Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-04-22 08:31:46 INFO
TEST-RUNNER
Test instance i4Jm9QH1h1mXZuN created
baseUrl
https://www.certification.openid.net/test/a/local-oidc
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_jarm_type": "oidc",
  "fapi_profile": "plain_fapi",
  "fapi_response_mode": "plain_response"
}
alias
local-oidc
description
oidc-provider OIDC
planId
eXbBCD7xNsAIe
config
{
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
          "kty": "RSA",
          "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
          "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
          "e": "AQAB",
          "use": "sig",
          "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
          "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
          "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
          "alg": "PS256",
          "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
          "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
        }
      ]
    }
  },
  "client": {
    "certificate": "-----BEGIN CERTIFICATE-----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\n01DFhj3IQVCfQf7XoKFTl481d1T+LEFvvk+2Gt9GsRA22y8Hfcg9\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
          "alg": "PS256",
          "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
          "alg": "RSA-OAEP-256",
          "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
        }
      ]
    },
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "scope": "email openid profile",
    "client_id": "fapi-client"
  },
  "alias": "local-oidc",
  "client2": {
    "client_id": "fapi-client",
    "scope": "email openid profile",
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
          "alg": "PS256",
          "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
          "alg": "RSA-OAEP-256",
          "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\n01DFhj3IQVCfQf7XoKFTl481d1T+LEFvvk+2Gt9GsRA22y8Hfcg9\n-----END CERTIFICATE-----",
    "id_token_encrypted_response_alg": "RSA-OAEP-256",
    "id_token_encrypted_response_enc": "A128GCM"
  },
  "description": "oidc-provider OIDC"
}
testName
fapi1-advanced-final-client-test-invalid-iss
2022-04-22 08:31:46 SUCCESS
GenerateServerConfigurationMTLS
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/local-oidc/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/local-oidc/authorize",
  "token_endpoint": "https://www.certification.openid.net/test-mtls/a/local-oidc/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/local-oidc/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/local-oidc/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/local-oidc/userinfo"
}
issuer
https://www.certification.openid.net/test/a/local-oidc/
discoveryUrl
https://www.certification.openid.net/test/a/local-oidc/.well-known/openid-configuration
