Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-11-22 08:19:05 INFO
TEST-RUNNER
Test instance qxn2HIWsp7467Fc created
baseUrl
https://www.certification.openid.net/test/a/tal_test
variant
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "request_type": "plain_http_request",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias
tal_test
description
OIDC basic RP
planId
e8h4aJW3KlCcO
config
{
  "keys": [
    {
      "kty": "RSA",
      "n": "pD35mn3PUlIIRrShaxHkggSi1QdIElCRlfVNogupS2PidMDqnO7MDW3hEteZPzxHuARva09X8lSzoT8Ad5zl8fGO0WP0YXTTJKMEqpAHoBmimOX6XnVs7USSxPLVGIGO4pdjKQUeUlTXEcuRUuABa6h13Dj2v0TB6ako8Fa_YDvRxsqkd73SCaDp7Isnx3uy9PlyO9Uc5pupyf2Tq1oqP-NnxYgYl7F8AMgtpZhTqLT3b6xw4I4vjQy3vKBo3kJK8LacnVtKdXJDTZat75qATDDS0Pht8mtwpGPBN0T_j06k7Hx5tZVQHJn1FZGbOzr5THCTKSoz_3Tay5ZN3vgDNw",
      "e": "AQAB",
      "alg": "RS256",
      "use": "sig",
      "kid": "QjA0MzI4REU2NTQzMDkzMzAxRDExRTJGRkY5ODNERkI0MkNFRkJENA"
    }
  ],
  "alias": "tal_test",
  "description": "OIDC basic RP",
  "server": {
    "issuer": "https://us-oidc-op-tal.com/",
    "authorization_endpoint": "https://fidm.us1.gigya.com/oidc/op/v1.0/4_r4_M9P7uNb9K50G4XFmyEw/authorize",
    "token_endpoint": "https://fidm.us1.gigya.com/oidc/op/v1.0/4_r4_M9P7uNb9K50G4XFmyEw/token",
    "userinfo_endpoint": "https://fidm.us1.gigya.com/oidc/op/v1.0/4_r4_M9P7uNb9K50G4XFmyEw/userinfo",
    "jwks_uri": "https://fidm.us1.gigya.com/oidc/op/v1.0/4_r4_M9P7uNb9K50G4XFmyEw/.well-known/jwks"
  },
  "client": {
    "client_id": "hPNHrtzZmktTOROQam3V6jsB",
    "client_secret": "Pm2tl7mD0KVT1fgcuqIzw8h1_odnk6j6j3lf8Dqo0rw31pHfHQX_UbNsIca9MkffsX3jjgVW1zZnNT4dbG_kPA",
    "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
  },
  "client_secret_post": {
    "client_id": "hPNHrtzZmktTOROQam3V6jsB",
    "client_secret": "Pm2tl7mD0KVT1fgcuqIzw8h1_odnk6j6j3lf8Dqo0rw31pHfHQX_UbNsIca9MkffsX3jjgVW1zZnNT4dbG_kPA"
  },
  "client2": {
    "client_secret": "OsfJrq6QX1PITBWKKkAUbetQMZ5A3TQmr_18ldff8LkZqSfL7IBb5d7xsyB-HV4I3ppgrODHCKm-BfDLIHWl-g",
    "client_id": "u-NyAWylVfYwyPjl4tqKS9GY"
  },
  "consent": {}
}
testName
oidcc-client-test-kid-absent-multiple-jwks
2022-11-22 08:19:05 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/tal_test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/tal_test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/tal_test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/tal_test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/tal_test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/tal_test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2022-11-22 08:19:05
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/tal_test/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/tal_test/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/tal_test/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/tal_test/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/tal_test/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/tal_test/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2022-11-22 08:19:05
OIDCCGenerateServerJWKsMultipleSigningsKeyWithNoKeyIds
Generated server public private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "8JPxhU4uv2Zdu8w0N6GqiAHFNt1lpqatu2kxRlDav2CUgmfaWj7JUb5OYZ5osbh6a-5mKFiNm8Gc3wmMCLlAqiLKmm6rqOf6zRqXeUPIZ00aBjcqpVQ5ggUO9Zr265UPY62gjlypikzXYficb4f1aDmWiwOSl8tqR1qqz1Iyo0U",
      "kty": "RSA",
      "q": "7jPAQtwoW91a6kF4rdpMwfZ1qK_qaymHv-djkkTdsVjN_O5OZJ48LgU58wXqseuyz6G9CBFNegG6KlWRl2Pc7PZXAHwucHtFxs6oqGiI6F2nHHcadGm3NHPUf8cVGUJ7l_TqGFNsF-lcsogcxHu_IxrBE7cXAgFWAgi1Xuktpx8",
      "d": "t5XC2TTAzXBSIOmVYdatSGjtkqSqfVZQTvxXmnMSJFfM7YXG6INGiMYIUmiivwTKKdTnv9pkxFwpcIK1O52mlcaqXGjxdga2EhluHxUtQV34YrVWPME8aogweQkEYBYa3CMwOiveQmtxD8ze_MbrGy9DbViv8StUqo17gB7nds0VOSI6_xaeTEJlpYx6LC-esieRdwv39_P7Yk3dUz9vWVjhI_b8YCe_Cx0TatUcfI-NAqDtQcT6uTsLn1Pr8xBnRhlmIkoaOmLqO8yYXTGW1yMFnZKWp1Opo1Xe60eUD35I4iAeiGM7vL2gOPSS1EQ-py5WnkhI5lCnFdrK1j6IYQ",
