internal/certification/IT.F.T.T.s/OP-prompt-none-LoggedIn.txt
Test tool version: 2.1.3
Issuer: https://oidc-certification.ory.sh:8443/
Profile: []
Test ID: OP-prompt-none-LoggedIn
Test description: Request with prompt=none when logged in [Basic, Implicit, Hybrid]
Timestamp: 2018-06-23T11:23:37Z
============================================================
Trace output
0.0 phase <--<-- 0 --- Webfinger -->-->
0.0 not expected to do WebFinger
0.0 phase <--<-- 1 --- Discovery -->-->
0.0 provider_config kwargs:{'issuer': 'https://oidc-certification.ory.sh:8443/'}
0.078 http response url:https://oidc-certification.ory.sh:8443/.well-known/openid-configuration status_code:200
0.079 ProviderConfigurationResponse {
"authorization_endpoint": "https://oidc-certification.ory.sh:8443/oauth2/auth",
"claims_parameter_supported": false,
"claims_supported": [
"sub"
],
"grant_types_supported": [
"authorization_code",
"implicit",
"client_credentials",
"refresh_token"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"issuer": "https://oidc-certification.ory.sh:8443/",
"jwks_uri": "https://oidc-certification.ory.sh:8443/.well-known/jwks.json",
"registration_endpoint": "https://oidc-certification.ory.sh:8443/clients",
"request_parameter_supported": true,
"request_uri_parameter_supported": true,
"require_request_uri_registration": true,
"response_modes_supported": [
"query",
"fragment"
],
"response_types_supported": [
"code",
"code id_token",
"id_token",
"token id_token",
"token",
"token id_token code"
],
"scopes_supported": [
"offline",
"openid"
],
"subject_types_supported": [
"pairwise",
"public"
],
"token_endpoint": "https://oidc-certification.ory.sh:8443/oauth2/token",
"token_endpoint_auth_methods_supported": [
"client_secret_post",
"client_secret_basic",
"private_key_jwt",
"none"
],
"userinfo_endpoint": "https://oidc-certification.ory.sh:8443/userinfo",
"userinfo_signing_alg_values_supported": [
"none",
"RS256"
],
"version": "3.0"
}
0.079 phase <--<-- 2 --- Registration -->-->
0.079 register kwargs:{'application_name': 'OIC test tool', 'response_types': ['id_token token'], 'contacts': ['roland@example.com'], 'redirect_uris': ['https://op.certification.openid.net:61353/authz_cb'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61353/logout'], 'jwks_uri': 'https://op.certification.openid.net:61353/static/jwks_61353.json', 'grant_types': ['implicit'], 'application_type': 'web', 'url': 'https://oidc-certification.ory.sh:8443/clients'}
0.08 RegistrationRequest {
"application_type": "web",
"contacts": [
"roland@example.com"
],
"grant_types": [
"implicit"
],
"jwks_uri": "https://op.certification.openid.net:61353/static/jwks_61353.json",
