tag *
^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:9: error: malformed HTML * opaque signature<64..2^16-1>; Signature over the concatenation ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:9: error: bad use of '>' * opaque signature<64..2^16-1>; Signature over the concatenation ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:13: error: malformed HTML * TB_Extension extensions<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:13: error: bad use of '>' * TB_Extension extensions<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java:8: error: malformed HTML * opaque extension_data<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java:8: error: bad use of '>' * opaque extension_data<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java:16: error: malformed HTML * TokenBinding tokenbindings<132..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java:16: error: bad use of '>' * TokenBinding tokenbindings<132..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:37: warning: no @return public byte getUserPresence() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:45: warning: no @return public long getCounter() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:52: warning: no @return public byte[] getSignature() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:44: warning: no @return public JwtHeader setType(JwtType type) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:63: warning: no @return public JwtHeader setAlgorithm(SignatureAlgorithm algorithm) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:77: warning: no @return public JwtHeader setAlgorithm(KeyEncryptionAlgorithm algorithm) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:96: warning: no @return public JwtHeader setKeyId(String keyId) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java:66: warning: no @param for clientId public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java:66: warning: no @param for claimsRedirectUri public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:181: warning: no @param for length public static String generateRandomReadableCode(byte length) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:181: warning: no @return public static String generateRandomReadableCode(byte length) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:198: warning: no @return public static String generateRandomCode(byte seedLength) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/Util.java:215: warning: no description for @return * @return ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java:152: warning: no @param for source public void transfer(Object source, Object target) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java:152: warning: no @param for target public void transfer(Object source, Object target) { ^ Command line was: /opt/java/jdk1.8.0_221/jre/../bin/javadoc @options @packages Refer to the generated Javadoc files in '/home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/target/site/apidocs' dir. org.apache.maven.reporting.MavenReportException: Exit code: 1 - /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/common/ScopeType.java:33: warning: empty
tag *
^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:9: error: malformed HTML * opaque signature<64..2^16-1>; Signature over the concatenation ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:9: error: bad use of '>' * opaque signature<64..2^16-1>; Signature over the concatenation ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:13: error: malformed HTML * TB_Extension extensions<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBinding.java:13: error: bad use of '>' * TB_Extension extensions<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java:8: error: malformed HTML * opaque extension_data<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingExtension.java:8: error: bad use of '>' * opaque extension_data<0..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java:16: error: malformed HTML * TokenBinding tokenbindings<132..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/crypto/binding/TokenBindingMessage.java:16: error: bad use of '>' * TokenBinding tokenbindings<132..2^16-1>; ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:37: warning: no @return public byte getUserPresence() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:45: warning: no @return public long getCounter() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:52: warning: no @return public byte[] getSignature() { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:44: warning: no @return public JwtHeader setType(JwtType type) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:63: warning: no @return public JwtHeader setAlgorithm(SignatureAlgorithm algorithm) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:77: warning: no @return public JwtHeader setAlgorithm(KeyEncryptionAlgorithm algorithm) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/jwt/JwtHeader.java:96: warning: no @return public JwtHeader setKeyId(String keyId) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java:66: warning: no @param for clientId public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/uma/UmaNeedInfoResponse.java:66: warning: no @param for claimsRedirectUri public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:181: warning: no @param for length public static String generateRandomReadableCode(byte length) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:181: warning: no @return public static String generateRandomReadableCode(byte length) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/StringUtils.java:198: warning: no @return public static String generateRandomCode(byte seedLength) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/util/Util.java:215: warning: no description for @return * @return ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java:152: warning: no @param for source public void transfer(Object source, Object target) { ^ /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/src/main/java/org/gluu/oxauth/model/json/JsonApplier.java:152: warning: no @param for target public void transfer(Object source, Object target) { ^ Command line was: /opt/java/jdk1.8.0_221/jre/../bin/javadoc @options @packages Refer to the generated Javadoc files in '/home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Model/target/site/apidocs' dir. at org.apache.maven.plugins.javadoc.AbstractJavadocMojo.executeJavadocCommandLine(AbstractJavadocMojo.java:5298) at org.apache.maven.plugins.javadoc.AbstractJavadocMojo.executeReport(AbstractJavadocMojo.java:2134) at org.apache.maven.plugins.javadoc.JavadocReport.generate(JavadocReport.java:134) at org.apache.maven.plugins.javadoc.JavadocReport.doExecute(JavadocReport.java:329) at org.apache.maven.plugins.javadoc.AbstractJavadocMojo.execute(AbstractJavadocMojo.java:1912) at org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo(DefaultBuildPluginManager.java:134) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:207) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:153) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:145) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:116) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:80) at org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build(SingleThreadedBuilder.java:51) at org.apache.maven.lifecycle.internal.LifecycleStarter.execute(LifecycleStarter.java:128) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:307) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:193) at org.apache.maven.DefaultMaven.execute(DefaultMaven.java:106) at org.apache.maven.cli.MavenCli.execute(MavenCli.java:863) at org.apache.maven.cli.MavenCli.doMain(MavenCli.java:288) at org.apache.maven.cli.MavenCli.main(MavenCli.java:199) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced(Launcher.java:289) at org.codehaus.plexus.classworlds.launcher.Launcher.launch(Launcher.java:229) at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode(Launcher.java:415) at org.codehaus.plexus.classworlds.launcher.Launcher.main(Launcher.java:356) [INFO] [INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth-model --- [INFO] [INFO] ------------------------------------------------------------------------ [INFO] Building Persistence model 4.2.2.sp1 [INFO] ------------------------------------------------------------------------ [WARNING] Failure to transfer net.minidev:json-smart/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata net.minidev:json-smart/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org [INFO] [INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-persistence-model --- [INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-persistence-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-persistence-model --- [INFO] Compiling 10 source files to /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/classes [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-persistence-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-persistence-model --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-persistence-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/src/test/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-persistence-model --- [INFO] No sources to compile [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-persistence-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-persistence-model --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-persistence-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/src/test/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-persistence-model --- [INFO] No sources to compile [INFO] [INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-persistence-model --- [INFO] Tests are skipped. [INFO] [INFO] --- maven-jar-plugin:2.4:jar (default-jar) @ oxauth-persistence-model --- [INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/oxauth-persistence-model.jar [INFO] [INFO] --- maven-jar-plugin:2.4:test-jar (default) @ oxauth-persistence-model --- [WARNING] JAR will be empty - no content was marked for inclusion! [INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/oxauth-persistence-model-tests.jar [INFO] [INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth-persistence-model --- [INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/oxauth-persistence-model.jar to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.2.2.sp1/oxauth-persistence-model-4.2.2.sp1.jar [INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/pom.xml to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.2.2.sp1/oxauth-persistence-model-4.2.2.sp1.pom [INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/oxauth-persistence-model-tests.jar to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.2.2.sp1/oxauth-persistence-model-4.2.2.sp1-tests.jar [INFO] [INFO] >>> maven-javadoc-plugin:3.0.1:javadoc (default-cli) > generate-sources @ oxauth-persistence-model >>> [INFO] [INFO] <<< maven-javadoc-plugin:3.0.1:javadoc (default-cli) < generate-sources @ oxauth-persistence-model <<< [INFO] [INFO] --- maven-javadoc-plugin:3.0.1:javadoc (default-cli) @ oxauth-persistence-model --- [INFO] Loading source files for package org.oxauth.persistence.model... Loading source files for package org.oxauth.persistence.model.base... Loading source files for package org.oxauth.persistence.model.configuration... Constructing Javadoc information... Standard Doclet version 1.8.0_221 Building tree for all the packages and classes... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/ClientAttributes.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/PairwiseIdentifier.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/Scope.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/ScopeAttributes.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/SectorIdentifier.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/Entry.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/CustomProperty.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/GluuConfiguration.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/InumEntry.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/oxIDPAuthConf.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/overview-frame.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/package-frame.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/package-summary.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/package-tree.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/package-frame.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/package-summary.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/package-tree.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/package-frame.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/package-summary.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/package-tree.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/constant-values.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/serialized-form.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/class-use/PairwiseIdentifier.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/class-use/ScopeAttributes.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/class-use/Scope.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/class-use/ClientAttributes.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/class-use/SectorIdentifier.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/class-use/Entry.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/class-use/GluuConfiguration.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/class-use/oxIDPAuthConf.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/class-use/InumEntry.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/class-use/CustomProperty.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/package-use.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/base/package-use.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/org/oxauth/persistence/model/configuration/package-use.html... Building index for all the packages and classes... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/overview-tree.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/index-all.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/deprecated-list.html... Building index for all classes... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/allclasses-frame.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/allclasses-noframe.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/index.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/overview-summary.html... Generating /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/persistence-model/target/site/apidocs/help-doc.html... [INFO] [INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth-persistence-model --- [INFO] [INFO] ------------------------------------------------------------------------ [INFO] Building oxAuth Client 4.2.2.sp1 [INFO] ------------------------------------------------------------------------ [WARNING] Failure to transfer net.minidev:json-smart/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata net.minidev:json-smart/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org [INFO] [INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-client --- [INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/target [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/main/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client --- [INFO] Compiling 87 source files to /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/target/classes [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/main/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 15 resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-client --- [INFO] Compiling 178 source files to /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/target/test-classes [WARNING] /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[48,35] X509CertImpl is internal proprietary API and may be removed in a future release [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_4.2.1_LDAP/workspace/Client/src/main/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 15 resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-client --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-client --- ------------------------------------------------------- T E S T S ------------------------------------------------------- Running TestSuite Invoked init test suite method ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:10:51 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:10:51 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: authorizationRequestAlgA128KWEncA128GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "request_object_encryption_alg" : "A128KW", "application_type" : "web", "userinfo_encrypted_response_enc" : "A128GCM", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "userinfo_encrypted_response_alg" : "A128KW", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience" : [ ], "id_token_encrypted_response_alg" : "A128KW", "id_token_encrypted_response_enc" : "A128GCM", "oxIncludeClaimsInIdToken" : "true", "client_name" : "oxAuth test app", "request_object_encryption_enc" : "A128GCM", "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 2068 Content-Type: application/json Date: Mon, 18 Jan 2021 10:10:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "request_object_encryption_alg": "A128KW", "application_type": "web", "rpt_as_jwt": false, "userinfo_encrypted_response_enc": "A128GCM", "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6c200303-b577-491d-9bfb-f5e26bd9ac4b", "tls_client_auth_subject_dn": "", "userinfo_encrypted_response_alg": "A128KW", "registration_access_token": "d5400929-e141-4e32-b081-af2a65676d20", "client_id": "6c200303-b577-491d-9bfb-f5e26bd9ac4b", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "01686574-d410-4119-8355-df2e6ce014ea", "client_id_issued_at": 1610964651, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "request_object_encryption_enc": "A128GCM", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "id_token_encrypted_response_alg": "A128KW", "client_secret_expires_at": 1611051051, "id_token_encrypted_response_enc": "A128GCM", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=6c200303-b577-491d-9bfb-f5e26bd9ac4b&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7fb3bfa5-1daa-4ae3-961f-79574d4f0d3f&nonce=12917339-0b5c-4067-b3f9-7e6983781ed8&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.qdpM2h7zrpfySRfFatPKjbL84IV2iLou.zFct4sGmVKb8iEFT.PDVLGjlqRyO6aX98Rf6daDYHVBo66GzUq-rM8f0EOJ76VBTUzrjrFPHowYVNVj28n623ADeI4RHr-y7CUMQIeREBsuBymsJWLZk1WRgLUCW3cyJEu61R-UukLVjUAkQrqvjk0KtER5Fubp5M_TTF9i3Mp0puClchVIIcdbB-TskOO3oQyTl3NrFNAfplYZXezdS_m7hy8jVI2Kr2EjP3p79-81nskMnYxGsQ1pJ_UJVH_OSEgd2v82FoiuFeIkN2eznyS9Gj63as3OLJ4OLPK_FGhAZ2Yb4pKVdIoJ5YH5dqE_BoLRz3ddBcPvXyfDdpOR8NEbXj1hiXYulp7YT-nFgJ-eFiF77AmUUgN4KA6WACIhybzdqobj2hh3mpwCsoYiqC5bFvnjVhna7kL_hMPgEjfx1xyKVFQTmGIKdSgt_PoJbdeFt3ZgW2ywv_iNVVBYEhSvmvOTPRP3SWhAxu4qua8dKNsrtRJ8XKbT8UqtYeI984stF3yFp9919kRk17HpS5AGAofuTG72IRY_4NNDUOnNwo2f-eCGWdtlBvAhTKBDdRVMcdPb385uR24vruUBb622VcMy3ZYu23TgMtidaO3tK0TL105ucWoM3Q4zKdcRDpzFMkJHxACUbNooXHeqEZ8H-u9F4aZSTjSOSwNYBDVXTXkbFqoEW9Q5GGRyMXCFpNQTIRRfMLxs_5QUYn_JyF-6hIcRkibvui-jw-2L8ScWzc9Fh7m87MxNiplJdCT_OQkoGj_mNaAh60_MiADy_Jk8rwfJp03VDTjsSHeGJa6DoeYXGxVWt2AgQPz1SnHWznjBwDsvy0N9872XYnP9j6eiow2Teb_ubLGUuVmX1G.MZ8Nf8Z8RSy-pXQ37ggu9g 10:10:54.260 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2bedbb5a6aa7d3c7f3d5ed361d9173cacee3dcd524afc1a985b74a9302b68d04.bdf11c38-4e2b-4438-993e-688f88ef64aa authenticateResourceOwnerAndGrantAccess: sessionId:17c6a7f9-a9d8-48ab-813d-323c86eae917 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=6c200303-b577-491d-9bfb-f5e26bd9ac4b&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7fb3bfa5-1daa-4ae3-961f-79574d4f0d3f&nonce=12917339-0b5c-4067-b3f9-7e6983781ed8&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.qdpM2h7zrpfySRfFatPKjbL84IV2iLou.zFct4sGmVKb8iEFT.PDVLGjlqRyO6aX98Rf6daDYHVBo66GzUq-rM8f0EOJ76VBTUzrjrFPHowYVNVj28n623ADeI4RHr-y7CUMQIeREBsuBymsJWLZk1WRgLUCW3cyJEu61R-UukLVjUAkQrqvjk0KtER5Fubp5M_TTF9i3Mp0puClchVIIcdbB-TskOO3oQyTl3NrFNAfplYZXezdS_m7hy8jVI2Kr2EjP3p79-81nskMnYxGsQ1pJ_UJVH_OSEgd2v82FoiuFeIkN2eznyS9Gj63as3OLJ4OLPK_FGhAZ2Yb4pKVdIoJ5YH5dqE_BoLRz3ddBcPvXyfDdpOR8NEbXj1hiXYulp7YT-nFgJ-eFiF77AmUUgN4KA6WACIhybzdqobj2hh3mpwCsoYiqC5bFvnjVhna7kL_hMPgEjfx1xyKVFQTmGIKdSgt_PoJbdeFt3ZgW2ywv_iNVVBYEhSvmvOTPRP3SWhAxu4qua8dKNsrtRJ8XKbT8UqtYeI984stF3yFp9919kRk17HpS5AGAofuTG72IRY_4NNDUOnNwo2f-eCGWdtlBvAhTKBDdRVMcdPb385uR24vruUBb622VcMy3ZYu23TgMtidaO3tK0TL105ucWoM3Q4zKdcRDpzFMkJHxACUbNooXHeqEZ8H-u9F4aZSTjSOSwNYBDVXTXkbFqoEW9Q5GGRyMXCFpNQTIRRfMLxs_5QUYn_JyF-6hIcRkibvui-jw-2L8ScWzc9Fh7m87MxNiplJdCT_OQkoGj_mNaAh60_MiADy_Jk8rwfJp03VDTjsSHeGJa6DoeYXGxVWt2AgQPz1SnHWznjBwDsvy0N9872XYnP9j6eiow2Teb_ubLGUuVmX1G.MZ8Nf8Z8RSy-pXQ37ggu9g ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=95115a2f-2480-41f6-878d-6253bce3b23f&scope=address+openid&id_token=eyJjdHkiOiJKV1QiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.jgdqxmNWDrhxyQPsZhqpNqktdwd4Iow9.ui6iDQoN-QAFUoMg.iKj2xWNeyEIjpmKEukYT5FYdCROggM3L-I0sZVk0H_OQRpbvXuZHAnr-em_KPjlhVr07lRZYhFdrjOErXcONUNjrgJOdYYw3dG9zuD2cgZKjqyJF_6M96Bh9Dwyf7e0C2a6LCNCvcGKClIWbJQZNDhlDFf9AXSIdTUy3hB24gqnSJPJvlTuzN3ntxrz8oq5ZTqKFgU1ujcNRmE0Rvx0poQ9hbXE4UeP9V1-9SCiopNqmSCiT3XG49AbxTsi-YZZhFOQ-lXM3AVd-vNFu8hRwHcFU2YwAYZbTCkvgiMaHL56pXAL-kFBFSOQQyXOpkOl6VkFFtAtcBhH9Gv6dQQKRQdHYqonMGyuHfJvy53RjXzPIIZ_iETIrVEXJ_qjjAUz704VS6QRS2QgmEZ_VlHmYM-b1dsDukJnrZ1GqOJnsQ-qVGj9huCuzokWeEfX8pDr-A5e1txwgjUJF6f4HLT8ikp5cuJZDKEOym4dwz2T2f7KB52Qq64OmtiMxjR2cMdT-dFyQl-vg7PocdPFOPMln52H5umzuS05rb-ZA5ha3_CgqIluLJboEa517GceOk6916xaFG7MJSGxEfU3oQL2ENV8_H29zUmvB5pEtqqPbZp7uZE0d-anQzr0XzaBJhD72aiESRfVYzNyqZRkwPmIIwq7_SU6EtgTWLanFG15w01b8a2gd6aKodYHtxNeGjk1sAhm6ZzNjA8y-Bf6FNQPB8PUFRZike7uTDS0t054HlhmUlpJn4BiiPzJwesOE5sX0_TtASgqgOLvJfCOF6JT65ED3KtM0hewZ21q4PVe-hffdSYKB-yFpsSOj6Yaj0VbQPtJNUfGGnCtYLWcAH2vbssx7RhZbhkWj9MjxXh9hf32C5gbnXTRaWm1e_VflIBWOtcxnGL-5FslqO2Tshj8Wk4WsE-8-_HkdBgPztjRXFZWjEV0Hx8lNTfM6FWR4_kuHm3BBL72bGkMbflLY8tIguTGFVVowx2VoPJPxqSQjjgT6b8qALFBy20wEp1h1G6FtDqZKtg91-XgLCPTf76zN2DDBpWPFXnJMS-8bHUCZQPPepIM_nPNR9ywI2Ca6vmo3Wnbm1ghnOxPiqsNqToC_jR3sI4qqHV_IJOwD4pgb8B3byY2q6Db8rpdkNh1PDja7tW82M9IUch4duruGJih5wjBGPLeSaodsY7_EuQtAJk2ahDe4oiqj_OttYhmafmeYKtleOQvyPjcyl3k8aAroYKYyAsQNevBosY3C9MRTB_9rMxA5bMVBaBGy_MeAqYtVKCipgqyFyPxHTxPLUTUTNhAT8vdzuH9AsJvn7i0IEY9BFwG0Rou5cja1nSL0fEGNakCbrTPcVB9gr5_CVtGYqQh5XD3F5byK78PN1EcAu__Ekym1MejW-LLIgluanaNGQbb5BG4EAltqcSpwlR8oAisIGfYtOgoTv3Rmds6OMFUH-PSHzCKD29rrjxlcm5b1oPTtcrRc50tTcrLokUJbSnjTeMWFq6NVSMifwcDxXpjlhTy5RVRrwDEbvCsNv8y0CXisVrju75tch-iqi7XmXk7KW9kYT4RdpJo8Vxln_oPzKZRwFLO8pkA_4Pf6x77xT6ByqWCarTkxpkHa-3WThL21L-diVcopyUdVehzvmhPOWh3Hw7e7AuyU5T4RMaDRq4IrorL38PiRk5HWz22oKWlrYiSu4cdFt4irh-EM2Zeik8YlHaq5KR_kr4poXWA_sA1Wacn1JX5MN8m0B41arkI8fPrpmE9Cv0kkweCI.FT03BNNXFttGKNjK2R57cQ&session_id=17c6a7f9-a9d8-48ab-813d-323c86eae917&state=7fb3bfa5-1daa-4ae3-961f-79574d4f0d3f&token_type=bearer&session_state=2bedbb5a6aa7d3c7f3d5ed361d9173cacee3dcd524afc1a985b74a9302b68d04.bdf11c38-4e2b-4438-993e-688f88ef64aa&expires_in=299&sid=63fcd0a7-1efa-4e8f-8cd8-767d1eedd53f ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 95115a2f-2480-41f6-878d-6253bce3b23f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 645 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:10:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.YkIGI3t9Min9gCD5cGydxEBRz5iTXagA.Va89wuTs6sAK_SX_.PKnQq2dbDtaGlbTJLFguW_RxN7KW0J4XTQvOky9LM3Z8JxQho1ClpaAEuydmYlWkNu5ol2uvM7VYcDbsVhR9ofaVStJMZlm7ast7Y775j23bvzhslE36XZehvknPQcTbsFaxzM_40cS03ofzzpl1Xb4b8P0G1H6SB0Ad3TBb4-XtUGBA40P9GQ2CgC8iK0zBwys8FyrSehwULCFB86M8Rp9dmnaTfzt0O7ZJLCwnz7fAoPvXbEGq1yLwxsWxsDMiqCnzZSS7BWOre-XCBXrfPCAgb_GCsb-8rNLLDps9LYMJjq0ZRKZKgnKUtmDTS0bMVTSBlwfTUcoDyWol_hBPuRBEvJzEKZ_FXln1O6rBtHFdyJGZWHhT3ZgzXUwgx9MrB6Xia4_SClen6iEeVHPp2VnYn9eoz05jAK6N-rMWl3K0Jdc0EHaD8SfUauQ27yTDLUozuv4cqEtABvvnwQlyr5J2Q4606JVUukDSPzLEGqyGk258dL9Mwar90PEM36tP.E4JX4S6oOnuUc0hC-lbgoQ ####################################################### TEST: authorizationRequestAlgA256KWEncA256GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "request_object_encryption_alg" : "A256KW", "application_type" : "web", "userinfo_encrypted_response_enc" : "A256GCM", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "userinfo_encrypted_response_alg" : "A256KW", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience" : [ ], "id_token_encrypted_response_alg" : "A256KW", "id_token_encrypted_response_enc" : "A256GCM", "oxIncludeClaimsInIdToken" : "true", "client_name" : "oxAuth test app", "request_object_encryption_enc" : "A256GCM", "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 2068 Content-Type: application/json Date: Mon, 18 Jan 2021 10:10:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "request_object_encryption_alg": "A256KW", "application_type": "web", "rpt_as_jwt": false, "userinfo_encrypted_response_enc": "A256GCM", "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=5c20357d-a27c-429b-baa1-6f1620d0494c", "tls_client_auth_subject_dn": "", "userinfo_encrypted_response_alg": "A256KW", "registration_access_token": "c6725f51-0b57-4593-baa5-c6b2b1b3d86c", "client_id": "5c20357d-a27c-429b-baa1-6f1620d0494c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "04fbb54b-9660-454f-ad21-a31b43b4f17a", "client_id_issued_at": 1610964658, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "request_object_encryption_enc": "A256GCM", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "id_token_encrypted_response_alg": "A256KW", "client_secret_expires_at": 1611051058, "id_token_encrypted_response_enc": "A256GCM", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5c20357d-a27c-429b-baa1-6f1620d0494c&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ac6f5a98-97c9-4268-9caa-f62acbf7951c&nonce=da0c48aa-2ffc-4cf5-bab9-49879d3c50c1&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.SrJI8p5TTlJVxpxD2HKATmSmkJ66i_1bvBBiMFd3mdvDhPRzHNfl3w.enbS-APJxxUSdyUO.aUJnLgU7Wf7RbWCyS86wv3OsJZce3WGdLrPfTj3M0U6afNCLd6x6r2arlt-bEh9-hh9ByWCgdPotcwVn8V-qE5PMLwIA6YGLlN3NQzAj8cSlgVARDYuon_mElsgLv-t53pl5VRfqiDxtI25tywbItBi5apNZbfZMLCAa31zuAJeyQlbFVuXtJLS7f5DHhq6-r0NNxNmVdw5hh_BmUsgVwnvfuTRSDvs1D14yGxLr4ij-FFHoQqYP_GY5lWFBCq7smdJg836zrsam0sBtRw8PizNQGGToDiSQ24ZWoMMvp3kyW2zgItw2KRG6UWAkzKv4eMcyZJm0m0VxNX3EIWQGoxYwVru3dazTuVPV83aYTgc55iIkfSfrZfu0OZVQoFKUnggqsKr6X636gNlMtROTIxiLbh7tun18F287MBrmZXzXnye-moDcS94AzbfrHmLM0x_4aSYBOJNC49J7LsYUBnxv4a2QYEeEAWtOEi2TW3CGKCaqEiydlxo_gl8_aT57bkCWcyYjfo4ZAuBLEEOvmp0K2QDWADBZmzXrlWAPdEnhBLbjIBir7hYunsJXhf79AE2ROytxiVsPm4f6_DFkyzNRBJupS-zNk0ckoSv2t7YU3P343Bj-R2C8yLFHDyUaFAt-xQdQ1f4ZMUtVHoK_uBUH8eD5KAFATUbtDZaFmViso4pBZwOGwQI3bQuF-B0M_uKTEk2SexrNm5B7qf3ghSqA6gmPhbl1Q2F_Hnh_cH3dkEqftmww1MtY05jdLcLB0Jm_dJx8oDsi_xmFT6o9mZtOi_p80IaSUh5vP3dxxq8wjPVF-z5oUqDS92mPPK8Zf6Zh2wHINVdg-SGa2LiapJtJ.h8KYXqm8LX68KGEmkl5wKQ 