Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-05-11 06:15:00 INFO
TEST-RUNNER
Test instance lr7rRGmvQqTy5r2 created
baseUrl
https://www.certification.openid.net/test/a/fwiwidk
variant
{
  "client_auth_type": "private_key_jwt",
  "ciba_mode": "poll",
  "fapi_profile": "plain_fapi",
  "client_registration": "static_client"
}
alias
fwiwidk
description
planId
5TITriHnFuJuH
config
{
  "alias": "fwiwidk",
  "automated_ciba_approval_url": "https://ciba-mobile.securitypoc.com/automated_ciba_approval_url?action\u003d{action}\u0026token\u003d{auth_req_id}",
  "server": {
    "discoveryUrl": "https://ciba-mobile.securitypoc.com/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "2gJT3oQVIK9bnKrfamZ4",
    "scope": "openid email",
    "jwks": {
      "keys": [
        {
          "kid": "OR5xHLDjTbwxAtPAm3XtbCH-rnB-YKecLyzudZrdUm0",
          "alg": "ES256",
          "kty": "EC",
          "crv": "P-256",
          "x": "XGyC1rR-KXGnjrvo3ZEOu9zsuQIBnms390M3TFdA2fA",
          "y": "UzBoxWLr18EeVSWLI178SKug139tDr5vmRMhl26h4HI",
          "d": "A-FY0gKFTDvAyyM6cm9ERbQbTKgLNwosMNj-A5-CDUI"
        }
      ]
    },
    "hint_type": "login_hint",
    "hint_value": "testuser"
  },
  "client2": {
    "client_id": "GIi4p8SCIhNO8g98blye",
    "scope": "openid",
    "jwks": {
      "keys": [
        {
          "kid": "6RHpOyxdsQPzYz6uNmAC9YHuxrAUbGe4RZHuT218NfE",
          "alg": "ES256",
          "kty": "EC",
          "crv": "P-256",
          "x": "_9HZpw98HIP6hmCSXfv8u00cIy5UQ_XZ7krXJID-ydI",
          "y": "AGjAW113d8wl_SfZMBXA6i1y9R2OrhlwcpuYYJpQE9s",
          "d": "ALhGSwgtKne65I2OyEaUzUzKe0GUhjViKo2xvIeoiU8X"
        }
      ]
    },
    "acr_value": "urn:acr2"
  },
  "resource": {
    "resourceUrl": "https://ciba-mobile.securitypoc.com/ivcreds"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----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\n0SLIVNzklZUy2qpi4H4Xc6VtN/6p4qUO1BCEI8izoWuauXOP\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\nMRiRD1Juu/Pv7B0QCn98y+W9\n-----END PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----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\n0SLIVNzklZUy2qpi4H4Xc6VtN/6p4qUO1BCEI8izoWuauXOP\n-----END CERTIFICATE-----\n"
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIC8jCCAdqgAwIBAgIIeP71dlXQRxYwDQYJKoZIhvcNAQELBQAwFzEVMBMGA1UE\nAwwMY2xpZW50Ml9tdGxzMB4XDTIyMDMyMjA1NDkzOFoXDTQ5MDgwNzA1NDkzOFow\nFzEVMBMGA1UEAwwMY2xpZW50Ml9tdGxzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A\nMIIBCgKCAQEA7B0S2cMtFlkyoRC6WrDOYLiwgvRlzCRgNMCBgDm+E6/LdD1YqAR7\nhidEnuIUMxjJICOwQl8auJxmxd3mIDcBtW6BsC9Ai2C6L5NWIeuLsZmZjtXTtKIg\nwtIrCBUFJRVF7cJA5g9Nuji2pqpMZa+bG6iqh0URwVHwN6L68sU6Kp24hoB1StvY\nuqaB+SzEWBu8y2CRVJ45iycvuefHwrTTTBmtfyertDbNRDX705Q1JF4sM5groFYt\n1Cyw2iOaUR+HtD4hX1jTz/NYTnXmy05QDPmKPPwlFrRGbheqv3q9w94lyUvX8Dfs\n4KqtCgRglvKzvy7qmjdh0m8D7rDvQJ4eAQIDAQABo0IwQDAdBgNVHQ4EFgQUZIRo\n2rdgKyxdIGfpji2ELp2gOaowHwYDVR0jBBgwFoAUZIRo2rdgKyxdIGfpji2ELp2g\nOaowDQYJKoZIhvcNAQELBQADggEBAJAeOnJSmPYFq4YhPiBvg8hPLMZrsAIGGe7e\ngPJZovk+d/1winrMzRNNsN4PuRcGq+/uF8HbszdjH9zqEFlK0FZfsT1cMFdz78BI\ntd7v+o+EbzNceIfdGEDifyS2LCLh7kkJDKwl4SWpoulxQVvmZGw6Kvj1XVk3ecPE\noJzkDTh2etWDEEFTAtRVy3GO0tIb/TBOwacMQfDT7sSAknc3JV28GCdYzBZCH9eP\nPp/SSsDj5PYWfuFlKzSKgFhbrgMpSghtPY52LA+2n9ocYcEIq7bVRvsJzxms54Mj\nBEoHDGtSpXDNDQ+1Rt0WFkgAk2FS671KQ1j42P7RM8pnrhUbjHo\u003d\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\nPDq1ObkZdDBcEscAK6gQPlI\u003d\n-----END PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----\nMIIC8jCCAdqgAwIBAgIIeP71dlXQRxYwDQYJKoZIhvcNAQELBQAwFzEVMBMGA1UE\nAwwMY2xpZW50Ml9tdGxzMB4XDTIyMDMyMjA1NDkzOFoXDTQ5MDgwNzA1NDkzOFow\nFzEVMBMGA1UEAwwMY2xpZW50Ml9tdGxzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A\nMIIBCgKCAQEA7B0S2cMtFlkyoRC6WrDOYLiwgvRlzCRgNMCBgDm+E6/LdD1YqAR7\nhidEnuIUMxjJICOwQl8auJxmxd3mIDcBtW6BsC9Ai2C6L5NWIeuLsZmZjtXTtKIg\nwtIrCBUFJRVF7cJA5g9Nuji2pqpMZa+bG6iqh0URwVHwN6L68sU6Kp24hoB1StvY\nuqaB+SzEWBu8y2CRVJ45iycvuefHwrTTTBmtfyertDbNRDX705Q1JF4sM5groFYt\n1Cyw2iOaUR+HtD4hX1jTz/NYTnXmy05QDPmKPPwlFrRGbheqv3q9w94lyUvX8Dfs\n4KqtCgRglvKzvy7qmjdh0m8D7rDvQJ4eAQIDAQABo0IwQDAdBgNVHQ4EFgQUZIRo\n2rdgKyxdIGfpji2ELp2gOaowHwYDVR0jBBgwFoAUZIRo2rdgKyxdIGfpji2ELp2g\nOaowDQYJKoZIhvcNAQELBQADggEBAJAeOnJSmPYFq4YhPiBvg8hPLMZrsAIGGe7e\ngPJZovk+d/1winrMzRNNsN4PuRcGq+/uF8HbszdjH9zqEFlK0FZfsT1cMFdz78BI\ntd7v+o+EbzNceIfdGEDifyS2LCLh7kkJDKwl4SWpoulxQVvmZGw6Kvj1XVk3ecPE\noJzkDTh2etWDEEFTAtRVy3GO0tIb/TBOwacMQfDT7sSAknc3JV28GCdYzBZCH9eP\nPp/SSsDj5PYWfuFlKzSKgFhbrgMpSghtPY52LA+2n9ocYcEIq7bVRvsJzxms54Mj\nBEoHDGtSpXDNDQ+1Rt0WFkgAk2FS671KQ1j42P7RM8pnrhUbjHo\u003d\n-----END CERTIFICATE-----\n"
  }
}
testName
fapi-ciba-id1-discovery-end-point-verification
2022-05-11 06:15:00
GetDynamicServerConfiguration
HTTP request
request_uri
https://ciba-mobile.securitypoc.com/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-05-11 06:15:01 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-language": "en-US",
  "content-type": "application/json",
  "date": "Wed, 11 May 2022 06:15:01 GMT",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "server": "IBM Security Verify Access",
  "transfer-encoding": "chunked",
  "x-frame-options": "SAMEORIGIN",
  "cache-control": "no-store, no-cache\u003dset-cookie",
  "expires": "Thu, 01 Dec 1994 16:00:00 GMT",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "pragma": "no-cache",
  "set-cookie": "AMWEBJCT!%2Fmga!JSESSIONID\u003d0000wdMqPjO3bL3Z76ZkmPANpAN:038bc442-4db9-43c7-97cf-7a4b1d1bc7d8; Path\u003d/; Secure; HttpOnly"
}
response_body
{"issuer":"https://ciba-mobile.securitypoc.com",
"authorization_endpoint": "https://ciba-mobile.securitypoc.com/oauth2/authorize",
"token_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/token",
"userinfo_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/userinfo",
"jwks_uri":"https://ciba-mobile.securitypoc.com/oauth2/jwks/CIBA",
"response_types_supported":["none"],
"response_modes_supported":["fragment","form_post"],
"subject_types_supported":["public"],
"token_endpoint_auth_methods_supported":["private_key_jwt","client_secret_post","client_secret_basic","tls_client_auth","self_signed_tls_client_auth"],
"grant_types_supported":["urn:ietf:params:oauth:grant-type:device_code","refresh_token","urn:openid:params:grant-type:ciba"],
"id_token_signing_alg_values_supported":["ES256"],
"id_token_encryption_alg_values_supported":[],
"id_token_encryption_enc_values_supported":[],
"poc":"https://ciba-mobile.securitypoc.com/mga/",
"name":"CIBA",
"introspection_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/introspect",
"revocation_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/revoke",
"registration_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/register/CIBA",
"device_authorize_endpoint":"https://ciba-mobile.securitypoc.com/oauth2/device_authorize",
"user_authorize_endpoint": "https://ciba.securitypoc.com/oauth2/user_authorize ",
"scopes_supported":["openid"],
"userinfo_signing_alg_values_supported":["ES256"],
