Test detail

Test Name	oidcc-userinfo-get
Variant	client_auth_type=client_secret_basic, server_metadata=static, response_type=code, response_mode=default, client_registration=static_client
Test ID	G8ueSJmhm8RQZ2q https://www.certification.openid.net/log-detail.html?public=true&log=G8ueSJmhm8RQZ2q
Created	2024-04-25T22:23:07.538822885Z
Description
Test Version	5.1.16
Test Owner	21036854 https://gitlab.com
Plan ID	gg7kXAOPURbNc https://www.certification.openid.net/plan-detail.html?public=true&plan=gg7kXAOPURbNc
Exported From	https://www.certification.openid.net
Exported By	21036854 https://gitlab.com
Suite Version	5.1.16
Exported	2024-04-26 01:06:00 (UTC)

2024-04-25 22:23:07

(7) More

INFO

TEST-RUNNER

Test instance G8ueSJmhm8RQZ2q created

baseUrl	https://www.certification.openid.net/test/a/ad04252024test
variant	{ "client_auth_type": "client_secret_basic", "response_type": "code", "server_metadata": "static", "response_mode": "default", "client_registration": "static_client" }
alias	ad04252024test
description
planId	gg7kXAOPURbNc
config	{ "alias": "ad04252024test", "server": { "issuer": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4", "jwks_uri": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json", "authorization_endpoint": "https://gh0stid.authn.cc/oauth2/authorize", "token_endpoint": "https://gh0stid.authn.cc/oauth2/token", "userinfo_endpoint": "https://gh0stid.authn.cc/oauth2/userInfo" }, "client": { "client_id": "3fsi45vsoqf5jr65tsdhr0vjc1", "client_secret": "74k6uj0oqgu1fihmnjvlte3o5sc5tnf59o15an7kvp75touqpcd" }, "client_secret_post": { "client_id": "tiqph3ss01s3n427q82hm70ch", "client_secret": "1pn27ge4pk30gnkf9mngp15m4t09u4u0d58in9dfult8a15i2civ" }, "client2": { "client_id": "657ufjbt2tjc4qb4oln281r20r", "client_secret": "13bgrpol151jajr59nrv2jlall9selesu62iaihstpbs9m326qe2" } }
testName	oidcc-userinfo-get

2024-04-25 22:23:07

(1) More

SUCCESS

CreateRedirectUri

Created redirect URI

redirect_uri

https://www.certification.openid.net/test/a/ad04252024test/callback

2024-04-25 22:23:07

(5) More

SUCCESS

GetStaticServerConfiguration

Found a static server object

issuer	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4
jwks_uri	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json
authorization_endpoint	https://gh0stid.authn.cc/oauth2/authorize
token_endpoint	https://gh0stid.authn.cc/oauth2/token
userinfo_endpoint	https://gh0stid.authn.cc/oauth2/userInfo

2024-04-25 22:23:07

(1) More

SUCCESS

CheckServerConfiguration

Found required server configuration keys

required

[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]

2024-04-25 22:23:07

(4) More

SUCCESS

ExtractTLSTestValuesFromServerConfiguration

Extracted TLS information from authorization server configuration

registration_endpoint
authorization_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }
token_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }
userinfo_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }

2024-04-25 22:23:07

(1) More

FetchServerKeys

Fetching server key

jwks_uri

https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json

2024-04-25 22:23:07

(4) More

FetchServerKeys

HTTP request

request_uri	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json
request_method	GET
request_headers	{ "Accept": "text/plain, application/json, application/+json, /*", "Content-Length": "0" }
request_body

2024-04-25 22:23:07

(4) More

RESPONSE

FetchServerKeys

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Thu, 25 Apr 2024 22:23:07 GMT", "content-type": "application/json", "content-length": "916", "connection": "keep-alive", "x-amzn-requestid": "ae2d393d-5eb4-488a-8da0-6ce176b297a1", "cache-control": "public, max-age\u003d86400" }
response_body	{"keys":[{"alg":"RS256","e":"AQAB","kid":"GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM=","kty":"RSA","n":"pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q","use":"sig"},{"alg":"RS256","e":"AQAB","kid":"m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ=","kty":"RSA","n":"uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ","use":"sig"}]}

2024-04-25 22:23:07

(1) More

FetchServerKeys

Found JWK set string

jwk_string

{"keys":[{"alg":"RS256","e":"AQAB","kid":"GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM=","kty":"RSA","n":"pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q","use":"sig"},{"alg":"RS256","e":"AQAB","kid":"m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ=","kty":"RSA","n":"uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ","use":"sig"}]}

2024-04-25 22:23:07

(1) More

SUCCESS

FetchServerKeys

Found server JWK set

server_jwks

{
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d",
      "kty": "RSA",
      "n": "pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q",
      "use": "sig"
    },
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ\u003d",
      "kty": "RSA",
      "n": "uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ",
      "use": "sig"
    }
  ]
}

2024-04-25 22:23:07

(1) More

SUCCESS

CheckServerKeysIsValid

Server JWKs is valid

server_jwks

{
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d",
      "kty": "RSA",
      "n": "pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q",
      "use": "sig"
    },
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ\u003d",
      "kty": "RSA",
      "n": "uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ",
      "use": "sig"
    }
  ]
}