2022-04-22 08:31:46 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
      "kty": "RSA",
      "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
      "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
      "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
      "alg": "PS256",
      "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
server_encryption_keys
{}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "alg": "PS256",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
2022-04-22 08:31:46 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:31:46 SUCCESS
ExtractServerSigningAlg
Successfully extracted algorithm
signing_algorithm
PS256
2022-04-22 08:31:46 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2022-04-22 08:31:46 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-04-22 08:31:46 SUCCESS
FAPIAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256",
  "ES256"
]
2022-04-22 08:31:46 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-04-22 08:31:46 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "p": "8ft5av3Ba8B9qsHdVU2smdwAmBiOdKVATsGjwiLhZIQyAqwgZfOaijdAyspUDzjr9kFfw9i1yw_eTel04shim8Q4qpmARZ0VWm7lKUOw5QDkv8hiGS5HdwE9aCc4ZoWH5v8t0WRAfchs3ueKF6MwueTXj6iy6YHu3fEA2aG7fJk",
      "kty": "RSA",
      "q": "_rWgqi1Jbge1Byn7Za202uzM-WjijMqdpO7bnZJM0m8sbCCCZXvUV1Rz1_0TEtnhpd9kZmzatHHBp2Bopb1svahqBP3lRODDWKR0YxVqfgtZty16S5J-r3U_GK1x73m7aDVp8EMuZq9Wkz9Kf1SjnFOw20vQ1SPPg0UniNHxGLs",
      "d": "022WKP1lmlduTVK5hPrFnLuvpz-Pt9Tl-_pDaWDCsPq5y3dyNYcDelJ_2kR7iiIaaCWj1GRoCBoH3DzC04BRc8yeFuTlq3SYPNrPYRZ_Q5y_xFPkEu-WXTnYz4i6Zu0Dt2TJOAZ8lrDK6fGbW6W_ZeizqlfMeNsNRugigQlK69nHzuvSNEboKhISBtIjto2oqEjeObr7lfPtwgxylZ8pztjt7z3vO-92wJ_ijX3mrDzqkfJaR2wsuwOqcjSF6j4Xv45unzoqDl55HGAToajZQxr6uQGpUz559GzaZz04SE-fku295ZipFaj39FthJ-gRQuHdmqxq4by1CX1vAaI7AQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "P5KAiUWA2RyIgfrsC2hfX9mlREE-b2pkwkRJ2ITUGYk",
      "qi": "SI9mDYpDSVcppuK34pZ8fO3NfL5N8YJXes6QOBV8b8RMsFy3Yd_niHKG17MQTDpVfeSs6Te5e_4Ieh1rTQbEvf2_muls5tMLdgOOVz-yq19rndlYMgaHtdK1lmGuRHjXqI0u3mHAtw1whKivjScTAYiOJxx7H4uD-Igc39rg2rA",
      "dp": "LBjexI-fuuomPIL9ubjg9lzwQsde1oTy1idVl2BR4MZycqg5czrUc9Gj3hDHBsshvQumzwLkBjBLG7mqklVgGvDEPtqgVI9Ov98rpbxvNRxXk1eKAPq9DUPNk_hpv80fugnQqLLzSbjHlkttj-cuTwIUAlsE16bVB98Of5qIlyk",
      "alg": "PS256",
      "dq": "NEEEvgTebKFOJTMarShu0v8DqiM3XxTuNHkAOxpZgk5meaRNvA4kaOodffEgaZyja0kiKtUoJR61UOY5cc8jsOENJwsDbxcBXH0Yl388QrGHbUn6LejW7p4KHMDwf-WkaeOTYUQXD9_mzfyNBwRRMHAG92ZdaGyZVN_qFWqkoKM",
      "n": "8MMxIwgbb15W2VvpVLY-Trhi8J-qjqVj7Vq9VFsCbXLYhyh8Uj4r_UA9sLxFhv_y80K9bdpDhnM5iJi6QRBR73rZOk1GmkWfAExZXy5VYNhfg_daxcyDlHZiHVQ9IkQWFRqxDs1Y4RmzHM78tsVDKmHm4_BNOQp9RMZSmTYSUE8ItwZx1RvqcLQ1Mvbh4TIyDY93LyNh4IcRv_ynhyQbHTqw4cFR64xtwHjwISaZnRpu28nXi0TcxYXvH3F2J72QyNQkKHslnCHA7k-Vm6K6_xip3W7xnwC2Bsdww7CGj1jWgwK6sbX8X6VUiGt-2x4cMckdJoVVziGM3dij7Ktbww"
