Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-11-28 05:44:21 INFO
TEST-RUNNER
Test instance 3PnMliS6IElmJsE created
baseUrl
https://www.certification.openid.net/test/a/isv_op_oidc_core_test
variant
{
  "client_auth_type": "private_key_jwt",
  "response_type": "code token",
  "server_metadata": "discovery",
  "client_registration": "dynamic_client",
  "response_mode": "default"
}
alias
isv_op_oidc_core_test
description
isv_op_oidc_core_test_dynamic_client
planId
le2Qz2krbephy
config
{
  "server": {
    "discoveryUrl": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/.well-known/openid-configuration",
    "login_hint": "isvdev@ibm.com"
  },
  "client": {
    "client_name": "Ristretto Core Conformance Test Dynamic Client One"
  },
  "client2": {
    "client_name": "Ristretto Core Conformance Test Dynamic Client Two"
  },
  "consent": {},
  "alias": "isv_op_oidc_core_test",
  "description": "isv_op_oidc_core_test_dynamic_client"
}
testName
oidcc-request-uri-signed-rs256
2022-11-28 05:44:21 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
2022-11-28 05:44:21
GetDynamicServerConfiguration
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-11-28 05:44:21 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AKc3d53f8b-2adc-438c-9b49-ae717b0df149",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844ab521ae2e95",
  "vary": "Accept-Encoding",
  "date": "Mon, 28 Nov 2022 05:44:21 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:jv8tr5WY74AJu0thxplm3Tmx6lOihrIUjy49ua7fWyM\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:57871319; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dE3C4F50C7A2B36B4F5647EF40DF3FBF7~-1~YAAQXXYGFwWt44SEAQAAh9XDvAjuJPVN8cJTlZaChZ+1eTWa5V2bdpnGV6R8G2TDvCpPFIIg40p+HOoLxn9FY2khtXDTclZ+7VS2UDRI1Fy/3zMX5cIhc0NWfh8Vxqa/bMbQNj/a8e/VwCWrJwvReIKG7vaVekw76Ia/J1ojsvnSo8bxwZpsoghJlZNaVi1Twn6gh6bi0gz1BOkjBEmzq4L6PtOLl6ZMwMl8KPpUOTnC0qvlMvIT/DLDQgYZIlBENs8Mq4v4s3b0h3lGGidSXEOh4s+pwviGhCwoaxM6O3O0ByMhPWnIboK//jWtETQPad5C38YzIJZQJ4c9C8BRrwYvcRqBHHKTsr6hzooyhWCZiRwRC23aO3CVkm0hQhJGDJczdJY\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:21 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003dDF02695E68D035AA233AE73BFCB5CCF1~YAAQXXYGFwat44SEAQAAh9XDvBFNUUTzEZptOQnwkfcYACXT5H7VSlvyTt5VADRzU15nGF8AM4RGYZgMiv9RqZLxJK34gpmzgj5sp3iomvB3/XyH/zQ/89EpI5ZsWzl5N0whhdXOHpe3EBN+4gyE/MTxblNyLjK5kda94l3mo6ZscFsaOAi3B8YRbxVSvbuDtZNp0cz7wF6gzcXtpsKjEmxZSO4bb+TvPag2JAxtlkpc08pUFvT83zD/XM/+Xz9EKJsKDEiOs/7ajieyK+sMwOJnv1lPZvZMC2y4FLsdBoByT+G3mrUGd7NRYwMM~4273715~4277316; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:21 GMT; Max-Age\u003d14400; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d94",
    "origin; dur\u003d127"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"issuer":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2","authorization_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/authorize","token_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/token","introspection_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/introspect","userinfo_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/userinfo","revocation_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/revoke","pushed_authorization_request_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/par","registration_endpoint":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register","jwks_uri":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/jwks","response_types_supported":["none","code","token","id_token","code token","code id_token","token id_token","code token id_token"],"response_modes_supported":["query","fragment","form_post","jwt","query.jwt","fragment.jwt","form_post.jwt"],"grant_types_supported":["authorization_code","implicit","password","refresh_token","client_credentials"],"token_endpoint_auth_methods_supported":["client_secret_basic","client_secret_post","private_key_jwt","tls_client_auth"],"authorization_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"],"authorization_encryption_alg_values_supported":["none","RSA-OAEP","RSA-OAEP-256"],"authorization_encryption_enc_values_supported":["none","A128GCM","A192GCM","A256GCM"],"id_token_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"],"id_token_encryption_alg_values_supported":["none","RSA-OAEP","RSA-OAEP-256"],"id_token_encryption_enc_values_supported":["none","A128GCM","A192GCM","A256GCM"],"userinfo_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"],"userinfo_encryption_alg_values_supported":["none","RSA-OAEP","RSA-OAEP-256"],"userinfo_encryption_enc_values_supported":["none","A128GCM","A192GCM","A256GCM"],"token_endpoint_auth_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"],"request_object_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"],"request_object_encryption_alg_values_supported":["none","RSA-OAEP","RSA-OAEP-256"],"request_object_encryption_enc_values_supported":["none","A128GCM","A192GCM","A256GCM"],"subject_types_supported":["public"],"scopes_supported":["openid","profile","email","phone","address"],"claims_supported":["given_name","employee_id","department","realmName","email","uid","name","job_title","upn","preferred_username","groupIds","tenantId","mobile_number","family_name","iss","acr"],"claim_types_supported":["normal"],"claims_parameter_supported":true,"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"tls_client_certificate_bound_access_tokens":true,"mtls_endpoint_aliases":{"introspection_endpoint":"https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/introspect","pushed_authorization_request_endpoint":"https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/par","revocation_endpoint":"https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/revoke","token_endpoint":"https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/token"},"dpop_signing_alg_values_supported":["RS256","RS384","RS512","PS256","PS384","PS512","ES256","ES384","ES512"]}
2022-11-28 05:44:21 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2
authorization_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/authorize
token_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/token
introspection_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/introspect
userinfo_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/userinfo
revocation_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/revoke
pushed_authorization_request_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/par
registration_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register
jwks_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/jwks
response_types_supported
[
  "none",
  "code",
  "token",
  "id_token",
  "code token",
  "code id_token",
  "token id_token",
  "code token id_token"
]
response_modes_supported
[
  "query",
  "fragment",
  "form_post",
  "jwt",
  "query.jwt",
  "fragment.jwt",
  "form_post.jwt"
]
grant_types_supported
[
  "authorization_code",
  "implicit",
  "password",
  "refresh_token",
  "client_credentials"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_post",
  "private_key_jwt",
  "tls_client_auth"
]
authorization_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
authorization_encryption_alg_values_supported
[
  "none",
  "RSA-OAEP",
  "RSA-OAEP-256"
]
authorization_encryption_enc_values_supported
[
  "none",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
id_token_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
id_token_encryption_alg_values_supported
[
  "none",
  "RSA-OAEP",
  "RSA-OAEP-256"
]
id_token_encryption_enc_values_supported
[
  "none",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
userinfo_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
userinfo_encryption_alg_values_supported
[
  "none",
  "RSA-OAEP",
  "RSA-OAEP-256"
]
userinfo_encryption_enc_values_supported
[
  "none",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