10:10:58.444 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:5733ad1ed51e708f8f33df2521cf9ec031075e2b32bf5944038cb12220f4a11b.85ea24bd-6cc5-44a2-b4fa-7c3c80e4d8df authenticateResourceOwnerAndGrantAccess: sessionId:d273c3fc-4901-4a73-bd3c-ee2c9f5abfa6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5c20357d-a27c-429b-baa1-6f1620d0494c&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ac6f5a98-97c9-4268-9caa-f62acbf7951c&nonce=da0c48aa-2ffc-4cf5-bab9-49879d3c50c1&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.SrJI8p5TTlJVxpxD2HKATmSmkJ66i_1bvBBiMFd3mdvDhPRzHNfl3w.enbS-APJxxUSdyUO.aUJnLgU7Wf7RbWCyS86wv3OsJZce3WGdLrPfTj3M0U6afNCLd6x6r2arlt-bEh9-hh9ByWCgdPotcwVn8V-qE5PMLwIA6YGLlN3NQzAj8cSlgVARDYuon_mElsgLv-t53pl5VRfqiDxtI25tywbItBi5apNZbfZMLCAa31zuAJeyQlbFVuXtJLS7f5DHhq6-r0NNxNmVdw5hh_BmUsgVwnvfuTRSDvs1D14yGxLr4ij-FFHoQqYP_GY5lWFBCq7smdJg836zrsam0sBtRw8PizNQGGToDiSQ24ZWoMMvp3kyW2zgItw2KRG6UWAkzKv4eMcyZJm0m0VxNX3EIWQGoxYwVru3dazTuVPV83aYTgc55iIkfSfrZfu0OZVQoFKUnggqsKr6X636gNlMtROTIxiLbh7tun18F287MBrmZXzXnye-moDcS94AzbfrHmLM0x_4aSYBOJNC49J7LsYUBnxv4a2QYEeEAWtOEi2TW3CGKCaqEiydlxo_gl8_aT57bkCWcyYjfo4ZAuBLEEOvmp0K2QDWADBZmzXrlWAPdEnhBLbjIBir7hYunsJXhf79AE2ROytxiVsPm4f6_DFkyzNRBJupS-zNk0ckoSv2t7YU3P343Bj-R2C8yLFHDyUaFAt-xQdQ1f4ZMUtVHoK_uBUH8eD5KAFATUbtDZaFmViso4pBZwOGwQI3bQuF-B0M_uKTEk2SexrNm5B7qf3ghSqA6gmPhbl1Q2F_Hnh_cH3dkEqftmww1MtY05jdLcLB0Jm_dJx8oDsi_xmFT6o9mZtOi_p80IaSUh5vP3dxxq8wjPVF-z5oUqDS92mPPK8Zf6Zh2wHINVdg-SGa2LiapJtJ.h8KYXqm8LX68KGEmkl5wKQ ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=1c63cb9d-bedf-4b48-9597-85110b8c7492&scope=address+openid&id_token=eyJjdHkiOiJKV1QiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.9w73755UaHyNF7ReJI3ymp7oMvLxKjHsnNCWLwPMYXhFObDbdV7OpQ.a85qKUaTQkb1itTe.xwxwdp9lhjGyR5BmjLZqLRglmPWU75CgiJda1zLQzkvpwxzYiH0ljYaKXAc-wWelT6plqgcuEuug0eotPgiujGwgzeyPUaF6JwuGpyJgsxUZrBvdnYgqZ609teS6WL3U0iEVQktXwGm0USqbtey0riGrMEwl0I25ESneSZD4bFcODHp81vLywTcFHY1jk1IFRP16CgU6cuR3Ec4HsXu8zi209kbt30Cv1T0t6E9RJWbJfjuqv1G0dWeXECXEo6XeO9sbyfUOk348GOqxXFgszf76LoSqnjdhFMwRqWVtBWV0-ydfj1SeIenb4WRmnmZ_TLQB6uMRwWiCxKpJbPGf0HainAAAuhjUYsoO_E_qvaPir6sf4374CUF6X-Xlbvpk4unI1HeRsKN4KYIHA94chbmvbtzyh_yHA2YjJ8rdzk-O6vLaRvADOSCsdZpYGW6lQHEgnCwShvxv1ixwE06cT2MiZsOMyNBaVe61y7l99e0S2Yywl1EpgmIuIsRFhtlIZ_KkQKKCXbLqGNPU_xg4XD7DEhfCZRq9kAGYvxIwi83uj-gdPIj5pE1j4oTc40q9IUFazjnChvSiKd2oLuJvpFLk94R3i6GeAroDlo8nT-Wxr2Jinqj6OFcKRuoIrLQNMc89VNTSBcyIL5KygiTRNFabVBTqk7sIMRKfPUi-ma8gBJwZZuh3LF_aSgQiYhhrXllN9E6I6ajv_xiyI6vth5rYdt2LIqlu7ieTuvF4BQVUC6vbkZy_Z4o-dhSeQ_Asq4i2ba9DKqqnrqDc1zT0G7mNtpJbylNzWQMY9hu_CIUuh3YQ0fP9-My5TxaO1ven01CTJ8dIViU8HDgrli3NrXXaisWmLaoM9P_lnCtRHypLdAaRheww-ItnL2OM8NvDxaJ21U21m6pNxMc_nDHcvqGBJUreZlMyntfYHYTU2gUmsrnr4c8pouecp6-DwOasnW42k68UCLdC0LEHstjDGpc6qTXWH29NoYPuc-wJvqu165f681xbLkHewigwCjno95X3l6JMIqwcXl3VH2itA3o1aqCnFDMgGLurTmoHLoG_rVDiiXOBvIGAuTMA48CtnMKCOVlaf0j0CQaPLOJLgCUiLbeY2BkOzZCJvWjBBUtI7_pPemYQ28isv2yx8H86OhEaDIZRCgDXQRCYNf_sPgvR1HbPZ-1Lfou5Qx3cK5UXH_ENB5b70RxAhazeV-zhR-v1ToKEhsb23vKjxARxIqd9VW9A61UJQV7wPgE0GhlqQdWu__CcOes1qYjyiCbXrbKiYqQ0X4Cbwzz0z7fiasUzucwNQZXsIsCF66TkGPXdXgk8pMhXAoSCI_IdnWqcdAhoo5ZwysJR5LgFG22KuaGBLLbZl_ZX7AAoyCF4lqbfDdRLGRRkYhzu7AaYh2wQ42jIeXwcX2l0ACISR7f0Ty7ACFSZsKiF2avSB5hVrcwUCJPZ0e81xvwv7ZAkUgeQu5BHOf4AZEnPnTYMt3hQLDcz8QaUMgObJpS40Ge3EHjvbQnlBBYPU_SQnfdvDOlGLSprndLJUd6m4w58H2ZA_YpF11fClJZ3RjdLCgI8D_OF0t9lDAsVetcFYPRfI4LIcSF8QKuZZVXaKmajl5MaC_Z_yO6DIWL-HicvdyX7_ISfnd7WIMUtW7_4nU85dfkl0DlaWj2Fcg5KBpa0nRTf59ny-FtYI-y7FNuoU9Cnq9RcARglKcobNldjwsXfTKfJPbcuUztZZupslEgdbzDaUYwvsMrDyCpnFvog0n5b.eb-WssAV-G8c9WqcwGxSNQ&session_id=d273c3fc-4901-4a73-bd3c-ee2c9f5abfa6&state=ac6f5a98-97c9-4268-9caa-f62acbf7951c&token_type=bearer&session_state=5733ad1ed51e708f8f33df2521cf9ec031075e2b32bf5944038cb12220f4a11b.85ea24bd-6cc5-44a2-b4fa-7c3c80e4d8df&expires_in=299&sid=b749fdc7-94bd-4d55-9304-2327d92c444c ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 1c63cb9d-bedf-4b48-9597-85110b8c7492 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 667 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:00 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.Age5PLwXUBUASgGz5i-CIF7cquKo7vLURESpppjp6wGuwDmQIKHSDg.yyBz4U7d_04kQyAQ.BMlfvZTQv2CweQiYTN7WlIKZb8z1cku3bQ-KYYW4q8KCScwl2PUbekQQNDlaWIvLkyggY5T4DooiL_7A26jwn9dHXI0v9CBdhLtTvbO3s4qPYN3PL3q7KVer75-jFuufqGwJcdbPLytodIqsbPQGy6PQ1Z0tPOj5GFD6Wja2fZ69a_8kD03lVS2DM_HJ1pe4FsLFexbQt2y904MzAnGRWGlgsVhRvNLS408Te20BJLFXZ4W0OEAS2kbQJtfrBBihZ5H9qC24sP2gH9fHs0X3bnbOG81FikZHHdNcsaN1-syo3gqnJEVwwF9fUyxwbQ1j6230mW3dVPilluVUhcW6lBhZNU6ohyYiC9vP4tExK0IY2Oh-by4nsyq0DNECTW3A-lwuz_drkVd2e3G-XwkMZehjYfFmwN1nNJa8m-xiDkPm-lJq1a8LOmX2tsKDBXkYHgvsCmTnUK59W-05YtSVabx2dWEymIbS6QUprPEZ3a2gk9KHZM-7uurFc9nQovDt.SaoqXWW7P7u6Kx8DMsCgcw ####################################################### TEST: authorizationRequestAlgRSA15EncA128CBCPLUSHS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "request_object_encryption_alg" : "RSA1_5", "application_type" : "web", "userinfo_encrypted_response_enc" : "A128CBC+HS256", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "userinfo_encrypted_response_alg" : "RSA1_5", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience" : [ ], "id_token_encrypted_response_alg" : "RSA1_5", "id_token_encrypted_response_enc" : "A128CBC+HS256", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "client_name" : "oxAuth test app", "request_object_encryption_enc" : "A128CBC+HS256", "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 2169 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:00 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "request_object_encryption_alg": "RSA1_5", "application_type": "web", "rpt_as_jwt": false, "userinfo_encrypted_response_enc": "A128CBC+HS256", "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=55dd027e-5a7b-434e-ab67-52e375517271", "tls_client_auth_subject_dn": "", "userinfo_encrypted_response_alg": "RSA1_5", "registration_access_token": "2c7e9ad4-f90f-44e1-bb24-d249ea191cd0", "client_id": "55dd027e-5a7b-434e-ab67-52e375517271", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "015fdcc7-2e8b-4d53-a73b-53e6cedefb67", "client_id_issued_at": 1610964660, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "request_object_encryption_enc": "A128CBC+HS256", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "id_token_encrypted_response_alg": "RSA1_5", "client_secret_expires_at": 1611051060, "id_token_encrypted_response_enc": "A128CBC+HS256", "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=55dd027e-5a7b-434e-ab67-52e375517271&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=969ad0fb-d8cb-441e-957e-d30fab54cad8&nonce=f4672172-6f23-405a-b2d6-e59579b3706a&request=eyJraWQiOiI3ZGZhODczOC01YTQ4LTQ3MzktYWQ0Ny05Y2EzMzBmMTYxNDJfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkExMjhDQkMrSFMyNTYiLCJhbGciOiJSU0ExXzUifQ.mTy9CgQsxhaal8qRZC5ORc4O_3QVOV9H1FM453jGYifXcLBnPlGG6zi2TW817BiItEoovG8jbGjJ7TV317_LmRAbKAygs2WYOUifhOhILzlFnJsJwaqECbCd4xLGek4_6U6ds_Auzht2dhQ_SqfRrvqTTAvc4FoON6qx1hm97OjtEWs0cb5z92tBBNAuRj2RLDcRNkpsu2G_vg9ThVz0bd41pZFFhVHSudfVlNmoh8I5es33nNWu3xIVXvyrUFvMrhn5N8yQ25is661TLYIAGkMLte4SxbxEvww9biBL5AhUSfSKuLL_aDbK8Q20vCj8RbX0CWDCIkkX1Vrl115jZg.20EVws9KCPbaukNoMxS7sA.HGl6kfdj7SgGi5pZHl6kmsA15ZVtc0JCvBFwHfjFgb0GyRuRfwSsGge2JhEC0moOZFbgmdqPnAfUnDP0Ub5erjgoYzLMOUfb6z_p_F1yDHpq_U871Yyx9LoDhUJw6i8l9BF1KMgYGIBHB-aiB1Kvl65pyYSDn51SKlwDlTWHdn22qPhEH9pkRZaLMLZotSy0iISErQB-80rZBUnqUOD8l5Z41KMU4-qh1xQH7Ie3cNzrnrMfBe6jl-aVy_c2YniZrnc5NpHtmbkJZAV0rXsu9jwb5NEw22xozEQ89VBxHgERpXdtbfkbtIjzo8b3rqFIiCDiC00iArUmwPfCTfNKeDUcCuAX83FoakH9aNtVk3f94J0dUVFjjbVdVSManteRp5PdTHqQUPS0tetuBIFk92dxE8PJ5ri1fucmV1_udz1BnbCitBiZSmhnGCfG1KX8pa4x1zGsuK9J2LNf0IwEOzoqcRKd0mXaOsfllzSEHz6aIdWLk4nQJZE1eHNxTxJrw28rljHkOr5FsJAjTvZyyOmESlNx1P51OAjzrnYTo75nrLbceIgjc6THYwFm5noJD4Gm6_QHBoGOZVCuO4UOGpgVp4v0tU_jBx6R_hPvVGzn46dDRPuLTpXY8WOJG-MWf2fcgmlfEYeY0p9xXiegHqvbIkxIrB4ZUT-NoUx_DJrEh27YWTTpwMwNs6v7cD7T7NGffO7BZgktak-e-XTfD8bGaW2PSfXUhLRr8f51wz5g47UQZsqUXMHMOKwmjKOOMlCqfJy5k9NpwvlIKI23NaaNIADypMdrh-LUxEW00EG6PM2RQr5yA9DTut5fBKvAe4h6Hs-pyVhdvzid3Wam8j1O2xQgcQbRPrh3gVyHKe0.4scni2o9hoDxjxOYYMo2-lvmuIUhfS_sQ0ATn_VjRhQ 10:11:01.358 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:41944fccb0a52b4b90909d598bddd8629546abe8f807701c469505716f4253cb.b75db342-3801-4036-bb57-c973685d9f2d authenticateResourceOwnerAndGrantAccess: sessionId:af51b454-721a-4d74-9941-cc4f98e62ebc ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=55dd027e-5a7b-434e-ab67-52e375517271&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=969ad0fb-d8cb-441e-957e-d30fab54cad8&nonce=f4672172-6f23-405a-b2d6-e59579b3706a&request=eyJraWQiOiI3ZGZhODczOC01YTQ4LTQ3MzktYWQ0Ny05Y2EzMzBmMTYxNDJfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkExMjhDQkMrSFMyNTYiLCJhbGciOiJSU0ExXzUifQ.mTy9CgQsxhaal8qRZC5ORc4O_3QVOV9H1FM453jGYifXcLBnPlGG6zi2TW817BiItEoovG8jbGjJ7TV317_LmRAbKAygs2WYOUifhOhILzlFnJsJwaqECbCd4xLGek4_6U6ds_Auzht2dhQ_SqfRrvqTTAvc4FoON6qx1hm97OjtEWs0cb5z92tBBNAuRj2RLDcRNkpsu2G_vg9ThVz0bd41pZFFhVHSudfVlNmoh8I5es33nNWu3xIVXvyrUFvMrhn5N8yQ25is661TLYIAGkMLte4SxbxEvww9biBL5AhUSfSKuLL_aDbK8Q20vCj8RbX0CWDCIkkX1Vrl115jZg.20EVws9KCPbaukNoMxS7sA.HGl6kfdj7SgGi5pZHl6kmsA15ZVtc0JCvBFwHfjFgb0GyRuRfwSsGge2JhEC0moOZFbgmdqPnAfUnDP0Ub5erjgoYzLMOUfb6z_p_F1yDHpq_U871Yyx9LoDhUJw6i8l9BF1KMgYGIBHB-aiB1Kvl65pyYSDn51SKlwDlTWHdn22qPhEH9pkRZaLMLZotSy0iISErQB-80rZBUnqUOD8l5Z41KMU4-qh1xQH7Ie3cNzrnrMfBe6jl-aVy_c2YniZrnc5NpHtmbkJZAV0rXsu9jwb5NEw22xozEQ89VBxHgERpXdtbfkbtIjzo8b3rqFIiCDiC00iArUmwPfCTfNKeDUcCuAX83FoakH9aNtVk3f94J0dUVFjjbVdVSManteRp5PdTHqQUPS0tetuBIFk92dxE8PJ5ri1fucmV1_udz1BnbCitBiZSmhnGCfG1KX8pa4x1zGsuK9J2LNf0IwEOzoqcRKd0mXaOsfllzSEHz6aIdWLk4nQJZE1eHNxTxJrw28rljHkOr5FsJAjTvZyyOmESlNx1P51OAjzrnYTo75nrLbceIgjc6THYwFm5noJD4Gm6_QHBoGOZVCuO4UOGpgVp4v0tU_jBx6R_hPvVGzn46dDRPuLTpXY8WOJG-MWf2fcgmlfEYeY0p9xXiegHqvbIkxIrB4ZUT-NoUx_DJrEh27YWTTpwMwNs6v7cD7T7NGffO7BZgktak-e-XTfD8bGaW2PSfXUhLRr8f51wz5g47UQZsqUXMHMOKwmjKOOMlCqfJy5k9NpwvlIKI23NaaNIADypMdrh-LUxEW00EG6PM2RQr5yA9DTut5fBKvAe4h6Hs-pyVhdvzid3Wam8j1O2xQgcQbRPrh3gVyHKe0.4scni2o9hoDxjxOYYMo2-lvmuIUhfS_sQ0ATn_VjRhQ ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=c37a41a9-a587-4b6b-9522-bdef4f126d72&scope=address+openid&id_token=eyJraWQiOiJhNDQyZjBlYy03MjM3LTQwYjMtYjdmMy1hNjAzOWY3MGQ5YmQiLCJjdHkiOiJKV1QiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2IiwiYWxnIjoiUlNBMV81In0.FIlUc_T22QDyXwBOUIVACkw5P8hZeSb5Wd0haDosSfINqTLxqRNUXtKjGKJT40Yu1XBhPD75bws9dgleX9hpg0YolyDjDmg7kKcxqFUFC_Y60zgQjGWvpjbvbOfrL1bxNttOmOAFrHszEptQozUJjzlVrLPuvZLy2JJd1EJx3YBRTn1E-ADCiXzCzizqEEY2GfnAvk2M3N-0jCn74cP9ZhWubMdu7-vSW0szqlItV4ytavbdQ5Os1DhJ8gldne-RBDV5kbm5QMZdoAlnjQwaKYnlGvMHxsirKQ3NpTHFloP8oyBjMBzemfhOM7fLx6VjpBeNujXT4KNZaEaFdhwFOg.a6qe3ZBNnYue-HYQ8ZIh4A.ijNbl9048ezMRprrnBYESePmofZev-OCp4ZG14ptARMDdJMXYdvOdsWHlzXpdgiln86tq8MV_kxw_dYKqQVl1fhuRP8nqgulWlu6Yhu2o-PcGl8LDhl6mFAPWbTIKzkj0vpb6Z9jhSx2AjTEMi5c3RsKvdg3PXDj2Z1MrA-NIaTgtJdTSOnToIO7Nlc1xqn3Ui7C0dn0w30bypu8QP5en1rngfDem1Hs6kw3Jm5erK11NhvPTpoIkjF-zNGiZM4VHzQLx69plMMqBqe37IQGrrOSjABW528pd1E2t88xB6f092z9t7bQPyQQe6MaZhugp2rxcILWe6Kaw4Xs72Pm1rZs1ZjkOL9ddjBYON0eqMp7aUwFIGccq_EnWWD58jjTMjmKP3npd4567nHDFx_AUVnNIFuuXXgLZyuPASRx1mKHOpGQ8SZiFVYXKi-1EMe1khWaGQ2h9UCcIDo58rnVZ2sFr4tDHHmmSCRXEv5GTnEZEN4EXCNhSh8-u1HAkmnMP1gzvaFo3AkzASV4qda2QfKdOttmt4Xl3l-6-UFJUdlWULyz_S9An9We2O4-GB0TyqEU7KCc5XLWr6C_LDAgbLyynhbsJ_JAfKl2_L-7x4oTS1TltW_CnTGeKoShenibmqoLjTk0yrZTJMJwrpG0DNcNAmMwWRSAi_rp54cWakRadTLtGiXuYr9a3DGeRLwTLvboe9C2bU2etJqmscoYzkILKmiZ04mjnyVv6rwWAbtbwsqYthkTaikQP7ezmiEhlCM_fEXn1Vw3YIFFrSqgIOTvY_XfEs43-3LUQHcRMQoofHhJqbUoZKGt2tvFfWPGVG7UrJpZVmma5OJuV6aCke39UYooCKKQchLmFMl268WuGYYXbW_kNUiB-1srdgR7E5A0TyLxn6SdxeFBDTWbRrU-gq2LdvQQxkJe7Z6vJgSQLoBNCL1j1YcaE1fabK2Tb6DzqEJPQDKGLiVP1W-ebJt7fa37b4Cb7HVPZErcsi9GCIYKJImlBuC3J1oqtK6a4AjcHu5OoTCVSVgvBeBkOSFj4RCSkizJwMnqzUJcF-hv1EikmGlM8y9IAnNfhzvjTlURqUTsw3n_LdyCbVckazSKoE4V_F3s1DjYFyLQGP9Ch5d2BFeq6MvNC6s4GlAWK9yN60i6IUpeL2GXBRDrEkPlP4AvM95HqfIMPnTXUGliJIVDFD9R74KZ6NDNYhr8aDyhyalQXDL-vFtRD5g0kG0vimxPmnqVdghQ4_272qszNhueVJBYQlEQ4qMmJcLytGZCoVAJtkzC5H3yBn4V4CDtVCCeDEdhsctT4lMzceX4TIrSUOQ9VSt6inGrOlKRc6DqdNt2lAA-SSiBdO8x0SjYhYHHyWqPhg223TOwvWP__aWVL5gAkhi5Flh_4xzpAui5Nf4h-oApe-GB4fESX6lEbRBgqejbXX2ms7MecfqcS2kgwKgZPaArQmVntTNb2-3qKD-xTgFev6P2eCstG1sPFCQMWaZwnxQsr9ruHYFyJwGjTMjDtvVod6_HCGno9LzZ3XGZWzgNWofRSlCwIIiJmOG6U1ImI9mcYE02cLUqR6Jo4k4jdxnit2xUlzliH8bZ1LzvOVDtKdyGhCc7b8Pk_oS14x-2WUd3nyMVc75PLysOLONbpzPr4ZBF7qbBV7ha9MoSxypUBva6NKtrrQj1lpinNpSQsQd9i-oS1BzsBTuAIBTvaw2k9wvmGlc_wriJwTWL8sOPs5-T7mqUchzOMdBbkgtzVfdVDG7jGCA.s7OeXWxVmOaEE5PTX0zuJTC30veTFYwuy-0c01QdJiQ&session_id=af51b454-721a-4d74-9941-cc4f98e62ebc&state=969ad0fb-d8cb-441e-957e-d30fab54cad8&token_type=bearer&session_state=41944fccb0a52b4b90909d598bddd8629546abe8f807701c469505716f4253cb.b75db342-3801-4036-bb57-c973685d9f2d&expires_in=299&sid=bb888c1f-24d6-456f-93a9-2eaf59436d19 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer c37a41a9-a587-4b6b-9522-bdef4f126d72 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 1012 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:03 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2IiwiYWxnIjoiUlNBMV81In0.v_2nCPPvAhKwbPsHdDjbrP3_0q5WAqX-5bHgz_dkiwKxVLW2PxF79I8i5s8CQdR46nLYNQ2iaZUKrA-mdg9WkqAZBWaf6htYaBvH75Chj1B4dOBk-En9vuyGXx9_EbXrAC2O_cJ4ez0uS5ctpABwxCaALUeo_09S9d6aNRuPhDMRoKoBQl-8WJYdHo2c39QwEf47UWqXL6ZPR9FYpgsc_QIJ8WHTNKedGgAjvyF5XIG3XvAJAYca8GDULdyR0_hBvhefLnE9j8-Kvw9KtOx5FeBXijDdGO8dqh_8j5p5JOCUfFWE5c8ssBTinJaRJPoj6gwhfp7x-C7yVaZx3k0E3w.05NWXtwyMCC1PYfcOKC2_A.RJGT4C8r1jXRj3sI7_10TkGKMKliR3A97TqH9DgB-mZ8vwHQ8sHAvzIU9uBQW167i_H-22fI9C0s3PwuVXEGtXsTgY6QQ1q7wk46YtK223jBfiVrq7MCojnjDitPt2gCE-3EOmnxnnLhS532O0o-0Drp12NcHKqvZ4ZHvIcNyHYaq7fWcV7a_WIBkPm3P1L8veSwi5Gl-4QYmNZsR3a6ADDRXYF6bOe3gFzCA52eZgjLRH2v18b9l3cAR_pdteaKNycEZy6RKdw0FN6Yya7MtcuFD7WvFeVAMh-SYr8QCt0D2wTHqSG-jvQC1yOv3JQ1K3_HhZGarORsWNcETN5GMN9hDFe93yVGnpxfMhVcu9-NzCdC5Ar_lQlN5UuAi-bZ-CyZbiHMF20ucxWjvmk6TompuB3iSXBHFJx_QYK0MyjTNgKlNu9jnDuqMDNYh30UE1ZUTFx5U5SQu_518DYgCYugUp3-Yuw6_vQJbFZo8dIgkMlXsJN1Bsr8tjqEAFnsjnHyLA-hGgGFrsVIQN9DXQ.OQMUgMmQcMs8J5lGAV9gqFaGtH3E34JFpaxWW2u3xx4 ####################################################### TEST: authorizationRequestAlgRSA15EncA256CBCPLUSHS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "request_object_encryption_alg" : "RSA1_5", "application_type" : "web", "userinfo_encrypted_response_enc" : "A256CBC+HS512", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "userinfo_encrypted_response_alg" : "RSA1_5", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience" : [ ], "id_token_encrypted_response_alg" : "RSA1_5", "id_token_encrypted_response_enc" : "A256CBC+HS512", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "client_name" : "oxAuth test app", "request_object_encryption_enc" : "A256CBC+HS512", "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 2169 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:03 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "request_object_encryption_alg": "RSA1_5", "application_type": "web", "rpt_as_jwt": false, "userinfo_encrypted_response_enc": "A256CBC+HS512", "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=d7504ac2-59d1-4c66-94ab-7133c74f06e8", "tls_client_auth_subject_dn": "", "userinfo_encrypted_response_alg": "RSA1_5", "registration_access_token": "cacfddba-0b7c-45b7-a517-0a2596892033", "client_id": "d7504ac2-59d1-4c66-94ab-7133c74f06e8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "fa0a9782-a602-417a-a2f9-dfc448bff303", "client_id_issued_at": 1610964663, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "request_object_encryption_enc": "A256CBC+HS512", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "id_token_encrypted_response_alg": "RSA1_5", "client_secret_expires_at": 1611051063, "id_token_encrypted_response_enc": "A256CBC+HS512", "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=d7504ac2-59d1-4c66-94ab-7133c74f06e8&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=79cfd8d2-cd9f-40f9-9a7d-18587efd4905&nonce=e673693c-4dfc-45f3-bdb9-5656f7a99d7a&request=eyJraWQiOiI3ZGZhODczOC01YTQ4LTQ3MzktYWQ0Ny05Y2EzMzBmMTYxNDJfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkEyNTZDQkMrSFM1MTIiLCJhbGciOiJSU0ExXzUifQ.IdkG_PUJnixryqy8J33QeIBoJj9MXA6ceVNcxzvHnxUVrFNr-Q7jTVbiw-Pt9w74fX2j10JydiLPuRI9zSTqijEFGm0hZtyQo-YR4VrwH0iH4dXvbXra7_Oksd4QzEhO8zxksc9csT_6Re4J6s-XbHWeLWYp9F89YK4KQcdQkT6_YjCh4ZayZF5Ldz-50fsqX0XS-oY6K604vd6e8syMENoufrr0RLtwR32nfMoRBtWnMPpqi5HsGl1lasNrpAaXQoNDEV8AAHUdJeaHMws-Pe8WlT4SGBCTE191Bjuoc9s7_OtFt1_Atwkxsn4rVvma3W-bWY5EPiwSskzixZEfSQ.e-8zxRxySxQnj4G3MrTRRA.1pwai-X2XJFR0-Q4HZlaGGwbFXtvVIxMQ_Ox0yA1lWVqWc008_VZu_IckzSc_Jzq5o6QZDY8KvHMg07-Y9MXlzb8X7odLhPgvAfSSLrsmIRne39TIBK_wjjPvrRxEztG0f21zM3Opa7ROHXwAFC9b1iXaQeFt3dJ0SRJqSuHeDAcOwYpgJQWH5aYN7VbIPtHSXfkVDGV7E7MUzlT-UTMuAwJHyNx3sMHtTOIYb_BCwiKuGbf93rQ-3hxFSP1WRgTfL3JP1nafxsid22o_hbG_F-lUDH5kbc2f1LufUiLQrsY2jClf-Bs-dH4_7hgdv_53IG2Bz2mFPKd7qIqmRRH9E0PlFVuT8GOxeL3_4AomX1EjLryIvk0qt2PII4nXPd03uIIVgitu_1cy1b09YZB2HHR1CAu6cUCyvehBLiB8IPp9O46Q6-789m8IwvCJGeKtD2L2fPEszCBAJCxgWzn3osKQQVQpHJmfhekFFzNGay-3C3gfZ5f1JdT8W__gS8dlxSlJONBEjm88B2CsEfRXTQA0POhFMQTa5WwgD_h3tqg_wBgO6E-6H1VcnSTG3ujT_3LXsThdLVGZCrB0Nmf9t_EMPmVMNXnh9ogt5lMp4nhRsw3QjRbuE3SMS-_HjiKKUCINMuIVfgmfg_EtzC9v5T0wQQz5cnUklN72dQwhwgTynT1mNLAtZfqbPbrU2nsQDUrgggqOVZCr7MsZ9EjEXh7-dBFBZbG0Xo_eStTXVx051ABldaTRBPjTvN75C-Nc0Cy-N38yhyK-OQwV1NkdbYJA7mr68ZZy-6ICoyiy6qFXp-FLsMID7TZqQ6a7SGcrDLihO09lfhbJPmIJNbQeYXr7lm5nemRBgnE3bcAP70.E4-QXc81EwcKbQE40nIOO0-zqhIxcRVqyJ8iRMl3hR45sr45zrtuwtbrxY1EhZNm9TvLcdu15vu9TUjWAmSfIA 10:11:04.611 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:36215aeef48d8d5e4921bf554bdbd09259f63edc51c7e53248c5884a578d6e84.b271c3ff-23bd-4756-9f2b-52695859a7ac authenticateResourceOwnerAndGrantAccess: sessionId:117f5fae-91be-4ca6-b72d-97b6f676acd7 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=d7504ac2-59d1-4c66-94ab-7133c74f06e8&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=79cfd8d2-cd9f-40f9-9a7d-18587efd4905&nonce=e673693c-4dfc-45f3-bdb9-5656f7a99d7a&request=eyJraWQiOiI3ZGZhODczOC01YTQ4LTQ3MzktYWQ0Ny05Y2EzMzBmMTYxNDJfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkEyNTZDQkMrSFM1MTIiLCJhbGciOiJSU0ExXzUifQ.IdkG_PUJnixryqy8J33QeIBoJj9MXA6ceVNcxzvHnxUVrFNr-Q7jTVbiw-Pt9w74fX2j10JydiLPuRI9zSTqijEFGm0hZtyQo-YR4VrwH0iH4dXvbXra7_Oksd4QzEhO8zxksc9csT_6Re4J6s-XbHWeLWYp9F89YK4KQcdQkT6_YjCh4ZayZF5Ldz-50fsqX0XS-oY6K604vd6e8syMENoufrr0RLtwR32nfMoRBtWnMPpqi5HsGl1lasNrpAaXQoNDEV8AAHUdJeaHMws-Pe8WlT4SGBCTE191Bjuoc9s7_OtFt1_Atwkxsn4rVvma3W-bWY5EPiwSskzixZEfSQ.e-8zxRxySxQnj4G3MrTRRA.1pwai-X2XJFR0-Q4HZlaGGwbFXtvVIxMQ_Ox0yA1lWVqWc008_VZu_IckzSc_Jzq5o6QZDY8KvHMg07-Y9MXlzb8X7odLhPgvAfSSLrsmIRne39TIBK_wjjPvrRxEztG0f21zM3Opa7ROHXwAFC9b1iXaQeFt3dJ0SRJqSuHeDAcOwYpgJQWH5aYN7VbIPtHSXfkVDGV7E7MUzlT-UTMuAwJHyNx3sMHtTOIYb_BCwiKuGbf93rQ-3hxFSP1WRgTfL3JP1nafxsid22o_hbG_F-lUDH5kbc2f1LufUiLQrsY2jClf-Bs-dH4_7hgdv_53IG2Bz2mFPKd7qIqmRRH9E0PlFVuT8GOxeL3_4AomX1EjLryIvk0qt2PII4nXPd03uIIVgitu_1cy1b09YZB2HHR1CAu6cUCyvehBLiB8IPp9O46Q6-789m8IwvCJGeKtD2L2fPEszCBAJCxgWzn3osKQQVQpHJmfhekFFzNGay-3C3gfZ5f1JdT8W__gS8dlxSlJONBEjm88B2CsEfRXTQA0POhFMQTa5WwgD_h3tqg_wBgO6E-6H1VcnSTG3ujT_3LXsThdLVGZCrB0Nmf9t_EMPmVMNXnh9ogt5lMp4nhRsw3QjRbuE3SMS-_HjiKKUCINMuIVfgmfg_EtzC9v5T0wQQz5cnUklN72dQwhwgTynT1mNLAtZfqbPbrU2nsQDUrgggqOVZCr7MsZ9EjEXh7-dBFBZbG0Xo_eStTXVx051ABldaTRBPjTvN75C-Nc0Cy-N38yhyK-OQwV1NkdbYJA7mr68ZZy-6ICoyiy6qFXp-FLsMID7TZqQ6a7SGcrDLihO09lfhbJPmIJNbQeYXr7lm5nemRBgnE3bcAP70.E4-QXc81EwcKbQE40nIOO0-zqhIxcRVqyJ8iRMl3hR45sr45zrtuwtbrxY1EhZNm9TvLcdu15vu9TUjWAmSfIA ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=2825a86e-33df-4871-a66a-eda4e68cbe53&scope=address+openid&id_token=eyJraWQiOiJhNDQyZjBlYy03MjM3LTQwYjMtYjdmMy1hNjAzOWY3MGQ5YmQiLCJjdHkiOiJKV1QiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwiYWxnIjoiUlNBMV81In0.N7ulVMEUlZfAcPB0lClDO1I2TXMJdDSj9OkPj01ULIFe4BZHIcEzSPMwNVyhblZE0TsD_jApCUC16V7ox8efEwf6FD2-Pn6Db0JKsmHjEX5v8g8-Md2jebroCgg1Ey1Wtc7a-spx863hDIcO4GKi106FFrAwQgEiiuUr-aBn9SlUvu2O0CTwP7MehaECYsJCbkYPhXalFhKhLBWIVrr11ymCdleseYCzEx_yLkc0AZUR5TRYwn56KPd8Q9BxF1smFVJUnzTcESJfTnVs2G_5tqNpK9wk5C-rLiueFmB_MfsGJEDFmaAm1pMX4ycBfy4V3Y1jnogvT_3aNOz_5hpYuA.odKPhVXd1HgrYroBWdr-hQ.X3nybeTUDLN_0BzUVsKxkFod3GPE1rNPfV1w9CkA7jEstD9xliI5BYRn4-b8SSk9HiqP2sWjz2vCduaL2HjaQi_gXpn-55SJlq3kvaZaCJ--PeRq0mQnJVEskvPgHKuemMo-wTZcx5qvknszOD7JaIjlQuHztg5GB08Mf0MBSvL-mxhiH0e755MD0rhFmZrzn-Rg_fD3CcWZb4hrnGQ0nSl1VWzlBG569rhqe9IMSk0mR0H0zIk_fG03BFepYl81_vIhcfLwImG26VUmvwdtQvafDzMp--dwr5muQrYKNVH0bxTyFWo-V3yt0nP0BztIqG-0zzhlFR56HGnnkybZekpcwGNrN_wnW0m0LgkVhdxwRA7rB4LIykIHDT4249D1TRBW3dRU88WaPNohJwB2GfLD9bNNUiWo7QOR99bx6cp46-6SW18hFo2VvpRgP8GzlTCSBaufEADNszUYtjnJ9pvrwf5PlIgrMlgCuthP0gQHDlAdhO7GkFKjunE_AmH_LG3RiU6YX64JG54-frdLpRNrJqudYnIbYl8tLxdkoLcpcydPtHhbBeasSy-kuCdpQ_12wpn1HndnMzv86izMZtaidGZifnLNe4QRXpUlguBmlBoGKLgeT8UD4_9umid7i97sq1GnelGs25dNmIHG6zZvyDyrQZ1q_dGRKgV_t6FRuW4rFZhBB_SD045_qK5T2WEMDU3qIoyvaFOXdQxoIKAbdS82yi9O_wgN4YO7nWNC8zKh37W_ZA024lGQ85PxnS6hyaqYTYx0x7VScEBapSAd7AdTeE2FU0w9xa3YvyPHgKY5d1ASQJo1_3VJovLgG3g8OORhEL6XAYgGjXOSbRBR1G1YVKgDwCnJv0RikQ327SEEQSWvFTr25Ufolr-IWYeGVmx7t1-vTBc4GCfco2PQXGoq2ObwxiwuHE8Opw9pEFpo0dqiIyIVtsMypM3euHb6MoHP7pfYMBTXkbq36ByZxuz202YpPsbL6qLUMM85-pvAWvfYAH-qYyK2RbRV3SOxbAJc2lXtRNg0F8kt0OnM7vileGMFpksCfn3B4tL8Djzn0D6CfX1sroht8TEkT3_DiODCVcFnAMmxsnp1fhjTm-7tSrFFnr5P3pfGUgZuy2W4dNwkAgQPhtW2lnYkY3GVFMuCRrH8q921Icb2-B3D3SKbIc9f6cg2VV7rOYXGTrJZZMPKA8YLFqj33pAO3WrJYSzT791dO9dVO579ulZZqmR3YbYJI2dU0yOcrXlulfPlTqxQkNUVLiFrhAUZSG0RHL6T_pYBLAHRTDWsH7B0aIEOepDNwPdnkjuU4TeugSln02g7TDcgbaV_YCRvG4FUHnvMnkFiw5TbMEoLoHefJ6ikBYgM7n-iN3UzHEO6AwHFPl5TNl4WgtlpAMc6FZksnVF--NZHxmTo7wINtp6ZXeaexc3zZ3dgdLvy3PIc9E1klbC4ulSMCIMfEGaYWqcfFGM6wWuseen4ooOsRa3HSAumi_dRzmY_HLizbCdnMLm6abR7kH8KzK7_5wBMpPLbIFZDjJMY3pGmMrrQonY0ehsQh7SFekKZi8EyPAS87IekJdgTHw5EEgahxTvpJHU16YOB5wEOFQ-CeQjoOmH2ZM2lLOkRdsO18_WfYeyfevhGmYN4wrWbP1q6J9wGv8a_PfUMfzvH1nRj0SmA7X9PnuVH-BMhGWr4sdhoTA9M99Vj7tOpRU9M3Y0lwR7zo1SOwj4k9R8LF-geoiyzfX8IqOKLXctjErkKLAdULlg.cbPbpKshp3sVZArdXAxcJccbO-KER6si-da-ygW8XAIFEW-DBZBRHbXPZ4qaLBPIUq7nAHeQSVTe5Vk5wjp8Xg&session_id=117f5fae-91be-4ca6-b72d-97b6f676acd7&state=79cfd8d2-cd9f-40f9-9a7d-18587efd4905&token_type=bearer&session_state=36215aeef48d8d5e4921bf554bdbd09259f63edc51c7e53248c5884a578d6e84.b271c3ff-23bd-4756-9f2b-52695859a7ac&expires_in=299&sid=87e642e0-67cf-4f31-b8c7-e9cea982e6f7 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 2825a86e-33df-4871-a66a-eda4e68cbe53 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 1055 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwiYWxnIjoiUlNBMV81In0.kidB6CHHNPDRyPWJ6k-raU7J8t5eA_zi7dgohSgCmNx_9eyFaSwjeg57sUAY-D6JCv0XjbqM0z-bpt2mDSlDtTtjdf1_GfrgcnXnIyWOnjDWdjx_k_VRLSFIBX9I4mF8XwVa0JcfbfTYejmAWDUKR18vE2xVuzs1hoii7PiRk8RjfBxLnSVQiwUC7znyWgPWglOycVl9J3fUvW1Lievzj52qMs4QOE2hQ-0HkqlUr26EQNeqIDDRRgT2nDl7l9AalMSdVuygKvczguKAMbsqqSuVbSuN8bzYlyiSpqePa58EthYk2222cVsXEwkvarvdCda2EPRAZXsIaBVAq-wRow.I0-E233gnVObWoWmbd9s9Q.1RV7qNGD_Dz8b7ERFxjL8ouctYPR9jcORDMk1zlPulXE6LdeJLV3hWxTTnj2x29Tow9oUZqRo2XlL_FhWZIGjFCUZMhjpYHYKvNCr7z1sOHMJIHBC3m6rMNExGiAzZBAR6jQh-CzS2NgHnwcXSItVlmSQaMxaMY27CgeffKO2OKxZ9ONHSVgL59hVtlMHbWfhsdcedgGndvgYA353cF9utWYudHzXIlTWyBsYTYyPUDQeSVV06tfqqgwHOA4nuzJ4sETjNyo-htBRgBzjoIQhf35UGEZ-XKYWdB0ubR6u4OZq5st4WB2XGR4Lcw0oTz1AtYkQEQFGbjYMnzWoqZ0zEP_lCcQu0y5n9t-IMYzuPjp93GKCjgIO0VIPsJbdQf1Y92HK58AwkDa4Y-9RZoklFpL2LZ7ahAlH0PZIDkc3qbHUdz_d9BSKq62Duq032blyI0l5QFZQ_uZZNgW7eJGP3lwXB-rLCHUywkPtRWY3vmuvBYPNWMX3yW7tIGek5jGtwoM2KPaYDKcPQgVzwbM6Q.j2eOBw2bsVD11XCRgG1uTkUfi0Oagy2DEFh6P34fZHlChZfwFFUEVGiKHMLC6lvuLwsfJkpICRQSsQAJukVRRQ ####################################################### TEST: authorizationRequestAlgRSAOAEPEncA256GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "request_object_encryption_alg" : "RSA-OAEP", "application_type" : "web", "userinfo_encrypted_response_enc" : "A256GCM", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "userinfo_encrypted_response_alg" : "RSA-OAEP", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience" : [ ], "id_token_encrypted_response_alg" : "RSA-OAEP", "id_token_encrypted_response_enc" : "A256GCM", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "client_name" : "oxAuth test app", "request_object_encryption_enc" : "A256GCM", "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 2157 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "request_object_encryption_alg": "RSA-OAEP", "application_type": "web", "rpt_as_jwt": false, "userinfo_encrypted_response_enc": "A256GCM", "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4cd6082a-dbfb-4d69-a3fd-4e94d4147aa9", "tls_client_auth_subject_dn": "", "userinfo_encrypted_response_alg": "RSA-OAEP", "registration_access_token": "10dd5d42-4215-4c96-942e-4dda7b1099d3", "client_id": "4cd6082a-dbfb-4d69-a3fd-4e94d4147aa9", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "b5fd001a-2c56-4b56-8aa3-3ce65401cd6f", "client_id_issued_at": 1610964666, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "request_object_encryption_enc": "A256GCM", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "id_token_encrypted_response_alg": "RSA-OAEP", "client_secret_expires_at": 1611051066, "id_token_encrypted_response_enc": "A256GCM", "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=4cd6082a-dbfb-4d69-a3fd-4e94d4147aa9&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2ddf2e72-5cc4-48d2-beae-7599001f8ae4&nonce=4a9d5e5c-d1a1-4325-be19-6477bf076b0e&request=eyJraWQiOiJlYmQ1ZTljMC1lNDcwLTQ4MzMtYTVmNC0yZGQ5MmY1NWIxNGRfc2lnX3JzYS1vYWVwIiwidHlwIjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.2VAU-MXn-qkT7uAkHfjkuMNTBB4htwHpK5u7X4pEcEuwlVa8SwJERVAFzDPDpBNb7wRox9_qdqfVnA5QixTwFg0R1kyF6PRuESLUAmtRzepQ4QqfG08AYZOwI5qM8zrtvBLZFSybEj4rBAYKBnZYm0ZVV8o-gR55CYdfNIymskoHD7I5-vr0OfaQpnurJ4qbkETeYUrfkOa9GHoBMuBTr2DZi-8rBgqOet8Le1X3U6izpC9mhDvFrhtf58Vd2GyxEhx7PF8vJD5kENtnyO-fRFl55bS5yeIieUd_plNywYRXT-gz0Zbfr8vTKdiiwTwxsQjgfR0daH4F5YI-qDXl7g._LuE9e7DT5D-q8mG.Jhke-o5eaxYs_hK8CnIfT2uGKrrEg44337Oj74P-HRJ2Qz7aEEbTHYyzvNbXfsGkYiCBEq8ouudk5O9XEniy8bueeIlLaEQbWPbI7GkrWi69_w-s4CkwkgPt9Lp-k0sXF1AeveyQRAWAQXPImKK6gJt_LmRuIm_zxZPDyT6JdIDBdRKfuqQX2nVDF3oxlcxOZpoCD-xspPExW9vuCrBMGPlmh4N9hIE76YKEbISePjr5-KSsz4dd2F0Be179Ij6thMb0BXmjJA6HiwllAFBOtWYve1ayD2ENTeXkcW_f437NvpxlXCBleo3hNcqwRZWHtj6DOqRHGoNhMMlCmXVApMDFEOS4G3wZ-YzsAs72zIn99f_ucxxSj9dC7l-bNIPt12c9rbS7JHdD9R1pChzYHH697ADOZMJOrhUrPj2RnRofvlryorJBjoyrPmMj7MqaATCfHFtWNlpP0GKAzg-56ZUDh9AGa9kChAP0S9Yvg3maBmETbRKafdtGmout2jp3lMyRruP8OW0AdRHEiqd09LYU1aYgsvXh9sQBpbfCNIZAmEiGA788bHdtWpx72e36zfu8dkLVd-Jph2m3Rz0dCw4YGacKpzt4iKBDZLz1mzFGklIh3Uh-HVud9t7Mrj02ocJIliNqTbnRbB5kCL3pbSGZFJk03w9ePmS7KCmb9P3ZcySO0WkHt8YKedxy5u8lNdBf8nHp_B-VRg6fZU48Bhu5rEWAPXAGPrH7lOlNjziTaOnz9qRvOta8MqTeN_8f8omrG-ue9if_29XAL5Rv2Cv_SLv9y0Udmj4k7TSJSobLUVW_TY83hWkWf2EX_5MnXe58l0TxA9noxM1xkdSPSKH4.3W5N5sZw856hnRL-1CUglA 