Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-04-22 08:27:58 INFO
TEST-RUNNER
Test instance 5oPAK06AA4x4FVQ created
baseUrl
https://www.certification.openid.net/test/a/local-oidc
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_jarm_type": "oidc",
  "fapi_profile": "plain_fapi",
  "fapi_response_mode": "plain_response"
}
alias
local-oidc
description
oidc-provider OIDC
planId
eXbBCD7xNsAIe
config
{
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
          "kty": "RSA",
          "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
          "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
          "e": "AQAB",
          "use": "sig",
          "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
          "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
          "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
          "alg": "PS256",
          "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
          "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
        }
      ]
    }
  },
  "client": {
    "certificate": "-----BEGIN CERTIFICATE-----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\n01DFhj3IQVCfQf7XoKFTl481d1T+LEFvvk+2Gt9GsRA22y8Hfcg9\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
          "alg": "PS256",
          "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
          "alg": "RSA-OAEP-256",
          "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
        }
      ]
    },
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "scope": "email openid profile",
    "client_id": "fapi-client"
  },
  "alias": "local-oidc",
  "client2": {
    "client_id": "fapi-client",
    "scope": "email openid profile",
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
          "alg": "PS256",
          "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
          "alg": "RSA-OAEP-256",
          "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\n01DFhj3IQVCfQf7XoKFTl481d1T+LEFvvk+2Gt9GsRA22y8Hfcg9\n-----END CERTIFICATE-----",
    "id_token_encrypted_response_alg": "RSA-OAEP-256",
    "id_token_encrypted_response_enc": "A128GCM"
  },
  "description": "oidc-provider OIDC"
}
testName
fapi1-advanced-final-client-test-encrypted-idtoken-usingrsa15
2022-04-22 08:27:58 SUCCESS
GenerateServerConfigurationMTLS
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/local-oidc/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/local-oidc/authorize",
  "token_endpoint": "https://www.certification.openid.net/test-mtls/a/local-oidc/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/local-oidc/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/local-oidc/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/local-oidc/userinfo"
}
issuer
https://www.certification.openid.net/test/a/local-oidc/
discoveryUrl
https://www.certification.openid.net/test/a/local-oidc/.well-known/openid-configuration