    }
  ]
}
2022-04-22 08:31:46 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-04-22 08:31:46 SUCCESS
GetStaticClientConfiguration
Found a static client object
certificate
-----BEGIN CERTIFICATE-----
MIIDUzCCAjugAwIBAgIUOGxvnmd2zIVRKXrboYAbTAAPQswwDQYJKoZIhvcNAQEL
BQAwEjEQMA4GA1UEAxMHZmFwaS1jYTAeFw0yMTExMTAwMTUyMDBaFw0yMjExMTAw
MTUyMDBaMBYxFDASBgNVBAMTC2ZhcGktY2xpZW50MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEArPY4djIA/os22qFlheaOjvs5sXfgmNbBcWFb6VQhDVp+
4KjP0v8dmTAx7fmUXevRWB43Ld5GNWNeZ9nDtd/N5Va31JD80Jzc2kfwqtwNgfzg
BGy9noerFCy+9l3SnbJpuAsOiLtz0pcKpD3XO+szO9sWaBYApELovY4mNT+rTXC0
0+ERpuzr8salrgOE2pVYaikMDJUspwEw3Cjx3Jhl+2IZR+oXhF5zudiF9kjjUjt8
fXSEN6RQXXrWCIa65W8/4vnRN2rtFre5EKfsJrAM4o9CAQqWxwR/ZZpzgUMW5al4
Hba6erReZpEaqN+wp59a5md4n09E82pjvtHez2O2kwIDAQABo4GcMIGZMA4GA1Ud
DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T
AQH/BAIwADAdBgNVHQ4EFgQU8A9WW4zVHrW8gxcszWJ2ELGpfEowHwYDVR0jBBgw
FoAUuKmP6+gzUMsk+1DxcoviKLQqCxowGgYDVR0RBBMwEYIJbG9jYWxob3N0hwR/
AAABMA0GCSqGSIb3DQEBCwUAA4IBAQACq0nh14JL653WR4QMdZ5hdm/BJmbbDe10
GwsBMbvsSpprXEjY86RuKS6me0qjv7+MTPpkghJA6/yJtcFBGmvfbKqNsYrp79Qv
WVkgJ3OELvUSSWY43hfiPF3gAQmRPc6vPw26/8mdoobrLTi6EgnB+jdOaGPI6MRp
943wpV3rBHiJgaxtYeqe4EtRq7Ec2V96sOldd9canPtgsjF7JL4YXWDagmuMtvKA
3qS+I1/mp5W/55AmOnXg/rH3ntK6NN+yG0pQmOgqdCU4ZdlfYzHGZCKJxogEyXac
01DFhj3IQVCfQf7XoKFTl481d1T+LEFvvk+2Gt9GsRA22y8Hfcg9
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
redirect_uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
scope
email openid profile
client_id
fapi-client
2022-04-22 08:31:46 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:31:46 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:31:46 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-04-22 08:31:46 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-04-22 08:31:46 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
Verify configuration of second client
2022-04-22 08:31:46 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
fapi-client
scope
email openid profile
redirect_uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
id_token_encrypted_response_alg
RSA-OAEP-256
id_token_encrypted_response_enc
A128GCM
2022-04-22 08:31:46 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-04-22 08:31:46 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:31:46 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-04-22 08:31:46 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-04-22 08:31:46 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
      "alg": "PS256",
      "n": "nx2Kvs-zsMfY9WVGfOXfmr56hx9VSHdC9EJ-YuaP46igRwqiFxzKwWk4-GOyjxB7tee8jiMh6cxzb1-pvaEiKlKHg9-zSDaJHDKKb2yqUdQnxRYHLJ2RjcjrkWPz8q_Sqhc76dLAJE2AbEb42iiYP1Fl2nK8_Daye2D_GRwb3WHTWiAWaYJlFErHj7EtiTvTezOdMj-bsK01guSam6auUSnUzifdy0FAxPya8j1XPLXDQfiWrTWd_uJf9cdDEZT7Hy0eiQqt9f_joMafHGDR_iU2UC42lrxyiCoJYCoE3T7QGbhSz-9MrugoCeTDCHDFxvdqToJ6t4B5w9FLhYy2iw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "gU7LspBTnX1KU25kZa8jS3WspQi2Dq1wOggZ41AkrU4",