      "e": "AQAB",
      "use": "sig",
      "qi": "J-L4JPG3JNVd9yXuCmSBRsCl2L9KrscLgI7GrQMjTNgZkxTWYKJ4qkCWqtA2Nqhg4A8I6X2XX7KCq295NF5nPhYD7hnNjefrYKKHPzSHvA5hqPFYcTcVQ5Cy99GwuPZMTQ753m3BLvgDpXkj3ASCEuQbBW6fePyuUFX5XbpOiLY",
      "dp": "z7V71jNNSzVPgl_pSYrMGEcnBZqbNAo-f0twHpyacJcrQXf23unMmUXsmH3TOHXlRKB9FSJ3iN3d2fd9Lt77BKmrMTCSBu_a6xClbS5nrUC1Ul549GtGh4pkgwr7WyTEN7RlpeQ9AModP1oNfoHtEMJ_xqAcBfC7XsXaKct3Kt0",
      "dq": "OEKi22fSZHgwu_mAvlc8H-fNPG1oSa1CcdH-E5MOZY_a_y1t-JfjEN-NI1g3aZSI5D-IPTqQ-QslZFBXldExYgqA3A14jnqfLWisLzKZe4B7Mt7ysaIyckIVY6Sq2A96z5Y6IEq70h39FfHOEZ5Es87i4XwyA_g6zzotVGBwtvM",
      "n": "39ossNZrWUNsKdFG1QTuJOA7HaynSPQU1HNVU9wqjyB9T3pt69C_L45hPiu6w4vTywgHQysFpwg9LcNngDa6OrRsACsMDg-kXUaM1XkOpNom-72W9Tux8YEg_BA4SNP8M0dBd_04cUpgQ_echNuXYIwQEEo2ksqMl71FZQFjiP4snhUjVbqj3HHEBZHD5iGsjW-bZZiwzQIJ2ktXlwUFrOgoe6xDIuxiiGVmzELPlAB332Inrnjk3g8jj2QYScF8TdnbXk6y95h3jkqSnwJ5hwWhaqfitdDwWNdGrFxz6PLMY2OxdF2EVpkd4339Kwr_Gt4T4c8SaRkh2TOQfMTIWw"
    },
    {
      "kty": "EC",
      "d": "gUgqlkalHh30U9IGSBQAHndgbazHHysxpWD5yl2pm-4",
      "use": "sig",
      "crv": "P-256",
      "x": "tbuNnH_n9agNxeHkDX06pQQIvN8ROel1J9GR9IIupc0",
      "y": "pCbw3C1W0XYhS-1Uy_H1z-fn6exGcOdwam0CU67tOyw"
    },
    {
      "kty": "EC",
      "d": "drDAu6yhjjDQV_jpL0qw0wSiwCP9ztwx2hzavhxmJYQ",
      "use": "sig",
      "crv": "secp256k1",
      "x": "-35fjdClVugQfVeEnELfmXHO-nyUKQUCr0XQ7VHoAdQ",
      "y": "YPGvOeaxQzAUNNVs581zw6kaOb3E6V5ArIhpMjiy9AQ"
    },
    {
      "kty": "OKP",
      "d": "sucY1TmIih8e3OEOMgN7QETXz60JEdEdnolFw9HVdgY",
      "use": "sig",
      "crv": "Ed25519",
      "x": "JumWiBRs7dDyEdarmGdYdf2Q20rzq3lx26DSo0ieC20"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "1ZsYGh9VwNIJv8RDdQSHubx4r2fceyJov0IZffCsAukuEGCqxpAGF1ksiAnZRbYAQ6HmYmoYPx36qeHIAKZ__uLQBZsIG2vPjcdHw1vW86i4Ko3iYtJPadOfarwPADTAesJAPUivFGvPKWMrbTmeG5OOpH_nT4-PsO8DOIM8VSs",
      "kty": "RSA",
      "q": "uegygueTEQv84648l6dMI_ujm91XvzewT1qaKpOrlKen3ef19JeQsHF4pmD9i9vveOpax-ZbEMdVocI1-L1GZvUHjooWjESrjYKxTPV1geYDAGdPMaitFJjfiSAzbq0BezW3vh1H-mY8hBCdmUFxZYMeeh36av662WgqF1mcTo8",
      "d": "GNrejxjNeV-8AeO0JYqobjrgyaWYcgETZGkYjZVh3U_32Bv9igHWUUMrE1b0kVMvgs-gTKxkWTV9sHbHKlQSBeyMC9sKQnzcc1-_yxSsE-kbXfZRAsxRkL9v_5wFXlNc1pFYj4AdyJIx_FX9PFQJtyriSglPYFTq_rkbljD1RwKETUBvsvp8ol8YPQTyOXyy8melTbABXb9M7moN1s6XTZxupsPMKpKPM4mRD_MNYfZyqYGKu5j2ujWtTiKXpIPIbsUNuBCPA5uUVXEYi488GAaIRxoksl1Hr8IOmBxATYScF8KLNH9LNt5MXwrL0-o8JsMeDqlmLYWuksQQWgpafQ",
      "e": "AQAB",
      "use": "enc",
      "qi": "Pw0EfyBsdsvk_Z1OZkprqQVX5CWVjHg5f57j8nwBNdN8K5XLAm3zMzA72kx8-NOKbZrwZVBzEvokIYlXsaQ1nGgAhm1nmXqFmXAJw7UkAUgIC5uvSG1g6Lhw_petnwvEePczTMYHsKIej6jAVZXjJP5qKG3o4uvKsueFXzBoz20",
      "dp": "ZkOqdlcqJvZn1HeSFCPnFvU0kkWXORxwKaDrs2_V6k7Yzt545Ddvsx3uQ_LzInzQA5EvS06f7RfdOhfuOOF9xfmwvf5LE1W6OJZ_tPfzIRRVl4n2KHmnq3K1j9QZGnAm9p6pQq3ZpF05AQeJcvFy0KEEWZ0ikOSaVosXb6bk66E",
      "alg": "RSA-OAEP",
      "dq": "XWim4JE8msccNMYaGdTsc_P_G9SWPzTa-LQ8XAJApvuqY9wl_9Sb1ZveFDMNklVauLWAEYrT3NVbWGB9v9JSam7Zciw98hKa5ApzzYhTl4YboftGllv7QysgvgSY8xYodWDjRrntrYnrBCxZE2UHdgrwqEkhxtrgxVYKOBtFZ08",
      "n": "mx7THj0CXnjnJiVAXZW1X9DHbhQwEJ1TMRYJkq9E1nqnF9BbB52Eq8JhChGyViXnnwyt-SRfmm9JNTrdh_1gLG6IMFhNXcNebJZY2yBg8ZKFt-3WVvdzs92YdxDSGn42UFtAmYEdu_usltq28epzSqM533gZZNAUXy0623g_MEuOrae21GbGVS6cIu7OvFR_kkoR6mBzu7OolKHRvOL940caUPnuSSCWWqTnRMlxX1KCc9UHCrIejsFHUizGlli90JCTXiXr-lzTsH7adO9TCzMFQm948eeaQ9_2t34lfx6dUAPzeetAaRus_1UmiBSNYBY8YK2acn8BaqvKidqtBQ"
    },
    {
      "kty": "EC",
      "d": "4afoWMFIzotU-_6NW34ERJ660pZyjA28bxeprn8G8to",
      "use": "enc",
      "crv": "P-256",
      "x": "7ycJLhTClobCEdu4JFCOILfzoirBLjfYD6VbTQwFkgk",
