Test detail

Test Name	oidcc-userinfo-post-header
Variant	client_auth_type=client_secret_basic, server_metadata=static, response_type=code, response_mode=default, client_registration=static_client
Test ID	vaLhatGxS5qglcM https://www.certification.openid.net/log-detail.html?public=true&log=vaLhatGxS5qglcM
Created	2024-04-25T21:24:49.682079308Z
Description
Test Version	5.1.16
Test Owner	21036854 https://gitlab.com
Plan ID	gg7kXAOPURbNc https://www.certification.openid.net/plan-detail.html?public=true&plan=gg7kXAOPURbNc
Exported From	https://www.certification.openid.net
Exported By	21036854 https://gitlab.com
Suite Version	5.1.16
Exported	2024-04-26 01:06:35 (UTC)

2024-04-25 21:24:49

(7) More

INFO

TEST-RUNNER

Test instance vaLhatGxS5qglcM created

baseUrl	https://www.certification.openid.net/test/a/ad04252024test
variant	{ "client_auth_type": "client_secret_basic", "response_type": "code", "server_metadata": "static", "response_mode": "default", "client_registration": "static_client" }
alias	ad04252024test
description
planId	gg7kXAOPURbNc
config	{ "alias": "ad04252024test", "server": { "issuer": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4", "jwks_uri": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json", "authorization_endpoint": "https://gh0stid.authn.cc/oauth2/authorize", "token_endpoint": "https://gh0stid.authn.cc/oauth2/token", "userinfo_endpoint": "https://gh0stid.authn.cc/oauth2/userInfo" }, "client": { "client_id": "3fsi45vsoqf5jr65tsdhr0vjc1", "client_secret": "74k6uj0oqgu1fihmnjvlte3o5sc5tnf59o15an7kvp75touqpcd" }, "client_secret_post": { "client_id": "tiqph3ss01s3n427q82hm70ch", "client_secret": "1pn27ge4pk30gnkf9mngp15m4t09u4u0d58in9dfult8a15i2civ" }, "client2": { "client_id": "657ufjbt2tjc4qb4oln281r20r", "client_secret": "13bgrpol151jajr59nrv2jlall9selesu62iaihstpbs9m326qe2" } }
testName	oidcc-userinfo-post-header

2024-04-25 21:24:49

(1) More

SUCCESS

CreateRedirectUri

Created redirect URI

redirect_uri

https://www.certification.openid.net/test/a/ad04252024test/callback

2024-04-25 21:24:49

(5) More

SUCCESS

GetStaticServerConfiguration

Found a static server object

issuer	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4
jwks_uri	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json
authorization_endpoint	https://gh0stid.authn.cc/oauth2/authorize
token_endpoint	https://gh0stid.authn.cc/oauth2/token
userinfo_endpoint	https://gh0stid.authn.cc/oauth2/userInfo

2024-04-25 21:24:49

(1) More

SUCCESS

CheckServerConfiguration

Found required server configuration keys

required

[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]

2024-04-25 21:24:49

(4) More

SUCCESS

ExtractTLSTestValuesFromServerConfiguration

Extracted TLS information from authorization server configuration

registration_endpoint
authorization_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }
token_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }
userinfo_endpoint	{ "testHost": "gh0stid.authn.cc", "testPort": 443 }

2024-04-25 21:24:49

(1) More

FetchServerKeys

Fetching server key

jwks_uri

https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json

2024-04-25 21:24:49

(4) More

FetchServerKeys

HTTP request

request_uri	https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4/.well-known/jwks.json
request_method	GET
request_headers	{ "Accept": "text/plain, application/json, application/+json, /*", "Content-Length": "0" }
request_body

2024-04-25 21:24:49

(4) More

RESPONSE

FetchServerKeys

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "date": "Thu, 25 Apr 2024 21:24:49 GMT", "content-type": "application/json", "content-length": "916", "connection": "keep-alive", "x-amzn-requestid": "60e892eb-70de-405d-9735-8d34f6af71b3", "cache-control": "public, max-age\u003d86400" }
response_body	{"keys":[{"alg":"RS256","e":"AQAB","kid":"GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM=","kty":"RSA","n":"pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q","use":"sig"},{"alg":"RS256","e":"AQAB","kid":"m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ=","kty":"RSA","n":"uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ","use":"sig"}]}

2024-04-25 21:24:49

(1) More

FetchServerKeys

Found JWK set string

jwk_string

{"keys":[{"alg":"RS256","e":"AQAB","kid":"GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM=","kty":"RSA","n":"pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q","use":"sig"},{"alg":"RS256","e":"AQAB","kid":"m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ=","kty":"RSA","n":"uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ","use":"sig"}]}

2024-04-25 21:24:49

(1) More

SUCCESS

FetchServerKeys

Found server JWK set

server_jwks

{
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d",
      "kty": "RSA",
      "n": "pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q",
      "use": "sig"
    },
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ\u003d",
      "kty": "RSA",
      "n": "uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ",
      "use": "sig"
    }
  ]
}

