Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-05-31 18:04:20 INFO
TEST-RUNNER
Test instance oKNoE7ziKt85eU1 created
baseUrl
https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code id_token token",
  "request_type": "plain_http_request",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
Intuit_pauth_openid_hybrid_profile_plan_1
description
Test plan for OpenId with hybrid profile on Intuit PartnerAuth
planId
QIDfM7mwIPnrS
config
{
  "alias": "Intuit_pauth_openid_hybrid_profile_plan_1",
  "description": "Test plan for OpenId with hybrid profile on Intuit PartnerAuth",
  "client": {
    "client_secret_jwt_alg": "RS256",
    "client_id": "12345678-hybrid-profile-plain-private-key-clientid",
    "client_secret": "secret-hybrid-profile-plain-private-key-clientid",
    "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
    "scope": "openid accounts",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "keyid-to-fapi-plain-pauth",
          "alg": "PS256",
          "n": "urjyW-QSZIGGSe9kCUOnucEoQS28VhyL44VtyXhy0iuFgXnTRJxY6WnZP1yOcawCVRTdMkn6gGzZ2Mr7Lo1529gO6WyWV1Pl2CgjnUE4PNaIRSo_LpKVXZd7IycbRxg_UxrWo2rkpmUL5PzMYq9sGl7VfN-UpB7XcwMu7qRZd0LH_xWMThfuYHZRUxVt7V4Kw5xOID8wK8tSUbqf1kk9tAxyY8BHpFD3-bYQpHEYAx7OwdwW0UdBksItQNqOUdhB9kG89onYDe8uZvyxQqu8lpul_3snscIcDq0bxD83hVqL8E7SU7996poGWSKcoAWnBhUIzbPOcyfGFFw_RDK-Cw"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\nofDMEAPI9RcppT6elKQQ69M\u003d\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----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\nm/Egr0D/nA9GtlPyS0m2GkCkNqzyD2cyOilg\n-----END CERTIFICATE-----"
  },
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "0X5a2vAXxfvavrqVOd9EaRGuZzbyQx4GjkI70K8CmW_SpGlNnfiMi-j9pfltfhOezBtbAnLzxikdlMiaIZGX0sfGs7z6l6Iq4fCbKgwGYjDjDj_oRGuZjB7NM_AHIsknjoxaoZrJAZz5xrdttimdkmA5psiSCDGAYLXQr8KAsL0",
          "kty": "RSA",
          "q": "wGy6Gz0YO3bWMpAdxG_iZkFkgvfAgRExE0zUnPKcOgjq3Ue1VeIdUV1639bTpXI80KNaAwKHeFp5M05lrZEzfSeM5HH9yYG0GgfmXx-RFrGa8DZpFQXmcunPu3Opl0cdxADPETZpfSYJ8npo5cBEJTokR7kXtU2eOCG5UGKuggs",
          "d": "RmA_szTS9cQdt5kuz529dvsOA9vrWDpFocU07Uk09JcFnlebXif-Ovr8apA44Yj0EnIUaT0eplNMM5O3yCd9K2Dobvkop30C1dLjUsEHOwn89rxMmxTg6qrnDMkMbWU-lKbTRjZ7F4L8j2ZHqh0nSmhGOawdDVjqDepgPy9cv0AtonAEDRVZiaUiOwie4vFYVy7ksoNvAsCs6Pl4bLaYXDoP7SmWUWeenODHyoMsUt0Z45-3ti_-di0qm7yQNgZ8NWLZNAd5T73qZm5zOwkRO6Tu8ZiWBeAV7t-wteKAaQ-KVLnLik4fRUUVWtS80prbz4b-I9kvNagmtef-GveqcQ",
          "e": "AQAB",
          "qi": "Sbg51OpF8E4zYaRAUjMrQ_DB6My9fZiJhQXF9nrJML1TF30k7SN8pHJ-N86WUweyvRTOm9wRb6CWHrwlpgBX1syaMAMOQPnHxv84e8emQQLl_mO0OUldb4Z53RM9z0DXoyKrgCsGS6B3D9GAX8AUFrsYJQDGNg5ib85aTqGhQG0",
          "dp": "cJyogDpBvUZ2PsKThulyn7xGcOtDbTrNsVj_SF1bW1mV9JU6iOlbu7XB659Z8UTgvr0Rvg5G5kWhxiHTYKof38lOEb5LQomE3bF15zNRlyTKWRWXaHgisQS5r-qeG1_gKKtf6LEIzhow1lYx3pMeRdn-A56biVX6uYHirSgz_00",
          "alg": "PS256",
          "dq": "qENrSj5WXklAbN6Q6SFdPEWaetvivfomi9X3ZXbRHf6GQhFehEdBk9DGjc3xLQ-EFn2BTHh9tcSHj1HSn8AE4kAfd_QmFHsS3mBiFnQoD0wnTD6IDRYnufyy5hvyBJLveGGssESAYitNL3fTGnTSIiuBZiZ4kNXasQLsZVqldpk",
          "n": "nXe9vqDEtjUQ3bYdMv67vtZ1Nr95Fnn1lQKO6ASiaIhL133AUSNmsC2De7_Fs2rEQ6r3KpzwEg6H4e7dFzCo0MTK11ZMHXyIcQsKRnviG_G8bV5EECoylY959TKvqgLd16rnqK70doAG34dglR1cn-gXpoVdM1tmTWgmQryT3y-jdNvtba9SE3-79e1FsfhbtsZ0YIS8gx7OVypPuVml7MvOkDbP8M-EaNB9YbwIdq4MK9DugaCxXI1U4naoXp47f8sl2iBeaAUuG4JWQ1Ct1sgiJOzRA1ts9WYYdu3pImXCviTb2C-6xD3DgeG5OPFQNcHG0ODQCHmEAX-DL72SHw"
        }
      ]
    }
  }
}
testName
oidcc-client-test-idtoken-sig-rs256
2021-05-31 18:04:20 SUCCESS
OIDCCGenerateServerConfigurationIdTokenSigningAlgRS256Only
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2021-05-31 18:04:20
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2021-05-31 18:04:20
OIDCCGenerateServerJWKs
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "4ZZkYYLRnC3wO4ZVynhbm0mKAwYmhkEbZRE8ToHrByluD4NUFYtzu8H_Yb7gwFIDUx8uCryd8zwElcFcjZ_wqrlkLE_HYnChaSsJUZWvcxM1Y1FHt6gZ0YDs5iRCdaFwU3lFDAMNv-OJWI9sTvqQMQjADQUh2z1BwiTcYZadE98",
      "kty": "RSA",
      "q": "oW_eZw7kdbZ7Yc5WC7meqxPWXmrm149qYcwXzY11HejbhMEDVwyEX-qGT7D25yshzei8Sv-QC9gfd-s3gj0LR7h-7MHesI0EANAaKk5wr1wqXL8161ZIpevNp4IiNByyACHgV0rAhXh_bBQ-fSdeOFnZ6lqvlHCEKkPcnMD574E",
      "d": "csEIGACtF9DsMyaIgMJsZpqsOqM0Ltth6g-voYFnAkHy1vSYM8pxPpEWNGXjpV4Yu0mH-TtLTotyX1PJNPJ8masgqWB0IlNGfrdZ9RiBJgHHDMdn4wfPbea-Eb0ryi7CM0KiXLRuU5q9oK6UyC_xceazxmJrBuZL7KTqnvoKB0WryriDYd_SxjPY4G1XcrdDQIDkX1PjGVhQCQm2tXlWXUSjxPjibNfV3vrF2BlX0MdXlACXVNSDxRDAxdth_8h1VZF4jeqgsYvypokT9K0Um1Pg9ezbGGjbSie0aeDbWhdJ4zjIRlN9BygI_6tM6Ok04UukIKLpBElfz2C4jY3iAQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "cc057fc9-8562-4be0-a918-6f5092b0a444",
      "qi": "iYvlAqgryoNFZh1GJlCjJNUgSW8LbvK1NuvIHPu_3_WUgr4LbTogZ5QJvLTMft354OOUcgHleU_b0o0LKi0XHmN1WpOkmsYKw2dqUbJaeZEeXBEMQ5RrzOniWo0R6M2hbVV1JQcRJkQHVx-_h3QbMqJixo-c5yMYEiETb2_kC3o",
      "dp": "lVc0mQE7tsMKuL1T6jgHnSPwA9R8iIBtnFjuraKAbztUK1zru1-YfIIPiSwOKgOhQ9PubRk1D6N5_ZIGrZNmhf85e8RM4LRjhvYAs0v-3JWo0Fksuz7D6NgK_MigXrNDY19zAGK9JX2CnWhFcXubHXsHeRcetL8220n_w3MsBc0",