10:11:07.517 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:b78399bb6e2a392cfbba9f8715a13c3c2c631c1d6f79845f8c1d9375bc9c58f0.21bb1edd-85ae-4e47-91c6-a180b6af30ed authenticateResourceOwnerAndGrantAccess: sessionId:c4cc4f86-82d7-4f4b-a5cb-f381e60ff61a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=4cd6082a-dbfb-4d69-a3fd-4e94d4147aa9&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2ddf2e72-5cc4-48d2-beae-7599001f8ae4&nonce=4a9d5e5c-d1a1-4325-be19-6477bf076b0e&request=eyJraWQiOiJlYmQ1ZTljMC1lNDcwLTQ4MzMtYTVmNC0yZGQ5MmY1NWIxNGRfc2lnX3JzYS1vYWVwIiwidHlwIjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.2VAU-MXn-qkT7uAkHfjkuMNTBB4htwHpK5u7X4pEcEuwlVa8SwJERVAFzDPDpBNb7wRox9_qdqfVnA5QixTwFg0R1kyF6PRuESLUAmtRzepQ4QqfG08AYZOwI5qM8zrtvBLZFSybEj4rBAYKBnZYm0ZVV8o-gR55CYdfNIymskoHD7I5-vr0OfaQpnurJ4qbkETeYUrfkOa9GHoBMuBTr2DZi-8rBgqOet8Le1X3U6izpC9mhDvFrhtf58Vd2GyxEhx7PF8vJD5kENtnyO-fRFl55bS5yeIieUd_plNywYRXT-gz0Zbfr8vTKdiiwTwxsQjgfR0daH4F5YI-qDXl7g._LuE9e7DT5D-q8mG.Jhke-o5eaxYs_hK8CnIfT2uGKrrEg44337Oj74P-HRJ2Qz7aEEbTHYyzvNbXfsGkYiCBEq8ouudk5O9XEniy8bueeIlLaEQbWPbI7GkrWi69_w-s4CkwkgPt9Lp-k0sXF1AeveyQRAWAQXPImKK6gJt_LmRuIm_zxZPDyT6JdIDBdRKfuqQX2nVDF3oxlcxOZpoCD-xspPExW9vuCrBMGPlmh4N9hIE76YKEbISePjr5-KSsz4dd2F0Be179Ij6thMb0BXmjJA6HiwllAFBOtWYve1ayD2ENTeXkcW_f437NvpxlXCBleo3hNcqwRZWHtj6DOqRHGoNhMMlCmXVApMDFEOS4G3wZ-YzsAs72zIn99f_ucxxSj9dC7l-bNIPt12c9rbS7JHdD9R1pChzYHH697ADOZMJOrhUrPj2RnRofvlryorJBjoyrPmMj7MqaATCfHFtWNlpP0GKAzg-56ZUDh9AGa9kChAP0S9Yvg3maBmETbRKafdtGmout2jp3lMyRruP8OW0AdRHEiqd09LYU1aYgsvXh9sQBpbfCNIZAmEiGA788bHdtWpx72e36zfu8dkLVd-Jph2m3Rz0dCw4YGacKpzt4iKBDZLz1mzFGklIh3Uh-HVud9t7Mrj02ocJIliNqTbnRbB5kCL3pbSGZFJk03w9ePmS7KCmb9P3ZcySO0WkHt8YKedxy5u8lNdBf8nHp_B-VRg6fZU48Bhu5rEWAPXAGPrH7lOlNjziTaOnz9qRvOta8MqTeN_8f8omrG-ue9if_29XAL5Rv2Cv_SLv9y0Udmj4k7TSJSobLUVW_TY83hWkWf2EX_5MnXe58l0TxA9noxM1xkdSPSKH4.3W5N5sZw856hnRL-1CUglA ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=9e56602b-d2a4-49f9-b12f-68a473ce955b&scope=address+openid&id_token=eyJraWQiOiJkOTFkYjUxZC0wZTdmLTQyMjUtOTllNS0xNjQ0NDRjMTJkMWEiLCJjdHkiOiJKV1QiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.ybViy9YvHXvCDxu-Siqf29hCqBKpAXZGxU4_GEjBu2rOVPSOJK1bJkpnL3h1YYAATfSkxnRZvgXOiG9QwD1g0e8ydJkbueKwZMZmx40aUOg0tnslPcYESI1Q_w-54lc8lkcuqZLloNHeSHH4ACuDA6Q2y0GaffiDSqj-AWXffiyDalkc3SKebxectdCaHAF9mJPrYIRhVdSJmgpqmQNiZk_dMJrlHrELDzi7y4bBJP-EsCRSURGaJy0AyxaSTcYuriwmu4P2JrXhggCNCJYjF5lzcG32XRS_y1jMnEujOLTiomeCgaXnOgDPU1GsNw5M3NPdeGVjnH70ZxRZKWsLFQ.qXslRku8F_EnIQo9.Lihdki4gpPJ8bR5zkTmEG6ioavur9OaBtOclfjt9iz8Qj7w1oA4S0PZURQ9zHb3MpO6h8_EOJxVmzIwtwen3Z5XxA7QjAQzShctsinJKtFcLua-Bu648V7dic4TSI3IyYIxV1eb2boDmfrLa6JK0HtMAL8EGskdD-eWmDu2W-KJODfod_zcNNIiIU1tuThjgvMq0Syk7u0HH9DUUInAvZE5zL_ocdBauGhQQUHs-URoyCDJcbEvuutDl_KsOtjoXN0JwZ-RX6SflzLEtLuFu4QLz2SazXhMzYzr25puokZ2JNyUZcIOfT7H6lBniZuOnPHQ_5ZmepAchalBsXfmSwYnUm0fOBwnuoOlQBt2YTU_56BBd5pm54xleqjdcHwGKNeDM1EsXdv7wDMHSwblI50Sbs3rhxh2qGfSEDl7d1LBAQrS2AAXmcANLyXlnycHbCLsHAD_XhJZL4olgCW4LrNw_5PregSMhDTntBBT0DvGOvnLfhIz11dcSRZVnqjoNcoAI5tyE2hrtK7h-_lXf1tZcNyadIaz7oaqNiKH4BWbO8btYaingPQW8QNSRHt6fnGgpZa4vtdWu2bcpHYuKNNmYubjIY2Vj66zQyi73SeJ3-QBCq258F-Mm4sHlJgjVK-R1O0_lwfMU8f6AlBvkV2iFddARljxlZz8JNlgDrOkz2uJd5HBQF-a5cxryMaomUzFaT01B_EV6fx-2-kMNcB0ezB7O4jl7gFmCmqfCKif1KjsABx6P8iWeEduP4f82ylgkNOEni4d86wygV_FeaGqPTmWohDJg0rOmgZTyvoRq8EuRj1AtuPACUtrCM2lb8hJJasXeWo3lTrWUPE1dCHhpx5-m-zw3-sj_WsAC-yG_Qxsk-18EJ0zbI8l0WXJBxdexwiArp4jblxNYGuuCV_h5y8bSjWhtrPmdxsUDOEwqw0f6iS9h_YLVhTfy2A9t-5Vs45kxSdG-Cyrrnksz-zK9gMLyKenchrxRmHZgx2FXsYt5idRqPwtUjkwaINLse9k_oRAsJrayHkfZzCeOa7bJ4QJ2t5BVtcVOB05E-avN6aDoxnwXFPwD8Shn5oWzcJZAft7Cz6-8PxB9E8sCd0VAWaHZmK4f8tyJFY3ghN7lfkZl-8yYTOLHieEf_62MRjPk2oahXah9yPoktMcubY90cFDzqvvZp1IuqhycWVVPHcRUKR5hPBGTV4478YtSlaSgFF0ASA4B2_X7l0FuRR9ezwJhWpvbBRtL9mrESZQIAD5ACZEn7hpvJTx0VFmfwpYSUXJX4aK_Rgk8cgoiv4cYrQ8CwrzHoF8aGkl0fntNOz2tgEDeaYTKPpe8wXe2YGZxNwi2eELiKelOYnKI85F1kW8ZvPIMV3c28BSlOiMxIaVN6AXY7Et5RjKDRTYdaE-ix1agTmHjKQGAQ3M2K394YLgS79rxLe6d60N5FKXA69JWAuS5Lf3J_zSieUWz8HMq7OrxkP6-v2_mS3KuL-OUqZXWgPaGpIJmKIUbax_CFPWdY_qO4TWk0glLJsNi7DVBLQ8plfjGkEKnfa8vIpB52uSUYxZ0xhEbJ2o1cFOf-9e1NLdCPYyw9NoFYGegxnBCKY5sDDdG8xzxhFbek29duZ5RvKn5daMUG6EfCsrFuMFtXS_VEupimq29jxDmqgNdrlaOAMFoVypZorOnvUive_ftV_LufXkBYynTE4lfia0GOD4NQTfnGEdn5HtlUKXUwhk27n2_1rQJEwRGgIhrhEdJrRYBG89Os2hC.Gg7mOXpDafA-DKPQGseZOA&session_id=c4cc4f86-82d7-4f4b-a5cb-f381e60ff61a&state=2ddf2e72-5cc4-48d2-beae-7599001f8ae4&token_type=bearer&session_state=b78399bb6e2a392cfbba9f8715a13c3c2c631c1d6f79845f8c1d9375bc9c58f0.21bb1edd-85ae-4e47-91c6-a180b6af30ed&expires_in=299&sid=2fb0e9ff-b75d-4342-894d-7a8e21dd6917 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 9e56602b-d2a4-49f9-b12f-68a473ce955b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 958 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.OiA_kq1pqMd1NHtun7w2Fk7W8QacuoS9UbCFz1EjhwSPhXMAP8cZLdi2Z0OkYklUKGxF4uVPBpGWXp34JwarxCG6L_87tVZgHqelXP0I9H2bvMYX2LDcOQxpm-QVSSP5HAOWB_m1nq3cZY76fWmb8XrQAMLmUDpx8h4MKuUvAfkrHGJzcYYzeLA2a6SdHbnVpfDcYOKZwgJStcPvXgoXoIvxEtJqmTg0XH6aeRTEpE6UbTLqw3HVJXjKklnIrNsKdjadWuuEnhyWvdRub_TDIeunez1B3ZUJlN8uDBFAiKRtAI2O4jkGgjtrcb9sBWHFGP8IixMaK_-z4lqCLxvXyQ.4xOU6ZhDNJBX9sTJ.FDNgfE7A_E5iU25EiHwx3JcJ8EXj-LGkLbhXTF1YdPYHNc_x3BLnSQCizztW39nqvAUusQZk6Prbpq1ch6c8mXm8_L0fB_tmkGwArHOGzyk1LG8IYw_hflNKiYDI6k_Li8yDBFsyZ_9Vhi6uVLEVHrOHOkmoIX3JA_AzUeGg5SjCFA2aYsmKrNCW-wXL7HY42NwDkukKl_kWaK7kIOJUWSeYD2AIiHLoiK-n5X1m8ZfxYP-bO8h8mGPUiv60C4_p9q5lvMi_rQPToftoaB7tqDm9qRB4HyZHVTAW2V5c55cIv4j2T5JzPgz0cy2BmJJOXnlBtcnEaWiBxA93gx2PQzjA2-daSh-6MJM-lIcBy83xNzouznucra6jChcLPEHAJIYUm3aXhatWNQMw_yxirhswdnlzm4IgRikV8Msdwchm3pVwh2qVwzlcsXIKXdvdQ524XAus2waI0Ij0deWLC1RO-YcU8XwobGxVaWTJD_m3LxmGxKRM6uLzqQqpWBPj.afFHo8C0E2_ERTzXGbqPHg ####################################################### TEST: authorizationRequestDefault ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1858 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=355e3ef2-f984-4358-beb3-80af6bff2d21", "tls_client_auth_subject_dn": "", "registration_access_token": "3dcaa8db-450a-4931-aff3-3eecf1c558dc", "client_id": "355e3ef2-f984-4358-beb3-80af6bff2d21", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ea7ab547-bcea-4fbd-ba63-4bbabb19c070", "client_id_issued_at": 1610964669, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051069, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=355e3ef2-f984-4358-beb3-80af6bff2d21&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=8f945d9a-1890-4948-8203-109f6f29b9ed&nonce=ea0677b6-4e15-42e8-86c0-a0124f4401a1&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjhmOTQ1ZDlhLTE4OTAtNDk0OC04MjAzLTEwOWY2ZjI5YjllZCIsCiAgIm5vbmNlIiA6ICJlYTA2NzdiNi00ZTE1LTQyZTgtODZjMC1hMDEyNGY0NDAxYTEiLAogICJjbGllbnRfaWQiIDogIjM1NWUzZWYyLWY5ODQtNDM1OC1iZWIzLTgwYWY2YmZmMmQyMSIKfQ.h7Qk13G9xpxA-C_lwg-RwgHOyjUB1IqGtI6pQEa2AnmhRA-NuT4X0Yiv_AXa1WcqBMz-QRF5uKGpRQHOLQpUTVWouXVMw03Hoq2wmQawViWRVGDpl8cvWfl2d8C8mdwEzTfHvcp7n7DwiOcHqKHwFtCzj2IDzDbqaWUvxtQEL_7niIhAbOedrQzHbK9clLV2Ec8snCo_yn8y6nUpGchu_cpeios8zSnlFy87VvrHUAoEfIyeAN4Shebt8RICy4B4HOeUuLX-fAEHGO6SZF6x7X4fCQDU4lxwnp3g1oJ-JPTwieXcXe7dPR9bH03yZNZwS8xphKJxX-ZDLf5O3nh9Mg 10:11:09.965 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:dfe83d7ff16681a8433b97e46e10aa602ad4a3bde0aee94bc94d66d8dd298e8a.9899d275-1cf8-427a-a362-950e5f2d5c50 authenticateResourceOwnerAndGrantAccess: sessionId:2b6c7dad-44cf-46b3-8d2e-b6b2378e3b55 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=355e3ef2-f984-4358-beb3-80af6bff2d21&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=8f945d9a-1890-4948-8203-109f6f29b9ed&nonce=ea0677b6-4e15-42e8-86c0-a0124f4401a1&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjhmOTQ1ZDlhLTE4OTAtNDk0OC04MjAzLTEwOWY2ZjI5YjllZCIsCiAgIm5vbmNlIiA6ICJlYTA2NzdiNi00ZTE1LTQyZTgtODZjMC1hMDEyNGY0NDAxYTEiLAogICJjbGllbnRfaWQiIDogIjM1NWUzZWYyLWY5ODQtNDM1OC1iZWIzLTgwYWY2YmZmMmQyMSIKfQ.h7Qk13G9xpxA-C_lwg-RwgHOyjUB1IqGtI6pQEa2AnmhRA-NuT4X0Yiv_AXa1WcqBMz-QRF5uKGpRQHOLQpUTVWouXVMw03Hoq2wmQawViWRVGDpl8cvWfl2d8C8mdwEzTfHvcp7n7DwiOcHqKHwFtCzj2IDzDbqaWUvxtQEL_7niIhAbOedrQzHbK9clLV2Ec8snCo_yn8y6nUpGchu_cpeios8zSnlFy87VvrHUAoEfIyeAN4Shebt8RICy4B4HOeUuLX-fAEHGO6SZF6x7X4fCQDU4lxwnp3g1oJ-JPTwieXcXe7dPR9bH03yZNZwS8xphKJxX-ZDLf5O3nh9Mg ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=27fe3b5a-adec-4296-9bee-0de1be130deb&scope=address+openid&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.N0rPDA9EleyHMRt1bVIMe_XKfZ021XcC7ou49OhrjTskEU33V8TvYRq6YosC2frtql8CYK_wLPXjcX7Um384I-yel_CXc2HOobZQPQSkJQp_yUTzZA5sK4sXxkjWQ8XTehOOUGp4vIXTHjmzCMc7sxgpEyOoCE5mzYFaZccrwx9Y81DDiFd4J4tWZrX30liTkV1eptNFCb_jPf9x2MdRNuNWvyD_WzH7DVR8D5dJVYoZUlKkca7nOnOpFhSox0U0bdEwWuVJO0RUx6heiDwmdekTb0uIVmJ8GCJ-S_w6BcCTtOnxqriUv8-mc2MY0m_bGgoUQZuw3Rq-AkT3OoIp1A&session_id=2b6c7dad-44cf-46b3-8d2e-b6b2378e3b55&state=8f945d9a-1890-4948-8203-109f6f29b9ed&token_type=bearer&session_state=dfe83d7ff16681a8433b97e46e10aa602ad4a3bde0aee94bc94d66d8dd298e8a.9899d275-1cf8-427a-a362-950e5f2d5c50&expires_in=299&sid=9034b622-d5f7-4bdf-87a4-e6174b8616db ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 27fe3b5a-adec-4296-9bee-0de1be130deb ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 210 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:11 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"street_address":"621 East 6th Street","country":"US","sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"}} ####################################################### TEST: authorizationRequestES256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "ES256", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "ES256", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "ES256" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:12 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=65dc7712-2c21-4b88-9c6e-0bf05e1e7ff0", "tls_client_auth_subject_dn": "", "registration_access_token": "e1d6dca2-e366-4ea2-a6f1-e327661cb87d", "client_id": "65dc7712-2c21-4b88-9c6e-0bf05e1e7ff0", "userinfo_signed_response_alg": "ES256", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ebc2b55d-8599-41dc-99f7-4b76b7047cef", "client_id_issued_at": 1610964672, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "ES256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051072, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "ES256", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=65dc7712-2c21-4b88-9c6e-0bf05e1e7ff0&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=c85f7213-dc6d-4aae-bf9d-036bdad57a28&nonce=53c6fa4a-bc72-496c-9a9b-ae94a3acd3a6&request=ewogICJraWQiIDogImE4YjYyYzlkLTY1ZWEtNDM4NC1hNDkxLWU1MjkyNGM0YTBlMyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzI1NiIKfQ.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.4PF9UwMwIvHW_zzsHBjTOZj2BTpsd_2JA0BNGAjlq2wYPzoJt5lb2I_VyJTGo-ub5cSs_2mIhbhrOigMLq_qjA 10:11:13.154 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:56342293ae0c34d64dfb885975c35164b727ac17720665894560f1b6953b5ebe.2dd0f4e2-56e2-4471-85f5-367a8c01e5d9 authenticateResourceOwnerAndGrantAccess: sessionId:21f04183-ed79-4121-91b5-571eb295dc2b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=65dc7712-2c21-4b88-9c6e-0bf05e1e7ff0&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=c85f7213-dc6d-4aae-bf9d-036bdad57a28&nonce=53c6fa4a-bc72-496c-9a9b-ae94a3acd3a6&request=ewogICJraWQiIDogImE4YjYyYzlkLTY1ZWEtNDM4NC1hNDkxLWU1MjkyNGM0YTBlMyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzI1NiIKfQ.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.4PF9UwMwIvHW_zzsHBjTOZj2BTpsd_2JA0BNGAjlq2wYPzoJt5lb2I_VyJTGo-ub5cSs_2mIhbhrOigMLq_qjA ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=a6a72f30-d520-4c14-8714-a00442240001&scope=address+openid&id_token=eyJraWQiOiIxMzA5MDg4Zi1kYmI5LTRmOGYtYTA0Zi0zZDM2NWYwNTBjNjhfc2lnX2VzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiRVMyNTYifQ.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.6Qx7Dvzna1TbnGsq8HD6Jj2ZE1XjvHJjzSB1YIZZwBfTYcojeqHmoIbRSBB5NJZ901otCm5rIN5OjNzOlHFk4w&session_id=21f04183-ed79-4121-91b5-571eb295dc2b&state=c85f7213-dc6d-4aae-bf9d-036bdad57a28&token_type=bearer&session_state=56342293ae0c34d64dfb885975c35164b727ac17720665894560f1b6953b5ebe.2dd0f4e2-56e2-4471-85f5-367a8c01e5d9&expires_in=299&sid=20d46969-711a-4e2f-9b27-612e1595eb12 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer a6a72f30-d520-4c14-8714-a00442240001 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 582 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiIxMzA5MDg4Zi1kYmI5LTRmOGYtYTA0Zi0zZDM2NWYwNTBjNjhfc2lnX2VzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiRVMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiNjVkYzc3MTItMmMyMS00Yjg4LTljNmUtMGJmMDVlMWU3ZmYwIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.HXag4TgBcBRa0Ykev7G3dQMAc5LX3YcvgFA8Dh_MmL73gsJ1jVe8RkKSedk_sJ6gUjG_Cc5Yo8Je0xnXx_IfUg ####################################################### TEST: authorizationRequestES384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "ES384", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "ES384", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "ES384" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=53980aa5-b173-4ae2-b48e-4b8f6150eddf", "tls_client_auth_subject_dn": "", "registration_access_token": "2516b71d-e11c-427a-bacf-34087ee80c9b", "client_id": "53980aa5-b173-4ae2-b48e-4b8f6150eddf", "userinfo_signed_response_alg": "ES384", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ba94c99f-821d-459a-8d22-ef93a189f503", "client_id_issued_at": 1610964674, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "ES384", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051074, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "ES384", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=53980aa5-b173-4ae2-b48e-4b8f6150eddf&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=220a0113-7f78-4c19-ab5b-1cd5e267d11d&nonce=43c1ef70-10d7-4e7a-b313-64792c16543e&request=ewogICJraWQiIDogIjBiMWEwMTlmLWZjZmItNGQzZC05ODFiLTE2YjQ1MzU1ZGZkZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzM4NCIKfQ.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.gJOPlySj-zn-_wzg-DhxHLGXbURLzFn4fNPs8DYlMNsaBGECLlzEq6QLtGMLb8oUuitNe2lEC_swNYUKV9L3qrLXXY-9tr9ckNDq08TdLTq7eD38ccUh_lIHn3lMys_o 10:11:15.334 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:f7f594cbc5c141909b93931b887160fd80eddb0276d5d9e4979ce7a831323b13.254ecd57-b112-42f2-ada0-6f62583b8e6b authenticateResourceOwnerAndGrantAccess: sessionId:1ccc605a-cc08-4fca-a86f-bed62c8f72ae ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=53980aa5-b173-4ae2-b48e-4b8f6150eddf&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=220a0113-7f78-4c19-ab5b-1cd5e267d11d&nonce=43c1ef70-10d7-4e7a-b313-64792c16543e&request=ewogICJraWQiIDogIjBiMWEwMTlmLWZjZmItNGQzZC05ODFiLTE2YjQ1MzU1ZGZkZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzM4NCIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjIyMGEwMTEzLTdmNzgtNGMxOS1hYjViLTFjZDVlMjY3ZDExZCIsCiAgIm5vbmNlIiA6ICI0M2MxZWY3MC0xMGQ3LTRlN2EtYjMxMy02NDc5MmMxNjU0M2UiLAogICJjbGllbnRfaWQiIDogIjUzOTgwYWE1LWIxNzMtNGFlMi1iNDhlLTRiOGY2MTUwZWRkZiIKfQ.gJOPlySj-zn-_wzg-DhxHLGXbURLzFn4fNPs8DYlMNsaBGECLlzEq6QLtGMLb8oUuitNe2lEC_swNYUKV9L3qrLXXY-9tr9ckNDq08TdLTq7eD38ccUh_lIHn3lMys_o ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=737b5779-db49-43f0-aa9a-992c1a433b31&scope=address+openid&id_token=eyJraWQiOiIwMWJiMjcwOC03N2IxLTQ5OWQtOWY0Yi0yNzVkNWY2MzQwZWJfc2lnX2VzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiRVMzODQifQ.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._xtyDDOAQUyrwQq0gkkKVP6C44rSNl_2yzFlwMzc5GQ4QgjmmNArLCjdvzsN6Q7zn9tM5vzblXG_1raIROrR2DnMwkPsszOcJK47unYTNzKsHlGO8ONH5IqCOi2IPJ9U&session_id=1ccc605a-cc08-4fca-a86f-bed62c8f72ae&state=220a0113-7f78-4c19-ab5b-1cd5e267d11d&token_type=bearer&session_state=f7f594cbc5c141909b93931b887160fd80eddb0276d5d9e4979ce7a831323b13.254ecd57-b112-42f2-ada0-6f62583b8e6b&expires_in=299&sid=1d7a48b1-e4c3-464a-b9da-5a0e3fde08d5 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 737b5779-db49-43f0-aa9a-992c1a433b31 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 624 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:16 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiIwMWJiMjcwOC03N2IxLTQ5OWQtOWY0Yi0yNzVkNWY2MzQwZWJfc2lnX2VzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiRVMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiNTM5ODBhYTUtYjE3My00YWUyLWI0OGUtNGI4ZjYxNTBlZGRmIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.oHzjELHYp9Sy4haMCN1QV-hlgpmHB95mBccFxBGi2p3YhjaUz0cGOeYNbxOefzQpQb-c80Bi5LnKmy0Ku5lhCX3G7cyglNNkcyNYfJZXrD6lDrnCx1T-f6I8SARevGrA ####################################################### TEST: authorizationRequestES512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "ES512", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "ES512", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "ES512" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:16 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b626277d-8102-419d-bf6f-702f58da7ea0", "tls_client_auth_subject_dn": "", "registration_access_token": "92a0b2bb-af2f-43af-ac40-e710e279700f", "client_id": "b626277d-8102-419d-bf6f-702f58da7ea0", "userinfo_signed_response_alg": "ES512", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7959d371-1d1e-43f9-bc60-a1de51f20453", "client_id_issued_at": 1610964677, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "ES512", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051077, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "ES512", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b626277d-8102-419d-bf6f-702f58da7ea0&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=112efe13-79f2-474b-bb22-0e398345e7be&nonce=f3ae527c-15a8-4b62-9303-1a4241116d87&request=ewogICJraWQiIDogIjA3YzkxN2VmLTk0M2YtNGE5YS05NjFjLWQzY2JhMjhjODFkNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzUxMiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjExMmVmZTEzLTc5ZjItNDc0Yi1iYjIyLTBlMzk4MzQ1ZTdiZSIsCiAgIm5vbmNlIiA6ICJmM2FlNTI3Yy0xNWE4LTRiNjItOTMwMy0xYTQyNDExMTZkODciLAogICJjbGllbnRfaWQiIDogImI2MjYyNzdkLTgxMDItNDE5ZC1iZjZmLTcwMmY1OGRhN2VhMCIKfQ.AH_1Ov-7dzgECpGDrzw7KaecsI5BAmhwG6_rTyCybX75qq5ahmtCtwvgRcwDBg0mS_i0qaGupvtJ5NsNZWrPrAoTAG8lN0dPNpDDHlXWQ2Zcq8wj4pgsqZDE_mjb197ctRBkDMGEQVDB-Yq48tkrYGstM8gWBEB5RleOsvUPZUQHGALw 10:11:17.423 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:941acdc3b5e46b0a6d58d32ddc1e3b1c4187bb93c70bebde54581820a8f52cbb.cdb256ea-d3db-4d52-88bd-deaf0c88ed3e authenticateResourceOwnerAndGrantAccess: sessionId:1f712d15-baa0-4c00-9e10-a6fff9f1f4ec ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b626277d-8102-419d-bf6f-702f58da7ea0&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=112efe13-79f2-474b-bb22-0e398345e7be&nonce=f3ae527c-15a8-4b62-9303-1a4241116d87&request=ewogICJraWQiIDogIjA3YzkxN2VmLTk0M2YtNGE5YS05NjFjLWQzY2JhMjhjODFkNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzUxMiIKfQ.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.AH_1Ov-7dzgECpGDrzw7KaecsI5BAmhwG6_rTyCybX75qq5ahmtCtwvgRcwDBg0mS_i0qaGupvtJ5NsNZWrPrAoTAG8lN0dPNpDDHlXWQ2Zcq8wj4pgsqZDE_mjb197ctRBkDMGEQVDB-Yq48tkrYGstM8gWBEB5RleOsvUPZUQHGALw ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=3e7a91cb-3278-4756-a8ec-27421f7e60a6&scope=address+openid&id_token=eyJraWQiOiI2MjY4Yjc1OS1jY2JkLTQ2NGItYmQwMy0zZTEyZGRiM2NmMDJfc2lnX2VzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiRVM1MTIifQ.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.AHfnDgC3Oely6b8OGi4PWv3p3th2E0DLhNI5cOoEeAWXGhaTVdRBdn85OM5-2BFkoTYyhadt9cTHBVf6UB2LyK2NAO43q0xi2Hys72Uvv2dWyD0X75wL2EwRAGh0eYq15rfwtNUxx8xDYtHfMe7xRg6QxPcoBanFaVa9rNhWAzvW_ReZ&session_id=1f712d15-baa0-4c00-9e10-a6fff9f1f4ec&state=112efe13-79f2-474b-bb22-0e398345e7be&token_type=bearer&session_state=941acdc3b5e46b0a6d58d32ddc1e3b1c4187bb93c70bebde54581820a8f52cbb.cdb256ea-d3db-4d52-88bd-deaf0c88ed3e&expires_in=299&sid=e023b600-046e-4663-a909-0b807ff9d7fe ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 3e7a91cb-3278-4756-a8ec-27421f7e60a6 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 672 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:18 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiI2MjY4Yjc1OS1jY2JkLTQ2NGItYmQwMy0zZTEyZGRiM2NmMDJfc2lnX2VzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiRVM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiYjYyNjI3N2QtODEwMi00MTlkLWJmNmYtNzAyZjU4ZGE3ZWEwIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.AeqjFiELX8aYw1o4epbTmFYRs-uexL90t7M6OKwbgHd8B4K8X412JQDQCNUh3ycCFlxHGmFKe9-XGLrJRs__dJ4hAQ5IOb3VWBkX3nesCWtFu7Od0qEgCvsfsuneIZYmvQHzpHQoO8qxURTtUeU8Lg7WVaWF0wwXdyZGQH5HqX2YNSoD ####################################################### TEST: authorizationRequestHS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "HS256", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "HS256", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "HS256" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1863 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:19 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=862a2adb-e5aa-40d2-8e2a-140af0131aba", "tls_client_auth_subject_dn": "", "registration_access_token": "0d9be1ff-6043-427c-afc8-2b1ba9374456", "client_id": "862a2adb-e5aa-40d2-8e2a-140af0131aba", "userinfo_signed_response_alg": "HS256", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "822a2348-fff8-46be-be49-e5e0cd54554c", "client_id_issued_at": 1610964679, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "HS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051079, "require_auth_time": false, "request_object_signing_alg": "HS256", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=862a2adb-e5aa-40d2-8e2a-140af0131aba&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b155a4e0-ccb6-45aa-aeaf-ce0273cfa241&nonce=d5bd626d-54a0-4580-ab71-09957c818431&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.4k3uxXfHZwmVz5OwOkpMWqEF7ueYGf0lyG1kglaL-kk 10:11:19.473 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:101015f2791485882349bbd2d1a7cffc8a15e9020e4384909c91fb355ba971a8.5c5a6cd8-346d-4a4b-bea0-bfdec258fc05 authenticateResourceOwnerAndGrantAccess: sessionId:179197e0-a29b-4b45-baff-107380251798 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=862a2adb-e5aa-40d2-8e2a-140af0131aba&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b155a4e0-ccb6-45aa-aeaf-ce0273cfa241&nonce=d5bd626d-54a0-4580-ab71-09957c818431&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.4k3uxXfHZwmVz5OwOkpMWqEF7ueYGf0lyG1kglaL-kk ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=3c40a3b3-8e90-4d52-a98e-17d27ce9eed4&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.s2KtvKyZ6M6Wb9CNWZhEXDWjX3Eb32uiAB16DzOhTa0&session_id=179197e0-a29b-4b45-baff-107380251798&state=b155a4e0-ccb6-45aa-aeaf-ce0273cfa241&token_type=bearer&session_state=101015f2791485882349bbd2d1a7cffc8a15e9020e4384909c91fb355ba971a8.5c5a6cd8-346d-4a4b-bea0-bfdec258fc05&expires_in=299&sid=c729b334-9baa-4a77-a17f-cd2b641b399e ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 3c40a3b3-8e90-4d52-a98e-17d27ce9eed4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 465 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiODYyYTJhZGItZTVhYS00MGQyLThlMmEtMTQwYWYwMTMxYWJhIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.nKPWRj88AM-zVtfNLa3-iczjhIEiQaeN6cIsaUDx62w ####################################################### TEST: authorizationRequestHS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "HS384", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "HS384", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "HS384" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1863 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8e07f433-2fba-45b5-a358-d734b2c5f1a5", "tls_client_auth_subject_dn": "", "registration_access_token": "aea732ae-aa77-419d-8b65-121ef032ddef", "client_id": "8e07f433-2fba-45b5-a358-d734b2c5f1a5", "userinfo_signed_response_alg": "HS384", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "53be1222-608b-495e-afae-cc50e5e369a7", "client_id_issued_at": 1610964680, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "HS384", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051080, "require_auth_time": false, "request_object_signing_alg": "HS384", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8e07f433-2fba-45b5-a358-d734b2c5f1a5&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=bb87b3ef-777b-4520-b41c-01b0d0a1e33c&nonce=1e4a4194-d00b-434c-b53b-af47c4b30b01&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMzODQiCn0.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogImJiODdiM2VmLTc3N2ItNDUyMC1iNDFjLTAxYjBkMGExZTMzYyIsCiAgIm5vbmNlIiA6ICIxZTRhNDE5NC1kMDBiLTQzNGMtYjUzYi1hZjQ3YzRiMzBiMDEiLAogICJjbGllbnRfaWQiIDogIjhlMDdmNDMzLTJmYmEtNDViNS1hMzU4LWQ3MzRiMmM1ZjFhNSIKfQ.9cvpXbZ-x2EyBRg-mumBpoeSVobcU1qkgQSCRDBEvXxYjduBVfhAQLwAeIt_Gsaq 10:11:21.101 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:53ebc0902e19261e0f5e3b0d73bc750e0d7929a4c3bb504fe00dba5abc0cea75.98353104-1f1c-43a9-b31e-79648644a9b7 authenticateResourceOwnerAndGrantAccess: sessionId:4f6ef494-8465-4cb9-b82b-aa0030dd0718 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8e07f433-2fba-45b5-a358-d734b2c5f1a5&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=bb87b3ef-777b-4520-b41c-01b0d0a1e33c&nonce=1e4a4194-d00b-434c-b53b-af47c4b30b01&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMzODQiCn0.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.9cvpXbZ-x2EyBRg-mumBpoeSVobcU1qkgQSCRDBEvXxYjduBVfhAQLwAeIt_Gsaq ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=8adf979b-e178-4441-b3bc-fcc88c3e3b6e&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.