Test Summary

Test Results

Expand All Collapse All
All times are UTC
2025-04-28 07:50:27 INFO
TEST-RUNNER
Test instance HNVsEPu4GMplwk7 created
baseUrl 
https://www.certification.openid.net/test/a/ArconCI
variant 
{
  "client_auth_type": "client_secret_basic",
  "response_type": "code",
  "request_type": "plain_http_request",
  "response_mode": "default",
  "client_registration": "static_client"
}
alias 
ArconCI
description 
Conformance testing of Arcon Converged Identity as a Relaying Party using the OpenID Connect Core: Basic Certification Profile
planId 
BFj2iiVzbPPzd
config 
{
  "alias": "ArconCI",
  "description": "Conformance testing of Arcon Converged Identity as a Relaying Party using the OpenID Connect Core: Basic Certification Profile",
  "client": {
    "client_id": "0oaka2gpoymlyinwZ5d7",
    "client_secret": "_SDHPKKxtbQ55rPvFJV3DIHNI9VKAfbCJptzJhzV5EibdtvYJlXNP6vSlPC-ZDKJ",
    "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback",
    "initiate_login_uri": "https://oidc.arconnet.com/api/Oidc/initiate-login"
  },
  "publish": "everything"
}
baseMtlsUrl 
https://mtls-www.certification.openid.net/test-mtls/a/ArconCI
testName 
oidcc-client-test-kid-absent-multiple-jwks
2025-04-28 07:50:27 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration 
{
  "issuer": "https://www.certification.openid.net/test/a/ArconCI/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/ArconCI/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/ArconCI/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/ArconCI/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/ArconCI/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/ArconCI/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "HS384",
    "HS512",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at",
    "txn"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2025-04-28 07:50:27
SetTokenEndpointAuthMethodsSupportedToClientSecretBasicOnly
Changed token_endpoint_auth_methods_supported to client_secret_basic only in server configuration
server_configuration 
{
  "issuer": "https://www.certification.openid.net/test/a/ArconCI/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/ArconCI/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/ArconCI/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/ArconCI/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/ArconCI/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/ArconCI/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "HS384",
    "HS512",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at",
    "txn"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2025-04-28 07:50:27
OIDCCGenerateServerJWKsMultipleSigningsKeyWithNoKeyIds
Generated server public private JWK sets
server_jwks 
{
  "keys": [
    {
      "p": "9Y77GNil4kzaybr-ZyZXJo87W1id77H_tJBwgf_Gx1brSUBYL_Ojkw7cTFbNXRBohaxkRvncVmqF1Rz1ksc7Wfy-wSjMswZGqbPVPiUGHn1PbM912iKCDhbtvQvS-AGcUGQv8GEs1s9beddPV9WI_zbdMnWfeSOwFFfrFXy-0ws",
      "kty": "RSA",
      "q": "9othbbmWbOsNCQf4VproBhjf4BP2Xu9oggJ3eig0baHpkueKytZNFBe8bUb5og-4TrXuBW5Dw6l7OClDUUnRNZa8NEYdghMWVbaY4tLqOD3-yHOuGdLNbBO0ib_ACZVeX5TRwhrCl3jmVS1J9q8SWvKuFLsthGLZKN61hhfVl50",
      "d": "JG2byW6eiTreeHaadAxGOOWNw00dq162NLGrbR69PX7dmttZpaC5cuU0MdLqYf3ReV0BMBAZUH5bkfHHmTKakqZ58UKDTM-HGk8CgkxrR2Fq5EXD75I30l495T5edVZCm3a_vYqwrEtEYnJ6NJ-G7qLrqV9A1cQc-l1YtqMnEF-a3UfoUG0wfwDCTmT8nsGzPvVfMbIcbt3Vsp8jugK9y96EAPZE_dVD3-wnVWo84yhBfxm50IfMwk0FzY_VuGEVZxN2zqhXx872srqnTRXFU3NQev0alzrU5DWTb3-l6PXENR-AkbFEETFd04s4fXDUyXfoVFQSq2UV3OtE0BdybQ",
      "e": "AQAB",
      "use": "sig",
      "qi": "OTdF0pcqmJNAlQQ2OVZqEiE4KuK6wyX5XE6Jl2Oxs-SgoyzVJnq1RxzLlGLGIJ1pmK5Df8jWx1NCF_gnbZ-86owFOglTxf-hazPuzpkfmTofY61Li6EEguvgfnr8omCGgtQ7kF7GlBhRELZI6Sp3SziIyZ0QizGuPNkEjsRQeMk",
      "dp": "YMU3GSSPwu3sruE9TqMiZzS8_JOgsgxgq-TcIa8NxBLx6E0uM799MAAEOyVeCxXjSwKUBhCDj56tHT4rXOuc7SqYdgDBIrAPeuM-3x2yGqPhgA0F8a_1tt28VOrq-geQdXH2HnH9PK4863g5cXDaa1FQvIj0DsZMpse7Ah3GCd8",
      "dq": "KORZVo-vqYUa9mKCCCtNTKWXjF0DQh_HX7j1BCfi-kQer6UD2jzNMAX31NAu23hsA3Iddn0hdDSKIXiGl9b8gjzsHmd6wXZVAAZ3OTfubUGrHqhBOjtCoyhpi2dofK5vpr7SQ7WYjPMakQof-HB1ROx3fyzEke6rQiIeTY1qeek",
      "n": "7H0XYKO2-uixJ9g1yzaXZUXKhfmo2sU8yEeVBfnlz3mCNJwR7ZLbtNHUEAVhm33lfxA0mqLP7kZA6tsC4KyreStQoTD17ZomIHhsd4N6bB8luLvCyMS77DAjL04KzcUfzAg_KtiPXnsMjK2N7B7XfmEwwEJCThHP7HK__XXywl1nzcw90TWvROvIaSJKd8UK_RUAgluD9HnoHgP3-c56UFkSmJiQPiTrDr5FVfwJpY1iso_b1EZKeTamaLR_BrO0_QhK1Ogywu83Sj33CRmagiEl7qOX9yfLQZL_VQdf9NLPl5aR9UbMSSoAZ-rSsQSdBQHUN1c-6XvPTgc_pKnqvw"