"post_logout_redirect_uris": [
"https://op.certification.openid.net:61353/logout"
],
"redirect_uris": [
"https://op.certification.openid.net:61353/authz_cb"
],
"request_uris": [
"https://op.certification.openid.net:61353/requests/e3ecc141f5419bd33d25d760861d32323144d583feaf26eb1b5cbf20147608b9#w51YJEBQ1qFmEqMc"
],
"response_types": [
"id_token token"
]
}
0.272 http response url:https://oidc-certification.ory.sh:8443/clients status_code:201
0.273 RegistrationResponse {
"client_id": "839e0193-0cfd-4d37-b8be-50f10539f367",
"client_secret": "q75kLoiWwvP.",
"client_secret_expires_at": 0,
"contacts": [
"roland@example.com"
],
"grant_types": [
"implicit"
],
"id": "839e0193-0cfd-4d37-b8be-50f10539f367",
"jwks_uri": "https://op.certification.openid.net:61353/static/jwks_61353.json",
"public": false,
"redirect_uris": [
"https://op.certification.openid.net:61353/authz_cb"
],
"request_uris": [
"https://op.certification.openid.net:61353/requests/e3ecc141f5419bd33d25d760861d32323144d583feaf26eb1b5cbf20147608b9#w51YJEBQ1qFmEqMc"
],
"response_types": [
"id_token token"
],
"scope": "openid offline offline_access profile email address phone",
"token_endpoint_auth_method": "client_secret_basic",
"userinfo_signed_response_alg": "none"
}
0.273 phase <--<-- 3 --- AsyncAuthn -->-->
0.273 AuthorizationRequest {
"client_id": "839e0193-0cfd-4d37-b8be-50f10539f367",
"nonce": "NaxFrUfW7he05V8Z",
"redirect_uri": "https://op.certification.openid.net:61353/authz_cb",
"response_type": "id_token token",
"scope": "openid",
"state": "TAzNVyawOetf6H52"
}
0.274 redirect url https://oidc-certification.ory.sh:8443/oauth2/auth?scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61353%2Fauthz_cb&client_id=839e0193-0cfd-4d37-b8be-50f10539f367&state=TAzNVyawOetf6H52&response_type=id_token+token&nonce=NaxFrUfW7he05V8Z
0.274 redirect https://oidc-certification.ory.sh:8443/oauth2/auth?scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61353%2Fauthz_cb&client_id=839e0193-0cfd-4d37-b8be-50f10539f367&state=TAzNVyawOetf6H52&response_type=id_token+token&nonce=NaxFrUfW7he05V8Z
2.59 http args {}
2.763 response URL with fragment
2.764 response access_token=mdQNdc8bD3ekyr-gWIiZvVuo1RmHgan0NlRL5ao0nYA.EnqISAXEbzvcanHnrMM6i8DxAt3oVgIdxig9ZTRfh3Y&expires_in=3599&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzo0YWU0OWJmNC05ZGEwLTRhODItYmNjZS04OTNjMzcyOWYyMmEiLCJ0eXAiOiJKV1QifQ.eyJhdF9oYXNoIjoiLXpVbkMwTDFPWTlmT3hlR0JubE9oZyIsImF1ZCI6WyI4MzllMDE5My0wY2ZkLTRkMzctYjhiZS01MGYxMDUzOWYzNjciXSwiYXV0aF90aW1lIjoxNTI5NzUzMDA5LCJleHAiOjE1Mjk3NTY2MTYsImlhdCI6MTUyOTc1MzAxNiwiaXNzIjoiaHR0cHM6Ly9vaWRjLWNlcnRpZmljYXRpb24ub