      "alg": "RSA-OAEP-256",
      "n": "q7kr8G7dAiEtBhsEwooVl2wfnWZY0CgZ3-BrJ5YLFnhUg7BPni-gKbK29R3i_UWbeMAR0L6HPQNo715lcznZW2hrT2WBtWmiLVlo9eqSQu8wrBmHNNuwy8gDtFx7RsYZTguNJeNVl_zt9tC9Tj_fSNSjMHVrO1DUh6uRgo7lcjFdTOmFCh8eYYmrmg_Ta0w_3I2T3YeE48poNKt_wLAf62czDoQKLx7D7Ft8fX9GNzxpZyxGZPBerDN6_gUibplBx-BE2DQnUKaGRHlnLSkgeQSoQYCiOt6qVahisc5HSmAL2nbNyWXBKJCEzGpfE0nddt3q5lfLSkwD7TceFD037w"
    }
  ]
}
2022-04-22 08:31:46
fapi1-advanced-final-client-test-invalid-iss
Setup Done
2022-04-22 08:31:56 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test/a/local-oidc/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/100.0.4896.127 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"100\", \"Google Chrome\";v\u003d\"100\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "ja,en-US;q\u003d0.9,en;q\u003d0.8",
  "cookie": "JSESSIONID\u003d46593A08E4C3070B53CC09FEAAA32AEB",
  "connection": "close"
}
incoming_path
/test/a/local-oidc/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "fapi-client",
  "scope": "email openid profile",
  "response_type": "code id_token",
  "request": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJmYXBpLWNsaWVudCIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsIm5vbmNlIjoiMzhkZWFkYjUtYWVmYS00YWYxLWE1NDctM2E2ZjQyZGVjNzczIiwiY2xpZW50X2lkIjoiZmFwaS1jbGllbnQiLCJyZXNwb25zZV9tb2RlIjoiZm9ybV9wb3N0IiwiYXVkIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2xvY2FsLW9pZGNcLyIsIm5iZiI6MTY1MDYxNjMxNSwic2NvcGUiOiJlbWFpbCBvcGVuaWQgcHJvZmlsZSIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC9pcC0xNzItMzEtMjAtNTguYXAtbm9ydGhlYXN0LTEuY29tcHV0ZS5pbnRlcm5hbDo4MDgyXC9jYWxsYmFjayIsInN0YXRlIjoiNmQzMDY1YzMtOGQ0Yy00ODRjLWI1ZDctNDIxMzJiZDg5N2ZlIiwiZXhwIjoxNjUwNjE2NjE1LCJjb2RlX2NoYWxsZW5nZSI6InI5a0dMdjJGeXZFdmk3bGhFNUtUMzFwZW9GU0w5MnF0dnBOblo1eHdkaEkifQ.aF1vopXLx-GXG8fqyU88QPXBGFc-pPKJf2hd_uo_ezWsg4s55YMHaiPwPp37Y4ygxJIhcoYN5va6XyxUM9Pm6bSoOI8KAXkZVWS8RvIXgPM_a7T1NpJ3iwDYAExlwEfeuqc-ggIxZ2MbCIZGKDDUK39ktgHK15hDF2kNY9J2cZ8sJDm2Gl5QeYEpqdDkNbtsmpwFcGQiG9SgwEHgJARhi3spzMBEbmlws85czWvrQGALrPcW2HSrs5_Jwdlqj-GZtPgS5CsRu52GpPy8D0j9kfVYf_8HsPPBNWMUBAdMhvbSMnR14yO9IglbDd1XSzuMm7ERWUFzyym3qG2-MGEtUw"
}
incoming_body
2022-04-22 08:31:56 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-04-22 08:31:56 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJmYXBpLWNsaWVudCIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsIm5vbmNlIjoiMzhkZWFkYjUtYWVmYS00YWYxLWE1NDctM2E2ZjQyZGVjNzczIiwiY2xpZW50X2lkIjoiZmFwaS1jbGllbnQiLCJyZXNwb25zZV9tb2RlIjoiZm9ybV9wb3N0IiwiYXVkIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2xvY2FsLW9pZGNcLyIsIm5iZiI6MTY1MDYxNjMxNSwic2NvcGUiOiJlbWFpbCBvcGVuaWQgcHJvZmlsZSIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC9pcC0xNzItMzEtMjAtNTguYXAtbm9ydGhlYXN0LTEuY29tcHV0ZS5pbnRlcm5hbDo4MDgyXC9jYWxsYmFjayIsInN0YXRlIjoiNmQzMDY1YzMtOGQ0Yy00ODRjLWI1ZDctNDIxMzJiZDg5N2ZlIiwiZXhwIjoxNjUwNjE2NjE1LCJjb2RlX2NoYWxsZW5nZSI6InI5a0dMdjJGeXZFdmk3bGhFNUtUMzFwZW9GU0w5MnF0dnBOblo1eHdkaEkifQ.aF1vopXLx-GXG8fqyU88QPXBGFc-pPKJf2hd_uo_ezWsg4s55YMHaiPwPp37Y4ygxJIhcoYN5va6XyxUM9Pm6bSoOI8KAXkZVWS8RvIXgPM_a7T1NpJ3iwDYAExlwEfeuqc-ggIxZ2MbCIZGKDDUK39ktgHK15hDF2kNY9J2cZ8sJDm2Gl5QeYEpqdDkNbtsmpwFcGQiG9SgwEHgJARhi3spzMBEbmlws85czWvrQGALrPcW2HSrs5_Jwdlqj-GZtPgS5CsRu52GpPy8D0j9kfVYf_8HsPPBNWMUBAdMhvbSMnR14yO9IglbDd1XSzuMm7ERWUFzyym3qG2-MGEtUw",
  "header": {
    "kid": "0g5qqjToNN0X4TGpiYbqEAt9Y9dbVFcrRYnnPAKoBtA",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "iss": "fapi-client",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "38deadb5-aefa-4af1-a547-3a6f42dec773",
    "client_id": "fapi-client",
    "response_mode": "form_post",
    "aud": "https://www.certification.openid.net/test/a/local-oidc/",
    "nbf": 1650616315,
    "scope": "email openid profile",
    "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
    "state": "6d3065c3-8d4c-484c-b5d7-42132bd897fe",
    "exp": 1650616615,
    "code_challenge": "r9kGLv2FyvEvi7lhE5KT31peoFSL92qtvpNnZ5xwdhI"
  }
}
2022-04-22 08:31:56 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-04-22 08:31:56 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "fapi-client",
  "scope": "email openid profile",
  "response_type": "code id_token",
  "request": "eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.aF1vopXLx-GXG8fqyU88QPXBGFc-pPKJf2hd_uo_ezWsg4s55YMHaiPwPp37Y4ygxJIhcoYN5va6XyxUM9Pm6bSoOI8KAXkZVWS8RvIXgPM_a7T1NpJ3iwDYAExlwEfeuqc-ggIxZ2MbCIZGKDDUK39ktgHK15hDF2kNY9J2cZ8sJDm2Gl5QeYEpqdDkNbtsmpwFcGQiG9SgwEHgJARhi3spzMBEbmlws85czWvrQGALrPcW2HSrs5_Jwdlqj-GZtPgS5CsRu52GpPy8D0j9kfVYf_8HsPPBNWMUBAdMhvbSMnR14yO9IglbDd1XSzuMm7ERWUFzyym3qG2-MGEtUw",
  "iss": "fapi-client",
  "code_challenge_method": "S256",
  "nonce": "38deadb5-aefa-4af1-a547-3a6f42dec773",
  "response_mode": "form_post",
  "aud": "https://www.certification.openid.net/test/a/local-oidc/",
  "nbf": 1650616315,
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "6d3065c3-8d4c-484c-b5d7-42132bd897fe",
  "exp": 1650616615,
  "code_challenge": "r9kGLv2FyvEvi7lhE5KT31peoFSL92qtvpNnZ5xwdhI"
}
2022-04-22 08:31:56 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-04-22 08:31:56 INFO
FAPIValidateRequestObjectIdTokenACRClaims
The acr claim is missing or is not a JsonObject
acrClaim
2022-04-22 08:31:56 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Apr 22, 2022, 8:36:55 AM"
2022-04-22 08:31:56 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Apr 22, 2022, 8:31:55 AM"
now
"Apr 22, 2022, 8:31:56 AM"
2022-04-22 08:31:56 INFO
ValidateRequestObjectClaims
Missing issuance time
2022-04-22 08:31:56