token_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
request_object_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
request_object_encryption_alg_values_supported
[
  "none",
  "RSA-OAEP",
  "RSA-OAEP-256"
]
request_object_encryption_enc_values_supported
[
  "none",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
subject_types_supported
[
  "public"
]
scopes_supported
[
  "openid",
  "profile",
  "email",
  "phone",
  "address"
]
claims_supported
[
  "given_name",
  "employee_id",
  "department",
  "realmName",
  "email",
  "uid",
  "name",
  "job_title",
  "upn",
  "preferred_username",
  "groupIds",
  "tenantId",
  "mobile_number",
  "family_name",
  "iss",
  "acr"
]
claim_types_supported
[
  "normal"
]
claims_parameter_supported
true
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
tls_client_certificate_bound_access_tokens
true
mtls_endpoint_aliases
{
  "introspection_endpoint": "https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/introspect",
  "pushed_authorization_request_endpoint": "https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/par",
  "revocation_endpoint": "https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/revoke",
  "token_endpoint": "https://fapipoc.rel.vanitytst.cloudidentity.ibm.com/oauth2/token"
}
dpop_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
2022-11-28 05:44:21 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-11-28 05:44:21 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "oidc-conformance.rel.verify.ibmcloudsecurity.com",
  "testPort": 443
}
authorization_endpoint
{
  "testHost": "oidc-conformance.rel.verify.ibmcloudsecurity.com",
  "testPort": 443
}
token_endpoint
{
  "testHost": "oidc-conformance.rel.verify.ibmcloudsecurity.com",
  "testPort": 443
}
userinfo_endpoint
{
  "testHost": "oidc-conformance.rel.verify.ibmcloudsecurity.com",
  "testPort": 443
}
2022-11-28 05:44:21
FetchServerKeys
Fetching server key
jwks_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/jwks
2022-11-28 05:44:21
FetchServerKeys
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-11-28 05:44:22 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK94f7d890-2790-4872-8ef5-7b9c85f64fb0",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844ab500c7ea1f",
  "vary": "Accept-Encoding",
  "date": "Mon, 28 Nov 2022 05:44:22 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:MNMSRcd2s8XvwCRAxj4cBy5VGuWyD2XgcV9hjtniEjc\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:61017047; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dD031016A5A7344F5C58A5AB7C1CAFE08~-1~YAAQXXYGFxKt44SEAQAApNjDvAh+SC6V8txUY/YFOrd9Fj+wOwKqkOsOyoehEweC+LSLB5g6aDM8SWl/nRiwIaNXe68LSw6+cXsnKdOHLCE40P7hUSCLgpm06OyJJ/k05G94W0rBrI/+A9ao7XLIksfTtLLP8MzL7FoYHcySXpOlHlegAjGY0bWby6SWWdDdTP8fcqrNnioISAdmMCvxGBewzlK3ESJ46BmQ0xesQcuaUwpAPIPTtR2OQdwIbNN9QKjncVgJ4zaHryZL5Yl/qFZkRABPhv1276ilEiVxUOXm37STZrlE6toZI1U7sy2fJ2w1rEr2SlMnFzYFeai/oPQNFj/lRjBS8kuPXSzKcL6CEdpRiJh0E7bvjfFm+d4bkxgEfMM\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:22 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003d8288134C439A64DE0C78F1186C7FD25C~YAAQXXYGFxOt44SEAQAApNjDvBHFj7qVpEexw0DThEt3/1woPj9IKZSXftBG3cu1djDrIv97TfXaXWsnvZMRYxmrSw1+a92WGZIccIU9ud7wk+VfrPGJwLOne9tJTAh2tU8+LtROqsOXTx9+pzkPIyeS0Jyic9zvL5peGneKe4/Tv08GQtz6bS4zkoU9c2g7giMfCrOqjBf7g3wkck3nE4zInIWBhUXMOlryiIhz28qXuD1feX+Q1ZSgJ92xNWplmJRP59CajcffSSPG0Y4bprFGVTicpiacoWy0mYdxuJQF7HICvLE3u9157AyX~4273715~4277316; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:21 GMT; Max-Age\u003d14399; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d284",
    "origin; dur\u003d355"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"keys":[{"kid":"server","kty":"RSA","use":"sig","x5c":["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"],"x5t#S256":"PVCDmVgwC-YE7Q8Bfe_9jJ8izpYjwStjUEYZEe-58Y4","n":"sG2bGXnk4f9x655IbRtG5xaR0IvJuFbDP7H0nog5vxDz13iVx3vGF2Q372dgSOpAwOtQQUOPZqOKQqXGsmTu1lKRu7myQW7EdQRMOGMcGqc1BvWPCEB1jME8VPJD0iLuWbS5hO2GcEkq-m-Mo-jPsf1W67XlE0O6OrtEXqwMZIglRNrFvHsQzZe_fuKp9ICNowK98t6Vpw0dR8ICjIZ4lhcIg6eWDb8p1-g3hAcrD0PCrXYGva9q79Ny9sPw1rhv4yb80R_TTAWO34y1swIPJQUxBuwC4CTZ4VLd4AFvVU5D1lk45yxfAHidF7BYhVWEnIwSLENfGbvcb2gkFSkjqw","e":"AQAB"}]}
2022-11-28 05:44:22
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kid":"server","kty":"RSA","use":"sig","x5c":["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"],"x5t#S256":"PVCDmVgwC-YE7Q8Bfe_9jJ8izpYjwStjUEYZEe-58Y4","n":"sG2bGXnk4f9x655IbRtG5xaR0IvJuFbDP7H0nog5vxDz13iVx3vGF2Q372dgSOpAwOtQQUOPZqOKQqXGsmTu1lKRu7myQW7EdQRMOGMcGqc1BvWPCEB1jME8VPJD0iLuWbS5hO2GcEkq-m-Mo-jPsf1W67XlE0O6OrtEXqwMZIglRNrFvHsQzZe_fuKp9ICNowK98t6Vpw0dR8ICjIZ4lhcIg6eWDb8p1-g3hAcrD0PCrXYGva9q79Ny9sPw1rhv4yb80R_TTAWO34y1swIPJQUxBuwC4CTZ4VLd4AFvVU5D1lk45yxfAHidF7BYhVWEnIwSLENfGbvcb2gkFSkjqw","e":"AQAB"}]}
2022-11-28 05:44:22 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kid": "server",
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "MIIDYDCCAkigAwIBAgIEIFW8uDANBgkqhkiG9w0BAQsFADByMQkwBwYDVQQGEwAxCTAHBgNVBAgTADEJMAcGA1UEBxMAMQkwBwYDVQQKEwAxCTAHBgNVBAsTADE5MDcGA1UEAxMwb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tMB4XDTIyMTExNDA0NDI0MFoXDTMyMTExMTA0NDI0MFowcjEJMAcGA1UEBhMAMQkwBwYDVQQIEwAxCTAHBgNVBAcTADEJMAcGA1UEChMAMQkwBwYDVQQLEwAxOTA3BgNVBAMTMG9pZGMtY29uZm9ybWFuY2UucmVsLnZlcmlmeS5pYm1jbG91ZHNlY3VyaXR5LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALBtmxl55OH/ceueSG0bRucWkdCLybhWwz+x9J6IOb8Q89d4lcd7xhdkN+9nYEjqQMDrUEFDj2ajikKlxrJk7tZSkbu5skFuxHUETDhjHBqnNQb1jwhAdYzBPFTyQ9Ii7lm0uYTthnBJKvpvjKPoz7H9Vuu15RNDujq7RF6sDGSIJUTaxbx7EM2Xv37iqfSAjaMCvfLelacNHUfCAoyGeJYXCIOnlg2/KdfoN4QHKw9Dwq12Br2vau/TcvbD8Na4b+Mm/NEf00wFjt+MtbMCDyUFMQbsAuAk2eFS3eABb1VOQ9ZZOOcsXwB4nRewWIVVhJyMEixDXxm73G9oJBUpI6sCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAhvvrczfcb1xsYJeEiVtctWlLfHXyKkfyJpIU1nTGdKpd18tPv4OeLMyuJsOFenhJD95UauFwz3AT1zdHShp04JHWTtkb7aezFN4C9fpb97BUR0BheoYzkC6pgZ7M4QkkKE/AKYZfWLahqcbZ6ICmUfXyDJ2mWpXLpLm+l6jh32NF74ho8h4b65cMpDk5mFEp9vf1WgnmaWGtFjVuhAgaS8IrYcDy3DzVrZX/0kCPa0EXng7Xx1IkhUaKz0ajx3ZCmC6HmNa6U+oDKboGq7w1ZfscjOr8nB9M0f5BUAQN1m0nGAR1Ac96BMjfwwS/05lpPLF3Dv5CzOGLuIi0Cws7xA\u003d\u003d"
      ],
      "x5t#S256": "PVCDmVgwC-YE7Q8Bfe_9jJ8izpYjwStjUEYZEe-58Y4",
      "n": "sG2bGXnk4f9x655IbRtG5xaR0IvJuFbDP7H0nog5vxDz13iVx3vGF2Q372dgSOpAwOtQQUOPZqOKQqXGsmTu1lKRu7myQW7EdQRMOGMcGqc1BvWPCEB1jME8VPJD0iLuWbS5hO2GcEkq-m-Mo-jPsf1W67XlE0O6OrtEXqwMZIglRNrFvHsQzZe_fuKp9ICNowK98t6Vpw0dR8ICjIZ4lhcIg6eWDb8p1-g3hAcrD0PCrXYGva9q79Ny9sPw1rhv4yb80R_TTAWO34y1swIPJQUxBuwC4CTZ4VLd4AFvVU5D1lk45yxfAHidF7BYhVWEnIwSLENfGbvcb2gkFSkjqw",
      "e": "AQAB"
    }
  ]
}
2022-11-28 05:44:22 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kid": "server",
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "x5t#S256": "PVCDmVgwC-YE7Q8Bfe_9jJ8izpYjwStjUEYZEe-58Y4",
      "n": "sG2bGXnk4f9x655IbRtG5xaR0IvJuFbDP7H0nog5vxDz13iVx3vGF2Q372dgSOpAwOtQQUOPZqOKQqXGsmTu1lKRu7myQW7EdQRMOGMcGqc1BvWPCEB1jME8VPJD0iLuWbS5hO2GcEkq-m-Mo-jPsf1W67XlE0O6OrtEXqwMZIglRNrFvHsQzZe_fuKp9ICNowK98t6Vpw0dR8ICjIZ4lhcIg6eWDb8p1-g3hAcrD0PCrXYGva9q79Ny9sPw1rhv4yb80R_TTAWO34y1swIPJQUxBuwC4CTZ4VLd4AFvVU5D1lk45yxfAHidF7BYhVWEnIwSLENfGbvcb2gkFSkjqw",
      "e": "AQAB"
    }
  ]
}
2022-11-28 05:44:22 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-11-28 05:44:22 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2022-11-28 05:44:22 SUCCESS
CheckDistinctKeyIdValueInServerJWKs
Distinct 'kid' value in all keys of server_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-11-28 05:44:22 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-11-28 05:44:22
StoreOriginalClientConfiguration
Created original_client_config object from the client configuration.
client_name
Ristretto Core Conformance Test Dynamic Client One
2022-11-28 05:44:22
ExtractClientNameFromStoredConfig
Extracted client_name from stored client configuration.