2024-04-25 21:24:49

(1) More

SUCCESS

CheckServerKeysIsValid

Server JWKs is valid

server_jwks

{
  "keys": [
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d",
      "kty": "RSA",
      "n": "pk9pSBQvfQKC-QIxPifnyLdjn4vMrb8eLtS78mLQKhPhFLk-O6zFyV0Ie3i2LCKv7meRPlxXixsqhBxvKFweswtOYfqS04sXOFDsgzrqDIFAxNIlpL4Hr1BlDTwfLy5OsLdNyeAy05gNs-HXYh0XsTSdCsUIj7czWNjq77n1anzWub8jCrokKkMksfJNdzgktPregWhedsl3F1vYjYdFRUE-w1LLHaynizxdswj_OJ6GxB_BCCkuAGIYk6wlTOSOStMVq2IWMThwiEd2PPNKKbAT_WdK9o4hR24p6vHbNIYqLGaCl91vuWwTOv4DeBJL7TkvPHVoUqXIZbhZZVYb3Q",
      "use": "sig"
    },
    {
      "alg": "RS256",
      "e": "AQAB",
      "kid": "m26sRoFkJsrCnVgdRO0sT3aj3swpDqtjVZVnhytY5SQ\u003d",
      "kty": "RSA",
      "n": "uxcVDDkFFNxEElSqe55-rjj9Bt27G3Qe36Zl-b9pRIHDSGvXico8ZcZrJl8wTqSYLcJm2x4emgxsa-LDDBlzxxtErwH7CLCbOckumpzh2k9qdusDQXxJcvWEc79qmiLG2Vq8T4m6s4ggVfqBO644YuVdYeDZLsIwmWZwg0tQqwYfivg7ezoJponxVisaze0_sXWClavLLiDNA3bzC4vKoHmqRRHmTTzgisynQstyWznh17dW5c0If2PVF8meanUSIFjRal6DHJ-qS6-mTZIMp5T1S0Xvr35OoPYDwtOpIeIMm5SOWhpuFQKrg4j8epBB6ZftrZLVxOii8A14gJ0ILQ",
      "use": "sig"
    }
  ]
}

2024-04-25 21:24:49	SUCCESS RFC7517-1.1	ValidateServerJWKs Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url

2024-04-25 21:24:49	SUCCESS OIDCC-10.1	CheckForKeyIdInServerJWKs All keys contain kids

2024-04-25 21:24:49

(1) More

SUCCESS

RFC7517-4.5

CheckDistinctKeyIdValueInServerJWKs

Distinct 'kid' value in all keys of server_jwks

see	https://bitbucket.org/openid/connect/issues/1127

2024-04-25 21:24:49	SUCCESS RFC7518-6.3.2.1	EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys Jwks does not contain any private or symmetric keys

2024-04-25 21:24:49

(2) More

SUCCESS

GetStaticClientConfiguration

Found a static client object

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
client_secret	74k6uj0oqgu1fihmnjvlte3o5sc5tnf59o15an7kvp75touqpcd

2024-04-25 21:24:49

(3) More

INFO

RFC7517-1.1

ValidateClientJWKsPrivatePart

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 21:24:49

(3) More

INFO

ExtractJWKsFromStaticClientConfiguration

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 21:24:49

(3) More

INFO

RFC7517-4.5

CheckDistinctKeyIdValueInClientJWKs

Skipped evaluation due to missing required element: client jwks

path	jwks
mapped
object	client

2024-04-25 21:24:49

(1) More

SetScopeInClientConfigurationToOpenId

Set scope in client configuration to "openid"

scope

openid

2024-04-25 21:24:49

(1) More

SUCCESS

SetProtectedResourceUrlToUserInfoEndpoint

userinfo_endpoint will be used to test access token. The user info is not a mandatory to implement feature in the OpenID Connect specification, but is mandatory for certification.

protected_resource_url

https://gh0stid.authn.cc/oauth2/userInfo

2024-04-25 21:24:49		oidcc-userinfo-post-header Setup Done

Make request to authorization endpoint

2024-04-25 21:24:49

(3) More

SUCCESS

CreateAuthorizationEndpointRequestFromClientInformation

Created authorization endpoint request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid

2024-04-25 21:24:49

(2) More

CreateRandomStateValue

Created state value

requested_state_length	10
state	tkWXbueE5H

2024-04-25 21:24:49

(4) More

SUCCESS

AddStateToAuthorizationEndpointRequest

Added state parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	tkWXbueE5H

2024-04-25 21:24:49

(2) More

CreateRandomNonceValue

Created nonce value

requested_nonce_length	10
nonce	MxFrFbJkC4

2024-04-25 21:24:49

(5) More

SUCCESS

AddNonceToAuthorizationEndpointRequest

Added nonce parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	tkWXbueE5H
nonce	MxFrFbJkC4

2024-04-25 21:24:49

(6) More

SUCCESS

SetAuthorizationEndpointRequestResponseTypeFromEnvironment

Added response_type parameter to request

client_id	3fsi45vsoqf5jr65tsdhr0vjc1
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback
scope	openid
state	tkWXbueE5H
nonce	MxFrFbJkC4
response_type	code

2024-04-25 21:24:49

(2) More

SUCCESS

BuildPlainRedirectToAuthorizationEndpoint

Sending to authorization endpoint

auth_request

{
  "client_id": "3fsi45vsoqf5jr65tsdhr0vjc1",
  "redirect_uri": "https://www.certification.openid.net/test/a/ad04252024test/callback",
  "scope": "openid",
  "state": "tkWXbueE5H",
  "nonce": "MxFrFbJkC4",
  "response_type": "code"
}

redirect_to_authorization_endpoint

https://gh0stid.authn.cc/oauth2/authorize?client_id=3fsi45vsoqf5jr65tsdhr0vjc1&redirect_uri=https://www.certification.openid.net/test/a/ad04252024test/callback&scope=openid&state=tkWXbueE5H&nonce=MxFrFbJkC4&response_type=code

2024-04-25 21:24:49

(1) More

REDIRECT

oidcc-userinfo-post-header

Redirecting to authorization endpoint

redirect_to

https://gh0stid.authn.cc/oauth2/authorize?client_id=3fsi45vsoqf5jr65tsdhr0vjc1&redirect_uri=https://www.certification.openid.net/test/a/ad04252024test/callback&scope=openid&state=tkWXbueE5H&nonce=MxFrFbJkC4&response_type=code

2024-04-25 21:24:51

(12) More

INCOMING

oidcc-userinfo-post-header

Incoming HTTP request to /test/a/ad04252024test/callback

incoming_headers	{ "host": "www.certification.openid.net", "upgrade-insecure-requests": "1", "dnt": "1", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,/;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7", "sec-fetch-site": "cross-site", "sec-fetch-mode": "navigate", "sec-fetch-user": "?1", "sec-fetch-dest": "document", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-mobile": "?0", "sec-ch-ua-platform": "\"macOS\"", "referer": "https://www.certification.openid.net/", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "connection": "close" }
incoming_path	/test/a/ad04252024test/callback
incoming_body_form_params
incoming_method	GET
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{ "code": "2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795", "state": "tkWXbueE5H" }
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_body_json_parse_error
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2024-04-25 21:24:51