      "y": "QKc6RbCeFDpai0WY9IxkjG8blAhzs8zxkeHdNHDBMHM",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "q8hoPbQ4WPfPswUDPKB1jkpmMBmbr5wSHaWm5FcXQ4Lk_ypdG_gle_fIg_N9Z9CavACZiEJ5sOZrnRhx3ep5SUleaetLLswaUzeKcJjJ43eMyzyrXnLZrQZuhvO2tcnAFSulMUM7_0fkQ4laQkAtwSKNjalPM96GHmNehU2q6NIbsvcR1Azz25PQypQxD4vlp1fxZGxc2qYEUuEjNoH3fk5MNwq6xRmunIsMibm3ht9tzau188-Pyu7t8h1T9IEdUEiMUQSFB9mYc7KS1gHHXUQlVWJ-MWuuJaC4YpokcSuckDYNJXrSWY1xEb_9TPVrCgzg6d7rB1ajKQ6_ukHq6Q"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "39ossNZrWUNsKdFG1QTuJOA7HaynSPQU1HNVU9wqjyB9T3pt69C_L45hPiu6w4vTywgHQysFpwg9LcNngDa6OrRsACsMDg-kXUaM1XkOpNom-72W9Tux8YEg_BA4SNP8M0dBd_04cUpgQ_echNuXYIwQEEo2ksqMl71FZQFjiP4snhUjVbqj3HHEBZHD5iGsjW-bZZiwzQIJ2ktXlwUFrOgoe6xDIuxiiGVmzELPlAB332Inrnjk3g8jj2QYScF8TdnbXk6y95h3jkqSnwJ5hwWhaqfitdDwWNdGrFxz6PLMY2OxdF2EVpkd4339Kwr_Gt4T4c8SaRkh2TOQfMTIWw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "3aDdBO1SC0_RvBO_-hfUc45irmh-D8bxtwilrCHXkgXl0FnFtHcIvOAoYzWMHVcutHNqeo3IB-ND_VjPFKilo4qS2RPGYkF40LTH8_rL8qZQmh2I0oV11jJyuF6Mj_reYv1penMVjgtFAspSj0Ws_-lVJLxwpnJwetfTXS86PCcgCqNWTSaggiRSb7o1SMbXc4GakdtjW3KaX9qsg7JPIc44Ovn6PZtqmOmLbEMC36225z06_bvbZQITFgKYS_A8nZ8zJEDF-hN_3xyVlg95v_wkOFdy-jDjAoRGv9_Ls04rUSpOfbQhqneifLJgi5RDtO75zJ4AEmYZfLtzHQ4DTQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "tbuNnH_n9agNxeHkDX06pQQIvN8ROel1J9GR9IIupc0",
      "y": "pCbw3C1W0XYhS-1Uy_H1z-fn6exGcOdwam0CU67tOyw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "jC046SAJJtGpJDRYV3mhVK2ihCEyMaCi7qPnIQfEwOM",
      "y": "9ox2nFgZTnJAEHk0VBWopjdj7SZxnkWBFiAIhgUXLPE"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "IQxD_kW8La7wvMbMfLWrHU0hFh-n1K8AEYZmfAs__Yg",
      "y": "OkrquI-gvPCMeyi1umk32UBYIB9FabX_Ek7VSpekC9I"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "-35fjdClVugQfVeEnELfmXHO-nyUKQUCr0XQ7VHoAdQ",
      "y": "YPGvOeaxQzAUNNVs581zw6kaOb3E6V5ArIhpMjiy9AQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "aAZlRYOpnuVB9_0khx3NJG3VOyBMK6NCHg5VgRjUZlo",
      "y": "NMGwoNF02tevj24mdeu4Od1KCt0QQhUhzAxK4e66S80"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "N0XzjCkNDr-20JN-DKjZDeLCg5eGn8GTtH64fGRc1AI",
      "y": "6bfC2TlYAayNJc2Y-VDuD9Em9s53KMtEhPVYtTYyvd0"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "cAcfTouEBc6Jl6uUS9gUUAAfy_auxUN4mANDjOJqMco"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "JumWiBRs7dDyEdarmGdYdf2Q20rzq3lx26DSo0ieC20"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "Q9OuBL3OcaLwKUfDYjGWxLbBzZcmiDdj5aUoSi3BVmg"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "mx7THj0CXnjnJiVAXZW1X9DHbhQwEJ1TMRYJkq9E1nqnF9BbB52Eq8JhChGyViXnnwyt-SRfmm9JNTrdh_1gLG6IMFhNXcNebJZY2yBg8ZKFt-3WVvdzs92YdxDSGn42UFtAmYEdu_usltq28epzSqM533gZZNAUXy0623g_MEuOrae21GbGVS6cIu7OvFR_kkoR6mBzu7OolKHRvOL940caUPnuSSCWWqTnRMlxX1KCc9UHCrIejsFHUizGlli90JCTXiXr-lzTsH7adO9TCzMFQm948eeaQ9_2t34lfx6dUAPzeetAaRus_1UmiBSNYBY8YK2acn8BaqvKidqtBQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "x": "7ycJLhTClobCEdu4JFCOILfzoirBLjfYD6VbTQwFkgk",
      "y": "QKc6RbCeFDpai0WY9IxkjG8blAhzs8zxkeHdNHDBMHM",
      "alg": "ECDH-ES"
    }
  ]
}
2022-11-22 08:19:05 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-11-22 08:19:05 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "profile": "https://example.com/user",
  "updated_at": 1580000000
}
2022-11-22 08:19:05 SUCCESS
OIDCCGetStaticClientConfigurationForRPTests
Found a static client object
client_id
hPNHrtzZmktTOROQam3V6jsB
client_secret
Pm2tl7mD0KVT1fgcuqIzw8h1_odnk6j6j3lf8Dqo0rw31pHfHQX_UbNsIca9MkffsX3jjgVW1zZnNT4dbG_kPA
redirect_uris
[
  "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
]
2022-11-22 08:19:05 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client
{
  "client_id": "hPNHrtzZmktTOROQam3V6jsB",
  "client_secret": "Pm2tl7mD0KVT1fgcuqIzw8h1_odnk6j6j3lf8Dqo0rw31pHfHQX_UbNsIca9MkffsX3jjgVW1zZnNT4dbG_kPA",
  "redirect_uris": [
    "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
  ]
}
2022-11-22 08:19:05 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path
jwks_uri
mapped
object
client
2022-11-22 08:19:05 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types