3J5LnNoOjg0NDMvIiwianRpIjoiNTcyOWZhMDgtNTE0My00OGQ2LThjZjItMTVjMWQyMjBiY2Q2Iiwibm9uY2UiOiJOYXhGclVmVzdoZTA1VjhaIiwicmF0IjoxNTI5NzUzMDE0LCJzdWIiOiJmb29AYmFyLmNvbSJ9.PQ6jwJgG-mF3o2_agr7v-gVJ7e_7ouAe6RBoFOpYkBW9ONHM1TdluArmuQAeEaewRVjMIAvv466mkWLSCs9Ij6nv9NbhyKuiFVGvr4iN2LrLvBMKE-eekeLmw87s1aBQaYCXl23gpRQwoTPOCHHUrFDc9C_7iOqo_Pk2CKPPB6ZBa9_jOsvk0D-cjuBrx1YQ_EiB3O606B8QzMYg-bfow7cBQS-84ZKBh7cyvsGVJBJq4zZIMJUaeJdCDiHkvyV8uA1WrqBb0_kLo5R-DdtwinauCp2IYyrk00MgKQMhTyI0ZB7r3rETK8c76M5VXfXkCfC3195XqneDs7EL-V33KQRkLCKlyrwk-8Te8bZjBlQWtQ5KfCSauFmvPwCT9a9zkBEI7xPMNj_f9Tj3SqbxbAA3-pN_zL73fKZdWEjM6sRJoCkmooY4t-k8dm9Ixf7iOYeHHXsupH592ujvA5099JPCHMd9h5xyO4e5m8a-O66UIRQBSf0WbjX_bE6YlpwvqKVMoD39e7Z8vf2ZNap5eA-sdzgMMlacP-vrajxzFZvH8eDR4_RuYbauiafLrYtY95Z92bx2AS6KVc92MZ0D3lJ79NT7VJgG_QypHH1Z551UwrvwBQajuqWCo5M6oPkRZBLl7YRCA2dizUEHd7pNOlRIel0yR8vXKVafsA3fe8A&scope=openid&state=TAzNVyawOetf6H52&token_type=bearer
2.764 response {'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzo0YWU0OWJmNC05ZGEwLTRhODItYmNjZS04OTNjMzcyOWYyMmEiLCJ0eXAiOiJKV1QifQ.eyJhdF9oYXNoIjoiLXpVbkMwTDFPWTlmT3hlR0JubE9oZyIsImF1ZCI6WyI4MzllMDE5My0wY2ZkLTRkMzctYjhiZS01MGYxMDUzOWYzNjciXSwiYXV0aF90aW1lIjoxNTI5NzUzMDA5LCJleHAiOjE1Mjk3NTY2MTYsImlhdCI6MTUyOTc1MzAxNiwiaXNzIjoiaHR0cHM6Ly9vaWRjLWNlcnRpZmljYXRpb24ub3J5LnNoOjg0NDMvIiwianRpIjoiNTcyOWZhMDgtNTE0My00OGQ2LThjZjItMTVjMWQyMjBiY2Q2Iiwibm9uY2UiOiJOYXhGclVmVzdoZTA1VjhaIiwicmF0IjoxNTI5NzUzMDE0LCJzdWIiOiJmb29AYmFyLmNvbSJ9.PQ6jwJgG-mF3o2_agr7v-gVJ7e_7ouAe6RBoFOpYkBW9ONHM1TdluArmuQAeEaewRVjMIAvv466mkWLSCs9Ij6nv9NbhyKuiFVGvr4iN2LrLvBMKE-eekeLmw87s1aBQaYCXl23gpRQwoTPOCHHUrFDc9C_7iOqo_Pk2CKPPB6ZBa9_jOsvk0D-cjuBrx1YQ_EiB3O606B8QzMYg-bfow7cBQS-84ZKBh7cyvsGVJBJq4zZIMJUaeJdCDiHkvyV8uA1WrqBb0_kLo5R-DdtwinauCp2IYyrk00MgKQMhTyI0ZB7r3rETK8c76M5VXfXkCfC3195XqneDs7EL-V33KQRkLCKlyrwk-8Te8bZjBlQWtQ5KfCSauFmvPwCT9a9zkBEI7xPMNj_f9Tj3SqbxbAA3-pN_zL73fKZdWEjM6sRJoCkmooY4t-k8dm9Ixf7iOYeHHXsupH592ujvA5099JPCHMd9h5xyO4e5m8a-O66UIRQBSf0WbjX_bE6YlpwvqKVMoD39e7Z8vf2ZNap5eA-sdzgMMlacP-vrajxzFZvH8eDR4_RuYbauiafLrYtY95Z92bx2AS6KVc92MZ0D3lJ79NT7VJgG_QypHH1Z551UwrvwBQajuqWCo5M6oPkRZBLl7YRCA2dizUEHd7pNOlRIel0yR8vXKVafsA3fe8A', 'scope': 'openid', 'access_token': 'mdQNdc8bD3ekyr-gWIiZvVuo1RmHgan0NlRL5ao0nYA.EnqISAXEbzvcanHnrMM6i8DxAt3oVgIdxig9ZTRfh3Y', 'state': 'TAzNVyawOetf6H52', 'expires_in': 3599, 'token_type': 'bearer'}
2.847 AuthorizationResponse {
"access_token": "mdQNdc8bD3ekyr-gWIiZvVuo1RmHgan0NlRL5ao0nYA.EnqISAXEbzvcanHnrMM6i8DxAt3oVgIdxig9ZTRfh3Y",
"expires_in": 3599,
"id_token": {
"at_hash": "-zUnC0L1OY9fOxeGBnlOhg",
"aud": [
"839e0193-0cfd-4d37-b8be-50f10539f367"
],
"auth_time": 1529753009,
"exp": 1529756616,
"iat": 1529753016,
