\u0026session_state\u003dd73ba4ee25c72236cb5cb6d273c58f0d88d3b6e27e22fa8bc10a309fa0260df8.oH0trlHG5N2gGpygyRL-wg\u0026iss\u003dhttps%3A%2F%2F89.45.234.133%3A4000\u0026client_id\u003dZfk79UOsw0cvAm1CNbTgnQ",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/MdgESXcBWPZcCMUMWaVz
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-09-06 07:15:08 OUTGOING
oidcc-prompt-login
Response to HTTP request to test instance ssNkJGCbbMKLqfJ
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/MdgESXcBWPZcCMUMWaVz
2021-09-06 07:15:08 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-09-06 07:15:08 REDIRECT-IN
oidcc-prompt-login
Authorization endpoint response captured
url_query
{
  "state": "S8bVbiJzEJ",
  "scope": "openid",
  "code": "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\u003d\u003d",
  "session_state": "d73ba4ee25c72236cb5cb6d273c58f0d88d3b6e27e22fa8bc10a309fa0260df8.oH0trlHG5N2gGpygyRL-wg",
  "iss": "https://89.45.234.133:4000",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
headers
{
  "host": "www.certification.openid.net",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "accept-language": "en-us",
  "referer": "https://89.45.234.133:4000/authorization?client_id\u003dZfk79UOsw0cvAm1CNbTgnQ\u0026redirect_uri\u003dhttps://www.certification.openid.net/test/a/idpy/callback\u0026scope\u003dopenid\u0026state\u003dS8bVbiJzEJ\u0026nonce\u003dYUrdAdhDLc\u0026response_type\u003dcode",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2021-09-06 07:15:08 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-09-06 07:15:08 SUCCESS
ValidateIssInAuthorizationResponse
'iss' parameter in authorization response matches server's issuer value.
2021-09-06 07:15:08 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-09-06 07:15:08 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
S8bVbiJzEJ
2021-09-06 07:15:08 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
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
2021-09-06 07:15:08 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
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
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-06 07:15:08 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic WmZrNzlVT3N3MGN2QW0xQ05iVGduUToyMWU5NDUwNzFiMzc0YWE3NTU4MjU1ZDcxYmI3OTgwN2JkMzYwMjU0OGJiZGRmMmI5YjViMzM0YQ==
2021-09-06 07:15:08
CallTokenEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic WmZrNzlVT3N3MGN2QW0xQ05iVGduUToyMWU5NDUwNzFiMzc0YWE3NTU4MjU1ZDcxYmI3OTgwN2JkMzYwMjU0OGJiZGRmMmI5YjViMzM0YQ\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "996"
}
request_body
grant_type=authorization_code&code=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%3D%3D&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fidpy%2Fcallback
2021-09-06 07:15:08 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "2125",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1630912508|b+K7a5xxtAQUCR2y|rhSmit3lHrP+S7eivs6EKzYPVKQmYd96PuCIDlCNcXY4RRjT7Kj4xGKMFUezaauzlJ+HtmZyONxTF1PJhtase2hia1I4ZFbAWBGnylG08iQhn1xKSYrNZX75InGP2zBhdwomCACKwRhg7hRjv036tH6UU3ieR4Hr2urCeNjkEpJ1hIlrb5Zv0XtE1+b0G0WTNJ6yWkeYALSyuy4XXQRV75XcgbLqjP6CV1hhPlHwCkmkB6bEsa+8kzf5LKM1kxn3Dh9qLSc3|0GmiPdUtuI5nECY2nkgbcg\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:08 GMT"
}
response_body