[
  "authorization_code"
]
response_types
[
  "code"
]
2022-11-22 08:19:05 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris
[
  "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
]
2022-11-22 08:19:05 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2022-11-22 08:19:05 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2022-11-22 08:19:05 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2022-11-22 08:19:05 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2022-11-22 08:19:05 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2022-11-22 08:19:05 INFO
ValidateIdTokenSignedResponseAlg
Skipped evaluation due to missing required element: client id_token_signed_response_alg
path
id_token_signed_response_alg
mapped
object
client
2022-11-22 08:19:05 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2022-11-22 08:19:05 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2022-11-22 08:19:05 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2022-11-22 08:19:05 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path
request_object_signing_alg
mapped
object
client
2022-11-22 08:19:05 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2022-11-22 08:19:05 INFO
ValidateTokenEndpointAuthSigningAlg
Skipped evaluation due to missing required element: client token_endpoint_auth_signing_alg
path
token_endpoint_auth_signing_alg
mapped
object
client
2022-11-22 08:19:05 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2022-11-22 08:19:05 INFO
ValidateRequireAuthTime
Skipped evaluation due to missing required element: client require_auth_time
path
require_auth_time
mapped
object
client
2022-11-22 08:19:05 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path
default_acr_values
mapped
object
client
2022-11-22 08:19:05 INFO
ValidateInitiateLoginUri
Skipped evaluation due to missing required element: client initiate_login_uri
path
initiate_login_uri
mapped
object
client
2022-11-22 08:19:05 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path
request_uris
mapped
object
client
2022-11-22 08:19:05
SetServerSigningAlgToRS256
Successfully set signing algorithm to RS256
2022-11-22 08:19:05
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg
RS256
2022-11-22 08:19:05
oidcc-client-test-kid-absent-multiple-jwks
Setup Done
2022-11-22 08:19:17 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/tal_test/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.29.2",
  "accept": "*/*",
  "postman-token": "b03afa08-0f9b-4675-894c-cedb0cc9a421",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d257ED7B888E67176B6F9F3421FBF063F",
  "connection": "close"
}
incoming_path
/test/a/tal_test/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
Jwks endpoint
2022-11-22 08:19:17 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance qxn2HIWsp7467Fc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "q8hoPbQ4WPfPswUDPKB1jkpmMBmbr5wSHaWm5FcXQ4Lk_ypdG_gle_fIg_N9Z9CavACZiEJ5sOZrnRhx3ep5SUleaetLLswaUzeKcJjJ43eMyzyrXnLZrQZuhvO2tcnAFSulMUM7_0fkQ4laQkAtwSKNjalPM96GHmNehU2q6NIbsvcR1Azz25PQypQxD4vlp1fxZGxc2qYEUuEjNoH3fk5MNwq6xRmunIsMibm3ht9tzau188-Pyu7t8h1T9IEdUEiMUQSFB9mYc7KS1gHHXUQlVWJ-MWuuJaC4YpokcSuckDYNJXrSWY1xEb_9TPVrCgzg6d7rB1ajKQ6_ukHq6Q"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "39ossNZrWUNsKdFG1QTuJOA7HaynSPQU1HNVU9wqjyB9T3pt69C_L45hPiu6w4vTywgHQysFpwg9LcNngDa6OrRsACsMDg-kXUaM1XkOpNom-72W9Tux8YEg_BA4SNP8M0dBd_04cUpgQ_echNuXYIwQEEo2ksqMl71FZQFjiP4snhUjVbqj3HHEBZHD5iGsjW-bZZiwzQIJ2ktXlwUFrOgoe6xDIuxiiGVmzELPlAB332Inrnjk3g8jj2QYScF8TdnbXk6y95h3jkqSnwJ5hwWhaqfitdDwWNdGrFxz6PLMY2OxdF2EVpkd4339Kwr_Gt4T4c8SaRkh2TOQfMTIWw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "3aDdBO1SC0_RvBO_-hfUc45irmh-D8bxtwilrCHXkgXl0FnFtHcIvOAoYzWMHVcutHNqeo3IB-ND_VjPFKilo4qS2RPGYkF40LTH8_rL8qZQmh2I0oV11jJyuF6Mj_reYv1penMVjgtFAspSj0Ws_-lVJLxwpnJwetfTXS86PCcgCqNWTSaggiRSb7o1SMbXc4GakdtjW3KaX9qsg7JPIc44Ovn6PZtqmOmLbEMC36225z06_bvbZQITFgKYS_A8nZ8zJEDF-hN_3xyVlg95v_wkOFdy-jDjAoRGv9_Ls04rUSpOfbQhqneifLJgi5RDtO75zJ4AEmYZfLtzHQ4DTQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "tbuNnH_n9agNxeHkDX06pQQIvN8ROel1J9GR9IIupc0",