2024-04-25 22:23:07	SUCCESS RFC7517-1.1	ValidateServerJWKs Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url

2024-04-25 22:23:07	SUCCESS OIDCC-10.1	CheckForKeyIdInServerJWKs All keys contain kids

2024-04-25 22:23:07

(1) More

SUCCESS

RFC7517-4.5

CheckDistinctKeyIdValueInServerJWKs

Distinct 'kid' value in all keys of server_jwks

see	https://bitbucket.org/openid/connect/issues/1127

2024-04-25 22:23:07	SUCCESS RFC7518-6.3.2.1	EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys Jwks does not contain any private or symmetric keys

2024-04-25 22:23:07

(2) More

SUCCESS

GetStaticClientConfiguration

Found a static client object

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
client_secret	74k6uj0oqgu1fihmnjvlte3o5sc5tnf59o15an7kvp75touqpcd

2024-04-25 22:23:07

(3) More

INFO

RFC7517-1.1

ValidateClientJWKsPrivatePart

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 22:23:07

(3) More

INFO

ExtractJWKsFromStaticClientConfiguration

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 22:23:07

(3) More

INFO

RFC7517-4.5

CheckDistinctKeyIdValueInClientJWKs

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 22:23:07

(1) More

SetScopeInClientConfigurationToOpenId

Set scope in client configuration to "openid"

scope

openid

2024-04-25 22:23:07

(1) More

SUCCESS

SetProtectedResourceUrlToUserInfoEndpoint

userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.

protected_resource_url

https://gh0stid.authn.cc/oauth2/userInfo

2024-04-25 22:23:07		oidcc-userinfo-get Setup Done

Make request to authorization endpoint

2024-04-25 22:23:07

(3) More

SUCCESS

CreateAuthorizationEndpointRequestFromClientInformation

Created authorization endpoint request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid

2024-04-25 22:23:07

(2) More

CreateRandomStateValue

Created state value

requested_state_length	10
state	ESUQWQjDcg

2024-04-25 22:23:07

(4) More

SUCCESS

AddStateToAuthorizationEndpointRequest

Added state parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	ESUQWQjDcg

2024-04-25 22:23:07

(2) More

CreateRandomNonceValue

Created nonce value

requested_nonce_length	10
nonce	1UgkGzXxIi

2024-04-25 22:23:07

(5) More

SUCCESS

AddNonceToAuthorizationEndpointRequest

Added nonce parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	ESUQWQjDcg
nonce	1UgkGzXxIi

2024-04-25 22:23:07

(6) More

SUCCESS

SetAuthorizationEndpointRequestResponseTypeFromEnvironment

Added response_type parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	ESUQWQjDcg
nonce	1UgkGzXxIi
response_type	code

2024-04-25 22:23:07

(2) More

SUCCESS

BuildPlainRedirectToAuthorizationEndpoint

Sending to authorization endpoint

auth_request

{
  "client_id": "3fsi45vsoqf5jr65tsdhr0vjc1",
  "redirect_uri": "https://www.certification.openid.net/test/a/ad04252024test/callback",
  "scope": "openid",
  "state": "ESUQWQjDcg",
  "nonce": "1UgkGzXxIi",
  "response_type": "code"
}

redirect_to_authorization_endpoint

https://gh0stid.authn.cc/oauth2/authorize?client_id=3fsi45vsoqf5jr65tsdhr0vjc1&redirect_uri=https://www.certification.openid.net/test/a/ad04252024test/callback&scope=openid&state=ESUQWQjDcg&nonce=1UgkGzXxIi&response_type=code

2024-04-25 22:23:07

(1) More

REDIRECT

oidcc-userinfo-get

Redirecting to authorization endpoint

redirect_to

https://gh0stid.authn.cc/oauth2/authorize?client_id=3fsi45vsoqf5jr65tsdhr0vjc1&redirect_uri=https://www.certification.openid.net/test/a/ad04252024test/callback&scope=openid&state=ESUQWQjDcg&nonce=1UgkGzXxIi&response_type=code

2024-04-25 22:23:32

(12) More

INCOMING

oidcc-userinfo-get

Incoming HTTP request to /test/a/ad04252024test/callback

incoming_headers	{ "host": "www.certification.openid.net", "upgrade-insecure-requests": "1", "dnt": "1", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,/;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7", "sec-fetch-site": "cross-site", "sec-fetch-mode": "navigate", "sec-fetch-user": "?1", "sec-fetch-dest": "document", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-mobile": "?0", "sec-ch-ua-platform": "\"macOS\"", "referer": "https://www.certification.openid.net/", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "connection": "close" }
incoming_path	/test/a/ad04252024test/callback
incoming_body_form_params
incoming_method	GET
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{ "code": "abcfd1cb-ae50-4aad-acd0-a4db7b7120dc", "state": "ESUQWQjDcg" }
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_body_json_parse_error
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2024-04-25 22:23:32