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-04-22 08:31:56 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-04-22 08:31:56 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-04-22 08:31:56 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-04-22 08:31:56 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-04-22 08:31:56 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiIwZzVxcWpUb05OMFg0VEdwaVlicUVBdDlZOWRiVkZjclJZbm5QQUtvQnRBIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.aF1vopXLx-GXG8fqyU88QPXBGFc-pPKJf2hd_uo_ezWsg4s55YMHaiPwPp37Y4ygxJIhcoYN5va6XyxUM9Pm6bSoOI8KAXkZVWS8RvIXgPM_a7T1NpJ3iwDYAExlwEfeuqc-ggIxZ2MbCIZGKDDUK39ktgHK15hDF2kNY9J2cZ8sJDm2Gl5QeYEpqdDkNbtsmpwFcGQiG9SgwEHgJARhi3spzMBEbmlws85czWvrQGALrPcW2HSrs5_Jwdlqj-GZtPgS5CsRu52GpPy8D0j9kfVYf_8HsPPBNWMUBAdMhvbSMnR14yO9IglbDd1XSzuMm7ERWUFzyym3qG2-MGEtUw
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 20086458179952591616896125118337458363377501279788835204287610550027464943813712271644932006584933312464506703073285982623323032537100647592449193484130320211298383362391308960770957232499213709561703316590736002203515542644785960863281456603549770430987646899771696951308448798344244595315816210399707251291401217145182781821858469987501459180808887210150090366152318398049511055764243470855585112715346454598517868493041665163997404026949137627283967748387700881601135614321057236216014232453748211452863337654607779276304452825064093543921547995258617015336064294102586940260523785102809756957292168934220299548299
  public exponent: 65537
2022-04-22 08:31:56 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback
2022-04-22 08:31:56 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
fapi-client
2022-04-22 08:31:56 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2022-04-22 08:31:56 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "email",
  "openid",
  "profile"
]
expected
openid
2022-04-22 08:31:56 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
email openid profile
2022-04-22 08:31:56 SUCCESS
EnsureRequestedScopeIsEqualToConfiguredScope
Requested scopes match configured scopes
scope
email openid profile
2022-04-22 08:31:56 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-04-22 08:31:56 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "email",
  "openid",
  "profile"
]
expected
openid
2022-04-22 08:31:56 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
fapi-client
2022-04-22 08:31:56 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
jKbKeDq3lsKEevKu3O8wLtHD5WygqzU6
2022-04-22 08:31:56 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
38deadb5-aefa-4af1-a547-3a6f42dec773
2022-04-22 08:31:56 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
aLomu6CrMrJiKtXZt-7vhg
2022-04-22 08:31:56 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
X8lFmdkvPoHzBsAQwjmmzA
2022-04-22 08:31:56 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/local-oidc/
sub
user-subject-1234531
aud