"iss": "https://oidc-certification.ory.sh:8443/",
"jti": "5729fa08-5143-48d6-8cf2-15c1d220bcd6",
"nonce": "NaxFrUfW7he05V8Z",
"rat": 1529753014,
"sub": "foo@bar.com"
},
"scope": "openid",
"state": "TAzNVyawOetf6H52",
"token_type": "bearer"
}
2.847 phase <--<-- 4 --- AccessToken -->-->
2.847 phase <--<-- 5 --- AsyncAuthn -->-->
2.848 AuthorizationRequest {
"client_id": "839e0193-0cfd-4d37-b8be-50f10539f367",
"nonce": "W2ikndBAYxCXP1eQ",
"prompt": [
"none"
],
"redirect_uri": "https://op.certification.openid.net:61353/authz_cb",
"response_type": "id_token token",
"scope": "openid",
"state": "ClBcMJmvF20k8zJC"
}
2.848 redirect url https://oidc-certification.ory.sh:8443/oauth2/auth?prompt=none&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61353%2Fauthz_cb&client_id=839e0193-0cfd-4d37-b8be-50f10539f367&state=ClBcMJmvF20k8zJC&response_type=id_token+token&nonce=W2ikndBAYxCXP1eQ
2.848 redirect https://oidc-certification.ory.sh:8443/oauth2/auth?prompt=none&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61353%2Fauthz_cb&client_id=839e0193-0cfd-4d37-b8be-50f10539f367&state=ClBcMJmvF20k8zJC&response_type=id_token+token&nonce=W2ikndBAYxCXP1eQ
3.77 http args {}
3.928 response URL with fragment
3.928 response access_token=pX5RhrXzuS1OmYEUMZwYITHF2QvGJuHgj-bP1dWOu98.d9cNVHRofk2TDJPT2VTHzLQG0LyHVTUQv1rtSOq3Xk8&expires_in=3599&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzo0YWU0OWJmNC05ZGEwLTRhODItYmNjZS04OTNjMzcyOWYyMmEiLCJ0eXAiOiJKV1QifQ.eyJhdF9oYXNoIjoidi1KaENNV3JuZzhlc3BCd3B6dzZoQSIsImF1ZCI6WyI4MzllMDE5My0wY2ZkLTRkMzctYjhiZS01MGYxMDUzOWYzNjciXSwiYXV0aF90aW1lIjoxNTI5NzUzMDA5LCJleHAiOjE1Mjk3NTY2MTcsImlhdCI6MTUyOTc1MzAxNywiaXNzIjoiaHR0cHM6Ly9vaWRjLWNlcnRpZmljYXRpb24ub3J5LnNoOjg0NDMvIiwianRpIjoiMjk0OWI3ZDYtYTc0Ni00MzRlLWIyNzYtMWQ1ZDI3YjdlZTUxIiwibm9uY2UiOiJXMmlrbmRCQVl4Q1hQMWVRIiwicmF0IjoxNTI5NzUzMDE2LCJzdWIiOiJmb29AYmFyLmNvbSJ9.iTULwXy66Fdbb60xUR6PytTnHX8CkFUVphv5pRhzDhVnYn0LY-dY76LxAYsxRI7fo4lxVEqKtpuvU30JXBRsgoeWYQYInAE_9Sw4EwTVUolmxDi3cR_JZJenN9Y2s9iTBh75pScTT1FNlkZBQIQ0JlvJEFAKefAYXTe3bef1gw8KCmtSgIGtzZpykEGF0STEo8iJhS6URFOe2-o8FuhTjRNdHpdvH1Bzz99nUKb_CdrncfYrqb8E-Wb0f7EjblMXK5hXoPQ5tDt9YzWD7YM_swOM47m2hIoc2REB1lvVd8ruglk5G9LJdZ9loDYO-wQRChNt0_ikUBbxv1fN9WwgrNfaSF9aiAaW6RvK3nyNcHtGZrXTu46mZPc7ZpuO4cZdFOx81JakQhvMTW53PiyNd6UHjFrtZxNKzEauvgaMwx8hlE-GiY5VBdKuxsd73SEZg2syZeOqWaAPxDWJr8uozcciTXah2Gs39e_oC9CoCZd6Ix8IH4PKdbP2QJWIqp86l3Pg2f-Z2R48Uc9kCWDsiuX-GnFoJQl8oFjLsq7oxPbJq8AshVM7E3sHoxFwjH1G1pmhafmv3QRyy9AKFdJ6Ws066DAxOfiAEoq4dztGEMRrNl5m1JB5EvddRJVha4QeDGR76kJlUTKPEQABEAzQjpcFWtU1e6t1dI4kAotscXo&scope=openid&state=ClBcMJmvF20k8zJC&token_type=bearer