(1) More

SUCCESS

CreateRandomImplicitSubmitUrl

Created random implicit submission URL

implicit_submit

{
  "path": "implicit/62pvTmT2YaSS90QlXNKJ",
  "fullUrl": "https://www.certification.openid.net/test/a/ad04252024test/implicit/62pvTmT2YaSS90QlXNKJ"
}

2024-04-25 22:23:32

(2) More

OUTGOING

oidcc-userinfo-get

Response to HTTP request to test instance G8ueSJmhm8RQZ2q

outgoing

ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/ad04252024test/implicit/62pvTmT2YaSS90QlXNKJ, returnUrl=/log-detail.html?log=G8ueSJmhm8RQZ2q}]

outgoing_path

callback

2024-04-25 22:23:32

(12) More

INCOMING

oidcc-userinfo-get

Incoming HTTP request to /test/a/ad04252024test/implicit/62pvTmT2YaSS90QlXNKJ

incoming_headers	{ "host": "www.certification.openid.net", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-platform": "\"macOS\"", "dnt": "1", "sec-ch-ua-mobile": "?0", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "content-type": "text/plain", "accept": "/", "origin": "https://www.certification.openid.net", "sec-fetch-site": "same-origin", "sec-fetch-mode": "cors", "sec-fetch-dest": "empty", "referer": "https://www.certification.openid.net/test/a/ad04252024test/callback?code\u003dabcfd1cb-ae50-4aad-acd0-a4db7b7120dc\u0026state\u003dESUQWQjDcg", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "content-length": "0", "connection": "close" }
incoming_path	/test/a/ad04252024test/implicit/62pvTmT2YaSS90QlXNKJ
incoming_body_form_params
incoming_method	POST
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{}
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_body_json_parse_error
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2024-04-25 22:23:32

(4) More

OUTGOING

oidcc-userinfo-get

Response to HTTP request to test instance G8ueSJmhm8RQZ2q

outgoing_status_code	204
outgoing_headers	{}
outgoing_body
outgoing_path	implicit/62pvTmT2YaSS90QlXNKJ

2024-04-25 22:23:32	SUCCESS	ExtractImplicitHashToCallbackResponse implicit_hash is empty

2024-04-25 22:23:32

(5) More

REDIRECT-IN

oidcc-userinfo-get

Authorization endpoint response captured

url_query	{ "code": "abcfd1cb-ae50-4aad-acd0-a4db7b7120dc", "state": "ESUQWQjDcg" }
headers	{ "host": "www.certification.openid.net", "upgrade-insecure-requests": "1", "dnt": "1", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,/;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7", "sec-fetch-site": "cross-site", "sec-fetch-mode": "navigate", "sec-fetch-user": "?1", "sec-fetch-dest": "document", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-mobile": "?0", "sec-ch-ua-platform": "\"macOS\"", "referer": "https://www.certification.openid.net/", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256", "x-ssl-protocol": "TLSv1.2", "x-forwarded-proto": "https", "x-forwarded-port": "443", "x-forwarded-host": "www.certification.openid.net", "x-forwarded-server": "www.certification.openid.net", "connection": "close" }
http_method	GET
url_fragment	{}
post_body

Verify authorization endpoint response

2024-04-25 22:23:32	SUCCESS	CheckMatchingCallbackParameters Callback parameters successfully verified

2024-04-25 22:23:32		ValidateIssIfPresentInAuthorizationResponse No 'iss' value in authorization response.

2024-04-25 22:23:32	SUCCESS	CheckIfAuthorizationEndpointError No error from authorization endpoint

2024-04-25 22:23:32

(1) More

SUCCESS

CheckStateInAuthorizationResponse

State in response correctly returned

state

ESUQWQjDcg

2024-04-25 22:23:32

(1) More

SUCCESS

ExtractAuthorizationCodeFromAuthorizationResponse

Found authorization code

code	abcfd1cb-ae50-4aad-acd0-a4db7b7120dc

2024-04-25 22:23:32

(3) More

SUCCESS

CreateTokenEndpointRequestForAuthorizationCodeGrant

Created token endpoint request

grant_type	authorization_code
code	abcfd1cb-ae50-4aad-acd0-a4db7b7120dc
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback

2024-04-25 22:23:32

(1) More

SUCCESS

AddBasicAuthClientSecretAuthenticationParameters

Added basic authorization header

Authorization

Basic M2ZzaTQ1dnNvcWY1anI2NXRzZGhyMHZqYzE6NzRrNnVqMG9xZ3UxZmlobW5qdmx0ZTNvNXNjNXRuZjU5bzE1YW43a3ZwNzV0b3VxcGNk

2024-04-25 22:23:32

(4) More

CallTokenEndpoint

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/token
request_method	POST
request_headers	{ "Accept": "application/json", "Authorization": "Basic M2ZzaTQ1dnNvcWY1anI2NXRzZGhyMHZqYzE6NzRrNnVqMG9xZ3UxZmlobW5qdmx0ZTNvNXNjNXRuZjU5bzE1YW43a3ZwNzV0b3VxcGNk", "Content-Type": "application/x-www-form-urlencoded;charset\u003dUTF-8", "Content-Length": "166" }
request_body	grant_type=authorization_code&code=abcfd1cb-ae50-4aad-acd0-a4db7b7120dc&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fad04252024test%2Fcallback