      "y": "pCbw3C1W0XYhS-1Uy_H1z-fn6exGcOdwam0CU67tOyw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "jC046SAJJtGpJDRYV3mhVK2ihCEyMaCi7qPnIQfEwOM",
      "y": "9ox2nFgZTnJAEHk0VBWopjdj7SZxnkWBFiAIhgUXLPE"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "IQxD_kW8La7wvMbMfLWrHU0hFh-n1K8AEYZmfAs__Yg",
      "y": "OkrquI-gvPCMeyi1umk32UBYIB9FabX_Ek7VSpekC9I"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "-35fjdClVugQfVeEnELfmXHO-nyUKQUCr0XQ7VHoAdQ",
      "y": "YPGvOeaxQzAUNNVs581zw6kaOb3E6V5ArIhpMjiy9AQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "aAZlRYOpnuVB9_0khx3NJG3VOyBMK6NCHg5VgRjUZlo",
      "y": "NMGwoNF02tevj24mdeu4Od1KCt0QQhUhzAxK4e66S80"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "N0XzjCkNDr-20JN-DKjZDeLCg5eGn8GTtH64fGRc1AI",
      "y": "6bfC2TlYAayNJc2Y-VDuD9Em9s53KMtEhPVYtTYyvd0"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "cAcfTouEBc6Jl6uUS9gUUAAfy_auxUN4mANDjOJqMco"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "JumWiBRs7dDyEdarmGdYdf2Q20rzq3lx26DSo0ieC20"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "Q9OuBL3OcaLwKUfDYjGWxLbBzZcmiDdj5aUoSi3BVmg"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "mx7THj0CXnjnJiVAXZW1X9DHbhQwEJ1TMRYJkq9E1nqnF9BbB52Eq8JhChGyViXnnwyt-SRfmm9JNTrdh_1gLG6IMFhNXcNebJZY2yBg8ZKFt-3WVvdzs92YdxDSGn42UFtAmYEdu_usltq28epzSqM533gZZNAUXy0623g_MEuOrae21GbGVS6cIu7OvFR_kkoR6mBzu7OolKHRvOL940caUPnuSSCWWqTnRMlxX1KCc9UHCrIejsFHUizGlli90JCTXiXr-lzTsH7adO9TCzMFQm948eeaQ9_2t34lfx6dUAPzeetAaRus_1UmiBSNYBY8YK2acn8BaqvKidqtBQ"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "x": "7ycJLhTClobCEdu4JFCOILfzoirBLjfYD6VbTQwFkgk",
      "y": "QKc6RbCeFDpai0WY9IxkjG8blAhzs8zxkeHdNHDBMHM",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path
jwks
2022-11-22 08:19:45 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/tal_test/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"107\", \"Chromium\";v\u003d\"107\", \"Not\u003dA?Brand\";v\u003d\"24\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"macOS\"",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-dest": "document",
  "referer": "https://socialize.us1.gigya.com/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9,he;q\u003d0.8",
  "cookie": "__utma\u003d201319536.76864017.1658307142.1664786690.1665555850.13; __utmz\u003d201319536.1665555850.13.6.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003d119918A143D359300525FD5835CE0195",
  "connection": "close"
}
incoming_path
/test/a/tal_test/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{
  "client_id": "hPNHrtzZmktTOROQam3V6jsB",
  "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?",
  "scope": "openid email profile address phone",
  "state": "tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7",
  "response_type": "code",
  "nonce": "7f02bb657fd44999b9aab59855871cc2"
}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
Authorization endpoint
2022-11-22 08:19:45 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2022-11-22 08:19:45 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "email",
  "profile",
  "address",
  "phone"
]
expected
openid
2022-11-22 08:19:45 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "hPNHrtzZmktTOROQam3V6jsB",
  "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?",
  "scope": "openid email profile address phone",
  "state": "tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7",
  "response_type": "code",
  "nonce": "7f02bb657fd44999b9aab59855871cc2"
}
2022-11-22 08:19:45 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid email profile address phone
2022-11-22 08:19:45 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