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.146MBNL_362ojfYWblHedgwHUdauOti5vqnOHCmIUJRg2Y98wIwjt8yh_oslbEdZ&session_id=4f6ef494-8465-4cb9-b82b-aa0030dd0718&state=bb87b3ef-777b-4520-b41c-01b0d0a1e33c&token_type=bearer&session_state=53ebc0902e19261e0f5e3b0d73bc750e0d7929a4c3bb504fe00dba5abc0cea75.98353104-1f1c-43a9-b31e-79648644a9b7&expires_in=299&sid=c71a2dcf-c272-455b-8267-50f5469da87d ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 8adf979b-e178-4441-b3bc-fcc88c3e3b6e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 486 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiOGUwN2Y0MzMtMmZiYS00NWI1LWEzNTgtZDczNGIyYzVmMWE1IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.PeUzQkEItkaYtbVb7_odl7rww_I1Bv-DW3QlPkFinLaOIlGyJyGeOMwqU0qnCYaN ####################################################### TEST: authorizationRequestHS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "HS512", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "HS512", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "HS512" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1863 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4c8f7fea-1f4d-448f-abfb-9a1f6500767e", "tls_client_auth_subject_dn": "", "registration_access_token": "aa96e68e-178b-430d-93a7-4f9faa3bce08", "client_id": "4c8f7fea-1f4d-448f-abfb-9a1f6500767e", "userinfo_signed_response_alg": "HS512", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "4cda9597-d539-41d3-a2ce-0aeecb79a90a", "client_id_issued_at": 1610964682, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "HS512", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051082, "require_auth_time": false, "request_object_signing_alg": "HS512", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=4c8f7fea-1f4d-448f-abfb-9a1f6500767e&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3a6e966-9904-4990-bb78-d516e041e0b3&nonce=360d8861-5d9e-4d9e-8597-ed4182c923ac&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFM1MTIiCn0.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogImUzYTZlOTY2LTk5MDQtNDk5MC1iYjc4LWQ1MTZlMDQxZTBiMyIsCiAgIm5vbmNlIiA6ICIzNjBkODg2MS01ZDllLTRkOWUtODU5Ny1lZDQxODJjOTIzYWMiLAogICJjbGllbnRfaWQiIDogIjRjOGY3ZmVhLTFmNGQtNDQ4Zi1hYmZiLTlhMWY2NTAwNzY3ZSIKfQ.RhexeiVjs9X-ihvDlwldCsgP5me1Yc9Xms6lf68UMYjXOtJkWIRmvmNCHR4CEX--BcnKFmCVBMiEzqSg56xgGQ 10:11:22.491 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:81c42f32ef8920c2a76336d5090440940ccc3052ba191079d1f527995d0e623f.235fdfe3-e392-4340-b662-25921a50ca61 authenticateResourceOwnerAndGrantAccess: sessionId:22a4b63d-99d3-4295-96fb-d63d53caedaa ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=4c8f7fea-1f4d-448f-abfb-9a1f6500767e&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3a6e966-9904-4990-bb78-d516e041e0b3&nonce=360d8861-5d9e-4d9e-8597-ed4182c923ac&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFM1MTIiCn0.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogImUzYTZlOTY2LTk5MDQtNDk5MC1iYjc4LWQ1MTZlMDQxZTBiMyIsCiAgIm5vbmNlIiA6ICIzNjBkODg2MS01ZDllLTRkOWUtODU5Ny1lZDQxODJjOTIzYWMiLAogICJjbGllbnRfaWQiIDogIjRjOGY3ZmVhLTFmNGQtNDQ4Zi1hYmZiLTlhMWY2NTAwNzY3ZSIKfQ.RhexeiVjs9X-ihvDlwldCsgP5me1Yc9Xms6lf68UMYjXOtJkWIRmvmNCHR4CEX--BcnKFmCVBMiEzqSg56xgGQ ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=5c585f08-6cd4-48e3-b655-91edc57871e5&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.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.WiInwNN3Uru6-FEJ_cCUPRKtVUcXY7utEIIA7-nqUerwbr9JLPVzfxXFXdMHiXSWU13R7YgpS5fMCwqhK0uUFg&session_id=22a4b63d-99d3-4295-96fb-d63d53caedaa&state=e3a6e966-9904-4990-bb78-d516e041e0b3&token_type=bearer&session_state=81c42f32ef8920c2a76336d5090440940ccc3052ba191079d1f527995d0e623f.235fdfe3-e392-4340-b662-25921a50ca61&expires_in=299&sid=ec08828f-4b36-44aa-aea2-9fc32c0a8fdb ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 5c585f08-6cd4-48e3-b655-91edc57871e5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 508 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:23 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiNGM4ZjdmZWEtMWY0ZC00NDhmLWFiZmItOWExZjY1MDA3NjdlIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.WSgtZKUNoQvi3T5Dy8olz3Py6qIAAQB2leXaiiSPptt04cvdrBmIkBfdmmTyofcGnDoEzGMHE_byHRYq8A01wg ####################################################### TEST: authorizationRequestPS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "PS256", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "PS256", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "PS256" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:23 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=34c59408-0eb5-4a35-8068-5a30a0835e31", "tls_client_auth_subject_dn": "", "registration_access_token": "3976e7c3-937c-4097-bef1-35a19bec8b12", "client_id": "34c59408-0eb5-4a35-8068-5a30a0835e31", "userinfo_signed_response_alg": "PS256", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "0efd92cc-ed44-4701-bacd-97d11fb1ac06", "client_id_issued_at": 1610964683, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "PS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051083, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "PS256", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=34c59408-0eb5-4a35-8068-5a30a0835e31&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2718f844-e612-45e2-a9b2-0a98efec0d60&nonce=eef00a9d-64ef-4ea2-a1e9-0bc5b77bfcb6&request=ewogICJraWQiIDogIjI5Y2VmNDA0LTU5ZGItNGFiOS04ZjVjLTZkYThkNTc4ZDEwNyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzI1NiIKfQ.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.YKbvcLZoxnfw2Cu_xMnhU3WhP2yw9H6efjTGWMrWUTqaNAVeHbJLDFjV5pRKoLUYHBEFVKHsc2mVdArP19lqF9AYupIoYh8wtAtVF7_Ft9SSm2IQCHIW3Mv7-IfS43j-YzEv3anrM2D0aBDbTZMCZHz0IKaTI9YQSovMwuIJwzkPS3gAH9LpNrQjMOI-uPw91s6D_4Cr-Vh-8QHGKNVhK55eUlxyz24QM29BjUj8rUVkPXMLziuiiTf_f477DVWrAgqPXNjYXiBu4p6g5PyHPPYf63rIvhqppHRugdYNP-C62BCbl_36ZLPyxGMG5Kofw0oX_U6QyaXqT6Q2zRi8MA 10:11:24.026 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:6a568606f9e00d09c18ebfc0e63025411dbdfd7d3ccfb6806e34c610ee223a04.a1e41275-93db-4177-8fe1-0343dc72bdc5 authenticateResourceOwnerAndGrantAccess: sessionId:4ed80a51-8216-4880-bb98-60193349ff1c ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=34c59408-0eb5-4a35-8068-5a30a0835e31&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2718f844-e612-45e2-a9b2-0a98efec0d60&nonce=eef00a9d-64ef-4ea2-a1e9-0bc5b77bfcb6&request=ewogICJraWQiIDogIjI5Y2VmNDA0LTU5ZGItNGFiOS04ZjVjLTZkYThkNTc4ZDEwNyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzI1NiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjI3MThmODQ0LWU2MTItNDVlMi1hOWIyLTBhOThlZmVjMGQ2MCIsCiAgIm5vbmNlIiA6ICJlZWYwMGE5ZC02NGVmLTRlYTItYTFlOS0wYmM1Yjc3YmZjYjYiLAogICJjbGllbnRfaWQiIDogIjM0YzU5NDA4LTBlYjUtNGEzNS04MDY4LTVhMzBhMDgzNWUzMSIKfQ.YKbvcLZoxnfw2Cu_xMnhU3WhP2yw9H6efjTGWMrWUTqaNAVeHbJLDFjV5pRKoLUYHBEFVKHsc2mVdArP19lqF9AYupIoYh8wtAtVF7_Ft9SSm2IQCHIW3Mv7-IfS43j-YzEv3anrM2D0aBDbTZMCZHz0IKaTI9YQSovMwuIJwzkPS3gAH9LpNrQjMOI-uPw91s6D_4Cr-Vh-8QHGKNVhK55eUlxyz24QM29BjUj8rUVkPXMLziuiiTf_f477DVWrAgqPXNjYXiBu4p6g5PyHPPYf63rIvhqppHRugdYNP-C62BCbl_36ZLPyxGMG5Kofw0oX_U6QyaXqT6Q2zRi8MA ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=42833ad7-d053-4007-90e3-f99d4c192f49&scope=address+openid&id_token=eyJraWQiOiJiZDE0MjQ2MS1kNGVkLTRjNWYtYmIxYS1iMGM0NWMxNzdhMzZfc2lnX3BzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.IoIO36wqSyrpPPv_4B15w0HjrbbfJbKBf0XuvdImxrads5fsXOQIdHFEwB3EkfAqjIZyiEuqxtClS8By-sblQ_BBo5lrR1L7J8bQQ58KwQ7-vqGyucxeDBN__BVbS5-CXM8misNlxoBcoFjLFZ588dBgDT2B9395uF2ioNpwWa_6bEzrtPvke9nAw30uSavk-DCIu7vlCg631_A6qAW5ARnDyiMqZHWJ6ZguAirHNLUVSBmdcFk_P85-mQu8eWi9z79I1wfUtZmAsxLVJIvHXQvkPXLgXJ0QMMH7tLQtSQqcaL6QCJZzj69_Q1gzADuQlAiKLYGJ4M9Lrv1zDqy7uw&session_id=4ed80a51-8216-4880-bb98-60193349ff1c&state=2718f844-e612-45e2-a9b2-0a98efec0d60&token_type=bearer&session_state=6a568606f9e00d09c18ebfc0e63025411dbdfd7d3ccfb6806e34c610ee223a04.a1e41275-93db-4177-8fe1-0343dc72bdc5&expires_in=299&sid=2f2369d6-6a0e-4b95-9d93-394f527273b0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 42833ad7-d053-4007-90e3-f99d4c192f49 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:25 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiJiZDE0MjQ2MS1kNGVkLTRjNWYtYmIxYS1iMGM0NWMxNzdhMzZfc2lnX3BzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiMzRjNTk0MDgtMGViNS00YTM1LTgwNjgtNWEzMGEwODM1ZTMxIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.WjaqRzeAgSOEZme3zQP5uSgzJtjc-3H3Ha0AJVKXsNlwFsPjlfE1J6ZKBgG2GeAdG7OPFEhfqY80YFBvyFvlHBXcU0TZhtvMdku6MJkw85lXtTJOMgzUBFiWjr7eUGuXLvQx_JcJmlvAsOFUbRGDTuRT_oCXKsOmaIo1ti5LdAmv6Gz6fSNKllvZMmGHh1im_NBsYm4ciJkAGJ7jlMksdBFc7RNXTkqI_GP_jceuACsGfJ2mrkcn_wtqwpwZSVpx1kVZqtvXhhbmN_lD4iqbS9vq5XjnrxsTCMSIchdOKlzmIRUS8z3zwZGgAlwoMAYm9Y1_-YiNbqCTw4wIItvnig ####################################################### TEST: authorizationRequestPS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "PS384", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "PS384", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "PS384" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:25 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=a1f04b8f-6b92-48eb-a7c2-fd681b3ba224", "tls_client_auth_subject_dn": "", "registration_access_token": "5c28b2d6-ba9a-4952-b99b-c26392b06ff6", "client_id": "a1f04b8f-6b92-48eb-a7c2-fd681b3ba224", "userinfo_signed_response_alg": "PS384", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "32d95995-2c5b-4c94-8b04-b518ac347c30", "client_id_issued_at": 1610964685, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "PS384", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051085, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "PS384", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=a1f04b8f-6b92-48eb-a7c2-fd681b3ba224&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=14307814-19a7-4c51-a271-03c5199f164c&nonce=cefd902e-f548-4753-a702-fcc8d8fb91bc&request=ewogICJraWQiIDogIjZiZDdjYzBjLWUxNzYtNGRhOS1iNjQ2LWZlNzc4MjM5M2RjMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzM4NCIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjE0MzA3ODE0LTE5YTctNGM1MS1hMjcxLTAzYzUxOTlmMTY0YyIsCiAgIm5vbmNlIiA6ICJjZWZkOTAyZS1mNTQ4LTQ3NTMtYTcwMi1mY2M4ZDhmYjkxYmMiLAogICJjbGllbnRfaWQiIDogImExZjA0YjhmLTZiOTItNDhlYi1hN2MyLWZkNjgxYjNiYTIyNCIKfQ.ZJySyA5LTXJ-Z3WdWeIU8gcSFiwu1c8nDRF_AVMPC8Ic-RViiqSd-4alO5rPvS0IRoSOMsPQSxhMtKn9T6255lYai3n3C8Qm8ouMuLqYPoYYHMXG0MXE9IKF_obQThnoIMqsD1-Z19l7_0PDTjnnpwkHITY0kOt0kVicy3RYSqKhHNiiw6aUvMLNCWmGETF6W415GcuabBe8vpWmDlwxNld2dcygRPT8maOHJUEAkqJeu3BCnNTzG9kWxLbw2Viy5sabNS2tMiWhHKQs8cMTUcyptNOYHakwpQI_pBwlKcn8qxl8IEWEpBH81fOP20fS5NWmU8V2BOIin9OHjnog-Q 10:11:25.877 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:19a5c27c951cbf2b94a4ff83152ad29ac616ed8e5218e4ebad67ff7d18ea7f05.628ca1a4-c72c-4648-baa7-f96d254bfe40 authenticateResourceOwnerAndGrantAccess: sessionId:190dc28c-aca7-473e-a25d-ef282d56e974 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=a1f04b8f-6b92-48eb-a7c2-fd681b3ba224&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=14307814-19a7-4c51-a271-03c5199f164c&nonce=cefd902e-f548-4753-a702-fcc8d8fb91bc&request=ewogICJraWQiIDogIjZiZDdjYzBjLWUxNzYtNGRhOS1iNjQ2LWZlNzc4MjM5M2RjMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzM4NCIKfQ.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.ZJySyA5LTXJ-Z3WdWeIU8gcSFiwu1c8nDRF_AVMPC8Ic-RViiqSd-4alO5rPvS0IRoSOMsPQSxhMtKn9T6255lYai3n3C8Qm8ouMuLqYPoYYHMXG0MXE9IKF_obQThnoIMqsD1-Z19l7_0PDTjnnpwkHITY0kOt0kVicy3RYSqKhHNiiw6aUvMLNCWmGETF6W415GcuabBe8vpWmDlwxNld2dcygRPT8maOHJUEAkqJeu3BCnNTzG9kWxLbw2Viy5sabNS2tMiWhHKQs8cMTUcyptNOYHakwpQI_pBwlKcn8qxl8IEWEpBH81fOP20fS5NWmU8V2BOIin9OHjnog-Q ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=b4ecd734-1965-405b-9dde-390012ac5cc2&scope=address+openid&id_token=eyJraWQiOiIzMzgyNGVkNi03YjU0LTRjMjgtYWRlNy01OGEzMDg4OWEzMTBfc2lnX3BzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMzODQifQ.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.Et3drPQkGNxm_qJDP4NwRPA0J2Dg8SsjEzntVmdiBZznlhsPdFj_lioOVd5PBP8zlqkuG_lmiEjtnRMJWuitvFO5SiTvTFdEuSL-YRBzQRhSFg9Jp_42ZGI5QucAK38gHl_rqIqy5AicjvGOw1WFVl-RWVv4uKI6mZVBWJBZDgYrNymeheyOv84Fx9Py1Qs-Da2qkYFbWoqGoBo-M3XbrdrOBZXUXRYfuSSrgEtzSErnaNISd60Y3NQoqJ2Bv-VHE7bA4pQJOwRZq3Ev6W3EZbRuqRs7x-TZ0FRqgHxvjSHqk_Elb-3XK_jSo-JyQgRM4TkCS3GX2WBctM71Fng76Q&session_id=190dc28c-aca7-473e-a25d-ef282d56e974&state=14307814-19a7-4c51-a271-03c5199f164c&token_type=bearer&session_state=19a5c27c951cbf2b94a4ff83152ad29ac616ed8e5218e4ebad67ff7d18ea7f05.628ca1a4-c72c-4648-baa7-f96d254bfe40&expires_in=299&sid=e710033f-5480-4a9f-8c6e-e68ba7089220 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer b4ecd734-1965-405b-9dde-390012ac5cc2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:27 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiIzMzgyNGVkNi03YjU0LTRjMjgtYWRlNy01OGEzMDg4OWEzMTBfc2lnX3BzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiYTFmMDRiOGYtNmI5Mi00OGViLWE3YzItZmQ2ODFiM2JhMjI0IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.E8GIYU_7qz2FvDEqVR-ZhJ-f-LgiEvLjPrHtu4AuvD9TN-MNRFb_xi2xrS6QPTZeZrg3jWrEJ8NLjBYdd_DcAsdH4S0eorL_BVWZauYmkeDM2erNGSfcMDcnvBR-RnVyZBAXl1JaBC6uqdqbbD13e3x4V3e9VK7ULCMwA6pBz7ECYu9WGTToE92Xqqc_pwjjAaJaD1eB2nnkAMHoiJQeDsOL-Gt5CkqAlGnihtN_rZKtoPnqtaZQQiKRtN6prpUR8PK6HO6qk-TI24xbUd5qqRt2c5l7h1Oj7LP4u_N8DXFCYveuJFHroS1Dn8UvXXm-4kuck3pdXE4ATcZvnfvauA ####################################################### TEST: authorizationRequestPS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "PS512", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "PS512", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "PS512" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:27 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=32ff385c-c471-4186-b94a-756ca523d92e", "tls_client_auth_subject_dn": "", "registration_access_token": "d80ce4b3-930e-4cfb-b6e2-f4c38cfdd483", "client_id": "32ff385c-c471-4186-b94a-756ca523d92e", "userinfo_signed_response_alg": "PS512", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "026ccced-15eb-4524-a336-b02bb38bb1e9", "client_id_issued_at": 1610964687, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "PS512", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051087, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "PS512", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=32ff385c-c471-4186-b94a-756ca523d92e&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6530aec3-8a88-4fd0-94ed-d3e51b996966&nonce=79aba478-fb69-48ba-a129-03dcf6f3de96&request=ewogICJraWQiIDogImE2MTRkNmFlLWU4MGYtNDY5YS1hMzA0LTUxYjliYmVmYzk1ZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzUxMiIKfQ.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.D4Rk_zxzMuLX7_DC6awtoJkHzxa3NXELcha-NTrDGbRkVtQvZSNsXVPFEBE2Y4Nk5sQ3qfbg-l4h-qe1M4kUi4dgvbjSbVgEBK7Msc2mLAp5e5JAjdXt9yAsh8j7u9LMc0vtEWZ9C7dbjIeMlpWl8_BqVD8x8IoUdR2dtl3SV5f-saCXyQnHL52_ngTlna_imNjbsfG6Gkt7fq8H9yqqVba1x3IPPyWhnHfN8bdhpQnJda2sDeycm94L5RPo8pD5GvIrT5YDLBpLwbfdHdAbZhf_hG1ZI_9rVtAhqVDKzvfL17nmOX6uate_ecQwwOO3mbzTPOKv_15jQcyaoc_fGg 10:11:27.828 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:4c7b810e471aaea8e797c6e57d7d2c06d38a26fb516512e40ef1189c0ca58ead.054be023-0f0b-4e67-b4bf-61468e990f8c authenticateResourceOwnerAndGrantAccess: sessionId:f88f5d98-fad7-4745-8f1d-f1c1b44902a3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=32ff385c-c471-4186-b94a-756ca523d92e&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6530aec3-8a88-4fd0-94ed-d3e51b996966&nonce=79aba478-fb69-48ba-a129-03dcf6f3de96&request=ewogICJraWQiIDogImE2MTRkNmFlLWU4MGYtNDY5YS1hMzA0LTUxYjliYmVmYzk1ZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzUxMiIKfQ.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.D4Rk_zxzMuLX7_DC6awtoJkHzxa3NXELcha-NTrDGbRkVtQvZSNsXVPFEBE2Y4Nk5sQ3qfbg-l4h-qe1M4kUi4dgvbjSbVgEBK7Msc2mLAp5e5JAjdXt9yAsh8j7u9LMc0vtEWZ9C7dbjIeMlpWl8_BqVD8x8IoUdR2dtl3SV5f-saCXyQnHL52_ngTlna_imNjbsfG6Gkt7fq8H9yqqVba1x3IPPyWhnHfN8bdhpQnJda2sDeycm94L5RPo8pD5GvIrT5YDLBpLwbfdHdAbZhf_hG1ZI_9rVtAhqVDKzvfL17nmOX6uate_ecQwwOO3mbzTPOKv_15jQcyaoc_fGg ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=5532f7bc-9286-4b0c-adce-fd4249101e58&scope=address+openid&id_token=eyJraWQiOiI3OGY0ZWY5My0wMTk2LTRlYjctYjZhZC00YTE0NTQ2NWQwN2Vfc2lnX3BzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUFM1MTIifQ.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.Qs4ec-CoUgeOvVHaDf-JEHN7M8gbqSUqOb5INi-_VT0ixUg_bUOmA50wFRyCToQO1cZtx6Wk_g82_BUu4c7mHHAZob3WjrJWdmuSVfUKvXVpm28BThR-u25inuYusK5OMeX8ft6yyTukTp0yH1ddYmicgs9LbJ6C1gkDhbkoibJ3TG0amcMY08W-V-TgdXlqP97aTA_0kwBpKMgZyv1V3GvQllEkbsTz2f_616R6rACIw0rIWXq2jrM4Hi4UM32VajTPl-NPUaT2E4b1n3iGgN4Rg3U60HgshNQVebbMJ_TpBCGIhUM1PpdoCLjjqMJr1R8IFJ5aJe2qX1gBSxBn4Q&session_id=f88f5d98-fad7-4745-8f1d-f1c1b44902a3&state=6530aec3-8a88-4fd0-94ed-d3e51b996966&token_type=bearer&session_state=4c7b810e471aaea8e797c6e57d7d2c06d38a26fb516512e40ef1189c0ca58ead.054be023-0f0b-4e67-b4bf-61468e990f8c&expires_in=299&sid=f64f82f7-a1a8-46f0-82ff-a793a5684fe6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 5532f7bc-9286-4b0c-adce-fd4249101e58 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiI3OGY0ZWY5My0wMTk2LTRlYjctYjZhZC00YTE0NTQ2NWQwN2Vfc2lnX3BzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUFM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiMzJmZjM4NWMtYzQ3MS00MTg2LWI5NGEtNzU2Y2E1MjNkOTJlIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.Dvw3hfmelV2WsDhcflUIOe6C9U3sJZjH7YnrZAegThKiNn-Ue7ExxHls63-V9RiNzx01OSLPlUJ9tHNiv7BpdU0HQlt3HrLTd9HkyUYuyje04exuuFOFCzThZAYJb5PZiWJ8tvI_1Em_e_83QrW6DywUjgRBQPIOtHDJyixI084XMIh8ng4LblCKx0FNLFxNk7mFd8UegQpJ4CFoORZWr0q_zFw1wvUa4y0-x4WE-x1eIWGL0-2dFqRsnwZ1rs2iWoNKeA5hIi-vuX2-WYOg3s6GWEKLnXlbfX6FSId_aNbSXoA8t5K_kk5EGVrqGHmTbcFJK82WlprDp8cPWmHxXA ####################################################### TEST: authorizationRequestRS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "RS256", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "RS256", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "RS256" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=836aaefc-3d09-4519-b3ac-5389a9b89ccd", "tls_client_auth_subject_dn": "", "registration_access_token": "127ac0a4-ef44-4d5a-be7f-a32bb290174c", "client_id": "836aaefc-3d09-4519-b3ac-5389a9b89ccd", "userinfo_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "10dca861-81c2-4035-ba6b-90c9f2174c9d", "client_id_issued_at": 1610964689, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051089, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "RS256", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=836aaefc-3d09-4519-b3ac-5389a9b89ccd&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6ea658bc-6148-469d-94d0-266c384356c6&nonce=0903c000-ccac-4806-b716-28139837df5b&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.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.WO25XytiCUV4J9y1c52-3S0QJiECpToNK0C0rPsG1gDJaciFCmFsLqh_saRJQ6i9lLs-mS_yUYMgZLtA2gZlHhL0aoT__F0H9nwyyFseCsm68GelGOKhG9EW6UMzso81x7IMOh6MBSqNnW-UnAg0jXkZ-uiq_t2Vue9FVniDiIsx44x_rQSQJJ6ksF3ziQD1MQgI_7m9ixLsSTUl15oCcgD9ajhZKwcsGkirv71uTbk4treromYjNzcy6qaT3YS50_-EeL3ZRqmmmSzj4T6L9PnDPg1wMvGPaCUj_RkLt7bZWIgk-lyRavQ9rTMhiP6T7lbYPVTZJHd3rzVBMObdAA 10:11:29.687 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:d3c4a8284f52346bdf9f8c398058547c4e1c29b400a4e816b0b1a3a3096c23ae.b0bfeb3a-a197-41ec-ab7d-0ef630dd85d0 authenticateResourceOwnerAndGrantAccess: sessionId:a47f19ed-4c93-4794-9293-eeb9331f8950 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=836aaefc-3d09-4519-b3ac-5389a9b89ccd&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6ea658bc-6148-469d-94d0-266c384356c6&nonce=0903c000-ccac-4806-b716-28139837df5b&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGY2UtZGV2NS5nbHV1Lm9yZyUyRm94YXV0aC1ycCUyRmhvbWUuaHRtIiwKICAic3RhdGUiIDogIjZlYTY1OGJjLTYxNDgtNDY5ZC05NGQwLTI2NmMzODQzNTZjNiIsCiAgIm5vbmNlIiA6ICIwOTAzYzAwMC1jY2FjLTQ4MDYtYjcxNi0yODEzOTgzN2RmNWIiLAogICJjbGllbnRfaWQiIDogIjgzNmFhZWZjLTNkMDktNDUxOS1iM2FjLTUzODlhOWI4OWNjZCIKfQ.WO25XytiCUV4J9y1c52-3S0QJiECpToNK0C0rPsG1gDJaciFCmFsLqh_saRJQ6i9lLs-mS_yUYMgZLtA2gZlHhL0aoT__F0H9nwyyFseCsm68GelGOKhG9EW6UMzso81x7IMOh6MBSqNnW-UnAg0jXkZ-uiq_t2Vue9FVniDiIsx44x_rQSQJJ6ksF3ziQD1MQgI_7m9ixLsSTUl15oCcgD9ajhZKwcsGkirv71uTbk4treromYjNzcy6qaT3YS50_-EeL3ZRqmmmSzj4T6L9PnDPg1wMvGPaCUj_RkLt7bZWIgk-lyRavQ9rTMhiP6T7lbYPVTZJHd3rzVBMObdAA ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=f661e0fa-c884-48e3-98fe-79e582f82eaa&scope=address+openid&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.vknoXtRaaXaLUOI7BaYAP_mtf4tHryfXLbqG2z36LAozwR_rKNqzMwEvt8ZtGnTHKhxxcgUWSwrBMQAmpDAwUSKg8YrFg-Nmbyd_ZLwSJITcJDMclEYyJMVSYUPpymXen6FCAIFsjt2MEDZ1GjHbGcIdZPYkn3b3bHmBqWHfDshwyRW9k8ApQWsWxnJYjyJWuehr_8H4PKGPdydSmmJpy0yUYsUaAbWA0YCdZ1AcOPdGFeEue7Qfyj7RngkGGkHkBehBNhklVhHNnjhzHNLClEzeb2zI0wVVeVsMDSxHiDcx-trMAD4WVw-lj160LBKpNMDQ0tHZfbjdRyV47RbMQA&session_id=a47f19ed-4c93-4794-9293-eeb9331f8950&state=6ea658bc-6148-469d-94d0-266c384356c6&token_type=bearer&session_state=d3c4a8284f52346bdf9f8c398058547c4e1c29b400a4e816b0b1a3a3096c23ae.b0bfeb3a-a197-41ec-ab7d-0ef630dd85d0&expires_in=299&sid=4898b361-0753-42a3-8d39-a36f7d68d7bb ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer f661e0fa-c884-48e3-98fe-79e582f82eaa ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiODM2YWFlZmMtM2QwOS00NTE5LWIzYWMtNTM4OWE5Yjg5Y2NkIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.cBmdTCdx-mVxNbYkDDGBxdnPaQ5sX48FpJFKSG2UWSIR3gibkKBz2UcKJYywMU00zWHj-NVt5_SVt8Mtj-CHQhHj6W3qMLfYuodtXWhsuZhtUoz35rKhZQyLEPhXNZN41KhWFdiJYlT9VQlVIQyQMvXEv9rQ_4czy301r3P9CEDDygHyBDLJY4FEKJ2Ofi9CNmqV8oE_w3_siWsU_2smGvWsHxYEWakuSDDDSOUFdP_MG92nqQcTBdpzD1COiFWJtfe251XFti8HNsAZmlNRJSPA824_jpj_9iy15GjGVyed65SAKXpS1OT8B-JoASZc-9xcnQiOfN6VfGVoztEPeA ####################################################### TEST: authorizationRequestRS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "RS384", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "RS384", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "RS384" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=ea810b70-8e51-4e58-adfd-c10d2dc8f860", "tls_client_auth_subject_dn": "", "registration_access_token": "975c7261-8fab-4b33-81f7-92c6ba6e6efe", "client_id": "ea810b70-8e51-4e58-adfd-c10d2dc8f860", "userinfo_signed_response_alg": "RS384", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e0bbc10a-aecf-4d44-94dc-e576b79c5052", "client_id_issued_at": 1610964691, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS384", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051091, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "RS384", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=ea810b70-8e51-4e58-adfd-c10d2dc8f860&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b8588513-f35a-4473-95b4-f89ae7d2c911&nonce=5f9438b6-db42-4d20-878f-b4fbcc41ddf9&request=ewogICJraWQiIDogImE2OGM2MWRkLWY4ZjYtNGZhZi04NTViLWZiYmI4YmVlMDI4YSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzM4NCIKfQ.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.IjyJcBba-ytA31qfLaiHZ-Qd7b91STyu_BrxIOEgyk04Qc0XkvkAHXRQd_gDb6KEDvUPVT0hYKIhrPERuvrE6_YRFpJcRSEstZdVM_l9f-2kurV7pdMD2iJuxijOwzZPDmlHkqDHDL8uhCgufVbRnqOzvNzRq1gPW_8agY5hTPapQ4Z5OmLyhYrlnDDSf_Z4J3vUnuDxMSyLhUhcYCIjyz5LWsvyl7iwzuzOXglsSal9epNQJ4-7Km-QOuP-t8TWunj4oy3KFyq9MVs1QB-zfVjyADqcOUVhYoW3Cb8BRBQCTrDeDGFYaNb9CnctPSOrcWPNwCEx874-anbybOy_Rg 10:11:31.611 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:6f818ff002f0a0c6ef340418ff79efacbe6d0fc42795a6c595854de52e4d7461.f104a1e7-19db-410e-9a68-2b2ebceedfa0 authenticateResourceOwnerAndGrantAccess: sessionId:1bcbe6a6-6bce-472a-8ab3-4450344c6fb1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=ea810b70-8e51-4e58-adfd-c10d2dc8f860&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b8588513-f35a-4473-95b4-f89ae7d2c911&nonce=5f9438b6-db42-4d20-878f-b4fbcc41ddf9&request=ewogICJraWQiIDogImE2OGM2MWRkLWY4ZjYtNGZhZi04NTViLWZiYmI4YmVlMDI4YSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzM4NCIKfQ.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.IjyJcBba-ytA31qfLaiHZ-Qd7b91STyu_BrxIOEgyk04Qc0XkvkAHXRQd_gDb6KEDvUPVT0hYKIhrPERuvrE6_YRFpJcRSEstZdVM_l9f-2kurV7pdMD2iJuxijOwzZPDmlHkqDHDL8uhCgufVbRnqOzvNzRq1gPW_8agY5hTPapQ4Z5OmLyhYrlnDDSf_Z4J3vUnuDxMSyLhUhcYCIjyz5LWsvyl7iwzuzOXglsSal9epNQJ4-7Km-QOuP-t8TWunj4oy3KFyq9MVs1QB-zfVjyADqcOUVhYoW3Cb8BRBQCTrDeDGFYaNb9CnctPSOrcWPNwCEx874-anbybOy_Rg ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=dc5d8f97-3083-487e-80c7-f6f84ef78a12&scope=address+openid&id_token=eyJraWQiOiI0ZDA5Y2NhYS02N2E1LTRmOWEtYmMyZC05MGVhN2FkOWFjY2Vfc2lnX3JzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUlMzODQifQ.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.Q6CgqR_PkrLEJ3hLSRpSr5UnG7mj8uThvRk9b49hw5C5vzA5R7Xc3oigrOYLfDcfuxvgqNMpYHZSboiXxmnGtRRLkZHVGdimMck5aTlLLIHsfW55P3ZtUNx-HnzbyiJ_kHuMN0IQ7h284XRbn-vFeIXBkU28287mX7iCKsgilDDqD5ik4_MC6DzHUNmyIzUqiKQVAa_ewveliPOyThCDLnlGe7bdbDZXZPVUqUoDloBYRwGDTkCvL0-2DgI4pRGB0lU1zA5a6aASHRL1HnrCArO9MNXotABQryM-LAnAg14H9U91-Azmltf-l98jzTBf4-qTLThX4NVB-Jg8OIvZAg&session_id=1bcbe6a6-6bce-472a-8ab3-4450344c6fb1&state=b8588513-f35a-4473-95b4-f89ae7d2c911&token_type=bearer&session_state=6f818ff002f0a0c6ef340418ff79efacbe6d0fc42795a6c595854de52e4d7461.f104a1e7-19db-410e-9a68-2b2ebceedfa0&expires_in=299&sid=4115f922-c527-4301-8205-450fa03a922b ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer dc5d8f97-3083-487e-80c7-f6f84ef78a12 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:32 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiI0ZDA5Y2NhYS02N2E1LTRmOWEtYmMyZC05MGVhN2FkOWFjY2Vfc2lnX3JzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUlMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiZWE4MTBiNzAtOGU1MS00ZTU4LWFkZmQtYzEwZDJkYzhmODYwIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.YIwLYZkhi4NPBW16fwbnIKGIp8lwf3TSPErKSfRj240zWXJnpa0vdW6hod38WxBmk0W8qqX0VcUqX5a-93S9gfD5RqCKj-lW4bqDBiC8uTDhxArqQ-5CGsMRhPonJMvIsQkSD48d8jePFjpAUDaYvzKZw1v3y-wxoAjJMLgfY0f6INXnmLGdK_839QBw0WmeFIOQ0-65fqCMHsn5z6NjuiQ9vdvUxfIdlE4vWlPYR5hYDXF8w0fus7sT6pRKgFKVPukMp-_fvMfaqXXhuGakF5mpyjI20PYuzsLg0bjuEeqvQpnS1I0dwK7eDkUsTQ79vZxN31M-8dW2AYnO1IiFAg ####################################################### TEST: authorizationRequestRS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "oxIncludeClaimsInIdToken" : "true", "jwks_uri" : "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "request_object_signing_alg" : "RS512", "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "userinfo_signed_response_alg" : "RS512", "response_types" : [ "token", "id_token" ], "id_token_signed_response_alg" : "RS512" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1946 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:33 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2f3cb943-d1ee-4e91-8624-e2777e27cbc9", "tls_client_auth_subject_dn": "", "registration_access_token": "98b31caa-b00e-4788-bd4d-9d4d161fd51c", "client_id": "2f3cb943-d1ee-4e91-8624-e2777e27cbc9", "userinfo_signed_response_alg": "RS512", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e1334a6c-a6ad-49e8-971c-956e721dd8af", "client_id_issued_at": 1610964693, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS512", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051093, "jwks_uri": "https://ce-dev5.gluu.org/oxauth-client/test/resources/jwks.json", "require_auth_time": false, "request_object_signing_alg": "RS512", "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2f3cb943-d1ee-4e91-8624-e2777e27cbc9&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9742a37-7bd1-4fbf-a8b4-ab86232c0b1a&nonce=bcb8d379-1ec3-4628-8cb3-af146ac499a9&request=ewogICJraWQiIDogIjc5ZDEyZTY2LTBiYWEtNGI1OS04YThiLWJkMzE2NDI2MGJmNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzUxMiIKfQ.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.S1Xc9W5NqUNoBPIf42aFvy8mr8LCOZ_pppqbyWHqq7Y5YRnxRqi_ZTFfywf677vKNk_3BfS78X_Fm8veqdvnt9pSl8f2bMSdGv02RqMYGP7Zbno0TypIKkToEE3cBsYJldbOn3tKPh--Ip48FtWmxD23WYTJrW6Jy41946YL0Q64FRM229UKfVq4pekrZDgrkmKnw4Vnj_Ub6yfHEmtDft27VvCgp8_HM1CTVSg0FhN5bErXeLJQPW1wRB2BbvU1hJBBQdYTTiqnDrW-Xw3LKLa76ihUALQv2WdGPDcIp5fkbx1OxcGimjWzpcOaeaKDZ5F5jXfGJfxtitNaaSN0vg 10:11:33.479 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:cbe701c4eb2c468fd2225d9a2ef619c7b960e8607c29368897cebc1460a9899a.50a93b0b-12d1-4be1-a121-eccb0e931b85 authenticateResourceOwnerAndGrantAccess: sessionId:60fe4037-4451-44b4-8313-4981e65b11e2 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2f3cb943-d1ee-4e91-8624-e2777e27cbc9&scope=openid+address&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9742a37-7bd1-4fbf-a8b4-ab86232c0b1a&nonce=bcb8d379-1ec3-4628-8cb3-af146ac499a9&request=ewogICJraWQiIDogIjc5ZDEyZTY2LTBiYWEtNGI1OS04YThiLWJkMzE2NDI2MGJmNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzUxMiIKfQ.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.S1Xc9W5NqUNoBPIf42aFvy8mr8LCOZ_pppqbyWHqq7Y5YRnxRqi_ZTFfywf677vKNk_3BfS78X_Fm8veqdvnt9pSl8f2bMSdGv02RqMYGP7Zbno0TypIKkToEE3cBsYJldbOn3tKPh--Ip48FtWmxD23WYTJrW6Jy41946YL0Q64FRM229UKfVq4pekrZDgrkmKnw4Vnj_Ub6yfHEmtDft27VvCgp8_HM1CTVSg0FhN5bErXeLJQPW1wRB2BbvU1hJBBQdYTTiqnDrW-Xw3LKLa76ihUALQv2WdGPDcIp5fkbx1OxcGimjWzpcOaeaKDZ5F5jXfGJfxtitNaaSN0vg ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=1f0741a3-48ff-45e1-808f-0c161b61e1b1&scope=address+openid&id_token=eyJraWQiOiJhOGUwZDRiZi00OWNkLTQxOTUtYTRjYi1jYWVjMDcxYjhlYjBfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.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.DjxtwjDuJ1llCN7-KoDtChtScp2g1O1y3RxnbBLqDJepMMp1KWITGr0IUf8Yqj2dKrsl0KRYAaIZBCsR8ooJCs0ZK2LgkO6bDfiR3TgXf4pjvi9PAZFny7PJoEXeWRr3BHQDlaeWDicNZOBDnIDkoh6izy78ORIe5zFHWyAXG2v2GuHKEXBl2YRu_YfQr0vO7Yjv-lqqBNzI0SNLdKSc5YGDOTtNm2D2IFnnllyj56pHwtUqg0Ngl71cKLvHiCcCknMl4zdcptg5mMoIldoryXhYUmHcjmdbsGj0e8CMvY68LOWVTw2_wRsJyxsRMwG1IPZvS3-SC-3LDbMVjtnzag&session_id=60fe4037-4451-44b4-8313-4981e65b11e2&state=f9742a37-7bd1-4fbf-a8b4-ab86232c0b1a&token_type=bearer&session_state=cbe701c4eb2c468fd2225d9a2ef619c7b960e8607c29368897cebc1460a9899a.50a93b0b-12d1-4be1-a121-eccb0e931b85&expires_in=299&sid=0215359e-7836-4385-99a1-b06d6de85cf1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 1f0741a3-48ff-45e1-808f-0c161b61e1b1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 838 Content-Type: application/jwt Date: Mon, 18 Jan 2021 10:11:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block eyJraWQiOiJhOGUwZDRiZi00OWNkLTQxOTUtYTRjYi1jYWVjMDcxYjhlYjBfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiYXVkIjoiMmYzY2I5NDMtZDFlZS00ZTkxLTg2MjQtZTI3NzdlMjdjYmM5IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyJ9.OfW6GQHhrNhY5cgSg1EUBIqNNbrZK2W2-4EIfSBttY-jkv3WDKMwTjPyjRQBtHk8VZQvEjvGnIIwD_S8KKAGrjdRyLy8bNHFVg1OgF3DNxZcY9XSscmKfhawq__iXYTgDD29mLdQn14Vf8FeohTuMkJHlRaimZw0DlCGaAApwUFAC1l0dO7jjykKbNxTOkbQtcRiFg4UtTJo9YrRoA3ycA25ntCdDId9bhfD9boVEkd1IHMSZjzlLgCd7JrMJU5-9-Jr0vSd-w44IkNf8XAr1cb5UslpXJH_UyTY7ORumJrRZjkIzKYNb8sceWjmTOEO7KtMm5-pi691zjOdDoRGVA ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:35 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:35 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: applicationTypeNativeSubjectTypePairwise ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "native", "scope" : "openid profile address email user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1769 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "native", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6dd79cde-0bee-4b3e-b25e-9e77d342ddaa", "tls_client_auth_subject_dn": "", "registration_access_token": "daf59e6d-acc2-491a-9a83-64d470dec36c", "client_id": "6dd79cde-0bee-4b3e-b25e-9e77d342ddaa", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "cdf43128-6076-48a1-8249-2debfa26e3a7", "client_id_issued_at": 1610964695, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051095, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer daf59e6d-acc2-491a-9a83-64d470dec36c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1769 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "native", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6dd79cde-0bee-4b3e-b25e-9e77d342ddaa", "tls_client_auth_subject_dn": "", "registration_access_token": "daf59e6d-acc2-491a-9a83-64d470dec36c", "client_id": "6dd79cde-0bee-4b3e-b25e-9e77d342ddaa", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "cdf43128-6076-48a1-8249-2debfa26e3a7", "client_id_issued_at": 1610964695, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051095, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=6dd79cde-0bee-4b3e-b25e-9e77d342ddaa&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f58641e9-6d93-48cd-8883-37157cf97416&nonce=6fcf7e21-313f-4651-a564-a3b2d277197c 10:11:35.454 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:4c8d4fa224447a365543f075566035a119120f0222bad02fe41a583f20a4cfee.28aa218f-f85d-4421-964d-3638bfeb4353 authenticateResourceOwnerAndGrantAccess: sessionId:8c52c7af-fb88-4324-bc63-f1be84d5bbe2 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=6dd79cde-0bee-4b3e-b25e-9e77d342ddaa&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f58641e9-6d93-48cd-8883-37157cf97416&nonce=6fcf7e21-313f-4651-a564-a3b2d277197c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=711a540d-7516-440b-a97a-63b97df18dc4&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.xotEundW_psa4JoI_-7nPv1RJszfgBrPPD7aiMU5K-rV8Hd7kpDOvxft5KxyQEbpB6bqfrAlawYJ6TfKo0loQXuiWPISse8hDUWlkTenc4kfo31Xz5HtCOt37QfyiNN_9SvuV1oUErvhfsU4GF4E3j8mAnGrOvWv5LS9UIjEQP6XfJBd_BMneqxlZNRrjk0k9Ur3xlqPE3kjYejxCzQRsmebWUIx9DUHWcn_D11TSI9LxzGkudrcmi7ntYt8fShwr0eJfNv7vJ4lpMge6dNI9h9cIpImtynOcVjDVVmKDNYxnCznp7FKBBZzvTLpd0r15S7FKIin8QlV9VUjn-0YOg&session_id=8c52c7af-fb88-4324-bc63-f1be84d5bbe2&state=f58641e9-6d93-48cd-8883-37157cf97416&session_state=4c8d4fa224447a365543f075566035a119120f0222bad02fe41a583f20a4cfee.28aa218f-f85d-4421-964d-3638bfeb4353&sid=6e2aeb93-41b3-4ec7-8bbe-67ee1a67bf9c ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic NmRkNzljZGUtMGJlZS00YjNlLWIyNWUtOWU3N2QzNDJkZGFhOmNkZjQzMTI4LTYwNzYtNDhhMS04MjQ5LTJkZWJmYTI2ZTNhNw== grant_type=authorization_code&code=711a540d-7516-440b-a97a-63b97df18dc4&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"fa1f3e90-66d9-4623-9229-2a06b3e5c9d0","refresh_token":"2062abc1-9c3f-471f-a113-ed251bcf4011","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.SdxYsdBTyl7IpqW0IAa1TvYOrWCElVo11PBLJb3McJQUNunb1BUCec9tI_f_5Gf5Ii38lXqb-1VSFNb4WAOTRMPk8FSLKxLBurvIUzXBxFyQ8uzCP19BoICKL8fY0b4YI5JqMeMBYBmlWUH6eh1kM6-ATtuRoqj30i-BLS4Q2byAqGIZNCdUkcE1IpRT_IsO4dgqIPzXGd2mC8X0UjH6YAo_Ll9hmS69QLrsjYfgVLRo10RIYvf1nUAXm0bwrGXKD81z7Wd-pLLOHQuw54078UPuOYJzErtIQZiEjTNrIY40mhxOZo0RNdt5fbEgERDpuH2i_ahYlRKDm-FcowAEDg","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic NmRkNzljZGUtMGJlZS00YjNlLWIyNWUtOWU3N2QzNDJkZGFhOmNkZjQzMTI4LTYwNzYtNDhhMS04MjQ5LTJkZWJmYTI2ZTNhNw== grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=2062abc1-9c3f-471f-a113-ed251bcf4011 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"6603cc7b-4d5a-49e8-a170-dcb6feff9210","refresh_token":"2ba38e7f-c166-4f41-aa7f-38c76dfa7eb3","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 6603cc7b-4d5a-49e8-a170-dcb6feff9210 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 631 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: applicationTypeNativeSubjectTypePublic ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "public", "application_type" : "native", "scope" : "openid profile address email user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1649 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "native", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a", "tls_client_auth_subject_dn": "", "registration_access_token": "de31dd8b-8757-4b34-9480-344363d7dcef", "client_id": "da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "d6369227-3718-4424-aa04-d1808d5a70a3", "client_id_issued_at": 1610964696, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "public", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051096, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer de31dd8b-8757-4b34-9480-344363d7dcef ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1649 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "native", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a", "tls_client_auth_subject_dn": "", "registration_access_token": "de31dd8b-8757-4b34-9480-344363d7dcef", "client_id": "da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "d6369227-3718-4424-aa04-d1808d5a70a3", "client_id_issued_at": 1610964696, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "public", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051096, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=28ece026-c103-45c6-a75a-fe35329cda68&nonce=4b02aa1d-082c-4665-bff2-44c65763a9d0 10:11:37.106 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ec0f70ae8d039c179da663280a5e133054b71344769834c88ee879e544d64664.937dad24-b16e-4d38-8272-4840e164f3ec authenticateResourceOwnerAndGrantAccess: sessionId:3a559c7c-1050-4967-a476-dbc552f6d3b8 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=da3a63aa-fef7-45ab-a6e2-8ae3713fdb0a&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=28ece026-c103-45c6-a75a-fe35329cda68&nonce=4b02aa1d-082c-4665-bff2-44c65763a9d0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=cafba949-2487-41f4-acdf-6cfc71dd527e&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.dJZDhaX1Xo6IiiQy2s12nXGr7CWAS-zTNyhvdNUE10osFXvAPROWTe5_tXgNXU9L1xvUbHAhOwd83MP0syDcbgC6Sx5EFyS8EODBAlV4VcNsmki5Tf0k2ZF1qYeq23DdDiRnfjr2JnaihED0x-sEy6LNEUxBj7wAe_wxqU3bcPJIVU3txGSWjnuk_vIQJRl-CseaiuicPs3O0qgSXj1d80szgbWL2P-jlRZSERpAiZBA5LYzyTZ2sLQ2kH3X-Sh8zqGz804mukj1U8Y1l3ay5NxJ_J_oiRYG-ao_92ZxxHdiub0h6wWqapU6c4GtA0WejYM5P7P4hZVwkBgn3batZg&session_id=3a559c7c-1050-4967-a476-dbc552f6d3b8&state=28ece026-c103-45c6-a75a-fe35329cda68&session_state=ec0f70ae8d039c179da663280a5e133054b71344769834c88ee879e544d64664.937dad24-b16e-4d38-8272-4840e164f3ec&sid=f0fc9fd1-57bc-469a-8c26-f998f7b04c46 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ZGEzYTYzYWEtZmVmNy00NWFiLWE2ZTItOGFlMzcxM2ZkYjBhOmQ2MzY5MjI3LTM3MTgtNDQyNC1hYTA0LWQxODA4ZDVhNzBhMw== grant_type=authorization_code&code=cafba949-2487-41f4-acdf-6cfc71dd527e&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1255 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"884f9a19-21f7-4bd8-a50d-6cd634726122","refresh_token":"9b73ad0a-1f3c-4f9d-8ac4-77b699bd0713","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Zmlo2iZIaMLMXhkW0_nahMeE8ME9PMjDd5t0BaazU0rcTxlF5oBjAPGz2zPLlsi_QEm-9_0fi3Ua7pAT5cnBAQXAnVI1igPYWHDi15rEonXU_nVs7CpT7lnSrnedI7P06W8OAZO2UE3FfovWFtSwrapGhAeZWjj91S3KC5gmQ3ugeNo8PduDH75sLDpQLu0qFWrbr_9JwuueFHcE9t2-j4zfqa8pKZOofUBFvdVW8faYq7z8svBj8vvGhbJOnWDMkAkuDzLSpCcknrrGvLYKELMroX7f4s7gSUnvmb6pBaEFbVFedILy8G0y3CYNGI62esQt9cXyAuQ4TOfgiaa_aA","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ZGEzYTYzYWEtZmVmNy00NWFiLWE2ZTItOGFlMzcxM2ZkYjBhOmQ2MzY5MjI3LTM3MTgtNDQyNC1hYTA0LWQxODA4ZDVhNzBhMw== grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=9b73ad0a-1f3c-4f9d-8ac4-77b699bd0713 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"eb291764-ee3c-48dd-ab82-fb82d3f1b7f2","refresh_token":"2a3076d5-b232-4b56-a51f-71853c87b496","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer eb291764-ee3c-48dd-ab82-fb82d3f1b7f2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 602 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"B1F3-AEAE-B798","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: applicationTypeWeb ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=eb76fae4-8abe-4eb7-a014-78e90a4fa5b6", "tls_client_auth_subject_dn": "", "registration_access_token": "8c87ae0a-46c4-4588-b9fe-423cac41c7f4", "client_id": "eb76fae4-8abe-4eb7-a014-78e90a4fa5b6", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "fcf8308f-20ff-4cb8-8b73-c11cec9cb398", "client_id_issued_at": 1610964698, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051098, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 8c87ae0a-46c4-4588-b9fe-423cac41c7f4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=eb76fae4-8abe-4eb7-a014-78e90a4fa5b6", "tls_client_auth_subject_dn": "", "registration_access_token": "8c87ae0a-46c4-4588-b9fe-423cac41c7f4", "client_id": "eb76fae4-8abe-4eb7-a014-78e90a4fa5b6", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "fcf8308f-20ff-4cb8-8b73-c11cec9cb398", "client_id_issued_at": 1610964698, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051098, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ####################################################### TEST: applicationTypeWebFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "http://client.example.com/cb" ], "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 165 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "Failed to validate redirect uris.", "error_description": "Value of one or more redirect_uris is invalid.", "error": "invalid_redirect_uri" } ####################################################### TEST: omittedApplicationType ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=91fc8337-127a-4f03-a2f1-648e943f355a", "tls_client_auth_subject_dn": "", "registration_access_token": "ad59f36f-8f8e-4a38-97af-34ab4e883e8a", "client_id": "91fc8337-127a-4f03-a2f1-648e943f355a", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "3ca2d7a7-1691-4209-bc4e-807be5e1b110", "client_id_issued_at": 1610964698, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051098, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer ad59f36f-8f8e-4a38-97af-34ab4e883e8a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=91fc8337-127a-4f03-a2f1-648e943f355a", "tls_client_auth_subject_dn": "", "registration_access_token": "ad59f36f-8f8e-4a38-97af-34ab4e883e8a", "client_id": "91fc8337-127a-4f03-a2f1-648e943f355a", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "3ca2d7a7-1691-4209-bc4e-807be5e1b110", "client_id_issued_at": 1610964698, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051098, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: tokenBindingWithImplicitFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "grant_types" : [ "password" ], "application_type" : "web", "id_token_token_binding_cnf" : "tbh", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1552 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=bca66521-7d1a-4fe7-b523-86b60feda7c0", "tls_client_auth_subject_dn": "", "registration_access_token": "dd934f8c-6c04-433d-a6b8-7c8601a22d13", "client_id": "bca66521-7d1a-4fe7-b523-86b60feda7c0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "49890fa0-146e-4fbf-9725-699af896695f", "client_id_issued_at": 1610964699, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "implicit", "password" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://ce-dev5.gluu.org/oxauth-rp/home.htm"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051099, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token+id_token&client_id=bca66521-7d1a-4fe7-b523-86b60feda7c0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2d4759d5-553e-4475-b2c2-a193cbbd31d4&nonce=61a98029-d573-4eb4-a1cc-85a95095bcd7&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=022b6233-cbf8-4ba8-9d99-8561c091ee88&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.zPrf19CLqwRZnZCbTMiYbsObBQHxw36OL4VfgDWtXxta7x097-CGw3jKKogYc6v32qireiogyT8zB5LXnFE1-GvlhIHBj3MwHRjfnjFQ3EWtGCM4xHuuLF14cTigCYzXF27NioB65_Rekf5EzNaBB6bSgg3HLRO3tecPHiVAGWOixj9OGHVfWXRtwBskWMjfKyZxCwLh67lpijaknG15icUytsHyDdjHhQizkw8rw9bYGSVJV9odX7u1JyeYOGnYISoC9yDa5VfeJiGJVWFKukpJ9dkMSA0X_8xT77mTDuCXnE_bgvttAVtWGtopPumygAAIGQvVoZIj_6sgqa9APg&session_id=342907fd-0888-406c-8d40-04b99f2258ca&state=2d4759d5-553e-4475-b2c2-a193cbbd31d4&token_type=bearer&session_state=b372c2f7b60f5615c0c60e05697a9aeb9a7bc156b831773a91d1b8431067ad0c.477b7583-3b1a-4362-8be2-5d58461fe0df&expires_in=299&sid=b855719c-d34a-417a-b58c-c83a4a998c8f Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: accessTokenAsJwt ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "access_token_as_jwt" : "true", "application_type" : "web", "scope" : "openid profile address email phone user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "access_token_signing_alg" : "RS512", "client_name" : "access token as JWT test", "additional_audience" : [ ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1523 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4eaf70a6-e248-4760-9c99-7789a1968a7f", "tls_client_auth_subject_dn": "", "registration_access_token": "2d973d32-2924-4a93-9e22-7faa6a0bb046", "client_id": "4eaf70a6-e248-4760-9c99-7789a1968a7f", "token_endpoint_auth_method": "client_secret_basic", "scope": "phone address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "333ebfb6-6631-493f-ab59-8cca279bd838", "client_id_issued_at": 1610964699, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "access token as JWT test", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": true, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://ce-dev5.gluu.org/oxauth-rp/home.htm"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051099, "require_auth_time": false, "access_token_signing_alg": "RS512", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=4eaf70a6-e248-4760-9c99-7789a1968a7f&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d6633cea-f7fd-4c04-b359-b51ddabab2f8&nonce=40119b17-2468-4f2b-9d9d-88520ea23672 10:11:39.694 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:116713c07e32741a06b14e75e7b5b1a020673b6bfa5bb546d96ae51d6a6600a9.524953d3-9d4d-416f-8662-903034cdc27c authenticateResourceOwnerAndGrantAccess: sessionId:ab24181e-dc6b-401d-afb1-8c38783c14d9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=4eaf70a6-e248-4760-9c99-7789a1968a7f&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d6633cea-f7fd-4c04-b359-b51ddabab2f8&nonce=40119b17-2468-4f2b-9d9d-88520ea23672 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=eyJraWQiOiJhOGUwZDRiZi00OWNkLTQxOTUtYTRjYi1jYWVjMDcxYjhlYjBfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.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.SpyAzN6JOhLj4GMdW4Viit9U0zHIdNelHGZ-_p_PD3jQLHsiUummLbow3eBrshCRXfZeeXKIB9fPCsEXweTB6P75DSNKtV9cZ6VLBi4_d7mSmofkAK_exHiBZrNms-ymYkB93B9UimJtC9bxsAdGrslYCTXeK3pxiOxAfiqkdPQ9kySJfcaD3IWfbInHsVN4TGwwTmmaaO9iIMvsMtQNRsilHhoq8AfWIsa172wWU52CBtSJS8yBrh8HKbfsXzlGaxsRJ6dlrgL7nKBlH39i1BfvGMWAC5WpCmI35zSEZZ1tQwVpMiNYI_BpMLmX3o77lh8pKpIzoh5dtiP-4IzdkA&code=6967d5d0-ee8e-4e6e-9407-f1b32351157f&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.atHgomkH9qyyEys1Kd5brU06MLyJJx-RHf7SRMk7Iu3NR8Lpm_8hpZo7dzFgqB4SYpEO2wjPYmdPe3MeQpN0rBWwydttftbU3d3z4lsHpaLXfDEm0UrShpKP9gL7XL4z3BK5VNVTrpT19vr-jgUt8X3EogwYcMDlcSzl6-Yv5TDJr2IiO1c2RzKP49oOUkP4s5kptbfYm_Iu_8Sqa3Rbdjt9-74U0VqeABmOGBKzp6PqI6kMzb3UcdcagJJTvwuzC73BBFeQoeqXh3vZvEQhAYKVZebt8Xfl_U0-t8wT6XPcFjIBIbddmgVNmpYmyI8V9USshCeCs6FC-eJiLFCl2g&session_id=ab24181e-dc6b-401d-afb1-8c38783c14d9&state=d6633cea-f7fd-4c04-b359-b51ddabab2f8&token_type=bearer&session_state=116713c07e32741a06b14e75e7b5b1a020673b6bfa5bb546d96ae51d6a6600a9.524953d3-9d4d-416f-8662-903034cdc27c&expires_in=299&sid=3c193315-c00d-474a-a439-109b4c1a8744 ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:40 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:40 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: spontaneousScope ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "allow_spontaneous_scopes" : true, "application_type" : "web", "scope" : "openid profile address email phone user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "client_name" : "Spontaneous scope test", "additional_audience" : [ ], "spontaneous_scopes" : [ "^transaction:.+$" ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1539 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": true, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=28f75e3b-1186-4981-850c-00878cf1973c", "tls_client_auth_subject_dn": "", "registration_access_token": "a3c069d9-c0e5-445e-a39c-0bfdb7a3aa12", "client_id": "28f75e3b-1186-4981-850c-00878cf1973c", "token_endpoint_auth_method": "client_secret_basic", "scope": "phone address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "c27e5a39-874d-4756-86a1-1ec810abf4db", "client_id_issued_at": 1610964700, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "Spontaneous scope test", "spontaneous_scopes": ["^transaction:.+$"], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://ce-dev5.gluu.org/oxauth-rp/home.htm"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051100, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=28f75e3b-1186-4981-850c-00878cf1973c&scope=openid+profile+address+email+phone+user_name+transaction%3A245+transaction%3A8645&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec3282d1-4856-415d-bd1d-3cd78d7d2c40&nonce=a810836e-9c64-4760-864b-f8fd4d29d611 10:11:40.884 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:b80d2e7d521272373a2bd98496ed8ab4c3520aa9f4658cee72f148a8dd6f0a36.4fdf68f8-7d28-401c-84c1-229c8281960f authenticateResourceOwnerAndGrantAccess: sessionId:97220775-d1a2-41eb-bb8d-299ecdaaf210 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=28f75e3b-1186-4981-850c-00878cf1973c&scope=openid+profile+address+email+phone+user_name+transaction%3A245+transaction%3A8645&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec3282d1-4856-415d-bd1d-3cd78d7d2c40&nonce=a810836e-9c64-4760-864b-f8fd4d29d611 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=2dea5589-5a4e-4398-918b-2d58897fe7bf&code=6b8a7177-0e47-4ec2-a208-bdd3a81eee31&scope=address+phone+openid+user_name+profile+transaction%3A8645+transaction%3A245+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Jb0_-M2-KHfsn5UZuQjsJU9Wjyh2bl2ExS1zQ0bwRTMtCZAJ_VoHg66hYE4R5otqJnGJyVB8G2_p1qruWDRS3jUAThUCk1xtUcFY0AD_ugXVtNUNfkXgMe5UMro9HtAwFhuxJsTsG1GDiQtnPbJTg8fUrncvdOg6IrfnJWwQ3MGKp3bEl-24jfNM4JscFLMlf0mlapIBVUwRgMxOCsQB2D4NrOwCQlhbmCvHI459lsbezvCFHBDDx01wUUVafZC6uYT6BR8jjbeIV_qKqumGxJoUgUEZcu9rG6s8hiQQ-UnvnmPYlXq72CyJouzxzvv-6UNqxWDkVU1iFr9_nwZ3cQ&session_id=97220775-d1a2-41eb-bb8d-299ecdaaf210&state=ec3282d1-4856-415d-bd1d-3cd78d7d2c40&token_type=bearer&session_state=b80d2e7d521272373a2bd98496ed8ab4c3520aa9f4658cee72f148a8dd6f0a36.4fdf68f8-7d28-401c-84c1-229c8281960f&expires_in=299&sid=8c2afb0a-3994-4abf-81ea-248d6a6628ba ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:41 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:41 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "allow_spontaneous_scopes" : true, "grant_types" : [ "none", "authorization_code", "implicit", "password", "client_credentials", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:device_code" ], "application_type" : "web", "scope" : "openid uma_protection profile address email phone user_name", "redirect_uris" : [ "https://cb.example.com" ], "client_name" : "UMA Spontaneous scope test", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1725 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": true, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4265e6ec-a3eb-464e-bf19-b26398421fa1", "tls_client_auth_subject_dn": "", "registration_access_token": "9a65c849-2346-425f-b263-79ff21ba3a9f", "client_id": "4265e6ec-a3eb-464e-bf19-b26398421fa1", "token_endpoint_auth_method": "client_secret_basic", "scope": "phone address profile uma_protection email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "582482e5-d841-4907-a671-a8bd1ba5479b", "client_id_issued_at": 1610964702, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "UMA Spontaneous scope test", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://cb.example.com"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051102, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ####################################################### TEST: registerResource ####################################################### ####################################################### TEST: registerPermissions ####################################################### ####################################################### TEST: successfulRptRequest ####################################################### ####################################################### TEST: rptStatus ####################################################### ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:42 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:42 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: authorizationCodeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid profile address email phone user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth select accounts test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1788 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32", "tls_client_auth_subject_dn": "", "registration_access_token": "0aaf9a4d-5214-48f5-867c-bf84e40ae243", "client_id": "80ed05eb-b89e-48a7-8c7c-526a95389b32", "token_endpoint_auth_method": "client_secret_basic", "scope": "phone address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e85dab12-1cae-48c1-9680-50035217f4ff", "client_id_issued_at": 1610964702, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth select accounts test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051102, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } 1. Account1 : Request authorization and receive the code and id_token authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6d82442f-2d99-479a-8b2b-826836283884&nonce=fb025288-7547-48d7-8987-7c62ab07958b 10:11:43.138 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:d696f3864d83c00acd9e92d3b967dc996d69990ac8385e967d8b208affd0fba2.aefe8d95-584c-409a-b2bd-2a4858841999 authenticateResourceOwnerAndGrantAccess: sessionId:db9b6817-17cb-4021-ba01-4eb4986ea028 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=6d82442f-2d99-479a-8b2b-826836283884&nonce=fb025288-7547-48d7-8987-7c62ab07958b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=3d2e0504-25d9-4700-a07f-ec932f1d6a34&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.SQDQaKD2ezdbott1xV1CJngaLQ7hFAzRHLfFx7ZEoHKvDgg9wM6Sa_mwc3hmRv5LG8g8o-i0hjvhuNXGYJbGGdScygyygyO_GUKo-vdm7JXwP94ISbs_z9QYsLne3LzFzZmrpoWvTo9I4SmDaGmlzBQ9vRuLkEGYT28dyr-jE9NVV9aIfgsZ5xUizq74DRirB8bVqOhrx7VGBPxpD-1Rn3sEeIQAjoQQu988CX0u_swSaWOQ0vn9QPss-v6hZY1rMtJHzqlUV8zz49X8JJSWrMl--kr0DspQ3zUUvp4nyM8DHPUNsROE49tofx8EKF2meCtC1X-d6MnJx_bfvu7NZQ&session_id=db9b6817-17cb-4021-ba01-4eb4986ea028&state=6d82442f-2d99-479a-8b2b-826836283884&session_state=d696f3864d83c00acd9e92d3b967dc996d69990ac8385e967d8b208affd0fba2.aefe8d95-584c-409a-b2bd-2a4858841999&sid=17e8145c-17f2-48dd-bca8-af88c15c50fc Cookie session_id: db9b6817-17cb-4021-ba01-4eb4986ea028 2. Account2 : Request authorization with prompt=select_account and receive the code and id_token Navigate URL: https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=088b81ca-aa2f-465b-af94-fa16e7ac8639&nonce=26ca6637-02d3-4ba9-ba91-8fdd2847ebbd&prompt=select_account 10:11:44.165 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] Removed session_id Clicked Login as another user button 10:11:44.384 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] Navigate URL: https://ce-dev5.gluu.org/oxauth/authorize.htm?scope=openid+profile+address+email+phone+user_name&response_type=code+id_token&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=088b81ca-aa2f-465b-af94-fa16e7ac8639&nonce=26ca6637-02d3-4ba9-ba91-8fdd2847ebbd&client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32 10:11:44.511 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:cb90c98e36337e6138ec0c42456159f5c12da1a58c2fc3efd4ba74333c17e851.3c58cb28-f84c-4746-8763-858d7b649ec5 authenticateResourceOwnerAndGrantAccess: sessionId:ae1df8b2-ebad-41e6-85ec-bb63ff829972 Cookie session_id: ae1df8b2-ebad-41e6-85ec-bb63ff829972 3. Go again to Select Accounts : we should have 2 accounts 4. both Account 1 and Account 2 sessions must be in current_sessions cookie Cookie session_id: ae1df8b2-ebad-41e6-85ec-bb63ff829972 5. Check that we have 2 buttons for Account 1 and Account 2 Navigate URL: https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=80ed05eb-b89e-48a7-8c7c-526a95389b32&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3f2ba0ad-8c0c-4990-b5a0-1209cc99f037&nonce=9dbc2aa3-969b-47f9-b581-ee7a943a7081&prompt=select_account 10:11:45.164 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] 6. Switch back to Account 1 Switching account to: oxAuth Test User Cookie session_id: db9b6817-17cb-4021-ba01-4eb4986ea028 ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:45 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:45 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: authorizationCodeDynamicScopeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid profile address email user_name org_name work_phone", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1786 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=94e46d8d-5595-4922-b4bc-3f9d64b1f2e9", "tls_client_auth_subject_dn": "", "registration_access_token": "9f596f76-b7b8-49ea-9e52-ac05efee5a0c", "client_id": "94e46d8d-5595-4922-b4bc-3f9d64b1f2e9", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name work_phone org_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "b018b8cd-cc2f-405e-ab20-e28e8868d4cf", "client_id_issued_at": 1610964705, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051105, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=94e46d8d-5595-4922-b4bc-3f9d64b1f2e9&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7c5148b9-2f58-43e0-8279-48f22bad0dc5&nonce=8aa6839d-8371-4a64-b55c-e5c54fe0c2c0 10:11:45.741 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:76ada8fbf502a00877837fbadef2698197d13d5daeee7341d79a676e541ea1f2.a41d9064-d520-4d74-9396-bf758362c25d authenticateResourceOwnerAndGrantAccess: sessionId:541e936e-631d-4844-adb0-a44f349743ef ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=94e46d8d-5595-4922-b4bc-3f9d64b1f2e9&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7c5148b9-2f58-43e0-8279-48f22bad0dc5&nonce=8aa6839d-8371-4a64-b55c-e5c54fe0c2c0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=6e5e0dbe-f9c0-4090-a692-3487bcbfee31&scope=address+openid+user_name+profile+work_phone+org_name+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiY29kZSI6IjUxMjUzZDQxLWZmYWMtNGE2MS04M2E3LTA2ZTUzZTI0ZDFkZSIsImFtciI6WyItMSJdLCJpc3MiOiJodHRwczovL2NlLWRldjUuZ2x1dS5vcmciLCJub25jZSI6IjhhYTY4MzlkLTgzNzEtNGE2NC1iNTVjLWU1YzU0ZmUwYzJjMCIsInNpZCI6IjdiMjA0YTJmLTZmNWMtNDE0NC05MGFhLWU0YzdhOWZlOGM5MSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6Ijk0ZTQ2ZDhkLTU1OTUtNDkyMi1iNGJjLTNmOWQ2NGIxZjJlOSIsImFjciI6ImF1dGhfbGRhcF9zZXJ2ZXIiLCJjX2hhc2giOiJlSnEtVklyVUExSDZFZEJDZHNLdV9BIiwic19oYXNoIjoiYUIteV8yY09tbUw4NDl1Wmc5cjdwUSIsImF1dGhfdGltZSI6MTYxMDk2NDcwNiwiZXhwIjoxNjEwOTY4MzA2LCJncmFudCI6ImF1dGhvcml6YXRpb25fY29kZSIsImlhdCI6MTYxMDk2NDcwNn0.Ubdc8QFSbzTwWUXOh80Anan_ObruXfoWj86LXInnWPWrCP4s9A0Cb1HnUAyzGvyq3lTS0mjgaZSVKX8Ahgg46og2BeijTrpdbBki8jKYcNqYBhM11A7M-trE8Q7hlRj-I-aPCkQTxjjm8b4piynNEc7YxAKsb46xOdV2jK6fi3OeC1uFZmlBEbyS6XaTcg_JLTNpLJVL3YQj31eYeSQE2beSMVWrahzhJMO1gX6yvdrePVkt0gV5NYop9ebKCXRDgh1Zumf3vPPAnPMUsi_bJyY4XiDZ-vNa0n0gtVIOsD9EX1ZlIb3VAwkKExe6F_lcgO7BqvsnL0rR-nTpv_hsRA&session_id=541e936e-631d-4844-adb0-a44f349743ef&state=7c5148b9-2f58-43e0-8279-48f22bad0dc5&session_state=76ada8fbf502a00877837fbadef2698197d13d5daeee7341d79a676e541ea1f2.a41d9064-d520-4d74-9396-bf758362c25d&sid=7b204a2f-6f5c-4144-90aa-e4c7a9fe8c91 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic OTRlNDZkOGQtNTU5NS00OTIyLWI0YmMtM2Y5ZDY0YjFmMmU5OmIwMThiOGNkLWNjMmYtNDA1ZS1hYjIwLWUyOGU4ODY4ZDRjZg== grant_type=authorization_code&code=6e5e0dbe-f9c0-4090-a692-3487bcbfee31&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"607e3c06-908f-446f-ad56-fd4c697e2c73","refresh_token":"de7f9115-cce5-4577-b030-1cb6cf182f23","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.x0jpLDa3w_03PBhUBit5LGbIynVP3ICrc7FU9-YD8bRHCjYDVlFwyPim-diyWQLmDZNQDAuKk2-m02M1NTC0KxCcCVYDop7AoCStxeo617FbhyQ945jgwhaENJgjP32JsYsgOK82WzJAQsrVcwDu-02DhkR7uOAki-JXeJFY5Ngag5HADTTEr5Jyacel4TNEmmgJ6uS-GgSi94vRAc1y2cC11YSlwLDWCXd-mHyM31D_6kvQhm0W5lmLZshsTSgKpiEl6kmJQ9tjDsW_8u-RD67WoXBnCz-wxSsWdX5_LkqJkqqiCRXv9L379BwKZGUdGmBpijZLq7H5_jfngUxbZw","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 607e3c06-908f-446f-ad56-fd4c697e2c73 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 687 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","work_phone":["(512) 516-2413"],"preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","org_name":"Gluu, Inc.","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: authorizationCodeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid profile address email phone user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1772 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=d0aea43b-e785-45ce-bbb5-bd7600bcfaee", "tls_client_auth_subject_dn": "", "registration_access_token": "6a85e27f-5cb0-4c20-972a-7e3ef587f83c", "client_id": "d0aea43b-e785-45ce-bbb5-bd7600bcfaee", "token_endpoint_auth_method": "client_secret_basic", "scope": "phone address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "4ff05732-e0e8-4d1d-9d00-7327b97a103a", "client_id_issued_at": 1610964707, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051107, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=d0aea43b-e785-45ce-bbb5-bd7600bcfaee&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4cb95495-befc-43e3-8945-6896944e77a6&nonce=4fa22c4a-e363-4dbe-bbdc-fbba4d3f1507 10:11:47.267 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:737068dcc54825410ea01c112f9dc67197fdb9dfd1d0bb1e6461343c38e4996b.6a729f18-e5dd-4713-984f-9a5a0a0332f3 authenticateResourceOwnerAndGrantAccess: sessionId:064101d2-05eb-45bb-9bd5-80dac79ea547 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=d0aea43b-e785-45ce-bbb5-bd7600bcfaee&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4cb95495-befc-43e3-8945-6896944e77a6&nonce=4fa22c4a-e363-4dbe-bbdc-fbba4d3f1507 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=940634df-29b1-4f07-98f5-36444e8bcb17&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.CVzo9QsewhYakBoIpQFqWVbKzxqk-L-yWGiefLhxmDqiamwHJv0Jd5amJIblRnAoyEhFDAiD7qmz8fIryRXHPdHy6zdSf1bkz66OMmwXFQ3Gr3EX7FPzFlTGuqzlHsR4D-T_2uV3S67o9-fDQrR055olzwMDIIILaIcqMWKrAlMJE288HrQ1LahRUdgGFDOEnreNUCFzaTOUI09gQd-9ES3Gbzk-SgTxfdqht33fBQxmOoCVIvky8nHBsklX3y8IvbwzAWjxC3jxHv3vBvoBBeIvq5qxCMyK6FUVJcSx-VQkYJcwrd-KtLuXh8XZ6xWtWKQyasgU8Ui3wSwwhAinGA&session_id=064101d2-05eb-45bb-9bd5-80dac79ea547&state=4cb95495-befc-43e3-8945-6896944e77a6&session_state=737068dcc54825410ea01c112f9dc67197fdb9dfd1d0bb1e6461343c38e4996b.6a729f18-e5dd-4713-984f-9a5a0a0332f3&sid=517a2da2-d937-4447-8a68-fe8033f671ee ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ZDBhZWE0M2ItZTc4NS00NWNlLWJiYjUtYmQ3NjAwYmNmYWVlOjRmZjA1NzMyLWUwZTgtNGQxZC05ZDAwLTczMjdiOTdhMTAzYQ== grant_type=authorization_code&code=940634df-29b1-4f07-98f5-36444e8bcb17&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"b7f64cba-4d9d-4091-b2af-0818730bea95","refresh_token":"43d6b54e-0f39-46f4-b8ca-bb3822700cb3","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.SZ8GLDGmS2aParia2WL7u3RmRABTNnQR7vycLgCkD2tVf0e2pAsMgNGOGiheAFYK8Fk-qa6JlvoHAacrkn-x8Hq3fzKR22_ESZQQ0uDEu_CHpZZ622dVeSrCO4nCa6bTl8Cnv8223cWKIflsExBSyNj_F-sxUGkS1h2p_3MQidsSTSGso57GB9i3c-JwGm20uBll_7FawjCko5SxHSenG6LPWDH33CkY3SPRfU0YpB6dBlttVHPPeRau72DZjOGr65h7esGCfQc4tx1PUMfdoUdTg--EzFKNQjsbSjd1h1kcftADYi11r_uxEsj1AmU2bwuiQ9RIFaneJVeAWM7Czg","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ZDBhZWE0M2ItZTc4NS00NWNlLWJiYjUtYmQ3NjAwYmNmYWVlOjRmZjA1NzMyLWUwZTgtNGQxZC05ZDAwLTczMjdiOTdhMTAzYQ== grant_type=refresh_token&scope=address+phone+openid+user_name+profile+email&refreshToken=43d6b54e-0f39-46f4-b8ca-bb3822700cb3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 204 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"1ddfd0cc-3112-4579-bad3-37f81236d06e","refresh_token":"6822f2ee-4f66-4178-8aee-f44d04883e6f","scope":"address phone openid user_name profile email","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 1ddfd0cc-3112-4579-bad3-37f81236d06e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 692 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","phone_number_verified":true,"preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","phone_number":"(512) 516-2413","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: authorizationCodeFlowLoginHint ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid profile address email user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1766 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=1c1956d4-91bd-4ccc-80b6-778214b93284", "tls_client_auth_subject_dn": "", "registration_access_token": "11b38b9b-fce0-4fab-82af-45d09ea5d179", "client_id": "1c1956d4-91bd-4ccc-80b6-778214b93284", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "3365c44f-9578-43d5-a39b-bab618addfb9", "client_id_issued_at": 1610964708, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051108, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=1c1956d4-91bd-4ccc-80b6-778214b93284&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=62d36f74-0e42-4763-a332-46cfaa188f28&nonce=3bafef73-a074-4eda-b3c7-64ee826a2742&login_hint=test_user 10:11:48.733 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:244b82b9b59c5fabc0fda3bdf85a59dbf16cd57b52aca420edffc713424ac35c.5030e287-3d26-4719-b942-8d317326805e authenticateResourceOwnerAndGrantAccess: sessionId:541f8874-c2ea-4f03-9831-2d70c9c1a695 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=1c1956d4-91bd-4ccc-80b6-778214b93284&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=62d36f74-0e42-4763-a332-46cfaa188f28&nonce=3bafef73-a074-4eda-b3c7-64ee826a2742&login_hint=test_user ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=568488ed-8d85-433c-8b29-9819dbae12bc&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.PLxGgecqL4HVfsvyIrbUYBqW2IGXgHUvWwAU7b59mA8xXczrIDf8RDuG-_AKkKZsBTI3od5-lAePMwkhXlxCYhTNk6Bo8C9DkG-FD0OAr8SwT_j82kSYYp_Ce71RvZHkAhpZv_FZ40KQMOQ2y5CCXV-7JR8-JIWXC8_xM3f1SdBivsO4heelyxF3VBOoSTRfVvtJUmZ87KNeHWmnXwhx9PPjYfaYa0s2oJ-aJ0KfDJ8a-N5uQ2HL2juKZaN02MiWl02iFYj8pyexhprjBeFBTT3au2Na64fAhNlzm2Vy26jlcluwIGmkiUJF2v8gp8LZbvA83xbjpfOoHsz-tf1pjQ&session_id=541f8874-c2ea-4f03-9831-2d70c9c1a695&state=62d36f74-0e42-4763-a332-46cfaa188f28&session_state=244b82b9b59c5fabc0fda3bdf85a59dbf16cd57b52aca420edffc713424ac35c.5030e287-3d26-4719-b942-8d317326805e&sid=6c251e21-7d32-4364-8bd7-00ec47eb9e3b ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic MWMxOTU2ZDQtOTFiZC00Y2NjLTgwYjYtNzc4MjE0YjkzMjg0OjMzNjVjNDRmLTk1NzgtNDNkNS1hMzliLWJhYjYxOGFkZGZiOQ== grant_type=authorization_code&code=568488ed-8d85-433c-8b29-9819dbae12bc&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"f1569c91-4e53-4e9f-9e2c-020b131ba6ee","refresh_token":"23da3ea0-4252-44f7-8e15-631ce7da89bf","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.lN6IWBmERjOgTjDHdXDSITA2EWahL54ptE37a18CfZQ6c0p2iijXZoICVEhbg40nCWqcHR37274sHSb3L1P8L7WARDKOzlMwJ2t02BitKmK4fsGswHd8dxEB0v3wqC3OgMZoR3j_MbEtOKCmjg15VuIb65eoYw4d3JsZ4l_-q0-LSkTzXCEnm89jvCULQw1rh7hhxiGXtUBfOwYGYOgnV7YzSXOsMEHDtN0F2XC1AVtntRIc98NChto-KBTCzMmn6JcY5niinnJR4BI_8i2e6gJu1aGtDqWlfZNZQwLNUO26oQmQ7HtUPnwFidRNq-5yJ_4KmjMgcs4jH0JTg6WOCw","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic MWMxOTU2ZDQtOTFiZC00Y2NjLTgwYjYtNzc4MjE0YjkzMjg0OjMzNjVjNDRmLTk1NzgtNDNkNS1hMzliLWJhYjYxOGFkZGZiOQ== grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=23da3ea0-4252-44f7-8e15-631ce7da89bf ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:50 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"ecaa562a-d0f4-4fda-b149-a1e16c777514","refresh_token":"9a8029d4-98a8-4b5d-ab12-694a7f835278","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer ecaa562a-d0f4-4fda-b149-a1e16c777514 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 631 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:50 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: authorizationCodeFlowNegativeTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1734 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:50 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=139552bf-64ef-4c2b-b776-b3312a269a9a", "tls_client_auth_subject_dn": "", "registration_access_token": "f65a0c66-4cc3-4109-90ef-477de90e0878", "client_id": "139552bf-64ef-4c2b-b776-b3312a269a9a", "token_endpoint_auth_method": "client_secret_basic", "scope": "openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "f6951d59-5029-4658-9bbf-562b544288dc", "client_id_issued_at": 1610964710, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051110, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=139552bf-64ef-4c2b-b776-b3312a269a9a&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e068acad-2b6e-4cd5-b833-cfc33e7496da&nonce=d9058e61-f4b9-4801-836a-c8b9c24af872 10:11:50.574 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8f388cf7031165dba7d95e9e2f664019b12288bae39ef6931a840b04626165de.966c53f5-1af7-440a-a323-153fd25bba14 authenticateResourceOwnerAndGrantAccess: sessionId:9df41fef-9ace-424e-9786-3d3ca27dad1f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=139552bf-64ef-4c2b-b776-b3312a269a9a&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e068acad-2b6e-4cd5-b833-cfc33e7496da&nonce=d9058e61-f4b9-4801-836a-c8b9c24af872 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=3b3c2908-8aef-4b80-a8b4-2865530a1eaf&scope=openid&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.c-m_Rj6SjOD_KhnpXitRPHdHDtpGAdnC2KXuRymSaE09Rrt0oATcj-jTLg3WxVqUfO5az19giJ3uMuV8Wr4-b1JcFr7grbOcKEw_Y0Om7Wua1cokSdjSZ2e0OQHeRpxgHSHIEg51hCBmrbLO-HFXJ5g9bgsu55fT4ExMeYkMkVhxyEi_QVRSDbPUqc-IjWfobWq6NkbWlyH2JObSTQfoOKhuT26af-ZrqEuPMb48hJRRqoTt9saE5TSnfEvFhLaYKEa-in0uV0BYr4-7btQ5uCSVcVv5-OPBieHXI7pgOLjU7YZf2-0IcNKIyWuo5lKj0oWKytu773DSViL_CHRaYw&session_id=9df41fef-9ace-424e-9786-3d3ca27dad1f&state=e068acad-2b6e-4cd5-b833-cfc33e7496da&session_state=8f388cf7031165dba7d95e9e2f664019b12288bae39ef6931a840b04626165de.966c53f5-1af7-440a-a323-153fd25bba14&sid=f6177639-39cc-4afc-ae43-a1dd6e1e9e77 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic MTM5NTUyYmYtNjRlZi00YzJiLWI3NzYtYjMzMTJhMjY5YTlhOmY2OTUxZDU5LTUwMjktNDY1OC05YmJmLTU2MmI1NDQyODhkYw== grant_type=authorization_code&code=3b3c2908-8aef-4b80-a8b4-2865530a1eaf&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"87d954b1-8bc1-474c-ad68-a19048f40d3d","refresh_token":"3604aab3-9d95-40c4-8084-7b4dea02452c","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiYVJqNzktN3phNDQxUFBIY2NxRE1fQSIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiYzgxNGM0MjMtM2MxMC00NzIwLTg4NDktYjZmOWUyOGNkNGM4IiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiZDkwNThlNjEtZjRiOS00ODAxLTgzNmEtYzhiOWMyNGFmODcyIiwic2lkIjoiZjYxNzc2MzktMzljYy00YWZjLWFlNDMtYTFkZDZlMWU5ZTc3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiMTM5NTUyYmYtNjRlZi00YzJiLWI3NzYtYjMzMTJhMjY5YTlhIiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsImNfaGFzaCI6IkZIQ2xrSzRjYmdPR3l2cjNrb1lWUnciLCJhdXRoX3RpbWUiOjE2MTA5NjQ3MTEsImV4cCI6MTYxMDk2ODMxMSwiZ3JhbnQiOiJhdXRob3JpemF0aW9uX2NvZGUiLCJpYXQiOjE2MTA5NjQ3MTF9.a_7dEc--cS77RjHT1R7W0ukoDWaKUoiqkzBMYcsyl-HsJz28bqyauhS-UZjhebFKr87B4ZkWmhhtL4pux4qbZErwyqWERM0nJUMt3GRDk4Y1AfXBdqtJmVaLdoY85XgQ-CNVpB6KtgFtLvgjgMzAN6WiS-_sumtZO1dQuEMTcsVZEURHzFJ1TrDyu_bd3uVj0L6b-lHl9U1XmJ9Wi25LZU2KE-St6MegKgIMob2dfpjWS6uAoUTbl10AlpWC4zwunzosHh_hkXONyhz7SxVg_MMJYKI8hzC8twJNjuOa2Uzctm0WPsab5FeBl1RWd8C-2LGErqFu_Q6xQ21PzVrz3w","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic MTM5NTUyYmYtNjRlZi00YzJiLWI3NzYtYjMzMTJhMjY5YTlhOmY2OTUxZDU5LTUwMjktNDY1OC05YmJmLTU2MmI1NDQyODhkYw== grant_type=refresh_token&scope=openid&refreshToken=3604aab3-9d95-40c4-8084-7b4dea02452c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 166 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"cc9ce2e7-4fe6-4c6c-a45d-a1f4694cd1c6","refresh_token":"cf20b459-ea93-4b31-97f0-d3569da40d52","scope":"openid","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer cc9ce2e7-4fe6-4c6c-a45d-a1f4694cd1c6 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 53 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78"} ####################################################### TEST: authorizationCodeFlowWithOptionalNonce ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=88374994-66b6-410d-876d-ac01e89e8ff8", "tls_client_auth_subject_dn": "", "registration_access_token": "4904c4bb-fd38-4df8-8a0e-33f28b547de4", "client_id": "88374994-66b6-410d-876d-ac01e89e8ff8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "b0af83cc-6f45-4cf1-a3e9-45f0ea3fcfbd", "client_id_issued_at": 1610964711, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051111, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=88374994-66b6-410d-876d-ac01e89e8ff8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=79cec102-61ae-459d-8734-317cfbe776e9&nonce=6fd48a79-4cdb-40bb-8442-74b55a5955fe 10:11:52.071 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:6c55bb5de2d603b85d36920e2c01dc7100d6b670203be2834c732d056690c4bf.80092f23-4897-4ae2-b0ff-adbcb950c562 authenticateResourceOwnerAndGrantAccess: sessionId:e9778bd5-5f93-456a-825a-6b39dde8ed96 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=88374994-66b6-410d-876d-ac01e89e8ff8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=79cec102-61ae-459d-8734-317cfbe776e9&nonce=6fd48a79-4cdb-40bb-8442-74b55a5955fe ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=b2c1869c-77c0-4e82-974b-85191707925b&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.RAs61ma7BIaol0iszlPMfZiLnEZfFrpenFnq4YTu0Co9yo11nOchzjajJPmWDT3ahm9YwDuJ1Xtm-sv-OI1DBRz18diB9kQvbwkH-OyIvLJyqzS8_n4NT6wesCSzzq2CvW4PvAUy0WxCCgOzLtSUySsp66tSTkUKlFcDCNelfVjhOWuKr_NAJ59hEbjOF81uU23R6Em-ZizYqnXLShcLGw7ZlcaXi5lNOMPA6jLMpanuL573VoKkbVFu-odZvunDJ70RIS8mUxO-YM3T-2a8vahtJE3MkzXqru-rqG4wkq33-ev6X5GrFKQOXCU_FSFPMIodFohnX-Lp2axijO1SKQ&session_id=e9778bd5-5f93-456a-825a-6b39dde8ed96&state=79cec102-61ae-459d-8734-317cfbe776e9&session_state=6c55bb5de2d603b85d36920e2c01dc7100d6b670203be2834c732d056690c4bf.80092f23-4897-4ae2-b0ff-adbcb950c562&sid=17a98266-d672-4b64-a766-cbd4772023b4 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ODgzNzQ5OTQtNjZiNi00MTBkLTg3NmQtYWMwMWU4OWU4ZmY4OmIwYWY4M2NjLTZmNDUtNGNmMS1hM2U5LTQ1ZjBlYTNmY2ZiZA== grant_type=authorization_code&code=b2c1869c-77c0-4e82-974b-85191707925b&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"df21ce79-b258-4a4e-adaf-4b21f4855778","refresh_token":"688b2e23-f989-4f7c-bd04-177e2308cd0a","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.YG7PolAh5AHSUYw6xb0yJWP0KJ0N9Pb-lfS3NkkMUqBwnlc-5hHnAqIi4T6Sbf8VvO_ol6fm_mlNBu_0w4XvIs6yDYnFky3mwUoPXxW67uiT_hC1uFSw2h3ouLuQ3Hz3fI_lnX5y4H6cUVvucgRsIoHABC2vTkGweRMvl_S0LgFZn2UxqDopXh3vm0wKt47V1-h2I0AZ86TRgjq_swEKkjUiG4HPjrFEzPMOCQivrHbQ2YN4sjDe-enUbeCTpPB7lxwNLGeOCiHTUQRXZHWYT-K_5ojpfGHvpb4iv_nacy-0IZWMFnYI7Gv1gedawUuvZC-nmZ71y-CIk8cjxn6bSQ","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ODgzNzQ5OTQtNjZiNi00MTBkLTg3NmQtYWMwMWU4OWU4ZmY4OmIwYWY4M2NjLTZmNDUtNGNmMS1hM2U5LTQ1ZjBlYTNmY2ZiZA== grant_type=refresh_token&scope=address+openid+profile+email&refreshToken=688b2e23-f989-4f7c-bd04-177e2308cd0a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 188 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"cfd6d64a-759e-47a5-9717-45d2cc0b2bec","refresh_token":"6cee23dd-761d-43f3-a667-7bb62b5cabd9","scope":"address openid profile email","token_type":"bearer","expires_in":299} ####################################################### TEST: authorizationCodeWithNotAllowedScopeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "pairwise", "application_type" : "web", "scope" : "openid profile address email user_name", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1766 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e83f6191-8665-4031-929e-b8f0ecc50e3c", "tls_client_auth_subject_dn": "", "registration_access_token": "f5d469b3-dd8e-438c-b905-d7368a3ec076", "client_id": "e83f6191-8665-4031-929e-b8f0ecc50e3c", "token_endpoint_auth_method": "client_secret_basic", "scope": "address profile email user_name openid", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "a1418bda-eb10-48ef-a9fb-0419bcbdf3eb", "client_id_issued_at": 1610964713, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051113, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e83f6191-8665-4031-929e-b8f0ecc50e3c&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2654671e-19d6-4e63-bcc3-f5f9173e9856&nonce=a0c84db4-2447-4c93-a2ec-f2cdcb01f83a 10:11:53.641 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:5c424d68b617358ec17263ccd52a9189cfae42c644c0691e3283962b3e638107.d47e0bb2-8cc6-4a3b-9215-f89891314aa0 authenticateResourceOwnerAndGrantAccess: sessionId:c128e7b9-cb32-4838-9b3d-89fd0f192a0e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e83f6191-8665-4031-929e-b8f0ecc50e3c&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2654671e-19d6-4e63-bcc3-f5f9173e9856&nonce=a0c84db4-2447-4c93-a2ec-f2cdcb01f83a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=777370a6-fca8-4673-8b38-973c4bb5632e&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.RjxPWfTvOcXleFOgUFqrxAlRuRtL0tjC3tDOhNn0Hdoj5QRCRlq0rDfEud1NbO-8pMRjWi9icJqkvOjbDHPmp_dpxRx2O1RwFuLs7zbLVtxrBTnwra5MQx7wZXvsuE0n4gRa1p1SnwQZQzddovyJK_GotXdZbRlLoAEvxaBOUM7aAYPa5uD_zVdiADDnm5nKj6aawcFdz8Sd1mXSyE2Kbra-FweanSyAtQbZcPwHYKvtLvj3pdArQb9SnoD6hB2u7Y_4qUtgMEo7OMMaaRNcqv3WzYR0W-Jaah4SGmmN8MRDpyedsVvugknkTbrkmEDOexhxYiRCAu9eIy0AgrTC7Q&session_id=c128e7b9-cb32-4838-9b3d-89fd0f192a0e&state=2654671e-19d6-4e63-bcc3-f5f9173e9856&session_state=5c424d68b617358ec17263ccd52a9189cfae42c644c0691e3283962b3e638107.d47e0bb2-8cc6-4a3b-9215-f89891314aa0&sid=05f62335-f959-4d6a-83ef-2702df38afdb ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic ZTgzZjYxOTEtODY2NS00MDMxLTkyOWUtYjhmMGVjYzUwZTNjOmExNDE4YmRhLWViMTAtNDhlZi1hOWZiLTA0MTliY2JkZjNlYg== grant_type=authorization_code&code=777370a6-fca8-4673-8b38-973c4bb5632e&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"806c591b-c4ba-4206-aad9-5f01818367b5","refresh_token":"7a28cb1c-158e-47ba-8fe5-1958b144bd11","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.EJT4JcXJBJ8eO1UEfmuijqZQscAJUZfMqeRBYV96Bpb9Cty5NSl1cYFOrrScZ44KsafkTFyb7adykyuADoF8VkLzoMvHX9KsQKUQiOT66Ly5wN07wxL0GrMSTGYtMJX-kk8cB0bGQiq9oV8HgCXvkOxsptz3OuQWyxycU4wWR-HQDy9BSb97_etmjhMq5eWg9sf7zSdfBAZgoCQvfTHiCOrfdtGARFr1pT0CQ1og_v0jkw-i2YsVdUWLyN6p1j0gxVrbvNKwzjUg0ytFeHWOZut3fIZBzeEej13twKxfJ1ZjFRmIW7O35M1JlRkD39B2qztD6vUON9dUlyd_56SanQ","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 806c591b-c4ba-4206-aad9-5f01818367b5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 631 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:11:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":true,"gender":"Male","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: revokeTokens ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=acc7589f-3174-4bd4-a9d5-6b472ace3933", "tls_client_auth_subject_dn": "", "registration_access_token": "8ae27e52-4267-4424-816a-02cf7f06d545", "client_id": "acc7589f-3174-4bd4-a9d5-6b472ace3933", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "c3295607-6df7-4ccc-b7fb-b86119c734be", "client_id_issued_at": 1610964714, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051114, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 8ae27e52-4267-4424-816a-02cf7f06d545 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:55 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=acc7589f-3174-4bd4-a9d5-6b472ace3933", "tls_client_auth_subject_dn": "", "registration_access_token": "8ae27e52-4267-4424-816a-02cf7f06d545", "client_id": "acc7589f-3174-4bd4-a9d5-6b472ace3933", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "c3295607-6df7-4ccc-b7fb-b86119c734be", "client_id_issued_at": 