      "dq": "JW_p5YBgnqOozS-qaKGtGANLrS2hRs_tXayUwIhTZpI_hfO0sJUohY2_g--H8mfgOP4F3GaTowuFkKutfbhmS0WPuZvj5pFtIjsgNjtmimQXNtbozCCATGn4kSXuhKM67Cju-49MQieFdSzkqOVeRjcf_-bz3LqTC7IdEQT3cQE",
      "n": "jkIpUhU8CfJJS596ndurAreKuP9dYbpUsQIhEeSYJcaOAPwwlMW2OcCgQMDiSv0YU00AMog15T6PGPza4aflBMrttS4d8I85RrfXYkPODsEo-DwlbyHhP8kMRebTpl6Gr_9UdV_sg6RPRwobwDgQW2MYDYLl1ASL0y651ShIwlJRWknJP76OlcNOeliujivZ_XBdaeznpVNB78lkX30t4zlNzsU6bzTzreuDmkcMlH280Yansf2OPQD5W7Xj96YYnPCyMX-PeKCt1eOpv2zG7Ly8bAWCteIt6W0YtoFbB1rRe5EjppN4k4EuR8dU8SO3VNUDGp_x5chYXDZdHps0Xw"
    },
    {
      "kty": "EC",
      "d": "fPGwKAvkB1lec-dN-HudaIDmkd5SsT4ElXzy2CtO6YY",
      "use": "sig",
      "crv": "P-256",
      "kid": "f204ad53-be20-4859-812b-754c42001e7f",
      "x": "LRL0LpWj8CZC1nbvosFqKnIY0RXE78SB_l6GdhpSy3w",
      "y": "CWTiFYBEm2dhBIBfZCFoXZPS8khxS3fH2I27tHvG-q0"
    },
    {
      "kty": "EC",
      "d": "I_GSCTCaHP6AE2bqdX_DrHZOupp0z2ItkFIdZhEnwVs",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "05941573-b528-4a85-841f-a0c2453b8200",
      "x": "RIGIOdfcez1wm1nT92sydUQkxwnHTDJTSGOM9PpkC6w",
      "y": "DmQLC3TknU9wUniZ5RsvYTKCW7O-a_fFyWMVnqmAAS4"
    },
    {
      "kty": "OKP",
      "d": "szmBENmw9Qu43wNJM8XBF5H5P__wYRBZuCbxLqknpco",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "7e4c8179-d3dd-4d95-80f9-aa3c10d69e09",
      "x": "mADkyF5QTsDs5GDDC93PBkYPzodOE4D00Acq6PMxYZs"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "1W-ZTotZSIREY8ohON6e-3eoJemwXm2R2zyYdkGvF2ylT2NQAuPybjT_gm0gsIeeK_G3AspL2gw8azp7QwfF2hcXu6W6LILlRKPVNPYPr4Pw2oZ8HQUIHM8emm_n5utZI5j5ve5BL9vomk362UtvfZ4s14pZBG3cJJh4Mfh0fQs",
      "kty": "RSA",
      "q": "0hWfZV8PaBWErCKEyPXb5MjgMNqYSLjkA_a2Zb9yNy7s6_oBke1clXyR0yWd9D4u5S026bC-AoebatoDquUaFzN221Q87xBe9Jh9O50hw8pVxv7IOzX-B3hrl1p2PBmS4nANzkeKguEWypvOwVtp8VBuutScOpZoKGHWQjgIZh0",
      "d": "P8H3_rKfKPgCcJO9E_Hn7wOttlLy2v7AkJVJCpnYScBArS-kcahCmKs1XCtlAKWoAfOgTsmk0Sc-EJZXl2eQUC2Jo70cMB6sq770IeWYEswRvpH4fmKRo8qmMfawlbop0GGkETQCJ52RqC6EOzmBJfwABIqgDY6uDBAY0B_tgxJPepUytqqNjM5CSMmejOQD5C_FcEoOTwpsdRpj06SPpgB4MM58PUVw85imLbapzXSw9xfIxyex2jFBfc6JVOPpQujebO23Md7fsc61vrUyAueCu4z3s-4vfp7KR-_RUiMplery78oCLjSreyP347CkpRaBhDxH0PZHAE4bndxsgQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3a1583a-8701-4624-871c-e4e8d6c66f4d",
      "qi": "GbWkj3_ZC25SzwWpX3gMq0Va-t0C_iBETp15VQBmmICr_e346jRL7GQzM5Hjm5UFE3yWGY553TH03Y_OKbAMOaq1Y3v6c8zgwwPAsnQFs7hixZ0p6OG0k_IFAfetIywYaTYAii3HZpwpImXkTsl6bYP7vsmaJJmAnV2I9X57WQg",
      "dp": "MpsyW2g49DPAT3TWqbhHM9KsQMkG82zBX50ffTKXxFMTYx5mEzle-vh_-LnNPW36d-ro_LVghMPP85C7Nyp5o_tDuk9SNEmY-MxruhH5qCD9k6K9fNf7k3EcjXupHZyB1ynnVTxPonxey29f4fO77Kn7ceOwtZci0l6AaUDCxf8",
      "alg": "RSA-OAEP",
      "dq": "eXGQdCxQnq2ZxVwrAHTHyeipWPR0hc2D2hq7c_QI1Yel4__g-neJRsz9C186gR-VQlwx20OVg6banBktd5P60iCo-78lflkrWx_vfQ-nniQQE_niy_-5Op5NK_BaWwG5nHaENJO8qU3vO-53xeTPSHVjnVMcgO3DhlyQXDVB_a0",
      "n": "ryeSztZBMo5JlBGo3Eax40eP_UKLkUXVPYe-aRwEgLFNlFl4t4IxHYIgA8kR0GH1x6L27Qxmnm8UWCC1zYMWZ1aj-_OjFRBG2dYayzjEVuxNuJ0trNiCjs_cQC5ir-7TTN8U-j-8TfKJE2dSsNLOB94RhNX7y55t1F58T5bla1CpjCO6DWfgaVJo8GHAI9TagJ1jpQeQlXhmJikukcny3P0t_GGwak7-z7e6QX-KNC-amtETya5FrR2rqS-Cpsr5xw9gcGUJtt90ToE46uA-2nuS9Y2xsbrNtcAz7EzlDsG9gUQUeyDhhyiIn8e_eiDG5wBByebIAEwczTR731yMPw"
    },
    {
      "kty": "EC",
      "d": "D5sry6oeL16RSmOsI6f6McXMjNsIyTJv-wxlp-atb7U",
      "use": "enc",
      "crv": "P-256",
      "kid": "70211402-1651-49e4-a2d5-695d9ada892f",
      "x": "T0THL5qj0TtsZ7-vLA3JWQj7tYQsF2B97-etcmeqVMw",
      "y": "zcJ2ImQLndQ9d5IIDUIRxS1G-11-CMXxg57yYJX91cY",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "cc057fc9-8562-4be0-a918-6f5092b0a444",
      "n": "jkIpUhU8CfJJS596ndurAreKuP9dYbpUsQIhEeSYJcaOAPwwlMW2OcCgQMDiSv0YU00AMog15T6PGPza4aflBMrttS4d8I85RrfXYkPODsEo-DwlbyHhP8kMRebTpl6Gr_9UdV_sg6RPRwobwDgQW2MYDYLl1ASL0y651ShIwlJRWknJP76OlcNOeliujivZ_XBdaeznpVNB78lkX30t4zlNzsU6bzTzreuDmkcMlH280Yansf2OPQD5W7Xj96YYnPCyMX-PeKCt1eOpv2zG7Ly8bAWCteIt6W0YtoFbB1rRe5EjppN4k4EuR8dU8SO3VNUDGp_x5chYXDZdHps0Xw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "778ffaff-d4e9-4954-a213-0f0aab4394dc",
      "n": "jCOsQKpreFSv8fotZHm8-jM2eYedGbusBIzrqGZvi-PcNz4MtQ-PZ2sytgFIaSXEPb8QmRDaCralqlY4lkyut3l9f4TU06izFSCFshvvzKgwFjgO0P2P8b3_TanrelIazrr4CTKrkzecHpYbspaAkeWbRf56k_0F5QZPUVCHtkbVOrh3uIjTZ4ejVW_XUmu7RwrrpuyrULds-OIF6V4C-flgDu1zdS52ttYp7xecV99_WgpxNFdQvnxlXX9Hny7MLlmym52G1l3wNUYozYbd8itxyxwiXLMxDJcb72LlLp3kBxhLAAet3ufN2OWNR2xvnm_eV8R7GQ6gRrozkbNPcw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "f204ad53-be20-4859-812b-754c42001e7f",
      "x": "LRL0LpWj8CZC1nbvosFqKnIY0RXE78SB_l6GdhpSy3w",
      "y": "CWTiFYBEm2dhBIBfZCFoXZPS8khxS3fH2I27tHvG-q0"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "bbe406ca-c7fc-465c-bd33-ce3fff4ecfbd",
      "x": "LUBCaWUQIPBUXh8EvLtiI7utnSKlb3KfDMZtM0Hr2mc",
      "y": "teWSAoDaEuF2xTcjbsmpaUeyTqR1A7x148RGkRx_rFc"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "05941573-b528-4a85-841f-a0c2453b8200",
      "x": "RIGIOdfcez1wm1nT92sydUQkxwnHTDJTSGOM9PpkC6w",
      "y": "DmQLC3TknU9wUniZ5RsvYTKCW7O-a_fFyWMVnqmAAS4"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "7e4c8179-d3dd-4d95-80f9-aa3c10d69e09",