(1) More

SUCCESS

CreateRandomImplicitSubmitUrl

Created random implicit submission URL

implicit_submit

{
  "path": "implicit/xZDkRJ0CU1fldKpQ79GW",
  "fullUrl": "https://www.certification.openid.net/test/a/ad04252024test/implicit/xZDkRJ0CU1fldKpQ79GW"
}

2024-04-25 21:24:51

(2) More

OUTGOING

oidcc-userinfo-post-header

Response to HTTP request to test instance vaLhatGxS5qglcM

outgoing

ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/ad04252024test/implicit/xZDkRJ0CU1fldKpQ79GW, returnUrl=/log-detail.html?log=vaLhatGxS5qglcM}]

outgoing_path

callback

2024-04-25 21:24:51

(12) More

INCOMING

oidcc-userinfo-post-header

Incoming HTTP request to /test/a/ad04252024test/implicit/xZDkRJ0CU1fldKpQ79GW

incoming_headers	{ "host": "www.certification.openid.net", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-platform": "\"macOS\"", "dnt": "1", "sec-ch-ua-mobile": "?0", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "content-type": "text/plain", "accept": "/", "origin": "https://www.certification.openid.net", "sec-fetch-site": "same-origin", "sec-fetch-mode": "cors", "sec-fetch-dest": "empty", "referer": "https://www.certification.openid.net/test/a/ad04252024test/callback?code\u003d2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795\u0026state\u003dtkWXbueE5H", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "content-length": "0", "connection": "close" }
incoming_path	/test/a/ad04252024test/implicit/xZDkRJ0CU1fldKpQ79GW
incoming_body_form_params
incoming_method	POST
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{}
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_body_json_parse_error
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2024-04-25 21:24:51

(4) More

OUTGOING

oidcc-userinfo-post-header

Response to HTTP request to test instance vaLhatGxS5qglcM

outgoing_status_code	204
outgoing_headers	{}
outgoing_body
outgoing_path	implicit/xZDkRJ0CU1fldKpQ79GW

2024-04-25 21:24:51	SUCCESS	ExtractImplicitHashToCallbackResponse implicit_hash is empty

2024-04-25 21:24:51

(5) More

REDIRECT-IN

oidcc-userinfo-post-header

Authorization endpoint response captured

url_query	{ "code": "2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795", "state": "tkWXbueE5H" }
headers	{ "host": "www.certification.openid.net", "upgrade-insecure-requests": "1", "dnt": "1", "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36", "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,/;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7", "sec-fetch-site": "cross-site", "sec-fetch-mode": "navigate", "sec-fetch-user": "?1", "sec-fetch-dest": "document", "sec-ch-ua": "\"Google Chrome\";v\u003d\"123\", \"Not:A-Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"123\"", "sec-ch-ua-mobile": "?0", "sec-ch-ua-platform": "\"macOS\"", "referer": "https://www.certification.openid.net/", "accept-encoding": "gzip, deflate, br, zstd", "accept-language": "en-US,en;q\u003d0.9", "cookie": "_gid\u003dGA1.2.1443682475.1714075565; _ga\u003dGA1.2.1767720666.1713926739; _ga_NF8HNLNJJE\u003dGS1.1.1714075564.4.1.1714075870.0.0.0; JSESSIONID\u003d797FF28062B72DC3DC14BB1BDEEE15E6", "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256", "x-ssl-protocol": "TLSv1.2", "x-forwarded-proto": "https", "x-forwarded-port": "443", "x-forwarded-host": "www.certification.openid.net", "x-forwarded-server": "www.certification.openid.net", "connection": "close" }
http_method	GET
url_fragment	{}
post_body

Verify authorization endpoint response

2024-04-25 21:24:51	SUCCESS	CheckMatchingCallbackParameters Callback parameters successfully verified

2024-04-25 21:24:51		ValidateIssIfPresentInAuthorizationResponse No 'iss' value in authorization response.

2024-04-25 21:24:51	SUCCESS	CheckIfAuthorizationEndpointError No error from authorization endpoint

2024-04-25 21:24:51

(1) More

SUCCESS

CheckStateInAuthorizationResponse

State in response correctly returned

state

tkWXbueE5H

2024-04-25 21:24:51

(1) More

SUCCESS

ExtractAuthorizationCodeFromAuthorizationResponse

Found authorization code

code	2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795

2024-04-25 21:24:51

(3) More

SUCCESS

CreateTokenEndpointRequestForAuthorizationCodeGrant

Created token endpoint request

grant_type	authorization_code
code	2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795
redirect_uri	https://www.certification.openid.net/test/a/ad04252024test/callback

2024-04-25 21:24:51

(1) More

SUCCESS

AddBasicAuthClientSecretAuthenticationParameters

Added basic authorization header

Authorization

Basic M2ZzaTQ1dnNvcWY1anI2NXRzZGhyMHZqYzE6NzRrNnVqMG9xZ3UxZmlobW5qdmx0ZTNvNXNjNXRuZjU5bzE1YW43a3ZwNzV0b3VxcGNk

2024-04-25 21:24:51

(4) More

CallTokenEndpoint

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/token
request_method	POST
request_headers	{ "Accept": "application/json", "Authorization": "Basic M2ZzaTQ1dnNvcWY1anI2NXRzZGhyMHZqYzE6NzRrNnVqMG9xZ3UxZmlobW5qdmx0ZTNvNXNjNXRuZjU5bzE1YW43a3ZwNzV0b3VxcGNk", "Content-Type": "application/x-www-form-urlencoded;charset\u003dUTF-8", "Content-Length": "166" }
request_body	grant_type=authorization_code&code=2cd312e6-0d8a-4d9f-9fcb-d04c3c32a795&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fad04252024test%2Fcallback