{"token_type": "Bearer", "scope": "openid", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw", "expires_in": 1800, "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw"}
2021-09-06 07:15:08
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"token_type": "Bearer", "scope": "openid", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIl0sICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXSwgImp0aSI6ICIyYWQ5MDg5ZDBlZTIxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzdWIiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzaWQiOiAiWjBGQlFVRkJRbWhPWWw4M1pHbFNRVXBQVXpWWk5FNVFlbGg2UW5kR1YyUTNVamx0UjFCMmQxQnJkRUpSTUdOc05IRlRUVVJzUWxsRVNGcDJOM0paUzIxcGRtRlRaMll3VFd4aldtVTBhRVoyTVZGS1l6QTRUbUl3TFY4MGNUbFpMVWRFV1Vadk5HaGFUamd3VkcxcVNYVXpNVWRxUWxWS1VHVllTRzlNU2xoYVVVeDBVMGN4VjJ0WGFWZFZOSGx3ZG5WaE9USlVhbXhFY1hScFQwbEJVVzlNZDA1RmJEbFlMV1ZtT0VkVFRuSk9hWFZaU2tGbFJGaFBjalpyUXpWc2QwTnZkVk0xTldSRmRVcHljR3RVV1ZOMldETXRNa3hHU0U5VldWQXRjblowUkZBM1FsRnRZVFZJVTNaZmNHcG5UM1JHWjJaa1ZUMD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMwOTEyNTA4LCAiZXhwIjogMTYzMDkxNjEwOH0.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw", "expires_in": 1800, "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiN2JjYTIzNzQ5YzA1ODhiOWYyYWQwZjA4NWNiN2ZjODYyZGYxNzkxOTY3Yzk2MmFjM2FjODhhY2NkYjBjM2ZjYiIsICJhdXRoX3RpbWUiOiAxNjMwOTEyNTA3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJqdGkiOiAiMmFkOTA4OWYwZWUyMTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiLCAibm9uY2UiOiAiWVVyZEFkaERMYyIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMDkxMjUwOCwgImV4cCI6IDE2MzA5MTI4MDgsICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXX0.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw"}
2021-09-06 07:15:08 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
token_type
Bearer
scope
openid
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw
expires_in
1800
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw
2021-09-06 07:15:08 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-06 07:15:08 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw
2021-09-06 07:15:08 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw
type
Bearer
2021-09-06 07:15:08 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-06 07:15:08 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-06 07:15:08 INFO
CheckForRefreshTokenValue
Couldn't find refresh token
2021-09-06 07:15:08 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "Zfk79UOsw0cvAm1CNbTgnQ",
  "auth_time": 1630912507,
  "scope": [
    "openid"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1630912808,
  "nonce": "YUrdAdhDLc",
  "iat": 1630912508,
  "jti": "2ad9089f0ee211ec8c99b12594190b0f",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
2021-09-06 07:15:08 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-06 07:15:08 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
YUrdAdhDLc
2021-09-06 07:15:08 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-06 07:15:08 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiN2JjYTIzNzQ5YzA1ODhiOWYyYWQwZjA4NWNiN2ZjODYyZGYxNzkxOTY3Yzk2MmFjM2FjODhhY2NkYjBjM2ZjYiIsICJhdXRoX3RpbWUiOiAxNjMwOTEyNTA3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJqdGkiOiAiMmFkOTA4OWYwZWUyMTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiLCAibm9uY2UiOiAiWVVyZEFkaERMYyIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMDkxMjUwOCwgImV4cCI6IDE2MzA5MTI4MDgsICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXX0.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw
2021-09-06 07:15:08 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiN2JjYTIzNzQ5YzA1ODhiOWYyYWQwZjA4NWNiN2ZjODYyZGYxNzkxOTY3Yzk2MmFjM2FjODhhY2NkYjBjM2ZjYiIsICJhdXRoX3RpbWUiOiAxNjMwOTEyNTA3LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJqdGkiOiAiMmFkOTA4OWYwZWUyMTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiLCAibm9uY2UiOiAiWVVyZEFkaERMYyIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMDkxMjUwOCwgImV4cCI6IDE2MzA5MTI4MDgsICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXX0.aABUmqSh49hDv1hK8e__scr2qMx3tigcejwWEEAhbt5U9Oz7-mqsv6s8XiR-xLtfzXOb0QPfb08E98T1XomSnfbDRLKuIU2yQIlPfGgetkspGOsKhn6T2dkoWNofrG_9IKIIRMddL6NIDbxk8ziQAMKdqSjgl5GrBZ7oC3EJzIFg76xPgbd534MelOa9csqjczBeKPQjdpBr_Encvl1nD8WK-7QWF5dT2ry2pLranRPShChL7X0a-mGtNCothJpTFYo-l-KLe0M6dAEQWDg_f_r4NG9KJ_e0uyNzIvF_wiwNSN_FCC3u0zkjsir86JDpeEIm8VkCL-7p6it0WQqUNw
2021-09-06 07:15:08 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb
Userinfo endpoint tests
2021-09-06 07:15:08
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.3fmOFkVIwYh8qKCKLbTjUbIOl5YXqzeDiWc8bKUyulYLkWNg7ZW9sK-aG7Fr3N_T36uRFxxr0q1DpzwfB9XnGw",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-06 07:15:09 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:09 GMT"
}
response_body
{"sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-06 07:15:09 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:09 GMT"
}
body
{"sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
Second authorization: Make request to authorization endpoint
2021-09-06 07:15:09 SUCCESS
WaitForOneSecond
Pausing for 1 seconds
2021-09-06 07:15:10 SUCCESS
WaitForOneSecond
Woke up after 1 seconds sleep
2021-09-06 07:15:10 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
2021-09-06 07:15:10
CreateRandomStateValue
Created state value
requested_state_length
10
state
ltyVUR3kte
2021-09-06 07:15:10 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
ltyVUR3kte
2021-09-06 07:15:10
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
KsKyTxsTHr
2021-09-06 07:15:10 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
ltyVUR3kte
nonce
KsKyTxsTHr
2021-09-06 07:15:10 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
ltyVUR3kte
nonce
KsKyTxsTHr
response_type
code
2021-09-06 07:15:10 SUCCESS
AddPromptLoginToAuthorizationEndpointRequest
Added prompt=login to authorization endpoint request
client_id
Zfk79UOsw0cvAm1CNbTgnQ
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
scope
openid
state
ltyVUR3kte
nonce
KsKyTxsTHr
response_type
code
prompt
login
2021-09-06 07:15:10 SUCCESS
BuildPlainRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://89.45.234.133:4000/authorization?client_id=Zfk79UOsw0cvAm1CNbTgnQ&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid&state=ltyVUR3kte&nonce=KsKyTxsTHr&response_type=code&prompt=login
2021-09-06 07:15:10 REDIRECT
oidcc-prompt-login
Redirecting to authorization endpoint
redirect_to
https://89.45.234.133:4000/authorization?client_id=Zfk79UOsw0cvAm1CNbTgnQ&redirect_uri=https://www.certification.openid.net/test/a/idpy/callback&scope=openid&state=ltyVUR3kte&nonce=KsKyTxsTHr&response_type=code&prompt=login
2021-09-06 07:15:10 REVIEW IMAGE
ExpectSecondLoginPage
The server must ask the user to login for a second time; a screenshot of this must be uploaded.