fapi-client
nonce
38deadb5-aefa-4af1-a547-3a6f42dec773
iat
1650616316
exp
1650616616
2022-04-22 08:31:56 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
aLomu6CrMrJiKtXZt-7vhg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/local-oidc/",
  "sub": "user-subject-1234531",
  "aud": "fapi-client",
  "nonce": "38deadb5-aefa-4af1-a547-3a6f42dec773",
  "iat": 1650616316,
  "exp": 1650616616,
  "c_hash": "aLomu6CrMrJiKtXZt-7vhg"
}
2022-04-22 08:31:56 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
X8lFmdkvPoHzBsAQwjmmzA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/local-oidc/",
  "sub": "user-subject-1234531",
  "aud": "fapi-client",
  "nonce": "38deadb5-aefa-4af1-a547-3a6f42dec773",
  "iat": 1650616316,
  "exp": 1650616616,
  "c_hash": "aLomu6CrMrJiKtXZt-7vhg",
  "s_hash": "X8lFmdkvPoHzBsAQwjmmzA"
}
2022-04-22 08:31:56 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-04-22 08:31:56 SUCCESS
AddInvalidIssValueToIdToken
Added invalid iss to ID token claims
iss
https://www.certification.openid.net/test/a/local-oidc/1
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/local-oidc/1",
  "sub": "user-subject-1234531",
  "aud": "fapi-client",
  "nonce": "38deadb5-aefa-4af1-a547-3a6f42dec773",
  "iat": 1650616316,
  "exp": 1650616616,
  "c_hash": "aLomu6CrMrJiKtXZt-7vhg",
  "s_hash": "X8lFmdkvPoHzBsAQwjmmzA"
}
2022-04-22 08:31:56 INFO
AddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2022-04-22 08:31:56 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJQNUtBaVVXQTJSeUlnZnJzQzJoZlg5bWxSRUUtYjJwa3drUkoySVRVR1lrIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImZhcGktY2xpZW50IiwiY19oYXNoIjoiYUxvbXU2Q3JNckppS3RYWnQtN3ZoZyIsInNfaGFzaCI6Ilg4bEZtZGt2UG9IekJzQVF3am1tekEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvbG9jYWwtb2lkY1wvMSIsImV4cCI6MTY1MDYxNjYxNiwibm9uY2UiOiIzOGRlYWRiNS1hZWZhLTRhZjEtYTU0Ny0zYTZmNDJkZWM3NzMiLCJpYXQiOjE2NTA2MTYzMTZ9.4gSXHIm_1fXubLz6LN1221cs88YHYrN_hquUDKtSa80--z4353adJj0H5RMruqOCwWIZueeyIadR-iFBvQVR6O_iROgMFFE-lhZPjrdqBBVVPtiz2LNwZ6yoFOmBDZA2vNCt5mXH4WJUaaVcAVLonEvWTMj3_HJ3blclU7Cnr8n8EeE0wVvLAOvtdOSl-snzVAfOzg9AqGASlZ73WHnqHOMSiF2uzcsTkrzqXCfADdGqce7jxjqVWM3utl-AHeg7wmQBxHFzs51UXUyjs80IjFFILcqRDZ1h10WFU6fvVQyCU3YlrKtjQwDgNIzL93ZcAoN6rqZL2rqyM63sDHjKtA
2022-04-22 08:31:56 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "6d3065c3-8d4c-484c-b5d7-42132bd897fe"
}
2022-04-22 08:31:56 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "6d3065c3-8d4c-484c-b5d7-42132bd897fe",
  "code": "jKbKeDq3lsKEevKu3O8wLtHD5WygqzU6"
}
2022-04-22 08:31:56 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback",
  "state": "6d3065c3-8d4c-484c-b5d7-42132bd897fe",
  "code": "jKbKeDq3lsKEevKu3O8wLtHD5WygqzU6",