2022-04-22 08:27:58 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
      "kty": "RSA",
      "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
      "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
      "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
      "alg": "PS256",
      "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
server_encryption_keys
{}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "alg": "PS256",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
2022-04-22 08:27:58 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:27:58 SUCCESS
ExtractServerSigningAlg
Successfully extracted algorithm
signing_algorithm
PS256
2022-04-22 08:27:58 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2022-04-22 08:27:58 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-04-22 08:27:58 SUCCESS
FAPIAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256",
  "ES256"
]
2022-04-22 08:27:58 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-04-22 08:27:58 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
      "kty": "RSA",
      "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
      "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
      "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
      "alg": "PS256",
      "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
2022-04-22 08:27:58 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-04-22 08:27:58 SUCCESS
GetStaticClientConfiguration
Found a static client object
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
redirect_uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
scope
email openid profile
client_id
fapi-client
2022-04-22 08:27:58 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:27:58 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:27:58 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-04-22 08:27:58 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-04-22 08:27:58 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
Verify configuration of second client
2022-04-22 08:27:58 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
fapi-client
scope
email openid profile
redirect_uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
id_token_encrypted_response_alg
RSA-OAEP-256
id_token_encrypted_response_enc
A128GCM
2022-04-22 08:27:58 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:27:58 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:27:58 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-04-22 08:27:58 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-04-22 08:27:58 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:27:58 SUCCESS
FAPIEnsureClientJwksContainsAnEncryptionKey
Found an encryption key in client jwks
kid
gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4
algorithm
RSA-OAEP-256
2022-04-22 08:27:58