2024-04-25 22:23:32

(4) More

RESPONSE

CallTokenEndpoint

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "transfer-encoding": "chunked", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 22:23:32 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d80532da7-5f18-4f04-ba53-24525fde975d; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "1680822d-2552-43a5-8680-69e396d806b3", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 5d219c13711b70ba6da9405b48e9ea06.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "5EdgJdZ4dNklM1hy3bveC5W6mxrU9B6CwIgvFFHzfm7SD0O-VclpPg\u003d\u003d" }
response_body	{"id_token":"eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.Y_g04R8ZaRp2SQ91pvvIRcxGzPdlAear3UiyjKlAi3lAO0h0BoDq46XTr7lkd6R82OT9Qy3jUZYCbPlKwhfmr4HDNsjr7SGHTLODOpMphN71sflx55r9o4Q2DpfkUnd6v7YXxrNqui8-kDRTUaI4TF5YJY-3O2CAAA7s2Lr2Uo27fnI67YNSkLiDy0c5nNHZZgzeHmWH9P0tY9Tm-3X4uFxxM-VnSuBKp9r59r_U2z8KWV9GfoqNQswIh_R4gtgOJF80IIlgdO8EYwHDOgm30wLcaw8lhdi8oHoZd67a44l0F__f_J1RU8p7kA5W8EHunCItwqUGSFJcSVgXrO8gfA","access_token":"eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q","refresh_token":"eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.4GAanMsyRTBVEF-D9j3tOGRXscdue7e1RnPOvixB6VJejiq8ag8IHu0bUBrbIuzkcuSfHT0yRIiToawIU2lOM9j-s0sssmC6nxnATb6v0qG7eM4hcvqwhky5imUrgKjYU_EBBOH2PqQ6oWowvPQOiu3gysMjJRGztreEGaJKWUIN7RY3ZLM4IOGxeD4A1B60gLaI_s7uSrg5rMj7dhGPcvcCxAfvtcjq2KSb2vRBhppscBIVrkrBCIDCZ3aQmye-vqpeKQbSUL2-nnTsAuTLUqFnYGjORPPPn-gpjpDZ1LQVR3eoXb0bACogK7nLilPnAhmHLEqbV5RLK-th9B9I-A.VwE2gYO3I6DHeCPx.C8sSqSUho3AAdqhgfWvUTPfZc1BSoEI1L6diZqc2_bwwEERCSo3VYiyXR6ZNemwFR62DuKVDEkmy-6SwDhW3AzFDyUNuNg9LBaRCiQEtM6bkl10cxBJj6LoIEeYX-XtBucix8rm-XGsEvRZBgRdD5fGd5zPaKHOgwQZAbS4HFYx1UWV9PB76rUbvipzabjUWu-xTxklGWXIQBofDXleYFVKdCuF5mSDlGcm2wNB92wbjQ9DQdygSVqhwU_Y9GBD7A2iU9-lCK4IY1lbfFbPPpYzC16UaOHpeAFBXmcnk53YLD0C6mLDtcTtg_BiSq2EWjzA77889bnYNmXK9QpIVHtn9GapCQ1Hy0M689qus7pbbkFn-x6fxev_axJnL5YRxXWvR-RYeyTx7gygaGfsPpbP0BggK_wNSbJVH1Eerrr7W38wZs6fFF1fzmQ3UN1LzWtn2W6mi_1Kpjiuswc868PVMPgowYClgg5dbp2Khl3Uu9RsBEYWrNbt5ee19-joK__NNYw6qGg02PfL72UrHtg91Fz-ecobzifot4QMvjNwEXy-qKEt19Bo1Oq_iTvq12A10_p-mNfydByVgHQ293DdK6EO_9SclrbyRRuxS7KWN3S4Yva0XUAV40nPzuUdKTVjt8Sml5sUR2KlJnE-b7zoq9qfJQCWqFNKRSc8nJEoNkujyymsVznwvv7PCj3U9hY1gcPUdNOtuBB9mTzwYnMN6JSQAh6ZF0hRqkpxGbpLGozlIKwjFqV8ie6x--U-Tl7z1Avh2HOWnAcPG-FEKVZE58yBr9U_o92xY6UHlvZxzJWkaryFKaPcz2unLYUMD6xIb1ARuw9oVlXOq6nnYNfEuYY4_lnKzf_6WDhGVpY4KDFg_RE7BXdBbbXhaCV1eLyyDiiwaMZepVLuwnn9vLF0bpTPMH6LHy9ng5q19rXO-zWTrIvLyWicLPgNJ5X3DcwtfeWvBl4kAX-XTJ-IKHyjbveXlKhFDgGvzv99VUrPtgoe0YfApBvUGo-zZichziOng2ImZNZ4OaHBdgvwHKGSi6CZW_k3-FlEAIziIRj_V4eKdujmiOQUlTTlnrGihqn8XR21vCsdC8batDhLS9f-bWti38aL8lvho6la80tz1xkXTHfbpMs3kIb46hdvO8rhAtH2YBtiGtiV31wC7r45FsIukr0xSdUnr0yJlGEHcrWhpALAa.ysAbOfaUT35d1-AKjJMQaQ","expires_in":3600,"token_type":"Bearer"}