2024-04-25 21:24:51

(4) More

RESPONSE

CallTokenEndpoint

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "transfer-encoding": "chunked", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 21:24:51 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d1394e0c6-917d-403a-af04-792c464e8280; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "eff678a3-9205-4fb5-b4db-eaea3d2a49dd", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 1d180e6d1aa5f424d0d3571ff7011a02.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "BuCiSul1Zwu-n8jrZdRf0NHRWXEWCv6i2-W-j_MSNwIS60-g-o4Wqg\u003d\u003d" }
response_body	{"id_token":"eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.AjoROvZYkIU48Ro0GCUrY7QtwIVeg6znmMquSjIeegCRa8rTnm6jgu0tl571egl000F1zbIA6bEhVAc6XM37KYiEG7sSiyVr4bRImYuV0OcQ-r8syCHdzytV1N_8Evlj52iWC3l7MYJk-TrvDkW6CtrGAZXUjjCjO6vbcJ4GuZUD0q_UbkC17BvZ4S8Gni8AywxqIGPHGLYkpBW5KPt6ItBEEIVla_YhVz4FWhVQP8JrSGrRc6K5pDdl48WCxLcRCwxFyFFHa-2YCer6cHkGQGcgrUbAtnW2f3wcEMqg4i_tiL5sNCLFBs107lswMOyB0-5R7p75LnAIi2GuY9Gw5g","access_token":"eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w","refresh_token":"eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.TDJcYUV27h4xfzBYT9JUq1CPtveJlq9y4vw-BDY4eGnKgXBAMgs1_2fT_H56pCAS8ScBuhtAXDlRamu1HRwW5_Nb_zQKlLX31UOeTDKqJdWk1HnsGLY5TLE1B8K8RJhu48UfeqlM_UZcZZJZ13cfwts26Qn1ij3e-F3DZzrEj7h0rVcaieAOP-hgHJ2dL3MCPYH112CFaddwJhZkNZoEDe0mddOTTgAWphnuB-fqop4-qT4nxxLl2Jib1CZBlfcnBNnmjRazYnKN7YMSsTlb3MW8QazWXRsi3DhyJ7OpaC39TItBtb7s67ITwcWs01tBbjQ7Y6I-F7p-QAJ6-TIe5g.JPSU_bbx0lndXbXg.KXAVu1SCtO1Q3zLa_wfJA8JGUEgdV0sC7fsZy-fextiV7nYI8qprIoU1cGCULjeSitiisptHDQ6EFW6VGb-ZRrnHVoDpBjkmltnsaH5V3T-hu4ApDesH1fwmVQTv2TwEVvgfqordeaDCWC8K9UCclAUHd6fWTwivGYg60YmxYCAQ3-qtz316R0j1ELUv9lqoh3SdJzT-UxKinCrgUitaIiaK272TKb1mpELSir8zz0MCzYpRJFlgisFssB8FWiw3-lpQ20PYY8xouwxJwOrQN9Zj6b6AdbSOWgQskGpxQ7qubyCMLmxRyKf2uC-IlI589UUJx9igZ-fcKccn0LdbvlnVm4Og5U16Ylrz25mQb5q8k56lFC9cx5EnW-hbwg_1QD5wZnPIfaMUHbOVaEZOcmsG66ffNbycZZEQA666gHOsyNmUIcNQ8c0BnFO8ZR6a8K8gmSeR5LkQajt1kfEQFOfI8WqddI908pOs_bZuSHRYgBbyOb2eCofN1y2FUlGqrLW-O6PNCM88mYeF6QukVuT2BWBth2L-LqnY6hdNvYUUbhdSwGD8TzE7wzxwFZQhI-lU6to6c-OoUZQzy3rnzg40uwJpZqcOIrHCU5CVyHxvDPclTn8UOw7A95sXBbUdJsSdHDl0mgR_m8-H0to_Qo0IoLzbMvHa9hsKtMIC7U2HWn8pjaHF8eIObCraFI3AB2cS2x5E44Vh73IPmQMfwbTjzHbxuCSbjUZ6zdwLFeD6BXbSRGk9xFAuZnJ0cHKCAYDXql3RUStFLB8OGFliXig_nczp-G-onpOkeeidPTOjb2qMzoXNAYyvQ6wIeJfdgnSnDu4QfemLUK_QZk5HQMZAota4HDx7mYx58D3jCEUzqVwK2xM1RaL7li1BqX_ZuEXlz-0Zc6Bjm2HI6IiOLEcsKsQ2ClhWp0LTKk4uNLwq7MgNBynyq4OzWcHbLXZwtztray76oF7sHysd_4oj16Vc2w0mn54fW7ELTkvcfjBkh7pco3bsmLvkqmRskRf0s2iVgQXShIjdj8d5pWHME3r5AXaF_dXCnt0tBU6KUZl8KbyKjxNCc3Z0yWZBXtMyNQ4hg3bjFAiqr2enFi155iqpl-aqK0I8amMwMC-YE7B73mRcTvgjRMIuJveeNxOiWkgVZ3cvaJj2GA2uzmGFl_IwZxInoGUMLuUxXBH7tXQYbYloAWv1.r_YF7OnXdiwMOENksrgprg","expires_in":3600,"token_type":"Bearer"}