img
updatedAt
1630912555826
2021-09-06 07:15:35 INCOMING
oidcc-prompt-login
Incoming HTTP request to test instance ssNkJGCbbMKLqfJ
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "accept-language": "en-us",
  "referer": "https://89.45.234.133:4000/authorization?client_id\u003dZfk79UOsw0cvAm1CNbTgnQ\u0026redirect_uri\u003dhttps://www.certification.openid.net/test/a/idpy/callback\u0026scope\u003dopenid\u0026state\u003dltyVUR3kte\u0026nonce\u003dKsKyTxsTHr\u0026response_type\u003dcode\u0026prompt\u003dlogin",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "state": "ltyVUR3kte",
  "scope": "openid",
  "code": "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\u003d\u003d",
  "session_state": "1e28dc2558bfa5a99c80d2f7c92b3d79afd2a20dcfcf18ccd1e031970a58ae49.QEvm3qUAyTelrJ7UVOtk0g",
  "iss": "https://89.45.234.133:4000",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
incoming_body
2021-09-06 07:15:35 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/tI0BT0PpUHcNMc8URlhH",
  "fullUrl": "https://www.certification.openid.net/test/a/idpy/implicit/tI0BT0PpUHcNMc8URlhH"
}
2021-09-06 07:15:35 OUTGOING
oidcc-prompt-login
Response to HTTP request to test instance ssNkJGCbbMKLqfJ
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/idpy/implicit/tI0BT0PpUHcNMc8URlhH, returnUrl=/log-detail.html?log=ssNkJGCbbMKLqfJ}]
outgoing_path
callback
2021-09-06 07:15:36 INCOMING
oidcc-prompt-login
Incoming HTTP request to test instance ssNkJGCbbMKLqfJ
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-us",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "referer": "https://www.certification.openid.net/test/a/idpy/callback?state\u003dltyVUR3kte\u0026scope\u003dopenid\u0026code\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%3D%3D\u0026session_state\u003d1e28dc2558bfa5a99c80d2f7c92b3d79afd2a20dcfcf18ccd1e031970a58ae49.QEvm3qUAyTelrJ7UVOtk0g\u0026iss\u003dhttps%3A%2F%2F89.45.234.133%3A4000\u0026client_id\u003dZfk79UOsw0cvAm1CNbTgnQ",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/tI0BT0PpUHcNMc8URlhH
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-09-06 07:15:36 OUTGOING
oidcc-prompt-login
Response to HTTP request to test instance ssNkJGCbbMKLqfJ
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/tI0BT0PpUHcNMc8URlhH
2021-09-06 07:15:36 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-09-06 07:15:36 REDIRECT-IN
oidcc-prompt-login
Authorization endpoint response captured
url_query
{
  "state": "ltyVUR3kte",
  "scope": "openid",
  "code": "Z0FBQUFBQmhOY0FYanVFNTlQRlhFQXpJR21YbUJhMGVpLVdra2FYV3lqNndlZFdBWHBZR3FlV2t6UGVaOE9aeDJzUF8yQk9FNlFZWmFUb3dKTUkwbWxSRmJNaG5lbU1hZWtmWGJQUW1sTDB3UnZ5NFFJSmJWTzRGeVNWd0paMU9yaEE5Nm5nQUU5RTFLWlROSW1uTmJNZnE2X2xuRWw4VmtOaUNmSFFXT2xOSWJkUU9SQWRSWDRTTG02dVRIZjBwX3lrVXA3QVdaaDBROFNvSVFpZU04Wk45VmdSMG9tdTRjdHJDNDczMmdBejd6NHlYYVhrVEFMcld4d2hWWTNpckljRTNGSVlhY0Vlb3VzRmt1ek9mN2JnSmJWbmlfN1BOT0tFOWgwTUdQeHRLTjQ4Z0NLMmhRMmYzcUpxNkJUdFpSY2IxU3hoSmx6UndMTXFjcmJFNnlQbzFfaVNKcUNydkJjRUV2d2luSzBYNzcwUUVMdGlVSzBlck5tbVlEa1k0WlV5amY4M1hocjcwM0MyZXY5dXQwZ3hfQkZwQ0pQWkNyTFE2QjE5WjY4SEVLTjZKcXFKV1BpcWpsUmx6X0RpYkctcXlSRFZsRFhhQlFORU05UnZZdkl0blVCRUZYaExvMXJDVkxwSWFjc0l6blF6RllId1BPVTN3VDdwcjhnWnJXTS01V0gxYVRnbExzT0hqUDh2WUFDYlZoODJfTHdJQ1c3LWl0VFBKNHVHdXBpNW5Ld25yU2I3VWMxNGE3NnJpajlFQ2RXaWVseXlQWThGODBudVBHQzY4VTR5aGt3U1RoVWZtenRqeFk1RXlmM0Y0c0FoODNGSDZja29VVlZFLXlhQ1pYY3Y4aW9lMg\u003d\u003d",