"request_object_signing_alg_values_supported":["ES256"],
"token_endpoint_auth_signing_alg_values_supported":["ES256"],
"claims_parameter_supported":true ,
"request_parameter_supported":true,
"backchannel_authentication_endpoint": "https://ciba-mobile.securitypoc.com/oauth2/ciba ",
"backchannel_token_delivery_modes_supported":["poll","ping"],
"backchannel_authentication_request_signing_alg_values_supported":["ES256"],
"tls_client_certificate_bound_access_tokens": true
}
2022-05-11 06:15:01 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://ciba-mobile.securitypoc.com
authorization_endpoint
https://ciba-mobile.securitypoc.com/oauth2/authorize
token_endpoint
https://ciba-mobile.securitypoc.com/oauth2/token
userinfo_endpoint
https://ciba-mobile.securitypoc.com/oauth2/userinfo
jwks_uri
https://ciba-mobile.securitypoc.com/oauth2/jwks/CIBA
response_types_supported
[
  "none"
]
response_modes_supported
[
  "fragment",
  "form_post"
]
subject_types_supported
[
  "public"
]
token_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "client_secret_post",
  "client_secret_basic",
  "tls_client_auth",
  "self_signed_tls_client_auth"
]
grant_types_supported
[
  "urn:ietf:params:oauth:grant-type:device_code",
  "refresh_token",
  "urn:openid:params:grant-type:ciba"
]
id_token_signing_alg_values_supported
[
  "ES256"
]
id_token_encryption_alg_values_supported
[]
id_token_encryption_enc_values_supported
[]
poc
https://ciba-mobile.securitypoc.com/mga/
name
CIBA
introspection_endpoint
https://ciba-mobile.securitypoc.com/oauth2/introspect
revocation_endpoint
https://ciba-mobile.securitypoc.com/oauth2/revoke
registration_endpoint
https://ciba-mobile.securitypoc.com/oauth2/register/CIBA
device_authorize_endpoint
https://ciba-mobile.securitypoc.com/oauth2/device_authorize
user_authorize_endpoint
https://ciba.securitypoc.com/oauth2/user_authorize 
scopes_supported
[
  "openid"
]
userinfo_signing_alg_values_supported
[
  "ES256"
]
request_object_signing_alg_values_supported
[
  "ES256"
]
token_endpoint_auth_signing_alg_values_supported
[
  "ES256"
]
claims_parameter_supported
true
request_parameter_supported
true
backchannel_authentication_endpoint
https://ciba-mobile.securitypoc.com/oauth2/ciba 
backchannel_token_delivery_modes_supported
[
  "poll",
  "ping"
]
backchannel_authentication_request_signing_alg_values_supported
[
  "ES256"
]
tls_client_certificate_bound_access_tokens
true
2022-05-11 06:15:01 SUCCESS
EnsureDiscoveryEndpointResponseStatusCodeIs200
discovery_endpoint_response returned http 200 as expected
http_status
200
2022-05-11 06:15:01 SUCCESS
CheckDiscoveryEndpointReturnedJsonContentType
discovery_endpoint_response Content-Type: header is application/json
2022-05-11 06:15:01 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
2022-05-11 06:15:01
fapi-ciba-id1-discovery-end-point-verification
Setup Done
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointDiscoveryUrl
discoveryUrl
actual
https://ciba-mobile.securitypoc.com/.well-known/openid-configuration
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointIssuer
issuer is consistent with the discovery endpoint
2022-05-11 06:15:01 SUCCESS
CheckTLSClientCertificateBoundAccessTokensTrue
tls_client_certificate_bound_access_tokens was 'true'
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointIdTokenSigningAlgValuesSupported
Contents of 'id_token_signing_alg_values_supported' in discovery document matches expectations.