    },
    {
      "kty": "EC",
      "d": "YikkQAA0hwLrm7E85aMRVDqKFETrS3DpdPUCDnpaUvg",
      "use": "sig",
      "crv": "P-256",
      "x": "1aIqtDuaPu1xquO8mynCjjAVL4yU8MgRjWUjO1AYe1g",
      "y": "Lo56B1O8dOS-_Jg4vFrPxooR4S8HVot3GyBnKkDguI8"
    },
    {
      "kty": "EC",
      "d": "KgmRrNTkP9CwcI7oCmjswXWLOo4fFb-COtxdQKapjWQ",
      "use": "sig",
      "crv": "secp256k1",
      "x": "6tOsMJai_FzmLXSVwqSckYf6hmI19csKjFp2J_gZ5xc",
      "y": "6vo-TTPLVEg7n7U9kWNeos7UKB3TbxESPxrellMGuFI"
    },
    {
      "kty": "OKP",
      "d": "KvIVFiv32eE3Qb8FkH2SAS55y0pJW-gcbrZ0gA5cLa0",
      "use": "sig",
      "crv": "Ed25519",
      "x": "9fXy54OM1m8dbN_s9NfWQaSlIJPoGALRoHtOB-3Mufw"
    }
  ]
}
server_encryption_keys 
{
  "keys": [
    {
      "p": "xiZMKWFsI_ozhmtbN0V5qWLcDTpTv6YjkStRzM8fIDnlwISk29mcZupairYlXGCgBkNLJAArBq7B3L09VGfw51TJVc1GI3W5MdKKrKRLrJV4QmwC51A0AJ15WHhwjpaLqW2Ft4CTadyUV1W7eCobNKwUI2NjOgCVEkKZpb6F2zk",
      "kty": "RSA",
      "q": "_ucLNd3Dg6rQKmPMRC9P4WonHfjxh7uFnu_OJFECuSELtjHQEN1oVeuTBMl9I53-5O3pRNGB8bGfMHb8uMVwanW7kXn1b3el_S71YtgD8dUWmGa7N7tP4SLdLLbh5tjyZPVttvQT0phtEQ_aj5FmJfeB9VwYL4myYn6bjUaqtuM",
      "d": "B1lCP9WbWG4ni80l6gUJWBSAT19CbAND_9GgxYS3L_Lst4bjzVj3IC00FF7xbmu_CE0EZw4YtIup5nPs_zIMtzXoQq-cNmIXuDeD29Dx4zqEWLEL8ko_n7Z0jchMUGmya1MQ8KY_u4eGVR3LkYRTmbk9amzs0KV6F6xC5ojN9SxbpoZfxmW1We2TxVaNWIyEQqcMu-uRmghI8OaxkQdof583ydWbw7Uc_crXS4FL5jk48Arl-J5HxnRZ1cjWufTl0jt5G4JK-WQlrZsXXRhXArSnQUVKENq-L8zDCE6FY4HSo8QrMjZfPZESOcxTYia_-uufFWRjsqtAAXau-K268Q",
      "e": "AQAB",
      "use": "enc",
      "kid": "e14e14ff-9162-4aa7-bcaa-b3ada3e2cde5",
      "qi": "F_-kDuw9iAWwuoqcMotLJK3BN67f1X4GA3iSE58JSGAlVQ0SBErxiuWd8_VX65nK7ZFbDPWOemGcxnZyV3zQMPaQI0Vc7Z7n5CJUuWPPgiGbXf9Nl8h0XbArktLhGQKM5VsTUF6Q4L0iNAy49I0wgtCUL48XeNI4PmRwpgJt_Ew",
      "dp": "TZj34IivcdNs1Co8uYNyppv5cxCxdW8ZpKMjUKKYHOWvjNolOZeZwU_rj0DPlsKcSHeX-Iw8TUyozMorN1_RHra8deaCniZfFRzPg9Z_cCHEy7ZC2NU22DrTJ4tbAOwB26LxZ7Bpil6AlUcUuHU83D67UDR-ylsqBdGhHCBliTk",
      "alg": "RSA-OAEP",
      "dq": "VQvtV5mYJBQXxCzr-Ev40PLD_mIS5ACTAoZsNv24dOArsixIiXf12cTxloVLdVi_tM4UKFvmiSeEP31TsKpfaYXCgTU5yGkZPrIuOT5tgoBgO5T7HgsnCazCMqsKECWOKlUguAwTmQ42RZ0OhRw0ArLj72M8xo-grvAjIi3Tw5U",
      "n": "xUzUzR7aJN0S-k3_SJF_9bS9mc56NT5m5CtFO56__bRZnFPUZZl7WRLMq-SAgpaLEbqlgBrSqAxsCJTdZ2lj3kuqEI6DuO089wFfDTGTKGtY9Lb4EJc4hgni3qJbUNwdeN3xf1aP3YXpNFiWG-LAjkx38SS7Qwu392_2OaZ9Aj4N7ZEVtJePRoO2JiEoF1RFmd2p_bYTAcsPTLE-Lfkbo7JfOegj6Y4yft01jVSexwy9Y7y_mto2b0jbFoNOzr5SA7T4yl5Wl0g5JyBObh8teHid_NrJlj6rKxhqqJ2fSJsfOnL0oX6XlkiYoCoHJznX00M-7IXownyX9nOlRGXpiw"
    },
    {
      "kty": "EC",
      "d": "80enIZNlw8DJiCr2W8IB6ahMaKeVwxVspocd03sCXz4",
      "use": "enc",
      "crv": "P-256",
      "kid": "7e0e1207-2697-42fc-beda-cb182d910383",
      "x": "goJ3JQA1C79Vf0j2edhlUkbq2Q55IiCGBGsmmbYWgAU",
      "y": "xqKq_NML-Dc2w9muujjbJOAdvyRtnWvc35lLOgCW-oE",
      "alg": "ECDH-ES"
    }
  ]
}
server_public_jwks 
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "7H0XYKO2-uixJ9g1yzaXZUXKhfmo2sU8yEeVBfnlz3mCNJwR7ZLbtNHUEAVhm33lfxA0mqLP7kZA6tsC4KyreStQoTD17ZomIHhsd4N6bB8luLvCyMS77DAjL04KzcUfzAg_KtiPXnsMjK2N7B7XfmEwwEJCThHP7HK__XXywl1nzcw90TWvROvIaSJKd8UK_RUAgluD9HnoHgP3-c56UFkSmJiQPiTrDr5FVfwJpY1iso_b1EZKeTamaLR_BrO0_QhK1Ogywu83Sj33CRmagiEl7qOX9yfLQZL_VQdf9NLPl5aR9UbMSSoAZ-rSsQSdBQHUN1c-6XvPTgc_pKnqvw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "yAjYohNleCItQe1nz3Rxl7zLor2qhmcB4Yh-Yv9FO5FnsJta0EaY7k0QqQFTp-zhF9YCPejNGriupXsjTdXqBvSdHZAqag81u6XrqmNoLOlfajCb_Ftvaa-RkrmB1fqw8v4Ch60MNzZiA7hUSPzKhU6gDLOpGHv-HbT3p1LNBD45L0X-Wq70u34vgZ7iTFQCrBdDkl7nYbLeN4aVJ0ahNMRmGDfPFpqHoVqC67l0CT84fDMRh7oV0yN0Q6rbSr7YDBPcG2UMY9xLxwCKSMfZMVisdzLxFk5ONCnHBuIbuzPeC_AkFDBc7fAs-sl4eXbHYCsp5Nm6st7yun7c4raCbQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "ubySc65bOJjG74stffotCvD8Ko_JKfLIFpr8_s3LLags6Vs1KALteXb2JPfLnZlcolzII2QZYH4M-DXMasWyzmtE-2CowDGLgq5hwp6ftCj2cgRQW6bsSv4M87oubvwvRhplMrmi6KLgbimlOwDucGnzXQYP_Nnb21yLVPesuNgpySsn87YBLURBwkadc2pJXycbFE1B4Nd-thfbs7dKRNUuJ04UOQJ36hChlSjUc8eWGvh7aBVrutbtBBZwERc6653_hTjzzcMLwdoQWk2cC1ChGWQcLn_gaSKvLh9TFhXLFSyi-toL0O5Qu9drHtRU-aGPF346Mn4loRgXG55azQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "1aIqtDuaPu1xquO8mynCjjAVL4yU8MgRjWUjO1AYe1g",