7f02bb657fd44999b9aab59855871cc2
2022-11-22 08:19:45 INFO
EnsureAuthorizationRequestContainsPkceCodeChallenge
Skipped evaluation due to missing required element: effective_authorization_endpoint_request code_challenge
path
code_challenge
mapped
object
effective_authorization_endpoint_request
2022-11-22 08:19:45 SUCCESS
EnsureResponseTypeIsCode
Response type is expected value
expected
code
2022-11-22 08:19:45 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
hPNHrtzZmktTOROQam3V6jsB
2022-11-22 08:19:45 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual
https://socialize.gigya.com/socialize.finalizeOidcLogin?
expected
[
  "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
]
2022-11-22 08:19:45 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "email",
  "profile",
  "address",
  "phone"
]
expected
openid
2022-11-22 08:19:45 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2022-11-22 08:19:45 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG
2022-11-22 08:19:45 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
4dP8N-JyG7x7abyNfTS2bw
2022-11-22 08:19:45 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?",
  "state": "tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7"
}
2022-11-22 08:19:45 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?",
  "state": "tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7",
  "code": "jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG"
}
2022-11-22 08:19:45
SendAuthorizationResponseWithResponseModeQuery
Redirecting back to client
uri
https://socialize.gigya.com/socialize.finalizeOidcLogin?state=tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7&code=jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG
2022-11-22 08:19:45 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance qxn2HIWsp7467Fc
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://socialize.gigya.com/socialize.finalizeOidcLogin?state=tk2.oi.AcbHZvWHHg.8nYvBaPgxfB1bAUoM199A_c--ytDequnpdi2mvNxDBXC__PSnemnrUFiA7Y44eyD.TmoyM9MJ0N4b6MRxOv7_8hTqC7jrmKFydV0bw4j-SYGqsgnCQxsK9Qy-HXfgGQP3egnGq7-pA7-BRxnoXuwfxw.sc3yc463l70n4055151h7&code=jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG]
outgoing_path
authorize
2022-11-22 08:19:46 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/tal_test/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Basic aFBOSHJ0elpta3RUT1JPUWFtM1Y2anNCOlBtMnRsN21EMEtWVDFmZ2N1cUl6dzhoMV9vZG5rNmo2ajNsZjhEcW8wcnczMXBIZkhRWF9VYk5zSWNhOU1rZmZzWDNqamdWVzF6Wm5OVDRkYkdfa1BB",
  "accept": "application/json, application/json",
  "cookie": "JSESSIONID\u003d9B191115A14BE432CE4273D7653201F7",
  "content-type": "application/x-www-form-urlencoded",
  "connection": "close",
  "content-length": "147"
}
incoming_path
/test/a/tal_test/token
incoming_body_form_params
{
  "code": "jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG",
  "grant_type": "authorization_code",
  "redirect_uri": "https://socialize.gigya.com/socialize.finalizeOidcLogin?"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
code=jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fsocialize.gigya.com%2Fsocialize.finalizeOidcLogin%3F
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_body_json
Token endpoint
2022-11-22 08:19:46
CheckClientIdMatchesOnTokenRequestIfPresent
client_id not present, nothing to check
2022-11-22 08:19:46 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id
hPNHrtzZmktTOROQam3V6jsB
client_secret
Pm2tl7mD0KVT1fgcuqIzw8h1_odnk6j6j3lf8Dqo0rw31pHfHQX_UbNsIca9MkffsX3jjgVW1zZnNT4dbG_kPA
method
client_secret_basic
2022-11-22 08:19:46 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2022-11-22 08:19:46 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
jsod1dKZEJ7sco4XEn1UvL1lDYDK4kgG
2022-11-22 08:19:46 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual
https://socialize.gigya.com/socialize.finalizeOidcLogin?