client_name
Ristretto Core Conformance Test Dynamic Client One
2022-11-28 05:44:22 SUCCESS
GenerateRS256ClientJWKs
Generated client JWKs
client_jwks
{
  "keys": [
    {
      "p": "91JKZvrHz1vmTCcqBtogsPWuNxOp2y34vT3UDwzmCb4vTLcZDxYd4jyGSZwlo3Arbpn_ub9yEoVZnmhFqh2__Dn4J4GTX4yURtdcAymvjDkR5ECozbJyNZ0J8Tmods8nPcaJQAYiMjTA6RcH5l19YOOqxhWFdp-2YvL572a33HU",
      "kty": "RSA",
      "q": "wYPWof8P2MrFFG62tqgAlWTDV8snIzXg9MhIfnEglOrJ1z31yi_ET99GBRg4r-TfTFzn_00WI61HLBXOCf-sUBd2oK--tmEEx1f7s3mD22NmwcXjCbBipOD9ASfbOKCnSf1XZq7cQKxKYHb64uTJzvofKm8lbc_xhkgeWTGiUYU",
      "d": "Yo8zCCD5xE2uy1yxccdZYNznpR7j-xX0tuHoajrIOM9W7J4at9-gU3PHbcMAvIZ4qhn3jZ1-4YgMpNo-Ej-n8vWJnjTVw5pjdm2Gg_G4G92Zit5FnoQTtZSzpG5pYotL7oVlmvCV9Xj-oxhAyEyhA88ZlelTmq3bfzt8-m5VdPNA3uUleAjLwMm6LG246hLGiC1n1Mf4WC9TMeXzzVEAMEuVCghXpCSwnSai7I3OvLSYmYKpcb7BXbPbY2j-45eskLTrR1H2PAGrxq3SZFpA1Nm-EUY8u_4vfb_XFz2qMsSv-Uy-0DJw-KaG9bw2R0WTRf4STzCilsMVgCE7gQXx4Q",
      "e": "AQAB",
      "use": "sig",
      "qi": "i_qseen99hu839I_9wU4jg9JiB1rIS9DiEiJB7qF-hJAvcOW0xagkH0wBa1ZZcTr_AgD4hyX9MH5JObGoNaUVamRPFIbizEh-At7H1xk8XkR_X_Z4iCp6tcq7P-j2xyVCMR70qicaBnWJqPX-TX8CJYuA1Jotyb72oLpVSjxoSo",
      "dp": "AjQxhYlmjmp7OuJ-dWEsOWd3DfaW5OUb-lO6uAedZSjUsxJOntvLmGCBsdY6X6J4QJwOs1EJazDVA5xaQpHRTCYYGAIHlipih98TatPMRKudhTMuTebxLZkgpY2l-qkN6HcEchWb6Gaf8XPLFjpvC5X7x5gZgF0b-vW_VGrN6KE",
      "alg": "RS256",
      "dq": "DxFj8gM5SakoRVoFkh1sxjUtXLWt23kDhiveMTI_1jid9MuXSuIDSDDbc-QZ7eBFXt3RFrj641ZHt3APNgoZcbcR_psQn4TYaWk5aRUqJjgMNURiVEvOsoXuTVu8HyGrRQCcAJvW_JYtyGsbR_WGnT4ulRBIes95P_p3mnxZ5j0",
      "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "alg": "RS256",
      "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
    }
  ]
}
2022-11-28 05:44:22 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-11-28 05:44:22
CreateEmptyDynamicRegistrationRequest
Created empty dynamic registration request
2022-11-28 05:44:22
AddClientNameToDynamicRegistrationRequest
Added client_name to registration request
client_name
Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE
2022-11-28 05:44:22
AddAuthorizationCodeGrantTypeToDynamicRegistrationRequest
Added 'authorization_code' to 'grant_types'
grant_types
[
  "authorization_code"
]
2022-11-28 05:44:22
AddImplicitGrantTypeToDynamicRegistrationRequest
Added 'implicit' to 'grant_types'
grant_types
[
  "authorization_code",
  "implicit"
]
2022-11-28 05:44:22
AddPublicJwksToDynamicRegistrationRequest
Added client public JWKS to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  }
}
2022-11-28 05:44:22
AddTokenEndpointAuthMethodToDynamicRegistrationRequestFromEnvironment
Added token endpoint auth method to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt"
}
2022-11-28 05:44:22
AddResponseTypesArrayToDynamicRegistrationRequestFromEnvironment
Added response_types array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt",
  "response_types": [
    "code token"
  ]
}
2022-11-28 05:44:22
AddRedirectUriToDynamicRegistrationRequest
Added redirect_uris array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt",
  "response_types": [
    "code token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"
  ]
}
2022-11-28 05:44:22
AddContactsToDynamicRegistrationRequest
Added contacts array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt",
  "response_types": [
    "code token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ]
}
2022-11-28 05:44:22
CreateRandomRequestUri
Created random URL for request_uri
request_uri
{
  "path": "requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP",
  "fullUrl": "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"
}
2022-11-28 05:44:22
AddRequestUriToDynamicRegistrationRequest
Added request_uris array to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt",
  "response_types": [
    "code token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ],
  "request_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"
  ]
}
2022-11-28 05:44:22
AddRequestObjectSigningAlgRS256ToDynamicRegistrationRequest
Added request_object_signing_alg to dynamic registration request
dynamic_registration_request
{
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "jwks": {
    "keys": [
      {
        "kty": "RSA",
        "e": "AQAB",
        "use": "sig",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
      }
    ]
  },
  "token_endpoint_auth_method": "private_key_jwt",
  "response_types": [
    "code token"
  ],
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"
  ],
  "contacts": [
    "certification@oidf.org"
  ],
  "request_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"
  ],
  "request_object_signing_alg": "RS256"
}
2022-11-28 05:44:22
CallDynamicRegistrationEndpoint
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register
request_method
POST
request_headers
{
  "accept": "application/json",
  "accept-charset": "utf-8",
  "content-type": "application/json",
  "content-length": "1004"
}
request_body
{"client_name":"Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE","grant_types":["authorization_code","implicit"],"jwks":{"keys":[{"kty":"RSA","e":"AQAB","use":"sig","alg":"RS256","n":"uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"}]},"token_endpoint_auth_method":"private_key_jwt","response_types":["code token"],"redirect_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"],"contacts":["certification@oidf.org"],"request_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"],"request_object_signing_alg":"RS256"}
2022-11-28 05:44:25 RESPONSE
CallDynamicRegistrationEndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-content-type-options": "nosniff",
  "cache-control": "no-store",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK50451508-26d1-4548-b615-cc95f79fb814",
  "pragma": "no-cache",
  "x-global-transaction-id": "efc5c28163844ab6374f2a91",
  "content-length": "1672",
  "date": "Mon, 28 Nov 2022 05:44:25 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:KRZrDA5YlM7k9BjW1ZeR60t4lY4AtbELHOxQXLpr5vs\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:61017047; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dEFA9CA72C1A26CB4C1A2766C41FF63FD~-1~YAAQXXYGF6Kt44SEAQAAL+XDvAioyuibHWhX9Nd7Y4XO/5/eYUvRtlz4PH2ZU7ptqTzhKt/4+Y81f80lQa6hEc+oo9Im82REIZwBxGnsIgfVVCMkm1MCdU29+UEsiXwwoNijH6LVRnCq17XNMP1EB/+Wu/6KqGJ4ezpJ8kXCbUquswXnMXodR12ppJYtBl09u3AP8r7kHQq5pFz9KJ7UOEiKk7lsUw6HSVw6ntCl6SL5dftrpFyGXLiW/6hSQdzmHyHB4c+NlugFkqwx3ckmShAGMnMLLlw3O9IAEyYhRPDk4otVwrd//yvdXIT1ATW/NMXshuVCOIE71IzX/n8zAqUtpj7A90rn7MdJZaxfaj+K6CmzCpUN5Q8+bMluFoPNhYB4qFk\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:25 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003dCC86478942C23C0A06410F536F4D3468~YAAQXXYGF6Ot44SEAQAAL+XDvBFcYG2lwrM9pSBZhTIacOTVKYZdPySbkfg0OqQhnSvS5cmMfPN/wVZ70RuEjycFQQv9QNLmSu/edzSOkfCVDkR+clT7HxyGg7Zeqb9cez5DzpL5yFy+Lfp2Ecob4/AW5J51tiLRGTtwDuIHfPS179b58e9ktRJc4eeg41xnUBQvVHmmIw/QKoca0xRzkgRCuxdcaLhQkN4IRqT9ORns8ZSlRnTWaG3nbUYdrOZSOzjC++rijiPOqZsqCIhoK6aiXnlF4CYQRzfn94cXSICCiD8N3fs983dYMwea~3752758~3617859; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:22 GMT; Max-Age\u003d14397; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d105",
    "origin; dur\u003d2962"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"all_users_entitled":true,"client_id":"cb94407a-e789-47c0-9222-ae169605861b","client_id_issued_at":"2022-11-28T05:44:23Z","client_name":"Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE","client_secret":"x1eKyPF8ag","client_secret_expires_at":0,"consent_action":"always_prompt","enforce_pkce":false,"grant_types":["authorization_code","implicit"],"id_token_map":[],"id_token_signed_response_alg":"RS256","initiate_login_uri":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com","jwks":{"keys":[{"use":"sig","kty":"RSA","alg":"RS256","n":"uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ","e":"AQAB"}]},"redirect_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"],"registration_access_token":"IftvMYVSNIxqF0P9DU3YMrcTBMirEy4QlfMnKCDd5Ew.mhyD7wM76itM3WatXfNao_-SQw_z3C48_crUS8DQKijF7QAqB5D7yprkdDDfM4_ukT9eju7KB0SG2IbCOwAjlg.M18xNjY5NjE0MjY1XzE4","registration_client_uri":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register/cb94407a-e789-47c0-9222-ae169605861b","request_object_signing_alg":"RS256","request_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"],"response_types":["code token"],"token_endpoint_auth_method":"private_key_jwt","token_map":[]}
2022-11-28 05:44:25
CallDynamicRegistrationEndpoint
Parsed registration endpoint response
status
201
endpoint_name
dynamic registration
headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-content-type-options": "nosniff",
  "cache-control": "no-store",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK50451508-26d1-4548-b615-cc95f79fb814",
  "pragma": "no-cache",
  "x-global-transaction-id": "efc5c28163844ab6374f2a91",
  "content-length": "1672",
  "date": "Mon, 28 Nov 2022 05:44:25 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:KRZrDA5YlM7k9BjW1ZeR60t4lY4AtbELHOxQXLpr5vs\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:61017047; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dEFA9CA72C1A26CB4C1A2766C41FF63FD~-1~YAAQXXYGF6Kt44SEAQAAL+XDvAioyuibHWhX9Nd7Y4XO/5/eYUvRtlz4PH2ZU7ptqTzhKt/4+Y81f80lQa6hEc+oo9Im82REIZwBxGnsIgfVVCMkm1MCdU29+UEsiXwwoNijH6LVRnCq17XNMP1EB/+Wu/6KqGJ4ezpJ8kXCbUquswXnMXodR12ppJYtBl09u3AP8r7kHQq5pFz9KJ7UOEiKk7lsUw6HSVw6ntCl6SL5dftrpFyGXLiW/6hSQdzmHyHB4c+NlugFkqwx3ckmShAGMnMLLlw3O9IAEyYhRPDk4otVwrd//yvdXIT1ATW/NMXshuVCOIE71IzX/n8zAqUtpj7A90rn7MdJZaxfaj+K6CmzCpUN5Q8+bMluFoPNhYB4qFk\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:25 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003dCC86478942C23C0A06410F536F4D3468~YAAQXXYGF6Ot44SEAQAAL+XDvBFcYG2lwrM9pSBZhTIacOTVKYZdPySbkfg0OqQhnSvS5cmMfPN/wVZ70RuEjycFQQv9QNLmSu/edzSOkfCVDkR+clT7HxyGg7Zeqb9cez5DzpL5yFy+Lfp2Ecob4/AW5J51tiLRGTtwDuIHfPS179b58e9ktRJc4eeg41xnUBQvVHmmIw/QKoca0xRzkgRCuxdcaLhQkN4IRqT9ORns8ZSlRnTWaG3nbUYdrOZSOzjC++rijiPOqZsqCIhoK6aiXnlF4CYQRzfn94cXSICCiD8N3fs983dYMwea~3752758~3617859; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:22 GMT; Max-Age\u003d14397; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d105",
    "origin; dur\u003d2962"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
body
{"all_users_entitled":true,"client_id":"cb94407a-e789-47c0-9222-ae169605861b","client_id_issued_at":"2022-11-28T05:44:23Z","client_name":"Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE","client_secret":"x1eKyPF8ag","client_secret_expires_at":0,"consent_action":"always_prompt","enforce_pkce":false,"grant_types":["authorization_code","implicit"],"id_token_map":[],"id_token_signed_response_alg":"RS256","initiate_login_uri":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com","jwks":{"keys":[{"use":"sig","kty":"RSA","alg":"RS256","n":"uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ","e":"AQAB"}]},"redirect_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"],"registration_access_token":"IftvMYVSNIxqF0P9DU3YMrcTBMirEy4QlfMnKCDd5Ew.mhyD7wM76itM3WatXfNao_-SQw_z3C48_crUS8DQKijF7QAqB5D7yprkdDDfM4_ukT9eju7KB0SG2IbCOwAjlg.M18xNjY5NjE0MjY1XzE4","registration_client_uri":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register/cb94407a-e789-47c0-9222-ae169605861b","request_object_signing_alg":"RS256","request_uris":["https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"],"response_types":["code token"],"token_endpoint_auth_method":"private_key_jwt","token_map":[]}
body_json
{
  "all_users_entitled": true,
  "client_id": "cb94407a-e789-47c0-9222-ae169605861b",
  "client_id_issued_at": "2022-11-28T05:44:23Z",
  "client_name": "Ristretto Core Conformance Test Dynamic Client One 3PnMliS6IElmJsE",
  "client_secret": "x1eKyPF8ag",
  "client_secret_expires_at": 0,
  "consent_action": "always_prompt",
  "enforce_pkce": false,
  "grant_types": [
    "authorization_code",
    "implicit"
  ],
  "id_token_map": [],
  "id_token_signed_response_alg": "RS256",
  "initiate_login_uri": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com",
  "jwks": {
    "keys": [
      {
        "use": "sig",
        "kty": "RSA",
        "alg": "RS256",
        "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ",
        "e": "AQAB"
      }
    ]
  },
  "redirect_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback"
  ],
  "registration_access_token": "IftvMYVSNIxqF0P9DU3YMrcTBMirEy4QlfMnKCDd5Ew.mhyD7wM76itM3WatXfNao_-SQw_z3C48_crUS8DQKijF7QAqB5D7yprkdDDfM4_ukT9eju7KB0SG2IbCOwAjlg.M18xNjY5NjE0MjY1XzE4",
  "registration_client_uri": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register/cb94407a-e789-47c0-9222-ae169605861b",
  "request_object_signing_alg": "RS256",
  "request_uris": [
    "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP#E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4"
  ],
  "response_types": [
    "code token"
  ],
  "token_endpoint_auth_method": "private_key_jwt",
  "token_map": []
}
2022-11-28 05:44:25 SUCCESS
EnsureContentTypeJson
endpoint_response Content-Type: header is application/json
2022-11-28 05:44:25 SUCCESS
EnsureHttpStatusCodeIs201
dynamic registration endpoint returned the expected http status
expected_status
201
http_status
201
2022-11-28 05:44:25 SUCCESS
CheckNoErrorFromDynamicRegistrationEndpoint
Dynamic registration endpoint did not return an error.