2024-04-25 21:24:51

(5) More

SUCCESS

CallTokenEndpoint

Parsed token endpoint response

id_token	eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.AjoROvZYkIU48Ro0GCUrY7QtwIVeg6znmMquSjIeegCRa8rTnm6jgu0tl571egl000F1zbIA6bEhVAc6XM37KYiEG7sSiyVr4bRImYuV0OcQ-r8syCHdzytV1N_8Evlj52iWC3l7MYJk-TrvDkW6CtrGAZXUjjCjO6vbcJ4GuZUD0q_UbkC17BvZ4S8Gni8AywxqIGPHGLYkpBW5KPt6ItBEEIVla_YhVz4FWhVQP8JrSGrRc6K5pDdl48WCxLcRCwxFyFFHa-2YCer6cHkGQGcgrUbAtnW2f3wcEMqg4i_tiL5sNCLFBs107lswMOyB0-5R7p75LnAIi2GuY9Gw5g
access_token	eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w
refresh_token	eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.TDJcYUV27h4xfzBYT9JUq1CPtveJlq9y4vw-BDY4eGnKgXBAMgs1_2fT_H56pCAS8ScBuhtAXDlRamu1HRwW5_Nb_zQKlLX31UOeTDKqJdWk1HnsGLY5TLE1B8K8RJhu48UfeqlM_UZcZZJZ13cfwts26Qn1ij3e-F3DZzrEj7h0rVcaieAOP-hgHJ2dL3MCPYH112CFaddwJhZkNZoEDe0mddOTTgAWphnuB-fqop4-qT4nxxLl2Jib1CZBlfcnBNnmjRazYnKN7YMSsTlb3MW8QazWXRsi3DhyJ7OpaC39TItBtb7s67ITwcWs01tBbjQ7Y6I-F7p-QAJ6-TIe5g.JPSU_bbx0lndXbXg.KXAVu1SCtO1Q3zLa_wfJA8JGUEgdV0sC7fsZy-fextiV7nYI8qprIoU1cGCULjeSitiisptHDQ6EFW6VGb-ZRrnHVoDpBjkmltnsaH5V3T-hu4ApDesH1fwmVQTv2TwEVvgfqordeaDCWC8K9UCclAUHd6fWTwivGYg60YmxYCAQ3-qtz316R0j1ELUv9lqoh3SdJzT-UxKinCrgUitaIiaK272TKb1mpELSir8zz0MCzYpRJFlgisFssB8FWiw3-lpQ20PYY8xouwxJwOrQN9Zj6b6AdbSOWgQskGpxQ7qubyCMLmxRyKf2uC-IlI589UUJx9igZ-fcKccn0LdbvlnVm4Og5U16Ylrz25mQb5q8k56lFC9cx5EnW-hbwg_1QD5wZnPIfaMUHbOVaEZOcmsG66ffNbycZZEQA666gHOsyNmUIcNQ8c0BnFO8ZR6a8K8gmSeR5LkQajt1kfEQFOfI8WqddI908pOs_bZuSHRYgBbyOb2eCofN1y2FUlGqrLW-O6PNCM88mYeF6QukVuT2BWBth2L-LqnY6hdNvYUUbhdSwGD8TzE7wzxwFZQhI-lU6to6c-OoUZQzy3rnzg40uwJpZqcOIrHCU5CVyHxvDPclTn8UOw7A95sXBbUdJsSdHDl0mgR_m8-H0to_Qo0IoLzbMvHa9hsKtMIC7U2HWn8pjaHF8eIObCraFI3AB2cS2x5E44Vh73IPmQMfwbTjzHbxuCSbjUZ6zdwLFeD6BXbSRGk9xFAuZnJ0cHKCAYDXql3RUStFLB8OGFliXig_nczp-G-onpOkeeidPTOjb2qMzoXNAYyvQ6wIeJfdgnSnDu4QfemLUK_QZk5HQMZAota4HDx7mYx58D3jCEUzqVwK2xM1RaL7li1BqX_ZuEXlz-0Zc6Bjm2HI6IiOLEcsKsQ2ClhWp0LTKk4uNLwq7MgNBynyq4OzWcHbLXZwtztray76oF7sHysd_4oj16Vc2w0mn54fW7ELTkvcfjBkh7pco3bsmLvkqmRskRf0s2iVgQXShIjdj8d5pWHME3r5AXaF_dXCnt0tBU6KUZl8KbyKjxNCc3Z0yWZBXtMyNQ4hg3bjFAiqr2enFi155iqpl-aqK0I8amMwMC-YE7B73mRcTvgjRMIuJveeNxOiWkgVZ3cvaJj2GA2uzmGFl_IwZxInoGUMLuUxXBH7tXQYbYloAWv1.r_YF7OnXdiwMOENksrgprg
expires_in	3600
token_type	Bearer

2024-04-25 21:24:51	SUCCESS	CheckIfTokenEndpointResponseError No error from token endpoint

2024-04-25 21:24:51

(1) More

SUCCESS

CheckForAccessTokenValue

Found an access token

access_token

eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w

2024-04-25 21:24:51

(2) More

SUCCESS

ExtractAccessTokenFromTokenResponse

Extracted the access token

value

eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.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.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w

type

Bearer

2024-04-25 21:24:51

(1) More

SUCCESS

RFC6749-5.1

ExtractExpiresInFromTokenEndpointResponse

Extracted 'expires_in'