3.929 response {'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6InB1YmxpYzo0YWU0OWJmNC05ZGEwLTRhODItYmNjZS04OTNjMzcyOWYyMmEiLCJ0eXAiOiJKV1QifQ.eyJhdF9oYXNoIjoidi1KaENNV3JuZzhlc3BCd3B6dzZoQSIsImF1ZCI6WyI4MzllMDE5My0wY2ZkLTRkMzctYjhiZS01MGYxMDUzOWYzNjciXSwiYXV0aF90aW1lIjoxNTI5NzUzMDA5LCJleHAiOjE1Mjk3NTY2MTcsImlhdCI6MTUyOTc1MzAxNywiaXNzIjoiaHR0cHM6Ly9vaWRjLWNlcnRpZmljYXRpb24ub3J5LnNoOjg0NDMvIiwianRpIjoiMjk0OWI3ZDYtYTc0Ni00MzRlLWIyNzYtMWQ1ZDI3YjdlZTUxIiwibm9uY2UiOiJXMmlrbmRCQVl4Q1hQMWVRIiwicmF0IjoxNTI5NzUzMDE2LCJzdWIiOiJmb29AYmFyLmNvbSJ9.iTULwXy66Fdbb60xUR6PytTnHX8CkFUVphv5pRhzDhVnYn0LY-dY76LxAYsxRI7fo4lxVEqKtpuvU30JXBRsgoeWYQYInAE_9Sw4EwTVUolmxDi3cR_JZJenN9Y2s9iTBh75pScTT1FNlkZBQIQ0JlvJEFAKefAYXTe3bef1gw8KCmtSgIGtzZpykEGF0STEo8iJhS6URFOe2-o8FuhTjRNdHpdvH1Bzz99nUKb_CdrncfYrqb8E-Wb0f7EjblMXK5hXoPQ5tDt9YzWD7YM_swOM47m2hIoc2REB1lvVd8ruglk5G9LJdZ9loDYO-wQRChNt0_ikUBbxv1fN9WwgrNfaSF9aiAaW6RvK3nyNcHtGZrXTu46mZPc7ZpuO4cZdFOx81JakQhvMTW53PiyNd6UHjFrtZxNKzEauvgaMwx8hlE-GiY5VBdKuxsd73SEZg2syZeOqWaAPxDWJr8uozcciTXah2Gs39e_oC9CoCZd6Ix8IH4PKdbP2QJWIqp86l3Pg2f-Z2R48Uc9kCWDsiuX-GnFoJQl8oFjLsq7oxPbJq8AshVM7E3sHoxFwjH1G1pmhafmv3QRyy9AKFdJ6Ws066DAxOfiAEoq4dztGEMRrNl5m1JB5EvddRJVha4QeDGR76kJlUTKPEQABEAzQjpcFWtU1e6t1dI4kAotscXo', 'scope': 'openid', 'access_token': 'pX5RhrXzuS1OmYEUMZwYITHF2QvGJuHgj-bP1dWOu98.d9cNVHRofk2TDJPT2VTHzLQG0LyHVTUQv1rtSOq3Xk8', 'state': 'ClBcMJmvF20k8zJC', 'expires_in': 3599, 'token_type': 'bearer'}
3.932 AuthorizationResponse {
"access_token": "pX5RhrXzuS1OmYEUMZwYITHF2QvGJuHgj-bP1dWOu98.d9cNVHRofk2TDJPT2VTHzLQG0LyHVTUQv1rtSOq3Xk8",
"expires_in": 3599,
"id_token": {
"at_hash": "v-JhCMWrng8espBwpzw6hA",
"aud": [
"839e0193-0cfd-4d37-b8be-50f10539f367"
],
"auth_time": 1529753009,
"exp": 1529756617,
"iat": 1529753017,
"iss": "https://oidc-certification.ory.sh:8443/",
"jti": "2949b7d6-a746-434e-b276-1d5d27b7ee51",
"nonce": "W2ikndBAYxCXP1eQ",
"rat": 1529753016,
"sub": "foo@bar.com"
},
"scope": "openid",
"state": "ClBcMJmvF20k8zJC",
"token_type": "bearer"
}
3.932 phase <--<-- 6 --- AccessToken -->-->
3.933 phase <--<-- 7 --- Done -->-->
3.933 end
3.933 assertion VerifyResponse
3.933 condition verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
3.934 assertion SameAuthn
3.934 condition same-authn: status=OK [Verifies that the same authentication was used twice in the flow.]
3.934 condition Done: status=OK
============================================================
Conditions
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
same-authn: status=OK [Verifies that the same authentication was used twice in the flow.]
Done: status=OK
============================================================
RESULT: PASSED