2022-11-22 08:19:46 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV
2022-11-22 08:19:46 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
WUITi-O22T75qoevyiYYTg
2022-11-22 08:19:46 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/tal_test/
sub
user-subject-1234531
aud
hPNHrtzZmktTOROQam3V6jsB
nonce
7f02bb657fd44999b9aab59855871cc2
iat
1669105186
exp
1669105486
2022-11-22 08:19:46 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
WUITi-O22T75qoevyiYYTg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/tal_test/",
  "sub": "user-subject-1234531",
  "aud": "hPNHrtzZmktTOROQam3V6jsB",
  "nonce": "7f02bb657fd44999b9aab59855871cc2",
  "iat": 1669105186,
  "exp": 1669105486,
  "at_hash": "WUITi-O22T75qoevyiYYTg"
}
2022-11-22 08:19:46 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiV1VJVGktTzIyVDc1cW9ldnlpWVlUZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiaFBOSHJ0elpta3RUT1JPUWFtM1Y2anNCIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3RhbF90ZXN0XC8iLCJleHAiOjE2NjkxMDU0ODYsIm5vbmNlIjoiN2YwMmJiNjU3ZmQ0NDk5OWI5YWFiNTk4NTU4NzFjYzIiLCJpYXQiOjE2NjkxMDUxODZ9.VfPVRbprKTIuoB3i0risUFA99DdQ_9MG_z-n2OR_hmSlGgSAKAOq9zRIMbyhcjCiRo6jD7lbPX_6gCZLUViMuiOb7nBRH51CUNNEi465AZlBuM4dXmh0uXw58ABru5Zu1WkLl9Nzabo4A1khvIbbr37K71KW8qk6F5aQx2BvuhBn7JoflExaS8W9WcXLLhyt9il8w3OAfnvCgnCGtNf5755WdKahmxfCyP7KahwrathmUBuADa8Miux1lK7HsLqHukHgt-nfxdsVS7HiVXWUKhrn-iRrLf6GZr3l_PTzdSA47s_aRAhB09A4BPyo7eIrFgJKsds7bkuYMzgLPN-4gQ
key
{"p":"8JPxhU4uv2Zdu8w0N6GqiAHFNt1lpqatu2kxRlDav2CUgmfaWj7JUb5OYZ5osbh6a-5mKFiNm8Gc3wmMCLlAqiLKmm6rqOf6zRqXeUPIZ00aBjcqpVQ5ggUO9Zr265UPY62gjlypikzXYficb4f1aDmWiwOSl8tqR1qqz1Iyo0U","kty":"RSA","q":"7jPAQtwoW91a6kF4rdpMwfZ1qK_qaymHv-djkkTdsVjN_O5OZJ48LgU58wXqseuyz6G9CBFNegG6KlWRl2Pc7PZXAHwucHtFxs6oqGiI6F2nHHcadGm3NHPUf8cVGUJ7l_TqGFNsF-lcsogcxHu_IxrBE7cXAgFWAgi1Xuktpx8","d":"t5XC2TTAzXBSIOmVYdatSGjtkqSqfVZQTvxXmnMSJFfM7YXG6INGiMYIUmiivwTKKdTnv9pkxFwpcIK1O52mlcaqXGjxdga2EhluHxUtQV34YrVWPME8aogweQkEYBYa3CMwOiveQmtxD8ze_MbrGy9DbViv8StUqo17gB7nds0VOSI6_xaeTEJlpYx6LC-esieRdwv39_P7Yk3dUz9vWVjhI_b8YCe_Cx0TatUcfI-NAqDtQcT6uTsLn1Pr8xBnRhlmIkoaOmLqO8yYXTGW1yMFnZKWp1Opo1Xe60eUD35I4iAeiGM7vL2gOPSS1EQ-py5WnkhI5lCnFdrK1j6IYQ","e":"AQAB","use":"sig","qi":"J-L4JPG3JNVd9yXuCmSBRsCl2L9KrscLgI7GrQMjTNgZkxTWYKJ4qkCWqtA2Nqhg4A8I6X2XX7KCq295NF5nPhYD7hnNjefrYKKHPzSHvA5hqPFYcTcVQ5Cy99GwuPZMTQ753m3BLvgDpXkj3ASCEuQbBW6fePyuUFX5XbpOiLY","dp":"z7V71jNNSzVPgl_pSYrMGEcnBZqbNAo-f0twHpyacJcrQXf23unMmUXsmH3TOHXlRKB9FSJ3iN3d2fd9Lt77BKmrMTCSBu_a6xClbS5nrUC1Ul549GtGh4pkgwr7WyTEN7RlpeQ9AModP1oNfoHtEMJ_xqAcBfC7XsXaKct3Kt0","dq":"OEKi22fSZHgwu_mAvlc8H-fNPG1oSa1CcdH-E5MOZY_a_y1t-JfjEN-NI1g3aZSI5D-IPTqQ-QslZFBXldExYgqA3A14jnqfLWisLzKZe4B7Mt7ysaIyckIVY6Sq2A96z5Y6IEq70h39FfHOEZ5Es87i4XwyA_g6zzotVGBwtvM","n":"39ossNZrWUNsKdFG1QTuJOA7HaynSPQU1HNVU9wqjyB9T3pt69C_L45hPiu6w4vTywgHQysFpwg9LcNngDa6OrRsACsMDg-kXUaM1XkOpNom-72W9Tux8YEg_BA4SNP8M0dBd_04cUpgQ_echNuXYIwQEEo2ksqMl71FZQFjiP4snhUjVbqj3HHEBZHD5iGsjW-bZZiwzQIJ2ktXlwUFrOgoe6xDIuxiiGVmzELPlAB332Inrnjk3g8jj2QYScF8TdnbXk6y95h3jkqSnwJ5hwWhaqfitdDwWNdGrFxz6PLMY2OxdF2EVpkd4339Kwr_Gt4T4c8SaRkh2TOQfMTIWw"}
algorithm
RS256
2022-11-22 08:19:46 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path
id_token_encrypted_response_alg
mapped
object
client
2022-11-22 08:19:46 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV
token_type
Bearer
id_token
eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiV1VJVGktTzIyVDc1cW9ldnlpWVlUZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiaFBOSHJ0elpta3RUT1JPUWFtM1Y2anNCIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3RhbF90ZXN0XC8iLCJleHAiOjE2NjkxMDU0ODYsIm5vbmNlIjoiN2YwMmJiNjU3ZmQ0NDk5OWI5YWFiNTk4NTU4NzFjYzIiLCJpYXQiOjE2NjkxMDUxODZ9.VfPVRbprKTIuoB3i0risUFA99DdQ_9MG_z-n2OR_hmSlGgSAKAOq9zRIMbyhcjCiRo6jD7lbPX_6gCZLUViMuiOb7nBRH51CUNNEi465AZlBuM4dXmh0uXw58ABru5Zu1WkLl9Nzabo4A1khvIbbr37K71KW8qk6F5aQx2BvuhBn7JoflExaS8W9WcXLLhyt9il8w3OAfnvCgnCGtNf5755WdKahmxfCyP7KahwrathmUBuADa8Miux1lK7HsLqHukHgt-nfxdsVS7HiVXWUKhrn-iRrLf6GZr3l_PTzdSA47s_aRAhB09A4BPyo7eIrFgJKsds7bkuYMzgLPN-4gQ