      "x": "mADkyF5QTsDs5GDDC93PBkYPzodOE4D00Acq6PMxYZs"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3a1583a-8701-4624-871c-e4e8d6c66f4d",
      "alg": "RSA-OAEP",
      "n": "ryeSztZBMo5JlBGo3Eax40eP_UKLkUXVPYe-aRwEgLFNlFl4t4IxHYIgA8kR0GH1x6L27Qxmnm8UWCC1zYMWZ1aj-_OjFRBG2dYayzjEVuxNuJ0trNiCjs_cQC5ir-7TTN8U-j-8TfKJE2dSsNLOB94RhNX7y55t1F58T5bla1CpjCO6DWfgaVJo8GHAI9TagJ1jpQeQlXhmJikukcny3P0t_GGwak7-z7e6QX-KNC-amtETya5FrR2rqS-Cpsr5xw9gcGUJtt90ToE46uA-2nuS9Y2xsbrNtcAz7EzlDsG9gUQUeyDhhyiIn8e_eiDG5wBByebIAEwczTR731yMPw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "70211402-1651-49e4-a2d5-695d9ada892f",
      "x": "T0THL5qj0TtsZ7-vLA3JWQj7tYQsF2B97-etcmeqVMw",
      "y": "zcJ2ImQLndQ9d5IIDUIRxS1G-11-CMXxg57yYJX91cY",
      "alg": "ECDH-ES"
    }
  ]
}
2021-05-31 18:04:20 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-05-31 18:04:20 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-05-31 18:04:20 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "updated_at": 1580000000
}
2021-05-31 18:04:20 SUCCESS
OIDCCGetStaticClientConfigurationForRPTests
Found a static client object
client_secret_jwt_alg
RS256
client_id
12345678-hybrid-profile-plain-private-key-clientid
client_secret
secret-hybrid-profile-plain-private-key-clientid
scope
openid accounts
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "keyid-to-fapi-plain-pauth",
      "alg": "PS256",
      "n": "urjyW-QSZIGGSe9kCUOnucEoQS28VhyL44VtyXhy0iuFgXnTRJxY6WnZP1yOcawCVRTdMkn6gGzZ2Mr7Lo1529gO6WyWV1Pl2CgjnUE4PNaIRSo_LpKVXZd7IycbRxg_UxrWo2rkpmUL5PzMYq9sGl7VfN-UpB7XcwMu7qRZd0LH_xWMThfuYHZRUxVt7V4Kw5xOID8wK8tSUbqf1kk9tAxyY8BHpFD3-bYQpHEYAx7OwdwW0UdBksItQNqOUdhB9kG89onYDe8uZvyxQqu8lpul_3snscIcDq0bxD83hVqL8E7SU7996poGWSKcoAWnBhUIzbPOcyfGFFw_RDK-Cw"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
redirect_uris
[
  "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback"
]
2021-05-31 18:04:20 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "client_secret_jwt_alg": "RS256",
  "client_id": "12345678-hybrid-profile-plain-private-key-clientid",
  "client_secret": "secret-hybrid-profile-plain-private-key-clientid",
  "scope": "openid accounts",
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "kid": "keyid-to-fapi-plain-pauth",
        "alg": "PS256",
        "n": "urjyW-QSZIGGSe9kCUOnucEoQS28VhyL44VtyXhy0iuFgXnTRJxY6WnZP1yOcawCVRTdMkn6gGzZ2Mr7Lo1529gO6WyWV1Pl2CgjnUE4PNaIRSo_LpKVXZd7IycbRxg_UxrWo2rkpmUL5PzMYq9sGl7VfN-UpB7XcwMu7qRZd0LH_xWMThfuYHZRUxVt7V4Kw5xOID8wK8tSUbqf1kk9tAxyY8BHpFD3-bYQpHEYAx7OwdwW0UdBksItQNqOUdhB9kG89onYDe8uZvyxQqu8lpul_3snscIcDq0bxD83hVqL8E7SU7996poGWSKcoAWnBhUIzbPOcyfGFFw_RDK-Cw"
      }
    ]
  },
  "certificate": "-----BEGIN CERTIFICATE-----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\nofDMEAPI9RcppT6elKQQ69M\u003d\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----\nMIIFtzCCA5+gAwIBAgIQGhoSP4DqnQoUsNkehM6x2TANBgkqhkiG9w0BAQsFADCB\noDELMAkGA1UEBhMCQVUxNzA1BgNVBAoTLkF1c3RyYWxpYW4gQ29tcGV0aXRpb24g\nYW5kIENvbnN1bWVyIENvbW1pc3Npb24xHDAaBgNVBAsTE0NvbnN1bWVyIERhdGEg\nUmlnaHQxHzAdBgNVBAsTFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxGTAXBgNVBAMT\nEENEUiBURVNUIFJvb3QgQ0EwHhcNMTkxMDE3MDAwMDAwWhcNMzQxMDE2MjM1OTU5\nWjCBsDELMAkGA1UEBhMCQVUxNzA1BgNVBAoTLkF1c3RyYWxpYW4gQ29tcGV0aXRp\nb24gYW5kIENvbnN1bWVyIENvbW1pc3Npb24xHDAaBgNVBAsTE0NvbnN1bWVyIERh\ndGEgUmlnaHQxHzAdBgNVBAsTFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxKTAnBgNV\nBAMTIENEUiBURVNUIEJhbmtpbmcgSW50ZXJtZWRpYXRlIENBMIIBIjANBgkqhkiG\n9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6+NlPtZ4TPJrMRbvj7HkXBkEStfc1s+L8qd\nFX8BRnt/H9Ca+9BTLEiKj+jJ6J74yTLrK9g4y+hhaQZFFperMF0TUy+fU3nby6D8\njo6fMLr0O/W8MZ2LTk/6n1+FiZqUH8st3Nle9f4DdLY6BAR8HjCnikNYaxutBTYt\nGjkxOqogGFdwG+X0S0spKGDTq5UAp3Wc7D/fZRSeAfdTYO5FV9zhdTT6sbnrosQi\nobBuwqwLqZeeju6V5fogkhMu4tVE3GmiK/T5mGrBqqO2DIfI4t+1D/SBo4jZP2V/\nEl2CSRgKrlVMcWoOE3h9Aa20vliLsJgv/Zf9gH/5UhHV5KlegQIDAQABo4HaMIHX\nMCgGA1UdEQQhMB+kHTAbMRkwFwYDVQQDExBEaWdpQ2VydFBLSS0zLTY5MB0GA1Ud\nDgQWBBRJNpECCJkqbOQpYJ6RfruTreZeSzASBgNVHRMBAf8ECDAGAQH/AgEAMEcG\nA1UdHwRAMD4wPKA6oDiGNmh0dHA6Ly9jcmwuYXUuZGlnaWNlcnQuY29tL0NBL0FD\nQ0NfQ0RSX1RFU1RfUm9vdENBLmNybDAOBgNVHQ8BAf8EBAMCAQYwHwYDVR0jBBgw\nFoAU/shndz73CkDs3XVqioe1JoHU24wwDQYJKoZIhvcNAQELBQADggIBADQAYy6W\nKMFMyyOkW23kFMLu/ki66DfvusaNR++4tXUs4j6TSipEJ4weyKpMNcro+InGCaY3\n0X2fIzTa/L0PJlpo/cLuuGRpnx41I5dPjnltmwmZSXEJEYlIn0aQNy1luHfR76s+\nA44/DiquHVlI4t4fLcsuDUtVHcTlN59qY40GuWL/00y4IGWNbrXSSDLkRqWdeBF4\nA8XRoTLMmNuw4Mcm9Zpggc2K40GtFxCbxsDaw6NVZgGODnnSdmw5/gExWH1RIjYU\nJ7whYsnIIPxy8HmogGOhrvB36EtvS/BOeNwSyBNVoSTDoVLDeMxgO/9shH0Ytaew\nzsXAnfW5wUZiiAyqZOqN7gUZpo+aaZrC8sBo36B1RdLzEszs0GY3ohl/rUixr5jY\nnbC4mYTte4DNA6HSadBnHAmnyLX5oQvK+pE9eSaZVNvg09pDSPjRkuhYxPO5tHkr\nzrjAk3PNXKDddnSdMSXILbkPAEssBuC4vax1kd5o8grSFvidUQMr61paT5o17lxh\nY7z1Fav5bW65JFid1oR6OiEn+o3DNaYf22eaYJsZRcJ7Fio8CPoJnSq5NJC57KHq\nNYHMCwMdJkob2NNXJSmKA3FRxX2zhj6iehQT9p+N5HEngGJMGAv90MhIIWZcHuK5\nm/Egr0D/nA9GtlPyS0m2GkCkNqzyD2cyOilg\n-----END CERTIFICATE-----",
  "redirect_uris": [
    "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback"
  ]
}
2021-05-31 18:04:20 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path