fapi1-advanced-final-client-test-encrypted-idtoken-usingrsa15
Setup Done
2022-04-22 08:28:06 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken-usingrsa15
Incoming HTTP request to /test/a/local-oidc/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"100\", \"Google Chrome\";v\u003d\"100\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "ja,en-US;q\u003d0.9,en;q\u003d0.8",
  "cookie": "JSESSIONID\u003d46593A08E4C3070B53CC09FEAAA32AEB",
  "connection": "close"
}
incoming_path
/test/a/local-oidc/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "fapi-client",
  "scope": "email openid profile",
  "response_type": "code id_token",
  "request": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJmYXBpLWNsaWVudCIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsIm5vbmNlIjoiMDBjMDg2YWItMzFkZi00NWI5LTgzMDktNWIxNjViODc2MGRlIiwiY2xpZW50X2lkIjoiZmFwaS1jbGllbnQiLCJyZXNwb25zZV9tb2RlIjoiZm9ybV9wb3N0IiwiYXVkIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2xvY2FsLW9pZGNcLyIsIm5iZiI6MTY1MDYxNjA4Niwic2NvcGUiOiJlbWFpbCBvcGVuaWQgcHJvZmlsZSIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC9pcC0xNzItMzEtMjAtNTguYXAtbm9ydGhlYXN0LTEuY29tcHV0ZS5pbnRlcm5hbDo4MDgyXC9jYWxsYmFjayIsInN0YXRlIjoiNzUyM2RkYmItZmI0Yi00Mzk3LTkxZDUtOGUzYTRhYjMyZjNkIiwiZXhwIjoxNjUwNjE2Mzg2LCJjb2RlX2NoYWxsZW5nZSI6ImtNckxkNG5xeGdkQW94TkpXSDJKSVRYaWtJZndyMzNDNHVxaGJEZ3JIV1EifQ.F8FlOYWYN2qSjjSlOzu3mt6k9VsOzMZGxDRuYaJNvgeInkO80EHizSapha5f1Khx6j_hIjKnh8pDuV3aaB6Kb6--Da9EMeIc1vsnP3K_ny43O3dmj020GD6LDLzSSQFKDqoMSgc6AnP9zDdgYiWCTBQJ22TFnCZV0CFP9EcOhIWfVOutbXK54rzP_YN0GhoULtYzQCIW4v8bVtdAFkkRiHkt6Uz4fR9NkJ2e9d-DDymn8WZekSIFnh7r-glDJE7PdfXkUT72GHi76k4Fi5dKmvyL7e63xpaQWIHjK4r6K1HJmDx37Ha_ktS1L4cFOexl8AMpu7Xr08l2kleXMbKwpA"
}
incoming_body
2022-04-22 08:28:06 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-04-22 08:28:06 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJmYXBpLWNsaWVudCIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsIm5vbmNlIjoiMDBjMDg2YWItMzFkZi00NWI5LTgzMDktNWIxNjViODc2MGRlIiwiY2xpZW50X2lkIjoiZmFwaS1jbGllbnQiLCJyZXNwb25zZV9tb2RlIjoiZm9ybV9wb3N0IiwiYXVkIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2xvY2FsLW9pZGNcLyIsIm5iZiI6MTY1MDYxNjA4Niwic2NvcGUiOiJlbWFpbCBvcGVuaWQgcHJvZmlsZSIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC9pcC0xNzItMzEtMjAtNTguYXAtbm9ydGhlYXN0LTEuY29tcHV0ZS5pbnRlcm5hbDo4MDgyXC9jYWxsYmFjayIsInN0YXRlIjoiNzUyM2RkYmItZmI0Yi00Mzk3LTkxZDUtOGUzYTRhYjMyZjNkIiwiZXhwIjoxNjUwNjE2Mzg2LCJjb2RlX2NoYWxsZW5nZSI6ImtNckxkNG5xeGdkQW94TkpXSDJKSVRYaWtJZndyMzNDNHVxaGJEZ3JIV1EifQ.F8FlOYWYN2qSjjSlOzu3mt6k9VsOzMZGxDRuYaJNvgeInkO80EHizSapha5f1Khx6j_hIjKnh8pDuV3aaB6Kb6--Da9EMeIc1vsnP3K_ny43O3dmj020GD6LDLzSSQFKDqoMSgc6AnP9zDdgYiWCTBQJ22TFnCZV0CFP9EcOhIWfVOutbXK54rzP_YN0GhoULtYzQCIW4v8bVtdAFkkRiHkt6Uz4fR9NkJ2e9d-DDymn8WZekSIFnh7r-glDJE7PdfXkUT72GHi76k4Fi5dKmvyL7e63xpaQWIHjK4r6K1HJmDx37Ha_ktS1L4cFOexl8AMpu7Xr08l2kleXMbKwpA",
  "header": {