2022-11-28 05:44:25 SUCCESS
ExtractDynamicRegistrationResponse
Extracted client from dynamic registration response
client_id
cb94407a-e789-47c0-9222-ae169605861b
2022-11-28 05:44:25 SUCCESS
VerifyClientManagementCredentials
Verified dynamic registration management credentials
registration_client_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register/cb94407a-e789-47c0-9222-ae169605861b
registration_access_token
IftvMYVSNIxqF0P9DU3YMrcTBMirEy4QlfMnKCDd5Ew.mhyD7wM76itM3WatXfNao_-SQw_z3C48_crUS8DQKijF7QAqB5D7yprkdDDfM4_ukT9eju7KB0SG2IbCOwAjlg.M18xNjY5NjE0MjY1XzE4
2022-11-28 05:44:25
SetScopeInClientConfigurationToOpenId
Set scope in client configuration to "openid"
scope
openid
2022-11-28 05:44:25 SUCCESS
EnsureServerConfigurationSupportsPrivateKeyJwt
Found supported private_key_jwt method
method
private_key_jwt
2022-11-28 05:44:25 SUCCESS
SetProtectedResourceUrlToUserInfoEndpoint
userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.
protected_resource_url
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/userinfo
2022-11-28 05:44:25 SUCCESS
CheckDiscEndpointRequestUriParameterSupported
request_uri_parameter_supported has correct value
request_uri_parameter_supported
true
2022-11-28 05:44:25 SUCCESS
CheckDiscEndpointRequestObjectSigningAlgValuesSupportedContainsRS256
Contents of 'request_object_signing_alg_values_supported' in discovery document matches expectations.
actual
[
  "RS256",
  "RS384",
  "RS512",
  "PS256",
  "PS384",
  "PS512",
  "ES256",
  "ES384",
  "ES512"
]
expected
[
  "RS256"
]
minimum_matches_required
1
2022-11-28 05:44:25
oidcc-request-uri-signed-rs256
Setup Done
Make request to authorization endpoint
2022-11-28 05:44:25 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
cb94407a-e789-47c0-9222-ae169605861b
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
scope
openid
2022-11-28 05:44:25
CreateRandomStateValue
Created state value
requested_state_length
10
state
x09Z0Gelo3
2022-11-28 05:44:25 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
cb94407a-e789-47c0-9222-ae169605861b
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
scope
openid
state
x09Z0Gelo3
2022-11-28 05:44:25
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
eGi6p2VOz1
2022-11-28 05:44:25 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
cb94407a-e789-47c0-9222-ae169605861b
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
scope
openid
state
x09Z0Gelo3
nonce
eGi6p2VOz1
2022-11-28 05:44:25 SUCCESS
SetAuthorizationEndpointRequestResponseTypeFromEnvironment
Added response_type parameter to request
client_id
cb94407a-e789-47c0-9222-ae169605861b
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
scope
openid
state
x09Z0Gelo3
nonce
eGi6p2VOz1
response_type
code token
2022-11-28 05:44:25 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "cb94407a-e789-47c0-9222-ae169605861b",
  "redirect_uri": "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback",
  "scope": "openid",
  "state": "x09Z0Gelo3",
  "nonce": "eGi6p2VOz1",
  "response_type": "code token"
}
2022-11-28 05:44:25 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2
2022-11-28 05:44:25 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
cb94407a-e789-47c0-9222-ae169605861b
2022-11-28 05:44:25 SUCCESS
SignRequestObject
Signed the request object
claims
{
  "aud": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2",
  "scope": "openid",
  "iss": "cb94407a-e789-47c0-9222-ae169605861b",
  "response_type": "code token",
  "redirect_uri": "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback",
  "state": "x09Z0Gelo3",
  "nonce": "eGi6p2VOz1",
  "client_id": "cb94407a-e789-47c0-9222-ae169605861b"
}
header
{
  "alg": "RS256"
}
request_object
eyJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJodHRwczpcL1wvb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tXC9vYXV0aDIiLCJzY29wZSI6Im9wZW5pZCIsImlzcyI6ImNiOTQ0MDdhLWU3ODktNDdjMC05MjIyLWFlMTY5NjA1ODYxYiIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIHRva2VuIiwicmVkaXJlY3RfdXJpIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2lzdl9vcF9vaWRjX2NvcmVfdGVzdFwvY2FsbGJhY2siLCJzdGF0ZSI6IngwOVowR2VsbzMiLCJub25jZSI6ImVHaTZwMlZPejEiLCJjbGllbnRfaWQiOiJjYjk0NDA3YS1lNzg5LTQ3YzAtOTIyMi1hZTE2OTYwNTg2MWIifQ.iLI9hyZrNE_TQ8xBqShE-CdmbGK7F6jsX0TnDnP9mHTs6s1Zkj9g90qz9Mbz7AshnrbVNICxG8SC3QSCvO04J4oWSomsbIiwQf-5z1rtdCIcw324XkZaP-dwEtiXqAgC30CWWM_jQ310c2AfwKxh_fE11wYNmTTu29-r9ASAi5T-yFzj9gjBCgfu6IpanCM7E2qHnzDBb8VkrDKAimlmwwqC_1gT2VcU6vkyHU-8UudgZVyPmafo4zKhLZASb1HF7MpbY3Z7nUHE5lcGWkWlKeAHg9V0PPrzZ7AAOF8R1yfPym0wLics-cH6ClzSLh0_AyAbd461b2aVZ9Ow62Q4Pw
key
{
  "p": "91JKZvrHz1vmTCcqBtogsPWuNxOp2y34vT3UDwzmCb4vTLcZDxYd4jyGSZwlo3Arbpn_ub9yEoVZnmhFqh2__Dn4J4GTX4yURtdcAymvjDkR5ECozbJyNZ0J8Tmods8nPcaJQAYiMjTA6RcH5l19YOOqxhWFdp-2YvL572a33HU",
  "kty": "RSA",
  "q": "wYPWof8P2MrFFG62tqgAlWTDV8snIzXg9MhIfnEglOrJ1z31yi_ET99GBRg4r-TfTFzn_00WI61HLBXOCf-sUBd2oK--tmEEx1f7s3mD22NmwcXjCbBipOD9ASfbOKCnSf1XZq7cQKxKYHb64uTJzvofKm8lbc_xhkgeWTGiUYU",
  "d": "Yo8zCCD5xE2uy1yxccdZYNznpR7j-xX0tuHoajrIOM9W7J4at9-gU3PHbcMAvIZ4qhn3jZ1-4YgMpNo-Ej-n8vWJnjTVw5pjdm2Gg_G4G92Zit5FnoQTtZSzpG5pYotL7oVlmvCV9Xj-oxhAyEyhA88ZlelTmq3bfzt8-m5VdPNA3uUleAjLwMm6LG246hLGiC1n1Mf4WC9TMeXzzVEAMEuVCghXpCSwnSai7I3OvLSYmYKpcb7BXbPbY2j-45eskLTrR1H2PAGrxq3SZFpA1Nm-EUY8u_4vfb_XFz2qMsSv-Uy-0DJw-KaG9bw2R0WTRf4STzCilsMVgCE7gQXx4Q",
  "e": "AQAB",
  "use": "sig",
  "qi": "i_qseen99hu839I_9wU4jg9JiB1rIS9DiEiJB7qF-hJAvcOW0xagkH0wBa1ZZcTr_AgD4hyX9MH5JObGoNaUVamRPFIbizEh-At7H1xk8XkR_X_Z4iCp6tcq7P-j2xyVCMR70qicaBnWJqPX-TX8CJYuA1Jotyb72oLpVSjxoSo",
  "dp": "AjQxhYlmjmp7OuJ-dWEsOWd3DfaW5OUb-lO6uAedZSjUsxJOntvLmGCBsdY6X6J4QJwOs1EJazDVA5xaQpHRTCYYGAIHlipih98TatPMRKudhTMuTebxLZkgpY2l-qkN6HcEchWb6Gaf8XPLFjpvC5X7x5gZgF0b-vW_VGrN6KE",
  "alg": "RS256",
  "dq": "DxFj8gM5SakoRVoFkh1sxjUtXLWt23kDhiveMTI_1jid9MuXSuIDSDDbc-QZ7eBFXt3RFrj641ZHt3APNgoZcbcR_psQn4TYaWk5aRUqJjgMNURiVEvOsoXuTVu8HyGrRQCcAJvW_JYtyGsbR_WGnT4ulRBIes95P_p3mnxZ5j0",
  "n": "uvRojwEgH1pnl-CPUayIVlpe4wwlHyY3jFdtcKnnhAy-EcphKy93kYoIGkcIGkDqnsqW4o_tQu4R96nVcXP5y5xUu9XiRrAxNJmuW43dGRJfDZ4Mobf3THRtjRufFxQRjy1cucJFMNnP3kN0pS8mOMINOePic2Rx94ur7j3apoyPlMbkpfQUC71BmZEr8FKRULySjAF5r6XLWA4K5qPNZO_fo2o8V5_e_K_t7gj2VNCPaXOMU_JiTYTddJxDid-XhyIjMtOZ77sq2QDpOzC3Z8srCNhw_N43IEMAAfdnTPGoOAj1wlNbJZ-I5L2vTowVxEfBhXmLBy3GIiUZcVCNyQ"
}
2022-11-28 05:44:25 SUCCESS
BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/authorize?request_uri=https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP%23E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4&client_id=cb94407a-e789-47c0-9222-ae169605861b&redirect_uri=https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback&scope=openid&response_type=code%20token
2022-11-28 05:44:25 REDIRECT
oidcc-request-uri-signed-rs256
Redirecting to authorization endpoint