      "y": "Lo56B1O8dOS-_Jg4vFrPxooR4S8HVot3GyBnKkDguI8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "ONtVkIq3pROsBWy8t5jBC59bvYdZ75ZWRm3ZnhYWWFE",
      "y": "7JDFj7CqcTXhLQPLMaXtRQe2lH_-bBCcAdWJITsEdNw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "Jb6XqeLOULCGaSprdZo09VjBpgVjmPI64JQ1Ifb67eQ",
      "y": "_WdAvA4wcVBCcmN48Evz3DTgWcEN7uNVMgk33xhl0Ec"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "6tOsMJai_FzmLXSVwqSckYf6hmI19csKjFp2J_gZ5xc",
      "y": "6vo-TTPLVEg7n7U9kWNeos7UKB3TbxESPxrellMGuFI"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "qMopKkTvdfGWbP27AEGHtQgAf475kCtaay6-9kdnKUU",
      "y": "nMqa8HsHNOg3AJ2Z8xVBP6TVPyvMD5nrK4sGkyTXBwQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "yAayVIxffo0_mB73qkrLkqdz52MsmGvRuYZL39OXL_M",
      "y": "KFTSJYhbyr1SB44vXZll7-OTmEjeqT9SHdK4rrLYZIs"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "9fXy54OM1m8dbN_s9NfWQaSlIJPoGALRoHtOB-3Mufw"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "bpWQwtX8OjQ_B012sDpWvXCNQpkLLwveFCXODzGvRGo"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "VJaz2vlbWj2BF9QBHwONdYlXA4cv_X75fs7nwwvVesg"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "e14e14ff-9162-4aa7-bcaa-b3ada3e2cde5",
      "alg": "RSA-OAEP",
      "n": "xUzUzR7aJN0S-k3_SJF_9bS9mc56NT5m5CtFO56__bRZnFPUZZl7WRLMq-SAgpaLEbqlgBrSqAxsCJTdZ2lj3kuqEI6DuO089wFfDTGTKGtY9Lb4EJc4hgni3qJbUNwdeN3xf1aP3YXpNFiWG-LAjkx38SS7Qwu392_2OaZ9Aj4N7ZEVtJePRoO2JiEoF1RFmd2p_bYTAcsPTLE-Lfkbo7JfOegj6Y4yft01jVSexwy9Y7y_mto2b0jbFoNOzr5SA7T4yl5Wl0g5JyBObh8teHid_NrJlj6rKxhqqJ2fSJsfOnL0oX6XlkiYoCoHJznX00M-7IXownyX9nOlRGXpiw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "7e0e1207-2697-42fc-beda-cb182d910383",
      "x": "goJ3JQA1C79Vf0j2edhlUkbq2Q55IiCGBGsmmbYWgAU",
      "y": "xqKq_NML-Dc2w9muujjbJOAdvyRtnWvc35lLOgCW-oE",
      "alg": "ECDH-ES"
    }
  ]
}
2025-04-28 07:50:27 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2025-04-28 07:50:27 SUCCESS
OIDCCLoadUserInfo
Added user information
user_info 
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "given_name": "Demo",
  "family_name": "User",
  "middle_name": "Theresa",
  "nickname": "Dee",
  "preferred_username": "d.tu",
  "gender": "female",
  "birthdate": "2000-02-03",
  "address": {
    "street_address": "100 Universal City Plaza",
    "locality": "Hollywood",
    "region": "CA",
    "postal_code": "91608",
    "country": "USA"
  },
  "zoneinfo": "America/Los_Angeles",
  "locale": "en-US",
  "phone_number": "+1 555 5550000",
  "phone_number_verified": false,
  "email": "user@example.com",
  "email_verified": false,
  "website": "https://openid.net/",
  "profile": "https://example.com/user",
  "updated_at": 1580000000,
  "txn": "2c6fb585-d51b-465a-9dca-b8cd22a11451"
}
2025-04-28 07:50:27 SUCCESS
OIDCCGetStaticClientConfigurationForRPTests
Found a static client object
client_id 
0oaka2gpoymlyinwZ5d7
client_secret 
_SDHPKKxtbQ55rPvFJV3DIHNI9VKAfbCJptzJhzV5EibdtvYJlXNP6vSlPC-ZDKJ
initiate_login_uri 
https://oidc.arconnet.com/api/Oidc/initiate-login
redirect_uris 
[
  "https://oidc.arconnet.com/api/Oidc/callback"
]
2025-04-28 07:50:27 SUCCESS
EnsureClientDoesNotHaveBothJwksAndJwksUri
Client does not have both jwks and jwks_uri set
client 
{
  "client_id": "0oaka2gpoymlyinwZ5d7",
  "client_secret": "_SDHPKKxtbQ55rPvFJV3DIHNI9VKAfbCJptzJhzV5EibdtvYJlXNP6vSlPC-ZDKJ",
  "initiate_login_uri": "https://oidc.arconnet.com/api/Oidc/initiate-login",
  "redirect_uris": [
    "https://oidc.arconnet.com/api/Oidc/callback"
  ]
}
2025-04-28 07:50:27 INFO
FetchClientKeys
Skipped evaluation due to missing required element: client jwks_uri
path 
jwks_uri
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
ValidateClientGrantTypes
grant_types match response_types
grant_types 
[
  "authorization_code"
]
response_types 
[
  "code"
]
2025-04-28 07:50:27 SUCCESS
OIDCCValidateClientRedirectUris
Valid redirect_uri(s) provided in registration request
redirect_uris 
[
  "https://oidc.arconnet.com/api/Oidc/callback"
]
2025-04-28 07:50:27 SUCCESS
ValidateClientLogoUris
Client does not contain any logo_uri
2025-04-28 07:50:27 SUCCESS
ValidateClientUris
Client does not contain any client_uri
2025-04-28 07:50:27 SUCCESS
ValidateClientPolicyUris
Client does not contain any policy_uri
2025-04-28 07:50:27 SUCCESS