  "session_state": "1e28dc2558bfa5a99c80d2f7c92b3d79afd2a20dcfcf18ccd1e031970a58ae49.QEvm3qUAyTelrJ7UVOtk0g",
  "iss": "https://89.45.234.133:4000",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
headers
{
  "host": "www.certification.openid.net",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,*/*;q\u003d0.8",
  "cookie": "JSESSIONID\u003dA21F108F71114569DE22B78E209E14B3; __utma\u003d201319536.1870777121.1629795278.1630658791.1630855414.6; __utmc\u003d201319536; __utmz\u003d201319536.1630855414.6.3.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1.2 Safari/605.1.15",
  "accept-language": "en-us",
  "referer": "https://89.45.234.133:4000/authorization?client_id\u003dZfk79UOsw0cvAm1CNbTgnQ\u0026redirect_uri\u003dhttps://www.certification.openid.net/test/a/idpy/callback\u0026scope\u003dopenid\u0026state\u003dltyVUR3kte\u0026nonce\u003dKsKyTxsTHr\u0026response_type\u003dcode\u0026prompt\u003dlogin",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Second authorization: Verify authorization endpoint response
2021-09-06 07:15:36 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-09-06 07:15:36 SUCCESS
ValidateIssInAuthorizationResponse
'iss' parameter in authorization response matches server's issuer value.
2021-09-06 07:15:36 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-09-06 07:15:36 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
ltyVUR3kte
2021-09-06 07:15:36 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
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
2021-09-06 07:15:36 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
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
redirect_uri
https://www.certification.openid.net/test/a/idpy/callback
2021-09-06 07:15:36 SUCCESS
AddBasicAuthClientSecretAuthenticationParameters
Added basic authorization header
Authorization
Basic WmZrNzlVT3N3MGN2QW0xQ05iVGduUToyMWU5NDUwNzFiMzc0YWE3NTU4MjU1ZDcxYmI3OTgwN2JkMzYwMjU0OGJiZGRmMmI5YjViMzM0YQ==
2021-09-06 07:15:36
CallTokenEndpoint
HTTP request
request_uri
https://89.45.234.133:4000/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Basic WmZrNzlVT3N3MGN2QW0xQ05iVGduUToyMWU5NDUwNzFiMzc0YWE3NTU4MjU1ZDcxYmI3OTgwN2JkMzYwMjU0OGJiZGRmMmI5YjViMzM0YQ\u003d\u003d",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "996"
}
request_body
grant_type=authorization_code&code=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%3D%3D&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fidpy%2Fcallback
2021-09-06 07:15:37 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "2125",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "set-cookie": "oidc_op\u003d1630912536|l9tj52ciT0A5RISP|nWKZwRmBdV4wx90koRpYljUO1DTEBvR7HBzW7EjtoDkPt/OwpMXUbWlyYS4GrNzGVGKUVG0o5XC3sChpqAiUIeOIYvUGo4//+3o/VWesvjWctX+Q3CBtn5LOMqY3f7+dZ4+guAqIZ/Vby2mIkTOTx8LwWxD9weI/oC83GvAe8HYbdudtQkUczu1OWe3WDZiYYvkmMD8G5/1d+syLKvqJaVgapVdINIspgRAEsO4M1C0x41lFyFV87WW7Am94E7JwmVnL0WZy|PTjgvIQ/bC40NoZJ0bSV8A\u003d\u003d; Secure; HttpOnly; Path\u003d/; SameSite\u003dLax",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:36 GMT"