  "id_token": "eyJraWQiOiJQNUtBaVVXQTJSeUlnZnJzQzJoZlg5bWxSRUUtYjJwa3drUkoySVRVR1lrIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImZhcGktY2xpZW50IiwiY19oYXNoIjoiYUxvbXU2Q3JNckppS3RYWnQtN3ZoZyIsInNfaGFzaCI6Ilg4bEZtZGt2UG9IekJzQVF3am1tekEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvbG9jYWwtb2lkY1wvMSIsImV4cCI6MTY1MDYxNjYxNiwibm9uY2UiOiIzOGRlYWRiNS1hZWZhLTRhZjEtYTU0Ny0zYTZmNDJkZWM3NzMiLCJpYXQiOjE2NTA2MTYzMTZ9.4gSXHIm_1fXubLz6LN1221cs88YHYrN_hquUDKtSa80--z4353adJj0H5RMruqOCwWIZueeyIadR-iFBvQVR6O_iROgMFFE-lhZPjrdqBBVVPtiz2LNwZ6yoFOmBDZA2vNCt5mXH4WJUaaVcAVLonEvWTMj3_HJ3blclU7Cnr8n8EeE0wVvLAOvtdOSl-snzVAfOzg9AqGASlZ73WHnqHOMSiF2uzcsTkrzqXCfADdGqce7jxjqVWM3utl-AHeg7wmQBxHFzs51UXUyjs80IjFFILcqRDZ1h10WFU6fvVQyCU3YlrKtjQwDgNIzL93ZcAoN6rqZL2rqyM63sDHjKtA"
}
2022-04-22 08:31:56
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback#state=6d3065c3-8d4c-484c-b5d7-42132bd897fe&code=jKbKeDq3lsKEevKu3O8wLtHD5WygqzU6&id_token=eyJraWQiOiJQNUtBaVVXQTJSeUlnZnJzQzJoZlg5bWxSRUUtYjJwa3drUkoySVRVR1lrIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImZhcGktY2xpZW50IiwiY19oYXNoIjoiYUxvbXU2Q3JNckppS3RYWnQtN3ZoZyIsInNfaGFzaCI6Ilg4bEZtZGt2UG9IekJzQVF3am1tekEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvbG9jYWwtb2lkY1wvMSIsImV4cCI6MTY1MDYxNjYxNiwibm9uY2UiOiIzOGRlYWRiNS1hZWZhLTRhZjEtYTU0Ny0zYTZmNDJkZWM3NzMiLCJpYXQiOjE2NTA2MTYzMTZ9.4gSXHIm_1fXubLz6LN1221cs88YHYrN_hquUDKtSa80--z4353adJj0H5RMruqOCwWIZueeyIadR-iFBvQVR6O_iROgMFFE-lhZPjrdqBBVVPtiz2LNwZ6yoFOmBDZA2vNCt5mXH4WJUaaVcAVLonEvWTMj3_HJ3blclU7Cnr8n8EeE0wVvLAOvtdOSl-snzVAfOzg9AqGASlZ73WHnqHOMSiF2uzcsTkrzqXCfADdGqce7jxjqVWM3utl-AHeg7wmQBxHFzs51UXUyjs80IjFFILcqRDZ1h10WFU6fvVQyCU3YlrKtjQwDgNIzL93ZcAoN6rqZL2rqyM63sDHjKtA
2022-04-22 08:31:56 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance i4Jm9QH1h1mXZuN
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://ip-172-31-20-58.ap-northeast-1.compute.internal:8082/callback#state=6d3065c3-8d4c-484c-b5d7-42132bd897fe&code=jKbKeDq3lsKEevKu3O8wLtHD5WygqzU6&id_token=eyJraWQiOiJQNUtBaVVXQTJSeUlnZnJzQzJoZlg5bWxSRUUtYjJwa3drUkoySVRVR1lrIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImZhcGktY2xpZW50IiwiY19oYXNoIjoiYUxvbXU2Q3JNckppS3RYWnQtN3ZoZyIsInNfaGFzaCI6Ilg4bEZtZGt2UG9IekJzQVF3am1tekEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvbG9jYWwtb2lkY1wvMSIsImV4cCI6MTY1MDYxNjYxNiwibm9uY2UiOiIzOGRlYWRiNS1hZWZhLTRhZjEtYTU0Ny0zYTZmNDJkZWM3NzMiLCJpYXQiOjE2NTA2MTYzMTZ9.4gSXHIm_1fXubLz6LN1221cs88YHYrN_hquUDKtSa80--z4353adJj0H5RMruqOCwWIZueeyIadR-iFBvQVR6O_iROgMFFE-lhZPjrdqBBVVPtiz2LNwZ6yoFOmBDZA2vNCt5mXH4WJUaaVcAVLonEvWTMj3_HJ3blclU7Cnr8n8EeE0wVvLAOvtdOSl-snzVAfOzg9AqGASlZ73WHnqHOMSiF2uzcsTkrzqXCfADdGqce7jxjqVWM3utl-AHeg7wmQBxHFzs51UXUyjs80IjFFILcqRDZ1h10WFU6fvVQyCU3YlrKtjQwDgNIzL93ZcAoN6rqZL2rqyM63sDHjKtA]
outgoing_path
authorize
2022-04-22 08:32:01 FINISHED
fapi1-advanced-final-client-test-invalid-iss
Test has run to completion
testmodule_result
PASSED
2022-04-22 08:32:53
TEST-RUNNER
Alias has now been claimed by another test
alias
local-oidc
new_test_id
q8ymdtxuZEmnDCE
Test Results