ValidateClientTosUris
Client does not contain any tos_uri
2025-04-28 07:50:27 SUCCESS
ValidateClientSubjectType
A subject_type was not provided
2025-04-28 07:50:27 INFO
ValidateIdTokenSignedResponseAlg
Skipped evaluation due to missing required element: client id_token_signed_response_alg
path 
id_token_signed_response_alg
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_enc is not set
2025-04-28 07:50:27 INFO
ValidateUserinfoSignedResponseAlg
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path 
userinfo_signed_response_alg
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
EnsureUserinfoEncryptedResponseAlgIsSetIfEncIsSet
userinfo_encrypted_response_enc is not set
2025-04-28 07:50:27 INFO
ValidateRequestObjectSigningAlg
Skipped evaluation due to missing required element: client request_object_signing_alg
path 
request_object_signing_alg
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
EnsureRequestObjectEncryptionAlgIsSetIfEncIsSet
request_object_encryption_enc is not set
2025-04-28 07:50:27 INFO
ValidateTokenEndpointAuthSigningAlg
Skipped evaluation due to missing required element: client token_endpoint_auth_signing_alg
path 
token_endpoint_auth_signing_alg
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
ValidateDefaultMaxAge
default_max_age is not set
2025-04-28 07:50:27 INFO
ValidateRequireAuthTime
Skipped evaluation due to missing required element: client require_auth_time
path 
require_auth_time
mapped
object 
client
2025-04-28 07:50:27 INFO
ValidateDefaultAcrValues
Skipped evaluation due to missing required element: client default_acr_values
path 
default_acr_values
mapped
object 
client
2025-04-28 07:50:27 SUCCESS
ValidateInitiateLoginUri
initiate_login_uri is valid
initiate_login_uri 
https://oidc.arconnet.com/api/Oidc/initiate-login
2025-04-28 07:50:27 INFO
ValidateRequestUris
Skipped evaluation due to missing required element: client request_uris
path 
request_uris
mapped
object 
client
2025-04-28 07:50:27
SetServerSigningAlgToRS256
Successfully set signing algorithm to RS256
2025-04-28 07:50:27
SetClientIdTokenSignedResponseAlgToServerSigningAlg
Set id_token_signed_response_alg for the registered client
id_token_signed_response_alg 
RS256
2025-04-28 07:50:27
oidcc-client-test-kid-absent-multiple-jwks
Setup Done
2025-04-28 07:50:33 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/ArconCI/authorize
incoming_headers 
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"135\", \"Not-A.Brand\";v\u003d\"8\", \"Chromium\";v\u003d\"135\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "accept-encoding": "gzip, deflate, br, zstd",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "_gid\u003dGA1.2.1265047192.1745825002; _ga\u003dGA1.2.1650576532.1738752960; JSESSIONID\u003dAD623538DCDCDE27055B97879A488FDA; _ga_NF8HNLNJJE\u003dGS1.1.1745825002.5.1.1745825607.0.0.0",
  "connection": "close"
}
incoming_path 
/test/a/ArconCI/authorize
incoming_body_form_params
incoming_method 
GET
incoming_tls_version 
TLSv1.2
incoming_tls_cert
incoming_query_string_params 
{
  "response_type": "code",
  "client_id": "0oaka2gpoymlyinwZ5d7",
  "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback",
  "scope": "openid email",
  "state": "3a9ec37f-c73f-46ca-b29c-0c4103705be5",
  "nonce": "c9acf0ce-c0fd-4b97-8a8e-ce9aad73499b"
}
incoming_body
incoming_tls_chain 
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_body_json_parse_error
incoming_tls_cipher 
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
Authorization endpoint
2025-04-28 07:50:33 SUCCESS
EnsureRequestDoesNotContainRequestObject
Request does not contain a request parameter
2025-04-28 07:50:33 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual 
[
  "openid",
  "email"
]
expected 
openid
2025-04-28 07:50:33 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request 
{
  "response_type": "code",
  "client_id": "0oaka2gpoymlyinwZ5d7",
  "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback",
  "scope": "openid email",
  "state": "3a9ec37f-c73f-46ca-b29c-0c4103705be5",
  "nonce": "c9acf0ce-c0fd-4b97-8a8e-ce9aad73499b"
}
2025-04-28 07:50:33 SUCCESS
ExtractRequestedScopes
Requested scopes
scope 
openid email
2025-04-28 07:50:33 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce 
c9acf0ce-c0fd-4b97-8a8e-ce9aad73499b