    "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "iss": "fapi-client",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "00c086ab-31df-45b9-8309-5b165b8760de",
    "client_id": "fapi-client",
    "response_mode": "form_post",
    "aud": "https://www.certification.openid.net/test/a/local-oidc/",
    "nbf": 1650616086,
    "scope": "email openid profile",
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "state": "7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d",
    "exp": 1650616386,
    "code_challenge": "kMrLd4nqxgdAoxNJWH2JITXikIfwr33C4uqhbDgrHWQ"
  }
}
2022-04-22 08:28:06 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-04-22 08:28:06 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "fapi-client",
  "scope": "email openid profile",
  "response_type": "code id_token",
  "request": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.F8FlOYWYN2qSjjSlOzu3mt6k9VsOzMZGxDRuYaJNvgeInkO80EHizSapha5f1Khx6j_hIjKnh8pDuV3aaB6Kb6--Da9EMeIc1vsnP3K_ny43O3dmj020GD6LDLzSSQFKDqoMSgc6AnP9zDdgYiWCTBQJ22TFnCZV0CFP9EcOhIWfVOutbXK54rzP_YN0GhoULtYzQCIW4v8bVtdAFkkRiHkt6Uz4fR9NkJ2e9d-DDymn8WZekSIFnh7r-glDJE7PdfXkUT72GHi76k4Fi5dKmvyL7e63xpaQWIHjK4r6K1HJmDx37Ha_ktS1L4cFOexl8AMpu7Xr08l2kleXMbKwpA",
  "iss": "fapi-client",
  "code_challenge_method": "S256",
  "nonce": "00c086ab-31df-45b9-8309-5b165b8760de",
  "response_mode": "form_post",
  "aud": "https://www.certification.openid.net/test/a/local-oidc/",
  "nbf": 1650616086,
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d",
  "exp": 1650616386,
  "code_challenge": "kMrLd4nqxgdAoxNJWH2JITXikIfwr33C4uqhbDgrHWQ"
}
2022-04-22 08:28:06 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-04-22 08:28:06 INFO
FAPIValidateRequestObjectIdTokenACRClaims
The acr claim is missing or is not a JsonObject
acrClaim
2022-04-22 08:28:06 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Apr 22, 2022, 8:33:06 AM"
2022-04-22 08:28:06 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Apr 22, 2022, 8:28:06 AM"
now
"Apr 22, 2022, 8:28:06 AM"
2022-04-22 08:28:06 INFO
ValidateRequestObjectClaims
Missing issuance time
2022-04-22 08:28:06
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-04-22 08:28:06 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-04-22 08:28:06 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-04-22 08:28:06 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-04-22 08:28:06 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-04-22 08:28:06 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.F8FlOYWYN2qSjjSlOzu3mt6k9VsOzMZGxDRuYaJNvgeInkO80EHizSapha5f1Khx6j_hIjKnh8pDuV3aaB6Kb6--Da9EMeIc1vsnP3K_ny43O3dmj020GD6LDLzSSQFKDqoMSgc6AnP9zDdgYiWCTBQJ22TFnCZV0CFP9EcOhIWfVOutbXK54rzP_YN0GhoULtYzQCIW4v8bVtdAFkkRiHkt6Uz4fR9NkJ2e9d-DDymn8WZekSIFnh7r-glDJE7PdfXkUT72GHi76k4Fi5dKmvyL7e63xpaQWIHjK4r6K1HJmDx37Ha_ktS1L4cFOexl8AMpu7Xr08l2kleXMbKwpA