expires_in

2024-04-25 21:24:51

(1) More

SUCCESS

RFC6749-5.1

ValidateExpiresIn

expires_in passed all validation checks

expires_in

2024-04-25 21:24:51

(1) More

SUCCESS

CheckForRefreshTokenValue

Found a refresh token

refresh_token

eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.TDJcYUV27h4xfzBYT9JUq1CPtveJlq9y4vw-BDY4eGnKgXBAMgs1_2fT_H56pCAS8ScBuhtAXDlRamu1HRwW5_Nb_zQKlLX31UOeTDKqJdWk1HnsGLY5TLE1B8K8RJhu48UfeqlM_UZcZZJZ13cfwts26Qn1ij3e-F3DZzrEj7h0rVcaieAOP-hgHJ2dL3MCPYH112CFaddwJhZkNZoEDe0mddOTTgAWphnuB-fqop4-qT4nxxLl2Jib1CZBlfcnBNnmjRazYnKN7YMSsTlb3MW8QazWXRsi3DhyJ7OpaC39TItBtb7s67ITwcWs01tBbjQ7Y6I-F7p-QAJ6-TIe5g.JPSU_bbx0lndXbXg.KXAVu1SCtO1Q3zLa_wfJA8JGUEgdV0sC7fsZy-fextiV7nYI8qprIoU1cGCULjeSitiisptHDQ6EFW6VGb-ZRrnHVoDpBjkmltnsaH5V3T-hu4ApDesH1fwmVQTv2TwEVvgfqordeaDCWC8K9UCclAUHd6fWTwivGYg60YmxYCAQ3-qtz316R0j1ELUv9lqoh3SdJzT-UxKinCrgUitaIiaK272TKb1mpELSir8zz0MCzYpRJFlgisFssB8FWiw3-lpQ20PYY8xouwxJwOrQN9Zj6b6AdbSOWgQskGpxQ7qubyCMLmxRyKf2uC-IlI589UUJx9igZ-fcKccn0LdbvlnVm4Og5U16Ylrz25mQb5q8k56lFC9cx5EnW-hbwg_1QD5wZnPIfaMUHbOVaEZOcmsG66ffNbycZZEQA666gHOsyNmUIcNQ8c0BnFO8ZR6a8K8gmSeR5LkQajt1kfEQFOfI8WqddI908pOs_bZuSHRYgBbyOb2eCofN1y2FUlGqrLW-O6PNCM88mYeF6QukVuT2BWBth2L-LqnY6hdNvYUUbhdSwGD8TzE7wzxwFZQhI-lU6to6c-OoUZQzy3rnzg40uwJpZqcOIrHCU5CVyHxvDPclTn8UOw7A95sXBbUdJsSdHDl0mgR_m8-H0to_Qo0IoLzbMvHa9hsKtMIC7U2HWn8pjaHF8eIObCraFI3AB2cS2x5E44Vh73IPmQMfwbTjzHbxuCSbjUZ6zdwLFeD6BXbSRGk9xFAuZnJ0cHKCAYDXql3RUStFLB8OGFliXig_nczp-G-onpOkeeidPTOjb2qMzoXNAYyvQ6wIeJfdgnSnDu4QfemLUK_QZk5HQMZAota4HDx7mYx58D3jCEUzqVwK2xM1RaL7li1BqX_ZuEXlz-0Zc6Bjm2HI6IiOLEcsKsQ2ClhWp0LTKk4uNLwq7MgNBynyq4OzWcHbLXZwtztray76oF7sHysd_4oj16Vc2w0mn54fW7ELTkvcfjBkh7pco3bsmLvkqmRskRf0s2iVgQXShIjdj8d5pWHME3r5AXaF_dXCnt0tBU6KUZl8KbyKjxNCc3Z0yWZBXtMyNQ4hg3bjFAiqr2enFi155iqpl-aqK0I8amMwMC-YE7B73mRcTvgjRMIuJveeNxOiWkgVZ3cvaJj2GA2uzmGFl_IwZxInoGUMLuUxXBH7tXQYbYloAWv1.r_YF7OnXdiwMOENksrgprg

2024-04-25 21:24:51

(2) More

INFO

OIDCC-10.2

ValidateIdTokenFromTokenResponseEncryption

Skipped evaluation due to missing required object: client_jwks

expected	client_jwks
mapped

2024-04-25 21:24:51

(3) More

SUCCESS

OIDCC-3.3.3.3 OIDCC-3.1.3.3

ExtractIdTokenFromTokenResponse

Found and parsed the id_token from token_endpoint_response

value	eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.AjoROvZYkIU48Ro0GCUrY7QtwIVeg6znmMquSjIeegCRa8rTnm6jgu0tl571egl000F1zbIA6bEhVAc6XM37KYiEG7sSiyVr4bRImYuV0OcQ-r8syCHdzytV1N_8Evlj52iWC3l7MYJk-TrvDkW6CtrGAZXUjjCjO6vbcJ4GuZUD0q_UbkC17BvZ4S8Gni8AywxqIGPHGLYkpBW5KPt6ItBEEIVla_YhVz4FWhVQP8JrSGrRc6K5pDdl48WCxLcRCwxFyFFHa-2YCer6cHkGQGcgrUbAtnW2f3wcEMqg4i_tiL5sNCLFBs107lswMOyB0-5R7p75LnAIi2GuY9Gw5g
header	{ "kid": "GHBDPMUc54JQQhjFu20BN2iQQ3v5gGx+Rw3/MqwOqxM\u003d", "alg": "RS256" }
claims	{ "at_hash": "AWMG0UNzaUN0b6fuiKPc6w", "sub": "774658e9-e1a8-4dd7-9f3f-69602a3498a3", "email_verified": true, "iss": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_vy1I5F4c4", "cognito:username": "[email protected]", "nonce": "MxFrFbJkC4", "origin_jti": "072ffeb0-295c-420a-9cee-60234b237a5e", "aud": "3fsi45vsoqf5jr65tsdhr0vjc1", "token_use": "id", "auth_time": 1714080291, "exp": 1714083891, "iat": 1714080291, "jti": "d2a940dd-8b4e-457b-accc-74404482b8e0", "email": "[email protected]" }

2024-04-25 21:24:51	SUCCESS OIDCC-3.1.3.7	ValidateIdToken ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks

2024-04-25 21:24:51		ValidateIdTokenStandardClaims sub is a string with content

2024-04-25 21:24:51		ValidateIdTokenStandardClaims email_verified is a boolean

2024-04-25 21:24:51		ValidateIdTokenStandardClaims Skipping unknown claim: cognito:username

2024-04-25 21:24:51		ValidateIdTokenStandardClaims Skipping unknown claim: origin_jti

2024-04-25 21:24:51		ValidateIdTokenStandardClaims Skipping unknown claim: token_use

2024-04-25 21:24:51		ValidateIdTokenStandardClaims email is a string with content

2024-04-25 21:24:51	SUCCESS OIDCC-5.1	ValidateIdTokenStandardClaims id_token claims are valid

2024-04-25 21:24:51

(1) More

SUCCESS

OIDCC-2

ValidateIdTokenNonce

Nonce values match

nonce

MxFrFbJkC4

2024-04-25 21:24:51	SUCCESS OIDCC-5.5.1.1	ValidateIdTokenACRClaimAgainstRequest Nothing to check; the conformance suite did not request an acr claim in request object