2025-04-28 07:50:33 INFO
EnsureAuthorizationRequestContainsPkceCodeChallenge
Skipped evaluation due to missing required element: effective_authorization_endpoint_request code_challenge
path 
code_challenge
mapped
object 
effective_authorization_endpoint_request
2025-04-28 07:50:33 SUCCESS
EnsureResponseTypeIsCode
Response type is expected value
expected 
code
2025-04-28 07:50:33 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id 
0oaka2gpoymlyinwZ5d7
2025-04-28 07:50:33 SUCCESS
EnsureValidRedirectUriForAuthorizationEndpointRequest
redirect_uri is one of the allowed redirect uris
actual 
https://oidc.arconnet.com/api/Oidc/callback
expected 
[
  "https://oidc.arconnet.com/api/Oidc/callback"
]
2025-04-28 07:50:33 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual 
[
  "openid",
  "email"
]
expected 
openid
2025-04-28 07:50:33 SUCCESS
DisallowMaxAgeEqualsZeroAndPromptNone
The client did not send max_age=0 and prompt=none parameters as expected
2025-04-28 07:50:33 INFO
CheckForUnexpectedClaimsInRequestObject
Skipped evaluation due to missing required element: authorization_request_object claims
path 
claims
mapped
object 
authorization_request_object
2025-04-28 07:50:33 INFO
CheckForUnexpectedClaimsInClaimsParameter
Skipped evaluation due to missing required element: authorization_request_object claims.claims
path 
claims.claims
mapped
object 
authorization_request_object
2025-04-28 07:50:33 INFO
CheckForUnexpectedOpenIdClaims
Skipped evaluation due to missing required element: authorization_request_object claims.claims
path 
claims.claims
mapped
object 
authorization_request_object
2025-04-28 07:50:33 INFO
CheckRequestObjectClaimsParameterValues
Skipped evaluation due to missing required element: authorization_request_object claims.claims
path 
claims.claims
mapped
object 
authorization_request_object
2025-04-28 07:50:33 INFO
CheckRequestObjectClaimsParameterMemberValues
Skipped evaluation due to missing required element: authorization_request_object claims.claims
path 
claims.claims
mapped
object 
authorization_request_object
2025-04-28 07:50:33 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code 
1adC4mnE6amRu4vyTclLh9HLbbRmYyu9
2025-04-28 07:50:33 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash 
pDmwdHFx7VVQx1oHXONyfQ
2025-04-28 07:50:33 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params 
{
  "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback",
  "state": "3a9ec37f-c73f-46ca-b29c-0c4103705be5"
}
2025-04-28 07:50:33 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params 
{
  "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback",
  "state": "3a9ec37f-c73f-46ca-b29c-0c4103705be5",
  "code": "1adC4mnE6amRu4vyTclLh9HLbbRmYyu9"
}
2025-04-28 07:50:33
SendAuthorizationResponseWithResponseModeQuery
Redirecting back to client
uri 
https://oidc.arconnet.com/api/Oidc/callback?state=3a9ec37f-c73f-46ca-b29c-0c4103705be5&code=1adC4mnE6amRu4vyTclLh9HLbbRmYyu9
2025-04-28 07:50:33 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance HNVsEPu4GMplwk7
outgoing 
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://oidc.arconnet.com/api/Oidc/callback?state=3a9ec37f-c73f-46ca-b29c-0c4103705be5&code=1adC4mnE6amRu4vyTclLh9HLbbRmYyu9]
outgoing_path 
authorize
2025-04-28 07:50:34 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/ArconCI/token
incoming_headers 
{
  "host": "www.certification.openid.net",
  "authorization": "Basic MG9ha2EyZ3BveW1seWlud1o1ZDc6X1NESFBLS3h0YlE1NXJQdkZKVjNESUhOSTlWS0FmYkNKcHR6Smh6VjVFaWJkdHZZSmxYTlA2dlNsUEMtWkRLSg\u003d\u003d",
  "traceparent": "00-2e82226b40231c2ec1c1285f462566ce-a0f5fb192aae1932-00",
  "cookie": "JSESSIONID\u003dB0A6189B5F2ACF761BF49D54B23A0592",
  "content-type": "application/x-www-form-urlencoded",
  "content-length": "136",
  "connection": "close"
}
incoming_path 
/test/a/ArconCI/token
incoming_body_form_params 
{
  "grant_type": "authorization_code",
  "code": "1adC4mnE6amRu4vyTclLh9HLbbRmYyu9",
  "redirect_uri": "https://oidc.arconnet.com/api/Oidc/callback"
}
incoming_method 
POST
incoming_tls_version 
TLSv1.2
incoming_tls_cert
incoming_query_string_params 
{}
incoming_body 
grant_type=authorization_code&code=1adC4mnE6amRu4vyTclLh9HLbbRmYyu9&redirect_uri=https%3A%2F%2Foidc.arconnet.com%2Fapi%2FOidc%2Fcallback
incoming_tls_chain 