jwks_uri
mapped
object
client
2021-05-31 18:04:20 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "authorization_code"
]
response_types
[
  "code"
]
2021-05-31 18:04:20 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback"
]
2021-05-31 18:04:20 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2021-05-31 18:04:20 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2021-05-31 18:04:20 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2021-05-31 18:04:20 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2021-05-31 18:04:20 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2021-05-31 18:04:20 INFO
ValidateIdTokenSignedResponseAlg
Skipped evaluation due to missing required element: client id_token_signed_response_alg
path
id_token_signed_response_alg
mapped
object
client
2021-05-31 18:04:20 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2021-05-31 18:04:20 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2021-05-31 18:04:20 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2021-05-31 18:04:20 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2021-05-31 18:04:20 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2021-05-31 18:04:20 INFO
ValidateTokenEndpointAuthSigningAlg
Skipped evaluation due to missing required element: client token_endpoint_auth_signing_alg
path
token_endpoint_auth_signing_alg
mapped
object
client
2021-05-31 18:04:20 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2021-05-31 18:04:20 INFO
ValidateRequireAuthTime
Skipped evaluation due to missing required element: client require_auth_time
path
require_auth_time
mapped
object
client
2021-05-31 18:04:20 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2021-05-31 18:04:20 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2021-05-31 18:04:20 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2021-05-31 18:04:20
SetServerSigningAlgToRS256
Successfully set signing algorithm to RS256
2021-05-31 18:04:20
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2021-05-31 18:04:20
oidcc-client-test-idtoken-sig-rs256
Setup Done
2021-05-31 18:04:43 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.6 (Java/1.8.0_241)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2021-05-31 18:04:43 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-05-31 18:04:43 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.6 (Java/1.8.0_241)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Discovery endpoint
2021-05-31 18:04:43 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "gender",
    "birthdate",
    "preferred_username",
    "profile",
    "website",
    "locale",
    "updated_at",
    "address",
    "zoneinfo",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-05-31 18:04:43 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"90\", \"Google Chrome\";v\u003d\"90\"",
  "sec-ch-ua-mobile": "?0",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9,hi;q\u003d0.8",
  "cookie": "__utmz\u003d201319536.1621283291.13.3.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); __utma\u003d201319536.30309185.1617009267.1621283291.1621288066.14; JSESSIONID\u003dC1F265DB38EAC21443DF2685B404DECE",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
authorize
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "scope": "openid phone profile email address offline_access",
  "response_type": "code id_token token",
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "client_id": "12345678-hybrid-profile-plain-private-key-clientid",
  "nonce": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f"
}
incoming_body
Authorization endpoint
2021-05-31 18:04:43 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2021-05-31 18:04:43 SUCCESS
OIDCCEnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "phone",
  "profile",
  "email",
  "address",
  "offline_access"
]
expected
openid
2021-05-31 18:04:43 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "scope": "openid phone profile email address offline_access",
  "response_type": "code id_token token",
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "client_id": "12345678-hybrid-profile-plain-private-key-clientid",
  "nonce": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f"
}
2021-05-31 18:04:43 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid phone profile email address offline_access
2021-05-31 18:04:43 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f
2021-05-31 18:04:43 SUCCESS
EnsureResponseTypeIsCodeIdTokenToken
Response type is expected value
expected
code id_token token
2021-05-31 18:04:43 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
12345678-hybrid-profile-plain-private-key-clientid
2021-05-31 18:04:43 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback
expected
[
  "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback"
]
2021-05-31 18:04:43 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "phone",
  "profile",
  "email",
  "address",
  "offline_access"
]
expected
openid
2021-05-31 18:04:43 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2021-05-31 18:04:43 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