2024-04-25 22:23:32

(5) More

SUCCESS

CallTokenEndpoint

Parsed token endpoint response

id_token	eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.Y_g04R8ZaRp2SQ91pvvIRcxGzPdlAear3UiyjKlAi3lAO0h0BoDq46XTr7lkd6R82OT9Qy3jUZYCbPlKwhfmr4HDNsjr7SGHTLODOpMphN71sflx55r9o4Q2DpfkUnd6v7YXxrNqui8-kDRTUaI4TF5YJY-3O2CAAA7s2Lr2Uo27fnI67YNSkLiDy0c5nNHZZgzeHmWH9P0tY9Tm-3X4uFxxM-VnSuBKp9r59r_U2z8KWV9GfoqNQswIh_R4gtgOJF80IIlgdO8EYwHDOgm30wLcaw8lhdi8oHoZd67a44l0F__f_J1RU8p7kA5W8EHunCItwqUGSFJcSVgXrO8gfA
access_token	eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q
refresh_token	eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.4GAanMsyRTBVEF-D9j3tOGRXscdue7e1RnPOvixB6VJejiq8ag8IHu0bUBrbIuzkcuSfHT0yRIiToawIU2lOM9j-s0sssmC6nxnATb6v0qG7eM4hcvqwhky5imUrgKjYU_EBBOH2PqQ6oWowvPQOiu3gysMjJRGztreEGaJKWUIN7RY3ZLM4IOGxeD4A1B60gLaI_s7uSrg5rMj7dhGPcvcCxAfvtcjq2KSb2vRBhppscBIVrkrBCIDCZ3aQmye-vqpeKQbSUL2-nnTsAuTLUqFnYGjORPPPn-gpjpDZ1LQVR3eoXb0bACogK7nLilPnAhmHLEqbV5RLK-th9B9I-A.VwE2gYO3I6DHeCPx.C8sSqSUho3AAdqhgfWvUTPfZc1BSoEI1L6diZqc2_bwwEERCSo3VYiyXR6ZNemwFR62DuKVDEkmy-6SwDhW3AzFDyUNuNg9LBaRCiQEtM6bkl10cxBJj6LoIEeYX-XtBucix8rm-XGsEvRZBgRdD5fGd5zPaKHOgwQZAbS4HFYx1UWV9PB76rUbvipzabjUWu-xTxklGWXIQBofDXleYFVKdCuF5mSDlGcm2wNB92wbjQ9DQdygSVqhwU_Y9GBD7A2iU9-lCK4IY1lbfFbPPpYzC16UaOHpeAFBXmcnk53YLD0C6mLDtcTtg_BiSq2EWjzA77889bnYNmXK9QpIVHtn9GapCQ1Hy0M689qus7pbbkFn-x6fxev_axJnL5YRxXWvR-RYeyTx7gygaGfsPpbP0BggK_wNSbJVH1Eerrr7W38wZs6fFF1fzmQ3UN1LzWtn2W6mi_1Kpjiuswc868PVMPgowYClgg5dbp2Khl3Uu9RsBEYWrNbt5ee19-joK__NNYw6qGg02PfL72UrHtg91Fz-ecobzifot4QMvjNwEXy-qKEt19Bo1Oq_iTvq12A10_p-mNfydByVgHQ293DdK6EO_9SclrbyRRuxS7KWN3S4Yva0XUAV40nPzuUdKTVjt8Sml5sUR2KlJnE-b7zoq9qfJQCWqFNKRSc8nJEoNkujyymsVznwvv7PCj3U9hY1gcPUdNOtuBB9mTzwYnMN6JSQAh6ZF0hRqkpxGbpLGozlIKwjFqV8ie6x--U-Tl7z1Avh2HOWnAcPG-FEKVZE58yBr9U_o92xY6UHlvZxzJWkaryFKaPcz2unLYUMD6xIb1ARuw9oVlXOq6nnYNfEuYY4_lnKzf_6WDhGVpY4KDFg_RE7BXdBbbXhaCV1eLyyDiiwaMZepVLuwnn9vLF0bpTPMH6LHy9ng5q19rXO-zWTrIvLyWicLPgNJ5X3DcwtfeWvBl4kAX-XTJ-IKHyjbveXlKhFDgGvzv99VUrPtgoe0YfApBvUGo-zZichziOng2ImZNZ4OaHBdgvwHKGSi6CZW_k3-FlEAIziIRj_V4eKdujmiOQUlTTlnrGihqn8XR21vCsdC8batDhLS9f-bWti38aL8lvho6la80tz1xkXTHfbpMs3kIb46hdvO8rhAtH2YBtiGtiV31wC7r45FsIukr0xSdUnr0yJlGEHcrWhpALAa.ysAbOfaUT35d1-AKjJMQaQ
expires_in	3600
token_type	Bearer

2024-04-25 22:23:32	SUCCESS	CheckIfTokenEndpointResponseError No error from token endpoint