actual
[
  "ES256"
]
expected
[
  "PS256",
  "ES256"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
FAPIRWCheckDiscEndpointTokenEndpointAuthMethodsSupported
Contents of 'token_endpoint_auth_methods_supported' in discovery document matches expectations.
actual
[
  "private_key_jwt",
  "client_secret_post",
  "client_secret_basic",
  "tls_client_auth",
  "self_signed_tls_client_auth"
]
expected
[
  "private_key_jwt",
  "tls_client_auth"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointTokenEndpointAuthSigningAlgValuesSupported
Contents of 'token_endpoint_auth_signing_alg_values_supported' in discovery document matches expectations.
actual
[
  "ES256"
]
expected
[
  "PS256",
  "ES256"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
FAPICheckDiscEndpointUserinfoSigningAlgValuesSupported
Contents of 'userinfo_signing_alg_values_supported' in discovery document matches expectations.
actual
[
  "ES256"
]
expected
[
  "PS256",
  "ES256"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointTokenEndpoint
token_endpoint
actual
https://ciba-mobile.securitypoc.com/oauth2/token
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointRegistrationEndpoint
registration_endpoint
actual
https://ciba-mobile.securitypoc.com/oauth2/register/CIBA
2022-05-11 06:15:01 SUCCESS
CheckJwksUri
jwks_uri
actual
https://ciba-mobile.securitypoc.com/oauth2/jwks/CIBA
2022-05-11 06:15:01 SUCCESS
EnsureServerConfigurationSupportsPrivateKeyJwt
Found supported private_key_jwt method
method
private_key_jwt
2022-05-11 06:15:01 SUCCESS
CheckDiscBackchannelAuthorizationEndpoint
backchannel_authentication_endpoint
actual
https://ciba-mobile.securitypoc.com/oauth2/ciba 
2022-05-11 06:15:01 SUCCESS
CheckDiscEndpointBackchannelAuthenticationRequestSigningAlgValuesSupported
Contents of 'backchannel_authentication_request_signing_alg_values_supported' in discovery document matches expectations.
actual
[
  "ES256"
]
expected
[
  "PS256",
  "ES256"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
CheckBackchannelUserCodeParameterSupported
backchannel_user_code_parameter_supported is not present
2022-05-11 06:15:01 SUCCESS
FAPICIBACheckDiscEndpointGrantTypesSupported
Contents of 'grant_types_supported' in discovery document matches expectations.
actual
[
  "urn:ietf:params:oauth:grant-type:device_code",
  "refresh_token",
  "urn:openid:params:grant-type:ciba"
]
expected
[
  "urn:openid:params:grant-type:ciba"
]
minimum_matches_required
1
2022-05-11 06:15:01 SUCCESS
CheckBackchannelTokenDeliveryPollModeSupported
Contents of 'backchannel_token_delivery_modes_supported' in discovery document matches expectations.
actual
[
  "poll",
  "ping"
]
expected
[
  "poll"
]
minimum_matches_required
1
2022-05-11 06:15:01 FINISHED
fapi-ciba-id1-discovery-end-point-verification
Test has run to completion
testmodule_result
PASSED
2022-05-11 06:15:09
TEST-RUNNER
Alias has now been claimed by another test
alias
fwiwidk
new_test_id
rM9lyrPknWok4DS
Test Results