redirect_to
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/authorize?request_uri=https://www.certification.openid.net/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP%23E2NqWUwsZ4DBxIXnva1_Po1Poymfb4aJHXacdX_vKb4&client_id=cb94407a-e789-47c0-9222-ae169605861b&redirect_uri=https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback&scope=openid&response_type=code%20token
2022-11-28 05:44:28 INCOMING
oidcc-request-uri-signed-rs256
Incoming HTTP request to /test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/isv_op_oidc_core_test/requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2022-11-28 05:44:28 OUTGOING
oidcc-request-uri-signed-rs256
Response to HTTP request to test instance 3PnMliS6IElmJsE
outgoing_status_code
200
outgoing_headers
{
  "Content-Type": [
    "application/jose"
  ]
}
outgoing_body
eyJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJodHRwczpcL1wvb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tXC9vYXV0aDIiLCJzY29wZSI6Im9wZW5pZCIsImlzcyI6ImNiOTQ0MDdhLWU3ODktNDdjMC05MjIyLWFlMTY5NjA1ODYxYiIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIHRva2VuIiwicmVkaXJlY3RfdXJpIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2lzdl9vcF9vaWRjX2NvcmVfdGVzdFwvY2FsbGJhY2siLCJzdGF0ZSI6IngwOVowR2VsbzMiLCJub25jZSI6ImVHaTZwMlZPejEiLCJjbGllbnRfaWQiOiJjYjk0NDA3YS1lNzg5LTQ3YzAtOTIyMi1hZTE2OTYwNTg2MWIifQ.iLI9hyZrNE_TQ8xBqShE-CdmbGK7F6jsX0TnDnP9mHTs6s1Zkj9g90qz9Mbz7AshnrbVNICxG8SC3QSCvO04J4oWSomsbIiwQf-5z1rtdCIcw324XkZaP-dwEtiXqAgC30CWWM_jQ310c2AfwKxh_fE11wYNmTTu29-r9ASAi5T-yFzj9gjBCgfu6IpanCM7E2qHnzDBb8VkrDKAimlmwwqC_1gT2VcU6vkyHU-8UudgZVyPmafo4zKhLZASb1HF7MpbY3Z7nUHE5lcGWkWlKeAHg9V0PPrzZ7AAOF8R1yfPym0wLics-cH6ClzSLh0_AyAbd461b2aVZ9Ow62Q4Pw
outgoing_path
requesturi/RvscW3FYsV8691WJF30jGjaVdwQgVpPWfoB7MHx2W9hH1GievqWGy3Pz04cCHRFP
2022-11-28 05:44:31 INCOMING
oidcc-request-uri-signed-rs256
Incoming HTTP request to /test/a/isv_op_oidc_core_test/callback
incoming_headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"107\", \"Chromium\";v\u003d\"107\", \"Not\u003dA?Brand\";v\u003d\"24\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9,zh-CN;q\u003d0.8,zh;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; __utma\u003d201319536.1094656506.1667372526.1669192421.1669574146.18; __utmz\u003d201319536.1669574146.18.4.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003d3F138883B59A4562B9987C6E0F96FA4F",
  "connection": "close"
}
incoming_path
/test/a/isv_op_oidc_core_test/callback
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2022-11-28 05:44:31 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/cE712Qu3ArOVmrzMlscZ",
  "fullUrl": "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/implicit/cE712Qu3ArOVmrzMlscZ"
}
2022-11-28 05:44:31 OUTGOING
oidcc-request-uri-signed-rs256
Response to HTTP request to test instance 3PnMliS6IElmJsE
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/isv_op_oidc_core_test/implicit/cE712Qu3ArOVmrzMlscZ, returnUrl=/log-detail.html?log=3PnMliS6IElmJsE}]
outgoing_path
callback
2022-11-28 05:44:31 INCOMING
oidcc-request-uri-signed-rs256
Incoming HTTP request to /test/a/isv_op_oidc_core_test/implicit/cE712Qu3ArOVmrzMlscZ
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"107\", \"Chromium\";v\u003d\"107\", \"Not\u003dA?Brand\";v\u003d\"24\"",
  "accept": "*/*",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36",
  "sec-ch-ua-platform": "\"Windows\"",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9,zh-CN;q\u003d0.8,zh;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; __utma\u003d201319536.1094656506.1667372526.1669192421.1669574146.18; __utmz\u003d201319536.1669574146.18.4.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003d3F138883B59A4562B9987C6E0F96FA4F",
  "connection": "close",
  "content-length": "441"
}
incoming_path
/test/a/isv_op_oidc_core_test/implicit/cE712Qu3ArOVmrzMlscZ
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
#access_token=kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4&code=Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g&expires_in=7200&iss=https%3A%2F%2Foidc-conformance.rel.verify.ibmcloudsecurity.com%2Foauth2&scope=openid&state=x09Z0Gelo3&token_type=bearer
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2022-11-28 05:44:31 OUTGOING
oidcc-request-uri-signed-rs256
Response to HTTP request to test instance 3PnMliS6IElmJsE
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/cE712Qu3ArOVmrzMlscZ
2022-11-28 05:44:31
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "access_token",
    "value": "kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4"
  },
  {
    "name": "code",
    "value": "Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g"
  },
  {
    "name": "expires_in",
    "value": "7200"
  },
  {
    "name": "iss",
    "value": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2"
  },
  {
    "name": "scope",
    "value": "openid"
  },
  {
    "name": "state",
    "value": "x09Z0Gelo3"
  },
  {
    "name": "token_type",
    "value": "bearer"
  }
]
2022-11-28 05:44:31 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
access_token
kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4
code
Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g
expires_in
7200
iss
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2
scope
openid
state
x09Z0Gelo3
token_type
bearer
2022-11-28 05:44:31 REDIRECT-IN
oidcc-request-uri-signed-rs256
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"107\", \"Chromium\";v\u003d\"107\", \"Not\u003dA?Brand\";v\u003d\"24\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9,zh-CN;q\u003d0.8,zh;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; __utma\u003d201319536.1094656506.1667372526.1669192421.1669574146.18; __utmz\u003d201319536.1669574146.18.4.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003d3F138883B59A4562B9987C6E0F96FA4F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "x-forwarded-proto": "https",
  "x-forwarded-port": "443",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "access_token": "kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4",
  "code": "Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g",
  "expires_in": "7200",
  "iss": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2",
  "scope": "openid",
  "state": "x09Z0Gelo3",
  "token_type": "bearer"
}
post_body
Verify authorization endpoint response
2022-11-28 05:44:31 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2022-11-28 05:44:31 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2022-11-28 05:44:31 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2022-11-28 05:44:31 SUCCESS
ValidateIssInAuthorizationResponse
'iss' parameter in authorization response matches server's issuer value.