2024-04-25 22:23:32

(1) More

SUCCESS

CheckForAccessTokenValue

Found an access token

access_token

eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q

2024-04-25 22:23:32

(2) More

SUCCESS

ExtractAccessTokenFromTokenResponse

Extracted the access token

value

eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q

type

Bearer

2024-04-25 22:23:32

(1) More

SUCCESS

RFC6749-5.1

ExtractExpiresInFromTokenEndpointResponse

Extracted 'expires_in'

expires_in

2024-04-25 22:23:32

(1) More

SUCCESS

RFC6749-5.1

ValidateExpiresIn

expires_in passed all validation checks

expires_in

2024-04-25 22:23:32

(1) More

SUCCESS

CheckForRefreshTokenValue

Found a refresh token

refresh_token

eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.4GAanMsyRTBVEF-D9j3tOGRXscdue7e1RnPOvixB6VJejiq8ag8IHu0bUBrbIuzkcuSfHT0yRIiToawIU2lOM9j-s0sssmC6nxnATb6v0qG7eM4hcvqwhky5imUrgKjYU_EBBOH2PqQ6oWowvPQOiu3gysMjJRGztreEGaJKWUIN7RY3ZLM4IOGxeD4A1B60gLaI_s7uSrg5rMj7dhGPcvcCxAfvtcjq2KSb2vRBhppscBIVrkrBCIDCZ3aQmye-vqpeKQbSUL2-nnTsAuTLUqFnYGjORPPPn-gpjpDZ1LQVR3eoXb0bACogK7nLilPnAhmHLEqbV5RLK-th9B9I-A.VwE2gYO3I6DHeCPx.C8sSqSUho3AAdqhgfWvUTPfZc1BSoEI1L6diZqc2_bwwEERCSo3VYiyXR6ZNemwFR62DuKVDEkmy-6SwDhW3AzFDyUNuNg9LBaRCiQEtM6bkl10cxBJj6LoIEeYX-XtBucix8rm-XGsEvRZBgRdD5fGd5zPaKHOgwQZAbS4HFYx1UWV9PB76rUbvipzabjUWu-xTxklGWXIQBofDXleYFVKdCuF5mSDlGcm2wNB92wbjQ9DQdygSVqhwU_Y9GBD7A2iU9-lCK4IY1lbfFbPPpYzC16UaOHpeAFBXmcnk53YLD0C6mLDtcTtg_BiSq2EWjzA77889bnYNmXK9QpIVHtn9GapCQ1Hy0M689qus7pbbkFn-x6fxev_axJnL5YRxXWvR-RYeyTx7gygaGfsPpbP0BggK_wNSbJVH1Eerrr7W38wZs6fFF1fzmQ3UN1LzWtn2W6mi_1Kpjiuswc868PVMPgowYClgg5dbp2Khl3Uu9RsBEYWrNbt5ee19-joK__NNYw6qGg02PfL72UrHtg91Fz-ecobzifot4QMvjNwEXy-qKEt19Bo1Oq_iTvq12A10_p-mNfydByVgHQ293DdK6EO_9SclrbyRRuxS7KWN3S4Yva0XUAV40nPzuUdKTVjt8Sml5sUR2KlJnE-b7zoq9qfJQCWqFNKRSc8nJEoNkujyymsVznwvv7PCj3U9hY1gcPUdNOtuBB9mTzwYnMN6JSQAh6ZF0hRqkpxGbpLGozlIKwjFqV8ie6x--U-Tl7z1Avh2HOWnAcPG-FEKVZE58yBr9U_o92xY6UHlvZxzJWkaryFKaPcz2unLYUMD6xIb1ARuw9oVlXOq6nnYNfEuYY4_lnKzf_6WDhGVpY4KDFg_RE7BXdBbbXhaCV1eLyyDiiwaMZepVLuwnn9vLF0bpTPMH6LHy9ng5q19rXO-zWTrIvLyWicLPgNJ5X3DcwtfeWvBl4kAX-XTJ-IKHyjbveXlKhFDgGvzv99VUrPtgoe0YfApBvUGo-zZichziOng2ImZNZ4OaHBdgvwHKGSi6CZW_k3-FlEAIziIRj_V4eKdujmiOQUlTTlnrGihqn8XR21vCsdC8batDhLS9f-bWti38aL8lvho6la80tz1xkXTHfbpMs3kIb46hdvO8rhAtH2YBtiGtiV31wC7r45FsIukr0xSdUnr0yJlGEHcrWhpALAa.ysAbOfaUT35d1-AKjJMQaQ