}
response_body
{"token_type": "Bearer", "scope": "openid", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg", "expires_in": 1800, "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA"}
2021-09-06 07:15:37
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"token_type": "Bearer", "scope": "openid", "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIl0sICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXSwgImp0aSI6ICIzYmMxY2EyMzBlZTIxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzdWIiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzaWQiOiAiWjBGQlFVRkJRbWhPWTBGWVZFSkRVbWg2TXpaemVVRk5NVTl1YVVrNFZsbFFPRTU0YjJ0bU9YbEhUamN4VUdrNE0zaEtXVGRtZUcxbVJtRkVXVVV4UTNOVlVXUnlWV3h6ZEhCR1lYSnFabDkxY1ZWT2VGbDFUVVJuTkZOT2NFaDJNRUZvYlRjMk4wSXlPRFpVZWsxM09VWlJiVUZrYjJsME1tTTNNVVZJZDJVMUxYcG5NMk5XWjBvd1dXVkxiRTl2YlhGSmFXRlVaa2xUYUZkTFlsVm5RMmhDUVVvMlVVZEJPSGh0UnpkQk9VNVRja1J1V1VaWllUY3RXRmMwYUc4d1prOXVkR3RHVkdaVmQyWnBUVWRDVVZseGFHSlNaelZCVDFoeFNUaFZYMDlWWVU5SWJHOTFTM0l6YUdWblFtSTVTRkp3UTFZeVZUMD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMwOTEyNTM2LCAiZXhwIjogMTYzMDkxNjEzNn0.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg", "expires_in": 1800, "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA"}
2021-09-06 07:15:37 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
token_type
Bearer
scope
openid
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg
expires_in
1800
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.eyJzdWIiOiAiN2JjYTIzNzQ5YzA1ODhiOWYyYWQwZjA4NWNiN2ZjODYyZGYxNzkxOTY3Yzk2MmFjM2FjODhhY2NkYjBjM2ZjYiIsICJhdXRoX3RpbWUiOiAxNjMwOTEyNTM1LCAiYWNyIjogInVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphYzpjbGFzc2VzOkludGVybmV0UHJvdG9jb2xQYXNzd29yZCIsICJzY29wZSI6IFsib3BlbmlkIl0sICJqdGkiOiAiM2JjMWNhMjUwZWUyMTFlYzhjOTliMTI1OTQxOTBiMGYiLCAiY2xpZW50X2lkIjogIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiLCAibm9uY2UiOiAiS3NLeVR4c1RIciIsICJpc3MiOiAiaHR0cHM6Ly84OS40NS4yMzQuMTMzOjQwMDAiLCAiaWF0IjogMTYzMDkxMjUzNiwgImV4cCI6IDE2MzA5MTI4MzYsICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXX0.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA
2021-09-06 07:15:37 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-09-06 07:15:37 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.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.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg
2021-09-06 07:15:37 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIl0sICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXSwgImp0aSI6ICIzYmMxY2EyMzBlZTIxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzdWIiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzaWQiOiAiWjBGQlFVRkJRbWhPWTBGWVZFSkRVbWg2TXpaemVVRk5NVTl1YVVrNFZsbFFPRTU0YjJ0bU9YbEhUamN4VUdrNE0zaEtXVGRtZUcxbVJtRkVXVVV4UTNOVlVXUnlWV3h6ZEhCR1lYSnFabDkxY1ZWT2VGbDFUVVJuTkZOT2NFaDJNRUZvYlRjMk4wSXlPRFpVZWsxM09VWlJiVUZrYjJsME1tTTNNVVZJZDJVMUxYcG5NMk5XWjBvd1dXVkxiRTl2YlhGSmFXRlVaa2xUYUZkTFlsVm5RMmhDUVVvMlVVZEJPSGh0UnpkQk9VNVRja1J1V1VaWllUY3RXRmMwYUc4d1prOXVkR3RHVkdaVmQyWnBUVWRDVVZseGFHSlNaelZCVDFoeFNUaFZYMDlWWVU5SWJHOTFTM0l6YUdWblFtSTVTRkp3UTFZeVZUMD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMwOTEyNTM2LCAiZXhwIjogMTYzMDkxNjEzNn0.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg
type
Bearer
2021-09-06 07:15:37 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
1800
2021-09-06 07:15:37 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
1800
2021-09-06 07:15:37 INFO
CheckForRefreshTokenValue
Couldn't find refresh token
2021-09-06 07:15:37 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA
header
{
  "kid": "T3k1MXJDY0NJZWlEbGs3S1lCaWdWRmpXeEdNWWl4TE1WWThrdzZtUXZXQQ",
  "alg": "RS256"
}
claims
{
  "sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "Zfk79UOsw0cvAm1CNbTgnQ",
  "auth_time": 1630912535,
  "scope": [
    "openid"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1630912836,
  "nonce": "KsKyTxsTHr",
  "iat": 1630912536,
  "jti": "3bc1ca250ee211ec8c99b12594190b0f",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
2021-09-06 07:15:37 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-09-06 07:15:37 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
KsKyTxsTHr
2021-09-06 07:15:37 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-09-06 07:15:37 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA
2021-09-06 07:15:37 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6IlQzazFNWEpEWTBOSlpXbEViR3MzUzFsQ2FXZFdSbXBYZUVkTldXbDRURTFXV1RocmR6WnRVWFpYUVEifQ.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.Rp4ED_pJSlTmv7DHDSYkwBDSC8TUNNhIbIRx98cmqQjMm8S6sRsqVBCOG9fs4A08yXR_kFwxrgC5Qah8wOgy1DWpNDve5UTP-OkT8WRFRC676vKZW3R-8qRnmUN2vekL0klg_MYHEOHsKxS8xPBqkga4QODHoa0l9c6UTLbTHElkho_0Hzpj-ycPDZ1u0yu4SQiBF6T0ZWZTIkVIbVaEPlCmqHXWEi-MY5iB4azp5isy9VGix2IwkWmbfQ_52FZxDdtuD4krJeWjQQSOIOQLpw1KhM-INevIEaQ_h0j9lttHloSE_136jPK_QGlMIoMTi9g1ciNpzEIQgLf5UA0KgA
2021-09-06 07:15:37 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb
Second authorization: Userinfo endpoint tests
2021-09-06 07:15:37
CallProtectedResourceWithBearerToken
HTTP request
request_uri
https://89.45.234.133:4000/userinfo
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer eyJhbGciOiJFUzI1NiIsImtpZCI6ImF6UmFUV2xMVFdaVE0wWkxTVUZaTFZOalltNUNkM0ZJU21sTVRWVmtiVlZKYTJGblIwZDVXa1JtTkEifQ.eyJzY29wZSI6IFsib3BlbmlkIl0sICJhdWQiOiBbIlpmazc5VU9zdzBjdkFtMUNOYlRnblEiXSwgImp0aSI6ICIzYmMxY2EyMzBlZTIxMWVjOGM5OWIxMjU5NDE5MGIwZiIsICJjbGllbnRfaWQiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzdWIiOiAiWmZrNzlVT3N3MGN2QW0xQ05iVGduUSIsICJzaWQiOiAiWjBGQlFVRkJRbWhPWTBGWVZFSkRVbWg2TXpaemVVRk5NVTl1YVVrNFZsbFFPRTU0YjJ0bU9YbEhUamN4VUdrNE0zaEtXVGRtZUcxbVJtRkVXVVV4UTNOVlVXUnlWV3h6ZEhCR1lYSnFabDkxY1ZWT2VGbDFUVVJuTkZOT2NFaDJNRUZvYlRjMk4wSXlPRFpVZWsxM09VWlJiVUZrYjJsME1tTTNNVVZJZDJVMUxYcG5NMk5XWjBvd1dXVkxiRTl2YlhGSmFXRlVaa2xUYUZkTFlsVm5RMmhDUVVvMlVVZEJPSGh0UnpkQk9VNVRja1J1V1VaWllUY3RXRmMwYUc4d1prOXVkR3RHVkdaVmQyWnBUVWRDVVZseGFHSlNaelZCVDFoeFNUaFZYMDlWWVU5SWJHOTFTM0l6YUdWblFtSTVTRkp3UTFZeVZUMD0iLCAidG9rZW5fY2xhc3MiOiAiYWNjZXNzX3Rva2VuIiwgImlzcyI6ICJodHRwczovLzg5LjQ1LjIzNC4xMzM6NDAwMCIsICJpYXQiOiAxNjMwOTEyNTM2LCAiZXhwIjogMTYzMDkxNjEzNn0.Yza4V3XIf2Qq9PvzH8uLrvQTf0fafv3pNDTSw4wHOtESPuydYk1hNvfFHOftmI5qgqaX6iid-NLP-pOcnA3Sxg",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