iZT5QXyNyT
2021-05-31 18:04:43 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
cqHya6hVAySLN3CPReHXxA
2021-05-31 18:04:43 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
YT1k4d95VEN7Kuoctuwm5FeFsogOpvctDMxka98mmtcVdaxEhS
2021-05-31 18:04:43 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
bCgi1RIV2h7G3-WA6EO8KQ
2021-05-31 18:04:43 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/
sub
user-subject-1234531
aud
12345678-hybrid-profile-plain-private-key-clientid
nonce
awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f
iat
1622484283
exp
1622484583
2021-05-31 18:04:43 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
cqHya6hVAySLN3CPReHXxA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "sub": "user-subject-1234531",
  "aud": "12345678-hybrid-profile-plain-private-key-clientid",
  "nonce": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "iat": 1622484283,
  "exp": 1622484583,
  "c_hash": "cqHya6hVAySLN3CPReHXxA"
}
2021-05-31 18:04:43 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
bCgi1RIV2h7G3-WA6EO8KQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "sub": "user-subject-1234531",
  "aud": "12345678-hybrid-profile-plain-private-key-clientid",
  "nonce": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "iat": 1622484283,
  "exp": 1622484583,
  "c_hash": "cqHya6hVAySLN3CPReHXxA",
  "at_hash": "bCgi1RIV2h7G3-WA6EO8KQ"
}
2021-05-31 18:04:43 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYkNnaTFSSVYyaDdHMy1XQTZFTzhLUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJjX2hhc2giOiJjcUh5YTZoVkF5U0xOM0NQUmVIWHhBIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0ludHVpdF9wYXV0aF9vcGVuaWRfaHlicmlkX3Byb2ZpbGVfcGxhbl8xXC8iLCJleHAiOjE2MjI0ODQ1ODMsIm5vbmNlIjoiYXdiLmY4ZWJjODliLWQxZjMtNDIzNi1hZWEzLTcyZWE3MjhiZjI0ZiIsImlhdCI6MTYyMjQ4NDI4M30.f9B_xad1Nla-CXZdRvDCUt3QQ9luXWntG7N8gw3sL5nmpvaTJZqb5snl-WfQLFDBAmCrOUbTzQizUrnHddkNeY0wOPDKsv4HgKD_rX7GpxYkY1-Bi2IU1uYnrFkWh2SkwkIuwNvm_nPmON6BuGkw1ptAfNB59CFYXS4YVOthel79RFyo7N1Zo9M-ckPadb0sHBGyasl1_x84btxoSFRSisnwfVc3mRvzuOSbeUkFps5Jp9zJgPCmsFSzxR3akKlIba-o8ZNs4GA9XY-80_QwyXu3DXjvEbYe8rafXzDM4U4RmfwMksDJZeCtyt21sKfBrYiQ8-xh4QX7DsWE3nZ3sA
key
{"p":"4ZZkYYLRnC3wO4ZVynhbm0mKAwYmhkEbZRE8ToHrByluD4NUFYtzu8H_Yb7gwFIDUx8uCryd8zwElcFcjZ_wqrlkLE_HYnChaSsJUZWvcxM1Y1FHt6gZ0YDs5iRCdaFwU3lFDAMNv-OJWI9sTvqQMQjADQUh2z1BwiTcYZadE98","kty":"RSA","q":"oW_eZw7kdbZ7Yc5WC7meqxPWXmrm149qYcwXzY11HejbhMEDVwyEX-qGT7D25yshzei8Sv-QC9gfd-s3gj0LR7h-7MHesI0EANAaKk5wr1wqXL8161ZIpevNp4IiNByyACHgV0rAhXh_bBQ-fSdeOFnZ6lqvlHCEKkPcnMD574E","d":"csEIGACtF9DsMyaIgMJsZpqsOqM0Ltth6g-voYFnAkHy1vSYM8pxPpEWNGXjpV4Yu0mH-TtLTotyX1PJNPJ8masgqWB0IlNGfrdZ9RiBJgHHDMdn4wfPbea-Eb0ryi7CM0KiXLRuU5q9oK6UyC_xceazxmJrBuZL7KTqnvoKB0WryriDYd_SxjPY4G1XcrdDQIDkX1PjGVhQCQm2tXlWXUSjxPjibNfV3vrF2BlX0MdXlACXVNSDxRDAxdth_8h1VZF4jeqgsYvypokT9K0Um1Pg9ezbGGjbSie0aeDbWhdJ4zjIRlN9BygI_6tM6Ok04UukIKLpBElfz2C4jY3iAQ","e":"AQAB","use":"sig","kid":"cc057fc9-8562-4be0-a918-6f5092b0a444","qi":"iYvlAqgryoNFZh1GJlCjJNUgSW8LbvK1NuvIHPu_3_WUgr4LbTogZ5QJvLTMft354OOUcgHleU_b0o0LKi0XHmN1WpOkmsYKw2dqUbJaeZEeXBEMQ5RrzOniWo0R6M2hbVV1JQcRJkQHVx-_h3QbMqJixo-c5yMYEiETb2_kC3o","dp":"lVc0mQE7tsMKuL1T6jgHnSPwA9R8iIBtnFjuraKAbztUK1zru1-YfIIPiSwOKgOhQ9PubRk1D6N5_ZIGrZNmhf85e8RM4LRjhvYAs0v-3JWo0Fksuz7D6NgK_MigXrNDY19zAGK9JX2CnWhFcXubHXsHeRcetL8220n_w3MsBc0","dq":"JW_p5YBgnqOozS-qaKGtGANLrS2hRs_tXayUwIhTZpI_hfO0sJUohY2_g--H8mfgOP4F3GaTowuFkKutfbhmS0WPuZvj5pFtIjsgNjtmimQXNtbozCCATGn4kSXuhKM67Cju-49MQieFdSzkqOVeRjcf_-bz3LqTC7IdEQT3cQE","n":"jkIpUhU8CfJJS596ndurAreKuP9dYbpUsQIhEeSYJcaOAPwwlMW2OcCgQMDiSv0YU00AMog15T6PGPza4aflBMrttS4d8I85RrfXYkPODsEo-DwlbyHhP8kMRebTpl6Gr_9UdV_sg6RPRwobwDgQW2MYDYLl1ASL0y651ShIwlJRWknJP76OlcNOeliujivZ_XBdaeznpVNB78lkX30t4zlNzsU6bzTzreuDmkcMlH280Yansf2OPQD5W7Xj96YYnPCyMX-PeKCt1eOpv2zG7Ly8bAWCteIt6W0YtoFbB1rRe5EjppN4k4EuR8dU8SO3VNUDGp_x5chYXDZdHps0Xw"}
algorithm
RS256
2021-05-31 18:04:43 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2021-05-31 18:04:43 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f"
}
2021-05-31 18:04:43 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "code": "iZT5QXyNyT"
}
2021-05-31 18:04:43 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "code": "iZT5QXyNyT",
  "id_token": "eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYkNnaTFSSVYyaDdHMy1XQTZFTzhLUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJjX2hhc2giOiJjcUh5YTZoVkF5U0xOM0NQUmVIWHhBIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0ludHVpdF9wYXV0aF9vcGVuaWRfaHlicmlkX3Byb2ZpbGVfcGxhbl8xXC8iLCJleHAiOjE2MjI0ODQ1ODMsIm5vbmNlIjoiYXdiLmY4ZWJjODliLWQxZjMtNDIzNi1hZWEzLTcyZWE3MjhiZjI0ZiIsImlhdCI6MTYyMjQ4NDI4M30.f9B_xad1Nla-CXZdRvDCUt3QQ9luXWntG7N8gw3sL5nmpvaTJZqb5snl-WfQLFDBAmCrOUbTzQizUrnHddkNeY0wOPDKsv4HgKD_rX7GpxYkY1-Bi2IU1uYnrFkWh2SkwkIuwNvm_nPmON6BuGkw1ptAfNB59CFYXS4YVOthel79RFyo7N1Zo9M-ckPadb0sHBGyasl1_x84btxoSFRSisnwfVc3mRvzuOSbeUkFps5Jp9zJgPCmsFSzxR3akKlIba-o8ZNs4GA9XY-80_QwyXu3DXjvEbYe8rafXzDM4U4RmfwMksDJZeCtyt21sKfBrYiQ8-xh4QX7DsWE3nZ3sA"
}
2021-05-31 18:04:43