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 20086458179952591616896125118337458363377501279788835204287610550027464943813712271644932006584933312464506703073285982623323032537100647592449193484130320211298383362391308960770957232499213709561703316590736002203515542644785960863281456603549770430987646899771696951308448798344244595315816210399707251291401217145182781821858469987501459180808887210150090366152318398049511055764243470855585112715346454598517868493041665163997404026949137627283967748387700881601135614321057236216014232453748211452863337654607779276304452825064093543921547995258617015336064294102586940260523785102809756957292168934220299548299
  public exponent: 65537
2022-04-22 08:28:06 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
2022-04-22 08:28:06 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
fapi-client
2022-04-22 08:28:06 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2022-04-22 08:28:06 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "email",
  "openid",
  "profile"
]
expected
openid
2022-04-22 08:28:06 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
email openid profile
2022-04-22 08:28:06 SUCCESS
EnsureRequestedScopeIsEqualToConfiguredScope
Requested scopes match configured scopes
scope
email openid profile
2022-04-22 08:28:06 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-04-22 08:28:06 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "email",
  "openid",
  "profile"
]
expected
openid
2022-04-22 08:28:06 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
fapi-client
2022-04-22 08:28:06 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
49OHhMT986BkmIXqEvgqKWWozevUOhS6
2022-04-22 08:28:06 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
00c086ab-31df-45b9-8309-5b165b8760de
2022-04-22 08:28:06 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
k_40x-y1hAJzS9lHQ4oWmg
2022-04-22 08:28:06 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
K1ZUtPFmpVNd-sdau0f37A
2022-04-22 08:28:06 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/local-oidc/
sub
user-subject-1234531
aud
fapi-client
nonce
00c086ab-31df-45b9-8309-5b165b8760de
iat
1650616086
exp
1650616386
2022-04-22 08:28:06 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
k_40x-y1hAJzS9lHQ4oWmg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/local-oidc/",
  "sub": "user-subject-1234531",
  "aud": "fapi-client",
  "nonce": "00c086ab-31df-45b9-8309-5b165b8760de",
  "iat": 1650616086,
  "exp": 1650616386,
  "c_hash": "k_40x-y1hAJzS9lHQ4oWmg"
}
2022-04-22 08:28:06 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
K1ZUtPFmpVNd-sdau0f37A
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/local-oidc/",
  "sub": "user-subject-1234531",
  "aud": "fapi-client",
  "nonce": "00c086ab-31df-45b9-8309-5b165b8760de",
  "iat": 1650616086,
  "exp": 1650616386,
  "c_hash": "k_40x-y1hAJzS9lHQ4oWmg",