2021-09-06 07:15:37 RESPONSE
CallProtectedResourceWithBearerToken
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:37 GMT"
}
response_body
{"sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-06 07:15:37 SUCCESS
CallProtectedResourceWithBearerToken
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "content-type": "application/json",
  "content-length": "149",
  "pragma": "no-cache",
  "cache-control": "no-store",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:15:37 GMT"
}
body
{"sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb", "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"}
2021-09-06 07:15:37 SUCCESS
CheckSecondIdTokenAuthTimeIsLaterIfPresent
auth_time is later in the second id_token
first_id_token
{
  "sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "Zfk79UOsw0cvAm1CNbTgnQ",
  "auth_time": 1630912507,
  "scope": [
    "openid"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1630912808,
  "nonce": "YUrdAdhDLc",
  "iat": 1630912508,
  "jti": "2ad9089f0ee211ec8c99b12594190b0f",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
second_id_token
{
  "sub": "7bca23749c0588b9f2ad0f085cb7fc862df1791967c962ac3ac88accdb0c3fcb",
  "acr": "urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword",
  "aud": "Zfk79UOsw0cvAm1CNbTgnQ",
  "auth_time": 1630912535,
  "scope": [
    "openid"
  ],
  "iss": "https://89.45.234.133:4000",
  "exp": 1630912836,
  "nonce": "KsKyTxsTHr",
  "iat": 1630912536,
  "jti": "3bc1ca250ee211ec8c99b12594190b0f",
  "client_id": "Zfk79UOsw0cvAm1CNbTgnQ"
}
2021-09-06 07:16:08 FINISHED
oidcc-prompt-login
Test has run to completion
testmodule_result
REVIEW
Unregister dynamically registered client
2021-09-06 07:16:08
UnregisterDynamicallyRegisteredClient
HTTP request
request_uri
https://89.45.234.133:4000/registration_api?client_id=Zfk79UOsw0cvAm1CNbTgnQ
request_method
DELETE
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "authorization": "Bearer jHA2Go0XXAbvwc6DyN36lJPZC3JVTiD-7ZbRedo2dxo",
  "content-length": "0"
}
request_body

                                
2021-09-06 07:16:08 RESPONSE
UnregisterDynamicallyRegisteredClient
HTTP response
response_status_code
405 METHOD_NOT_ALLOWED
response_status_text
METHOD NOT ALLOWED
response_headers
{
  "content-type": "text/html; charset\u003dutf-8",
  "allow": "GET, OPTIONS, HEAD",
  "content-length": "178",
  "server": "Werkzeug/1.0.1 Python/3.8.10",
  "date": "Mon, 06 Sep 2021 07:16:08 GMT"
}
response_body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
2021-09-06 07:16:08 INFO
UnregisterDynamicallyRegisteredClient
Error when calling registration_client_uri
code
405
body
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<title>405 Method Not Allowed</title>
<h1>Method Not Allowed</h1>
<p>The method is not allowed for the requested URL.</p>
status
METHOD NOT ALLOWED
Test Results