2024-04-25 22:23:32

(2) More

INFO

OIDCC-10.2

ValidateIdTokenFromTokenResponseEncryption

Skipped evaluation due to missing required object: client_jwks

expected	client_jwks
mapped

2024-04-25 22:23:32

(3) More

SUCCESS

OIDCC-3.3.3.3 OIDCC-3.1.3.3

ExtractIdTokenFromTokenResponse

Found and parsed the id_token from token_endpoint_response

value	eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.Y_g04R8ZaRp2SQ91pvvIRcxGzPdlAear3UiyjKlAi3lAO0h0BoDq46XTr7lkd6R82OT9Qy3jUZYCbPlKwhfmr4HDNsjr7SGHTLODOpMphN71sflx55r9o4Q2DpfkUnd6v7YXxrNqui8-kDRTUaI4TF5YJY-3O2CAAA7s2Lr2Uo27fnI67YNSkLiDy0c5nNHZZgzeHmWH9P0tY9Tm-3X4uFxxM-VnSuBKp9r59r_U2z8KWV9GfoqNQswIh_R4gtgOJF80IIlgdO8EYwHDOgm30wLcaw8lhdi8oHoZd67a44l0F__f_J1RU8p7kA5W8EHunCItwqUGSFJcSVgXrO8gfA
header	{ "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d", "alg": "RS256" }
claims	{ "at_hash": "sNtTf600qPMnYYxEJoQtpw", "sub": "774658e9-e1a8-4dd7-9f3f-69602a3498a3", "email_verified": true, "iss": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4", "cognito:username": "[email protected]", "nonce": "1UgkGzXxIi", "origin_jti": "52797c42-703e-4e4b-be98-7697e227216b", "aud": "3fsi45vsoqf5jr65tsdhr0vjc1", "token_use": "id", "auth_time": 1714083812, "exp": 1714087412, "iat": 1714083812, "jti": "6d313a72-ca73-446e-9c20-3d56526c5685", "email": "[email protected]" }

2024-04-25 22:23:32	SUCCESS OIDCC-3.1.3.7	ValidateIdToken ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks

2024-04-25 22:23:32		ValidateIdTokenStandardClaims sub is a string with content

2024-04-25 22:23:32		ValidateIdTokenStandardClaims email_verified is a boolean

2024-04-25 22:23:32		ValidateIdTokenStandardClaims Skipping unknown claim: cognito:username

2024-04-25 22:23:32		ValidateIdTokenStandardClaims Skipping unknown claim: origin_jti

2024-04-25 22:23:32		ValidateIdTokenStandardClaims Skipping unknown claim: token_use

2024-04-25 22:23:32		ValidateIdTokenStandardClaims email is a string with content

2024-04-25 22:23:32	SUCCESS OIDCC-5.1	ValidateIdTokenStandardClaims id_token claims are valid

2024-04-25 22:23:32

(1) More

SUCCESS

OIDCC-2

ValidateIdTokenNonce

Nonce values match

nonce

1UgkGzXxIi

2024-04-25 22:23:32	SUCCESS OIDCC-5.5.1.1	ValidateIdTokenACRClaimAgainstRequest Nothing to check; the conformance suite did not request an acr claim in request object

2024-04-25 22:23:32

(1) More

SUCCESS

ValidateIdTokenSignature

id_token signature validated

id_token

eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.Y_g04R8ZaRp2SQ91pvvIRcxGzPdlAear3UiyjKlAi3lAO0h0BoDq46XTr7lkd6R82OT9Qy3jUZYCbPlKwhfmr4HDNsjr7SGHTLODOpMphN71sflx55r9o4Q2DpfkUnd6v7YXxrNqui8-kDRTUaI4TF5YJY-3O2CAAA7s2Lr2Uo27fnI67YNSkLiDy0c5nNHZZgzeHmWH9P0tY9Tm-3X4uFxxM-VnSuBKp9r59r_U2z8KWV9GfoqNQswIh_R4gtgOJF80IIlgdO8EYwHDOgm30wLcaw8lhdi8oHoZd67a44l0F__f_J1RU8p7kA5W8EHunCItwqUGSFJcSVgXrO8gfA

2024-04-25 22:23:32

(1) More

SUCCESS

OIDCC-2

CheckForSubjectInIdToken

Found 'sub' in id_token

sub	774658e9-e1a8-4dd7-9f3f-69602a3498a3

2024-04-25 22:23:32		EnsureIdTokenUpdatedAtValid id_token response does not contain 'updated_at'

2024-04-25 22:23:32

(3) More

INFO

OIDCC-10.2 OIDC-10.2.1

ValidateEncryptedIdTokenHasKid

Skipped evaluation due to missing required element: id_token jwe_header

path	jwe_header
mapped
object	id_token

Userinfo endpoint tests

2024-04-25 22:23:32

(4) More

CallProtectedResource

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/userInfo
request_method	GET
request_headers	{ "Accept": "application/json", "Authorization": "Bearer eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q", "Content-Length": "0" }
request_body

2024-04-25 22:23:32

(4) More

RESPONSE

CallProtectedResource

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 22:23:32 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d57436e5c-42fb-46d3-a60d-e01a21bebae5; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "6611ac64-45af-4150-8998-1cc34de57337", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 9f38fc245d638f10232100c770bc84fe.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "XcfmdOD5Licn85fsdXrLTEL6DmTx4WZR4ltd0o6yoUHzgE4BMElrIA\u003d\u003d" }
response_body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 22:23:32

(4) More

SUCCESS

CallProtectedResource

Got a response from the resource endpoint

status	200
endpoint_name	resource
headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 22:23:32 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d57436e5c-42fb-46d3-a60d-e01a21bebae5; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "6611ac64-45af-4150-8998-1cc34de57337", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 9f38fc245d638f10232100c770bc84fe.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "XcfmdOD5Licn85fsdXrLTEL6DmTx4WZR4ltd0o6yoUHzgE4BMElrIA\u003d\u003d" }
body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 22:23:32