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_body_json_parse_error
incoming_tls_cipher 
ECDHE-RSA-AES256-GCM-SHA384
incoming_body_json
Token endpoint
2025-04-28 07:50:34
CheckClientIdMatchesOnTokenRequestIfPresent
client_id not present, nothing to check
2025-04-28 07:50:34 SUCCESS
ExtractClientCredentialsFromBasicAuthorizationHeader
Extracted client authentication
client_id 
0oaka2gpoymlyinwZ5d7
client_secret 
_SDHPKKxtbQ55rPvFJV3DIHNI9VKAfbCJptzJhzV5EibdtvYJlXNP6vSlPC-ZDKJ
method 
client_secret_basic
2025-04-28 07:50:34 SUCCESS
ValidateClientIdAndSecret
Client id and secret match
2025-04-28 07:50:34 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code 
1adC4mnE6amRu4vyTclLh9HLbbRmYyu9
2025-04-28 07:50:34 SUCCESS
ValidateRedirectUriForTokenEndpointRequest
redirect_uri is the same as the one used in the authorization request
actual 
https://oidc.arconnet.com/api/Oidc/callback
2025-04-28 07:50:34 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token 
bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3
2025-04-28 07:50:34 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash 
a5Lo6JEsKDJTbX0f28W6OA
2025-04-28 07:50:34 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss 
https://www.certification.openid.net/test/a/ArconCI/
sub 
user-subject-1234531
aud 
0oaka2gpoymlyinwZ5d7
nonce 
c9acf0ce-c0fd-4b97-8a8e-ce9aad73499b
iat 
1745826634
exp 
1745826934
2025-04-28 07:50:34 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash 
a5Lo6JEsKDJTbX0f28W6OA
id_token_claims 
{
  "iss": "https://www.certification.openid.net/test/a/ArconCI/",
  "sub": "user-subject-1234531",
  "aud": "0oaka2gpoymlyinwZ5d7",
  "nonce": "c9acf0ce-c0fd-4b97-8a8e-ce9aad73499b",
  "iat": 1745826634,
  "exp": 1745826934,
  "at_hash": "a5Lo6JEsKDJTbX0f28W6OA"
}
2025-04-28 07:50:34 INFO
AddAuthTimeToIdTokenClaims
Skipped evaluation due to missing required element: effective_authorization_endpoint_request max_age
path 
max_age
mapped
object 
effective_authorization_endpoint_request
2025-04-28 07:50:34 SUCCESS
OIDCCSignIdToken
Signed the ID token
id_token
eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYTVMbzZKRXNLREpUYlgwZjI4VzZPQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMG9ha2EyZ3BveW1seWlud1o1ZDciLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0FyY29uQ0kvIiwiZXhwIjoxNzQ1ODI2OTM0LCJub25jZSI6ImM5YWNmMGNlLWMwZmQtNGI5Ny04YThlLWNlOWFhZDczNDk5YiIsImlhdCI6MTc0NTgyNjYzNH0.BhkZik8Z8NAO1ypl9_SuGSm_EPvZBWqg52jIz16vO1NtLXjBtC1jSbQUAiXeM_AEF9VsNdMC2DSF_IDGDtj2LzjZFKqIEnOoM_-DkZSllrgQWIkDmAQDBWB62w0doTgcOL8l4rNItAVYkxVkaLivItz6VFSeUVC-d1JmGKBV0qLxdU6efCWqV5Rmg7jpNf9Nlav1PJluPnXf8kmZ_8N1Aj3T5WtpSvmFpnHQr10nsQGgOVtOfTunPHeTDMp2jmnFYxmAUMJcDcAs8Qf5xafKEYYNmTe86app2LCrFo9gNMMwREW5G686ZYVP2Q3Jvqevj3PYPcUKTtdio-2JMiMR_w
key 
{"p":"9Y77GNil4kzaybr-ZyZXJo87W1id77H_tJBwgf_Gx1brSUBYL_Ojkw7cTFbNXRBohaxkRvncVmqF1Rz1ksc7Wfy-wSjMswZGqbPVPiUGHn1PbM912iKCDhbtvQvS-AGcUGQv8GEs1s9beddPV9WI_zbdMnWfeSOwFFfrFXy-0ws","kty":"RSA","q":"9othbbmWbOsNCQf4VproBhjf4BP2Xu9oggJ3eig0baHpkueKytZNFBe8bUb5og-4TrXuBW5Dw6l7OClDUUnRNZa8NEYdghMWVbaY4tLqOD3-yHOuGdLNbBO0ib_ACZVeX5TRwhrCl3jmVS1J9q8SWvKuFLsthGLZKN61hhfVl50","d":"JG2byW6eiTreeHaadAxGOOWNw00dq162NLGrbR69PX7dmttZpaC5cuU0MdLqYf3ReV0BMBAZUH5bkfHHmTKakqZ58UKDTM-HGk8CgkxrR2Fq5EXD75I30l495T5edVZCm3a_vYqwrEtEYnJ6NJ-G7qLrqV9A1cQc-l1YtqMnEF-a3UfoUG0wfwDCTmT8nsGzPvVfMbIcbt3Vsp8jugK9y96EAPZE_dVD3-wnVWo84yhBfxm50IfMwk0FzY_VuGEVZxN2zqhXx872srqnTRXFU3NQev0alzrU5DWTb3-l6PXENR-AkbFEETFd04s4fXDUyXfoVFQSq2UV3OtE0BdybQ","e":"AQAB","use":"sig","qi":"OTdF0pcqmJNAlQQ2OVZqEiE4KuK6wyX5XE6Jl2Oxs-SgoyzVJnq1RxzLlGLGIJ1pmK5Df8jWx1NCF_gnbZ-86owFOglTxf-hazPuzpkfmTofY61Li6EEguvgfnr8omCGgtQ7kF7GlBhRELZI6Sp3SziIyZ0QizGuPNkEjsRQeMk","dp":"YMU3GSSPwu3sruE9TqMiZzS8_JOgsgxgq-TcIa8NxBLx6E0uM799MAAEOyVeCxXjSwKUBhCDj56tHT4rXOuc7SqYdgDBIrAPeuM-3x2yGqPhgA0F8a_1tt28VOrq-geQdXH2HnH9PK4863g5cXDaa1FQvIj0DsZMpse7Ah3GCd8","dq":"KORZVo-vqYUa9mKCCCtNTKWXjF0DQh_HX7j1BCfi-kQer6UD2jzNMAX31NAu23hsA3Iddn0hdDSKIXiGl9b8gjzsHmd6wXZVAAZ3OTfubUGrHqhBOjtCoyhpi2dofK5vpr7SQ7WYjPMakQof-HB1ROx3fyzEke6rQiIeTY1qeek","n":"7H0XYKO2-uixJ9g1yzaXZUXKhfmo2sU8yEeVBfnlz3mCNJwR7ZLbtNHUEAVhm33lfxA0mqLP7kZA6tsC4KyreStQoTD17ZomIHhsd4N6bB8luLvCyMS77DAjL04KzcUfzAg_KtiPXnsMjK2N7B7XfmEwwEJCThHP7HK__XXywl1nzcw90TWvROvIaSJKd8UK_RUAgluD9HnoHgP3-c56UFkSmJiQPiTrDr5FVfwJpY1iso_b1EZKeTamaLR_BrO0_QhK1Ogywu83Sj33CRmagiEl7qOX9yfLQZL_VQdf9NLPl5aR9UbMSSoAZ-rSsQSdBQHUN1c-6XvPTgc_pKnqvw"}