2022-11-28 05:44:31 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2022-11-28 05:44:31 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
x09Z0Gelo3
2022-11-28 05:44:31 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g
2022-11-28 05:44:31 SUCCESS
ExtractAccessTokenFromAuthorizationResponse
Extracted the access token
value
kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4
type
bearer
Userinfo endpoint tests
2022-11-28 05:44:31
CallProtectedResource
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/userinfo
request_method
GET
request_headers
{
  "accept": "application/json",
  "authorization": "bearer kVAfubvr8QxiExfK1tLQKSsUfiKXWXy87HjZYDQMFmA.2QLhoATDedrlsDWbvx3J6kWkv0_LGPYPxPcmBLZuwE3qfrYMiZzwaB9L4xf0VlilLaPXQFn9AahK3ZREWwAYdg.M18xNjY5NjE0MjcwXzE4",
  "content-length": "0"
}
request_body

                                
2022-11-28 05:44:32 RESPONSE
CallProtectedResource
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK0043b3ee-4e7f-49bd-bfa3-99b116666a3e",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844abf21ace745",
  "content-length": "324",
  "date": "Mon, 28 Nov 2022 05:44:32 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:NF0faMpc7odMIbquUvd88PBDdgU6sJ/vDEBiwRG/Dt8\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:61017047; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dD2F70E07DAB3DBB3E8D2ED62F012C9E5~-1~YAAQXXYGFz2u44SEAQAAV/7DvAiNwIuj7625gvspfSUuYJHCvXNYEp1XWp2ctiXTxij5jzy06nPa4SsgOf6LWpI5qN8XPUifbeWBkwcTATiYB5AaP7NAbfzMmzzVa7dAJJdILnV1oh81fzfyLapLvKMOb/b6uvfd1CcPpjHzgR5Q728Oks6dCercYtf4B2lxOJLirooOvlx5QPwrP8RPvfaIm+tq99CRi+6XlM2N798SJdDWiLgvGEiQ/VoPMvI6EIA/IjfX3zTylN+mmrv2uto52jhFs1v0e+2wE+PS66+Up1mwsWVLAmTDUYzReRFsT4SRshITo2gHCL+vNzVCQnxwxcgIa3n4ddNmv97rgrTQXCK210J7r/BbD5MvRul1O+MUJpk\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:32 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003dF292677A06B0912B8CBFCD2A8CAA40A4~YAAQXXYGFz6u44SEAQAAV/7DvBE8WP/pE23l3hTbWTO0pBg6B/5mtHsHJ/WFiw5NhIGt3+NrT2r3C7y7DYqiV2qXaK2yiwmPxTM3bSkOpLAX/WzyIR+EKx3Oluphn5lr/d+31+l7k/JZfZZJcyci2Z5JBT+P8jjBFUfTkHXmjkYnWUUivRA9HzjyTGoi58s5C0+POjO5XTdzQtbbaSS/t5k+30zKCbBPUKx5xhC/T6M0f7YsAyP6dU3ALtYPdT0nmfP40xnXlxPuxHYMbgvuu6wKL5nxo/ThNCWqZKCa1da5ugUB1pBl90WtvKEI~3552566~4405555; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:31 GMT; Max-Age\u003d14399; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d92",
    "origin; dur\u003d129"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"acr":"urn:ibm:security:policy:id:1","amr":["password"],"aud":["cb94407a-e789-47c0-9222-ae169605861b"],"auth_time":1669613807,"iss":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2","name":"ISV Dev","preferred_username":"isvdev@ibm.com","rat":1669614268,"realmName":"cloudIdentityRealm","sub":"6160017N67"}
2022-11-28 05:44:32 SUCCESS
CallProtectedResource
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK0043b3ee-4e7f-49bd-bfa3-99b116666a3e",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844abf21ace745",
  "content-length": "324",
  "date": "Mon, 28 Nov 2022 05:44:32 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:NF0faMpc7odMIbquUvd88PBDdgU6sJ/vDEBiwRG/Dt8\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:61017047; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dD2F70E07DAB3DBB3E8D2ED62F012C9E5~-1~YAAQXXYGFz2u44SEAQAAV/7DvAiNwIuj7625gvspfSUuYJHCvXNYEp1XWp2ctiXTxij5jzy06nPa4SsgOf6LWpI5qN8XPUifbeWBkwcTATiYB5AaP7NAbfzMmzzVa7dAJJdILnV1oh81fzfyLapLvKMOb/b6uvfd1CcPpjHzgR5Q728Oks6dCercYtf4B2lxOJLirooOvlx5QPwrP8RPvfaIm+tq99CRi+6XlM2N798SJdDWiLgvGEiQ/VoPMvI6EIA/IjfX3zTylN+mmrv2uto52jhFs1v0e+2wE+PS66+Up1mwsWVLAmTDUYzReRFsT4SRshITo2gHCL+vNzVCQnxwxcgIa3n4ddNmv97rgrTQXCK210J7r/BbD5MvRul1O+MUJpk\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:32 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003dF292677A06B0912B8CBFCD2A8CAA40A4~YAAQXXYGFz6u44SEAQAAV/7DvBE8WP/pE23l3hTbWTO0pBg6B/5mtHsHJ/WFiw5NhIGt3+NrT2r3C7y7DYqiV2qXaK2yiwmPxTM3bSkOpLAX/WzyIR+EKx3Oluphn5lr/d+31+l7k/JZfZZJcyci2Z5JBT+P8jjBFUfTkHXmjkYnWUUivRA9HzjyTGoi58s5C0+POjO5XTdzQtbbaSS/t5k+30zKCbBPUKx5xhC/T6M0f7YsAyP6dU3ALtYPdT0nmfP40xnXlxPuxHYMbgvuu6wKL5nxo/ThNCWqZKCa1da5ugUB1pBl90WtvKEI~3552566~4405555; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:31 GMT; Max-Age\u003d14399; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d92",
    "origin; dur\u003d129"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
body
{"acr":"urn:ibm:security:policy:id:1","amr":["password"],"aud":["cb94407a-e789-47c0-9222-ae169605861b"],"auth_time":1669613807,"iss":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2","name":"ISV Dev","preferred_username":"isvdev@ibm.com","rat":1669614268,"realmName":"cloudIdentityRealm","sub":"6160017N67"}
2022-11-28 05:44:32 SUCCESS
EnsureHttpStatusCodeIs200
resource endpoint returned the expected http status
expected_status
200
http_status
200
2022-11-28 05:44:32 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
Created token endpoint request
grant_type
authorization_code
code
Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
2022-11-28 05:44:32 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
cb94407a-e789-47c0-9222-ae169605861b
sub
cb94407a-e789-47c0-9222-ae169605861b
aud
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/token
jti
kYMi1Dzb77EMnTjT5tKY
iat
1669614272
exp
1669614332
2022-11-28 05:44:32 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiJjYjk0NDA3YS1lNzg5LTQ3YzAtOTIyMi1hZTE2OTYwNTg2MWIiLCJhdWQiOiJodHRwczpcL1wvb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tXC9vYXV0aDJcL3Rva2VuIiwiaXNzIjoiY2I5NDQwN2EtZTc4OS00N2MwLTkyMjItYWUxNjk2MDU4NjFiIiwiZXhwIjoxNjY5NjE0MzMyLCJpYXQiOjE2Njk2MTQyNzIsImp0aSI6ImtZTWkxRHpiNzdFTW5UalQ1dEtZIn0.rIykdc1NOWK33s4H2tA5z0FMSIW111pRGTWOIMh6rrfJv0kdKE_4v4OIlx1Ju3bjarKnKB4IJCVqbW5KTjla3GQjUQt-sRxg-KXzE-ogJInlOUZSvpM8Jr0Mj4SgnMOjQEmT-DLIBoJmK8hECVSJoetkNikHznMOgb7qfsizpD8HZuak6As6ga4wnoutR-0poU7m6VUjcszjF-Yvf1g6xYbCXuaGaRx3471UlPs6iUgZhyMiFjBJXJ01soE25ydEPDeMYNmmzidsSPqa0w0cWHzxVNURe6pA60iIYCz-N7K1GY1Ph8rhpriBx9HEBl4m-33bnKiOsl_Y-7KDLn0j3w
2022-11-28 05:44:32
AddClientAssertionToTokenEndpointRequest
Added client assertion
grant_type
authorization_code
code
Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g
redirect_uri
https://www.certification.openid.net/test/a/isv_op_oidc_core_test/callback
client_assertion
eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiJjYjk0NDA3YS1lNzg5LTQ3YzAtOTIyMi1hZTE2OTYwNTg2MWIiLCJhdWQiOiJodHRwczpcL1wvb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tXC9vYXV0aDJcL3Rva2VuIiwiaXNzIjoiY2I5NDQwN2EtZTc4OS00N2MwLTkyMjItYWUxNjk2MDU4NjFiIiwiZXhwIjoxNjY5NjE0MzMyLCJpYXQiOjE2Njk2MTQyNzIsImp0aSI6ImtZTWkxRHpiNzdFTW5UalQ1dEtZIn0.rIykdc1NOWK33s4H2tA5z0FMSIW111pRGTWOIMh6rrfJv0kdKE_4v4OIlx1Ju3bjarKnKB4IJCVqbW5KTjla3GQjUQt-sRxg-KXzE-ogJInlOUZSvpM8Jr0Mj4SgnMOjQEmT-DLIBoJmK8hECVSJoetkNikHznMOgb7qfsizpD8HZuak6As6ga4wnoutR-0poU7m6VUjcszjF-Yvf1g6xYbCXuaGaRx3471UlPs6iUgZhyMiFjBJXJ01soE25ydEPDeMYNmmzidsSPqa0w0cWHzxVNURe6pA60iIYCz-N7K1GY1Ph8rhpriBx9HEBl4m-33bnKiOsl_Y-7KDLn0j3w
client_assertion_type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-11-28 05:44:32
CallTokenEndpoint
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/token
request_method
POST
request_headers
{
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "1051"
}
request_body
grant_type=authorization_code&code=Ocp5YnAQzweTLaNGodW91Yi-eOSFtidYkt6l89oF4zM.zXALHWJh_nbuv3pw-9nIWQbyptIbNItSZnkCcsA-MsaIQ2IavfKS9EFPQnX96nbZmfxg9X_R0Qne632eC4Of8g&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fisv_op_oidc_core_test%2Fcallback&client_assertion=eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiJjYjk0NDA3YS1lNzg5LTQ3YzAtOTIyMi1hZTE2OTYwNTg2MWIiLCJhdWQiOiJodHRwczpcL1wvb2lkYy1jb25mb3JtYW5jZS5yZWwudmVyaWZ5LmlibWNsb3Vkc2VjdXJpdHkuY29tXC9vYXV0aDJcL3Rva2VuIiwiaXNzIjoiY2I5NDQwN2EtZTc4OS00N2MwLTkyMjItYWUxNjk2MDU4NjFiIiwiZXhwIjoxNjY5NjE0MzMyLCJpYXQiOjE2Njk2MTQyNzIsImp0aSI6ImtZTWkxRHpiNzdFTW5UalQ1dEtZIn0.rIykdc1NOWK33s4H2tA5z0FMSIW111pRGTWOIMh6rrfJv0kdKE_4v4OIlx1Ju3bjarKnKB4IJCVqbW5KTjla3GQjUQt-sRxg-KXzE-ogJInlOUZSvpM8Jr0Mj4SgnMOjQEmT-DLIBoJmK8hECVSJoetkNikHznMOgb7qfsizpD8HZuak6As6ga4wnoutR-0poU7m6VUjcszjF-Yvf1g6xYbCXuaGaRx3471UlPs6iUgZhyMiFjBJXJ01soE25ydEPDeMYNmmzidsSPqa0w0cWHzxVNURe6pA60iIYCz-N7K1GY1Ph8rhpriBx9HEBl4m-33bnKiOsl_Y-7KDLn0j3w&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-11-28 05:44:32 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-content-type-options": "nosniff",