2024-04-25 21:24:51

(1) More

SUCCESS

ValidateIdTokenSignature

id_token signature validated

id_token

eyJraWQiOiJHSEJEUE1VYzU0SlFRaGpGdTIwQk4yaVFRM3Y1Z0d4K1J3M1wvTXF3T3F4TT0iLCJhbGciOiJSUzI1NiJ9.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.AjoROvZYkIU48Ro0GCUrY7QtwIVeg6znmMquSjIeegCRa8rTnm6jgu0tl571egl000F1zbIA6bEhVAc6XM37KYiEG7sSiyVr4bRImYuV0OcQ-r8syCHdzytV1N_8Evlj52iWC3l7MYJk-TrvDkW6CtrGAZXUjjCjO6vbcJ4GuZUD0q_UbkC17BvZ4S8Gni8AywxqIGPHGLYkpBW5KPt6ItBEEIVla_YhVz4FWhVQP8JrSGrRc6K5pDdl48WCxLcRCwxFyFFHa-2YCer6cHkGQGcgrUbAtnW2f3wcEMqg4i_tiL5sNCLFBs107lswMOyB0-5R7p75LnAIi2GuY9Gw5g

2024-04-25 21:24:51

(1) More

SUCCESS

OIDCC-2

CheckForSubjectInIdToken

Found 'sub' in id_token

sub	774658e9-e1a8-4dd7-9f3f-69602a3498a3

2024-04-25 21:24:51		EnsureIdTokenUpdatedAtValid id_token response does not contain 'updated_at'

2024-04-25 21:24:51

(3) More

INFO

OIDCC-10.2 OIDC-10.2.1

ValidateEncryptedIdTokenHasKid

Skipped evaluation due to missing required element: id_token jwe_header

path	jwe_header
mapped
object	id_token

Userinfo endpoint tests

2024-04-25 21:24:51

(4) More

CallProtectedResource

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/userInfo
request_method	GET
request_headers	{ "Accept": "application/json", "Authorization": "Bearer eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.eyJzdWIiOiI3NzQ2NThlOS1lMWE4LTRkZDctOWYzZi02OTYwMmEzNDk4YTMiLCJpc3MiOiJodHRwczpcL1wvY29nbml0by1pZHAudXMtZWFzdC0xLmFtYXpvbmF3cy5jb21cL3VzLWVhc3QtMV92eTFJNUY0YzQiLCJ2ZXJzaW9uIjoyLCJjbGllbnRfaWQiOiIzZnNpNDV2c29xZjVqcjY1dHNkaHIwdmpjMSIsIm9yaWdpbl9qdGkiOiIwNzJmZmViMC0yOTVjLTQyMGEtOWNlZS02MDIzNGIyMzdhNWUiLCJ0b2tlbl91c2UiOiJhY2Nlc3MiLCJzY29wZSI6Im9wZW5pZCIsImF1dGhfdGltZSI6MTcxNDA4MDI5MSwiZXhwIjoxNzE0MDgzODkxLCJpYXQiOjE3MTQwODAyOTEsImp0aSI6IjU5MDE4NzdkLThmYjEtNGEyOC1iNzc0LTI0YTg1YjJlOGIwYSIsInVzZXJuYW1lIjoib2lkYy5yMXp5akBwYXNzZndkLmNvbSJ9.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w", "Content-Length": "0" }
request_body

2024-04-25 21:24:52

(4) More

RESPONSE

CallProtectedResource

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 21:24:52 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d4467ef03-41ba-47a7-b25e-7afb8dc09e0a; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "056cdf8f-2598-4ec1-b0e8-36272c890fbf", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 fe16c80658be143c81fdffc7cbf895ae.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "7CqerhgO31_kGj_dFjm1knKC-3BLT5PTsRgavWRC-QEEJPhQya8hTg\u003d\u003d" }
response_body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 21:24:52

(4) More

SUCCESS

CallProtectedResource

Got a response from the resource endpoint

status	200
endpoint_name	resource
headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 21:24:52 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d4467ef03-41ba-47a7-b25e-7afb8dc09e0a; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "056cdf8f-2598-4ec1-b0e8-36272c890fbf", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 fe16c80658be143c81fdffc7cbf895ae.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "7CqerhgO31_kGj_dFjm1knKC-3BLT5PTsRgavWRC-QEEJPhQya8hTg\u003d\u003d" }
body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 21:24:52

(2) More

SUCCESS

EnsureHttpStatusCodeIs200

resource endpoint returned the expected http status

expected_status	200
http_status	200

2024-04-25 21:24:52	SUCCESS	SetResourceMethodToPost Set protected resource access method to POST

2024-04-25 21:24:52

(4) More

CallUserInfoEndpoint

HTTP request

request_uri	https://gh0stid.authn.cc/oauth2/userInfo
request_method	POST
request_headers	{ "Accept": "application/json", "Authorization": "Bearer eyJraWQiOiJtMjZzUm9Ga0pzckNuVmdkUk8wc1QzYWozc3dwRHF0alZaVm5oeXRZNVNRPSIsImFsZyI6IlJTMjU2In0.eyJzdWIiOiI3NzQ2NThlOS1lMWE4LTRkZDctOWYzZi02OTYwMmEzNDk4YTMiLCJpc3MiOiJodHRwczpcL1wvY29nbml0by1pZHAudXMtZWFzdC0xLmFtYXpvbmF3cy5jb21cL3VzLWVhc3QtMV92eTFJNUY0YzQiLCJ2ZXJzaW9uIjoyLCJjbGllbnRfaWQiOiIzZnNpNDV2c29xZjVqcjY1dHNkaHIwdmpjMSIsIm9yaWdpbl9qdGkiOiIwNzJmZmViMC0yOTVjLTQyMGEtOWNlZS02MDIzNGIyMzdhNWUiLCJ0b2tlbl91c2UiOiJhY2Nlc3MiLCJzY29wZSI6Im9wZW5pZCIsImF1dGhfdGltZSI6MTcxNDA4MDI5MSwiZXhwIjoxNzE0MDgzODkxLCJpYXQiOjE3MTQwODAyOTEsImp0aSI6IjU5MDE4NzdkLThmYjEtNGEyOC1iNzc0LTI0YTg1YjJlOGIwYSIsInVzZXJuYW1lIjoib2lkYy5yMXp5akBwYXNzZndkLmNvbSJ9.pkofqoCHk8hMoB7OujLKZrZSH_VJItg1jbYpcO8o4BrOiN5MlMi-OIROiMe-xc7-bAZJpGpSxyKml-WUljW5yzuNr1zJ1DLqA5OaQv3sH77AEyF5bP4wF3knLxHCLChreoa2WwRP_9aXTIOYuqdJNrDrBh2ZFWgdWAhVEapfV9od8EP6U6Thk3Q6QWcfXvdnq4-TyJe1dBFUJRUI4TCNqKhm1rwv8bCvxXjes_66N9G6Oo-BL_ZVNdnA-tG6LauU164XaNRKdi9xXysRf2cSxgT2kDkfBodfd5FPQNZDuym85rf8suIS1OmGtijc0YFyPaZ0agUed9srl0wFPvw73w", "Content-Type": "application/x-www-form-urlencoded", "Content-Length": "0" }
request_body