AddTokenToAuthorizationEndpointResponseParams
Added token and token_type to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "state": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "code": "iZT5QXyNyT",
  "id_token": "eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYkNnaTFSSVYyaDdHMy1XQTZFTzhLUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJjX2hhc2giOiJjcUh5YTZoVkF5U0xOM0NQUmVIWHhBIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0ludHVpdF9wYXV0aF9vcGVuaWRfaHlicmlkX3Byb2ZpbGVfcGxhbl8xXC8iLCJleHAiOjE2MjI0ODQ1ODMsIm5vbmNlIjoiYXdiLmY4ZWJjODliLWQxZjMtNDIzNi1hZWEzLTcyZWE3MjhiZjI0ZiIsImlhdCI6MTYyMjQ4NDI4M30.f9B_xad1Nla-CXZdRvDCUt3QQ9luXWntG7N8gw3sL5nmpvaTJZqb5snl-WfQLFDBAmCrOUbTzQizUrnHddkNeY0wOPDKsv4HgKD_rX7GpxYkY1-Bi2IU1uYnrFkWh2SkwkIuwNvm_nPmON6BuGkw1ptAfNB59CFYXS4YVOthel79RFyo7N1Zo9M-ckPadb0sHBGyasl1_x84btxoSFRSisnwfVc3mRvzuOSbeUkFps5Jp9zJgPCmsFSzxR3akKlIba-o8ZNs4GA9XY-80_QwyXu3DXjvEbYe8rafXzDM4U4RmfwMksDJZeCtyt21sKfBrYiQ8-xh4QX7DsWE3nZ3sA",
  "access_token": "YT1k4d95VEN7Kuoctuwm5FeFsogOpvctDMxka98mmtcVdaxEhS",
  "token_type": "Bearer"
}
2021-05-31 18:04:43
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback#state=awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f&code=iZT5QXyNyT&id_token=eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYkNnaTFSSVYyaDdHMy1XQTZFTzhLUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJjX2hhc2giOiJjcUh5YTZoVkF5U0xOM0NQUmVIWHhBIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0ludHVpdF9wYXV0aF9vcGVuaWRfaHlicmlkX3Byb2ZpbGVfcGxhbl8xXC8iLCJleHAiOjE2MjI0ODQ1ODMsIm5vbmNlIjoiYXdiLmY4ZWJjODliLWQxZjMtNDIzNi1hZWEzLTcyZWE3MjhiZjI0ZiIsImlhdCI6MTYyMjQ4NDI4M30.f9B_xad1Nla-CXZdRvDCUt3QQ9luXWntG7N8gw3sL5nmpvaTJZqb5snl-WfQLFDBAmCrOUbTzQizUrnHddkNeY0wOPDKsv4HgKD_rX7GpxYkY1-Bi2IU1uYnrFkWh2SkwkIuwNvm_nPmON6BuGkw1ptAfNB59CFYXS4YVOthel79RFyo7N1Zo9M-ckPadb0sHBGyasl1_x84btxoSFRSisnwfVc3mRvzuOSbeUkFps5Jp9zJgPCmsFSzxR3akKlIba-o8ZNs4GA9XY-80_QwyXu3DXjvEbYe8rafXzDM4U4RmfwMksDJZeCtyt21sKfBrYiQ8-xh4QX7DsWE3nZ3sA&access_token=YT1k4d95VEN7Kuoctuwm5FeFsogOpvctDMxka98mmtcVdaxEhS&token_type=Bearer
2021-05-31 18:04:43 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback#state=awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f&code=iZT5QXyNyT&id_token=eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYkNnaTFSSVYyaDdHMy1XQTZFTzhLUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJjX2hhc2giOiJjcUh5YTZoVkF5U0xOM0NQUmVIWHhBIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0ludHVpdF9wYXV0aF9vcGVuaWRfaHlicmlkX3Byb2ZpbGVfcGxhbl8xXC8iLCJleHAiOjE2MjI0ODQ1ODMsIm5vbmNlIjoiYXdiLmY4ZWJjODliLWQxZjMtNDIzNi1hZWEzLTcyZWE3MjhiZjI0ZiIsImlhdCI6MTYyMjQ4NDI4M30.f9B_xad1Nla-CXZdRvDCUt3QQ9luXWntG7N8gw3sL5nmpvaTJZqb5snl-WfQLFDBAmCrOUbTzQizUrnHddkNeY0wOPDKsv4HgKD_rX7GpxYkY1-Bi2IU1uYnrFkWh2SkwkIuwNvm_nPmON6BuGkw1ptAfNB59CFYXS4YVOthel79RFyo7N1Zo9M-ckPadb0sHBGyasl1_x84btxoSFRSisnwfVc3mRvzuOSbeUkFps5Jp9zJgPCmsFSzxR3akKlIba-o8ZNs4GA9XY-80_QwyXu3DXjvEbYe8rafXzDM4U4RmfwMksDJZeCtyt21sKfBrYiQ8-xh4QX7DsWE3nZ3sA&access_token=YT1k4d95VEN7Kuoctuwm5FeFsogOpvctDMxka98mmtcVdaxEhS&token_type=Bearer]
outgoing_path
authorize
2021-05-31 18:04:45 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.6 (Java/1.8.0_241)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
jwks
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Jwks endpoint
2021-05-31 18:04:45 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "cc057fc9-8562-4be0-a918-6f5092b0a444",
      "n": "jkIpUhU8CfJJS596ndurAreKuP9dYbpUsQIhEeSYJcaOAPwwlMW2OcCgQMDiSv0YU00AMog15T6PGPza4aflBMrttS4d8I85RrfXYkPODsEo-DwlbyHhP8kMRebTpl6Gr_9UdV_sg6RPRwobwDgQW2MYDYLl1ASL0y651ShIwlJRWknJP76OlcNOeliujivZ_XBdaeznpVNB78lkX30t4zlNzsU6bzTzreuDmkcMlH280Yansf2OPQD5W7Xj96YYnPCyMX-PeKCt1eOpv2zG7Ly8bAWCteIt6W0YtoFbB1rRe5EjppN4k4EuR8dU8SO3VNUDGp_x5chYXDZdHps0Xw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "778ffaff-d4e9-4954-a213-0f0aab4394dc",
      "n": "jCOsQKpreFSv8fotZHm8-jM2eYedGbusBIzrqGZvi-PcNz4MtQ-PZ2sytgFIaSXEPb8QmRDaCralqlY4lkyut3l9f4TU06izFSCFshvvzKgwFjgO0P2P8b3_TanrelIazrr4CTKrkzecHpYbspaAkeWbRf56k_0F5QZPUVCHtkbVOrh3uIjTZ4ejVW_XUmu7RwrrpuyrULds-OIF6V4C-flgDu1zdS52ttYp7xecV99_WgpxNFdQvnxlXX9Hny7MLlmym52G1l3wNUYozYbd8itxyxwiXLMxDJcb72LlLp3kBxhLAAet3ufN2OWNR2xvnm_eV8R7GQ6gRrozkbNPcw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "f204ad53-be20-4859-812b-754c42001e7f",
      "x": "LRL0LpWj8CZC1nbvosFqKnIY0RXE78SB_l6GdhpSy3w",
      "y": "CWTiFYBEm2dhBIBfZCFoXZPS8khxS3fH2I27tHvG-q0"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "bbe406ca-c7fc-465c-bd33-ce3fff4ecfbd",
      "x": "LUBCaWUQIPBUXh8EvLtiI7utnSKlb3KfDMZtM0Hr2mc",
      "y": "teWSAoDaEuF2xTcjbsmpaUeyTqR1A7x148RGkRx_rFc"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "kid": "05941573-b528-4a85-841f-a0c2453b8200",
      "x": "RIGIOdfcez1wm1nT92sydUQkxwnHTDJTSGOM9PpkC6w",
      "y": "DmQLC3TknU9wUniZ5RsvYTKCW7O-a_fFyWMVnqmAAS4"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "kid": "7e4c8179-d3dd-4d95-80f9-aa3c10d69e09",
      "x": "mADkyF5QTsDs5GDDC93PBkYPzodOE4D00Acq6PMxYZs"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "c3a1583a-8701-4624-871c-e4e8d6c66f4d",