  "cache-control": "no-store",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AK7912893d-0ac9-464a-8c19-773e8bd96053",
  "pragma": "no-cache",
  "x-global-transaction-id": "efc5c28163844ac021ae44e5",
  "content-length": "1281",
  "date": "Mon, 28 Nov 2022 05:44:32 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:xhMlUWdlbHt8ZYEAe2sPoMzObTG0h2zbcfxPV3OC//A\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:57871319; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dEDAB4E371E0913FB8E1ABDC3757DBC20~-1~YAAQXXYGF0au44SEAQAA0//DvAgN1gqT+adc9DJFzKvB+DTk7mcwxa2/Or7HOEXjVG0AiS4S/nXMhVTtBmsM2fqVAJo3U9cDsE0gRUpCb2iuFC4K6I88GGSLpAEubsZcpzR6L48HhsKTzidCPSzqLTxM5he730V6z8m9LP/QXbWINkamRxeS9kyIpFQzNh8BailHEOIqNmwvS4AJwBUYay7O82ZA36VfUqUS9yKusyJNGK1GxEhl0rt33tH5couA7bAdFC3pgcUnpHaDZEuWB4ZtkXMsdtB1ah7gGIRsNB8z8W4f9rtrvn1tvTsXi7CMGXbfZ+GUsVlLru0TcQ5ucUiOiLF4BbzrxGToV/XK6e4Hc8kArkLYcKOa6oARDQK8xvIbcG0\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:32 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003d7209A1B6CAD6F6D586C009FA47DD2B25~YAAQXXYGF0eu44SEAQAA0//DvBHLGo/eFpiHQJHMg7hdVZScje/NHI1lWbEJ1QX3gV7KzAvAhdqTpWERAdbiUiY/+OH74MT3fYRz4syClXTUy4HUjtAXZAHhacBJ6KiJVyyGjqhIp7DaF+q0KqoEMOBm+38HGowvTwPj539PT0QcPIfQ0Y82jRkcBVV8RdNx0OFAto4/ntjnU0qYH/ixX4Wh16fGZkLL8vlSS13Dr6QSzehBaT03KQFSiul0xT4EIQQZNEkvWjQ/0cMIb6bgis7ynVs6wbKzSUccsPgWjO9HX8Xj2nFG4BhZQixD~3687492~4337718; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:32 GMT; Max-Age\u003d14400; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d111",
    "origin; dur\u003d185"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"access_token":"E7pQUZ0u2HEGqCPxCfva39FyVFX482naxBQiSvhR1zM.aNJ7vj_ybcOfzqNMlF534O7xCbDjNUZ14PNYdtCaRJLo4_9ASXT7Nxy01uMKEwFMt9k6Sb0NVKIAlBx2cqEGDQ.M18xNjY5NjE0MjcyXzE4","expires_in":7199,"id_token":"eyJhbGciOiJSUzI1NiIsImtpZCI6InNlcnZlciJ9.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.Q9HFZLmz8l-UnoLtucgUHTiS7JwBM8MfAfSyJTAiD8MeVdA_QJB0ieDyAnNWixddCHpogNJvaMTDskNrKhpfjeHKVyjXnvsxQwiJIMx_uJBDqhaad35qz18IUDfMImpNAbOWygX1oceDV4MnVMK80zXG3PB31EyhdiUYfvMVMes2Ooxrtf_1izxWrnGyKHqFILisddvPMuW8mu98wVwcbuECfott7fp7L96SeOJAL84En1CFWJzGwcyyiR691xIJ2wy4X-oYztSpaKcUV-Rwkt5Tvgin4KQpbo-6s-h4jzC9VF-XQeMhE2D89TX2YEQQ5ZDpW2XUiKwnVtBGkjQtJA","scope":"openid","token_type":"bearer"}
2022-11-28 05:44:32 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
E7pQUZ0u2HEGqCPxCfva39FyVFX482naxBQiSvhR1zM.aNJ7vj_ybcOfzqNMlF534O7xCbDjNUZ14PNYdtCaRJLo4_9ASXT7Nxy01uMKEwFMt9k6Sb0NVKIAlBx2cqEGDQ.M18xNjY5NjE0MjcyXzE4
expires_in
7199
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6InNlcnZlciJ9.eyJhY3IiOiJ1cm46aWJtOnNlY3VyaXR5OnBvbGljeTppZDoxIiwiYW1yIjpbInBhc3N3b3JkIl0sImF0X2hhc2giOiJUQUgyOEg3eENpSnVWaWF6VEtCTFp3IiwiYXVkIjpbImNiOTQ0MDdhLWU3ODktNDdjMC05MjIyLWFlMTY5NjA1ODYxYiJdLCJhdXRoX3RpbWUiOjE2Njk2MTM4MDcsImV4cCI6MTY2OTYyMTQ3MiwiaWF0IjoxNjY5NjE0MjcyLCJpc3MiOiJodHRwczovL29pZGMtY29uZm9ybWFuY2UucmVsLnZlcmlmeS5pYm1jbG91ZHNlY3VyaXR5LmNvbS9vYXV0aDIiLCJqdGkiOiI2ODMwOTEzNy05MGYxLTRiMGUtODQxYy1hMGI4MDRjMTkzZTIiLCJuYW1lIjoiSVNWIERldiIsIm5vbmNlIjoiZUdpNnAyVk96MSIsInByZWZlcnJlZF91c2VybmFtZSI6ImlzdmRldkBpYm0uY29tIiwicmF0IjoxNjY5NjE0MjY4LCJyZWFsbU5hbWUiOiJjbG91ZElkZW50aXR5UmVhbG0iLCJzX2hhc2giOiJqT1FQU29KMGRNbEcwU3dNdFkyVGNnIiwic3ViIjoiNjE2MDAxN042NyJ9.Q9HFZLmz8l-UnoLtucgUHTiS7JwBM8MfAfSyJTAiD8MeVdA_QJB0ieDyAnNWixddCHpogNJvaMTDskNrKhpfjeHKVyjXnvsxQwiJIMx_uJBDqhaad35qz18IUDfMImpNAbOWygX1oceDV4MnVMK80zXG3PB31EyhdiUYfvMVMes2Ooxrtf_1izxWrnGyKHqFILisddvPMuW8mu98wVwcbuECfott7fp7L96SeOJAL84En1CFWJzGwcyyiR691xIJ2wy4X-oYztSpaKcUV-Rwkt5Tvgin4KQpbo-6s-h4jzC9VF-XQeMhE2D89TX2YEQQ5ZDpW2XUiKwnVtBGkjQtJA
scope
openid
token_type
bearer
2022-11-28 05:44:32 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2022-11-28 05:44:32 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
E7pQUZ0u2HEGqCPxCfva39FyVFX482naxBQiSvhR1zM.aNJ7vj_ybcOfzqNMlF534O7xCbDjNUZ14PNYdtCaRJLo4_9ASXT7Nxy01uMKEwFMt9k6Sb0NVKIAlBx2cqEGDQ.M18xNjY5NjE0MjcyXzE4
2022-11-28 05:44:32 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
E7pQUZ0u2HEGqCPxCfva39FyVFX482naxBQiSvhR1zM.aNJ7vj_ybcOfzqNMlF534O7xCbDjNUZ14PNYdtCaRJLo4_9ASXT7Nxy01uMKEwFMt9k6Sb0NVKIAlBx2cqEGDQ.M18xNjY5NjE0MjcyXzE4
type
bearer
2022-11-28 05:44:32 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
7199
2022-11-28 05:44:32 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
7199
2022-11-28 05:44:32 INFO
CheckForRefreshTokenValue
Couldn't find refresh token
2022-11-28 05:44:32 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJSUzI1NiIsImtpZCI6InNlcnZlciJ9.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.Q9HFZLmz8l-UnoLtucgUHTiS7JwBM8MfAfSyJTAiD8MeVdA_QJB0ieDyAnNWixddCHpogNJvaMTDskNrKhpfjeHKVyjXnvsxQwiJIMx_uJBDqhaad35qz18IUDfMImpNAbOWygX1oceDV4MnVMK80zXG3PB31EyhdiUYfvMVMes2Ooxrtf_1izxWrnGyKHqFILisddvPMuW8mu98wVwcbuECfott7fp7L96SeOJAL84En1CFWJzGwcyyiR691xIJ2wy4X-oYztSpaKcUV-Rwkt5Tvgin4KQpbo-6s-h4jzC9VF-XQeMhE2D89TX2YEQQ5ZDpW2XUiKwnVtBGkjQtJA
header
{
  "kid": "server",
  "alg": "RS256"
}
claims
{
  "at_hash": "TAH28H7xCiJuViazTKBLZw",
  "sub": "6160017N67",
  "rat": 1669614268,
  "realmName": "cloudIdentityRealm",
  "amr": [
    "password"
  ],
  "iss": "https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2",
  "preferred_username": "isvdev@ibm.com",
  "nonce": "eGi6p2VOz1",
  "acr": "urn:ibm:security:policy:id:1",
  "aud": "cb94407a-e789-47c0-9222-ae169605861b",
  "s_hash": "jOQPSoJ0dMlG0SwMtY2Tcg",
  "auth_time": 1669613807,
  "name": "ISV Dev",
  "exp": 1669621472,
  "iat": 1669614272,
  "jti": "68309137-90f1-4b0e-841c-a0b804c193e2"
}
2022-11-28 05:44:32 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2022-11-28 05:44:32
ValidateIdTokenStandardClaims
sub is a string with content
2022-11-28 05:44:32
ValidateIdTokenStandardClaims
Skipping unknown claim: rat
2022-11-28 05:44:32
ValidateIdTokenStandardClaims
Skipping unknown claim: realmName
2022-11-28 05:44:32
ValidateIdTokenStandardClaims
preferred_username is a string with content
2022-11-28 05:44:32
ValidateIdTokenStandardClaims
name is a string with content
2022-11-28 05:44:32 SUCCESS
ValidateIdTokenStandardClaims
id_token claims are valid
2022-11-28 05:44:32 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
eGi6p2VOz1
2022-11-28 05:44:32 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2022-11-28 05:44:32 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6InNlcnZlciJ9.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.Q9HFZLmz8l-UnoLtucgUHTiS7JwBM8MfAfSyJTAiD8MeVdA_QJB0ieDyAnNWixddCHpogNJvaMTDskNrKhpfjeHKVyjXnvsxQwiJIMx_uJBDqhaad35qz18IUDfMImpNAbOWygX1oceDV4MnVMK80zXG3PB31EyhdiUYfvMVMes2Ooxrtf_1izxWrnGyKHqFILisddvPMuW8mu98wVwcbuECfott7fp7L96SeOJAL84En1CFWJzGwcyyiR691xIJ2wy4X-oYztSpaKcUV-Rwkt5Tvgin4KQpbo-6s-h4jzC9VF-XQeMhE2D89TX2YEQQ5ZDpW2XUiKwnVtBGkjQtJA
2022-11-28 05:44:32 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJSUzI1NiIsImtpZCI6InNlcnZlciJ9.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.Q9HFZLmz8l-UnoLtucgUHTiS7JwBM8MfAfSyJTAiD8MeVdA_QJB0ieDyAnNWixddCHpogNJvaMTDskNrKhpfjeHKVyjXnvsxQwiJIMx_uJBDqhaad35qz18IUDfMImpNAbOWygX1oceDV4MnVMK80zXG3PB31EyhdiUYfvMVMes2Ooxrtf_1izxWrnGyKHqFILisddvPMuW8mu98wVwcbuECfott7fp7L96SeOJAL84En1CFWJzGwcyyiR691xIJ2wy4X-oYztSpaKcUV-Rwkt5Tvgin4KQpbo-6s-h4jzC9VF-XQeMhE2D89TX2YEQQ5ZDpW2XUiKwnVtBGkjQtJA
2022-11-28 05:44:32 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
6160017N67
2022-11-28 05:44:32
EnsureIdTokenUpdatedAtValid
id_token response does not contain 'updated_at'
2022-11-28 05:44:32 INFO
ValidateEncryptedIdTokenHasKid