scope
openid email profile address phone
2022-11-22 08:19:46 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance qxn2HIWsp7467Fc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiV1VJVGktTzIyVDc1cW9ldnlpWVlUZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiaFBOSHJ0elpta3RUT1JPUWFtM1Y2anNCIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3RhbF90ZXN0XC8iLCJleHAiOjE2NjkxMDU0ODYsIm5vbmNlIjoiN2YwMmJiNjU3ZmQ0NDk5OWI5YWFiNTk4NTU4NzFjYzIiLCJpYXQiOjE2NjkxMDUxODZ9.VfPVRbprKTIuoB3i0risUFA99DdQ_9MG_z-n2OR_hmSlGgSAKAOq9zRIMbyhcjCiRo6jD7lbPX_6gCZLUViMuiOb7nBRH51CUNNEi465AZlBuM4dXmh0uXw58ABru5Zu1WkLl9Nzabo4A1khvIbbr37K71KW8qk6F5aQx2BvuhBn7JoflExaS8W9WcXLLhyt9il8w3OAfnvCgnCGtNf5755WdKahmxfCyP7KahwrathmUBuADa8Miux1lK7HsLqHukHgt-nfxdsVS7HiVXWUKhrn-iRrLf6GZr3l_PTzdSA47s_aRAhB09A4BPyo7eIrFgJKsds7bkuYMzgLPN-4gQ",
  "scope": "openid email profile address phone"
}
outgoing_path
token
2022-11-22 08:19:46 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/tal_test/userinfo
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV",
  "accept": "application/json, application/json",
  "cookie": "JSESSIONID\u003d9B191115A14BE432CE4273D7653201F7",
  "connection": "close"
}
incoming_path
/test/a/tal_test/userinfo
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_body_json
Userinfo endpoint
2022-11-22 08:19:46 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token
Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV
2022-11-22 08:19:46 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
Xmh5Cm1WRUjCPzfeqEMk6g26hYXK6n1Vp4ZPeyJxO5SManjoLV
2022-11-22 08:19:46 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub
user-subject-1234531
email
user@example.com
email_verified
false
website
https://openid.net/
zoneinfo
America/Los_Angeles
birthdate
2000-02-03
gender
female
profile
https://example.com/user
preferred_username
d.tu
given_name
Demo
middle_name
Theresa
locale
en-US
updated_at
1580000000
name
Demo T. User
nickname
Dee
family_name
User
address
{
  "street_address": "100 Universal City Plaza",
  "locality": "Hollywood",
  "region": "CA",
  "postal_code": "91608",
  "country": "USA"
}
phone_number_verified
false
phone_number
+1 555 5550000
2022-11-22 08:19:46
ClearAccessTokenFromRequest
Removed incoming access token from environment
2022-11-22 08:19:46 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2022-11-22 08:19:46 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path
userinfo_signed_response_alg
mapped
object
client
2022-11-22 08:19:46 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path
userinfo_encrypted_response_alg
mapped
object
client
2022-11-22 08:19:46 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance qxn2HIWsp7467Fc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "sub": "user-subject-1234531",
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "zoneinfo": "America/Los_Angeles",
  "birthdate": "2000-02-03",
  "gender": "female",
  "profile": "https://example.com/user",
  "preferred_username": "d.tu",
  "given_name": "Demo",
  "middle_name": "Theresa",
  "locale": "en-US",
  "updated_at": 1580000000,
  "name": "Demo T. User",
  "nickname": "Dee",
  "family_name": "User",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "phone_number_verified": false,
  "phone_number": "+1 555 5550000"
}
outgoing_path
userinfo
2022-11-22 08:19:46 FINISHED
oidcc-client-test-kid-absent-multiple-jwks
Test has run to completion
testmodule_result
PASSED
2022-11-22 08:19:50
TEST-RUNNER
Alias has now been claimed by another test
alias
tal_test
new_test_id
IGPAOC2XFg3HiHb
Test Results