      "alg": "RSA-OAEP",
      "n": "ryeSztZBMo5JlBGo3Eax40eP_UKLkUXVPYe-aRwEgLFNlFl4t4IxHYIgA8kR0GH1x6L27Qxmnm8UWCC1zYMWZ1aj-_OjFRBG2dYayzjEVuxNuJ0trNiCjs_cQC5ir-7TTN8U-j-8TfKJE2dSsNLOB94RhNX7y55t1F58T5bla1CpjCO6DWfgaVJo8GHAI9TagJ1jpQeQlXhmJikukcny3P0t_GGwak7-z7e6QX-KNC-amtETya5FrR2rqS-Cpsr5xw9gcGUJtt90ToE46uA-2nuS9Y2xsbrNtcAz7EzlDsG9gUQUeyDhhyiIn8e_eiDG5wBByebIAEwczTR731yMPw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "70211402-1651-49e4-a2d5-695d9ada892f",
      "x": "T0THL5qj0TtsZ7-vLA3JWQj7tYQsF2B97-etcmeqVMw",
      "y": "zcJ2ImQLndQ9d5IIDUIRxS1G-11-CMXxg57yYJX91cY",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2021-05-31 18:04:45 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Basic MTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQ6c2VjcmV0LWh5YnJpZC1wcm9maWxlLXBsYWluLXByaXZhdGUta2V5LWNsaWVudGlk",
  "content-type": "application/x-www-form-urlencoded; charset\u003dUTF-8",
  "user-agent": "Apache-HttpClient/4.5.6 (Java/1.8.0_241)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "281",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
token
incoming_body_form_params
{
  "code": "iZT5QXyNyT",
  "grant_type": "authorization_code",
  "redirect_uri": "https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback",
  "client_id": "12345678-hybrid-profile-plain-private-key-clientid",
  "client_secret": "secret-hybrid-profile-plain-private-key-clientid"
}
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
code=iZT5QXyNyT&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fpartnerauth-e2e.platform.intuit.com%2Fexternal_partner%2Fopenid_core_cert%2Fcallback&client_id=12345678-hybrid-profile-plain-private-key-clientid&client_secret=secret-hybrid-profile-plain-private-key-clientid
Token endpoint
2021-05-31 18:04:45 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
12345678-hybrid-profile-plain-private-key-clientid
client_secret
secret-hybrid-profile-plain-private-key-clientid
method
client_secret_basic
2021-05-31 18:04:45 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2021-05-31 18:04:45 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
iZT5QXyNyT
2021-05-31 18:04:45 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://partnerauth-e2e.platform.intuit.com/external_partner/openid_core_cert/callback
2021-05-31 18:04:45 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP
2021-05-31 18:04:45 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
Gi6v9AEpotUnyPCAoWBhzg
2021-05-31 18:04:45 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/
sub
user-subject-1234531
aud
12345678-hybrid-profile-plain-private-key-clientid
nonce
awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f
iat
1622484285
exp
1622484585
2021-05-31 18:04:45 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
Gi6v9AEpotUnyPCAoWBhzg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/Intuit_pauth_openid_hybrid_profile_plan_1/",
  "sub": "user-subject-1234531",
  "aud": "12345678-hybrid-profile-plain-private-key-clientid",
  "nonce": "awb.f8ebc89b-d1f3-4236-aea3-72ea728bf24f",
  "iat": 1622484285,
  "exp": 1622484585,
  "at_hash": "Gi6v9AEpotUnyPCAoWBhzg"
}
2021-05-31 18:04:45 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiR2k2djlBRXBvdFVueVBDQW9XQmh6ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvSW50dWl0X3BhdXRoX29wZW5pZF9oeWJyaWRfcHJvZmlsZV9wbGFuXzFcLyIsImV4cCI6MTYyMjQ4NDU4NSwibm9uY2UiOiJhd2IuZjhlYmM4OWItZDFmMy00MjM2LWFlYTMtNzJlYTcyOGJmMjRmIiwiaWF0IjoxNjIyNDg0Mjg1fQ.AoTfRMHtQvG7w35u_S3Fx4i7nPYRpNjJi69MPpCn1TLFMPzVClhB5xNUM6_7liocbYulN4YIJdfiKtgG3tOUM_imCgiqxmqx3br-fT9HH5I2dT3qLkyWoqHsuNnFENHHkhGcSO-cqk6iDx5Ol5s7Z60Aj3CmekDOebSdyQQxIcvE7wDLjGiP8V5oiYV7HyL478u-JT2ipF8WS2n-gr5Hbw6afjUS6dxDq25nuB8ym8inkzjDisdu5GNVClXN5am_74rh73Yuncjr4Rq6P3qTBuf3tS3sUjQu5ZXmkQhDGTc6vbt9SAzI1728zVuDuRHhmBYvc7Fs71JIMpJGi_8Eaw
key
{"p":"4ZZkYYLRnC3wO4ZVynhbm0mKAwYmhkEbZRE8ToHrByluD4NUFYtzu8H_Yb7gwFIDUx8uCryd8zwElcFcjZ_wqrlkLE_HYnChaSsJUZWvcxM1Y1FHt6gZ0YDs5iRCdaFwU3lFDAMNv-OJWI9sTvqQMQjADQUh2z1BwiTcYZadE98","kty":"RSA","q":"oW_eZw7kdbZ7Yc5WC7meqxPWXmrm149qYcwXzY11HejbhMEDVwyEX-qGT7D25yshzei8Sv-QC9gfd-s3gj0LR7h-7MHesI0EANAaKk5wr1wqXL8161ZIpevNp4IiNByyACHgV0rAhXh_bBQ-fSdeOFnZ6lqvlHCEKkPcnMD574E","d":"csEIGACtF9DsMyaIgMJsZpqsOqM0Ltth6g-voYFnAkHy1vSYM8pxPpEWNGXjpV4Yu0mH-TtLTotyX1PJNPJ8masgqWB0IlNGfrdZ9RiBJgHHDMdn4wfPbea-Eb0ryi7CM0KiXLRuU5q9oK6UyC_xceazxmJrBuZL7KTqnvoKB0WryriDYd_SxjPY4G1XcrdDQIDkX1PjGVhQCQm2tXlWXUSjxPjibNfV3vrF2BlX0MdXlACXVNSDxRDAxdth_8h1VZF4jeqgsYvypokT9K0Um1Pg9ezbGGjbSie0aeDbWhdJ4zjIRlN9BygI_6tM6Ok04UukIKLpBElfz2C4jY3iAQ","e":"AQAB","use":"sig","kid":"cc057fc9-8562-4be0-a918-6f5092b0a444","qi":"iYvlAqgryoNFZh1GJlCjJNUgSW8LbvK1NuvIHPu_3_WUgr4LbTogZ5QJvLTMft354OOUcgHleU_b0o0LKi0XHmN1WpOkmsYKw2dqUbJaeZEeXBEMQ5RrzOniWo0R6M2hbVV1JQcRJkQHVx-_h3QbMqJixo-c5yMYEiETb2_kC3o","dp":"lVc0mQE7tsMKuL1T6jgHnSPwA9R8iIBtnFjuraKAbztUK1zru1-YfIIPiSwOKgOhQ9PubRk1D6N5_ZIGrZNmhf85e8RM4LRjhvYAs0v-3JWo0Fksuz7D6NgK_MigXrNDY19zAGK9JX2CnWhFcXubHXsHeRcetL8220n_w3MsBc0","dq":"JW_p5YBgnqOozS-qaKGtGANLrS2hRs_tXayUwIhTZpI_hfO0sJUohY2_g--H8mfgOP4F3GaTowuFkKutfbhmS0WPuZvj5pFtIjsgNjtmimQXNtbozCCATGn4kSXuhKM67Cju-49MQieFdSzkqOVeRjcf_-bz3LqTC7IdEQT3cQE","n":"jkIpUhU8CfJJS596ndurAreKuP9dYbpUsQIhEeSYJcaOAPwwlMW2OcCgQMDiSv0YU00AMog15T6PGPza4aflBMrttS4d8I85RrfXYkPODsEo-DwlbyHhP8kMRebTpl6Gr_9UdV_sg6RPRwobwDgQW2MYDYLl1ASL0y651ShIwlJRWknJP76OlcNOeliujivZ_XBdaeznpVNB78lkX30t4zlNzsU6bzTzreuDmkcMlH280Yansf2OPQD5W7Xj96YYnPCyMX-PeKCt1eOpv2zG7Ly8bAWCteIt6W0YtoFbB1rRe5EjppN4k4EuR8dU8SO3VNUDGp_x5chYXDZdHps0Xw"}