2024-04-25 21:24:52

(4) More

RESPONSE

CallUserInfoEndpoint

HTTP response

response_status_code	200 OK
response_status_text	OK
response_headers	{ "content-type": "application/json;charset\u003dUTF-8", "content-length": "139", "connection": "keep-alive", "date": "Thu, 25 Apr 2024 21:24:52 GMT", "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport", "set-cookie": "XSRF-TOKEN\u003d325f0f4e-5e04-48cb-af8f-2dc28350f234; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax", "x-amz-cognito-request-id": "6f5fc89e-2115-48d5-ab30-04c4d41b93a8", "x-content-type-options": "nosniff", "x-xss-protection": "1; mode\u003dblock", "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate", "pragma": "no-cache", "expires": "0", "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains", "x-frame-options": "DENY", "server": "Server", "x-cache": "Miss from cloudfront", "via": "1.1 1d180e6d1aa5f424d0d3571ff7011a02.cloudfront.net (CloudFront)", "x-amz-cf-pop": "MIA3-P2", "x-amz-cf-id": "Msit8mivIPcY6T9nBt0aAjC0dhtIc9DTn2YJ5DyJVlwdMH8fUFsWiQ\u003d\u003d" }
response_body	{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 21:24:52

(3) More

SUCCESS

OIDCC-5.3.1

CallUserInfoEndpoint

Got a response from the userinfo endpoint

headers

{
  "content-type": "application/json;charset\u003dUTF-8",
  "content-length": "139",
  "connection": "keep-alive",
  "date": "Thu, 25 Apr 2024 21:24:52 GMT",
  "content-security-policy-report-only": "script-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; style-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; img-src https://d3oia8etllorh5.cloudfront.net https://gh0stid.authn.cc; report-uri https://gh0stid.authn.cc/cspreport",
  "set-cookie": "XSRF-TOKEN\u003d325f0f4e-5e04-48cb-af8f-2dc28350f234; Path\u003d/; Secure; HttpOnly; SameSite\u003dLax",
  "x-amz-cognito-request-id": "6f5fc89e-2115-48d5-ab30-04c4d41b93a8",
  "x-content-type-options": "nosniff",
  "x-xss-protection": "1; mode\u003dblock",
  "cache-control": "no-cache, no-store, max-age\u003d0, must-revalidate",
  "pragma": "no-cache",
  "expires": "0",
  "strict-transport-security": "max-age\u003d31536000 ; includeSubDomains",
  "x-frame-options": "DENY",
  "server": "Server",
  "x-cache": "Miss from cloudfront",
  "via": "1.1 1d180e6d1aa5f424d0d3571ff7011a02.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-P2",
  "x-amz-cf-id": "Msit8mivIPcY6T9nBt0aAjC0dhtIc9DTn2YJ5DyJVlwdMH8fUFsWiQ\u003d\u003d"
}

status_code

{
  "code": 200
}

body

{"sub":"774658e9-e1a8-4dd7-9f3f-69602a3498a3","email_verified":"true","email":"[email protected]","username":"[email protected]"}

2024-04-25 21:24:52

(2) More

SUCCESS

EnsureHttpStatusCodeIs200

resource endpoint returned the expected http status

expected_status	200
http_status	200

2024-04-25 21:24:52	SUCCESS OIDCC-5.3.2	EnsureContentTypeJson endpoint_response Content-Type: header is application/json

2024-04-25 21:24:52

(1) More

SUCCESS

ExtractUserInfoFromUserInfoEndpointResponse

Extracted user info

userinfo

{
  "sub": "774658e9-e1a8-4dd7-9f3f-69602a3498a3",
  "email_verified": "true",
  "email": "[email protected]",
  "username": "[email protected]"
}

2024-04-25 21:24:52		ValidateUserInfoStandardClaims sub is a string with content

2024-04-25 21:24:52	FAILURE OIDCC-5.1	ValidateUserInfoStandardClaims email_verified is not a boolean

2024-04-25 21:24:52		ValidateUserInfoStandardClaims email is a string with content

2024-04-25 21:24:52		ValidateUserInfoStandardClaims Skipping unknown claim: username

2024-04-25 21:24:52	FAILURE OIDCC-5.1	ValidateUserInfoStandardClaims Userinfo is not valid

2024-04-25 21:24:52

(1) More

SUCCESS

OIDCC-5.3.2

EnsureUserInfoContainsSub

Found sub in userinfo

sub	774658e9-e1a8-4dd7-9f3f-69602a3498a3

2024-04-25 21:24:52		EnsureUserInfoUpdatedAtValid userinfo response does not contain 'updated_at'

2024-04-25 21:24:52		EnsureMemberValuesInClaimNameReferenceToMemberNamesInClaimSources userinfo response does not contain '_claim_names' nor _claim_sources'

2024-04-25 21:24:52

(1) More

FINISHED

oidcc-userinfo-post-header

Test has run to completion

testmodule_result

FAILED

Unregister dynamically registered client

2024-04-25 21:24:52		UnregisterDynamicallyRegisteredClient Couldn't find registration_access_token.

2024-04-25 21:24:55

(2) More

TEST-RUNNER

Alias has now been claimed by another test

alias	ad04252024test
new_test_id	qc1ji1P1ZH24EaR

Test Summary

Test Results