(2) More

SUCCESS

EnsureHttpStatusCodeIs200

resource endpoint returned the expected http status

expected_status	200
http_status	200

2024-04-25 22:23:32

(4) More

CallUserInfoEndpoint

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/userInfo
request_method	GET
request_headers	{ "Accept": "application/json", "Authorization": "Bearer eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.EGgQqjA0AGUdo49pidLbelPvKH0teQrBhPKB_chB4dOob_B8pwZDUie6rHLj_kxKpqcgIHtjzSae-Mc_nrBicW7vjdW4wlbgbob81Bh7q4oMg-MxM9Y2-FBRgdFtg_WFhtnKj_6dLQplkho6l2KXUUAEYdh32nO-J421bgF1SRBjJodmP7M6Htw1NqqC9xrofwDf7gj8iGd2TGOauYE0CuR4sgCCikQIBfecILPMc9QF3RHEpWJ_4llnlu3IOmhKWzgkkCGBQbMmYzKKhvBv5KJq56dazl5jxHUEbrjRyYFbXxzXdGA4hmM7pTTaa4nftXHnHc7hROwF3jfwmorO-Q", "Content-Length": "0" }
request_body

2024-04-25 22:23:33

(4) More

RESPONSE

CallUserInfoEndpoint

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 22:23:33 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003def7592d2-2b39-4697-80f6-876a412c50c4; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "91b04732-3143-44c7-8c2f-75631b7dec45", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 577ac6ab40b1e229d1caa3dc0fac8dba.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "eeLF7Thy96siomB7wcCQHp8gU8s3E1bI9qBmNq42ab-VO2aNsatGfA\u003d\u003d" }
response_body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 22:23:33

(3) More

SUCCESS

OIDCC-5.3.1

CallUserInfoEndpoint

Got a response from the userinfo endpoint

headers

{
  "content-type": "application/json;charset\u003dUTF-8",
  "content-length": "139",
  "connection": "keep-alive",
  "date": "Thu, 25 Apr 2024 22:23:33 GMT",
  "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport",
  "set-cookie": "XSRF-TOKEN\u003def7592d2-2b39-4697-80f6-876a412c50c4; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax",
  "x-amz-cognito-request-id": "91b04732-3143-44c7-8c2f-75631b7dec45",
  "x-content-type-options": "nosniff",
  "x-xss-protection": "1; mode\u003dblock",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "pragma": "no-cache",
  "expires": "0",
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains",
  "x-frame-options": "DENY",
  "server": "Server",
  "x-cache": "Miss from cloudfront",
  "via": "1.1 577ac6ab40b1e229d1caa3dc0fac8dba.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-P2",
  "x-amz-cf-id": "eeLF7Thy96siomB7wcCQHp8gU8s3E1bI9qBmNq42ab-VO2aNsatGfA\u003d\u003d"
}

status_code

{
  "code": 200
}

body

{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 22:23:33

(2) More

SUCCESS

EnsureHttpStatusCodeIs200

resource endpoint returned the expected http status

expected_status	200
http_status	200

2024-04-25 22:23:33	SUCCESS OIDCC-5.3.2	EnsureContentTypeJson endpoint_response Content-Type: header is application/json

2024-04-25 22:23:33

(1) More

SUCCESS

ExtractUserInfoFromUserInfoEndpointResponse

Extracted user info

userinfo

{
  "sub": "774658e9-e1a8-4dd7-9f3f-69602a3498a3",
  "email_verified": "true",
  "email": "[email protected]",
  "username": "[email protected]"
}

2024-04-25 22:23:33		ValidateUserInfoStandardClaims sub is a string with content

2024-04-25 22:23:33	FAILURE OIDCC-5.1	ValidateUserInfoStandardClaims email_verified is not a boolean

2024-04-25 22:23:33		ValidateUserInfoStandardClaims email is a string with content

2024-04-25 22:23:33		ValidateUserInfoStandardClaims Skipping unknown claim: username

2024-04-25 22:23:33	FAILURE OIDCC-5.1	ValidateUserInfoStandardClaims Userinfo is not valid

2024-04-25 22:23:33

(1) More

SUCCESS

OIDCC-5.3.2

EnsureUserInfoContainsSub

Found sub in userinfo

sub	774658e9-e1a8-4dd7-9f3f-69602a3498a3

2024-04-25 22:23:33		EnsureUserInfoUpdatedAtValid userinfo response does not contain 'updated_at'

2024-04-25 22:23:33		EnsureMemberValuesInClaimNameReferenceToMemberNamesInClaimSources userinfo response does not contain '_claim_names' nor _claim_sources'

2024-04-25 22:23:33

(1) More

FINISHED

oidcc-userinfo-get

Test has run to completion

testmodule_result

FAILED

Unregister dynamically registered client

2024-04-25 22:23:33		UnregisterDynamicallyRegisteredClient Couldn't find registration_access_token.

Test Summary

Test Results