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
Userinfo endpoint tests
2022-11-28 05:44:32
CallProtectedResource
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/userinfo
request_method
GET
request_headers
{
  "accept": "application/json",
  "authorization": "bearer E7pQUZ0u2HEGqCPxCfva39FyVFX482naxBQiSvhR1zM.aNJ7vj_ybcOfzqNMlF534O7xCbDjNUZ14PNYdtCaRJLo4_9ASXT7Nxy01uMKEwFMt9k6Sb0NVKIAlBx2cqEGDQ.M18xNjY5NjE0MjcyXzE4",
  "content-length": "0"
}
request_body

                                
2022-11-28 05:44:32 RESPONSE
CallProtectedResource
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AKaa9317aa-637f-4e43-89f6-9b0075b7679b",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844ac011a957d9",
  "content-length": "324",
  "date": "Mon, 28 Nov 2022 05:44:32 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:0ZuobmB4zGAWV1Z3uuV0hZjYAnXi0ZmlTgwN3bi2tHI\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:57871319; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003d00CE78B623944F6A63482C621AAB1A37~-1~YAAQXXYGF1+u44SEAQAASQHEvAjEy4cp1hmiAgg6US2EUrskrPeuYe7z/Bu6p4RCVTY2AT07jpkxf5CWIJakIBpX6lsHE3uubTu9a10ZWiovV9NsmBumIZ1mklHIyrD9igsybCzKhp2pz3Cn7ahyFz8nwcItmVecctvWxlpVGwUwAqPBpQlvHCQDCGbJ0FtFsaaogoX4DFwegeP+97cALHoSDuJqp6fxxjZEcKO5NBgUFXcg8LqLFBfp65IMlkCmagaWzTOAzC/ls+UMA0L9Rgnp/3GQ8QTd6htbJ5ppAoYLCCoHt4Pw0jUUFN20s9tZGkjIhD3cGWNxa7/o0oCYbLTJrV4fThY4FMsPkXZGw8vDzmiOzpd28670eosuGNCLgKCdy8Y\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:32 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003d0288C18BCED61D3FBB40C51F6FAC76DF~YAAQXXYGF2Cu44SEAQAASQHEvBHFwHfGW0HqQGV9Dd+6GX18GZyNxRejdxqQB4PSGc2DBp2Cs4fJbUMHil9RFxmtzXGw2No4jFGzDR9JqCtZwVtOk5h2mn0HBs31sCe15erfPxGxECDdDBh1oLv6w9z7bIvPNM3+7cT1bNK6cPdKIYDmaMwkwdGUlx8NY1MVHhJf0Djxc5MqbiSrW5TuaD+JeYvSNfDjI6tOmCmsPR0VkbEZlzAOp+a71LE5DTmGPSlrzIWptvzcfu5AGPU1bACuJC4GKaBRAnJRo4uJisWta0JoDOwnruHPtbf7~3687492~4337718; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:32 GMT; Max-Age\u003d14400; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d89",
    "origin; dur\u003d116"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body
{"acr":"urn:ibm:security:policy:id:1","amr":["password"],"aud":["cb94407a-e789-47c0-9222-ae169605861b"],"auth_time":1669613807,"iss":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2","name":"ISV Dev","preferred_username":"isvdev@ibm.com","rat":1669614268,"realmName":"cloudIdentityRealm","sub":"6160017N67"}
2022-11-28 05:44:32 SUCCESS
CallProtectedResource
Got a response from the resource endpoint
status
200
endpoint_name
resource
headers
{
  "x-backside-transport": "OK OK",
  "content-type": "application/json;charset\u003dUTF-8",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-frame-options": "SAMEORIGIN",
  "x-content-type-options": "nosniff",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "expires": "0",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AKaa9317aa-637f-4e43-89f6-9b0075b7679b",
  "content-security-policy": "frame-ancestors \u0027self\u0027",
  "x-ua-compatible": "IE\u003dedge",
  "x-global-transaction-id": "efc5c28163844ac011a957d9",
  "content-length": "324",
  "date": "Mon, 28 Nov 2022 05:44:32 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:0ZuobmB4zGAWV1Z3uuV0hZjYAnXi0ZmlTgwN3bi2tHI\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:57871319; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003d00CE78B623944F6A63482C621AAB1A37~-1~YAAQXXYGF1+u44SEAQAASQHEvAjEy4cp1hmiAgg6US2EUrskrPeuYe7z/Bu6p4RCVTY2AT07jpkxf5CWIJakIBpX6lsHE3uubTu9a10ZWiovV9NsmBumIZ1mklHIyrD9igsybCzKhp2pz3Cn7ahyFz8nwcItmVecctvWxlpVGwUwAqPBpQlvHCQDCGbJ0FtFsaaogoX4DFwegeP+97cALHoSDuJqp6fxxjZEcKO5NBgUFXcg8LqLFBfp65IMlkCmagaWzTOAzC/ls+UMA0L9Rgnp/3GQ8QTd6htbJ5ppAoYLCCoHt4Pw0jUUFN20s9tZGkjIhD3cGWNxa7/o0oCYbLTJrV4fThY4FMsPkXZGw8vDzmiOzpd28670eosuGNCLgKCdy8Y\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:32 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003d0288C18BCED61D3FBB40C51F6FAC76DF~YAAQXXYGF2Cu44SEAQAASQHEvBHFwHfGW0HqQGV9Dd+6GX18GZyNxRejdxqQB4PSGc2DBp2Cs4fJbUMHil9RFxmtzXGw2No4jFGzDR9JqCtZwVtOk5h2mn0HBs31sCe15erfPxGxECDdDBh1oLv6w9z7bIvPNM3+7cT1bNK6cPdKIYDmaMwkwdGUlx8NY1MVHhJf0Djxc5MqbiSrW5TuaD+JeYvSNfDjI6tOmCmsPR0VkbEZlzAOp+a71LE5DTmGPSlrzIWptvzcfu5AGPU1bACuJC4GKaBRAnJRo4uJisWta0JoDOwnruHPtbf7~3687492~4337718; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:32 GMT; Max-Age\u003d14400; Secure"
  ],
  "server-timing": [
    "cdn-cache; desc\u003dMISS",
    "edge; dur\u003d89",
    "origin; dur\u003d116"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
body
{"acr":"urn:ibm:security:policy:id:1","amr":["password"],"aud":["cb94407a-e789-47c0-9222-ae169605861b"],"auth_time":1669613807,"iss":"https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2","name":"ISV Dev","preferred_username":"isvdev@ibm.com","rat":1669614268,"realmName":"cloudIdentityRealm","sub":"6160017N67"}
2022-11-28 05:44:32 SUCCESS
EnsureHttpStatusCodeIs200
resource endpoint returned the expected http status
expected_status
200
http_status
200
2022-11-28 05:44:32 FINISHED
oidcc-request-uri-signed-rs256
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2022-11-28 05:44:32
UnregisterDynamicallyRegisteredClient
HTTP request
request_uri
https://oidc-conformance.rel.verify.ibmcloudsecurity.com/oauth2/register/cb94407a-e789-47c0-9222-ae169605861b
request_method
DELETE
request_headers
{
  "accept": "application/json",
  "authorization": "Bearer IftvMYVSNIxqF0P9DU3YMrcTBMirEy4QlfMnKCDd5Ew.mhyD7wM76itM3WatXfNao_-SQw_z3C48_crUS8DQKijF7QAqB5D7yprkdDDfM4_ukT9eju7KB0SG2IbCOwAjlg.M18xNjY5NjE0MjY1XzE4",
  "content-length": "0"
}
request_body

                                
2022-11-28 05:44:34 RESPONSE
UnregisterDynamicallyRegisteredClient
HTTP response
response_status_code
204 NO_CONTENT
response_status_text
No Content
response_headers
{
  "x-backside-transport": "OK OK",
  "p3p": "CP\u003d\"NON CUR OTPi OUR NOR UNI\"",
  "x-content-type-options": "nosniff",
  "cache-control": "no-store",
  "x-xss-protection": "1; mode\u003dblock",
  "x-correlation-id": "CORR_ID-AKd06f7dd9-104d-4ff5-a34f-45e459051cb4",
  "pragma": "no-cache",
  "x-global-transaction-id": "efc5c28163844ac121ae4505",
  "date": "Mon, 28 Nov 2022 05:44:34 GMT",
  "connection": "keep-alive",
  "set-cookie": [
    "CIPD-S-SESSION-ID\u003d0:1:rediscol:lFb7Zi7zqNOB3WAbvKxkZyMZGCmcRqulHDm8i7XSNrE\u003d; Path\u003d/; SameSite\u003dNone; Secure; HttpOnly",
    "CISESSIONIDREL02A\u003dPBC5YS:57871319; Path\u003d/; Domain\u003drel.verify.ibmcloudsecurity.com; Secure; HttpOnly",
    "_abck\u003dA46FCA9C4B99C342146990071F91CE1E~-1~YAAQXXYGF4Cu44SEAQAAFQbEvAhk7+bD5WXZfCPJxCWMHd/Ycy0pgbpmY8ZAgg3/NwpD8omPhO7jcL0ts4d4oTnQ/sq1gmutGZdRZ8HUv/A4IAnsoaX/1RNw3uGFeXCfJFJ8GY0hE45QjZu8m11lDVm1pX2iziSOI1QHnfZUB1oAQJfKXkt1dVIkCfWFlaBkkv71OYIWnJAgxDQWHBMaBYMcLeTi8JqLEIGg0zAhjeylJ9nyXkKqQxhwME6qBGO5LfzVjAIWzTSPPfT07uxR2bVveVIErEV/oFeYGAOpAk0XxNOQ5DoUeIJ3n4moNqyq7SFL9rU1lt2U1z89va7vUPYYEFAe37OxukuL7TSTQufIAXXUEiHNh8Qc/A5x0iA99GcjpWo\u003d~-1~-1~-1; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dTue, 28 Nov 2023 05:44:34 GMT; Max-Age\u003d31536000; Secure",
    "bm_sz\u003d6FB773BA033AEFDB2FE092A3B9C09DC7~YAAQXXYGF4Gu44SEAQAAFQbEvBFp2wyr9eaHURQMonzVdmK7VqnlcqJ1mAE+rWDHyBm1xHOjnHAVbwsHntpT+QkgVagOKKSvV9qVDS9egvSaZmIb+amkRD27MYRxOrnBingG2HJe9XA31yxeKRsPgh1kbhOLZzaXJRLcM41szGvDtv8Go//VtDDlh1YMhgSunYkPALrs2Q3sLmRWRCfyIAoKKMMjownde4ojJn6tH/Nfq/ldW5dHGQ/Z5VUEcI3MuqMGBrI6Ejh7VEVX4vle3+f/nQMQ0r+nftKxpHd3ZVGcKIabtsf2HDpjaqE1~3687492~4337718; Domain\u003d.ibmcloudsecurity.com; Path\u003d/; Expires\u003dMon, 28 Nov 2022 09:44:32 GMT; Max-Age\u003d14398; Secure"
  ],
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains"
}
response_body

                                
2022-11-28 05:44:34 SUCCESS
UnregisterDynamicallyRegisteredClient
Client successfully unregistered
2022-11-28 05:44:39
TEST-RUNNER
Alias has now been claimed by another test
alias
isv_op_oidc_core_test
new_test_id
ftRasfgk6LKXrch
Test Results