  "s_hash": "K1ZUtPFmpVNd-sdau0f37A"
}
2022-04-22 08:28:06 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-04-22 08:28:06 INFO
AddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2022-04-22 08:28:06 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJQNUtBaVVXQTJSeUlnZnJzQzJoZlg5bWxSRUUtYjJwa3drUkoySVRVR1lrIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImZhcGktY2xpZW50IiwiY19oYXNoIjoia180MHgteTFoQUp6UzlsSFE0b1dtZyIsInNfaGFzaCI6IksxWlV0UEZtcFZOZC1zZGF1MGYzN0EiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvbG9jYWwtb2lkY1wvIiwiZXhwIjoxNjUwNjE2Mzg2LCJub25jZSI6IjAwYzA4NmFiLTMxZGYtNDViOS04MzA5LTViMTY1Yjg3NjBkZSIsImlhdCI6MTY1MDYxNjA4Nn0.yR52B3i-nt5N6jL5Q-3DFVBDXI57X7e55Lf9SRl1avlVSt_WTm5NKrQerTDSgiDc_4yHroz6kn5UO25EXfwc7grFgM_e_A8OvjRUdvYY91U2TJk6ite2kt5oCcWW8xGAVUhWxXiNXVIOwjfU6-0q9rOfyus1yEjAQda5y3yUViinFMRKNWu72iU3MhFUSE2ZGgFQOnU-pSEXu_ZOPm7QRTqy5XC9cZWGvBmzi8On_zx3woiFFiZLIaFxPa-Bade070L6uUwO6qr999Bu9qEKHPB33OKjWleZmTCLeGlMPB8WN56jBZjR606On7-u_7k11WFl8UoBCrnkL417P5B1mA
2022-04-22 08:28:06
ChangeIdTokenEncryptedResponseAlgToRSA15
Changed id_token_encrypted_response_alg to RSA1_5
2022-04-22 08:28:06
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA1_5
id_token_encrypted_response_enc
A128GCM
id_token
eyJraWQiOiJnVTdMc3BCVG5YMUtVMjVrWmE4alMzV3NwUWkyRHExd09nZ1o0MUFrclU0IiwiY3R5IjoiSldUIiwiZW5jIjoiQTEyOEdDTSIsImFsZyI6IlJTQTFfNSJ9.ehkRoJYHvxoUK2Fn4rUjCdbziHQSUFOrqEYjL_6q7-PIC4rRuSbtE6KSYMpBwa_jyulG7B-RC4fOElDdRRlzRXgfRz9ZEEDcYMV5FJCAqYV5Uq6RqSiz49cilJ9Gzg7wQo_GdkC3Lc2t5XB-N5GbRgGraW8ut_QJvsN-0jK-zyzdZdJb8F-ScAOHJtIH_AJlYVfxKxE2tk-sj8iOHRCR0M6i38SMueB_h0Z5KMqcm5jGmPzwN0DN5jUGx6AhNSJtq5IJuc9XPsd890vF4MjxJ2xWzGLhfjasXPuVJ2yPFlDUOewvhnFrewrbDaqSCBMMsQ7V5HxG-AbZPeljenCntg.h3XXfoRTjLntwDGe.A60i1uLuUfFxr4M7TStR0z11VBvroFhiwKep1OvemAgxKvbFr3AvtzQ3vObnFRic556XS_lj61GmQdIEM83sBxiq09Z3MJ0wPeNufSxjPeh5GhFzWiVVu4uVD_TrhqOhlzdY1XdysFohqKtmbOwg3Njy9xtoiXi__1pNkRaaqzh4bZqFJG-gPLzIRO9oqTpe2dZNyBl7nqwaDeeqFTrGnHWUO-YxlW5EKg9YmG1qmC5Xh7-j3PVv1P1TqcCENU4m2prbj0xAQCzKlvb99o8rgLMzv8IXhqUSf4AXWwSj4P4K1Qvsk0GwB9SdNON-LqG1DL0UKkQg3RB_ilYtfMJMF-YjtOJD9GBZbqV0mtDMDMgn3jCQo54TPOr06DfVsBLjd6_Lfgig1QZmbdCXD6c36VoIKYyGh5Iz1nlGlX8rZATrPDCU8zXgbAO0xEs63itWkUafvagc8M17rpLY6siMqRf7SgLTnIS2sZZrtdZ3iVvCPxPsMNQmPt4FVkKYF27DRrKQVQnnE3wLzUZwc8QQY9H7nlCecW3xnOggaEEFUU1CVpsGOcxVl-0zq0vCm3sN0pt6RWUtQuj7lUMKodf7EU8Sxou9KD_m4l12je2ZP_NwwrvfbL47k83aEchSh4rJ1KOq7OrC1dPw3zSnjYBsXZERhqQUBKQMW_KTlA1AsgDGqixoqbPZFlZuDUiTof6XB4cPcWkQLifGE0Fivhf1O5k_URJLSKhafF9OmvcEER82Nu0XAOyF84eZRgMNYRxj4VPNp6Vz2ggh52Cb2PY5-bJkt-mwsFZB_vFX_9kt4KWu1DPaLBY6lx-uibAEX5KdmFkFzCahvv4M00XDxZ0ClayzeSBccvd9AtmdP8D_0j9E8Cvhd74SpMR2IHsb1H9zNMTunxFzgOnO7qIIGoe8INeOByBB3j_DrD4TtySiUftvKR1YnILuiMkYO9O9VREIcECqhSsd-G3E4Y1Tj1o71tQzIlV262-GdPl3k6ICuKoP3WSv6DCJI4STiigN8cduk23Gm7JkCreIxDudKTN2OMFpafFtegDMMQ.HzJg-O_3PInjHOdtgW6wbA
2022-04-22 08:28:06 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d"