algorithm 
RS256
2025-04-28 07:50:34 INFO
EncryptIdToken
Skipped evaluation due to missing required element: client id_token_encrypted_response_alg
path 
id_token_encrypted_response_alg
mapped
object 
client
2025-04-28 07:50:34 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token 
bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3
token_type 
Bearer
id_token
eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYTVMbzZKRXNLREpUYlgwZjI4VzZPQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMG9ha2EyZ3BveW1seWlud1o1ZDciLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0FyY29uQ0kvIiwiZXhwIjoxNzQ1ODI2OTM0LCJub25jZSI6ImM5YWNmMGNlLWMwZmQtNGI5Ny04YThlLWNlOWFhZDczNDk5YiIsImlhdCI6MTc0NTgyNjYzNH0.BhkZik8Z8NAO1ypl9_SuGSm_EPvZBWqg52jIz16vO1NtLXjBtC1jSbQUAiXeM_AEF9VsNdMC2DSF_IDGDtj2LzjZFKqIEnOoM_-DkZSllrgQWIkDmAQDBWB62w0doTgcOL8l4rNItAVYkxVkaLivItz6VFSeUVC-d1JmGKBV0qLxdU6efCWqV5Rmg7jpNf9Nlav1PJluPnXf8kmZ_8N1Aj3T5WtpSvmFpnHQr10nsQGgOVtOfTunPHeTDMp2jmnFYxmAUMJcDcAs8Qf5xafKEYYNmTe86app2LCrFo9gNMMwREW5G686ZYVP2Q3Jvqevj3PYPcUKTtdio-2JMiMR_w
scope 
openid email
2025-04-28 07:50:34 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance HNVsEPu4GMplwk7
outgoing_status_code 
200
outgoing_headers 
{}
outgoing_body 
{
  "access_token": "bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3",
  "token_type": "Bearer",
  "id_token": "eyJhbGciOiJSUzI1NiJ9.eyJhdF9oYXNoIjoiYTVMbzZKRXNLREpUYlgwZjI4VzZPQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiMG9ha2EyZ3BveW1seWlud1o1ZDciLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0FyY29uQ0kvIiwiZXhwIjoxNzQ1ODI2OTM0LCJub25jZSI6ImM5YWNmMGNlLWMwZmQtNGI5Ny04YThlLWNlOWFhZDczNDk5YiIsImlhdCI6MTc0NTgyNjYzNH0.BhkZik8Z8NAO1ypl9_SuGSm_EPvZBWqg52jIz16vO1NtLXjBtC1jSbQUAiXeM_AEF9VsNdMC2DSF_IDGDtj2LzjZFKqIEnOoM_-DkZSllrgQWIkDmAQDBWB62w0doTgcOL8l4rNItAVYkxVkaLivItz6VFSeUVC-d1JmGKBV0qLxdU6efCWqV5Rmg7jpNf9Nlav1PJluPnXf8kmZ_8N1Aj3T5WtpSvmFpnHQr10nsQGgOVtOfTunPHeTDMp2jmnFYxmAUMJcDcAs8Qf5xafKEYYNmTe86app2LCrFo9gNMMwREW5G686ZYVP2Q3Jvqevj3PYPcUKTtdio-2JMiMR_w",
  "scope": "openid email"
}
outgoing_path 
token
2025-04-28 07:50:34 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/ArconCI/jwks
incoming_headers 
{
  "host": "www.certification.openid.net",
  "traceparent": "00-2e82226b40231c2ec1c1285f462566ce-f66ca1284857c12c-00",
  "cookie": "JSESSIONID\u003dB0A6189B5F2ACF761BF49D54B23A0592",
  "connection": "close"
}
incoming_path 
/test/a/ArconCI/jwks
incoming_body_form_params
incoming_method 
GET
incoming_tls_version 
TLSv1.2
incoming_tls_cert
incoming_query_string_params 
{}
incoming_body
incoming_tls_chain 
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_body_json_parse_error
incoming_tls_cipher 
ECDHE-RSA-AES256-GCM-SHA384
incoming_body_json
Jwks endpoint
2025-04-28 07:50:34 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance HNVsEPu4GMplwk7
outgoing_status_code 
200
outgoing_headers 
{}
outgoing_body 
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "7H0XYKO2-uixJ9g1yzaXZUXKhfmo2sU8yEeVBfnlz3mCNJwR7ZLbtNHUEAVhm33lfxA0mqLP7kZA6tsC4KyreStQoTD17ZomIHhsd4N6bB8luLvCyMS77DAjL04KzcUfzAg_KtiPXnsMjK2N7B7XfmEwwEJCThHP7HK__XXywl1nzcw90TWvROvIaSJKd8UK_RUAgluD9HnoHgP3-c56UFkSmJiQPiTrDr5FVfwJpY1iso_b1EZKeTamaLR_BrO0_QhK1Ogywu83Sj33CRmagiEl7qOX9yfLQZL_VQdf9NLPl5aR9UbMSSoAZ-rSsQSdBQHUN1c-6XvPTgc_pKnqvw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "yAjYohNleCItQe1nz3Rxl7zLor2qhmcB4Yh-Yv9FO5FnsJta0EaY7k0QqQFTp-zhF9YCPejNGriupXsjTdXqBvSdHZAqag81u6XrqmNoLOlfajCb_Ftvaa-RkrmB1fqw8v4Ch60MNzZiA7hUSPzKhU6gDLOpGHv-HbT3p1LNBD45L0X-Wq70u34vgZ7iTFQCrBdDkl7nYbLeN4aVJ0ahNMRmGDfPFpqHoVqC67l0CT84fDMRh7oV0yN0Q6rbSr7YDBPcG2UMY9xLxwCKSMfZMVisdzLxFk5ONCnHBuIbuzPeC_AkFDBc7fAs-sl4eXbHYCsp5Nm6st7yun7c4raCbQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "n": "ubySc65bOJjG74stffotCvD8Ko_JKfLIFpr8_s3LLags6Vs1KALteXb2JPfLnZlcolzII2QZYH4M-DXMasWyzmtE-2CowDGLgq5hwp6ftCj2cgRQW6bsSv4M87oubvwvRhplMrmi6KLgbimlOwDucGnzXQYP_Nnb21yLVPesuNgpySsn87YBLURBwkadc2pJXycbFE1B4Nd-thfbs7dKRNUuJ04UOQJ36hChlSjUc8eWGvh7aBVrutbtBBZwERc6653_hTjzzcMLwdoQWk2cC1ChGWQcLn_gaSKvLh9TFhXLFSyi-toL0O5Qu9drHtRU-aGPF346Mn4loRgXG55azQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "1aIqtDuaPu1xquO8mynCjjAVL4yU8MgRjWUjO1AYe1g",