algorithm
RS256
2021-05-31 18:04:45 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2021-05-31 18:04:45 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP
token_type
Bearer
id_token
eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiR2k2djlBRXBvdFVueVBDQW9XQmh6ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvSW50dWl0X3BhdXRoX29wZW5pZF9oeWJyaWRfcHJvZmlsZV9wbGFuXzFcLyIsImV4cCI6MTYyMjQ4NDU4NSwibm9uY2UiOiJhd2IuZjhlYmM4OWItZDFmMy00MjM2LWFlYTMtNzJlYTcyOGJmMjRmIiwiaWF0IjoxNjIyNDg0Mjg1fQ.AoTfRMHtQvG7w35u_S3Fx4i7nPYRpNjJi69MPpCn1TLFMPzVClhB5xNUM6_7liocbYulN4YIJdfiKtgG3tOUM_imCgiqxmqx3br-fT9HH5I2dT3qLkyWoqHsuNnFENHHkhGcSO-cqk6iDx5Ol5s7Z60Aj3CmekDOebSdyQQxIcvE7wDLjGiP8V5oiYV7HyL478u-JT2ipF8WS2n-gr5Hbw6afjUS6dxDq25nuB8ym8inkzjDisdu5GNVClXN5am_74rh73Yuncjr4Rq6P3qTBuf3tS3sUjQu5ZXmkQhDGTc6vbt9SAzI1728zVuDuRHhmBYvc7Fs71JIMpJGi_8Eaw
scope
openid phone profile email address offline_access
2021-05-31 18:04:45 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJjYzA1N2ZjOS04NTYyLTRiZTAtYTkxOC02ZjUwOTJiMGE0NDQiLCJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiR2k2djlBRXBvdFVueVBDQW9XQmh6ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMTIzNDU2NzgtaHlicmlkLXByb2ZpbGUtcGxhaW4tcHJpdmF0ZS1rZXktY2xpZW50aWQiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvSW50dWl0X3BhdXRoX29wZW5pZF9oeWJyaWRfcHJvZmlsZV9wbGFuXzFcLyIsImV4cCI6MTYyMjQ4NDU4NSwibm9uY2UiOiJhd2IuZjhlYmM4OWItZDFmMy00MjM2LWFlYTMtNzJlYTcyOGJmMjRmIiwiaWF0IjoxNjIyNDg0Mjg1fQ.AoTfRMHtQvG7w35u_S3Fx4i7nPYRpNjJi69MPpCn1TLFMPzVClhB5xNUM6_7liocbYulN4YIJdfiKtgG3tOUM_imCgiqxmqx3br-fT9HH5I2dT3qLkyWoqHsuNnFENHHkhGcSO-cqk6iDx5Ol5s7Z60Aj3CmekDOebSdyQQxIcvE7wDLjGiP8V5oiYV7HyL478u-JT2ipF8WS2n-gr5Hbw6afjUS6dxDq25nuB8ym8inkzjDisdu5GNVClXN5am_74rh73Yuncjr4Rq6P3qTBuf3tS3sUjQu5ZXmkQhDGTc6vbt9SAzI1728zVuDuRHhmBYvc7Fs71JIMpJGi_8Eaw",
  "scope": "openid phone profile email address offline_access"
}
outgoing_path
token
2021-05-31 18:04:46 INCOMING
oidcc-client-test-idtoken-sig-rs256
Incoming HTTP request to test instance oKNoE7ziKt85eU1
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer 8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP",
  "user-agent": "Apache-HttpClient/4.5.6 (Java/1.8.0_241)",
  "accept-encoding": "gzip,deflate",
  "x-ssl-cipher": "ECDHE-RSA-AES256-GCM-SHA384",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
userinfo
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
Userinfo endpoint
2021-05-31 18:04:46 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token
8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP
2021-05-31 18:04:46 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
8ROSYUiKjOIiUUKt7OTKYZJcr31o8KoZIZ8mTLnkdDkzOHEeHP
2021-05-31 18:04:46 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub
user-subject-1234531
phone_number_verified
false
phone_number
+1 555 5550000
website
https://openid.net/
zoneinfo
America/Los_Angeles
birthdate
2000-02-03
gender
female
preferred_username
d.tu
given_name
Demo
middle_name
Theresa
locale
en-US
updated_at
1580000000
name
Demo T. User
nickname
Dee
family_name
User
email
user@example.com
email_verified
false
address
{
  "street_address": "100 Universal City Plaza",
  "locality": "Hollywood",
  "region": "CA",
  "postal_code": "91608",
  "country": "USA"
}
2021-05-31 18:04:46
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-05-31 18:04:46 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2021-05-31 18:04:46 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2021-05-31 18:04:46 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path
userinfo_encrypted_response_alg
mapped
object
client
2021-05-31 18:04:46 OUTGOING
oidcc-client-test-idtoken-sig-rs256
Response to HTTP request to test instance oKNoE7ziKt85eU1
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "sub": "user-subject-1234531",
  "phone_number_verified": false,
  "phone_number": "+1 555 5550000",
  "website": "https://openid.net/",
  "zoneinfo": "America/Los_Angeles",
  "birthdate": "2000-02-03",
  "gender": "female",
  "preferred_username": "d.tu",
  "given_name": "Demo",
  "middle_name": "Theresa",
  "locale": "en-US",
  "updated_at": 1580000000,
  "name": "Demo T. User",
  "nickname": "Dee",
  "family_name": "User",
  "email": "user@example.com",
  "email_verified": false,
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  }
}
outgoing_path
userinfo
2021-05-31 18:04:46 FINISHED
oidcc-client-test-idtoken-sig-rs256
Test has run to completion
testmodule_result
PASSED
2021-05-31 18:06:24
TEST-RUNNER
Alias has now been claimed by another test
alias
Intuit_pauth_openid_hybrid_profile_plan_1
new_test_id
gFM8KfACcnRtXvT
Test Results