}
2022-04-22 08:28:06 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d",
  "code": "49OHhMT986BkmIXqEvgqKWWozevUOhS6"
}
2022-04-22 08:28:06 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d",
  "code": "49OHhMT986BkmIXqEvgqKWWozevUOhS6",
  "id_token": "eyJraWQiOiJnVTdMc3BCVG5YMUtVMjVrWmE4alMzV3NwUWkyRHExd09nZ1o0MUFrclU0IiwiY3R5IjoiSldUIiwiZW5jIjoiQTEyOEdDTSIsImFsZyI6IlJTQTFfNSJ9.ehkRoJYHvxoUK2Fn4rUjCdbziHQSUFOrqEYjL_6q7-PIC4rRuSbtE6KSYMpBwa_jyulG7B-RC4fOElDdRRlzRXgfRz9ZEEDcYMV5FJCAqYV5Uq6RqSiz49cilJ9Gzg7wQo_GdkC3Lc2t5XB-N5GbRgGraW8ut_QJvsN-0jK-zyzdZdJb8F-ScAOHJtIH_AJlYVfxKxE2tk-sj8iOHRCR0M6i38SMueB_h0Z5KMqcm5jGmPzwN0DN5jUGx6AhNSJtq5IJuc9XPsd890vF4MjxJ2xWzGLhfjasXPuVJ2yPFlDUOewvhnFrewrbDaqSCBMMsQ7V5HxG-AbZPeljenCntg.h3XXfoRTjLntwDGe.A60i1uLuUfFxr4M7TStR0z11VBvroFhiwKep1OvemAgxKvbFr3AvtzQ3vObnFRic556XS_lj61GmQdIEM83sBxiq09Z3MJ0wPeNufSxjPeh5GhFzWiVVu4uVD_TrhqOhlzdY1XdysFohqKtmbOwg3Njy9xtoiXi__1pNkRaaqzh4bZqFJG-gPLzIRO9oqTpe2dZNyBl7nqwaDeeqFTrGnHWUO-YxlW5EKg9YmG1qmC5Xh7-j3PVv1P1TqcCENU4m2prbj0xAQCzKlvb99o8rgLMzv8IXhqUSf4AXWwSj4P4K1Qvsk0GwB9SdNON-LqG1DL0UKkQg3RB_ilYtfMJMF-YjtOJD9GBZbqV0mtDMDMgn3jCQo54TPOr06DfVsBLjd6_Lfgig1QZmbdCXD6c36VoIKYyGh5Iz1nlGlX8rZATrPDCU8zXgbAO0xEs63itWkUafvagc8M17rpLY6siMqRf7SgLTnIS2sZZrtdZ3iVvCPxPsMNQmPt4FVkKYF27DRrKQVQnnE3wLzUZwc8QQY9H7nlCecW3xnOggaEEFUU1CVpsGOcxVl-0zq0vCm3sN0pt6RWUtQuj7lUMKodf7EU8Sxou9KD_m4l12je2ZP_NwwrvfbL47k83aEchSh4rJ1KOq7OrC1dPw3zSnjYBsXZERhqQUBKQMW_KTlA1AsgDGqixoqbPZFlZuDUiTof6XB4cPcWkQLifGE0Fivhf1O5k_URJLSKhafF9OmvcEER82Nu0XAOyF84eZRgMNYRxj4VPNp6Vz2ggh52Cb2PY5-bJkt-mwsFZB_vFX_9kt4KWu1DPaLBY6lx-uibAEX5KdmFkFzCahvv4M00XDxZ0ClayzeSBccvd9AtmdP8D_0j9E8Cvhd74SpMR2IHsb1H9zNMTunxFzgOnO7qIIGoe8INeOByBB3j_DrD4TtySiUftvKR1YnILuiMkYO9O9VREIcECqhSsd-G3E4Y1Tj1o71tQzIlV262-GdPl3k6ICuKoP3WSv6DCJI4STiigN8cduk23Gm7JkCreIxDudKTN2OMFpafFtegDMMQ.HzJg-O_3PInjHOdtgW6wbA"
}
2022-04-22 08:28:06
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback#state=7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d&code=49OHhMT986BkmIXqEvgqKWWozevUOhS6&id_token=eyJraWQiOiJnVTdMc3BCVG5YMUtVMjVrWmE4alMzV3NwUWkyRHExd09nZ1o0MUFrclU0IiwiY3R5IjoiSldUIiwiZW5jIjoiQTEyOEdDTSIsImFsZyI6IlJTQTFfNSJ9.ehkRoJYHvxoUK2Fn4rUjCdbziHQSUFOrqEYjL_6q7-PIC4rRuSbtE6KSYMpBwa_jyulG7B-RC4fOElDdRRlzRXgfRz9ZEEDcYMV5FJCAqYV5Uq6RqSiz49cilJ9Gzg7wQo_GdkC3Lc2t5XB-N5GbRgGraW8ut_QJvsN-0jK-zyzdZdJb8F-ScAOHJtIH_AJlYVfxKxE2tk-sj8iOHRCR0M6i38SMueB_h0Z5KMqcm5jGmPzwN0DN5jUGx6AhNSJtq5IJuc9XPsd890vF4MjxJ2xWzGLhfjasXPuVJ2yPFlDUOewvhnFrewrbDaqSCBMMsQ7V5HxG-AbZPeljenCntg.h3XXfoRTjLntwDGe.A60i1uLuUfFxr4M7TStR0z11VBvroFhiwKep1OvemAgxKvbFr3AvtzQ3vObnFRic556XS_lj61GmQdIEM83sBxiq09Z3MJ0wPeNufSxjPeh5GhFzWiVVu4uVD_TrhqOhlzdY1XdysFohqKtmbOwg3Njy9xtoiXi__1pNkRaaqzh4bZqFJG-gPLzIRO9oqTpe2dZNyBl7nqwaDeeqFTrGnHWUO-YxlW5EKg9YmG1qmC5Xh7-j3PVv1P1TqcCENU4m2prbj0xAQCzKlvb99o8rgLMzv8IXhqUSf4AXWwSj4P4K1Qvsk0GwB9SdNON-LqG1DL0UKkQg3RB_ilYtfMJMF-YjtOJD9GBZbqV0mtDMDMgn3jCQo54TPOr06DfVsBLjd6_Lfgig1QZmbdCXD6c36VoIKYyGh5Iz1nlGlX8rZATrPDCU8zXgbAO0xEs63itWkUafvagc8M17rpLY6siMqRf7SgLTnIS2sZZrtdZ3iVvCPxPsMNQmPt4FVkKYF27DRrKQVQnnE3wLzUZwc8QQY9H7nlCecW3xnOggaEEFUU1CVpsGOcxVl-0zq0vCm3sN0pt6RWUtQuj7lUMKodf7EU8Sxou9KD_m4l12je2ZP_NwwrvfbL47k83aEchSh4rJ1KOq7OrC1dPw3zSnjYBsXZERhqQUBKQMW_KTlA1AsgDGqixoqbPZFlZuDUiTof6XB4cPcWkQLifGE0Fivhf1O5k_URJLSKhafF9OmvcEER82Nu0XAOyF84eZRgMNYRxj4VPNp6Vz2ggh52Cb2PY5-bJkt-mwsFZB_vFX_9kt4KWu1DPaLBY6lx-uibAEX5KdmFkFzCahvv4M00XDxZ0ClayzeSBccvd9AtmdP8D_0j9E8Cvhd74SpMR2IHsb1H9zNMTunxFzgOnO7qIIGoe8INeOByBB3j_DrD4TtySiUftvKR1YnILuiMkYO9O9VREIcECqhSsd-G3E4Y1Tj1o71tQzIlV262-GdPl3k6ICuKoP3WSv6DCJI4STiigN8cduk23Gm7JkCreIxDudKTN2OMFpafFtegDMMQ.HzJg-O_3PInjHOdtgW6wbA
2022-04-22 08:28:06 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken-usingrsa15
Response to HTTP request to test instance 5oPAK06AA4x4FVQ
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback#state=7523ddbb-fb4b-4397-91d5-8e3a4ab32f3d&code=49OHhMT986BkmIXqEvgqKWWozevUOhS6&id_token=eyJraWQiOiJnVTdMc3BCVG5YMUtVMjVrWmE4alMzV3NwUWkyRHExd09nZ1o0MUFrclU0IiwiY3R5IjoiSldUIiwiZW5jIjoiQTEyOEdDTSIsImFsZyI6IlJTQTFfNSJ9.ehkRoJYHvxoUK2Fn4rUjCdbziHQSUFOrqEYjL_6q7-PIC4rRuSbtE6KSYMpBwa_jyulG7B-RC4fOElDdRRlzRXgfRz9ZEEDcYMV5FJCAqYV5Uq6RqSiz49cilJ9Gzg7wQo_GdkC3Lc2t5XB-N5GbRgGraW8ut_QJvsN-0jK-zyzdZdJb8F-ScAOHJtIH_AJlYVfxKxE2tk-sj8iOHRCR0M6i38SMueB_h0Z5KMqcm5jGmPzwN0DN5jUGx6AhNSJtq5IJuc9XPsd890vF4MjxJ2xWzGLhfjasXPuVJ2yPFlDUOewvhnFrewrbDaqSCBMMsQ7V5HxG-AbZPeljenCntg.h3XXfoRTjLntwDGe.A60i1uLuUfFxr4M7TStR0z11VBvroFhiwKep1OvemAgxKvbFr3AvtzQ3vObnFRic556XS_lj61GmQdIEM83sBxiq09Z3MJ0wPeNufSxjPeh5GhFzWiVVu4uVD_TrhqOhlzdY1XdysFohqKtmbOwg3Njy9xtoiXi__1pNkRaaqzh4bZqFJG-gPLzIRO9oqTpe2dZNyBl7nqwaDeeqFTrGnHWUO-YxlW5EKg9YmG1qmC5Xh7-j3PVv1P1TqcCENU4m2prbj0xAQCzKlvb99o8rgLMzv8IXhqUSf4AXWwSj4P4K1Qvsk0GwB9SdNON-LqG1DL0UKkQg3RB_ilYtfMJMF-YjtOJD9GBZbqV0mtDMDMgn3jCQo54TPOr06DfVsBLjd6_Lfgig1QZmbdCXD6c36VoIKYyGh5Iz1nlGlX8rZATrPDCU8zXgbAO0xEs63itWkUafvagc8M17rpLY6siMqRf7SgLTnIS2sZZrtdZ3iVvCPxPsMNQmPt4FVkKYF27DRrKQVQnnE3wLzUZwc8QQY9H7nlCecW3xnOggaEEFUU1CVpsGOcxVl-0zq0vCm3sN0pt6RWUtQuj7lUMKodf7EU8Sxou9KD_m4l12je2ZP_NwwrvfbL47k83aEchSh4rJ1KOq7OrC1dPw3zSnjYBsXZERhqQUBKQMW_KTlA1AsgDGqixoqbPZFlZuDUiTof6XB4cPcWkQLifGE0Fivhf1O5k_URJLSKhafF9OmvcEER82Nu0XAOyF84eZRgMNYRxj4VPNp6Vz2ggh52Cb2PY5-bJkt-mwsFZB_vFX_9kt4KWu1DPaLBY6lx-uibAEX5KdmFkFzCahvv4M00XDxZ0ClayzeSBccvd9AtmdP8D_0j9E8Cvhd74SpMR2IHsb1H9zNMTunxFzgOnO7qIIGoe8INeOByBB3j_DrD4TtySiUftvKR1YnILuiMkYO9O9VREIcECqhSsd-G3E4Y1Tj1o71tQzIlV262-GdPl3k6ICuKoP3WSv6DCJI4STiigN8cduk23Gm7JkCreIxDudKTN2OMFpafFtegDMMQ.HzJg-O_3PInjHOdtgW6wbA]
outgoing_path
authorize
2022-04-22 08:28:11 FINISHED
fapi1-advanced-final-client-test-encrypted-idtoken-usingrsa15
Test has run to completion
testmodule_result
PASSED
2022-04-22 08:28:49
TEST-RUNNER
Alias has now been claimed by another test
alias
local-oidc
new_test_id
4Se7F05kvS4mlPv
Test Results