      "y": "Lo56B1O8dOS-_Jg4vFrPxooR4S8HVot3GyBnKkDguI8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "ONtVkIq3pROsBWy8t5jBC59bvYdZ75ZWRm3ZnhYWWFE",
      "y": "7JDFj7CqcTXhLQPLMaXtRQe2lH_-bBCcAdWJITsEdNw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "x": "Jb6XqeLOULCGaSprdZo09VjBpgVjmPI64JQ1Ifb67eQ",
      "y": "_WdAvA4wcVBCcmN48Evz3DTgWcEN7uNVMgk33xhl0Ec"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "6tOsMJai_FzmLXSVwqSckYf6hmI19csKjFp2J_gZ5xc",
      "y": "6vo-TTPLVEg7n7U9kWNeos7UKB3TbxESPxrellMGuFI"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "qMopKkTvdfGWbP27AEGHtQgAf475kCtaay6-9kdnKUU",
      "y": "nMqa8HsHNOg3AJ2Z8xVBP6TVPyvMD5nrK4sGkyTXBwQ"
    },
    {
      "kty": "EC",
      "use": "sig",
      "crv": "secp256k1",
      "x": "yAayVIxffo0_mB73qkrLkqdz52MsmGvRuYZL39OXL_M",
      "y": "KFTSJYhbyr1SB44vXZll7-OTmEjeqT9SHdK4rrLYZIs"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "9fXy54OM1m8dbN_s9NfWQaSlIJPoGALRoHtOB-3Mufw"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "bpWQwtX8OjQ_B012sDpWvXCNQpkLLwveFCXODzGvRGo"
    },
    {
      "kty": "OKP",
      "use": "sig",
      "crv": "Ed25519",
      "x": "VJaz2vlbWj2BF9QBHwONdYlXA4cv_X75fs7nwwvVesg"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "e14e14ff-9162-4aa7-bcaa-b3ada3e2cde5",
      "alg": "RSA-OAEP",
      "n": "xUzUzR7aJN0S-k3_SJF_9bS9mc56NT5m5CtFO56__bRZnFPUZZl7WRLMq-SAgpaLEbqlgBrSqAxsCJTdZ2lj3kuqEI6DuO089wFfDTGTKGtY9Lb4EJc4hgni3qJbUNwdeN3xf1aP3YXpNFiWG-LAjkx38SS7Qwu392_2OaZ9Aj4N7ZEVtJePRoO2JiEoF1RFmd2p_bYTAcsPTLE-Lfkbo7JfOegj6Y4yft01jVSexwy9Y7y_mto2b0jbFoNOzr5SA7T4yl5Wl0g5JyBObh8teHid_NrJlj6rKxhqqJ2fSJsfOnL0oX6XlkiYoCoHJznX00M-7IXownyX9nOlRGXpiw"
    },
    {
      "kty": "EC",
      "use": "enc",
      "crv": "P-256",
      "kid": "7e0e1207-2697-42fc-beda-cb182d910383",
      "x": "goJ3JQA1C79Vf0j2edhlUkbq2Q55IiCGBGsmmbYWgAU",
      "y": "xqKq_NML-Dc2w9muujjbJOAdvyRtnWvc35lLOgCW-oE",
      "alg": "ECDH-ES"
    }
  ]
}
outgoing_path 
jwks
2025-04-28 07:50:34 INCOMING
oidcc-client-test-kid-absent-multiple-jwks
Incoming HTTP request to /test/a/ArconCI/userinfo
incoming_headers 
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3",
  "traceparent": "00-2e82226b40231c2ec1c1285f462566ce-f99b78dd46c68b3a-00",
  "cookie": "JSESSIONID\u003dB0A6189B5F2ACF761BF49D54B23A0592",
  "connection": "close"
}
incoming_path 
/test/a/ArconCI/userinfo
incoming_body_form_params
incoming_method 
GET
incoming_tls_version 
TLSv1.2
incoming_tls_cert
incoming_query_string_params 
{}
incoming_body
incoming_tls_chain 
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_body_json_parse_error
incoming_tls_cipher 
ECDHE-RSA-AES256-GCM-SHA384
incoming_body_json
Userinfo endpoint
2025-04-28 07:50:34 SUCCESS
OIDCCExtractBearerAccessTokenFromRequest
Found access token on incoming request
access_token 
bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3
2025-04-28 07:50:34 SUCCESS
RequireBearerAccessToken
Found access token in request
actual 
bsH5IeBh4ayL0esWIosMlqaCstk3YctyEoKnfy6ha9vSIDlxa3
2025-04-28 07:50:34 SUCCESS
FilterUserInfoForScopes
User info endpoint output
sub 
user-subject-1234531
email 
user@example.com
email_verified 
false
2025-04-28 07:50:34
ClearAccessTokenFromRequest
Removed incoming access token from environment
2025-04-28 07:50:34 INFO
AddIssAndAudToUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path 
userinfo_signed_response_alg
mapped
object 
client
2025-04-28 07:50:34 INFO
SignUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_signed_response_alg
path 
userinfo_signed_response_alg
mapped
object 
client
2025-04-28 07:50:34 INFO
EncryptUserInfoResponse
Skipped evaluation due to missing required element: client userinfo_encrypted_response_alg
path 
userinfo_encrypted_response_alg
mapped
object 
client
2025-04-28 07:50:34 OUTGOING
oidcc-client-test-kid-absent-multiple-jwks
Response to HTTP request to test instance HNVsEPu4GMplwk7
outgoing_status_code 
200
outgoing_headers 
{}
outgoing_body 
{
  "sub": "user-subject-1234531",
  "email": "user@example.com",
  "email_verified": false
}
outgoing_path 
userinfo
2025-04-28 07:50:34 FINISHED
oidcc-client-test-kid-absent-multiple-jwks
Test has run to completion
testmodule_result 
PASSED
2025-04-28 07:50:39
TEST-RUNNER
Alias has now been claimed by another test
alias 
ArconCI
new_test_id 
OUZQmNJVsMbwgox
Test Results