1610964714, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051114, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=acc7589f-3174-4bd4-a9d5-6b472ace3933&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3335548-45f9-4b93-bedf-f9764d636b57&nonce=197c3107-2c46-40dc-a574-524759dce232 10:11:55.360 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:7151754fcdfc98e821089f0a35fc2140495f4e7b118a16d3b381236faaa3350e.72c67ff6-2ecd-4f10-b5f6-ec8900e23166 authenticateResourceOwnerAndGrantAccess: sessionId:b0396d12-826f-4ffb-974a-283bf99e25e2 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=acc7589f-3174-4bd4-a9d5-6b472ace3933&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3335548-45f9-4b93-bedf-f9764d636b57&nonce=197c3107-2c46-40dc-a574-524759dce232 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=e96b6b9a-1e1d-4d02-a797-90049d43294a&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiY29kZSI6IjRiZTBhYjEyLWY0MmMtNGM4OC1hMDliLTk4NTYyYTA5NDdkNyIsImFtciI6WyItMSJdLCJpc3MiOiJodHRwczovL2NlLWRldjUuZ2x1dS5vcmciLCJub25jZSI6IjE5N2MzMTA3LTJjNDYtNDBkYy1hNTc0LTUyNDc1OWRjZTIzMiIsInNpZCI6IjIzMjRlMWYxLTkyMGEtNDdlNS1iN2Q3LTc2YmU0MjU2OTE5YiIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImFjYzc1ODlmLTMxNzQtNGJkNC1hOWQ1LTZiNDcyYWNlMzkzMyIsImFjciI6ImF1dGhfbGRhcF9zZXJ2ZXIiLCJjX2hhc2giOiJWTXNOdWtYVW4xQ0NRZWR2LVVGX0NRIiwic19oYXNoIjoiNnNPdTNJRExBWU9XT0djenBZX1lEdyIsImF1dGhfdGltZSI6MTYxMDk2NDcxNiwiZXhwIjoxNjEwOTY4MzE2LCJncmFudCI6ImF1dGhvcml6YXRpb25fY29kZSIsImlhdCI6MTYxMDk2NDcxNn0.hBMnB12fOdNOQsQlW6LVs7LNXdQbsUmAZInz1mYkT1x1_dfb8P4bA2GcPGJw66MFF_m2bJfCEKpJhwhdymAHSMFiCd-DyBd3X1DJHfFF0bXLi-cs_HGY_wBAA3sYkMlKCAX286lWErYgAKfNOeYFOovF9QrdpFVfoKy2ApT5HnGD6_Pc1D-Tc5OkUNEkNWVIa3uVON83mp4WnxMxNY0lwbMpJuRcQy_qpclKT8ktM6mL8jJD_j4QihXPFD9gr523KPqwfa9fZ44Bct8X98U1tlaJ2d9E6bPii98kM-fK7Hql9pI6K9h51zujagtI-Qcv6Wzb8OxhZQkFqa0ZhbT--w&session_id=b0396d12-826f-4ffb-974a-283bf99e25e2&state=e3335548-45f9-4b93-bedf-f9764d636b57&session_state=7151754fcdfc98e821089f0a35fc2140495f4e7b118a16d3b381236faaa3350e.72c67ff6-2ecd-4f10-b5f6-ec8900e23166&sid=2324e1f1-920a-47e5-b7d7-76be4256919b ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic YWNjNzU4OWYtMzE3NC00YmQ0LWE5ZDUtNmI0NzJhY2UzOTMzOmMzMjk1NjA3LTZkZjctNGNjYy1iN2ZiLWI4NjExOWM3MzRiZQ== grant_type=authorization_code&code=e96b6b9a-1e1d-4d02-a797-90049d43294a&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1293 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"2f221739-9cff-4197-aa2a-748be07b47ca","refresh_token":"45034194-2d05-4c7a-aff8-f4d56484882a","id_token":"eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoicDVQUk5PS3dWZVl4UTZBZXd6UEpZdyIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiZWE1NTBmZjktMjk1Mi00MTQzLWIyOGUtZjNmYjE5MDZjNjQ1IiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiMTk3YzMxMDctMmM0Ni00MGRjLWE1NzQtNTI0NzU5ZGNlMjMyIiwic2lkIjoiMjMyNGUxZjEtOTIwYS00N2U1LWI3ZDctNzZiZTQyNTY5MTliIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiYWNjNzU4OWYtMzE3NC00YmQ0LWE5ZDUtNmI0NzJhY2UzOTMzIiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsImNfaGFzaCI6IlZNc051a1hVbjFDQ1FlZHYtVUZfQ1EiLCJhdXRoX3RpbWUiOjE2MTA5NjQ3MTYsImV4cCI6MTYxMDk2ODMxNiwiZ3JhbnQiOiJhdXRob3JpemF0aW9uX2NvZGUiLCJpYXQiOjE2MTA5NjQ3MTZ9.m9zGdh5q49MwhdggibgKnzlr3a2sJzYgxmB_Fg98d8de8gB97kzpihqnGlZ6BOb-zCXDZT-86-BoZB52Z1iXo7rnjZik3F6ltsFpg5rrEgluwYCE_hdnxgoVRk56g4VsOOH-9KXDn-sFYXRz0rzqMLYI-5v0tf4AYt-KBs95rQF8ZInsMEhP27lRvM8Evm0PB2zE057QDUVtkGswHIK1cSnyqAL-VVPwhV9hhB2nzeVd8w_JSQ71Bf3nodkskPRIuy5seylCrE4uoJQpxQApOKYr5DnVj4e4vc4gbCtd0sKEFY8cvmsTJVcnM-_7HoGZ7R51NnwAjjjh30BgwcyZww","token_type":"bearer","expires_in":299} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic YWNjNzU4OWYtMzE3NC00YmQ0LWE5ZDUtNmI0NzJhY2UzOTMzOmMzMjk1NjA3LTZkZjctNGNjYy1iN2ZiLWI4NjExOWM3MzRiZQ== grant_type=authorization_code&code=e96b6b9a-1e1d-4d02-a797-90049d43294a&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Cache-Control: no-store Connection: close Content-Length: 287 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "Unable to find grant object for given code.", "error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.", "error": "invalid_grant" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev5.gluu.org Authorization: Basic YWNjNzU4OWYtMzE3NC00YmQ0LWE5ZDUtNmI0NzJhY2UzOTMzOmMzMjk1NjA3LTZkZjctNGNjYy1iN2ZiLWI4NjExOWM3MzRiZQ== grant_type=refresh_token&scope=address+openid+profile+email&refreshToken=45034194-2d05-4c7a-aff8-f4d56484882a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Cache-Control: no-store Connection: close Content-Length: 338 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "Unable to find grant object by refresh token or otherwise token type or client does not match.", "error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.", "error": "invalid_grant" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 2f221739-9cff-4197-aa2a-748be07b47ca ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 216 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "error_description": "The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource.", "error": "invalid_token" } ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:56 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=61f21a5f-ed95-4df4-a770-edd8c81e10b8", "tls_client_auth_subject_dn": "", "registration_access_token": "8e073193-4da2-4b06-aa39-aef5ef14d25f", "client_id": "61f21a5f-ed95-4df4-a770-edd8c81e10b8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "b9d7ae39-c9ee-4ccd-9674-ba834619c0a3", "client_id_issued_at": 1610964716, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051116, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=61f21a5f-ed95-4df4-a770-edd8c81e10b8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=fff1744c-63f9-4aad-b0d6-4e2aa19f503f&nonce=5b811f89-a401-4aaf-a689-6cc71dc61cc8&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=b7534893-adf5-4dc3-afc6-82bf5db40c68&scope=address+openid+profile+email&session_id=180baf78-5d18-4c79-bba0-3fddcb1a508e&state=fff1744c-63f9-4aad-b0d6-4e2aa19f503f&session_state=7523de56b2f36d15b761724f3e3a97f605190280c38fc2684bb76fbb2c82093a.85767153-3886-4d26-81d0-9f819ebc5231&sid=2965dc84-903f-4077-a1a4-3c8d043d5089 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=05c6ae11-aab1-4d5b-a162-d26bf95d5fe0", "tls_client_auth_subject_dn": "", "registration_access_token": "998590e8-bc7d-4832-bfa6-0537069e5f1b", "client_id": "05c6ae11-aab1-4d5b-a162-d26bf95d5fe0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e36a7a27-4228-493c-b4b7-e0cd8bef1eca", "client_id_issued_at": 1610964717, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051117, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&client_id=05c6ae11-aab1-4d5b-a162-d26bf95d5fe0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ca85a557-0ab2-4d14-a974-ffbd2851dd2c&nonce=ed4e1696-e289-44dd-a5dd-11ac3892fbf4&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=f43a249c-f9c0-4b39-9f1c-ec6754ae3418&scope=address+openid+profile+email&session_id=6c35b722-ad99-4dc1-bf1c-9a087312c198&state=ca85a557-0ab2-4d14-a974-ffbd2851dd2c&token_type=bearer&session_state=bb565121844bee486dac2019345802cadd069090a3cf87c7536b2f4c7b8f7c31.15c66b2e-d8ca-4c01-a0af-876de0238cc7&expires_in=299&sid=a024dcad-8de5-4e2c-abd5-c8b0bdd01686 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=48dab809-ec7f-4050-9be0-38e55bad53b5", "tls_client_auth_subject_dn": "", "registration_access_token": "c56b1fdf-8ff4-476b-9767-7cde1fe0914d", "client_id": "48dab809-ec7f-4050-9be0-38e55bad53b5", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2fe8d2a4-0843-48e3-aadc-bfa8124d34c0", "client_id_issued_at": 1610964717, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051117, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=id_token&client_id=48dab809-ec7f-4050-9be0-38e55bad53b5&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f946f1b5-5ccc-45b1-a1c6-669aaf5d8c70&nonce=846a8533-9e06-4ecf-840e-1b8a28e7d381&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.ms-PsjGgCwOEwCc9B_U758cbS5GsRlWL0_R2TKxVTfeXFc8BNHbd2tHzbASb-5LonlD7W50cYrcCA7CKyaUUXqKvfDlPI62zhIa_sXdn8mCzY13HdAqy6UzNxjLdEn94bXUsal0X6L_6q6dnG09M1UV90BOYaDBXMT2SffQHmVDxYjOy8CG2Y_SzZcF-9mXDhK_e_j_u_c4uaXSOHo4Ce3hDQqtLqWexbCvouVB6N504KqeGat-J80Crt-174zLxdmnQZrM8ClCwGh4EVKyxowURAnzAyXlONfLFMeg_SZWtwxv2HtcyhKnekshsXzDaA9n7EP0hS1Qlt2awLpxagw&session_id=439e3bb0-ccef-442d-bb3d-5bd9ed9642ed&state=f946f1b5-5ccc-45b1-a1c6-669aaf5d8c70&session_state=d580fc48817fcbede1f2cf1b5a2aa38e2244a7ba8fbdfbf73df547fd58b644ad.37cb10e2-bf80-4b8c-a476-393a7c067b9f&sid=567d3ac3-94a4-4054-810c-482d21c8b3bd Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=31a62718-7f2c-4e6e-b8d5-91a52db80c04", "tls_client_auth_subject_dn": "", "registration_access_token": "aae44ab6-cefc-420e-9c18-23e2ab50b63f", "client_id": "31a62718-7f2c-4e6e-b8d5-91a52db80c04", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "cac9f184-219b-43fe-af50-356d4fc2b676", "client_id_issued_at": 1610964718, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051118, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+token&client_id=31a62718-7f2c-4e6e-b8d5-91a52db80c04&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=9373e0d7-1bb0-40ec-afbc-7b8e745d6783&nonce=c7084efc-6217-470d-a85b-c319ddea2892&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=7ea5a656-6ac8-44ea-9b34-26c5672089fa&code=916c01c3-5963-4f79-b92d-667831ae3fa2&scope=address+openid+profile+email&session_id=9b037e73-5cfa-4c6e-a7ce-e15817cf09ad&state=9373e0d7-1bb0-40ec-afbc-7b8e745d6783&token_type=bearer&session_state=336093e5779abf0d83aa638092fc437bd6d41d179ea8abfe710c6e247c467890.e5f7b75f-e55f-41b9-8688-a5791677af60&expires_in=299&sid=84c5dc27-5216-4d0c-9aa6-c99c53d77e83 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=d30b9e01-b242-4c2e-8b6e-c0d630ed6ce6", "tls_client_auth_subject_dn": "", "registration_access_token": "ed6fa816-e9ef-4f02-b57d-e551cec59785", "client_id": "d30b9e01-b242-4c2e-8b6e-c0d630ed6ce6", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "546f4b56-ec3d-41fc-8f0f-0c0764757d15", "client_id_issued_at": 1610964718, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051118, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+id_token&client_id=d30b9e01-b242-4c2e-8b6e-c0d630ed6ce6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f8ccd8d7-c8ff-4b16-a677-506e8df26170&nonce=e06a1525-2fb7-40bd-b88a-7ad63d499936&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=faf5b058-5d3e-4aea-9e56-bd1690244b69&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiY29kZSI6ImQ1NDMwMjFkLTI1YWMtNDhmOS1hZDk1LWJlZmRiZWNmZDc0MCIsImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiZTA2YTE1MjUtMmZiNy00MGJkLWI4OGEtN2FkNjNkNDk5OTM2Iiwic2lkIjoiZmE2Y2UwZGQtNWMwMS00YTBkLTg3OGYtNDRjNmI3NTk2NTY1Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiZDMwYjllMDEtYjI0Mi00YzJlLThiNmUtYzBkNjMwZWQ2Y2U2IiwiY19oYXNoIjoiMV9VUXpTOENtZEloX0lXY1ZDc3pXZyIsInNfaGFzaCI6Ikk1dERwT0NkanhRUGlSR1R0dkNQYkEiLCJhdXRoX3RpbWUiOjE2MTA5NjQ3MTgsImV4cCI6MTYxMDk2ODMxOCwiZ3JhbnQiOiJhdXRob3JpemF0aW9uX2NvZGUiLCJpYXQiOjE2MTA5NjQ3MTh9.wY_o3qkI-bEOn5GeUasGpHCglbLYuqAZ4s5rP93J2RmQIp04NVn1zh7B-EdrVkVmqutwRUSLpDYPYhcPHEu6_Mxz5kK4xFEUEAbuOGDdTddfbPcIcoaXJiQPdZYR94d-AZz-_4vBIYFSj2QTZ8Ta61wnmjXLzEFxidn1cyNH-3QC0rK3GBw1Ry94ysa_LB2e9NX00iTa9R3pz2AjktAj27kyLohHiaOGcKFhTfAOcmPVhjkDpNsJEGxGpFcIJSruwk3DknnoK9nNY1RKcYltvAbwYPTIqA4m4C6Y5XLsu0o_kconPUfTJuCnB3dPf2ySzhcrdpWtrQ5GPjzlIknqEQ&session_id=7eba1fdb-ff98-49fd-bc29-8dbef9f4412f&state=f8ccd8d7-c8ff-4b16-a677-506e8df26170&session_state=6b31e9da0028d48ca6368afc53ee5e2a75a77c61b221f1627175898942b20c93.0aec0a44-00ee-4edb-b2ea-c320e6154234&sid=fa6ce0dd-5c01-4a0d-878f-44c6b7596565 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=ca54f76e-1d88-441b-a65e-8ed2a5336ee2", "tls_client_auth_subject_dn": "", "registration_access_token": "6d707c4b-cc64-46c9-b2b0-4e51c893c79b", "client_id": "ca54f76e-1d88-441b-a65e-8ed2a5336ee2", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "dfd0e365-8376-4b66-86ea-3fe9ac4eed73", "client_id_issued_at": 1610964718, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051118, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token+id_token&client_id=ca54f76e-1d88-441b-a65e-8ed2a5336ee2&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f5ea40a8-1223-40d8-9288-73afc203126d&nonce=4c73e954-6c26-49d9-bfe8-1e0e1c9294c8&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=06ea2f79-dad8-48e7-b6b3-78b6aecf7098&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.YZeB9ZgPaAYBUYdwn0IrNGeKd2ZJQp59qWlR4m5LUXfFmTv31_Z7HaadoaUUm8N3NCgVQk5_1nRaXGGWpyqJHX-nQGkPrhOhzzZcP_K5xdMQeVeOQmWaI8LjcbsvYrUhAWdNODcUevmbQGZ_98kO3SixurQvaN1ZT_U9m_RHtHGzmVEoQ3DQhHFsKaD0vzO3EbiQ1RInozqsvs1oA8GmogrqusSFjm4gpgwjjeLLWHL1gzddb1hKQoTaXkAPePFu8DyyXm26MonYeYT45MMZGhwI4mLifmofNXqHlxxnbFT6y5PB6Yq2pl_nYn1guuUxDZKRwKhSLundMWxmsDNwCw&session_id=6b324ba6-2794-4bfb-a61e-15699147446a&state=f5ea40a8-1223-40d8-9288-73afc203126d&token_type=bearer&session_state=6fc4107d8e72152813fd6586f27cfe68c79499d39a28decc8c49c2c9c9d000bb.efa7121c-4937-4d53-b63d-2ba76f20fb2b&expires_in=299&sid=dd252e75-07af-4449-985f-09ce665e3b75 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:59 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=eb00ce99-bc6a-48c4-9d9c-d9cf7d3c617f", "tls_client_auth_subject_dn": "", "registration_access_token": "44d813fa-48e9-4eda-a188-ae2eb61b5c09", "client_id": "eb00ce99-bc6a-48c4-9d9c-d9cf7d3c617f", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "a8e3aff8-8c2f-4c01-8cef-96a2a466f952", "client_id_issued_at": 1610964719, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051119, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+token+id_token&client_id=eb00ce99-bc6a-48c4-9d9c-d9cf7d3c617f&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=66121891-7b80-41b7-a83e-e29b0a0cae1a&nonce=8bcea700-6d6f-4531-a3bd-346f5dadd7c8&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Mon, 18 Jan 2021 10:11:59 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=e6ea2c0d-b480-42fe-a133-d8f11688d67b&code=a1228f68-e09a-4d9d-b68b-ef0db5666832&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.EmimAs5gpt_Tf4mKpIK8FPkgBeNOi3HUb2tCFBBs2mA6jRWflw8N-XEDbx-B_F4F88ssr0BVweQacDs3C6ALIwwPKcg643awDsCFnsYNp44sKld6w8X5FFz7JEIP_fXWLrImuCkA3UxyFTKq32d5B0a30xwMrpgXJ3PqakOyCUMGOguc2m6vboAZBss9TrIgSRNOtGj7D2sZ0wjRl_7_Z7JKuAyZ27zEUYcx1MLTQ6wl68OCUCJ-VxU--4v6HUJwD6gB-10maDm02vODjvGzqF-XMi_xHzZZkfJdzUtvdbaCsKkwplDJU3mrXs_O-ijEymZMj7fSpF42XGOXRFM5AQ&session_id=3d7a9a0c-7c8e-430a-a0e0-7ae7dd0d7385&state=66121891-7b80-41b7-a83e-e29b0a0cae1a&token_type=bearer&session_state=26e4f93b05fe27fbf27f1af55123ef0f07429c8db78763b566358219b6875e8f.85699ac8-7385-4d79-91a6-3f16af1bd972&expires_in=299&sid=28cec220-71c9-4bbd-9ae8-df41914bb8ec Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:11:59 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:59 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: defaultResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:11:59 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=134db38a-294c-4758-badb-b19424e10e68", "tls_client_auth_subject_dn": "", "registration_access_token": "b163dc0c-9edc-4547-8d71-41c5efdda94d", "client_id": "134db38a-294c-4758-badb-b19424e10e68", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e8098af4-69d3-494d-8e39-e90f785b4c99", "client_id_issued_at": 1610964719, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051119, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=134db38a-294c-4758-badb-b19424e10e68&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=68157547-83aa-4b5a-9735-baf022a982bf 10:11:59.825 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:de39af89076508dea748c08418ff4765e33d8ddf7f2ef7aa03c241df7d2c7eec.1bb508af-efa0-445a-9f69-323db6761698 authenticateResourceOwnerAndGrantAccess: sessionId:34283685-9bad-4d66-b46f-86775f8cf68e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=134db38a-294c-4758-badb-b19424e10e68&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=68157547-83aa-4b5a-9735-baf022a982bf ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=51914764-c61b-459b-990a-2b67dde3a5d1&scope=address+openid+profile+email&session_id=34283685-9bad-4d66-b46f-86775f8cf68e&state=68157547-83aa-4b5a-9735-baf022a982bf&session_state=de39af89076508dea748c08418ff4765e33d8ddf7f2ef7aa03c241df7d2c7eec.1bb508af-efa0-445a-9f69-323db6761698&sid=86ad452c-5937-41d2-8cd5-f3c28679c475 ####################################################### TEST: defaultResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e8f6bb4e-4afc-4cc1-bff8-21db08ab7f91", "tls_client_auth_subject_dn": "", "registration_access_token": "7f9eaa68-5f11-44c2-b5ba-acb245c2312c", "client_id": "e8f6bb4e-4afc-4cc1-bff8-21db08ab7f91", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7368d4de-b77f-455e-86f1-6d535fb392f6", "client_id_issued_at": 1610964721, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051121, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e8f6bb4e-4afc-4cc1-bff8-21db08ab7f91&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=720422c5-1d58-4a44-b35b-0cc400e33fa7&nonce=6aa1d040-86c5-47ee-b2ff-11673a9d1676 10:12:01.442 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:40755c240706b4c506c02382ab4d14ce84fc6e8f99d9b10927ac40137f69adf1.73ec3869-39f3-493d-80c3-559e12f8bd29 authenticateResourceOwnerAndGrantAccess: sessionId:d6076688-2fa9-4ae9-a555-a1f9d03e47a7 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e8f6bb4e-4afc-4cc1-bff8-21db08ab7f91&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=720422c5-1d58-4a44-b35b-0cc400e33fa7&nonce=6aa1d040-86c5-47ee-b2ff-11673a9d1676 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=23bd5979-df3f-4093-a180-70323a310130&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.xbAVC8ELzWgAfSJozSl1AsyNNUEGtYFZSCIN9NxkobRCzIXfXSGptFuWTbQPniSbopenDa2jzPzRcuKbZa0KH-TpP6kHvAonLKETvRi0MOcOOKj_PcFxhMNdR_zni1HqMf5KnvnfXJDGXkiwm10YAdPhM7qu8oLcV9GpwWviJQbvD8BTO8OZ65lYwpt-mrW2q86u7XliDxFA6sEAqWbvKp_CI0TelFKqy9IK6fnI1PLSipJirtk-JbslRBWtdqvD_I_vdFopcT-Q0VvZiIt1B5J1XGBisFh5LbxLz64wzac67_zRgxi6adGuUqRCTpa-7DSSasrUttw2CVX_tD-tTA&session_id=d6076688-2fa9-4ae9-a555-a1f9d03e47a7&state=720422c5-1d58-4a44-b35b-0cc400e33fa7&session_state=40755c240706b4c506c02382ab4d14ce84fc6e8f99d9b10927ac40137f69adf1.73ec3869-39f3-493d-80c3-559e12f8bd29&sid=2348078d-764f-4964-ad45-cec2ffe1dc6d ####################################################### TEST: defaultResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:02 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e5f23e14-ae1a-4f4b-ae2d-d8797247fd74", "tls_client_auth_subject_dn": "", "registration_access_token": "03998f60-dad1-43a0-a2b9-4a3edd6892ff", "client_id": "e5f23e14-ae1a-4f4b-ae2d-d8797247fd74", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "328c3613-632e-4294-b3f2-f1ec5f18d699", "client_id_issued_at": 1610964722, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051122, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=e5f23e14-ae1a-4f4b-ae2d-d8797247fd74&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3f333d69-946a-4e9b-8ed0-be4615238e63&nonce=6cac5836-8233-4af3-a26c-dff5e1a1ab72 10:12:02.961 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:87d871c2f72d48ecbc06d29eed8caa3fa71fb455007af4a4bd11a3c5ebd23cb5.4d540802-9048-4d4d-9fc1-72d17bc2479e authenticateResourceOwnerAndGrantAccess: sessionId:2c05c7f8-3a5c-4eda-8ae4-23116042de9b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=e5f23e14-ae1a-4f4b-ae2d-d8797247fd74&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3f333d69-946a-4e9b-8ed0-be4615238e63&nonce=6cac5836-8233-4af3-a26c-dff5e1a1ab72 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=262f5a2f-2bd5-45db-8ad9-9901f46cb0ae&code=eec3fde4-ea7f-404b-9324-45be1966b33e&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiTlZPbURwT3g4T0hteGxmZDZEbkstQSIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiNmFjNDY0YWEtOTMwNy00Y2I2LWE4MmUtOTFlMjQ2Mzk3NTgwIiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiNmNhYzU4MzYtODIzMy00YWYzLWEyNmMtZGZmNWUxYTFhYjcyIiwic2lkIjoiNTk5YTY4MDctMzc3MS00MTkyLThkZmQtYjhlNTI5NThjZDllIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiZTVmMjNlMTQtYWUxYS00ZjRiLWFlMmQtZDg3OTcyNDdmZDc0IiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsImNfaGFzaCI6ImU5SXo4aURaWkVZanNLbXVFa2FjVGciLCJzX2hhc2giOiI1cExhU3ZkcGZicmtvRWRidnJvWTJBIiwiYXV0aF90aW1lIjoxNjEwOTY0NzI0LCJleHAiOjE2MTA5NjgzMjQsImdyYW50IjoiYXV0aG9yaXphdGlvbl9jb2RlIiwiaWF0IjoxNjEwOTY0NzI0fQ.mj5cvG-j-3pmT08cK-jAQXwpKx48CaQ1cTG9TTO0WZgFfrVEiN24ILUelHVh_whUaxBH4RZoI96U8IV8ts0mU7p2Ez1AeajCjRKyXIqe7-Hf0s4FpADeQdEj0Y8DMrsBmzHB3wYsZ24ZCvH0z7MYxcybVb5M7AKRuDC8mqgLICRs9u3IT8l8Q-c1M9o5qZ41E756rybCbgzWmzgSkEmCeZhxAdN-MJjX_KSGIyuRVZnVP9EwpwCtDrHg0CBxlhUSY17XcaE8pm2L7fRlE2IFw9rV9ZA5gPr6ATwO63WPDrGPlF2q0or6W5E37p0GMlemdpCME9UvtwQc0cLPc7EFEw&session_id=2c05c7f8-3a5c-4eda-8ae4-23116042de9b&state=3f333d69-946a-4e9b-8ed0-be4615238e63&token_type=bearer&session_state=87d871c2f72d48ecbc06d29eed8caa3fa71fb455007af4a4bd11a3c5ebd23cb5.4d540802-9048-4d4d-9fc1-72d17bc2479e&expires_in=299&sid=599a6807-3771-4192-8dfd-b8e52958cd9e ####################################################### TEST: defaultResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=a3010883-28e2-40f7-85c7-91031cc5155c", "tls_client_auth_subject_dn": "", "registration_access_token": "8e0f3feb-1fd3-4cd7-9c3b-54217c1235e7", "client_id": "a3010883-28e2-40f7-85c7-91031cc5155c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2c3e101b-76e3-4d5b-aa07-6832e259858e", "client_id_issued_at": 1610964724, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051124, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=a3010883-28e2-40f7-85c7-91031cc5155c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=a470c97b-961c-4179-a0dd-bac739ea21b9&nonce=90577f5b-a7c1-4449-a12b-294cd7d0304f 10:12:04.833 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:fb5687f5966639727e7403b13925ff3406f75f3926493bc5a6df3daffffb9531.b9e31565-442a-4993-9a02-ff39580329ef authenticateResourceOwnerAndGrantAccess: sessionId:4ebb0335-39aa-4a8f-88bd-7a5a2f833578 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=a3010883-28e2-40f7-85c7-91031cc5155c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=a470c97b-961c-4179-a0dd-bac739ea21b9&nonce=90577f5b-a7c1-4449-a12b-294cd7d0304f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=d3dc1e58-9563-4038-8686-6dc9491a3d41&code=3edc7340-20ba-4331-80b1-e035de2971cd&scope=address+openid+profile+email&session_id=4ebb0335-39aa-4a8f-88bd-7a5a2f833578&state=a470c97b-961c-4179-a0dd-bac739ea21b9&token_type=bearer&session_state=fb5687f5966639727e7403b13925ff3406f75f3926493bc5a6df3daffffb9531.b9e31565-442a-4993-9a02-ff39580329ef&expires_in=299&sid=ef7664fb-551f-4a7c-9698-ec3bacdb3a91 ####################################################### TEST: defaultResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:05 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6d8b25f4-8e6e-46fd-a97e-dde40995582d", "tls_client_auth_subject_dn": "", "registration_access_token": "afde0d69-5843-46c3-98fc-8d1ec422da25", "client_id": "6d8b25f4-8e6e-46fd-a97e-dde40995582d", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "722cd05b-72de-46db-a9e7-92f51e372dc8", "client_id_issued_at": 1610964726, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051126, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=6d8b25f4-8e6e-46fd-a97e-dde40995582d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=58acbfee-9eb4-4044-80a6-e831fea1b271&nonce=fed868fb-7862-40a8-88b4-cd2f9de67908 10:12:06.352 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:59e531f08ac9ee9e1c0f1d31e24204b567e8c9e90cb898d6dca39424bc378d30.de34f766-c51d-4b5d-bc60-8ade483a47f5 authenticateResourceOwnerAndGrantAccess: sessionId:3cf19c02-e5d5-473a-ae97-b0b47866eb65 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=6d8b25f4-8e6e-46fd-a97e-dde40995582d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=58acbfee-9eb4-4044-80a6-e831fea1b271&nonce=fed868fb-7862-40a8-88b4-cd2f9de67908 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.i-r56VJ4ty-vsJqJmu9SdqEJGKCQYNCUySFDET7Z1E7cQRD7Rjch_-hUp_mkJ1XWPPqQqHlw9aoR6Gz__xBBd0r_OlZKIaAS1Zd5YJmj1CA32cu7KO_1o2w9fy_lFszxtrovQZYFi_aBAnVsKbmi5ruyjftAFk1A9b-XhXhgnjef9wsPpHV1b2zrxHFAGrq0OFc5sDhmWLk7Kq40fDQfM6STBLbsESOtkjsIZE2aGFVjXwROLW0tff9V-cxbNvcLHOe80AH94lVX0WnH0BDJRMxF79AuaOM4esU3JZ8_Bw4MiSQqmJUtLjfGtv39lc1EM8KpMgqn6-GZTbCnT5tWeA&session_id=3cf19c02-e5d5-473a-ae97-b0b47866eb65&state=58acbfee-9eb4-4044-80a6-e831fea1b271&session_state=59e531f08ac9ee9e1c0f1d31e24204b567e8c9e90cb898d6dca39424bc378d30.de34f766-c51d-4b5d-bc60-8ade483a47f5&sid=6d7e5357-692a-47b0-a00f-9c21548e8051 ####################################################### TEST: defaultResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:07 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=5122d375-3d69-441f-9bae-c8d575102dfb", "tls_client_auth_subject_dn": "", "registration_access_token": "74c4ab0e-e1fa-48e6-92d8-ddfb367b6ae7", "client_id": "5122d375-3d69-441f-9bae-c8d575102dfb", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "55dc8585-71b9-4e38-8f2f-8d415e66605a", "client_id_issued_at": 1610964727, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051127, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=5122d375-3d69-441f-9bae-c8d575102dfb&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=123f92f0-9651-4f12-a1cc-bd3df6355843&nonce=f04b0519-d982-4553-9da4-dc9e719a5af2 10:12:08.165 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:739767070156700a572b92157c7a02dada809624e15c1bf717a1b3b186d14142.ca63e568-191d-4a60-abbc-b4bd0f55d1e4 authenticateResourceOwnerAndGrantAccess: sessionId:146ec909-0a8a-4312-bc06-308fcb1536f9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=5122d375-3d69-441f-9bae-c8d575102dfb&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=123f92f0-9651-4f12-a1cc-bd3df6355843&nonce=f04b0519-d982-4553-9da4-dc9e719a5af2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=9948233d-c7cd-412d-9522-e38d11a3151c&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Bpac8PUAxUtmoWdhKnwAO3Q-eIqjZ6aYuy3S-KAxik4fw8BgVaJfrUYwiRvYLzIYPjt1rV4Cj7pG3tAJ69pyyA0zdLMr304-pk0PbqqwNdSUIZKPZeFMzWw0WrBSXzSjPS_2_emQx7-Klf2hYWU3lW-Nidncv7NVHEU-LKLQX-IdzxFcaD7x_8JGuUh3nu0no0U81WtDjICteaCzlXqwWk9er4IzdHmOEzUOtSpKas33YNdj0iUCr5eWi_Rvm8TSPkISsrA8d2CJNfsfWLv5hJlChFFk38S-iJIrKiv43pjnxCevy26GpvvcFW35DiDZyXZEQx3nKWT4FYyoDseOYw&session_id=146ec909-0a8a-4312-bc06-308fcb1536f9&state=123f92f0-9651-4f12-a1cc-bd3df6355843&token_type=bearer&session_state=739767070156700a572b92157c7a02dada809624e15c1bf717a1b3b186d14142.ca63e568-191d-4a60-abbc-b4bd0f55d1e4&expires_in=299&sid=63e34e58-7905-4e2e-9430-9a2f68ae9f06 ####################################################### TEST: formPostResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=03585a77-485d-467c-9503-725a18d32dda", "tls_client_auth_subject_dn": "", "registration_access_token": "2bbe79e9-4056-4000-9144-6a6c086d2bbe", "client_id": "03585a77-485d-467c-9503-725a18d32dda", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "d82792cb-096a-4eb6-ab93-8e0d5836a326", "client_id_issued_at": 1610964729, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051129, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=03585a77-485d-467c-9503-725a18d32dda&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec0b0bf7-71e7-4913-8efc-4700c49173b0&response_mode=form_post 10:12:09.740 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:642eec4041ef24188f9d74a479eac5cbbb889a747ecc11c26c417cf0ea5121e7.42f0b019-c4a4-4bf1-93d3-77ce017b972c authenticateResourceOwnerAndGrantAccess: sessionId:a4add2e6-2e85-47c7-a3f9-d183c5860a9f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=03585a77-485d-467c-9503-725a18d32dda&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec0b0bf7-71e7-4913-8efc-4700c49173b0&response_mode=form_post ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e3b7e6b3-3326-44fd-9227-8850d0df6078", "tls_client_auth_subject_dn": "", "registration_access_token": "80a8aad1-fa45-42e1-9d5b-bdb0248d916d", "client_id": "e3b7e6b3-3326-44fd-9227-8850d0df6078", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ebe762a7-0558-412c-aa32-188fc4b6e563", "client_id_issued_at": 1610964731, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051131, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e3b7e6b3-3326-44fd-9227-8850d0df6078&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=733c05d4-f706-47b3-977d-4940fab9dde9&response_mode=form_post&nonce=e8787e90-a915-45cf-834a-e4a8c8a177cd 10:12:11.273 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8036383d3db6ce09dae6a610824c70a4d43f0d575a999fb60d6ad1a09b46db53.b051e410-f240-4a59-8351-12ecec488256 authenticateResourceOwnerAndGrantAccess: sessionId:b3557b1a-6e7e-49f7-a782-6138ea17f69e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e3b7e6b3-3326-44fd-9227-8850d0df6078&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=733c05d4-f706-47b3-977d-4940fab9dde9&response_mode=form_post&nonce=e8787e90-a915-45cf-834a-e4a8c8a177cd ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:12 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=dac0ffcd-83e1-4b39-b81c-cc1c261ffe27", "tls_client_auth_subject_dn": "", "registration_access_token": "9e20ae49-f0cd-46a5-b530-ce8d7bc75115", "client_id": "dac0ffcd-83e1-4b39-b81c-cc1c261ffe27", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7c420415-3d92-4075-ac82-cdc2ca7cc9d3", "client_id_issued_at": 1610964732, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051132, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=dac0ffcd-83e1-4b39-b81c-cc1c261ffe27&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=dc7dbee9-4a4d-4a48-b13e-1094cd062b53&response_mode=form_post&nonce=5bd962de-e3d9-4058-a50b-99911530f431 10:12:12.773 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:40e064ef02a8197a9a69fcca9fcb1b8a673509ed6a897862b62c82b087139b4d.5e2243b0-ce10-4b1b-891d-3c7e7891f393 authenticateResourceOwnerAndGrantAccess: sessionId:8a62f730-94b3-4144-9000-49568be32747 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=dac0ffcd-83e1-4b39-b81c-cc1c261ffe27&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=dc7dbee9-4a4d-4a48-b13e-1094cd062b53&response_mode=form_post&nonce=5bd962de-e3d9-4058-a50b-99911530f431 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=c52b70b2-0971-4909-8c77-fadc50b22c8c", "tls_client_auth_subject_dn": "", "registration_access_token": "d0283441-3516-4dd4-be5d-80f2f5150ff8", "client_id": "c52b70b2-0971-4909-8c77-fadc50b22c8c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "827f70fc-49aa-47e8-b192-773752d860bc", "client_id_issued_at": 1610964734, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051134, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=c52b70b2-0971-4909-8c77-fadc50b22c8c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=405764fd-bb04-480a-b4a9-576d24b24f80&response_mode=form_post&nonce=683625c5-2a2a-4200-9c36-f785884bbea0 10:12:14.345 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:bf25f247c07ad93a9a36c2bf8fa55761242b72d457dd19f3868abefae85db171.6e4363fb-cf41-4c8b-a455-411a597ee1bb authenticateResourceOwnerAndGrantAccess: sessionId:4da6d000-30dc-4ff2-bc2a-85fa1005ae9e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=c52b70b2-0971-4909-8c77-fadc50b22c8c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=405764fd-bb04-480a-b4a9-576d24b24f80&response_mode=form_post&nonce=683625c5-2a2a-4200-9c36-f785884bbea0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:15 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=3bb6d6d5-ae0e-4118-8960-88fcc2cc3d3a", "tls_client_auth_subject_dn": "", "registration_access_token": "a95e6767-1d20-4995-85bb-0484c65c3b44", "client_id": "3bb6d6d5-ae0e-4118-8960-88fcc2cc3d3a", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "a2ee744e-815a-4658-bb62-6e8c7f6f9758", "client_id_issued_at": 1610964735, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051135, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=3bb6d6d5-ae0e-4118-8960-88fcc2cc3d3a&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=fe0df5fc-9237-4a2d-bd90-7f8468fd8f5f&response_mode=form_post&nonce=661ce62c-c194-4e97-9026-0d9d3019e3e0 10:12:15.894 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:d58d58a068344347a68f3a0abb53210a8a9f7261a9b01330d70f718b3ca1a90a.4f5af9ab-976a-4ce7-b128-056600bf367f authenticateResourceOwnerAndGrantAccess: sessionId:5220d310-bb51-4113-8836-76bb7b81ce46 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=3bb6d6d5-ae0e-4118-8960-88fcc2cc3d3a&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=fe0df5fc-9237-4a2d-bd90-7f8468fd8f5f&response_mode=form_post&nonce=661ce62c-c194-4e97-9026-0d9d3019e3e0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:17 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=56f1b4ee-a430-483b-aa69-0efb27511c37", "tls_client_auth_subject_dn": "", "registration_access_token": "cf7d6661-5584-449d-8450-589a28606cf3", "client_id": "56f1b4ee-a430-483b-aa69-0efb27511c37", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e2c2e9c5-4e9a-427b-9e47-b0f549748bd5", "client_id_issued_at": 1610964737, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051137, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=56f1b4ee-a430-483b-aa69-0efb27511c37&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=884bbdc6-e2f9-4b33-8949-613e7e50d8b1&response_mode=form_post&nonce=595c7f84-a4e4-47f7-842a-461a84293783 10:12:17.503 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9380bcb5aba94344c74d298a3a9446ae704260ce618cd93e008b7af76db61494.94dad951-51b5-4f56-8481-189fe73aaa68 authenticateResourceOwnerAndGrantAccess: sessionId:4f63d15d-609c-49e5-a436-148f0446f090 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=56f1b4ee-a430-483b-aa69-0efb27511c37&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=884bbdc6-e2f9-4b33-8949-613e7e50d8b1&response_mode=form_post&nonce=595c7f84-a4e4-47f7-842a-461a84293783 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm ####################################################### TEST: fragmentResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:18 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2b95362c-cbf2-43c1-a15d-24cdae3b78b0", "tls_client_auth_subject_dn": "", "registration_access_token": "9db8e38d-72ce-4ab4-b4cc-5d2050ff37d6", "client_id": "2b95362c-cbf2-43c1-a15d-24cdae3b78b0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "d483635d-57cd-4696-aa53-76236d96e30d", "client_id_issued_at": 1610964738, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051138, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=2b95362c-cbf2-43c1-a15d-24cdae3b78b0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0921db88-a5e0-477b-85e1-9cac51047b2a&response_mode=fragment 10:12:18.960 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:0229bee971ea2553f9318cc5a49b876e7354a4315c7ff517a89185e8e885c989.d5c18682-381a-46cb-be3f-89499b2cf365 authenticateResourceOwnerAndGrantAccess: sessionId:982dbd53-1c40-4b1c-b9fc-7f6f981e3b71 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=2b95362c-cbf2-43c1-a15d-24cdae3b78b0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0921db88-a5e0-477b-85e1-9cac51047b2a&response_mode=fragment ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=44c7cd40-fcb5-4525-a79f-780d0473eb68&scope=address+openid+profile+email&session_id=982dbd53-1c40-4b1c-b9fc-7f6f981e3b71&state=0921db88-a5e0-477b-85e1-9cac51047b2a&session_state=0229bee971ea2553f9318cc5a49b876e7354a4315c7ff517a89185e8e885c989.d5c18682-381a-46cb-be3f-89499b2cf365&sid=a57c4459-fe85-435b-99a0-91f445b81070 ####################################################### TEST: fragmentResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=47ee4451-4866-4d84-a68e-8747128874de", "tls_client_auth_subject_dn": "", "registration_access_token": "7984e41a-9a59-4dfa-b091-3e777fafff04", "client_id": "47ee4451-4866-4d84-a68e-8747128874de", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ec8e9617-d548-4843-8523-4513d8d78a8f", "client_id_issued_at": 1610964740, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051140, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=47ee4451-4866-4d84-a68e-8747128874de&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4bf6be6b-3040-47bf-aa82-0bfc7506ea1c&response_mode=fragment&nonce=f57bd715-fea2-4bcc-b930-8e670b573ce5 10:12:20.445 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1c2d7480c66e078008845086f84f7776ae4b308f759b9d4eddb79b10dd3b716a.7bf10dda-b675-4e84-afec-c6e73274ee0f authenticateResourceOwnerAndGrantAccess: sessionId:b72fef53-28c6-4b2a-ba77-3f23bb7b5ee9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=47ee4451-4866-4d84-a68e-8747128874de&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4bf6be6b-3040-47bf-aa82-0bfc7506ea1c&response_mode=fragment&nonce=f57bd715-fea2-4bcc-b930-8e670b573ce5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=3a4e2226-90bc-4bbe-a33e-cc961071a9a7&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.XT_8W0XHIULTO0ilCprNa8jbUmBiriUXwPB4E80UOfDAcxa0IyO7Ct-q4NcAFJsVetf76f_tjoP-3QPAL4OqTiDemOXCKlVPstX8F0RS5PftUFAbdI-DjByzMa6Tl5khvjYbj5GIipBCEmRWctVoNYjOinENpUVxylAUAQQDa7g1R1gzaVCUkCmJIAPU-pgFl6IJ0dk-g8dztvdpaWqtCjEH1D6DejmqAe5gkGORTbLktxdQy_7TGXrYnm6e-GEfmJrkdaDXsjQMkNax4nh0W_3bqjH2gpGgi5J12bqZuX2RbF1PSpEokjK4exsV9kQWtOT8P9ak_DI8j3Sy3qwLwA&session_id=b72fef53-28c6-4b2a-ba77-3f23bb7b5ee9&state=4bf6be6b-3040-47bf-aa82-0bfc7506ea1c&session_state=1c2d7480c66e078008845086f84f7776ae4b308f759b9d4eddb79b10dd3b716a.7bf10dda-b675-4e84-afec-c6e73274ee0f&sid=418c1243-5353-4919-8271-3ddb7e515f5b ####################################################### TEST: fragmentResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:21 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=609adf7d-b2a6-4436-8f66-80badc6dc0da", "tls_client_auth_subject_dn": "", "registration_access_token": "af3716d5-adf9-48ad-ad5e-94ee0fbdf1b6", "client_id": "609adf7d-b2a6-4436-8f66-80badc6dc0da", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "169d96d4-7b83-483a-af7b-4c8b3b29839d", "client_id_issued_at": 1610964741, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051141, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=609adf7d-b2a6-4436-8f66-80badc6dc0da&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0314db5-3f4f-42a3-bc47-38d1f2d787b6&response_mode=fragment&nonce=e7524a0e-8c8a-4233-b768-5b0896e1ff1a 10:12:21.870 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1528a510b23987de49746960e7fffaf0ad67e4db86aa4faba54e32d98ac0d832.992a94e6-6150-40f2-bab7-8819c66b1600 authenticateResourceOwnerAndGrantAccess: sessionId:52d91aa8-125d-4dce-9e36-41f47ef3114d ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=609adf7d-b2a6-4436-8f66-80badc6dc0da&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0314db5-3f4f-42a3-bc47-38d1f2d787b6&response_mode=fragment&nonce=e7524a0e-8c8a-4233-b768-5b0896e1ff1a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=e5a93b52-e42e-4288-945a-d0446f018a21&code=a4ab4688-27b0-42fb-b459-2256e63d0671&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.XM9duleuT6w_5P5Fj1w9nepgabGEURLU3qUdfkRVyJaJIqdaNbQOJxYua8pCEY52Skwxnxu0I4ALG6GZZGyUQxNQDdfpSdHhFWgNJDZmAx30A2iw-Tce7RByLqD2d_efU0vqLJTXLSpK0NqyPV0HDCFLiCw_RWmuo4EgXnoIw4PPNGWc1SXwj7twbkHeBY6McOVV4DjPJA7JSRy3ni4yHY9IeaGoEmJtQUcYbcGqo1dj0vnWVlTReY44zNsy2q_tJEWDRDHDixE6tWmM7vxIBDO1Pf3cGqxfbVt-usUjWV8SEwtug7_LyTmYeqcd2OYJcUwpDS7-VHaWPmy0tE-aoQ&session_id=52d91aa8-125d-4dce-9e36-41f47ef3114d&state=d0314db5-3f4f-42a3-bc47-38d1f2d787b6&token_type=bearer&session_state=1528a510b23987de49746960e7fffaf0ad67e4db86aa4faba54e32d98ac0d832.992a94e6-6150-40f2-bab7-8819c66b1600&expires_in=299&sid=b9ac432b-dbfc-4617-8f7d-c87fa0e104b6 ####################################################### TEST: fragmentResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:23 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=a882df11-06ec-41d7-a9cb-b2ffce6b6323", "tls_client_auth_subject_dn": "", "registration_access_token": "bf04b82a-95a1-42f0-8d8b-c213e1e63f6b", "client_id": "a882df11-06ec-41d7-a9cb-b2ffce6b6323", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "6298c9e1-efd7-4712-8c6c-23b665e8d941", "client_id_issued_at": 1610964743, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051143, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=a882df11-06ec-41d7-a9cb-b2ffce6b6323&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=1e5389c2-246e-474e-acdc-b0367f05195d&response_mode=fragment&nonce=f50023be-1c4b-4989-bc08-f4addf45e063 10:12:23.460 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1475ae7ac6e305bac6fa7ef7502293cc41942af008aed800bb658d82940976f2.b5afd97d-2426-4661-a668-e2fb348b952f authenticateResourceOwnerAndGrantAccess: sessionId:0bd83bb2-890b-4265-a9e1-e5a6b8221b6a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=a882df11-06ec-41d7-a9cb-b2ffce6b6323&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=1e5389c2-246e-474e-acdc-b0367f05195d&response_mode=fragment&nonce=f50023be-1c4b-4989-bc08-f4addf45e063 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=4d9c7688-d634-45fc-b9ec-b053fabd949d&code=3fea1d99-80a8-475b-9d87-a799d549eb07&scope=address+openid+profile+email&session_id=0bd83bb2-890b-4265-a9e1-e5a6b8221b6a&state=1e5389c2-246e-474e-acdc-b0367f05195d&token_type=bearer&session_state=1475ae7ac6e305bac6fa7ef7502293cc41942af008aed800bb658d82940976f2.b5afd97d-2426-4661-a668-e2fb348b952f&expires_in=299&sid=88e241ec-f271-4f7e-8ad9-70ad46578c7e ####################################################### TEST: fragmentResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:24 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=172fcee3-0738-4107-8d9c-e58639a87718", "tls_client_auth_subject_dn": "", "registration_access_token": "546947eb-a0fc-4d0e-bd28-a4d1d7c30057", "client_id": "172fcee3-0738-4107-8d9c-e58639a87718", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1887dd48-e800-4db2-872f-368a4796590b", "client_id_issued_at": 1610964744, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051144, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=172fcee3-0738-4107-8d9c-e58639a87718&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e1618b9d-7cb9-4d82-a5aa-6abd3cd02e30&response_mode=fragment&nonce=4fd1e9d6-f6ec-42cf-9aac-4293d12ab139 10:12:24.990 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:badac47c594d9e4937f39d8381d4d22eae5c202e5b43b3c6a96ac0cf1102292a.e8bb489e-594a-4e77-a355-50daeb9cffec authenticateResourceOwnerAndGrantAccess: sessionId:eca91ce6-a543-4abe-a0d2-3d71708552ed ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=172fcee3-0738-4107-8d9c-e58639a87718&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e1618b9d-7cb9-4d82-a5aa-6abd3cd02e30&response_mode=fragment&nonce=4fd1e9d6-f6ec-42cf-9aac-4293d12ab139 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.oHptAjUqqTvh9Fz1DG0e681H76Iqe2OlSmIdhHMa_wNLP4aEBjGFjwd17BCdCnjyb0ci6LaugrkmpR0q7xpHc_4kakeiv5M-J1W_I0O8LOZebnkiHTw0dXOrt9JHLf72T2hU7tWhb7A2P3iyOAX1KjBN3k0jEzGNvE-VD1uhOFpYX-mDOD5jw7I9jPMov8k_vOk3G7LhC-ICWSccyF7MCZ0xYV2Y0bL7RkUvgnIMl1bkHNJT-hB-JdcyUlRr9F8NzUzDCsDeRyrJ-NxKwTwKR3-fGYiBONv0tfw1YFDtOO4h6dYBTad9sqAj2JgPw3so4Pr-tAosPFHEJ1nPfXMk_w&session_id=eca91ce6-a543-4abe-a0d2-3d71708552ed&state=e1618b9d-7cb9-4d82-a5aa-6abd3cd02e30&session_state=badac47c594d9e4937f39d8381d4d22eae5c202e5b43b3c6a96ac0cf1102292a.e8bb489e-594a-4e77-a355-50daeb9cffec&sid=28b016d4-b8f8-4a0b-815c-a6a41ec5bd27 ####################################################### TEST: fragmentResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=48aad37c-171a-455b-b6cc-7b0229cb43c7", "tls_client_auth_subject_dn": "", "registration_access_token": "4b3ec164-6f36-478c-bb95-a575f3d57f1c", "client_id": "48aad37c-171a-455b-b6cc-7b0229cb43c7", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "9a4ca5c0-64d7-404a-a7f1-410c7257769b", "client_id_issued_at": 1610964746, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051146, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=48aad37c-171a-455b-b6cc-7b0229cb43c7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4e6a06b5-053c-40a1-9106-6def34546555&response_mode=fragment&nonce=b0b707b2-7942-4281-85e6-d4262c3f0a27 10:12:26.520 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:29c8c27e05d9d311f520764fe63e5416bd2548c7cf193c619a78f381e9ab3b68.f672cf72-9c20-4938-9a5e-68aafed7ebe8 authenticateResourceOwnerAndGrantAccess: sessionId:1988b973-7a93-4ca5-b3c0-9ce16d9c10a1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=48aad37c-171a-455b-b6cc-7b0229cb43c7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4e6a06b5-053c-40a1-9106-6def34546555&response_mode=fragment&nonce=b0b707b2-7942-4281-85e6-d4262c3f0a27 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=2d0b11db-65fd-4d27-a2ee-2a3ec1100c9b&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoibld5bl9CUEx3VlRpYUFlOUZrNlRGZyIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiZGUzYzIzMjktODgxZi00NDk1LTk5Y2MtZGI2YTY0MTdjZDZhIiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiYjBiNzA3YjItNzk0Mi00MjgxLTg1ZTYtZDQyNjJjM2YwYTI3Iiwic2lkIjoiOTAxZGU2NDktYWFkNi00MTE3LWJiZDktYTQyZjIwMWY3MzdjIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiNDhhYWQzN2MtMTcxYS00NTViLWI2Y2MtN2IwMjI5Y2I0M2M3IiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsInNfaGFzaCI6IkZjUkVRVVUtS2pZM0JXVWVJZ0o1VmciLCJhdXRoX3RpbWUiOjE2MTA5NjQ3NDcsImV4cCI6MTYxMDk2ODM0NywiZ3JhbnQiOiJpbXBsaWNpdCIsImlhdCI6MTYxMDk2NDc0N30.RpdsaLc0teh1L0rKmcpJVVn-KVgrON6A-3rbB68keZbGh9KYC_vNqTjfa_RVbAbeGAPVxs9cFG2c_mnCvlZrMZeeEzcEZdQyxr4R-NmnwFs0OauZbMyFiB_VG7V0wlKaPKri5Hac8kXA2DxwHVhHV8-PB0ZaCRsixZGadnnwu5gYEJGp-iTrz8teQ3hmBw9YkeDZU2-4-Ee9qq-ExFYnfPUycj-NSNYgenUV1ONsGFa5_v0n6xiusXfGPjBTSK3vgEFb1suvnRCViPmIGS4SUwQ882pFNJbGVBzv-EkQS2P63288hhxysEFBAVPezBHtLe4b5Trh-E0_t288bJKZhQ&session_id=1988b973-7a93-4ca5-b3c0-9ce16d9c10a1&state=4e6a06b5-053c-40a1-9106-6def34546555&token_type=bearer&session_state=29c8c27e05d9d311f520764fe63e5416bd2548c7cf193c619a78f381e9ab3b68.f672cf72-9c20-4938-9a5e-68aafed7ebe8&expires_in=299&sid=901de649-aad6-4117-bbd9-a42f201f737c ####################################################### TEST: queryResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:27 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b743f724-85f6-49a0-ab03-c72b72976633", "tls_client_auth_subject_dn": "", "registration_access_token": "ca203e3e-aabe-4f6b-a6bb-dcb675b57842", "client_id": "b743f724-85f6-49a0-ab03-c72b72976633", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "fe5e2527-a343-4e98-8d1a-715866be8d39", "client_id_issued_at": 1610964747, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051147, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=b743f724-85f6-49a0-ab03-c72b72976633&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=014fe10a-7e03-434f-9dec-02014b0d9847&response_mode=query 10:12:28.135 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:befbe08b598ada133dffdb497c1faf68b8d45ab00cf7b40d6609a7b5bb422bdd.68296d29-33ce-41ee-ae0c-3bcfbff9aec8 authenticateResourceOwnerAndGrantAccess: sessionId:c938b787-4fdc-48b2-b949-b0f97bc3a152 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=b743f724-85f6-49a0-ab03-c72b72976633&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=014fe10a-7e03-434f-9dec-02014b0d9847&response_mode=query ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=66eb85c9-01f4-4d03-9505-089c5cb4ff1f&scope=address+openid+profile+email&session_id=c938b787-4fdc-48b2-b949-b0f97bc3a152&state=014fe10a-7e03-434f-9dec-02014b0d9847&session_state=befbe08b598ada133dffdb497c1faf68b8d45ab00cf7b40d6609a7b5bb422bdd.68296d29-33ce-41ee-ae0c-3bcfbff9aec8&sid=39de0646-89e0-4c62-93f3-f7c9f06a4216 ####################################################### TEST: queryResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8b3cfb38-58fa-48b1-8c94-505640299d24", "tls_client_auth_subject_dn": "", "registration_access_token": "8edaf7ab-84b6-475a-81dd-3064f446f28a", "client_id": "8b3cfb38-58fa-48b1-8c94-505640299d24", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "80a9e8c1-9822-4353-8e05-9eb2848d5e51", "client_id_issued_at": 1610964749, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051149, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=8b3cfb38-58fa-48b1-8c94-505640299d24&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=60a5ff59-6dae-475d-a99e-eeb165af6dc8&response_mode=query&nonce=162e1070-856c-4ee8-96fe-be8b29425da0 10:12:29.756 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:17a297f689206db2025d2db4478958b9f7339c237d2744012be6c4acb2e3a1ae.0aae1813-6cff-4801-a500-5aec8b773df0 authenticateResourceOwnerAndGrantAccess: sessionId:1caf233d-b325-48d6-a279-29d971861fa3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=8b3cfb38-58fa-48b1-8c94-505640299d24&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=60a5ff59-6dae-475d-a99e-eeb165af6dc8&response_mode=query&nonce=162e1070-856c-4ee8-96fe-be8b29425da0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=59e1deb3-2159-4abc-9233-3743449c09e9&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.E827lrjem8Yngi_BTrNl6UHg_crYn9-6Y3x-FDVBCzI04sARnAJgQAmwxAWbHpLCN7YOH4tv7mSHhJPTpsjIkxfIz2okBwByofE2uoet7K45WP8BG91lPS9BFvysKzTStErYCznG2Wb-FUgp_nfab34yZHlLatq8flXEO6Sfj2-hvDZWDf44dBlzAa4bScwe7Gs0c_FEHkbBAQIBHij1hu8H9rHOZbJWucO9gO_rhEYdiB_umpf-uBoUjWa3JHlTj-BUnEru-f-nbJMxr6oUZvqz-GSDmylp46KP31fSBmeMx7p8QKVCUfxvCzWYtqZoAmmyfjix9P0gF4TVdctMKw&session_id=1caf233d-b325-48d6-a279-29d971861fa3&state=60a5ff59-6dae-475d-a99e-eeb165af6dc8&session_state=17a297f689206db2025d2db4478958b9f7339c237d2744012be6c4acb2e3a1ae.0aae1813-6cff-4801-a500-5aec8b773df0&sid=b9e6bcd0-f691-4a36-88f9-a7ea0c9ee707 ####################################################### TEST: queryResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=43a62e52-e520-4063-98f3-64337aa65e65", "tls_client_auth_subject_dn": "", "registration_access_token": "76fff44e-6fa7-4281-9dca-a1d74b2d7080", "client_id": "43a62e52-e520-4063-98f3-64337aa65e65", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "025112cb-d591-477a-876d-0597cddffc78", "client_id_issued_at": 1610964751, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051151, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=43a62e52-e520-4063-98f3-64337aa65e65&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=fab2e6ef-884d-4750-921b-895875c925e9&response_mode=query&nonce=1dbb6a1a-31cb-4dbe-968f-b5cad30be501 10:12:31.397 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1e9b8beeb8a4cd03f287fbb879929d41871943042c12e46266f316db46271ca2.da833fec-c121-4619-9259-617b36c5c1fb authenticateResourceOwnerAndGrantAccess: sessionId:66c52891-00f8-47d3-a169-38af60af3ca2 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=43a62e52-e520-4063-98f3-64337aa65e65&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=fab2e6ef-884d-4750-921b-895875c925e9&response_mode=query&nonce=1dbb6a1a-31cb-4dbe-968f-b5cad30be501 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?access_token=9e49ec23-5edd-4a96-81f0-c27508666f54&code=46e8d007-d72e-49f7-8856-c85a65874d11&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.pWSMJPmYo7WjVmCd0oOYlM3xvFv6Tphzp-DQFNlo1X39l6YPlZLKGlMQ_SVAHb5ivZDBJTTJgxMYhrmLFWO2KDw8z6dVqpFEgceFazVrO9D0_cSbGq-ygJJPO8o_4mNW1rSM-iNxw8OQQWP3puaXMlWMgg6OP7fLTH5Q53ur0itEzL2-CF7TC6_J5MrA8MW6NrLAk7Lizb5_QAA4nJJQ6a0YWRrGxdHH-3IXAMIR2We36mGuFGgzmoS_a1Qw51i0umNLqzAjI0yaU0d9rzIq1toTddCrg2IBIDC6h4OPmG4hrz7W0raIrTeiNiFVgaEprhrVlsOdnk6AMLGsKDoJHg&session_id=66c52891-00f8-47d3-a169-38af60af3ca2&state=fab2e6ef-884d-4750-921b-895875c925e9&token_type=bearer&session_state=1e9b8beeb8a4cd03f287fbb879929d41871943042c12e46266f316db46271ca2.da833fec-c121-4619-9259-617b36c5c1fb&expires_in=299&sid=6b73bca7-f255-4f9c-8429-a1c0288757a5 ####################################################### TEST: queryResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:32 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=28ad1642-d65a-4398-b9aa-b751e9431074", "tls_client_auth_subject_dn": "", "registration_access_token": "217c0fc6-f134-49f4-9d33-6c1d7cd15200", "client_id": "28ad1642-d65a-4398-b9aa-b751e9431074", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "673ecd9e-f956-4960-8c17-1930f70d08ed", "client_id_issued_at": 1610964752, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051152, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=28ad1642-d65a-4398-b9aa-b751e9431074&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3d0c5afd-c0df-4552-bcf5-58776816cbe3&response_mode=query&nonce=ff69c36f-2262-4cf0-beff-f0d8c3abf572 10:12:32.911 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:881b751dcfa0f617f7415f5c1b469257eb7e2db67ece729018233d546601ba02.fa86cb22-c6de-4ea5-859b-2223bbc45157 authenticateResourceOwnerAndGrantAccess: sessionId:0e812cb9-691c-4e8d-8888-44c6485f5fb7 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=28ad1642-d65a-4398-b9aa-b751e9431074&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3d0c5afd-c0df-4552-bcf5-58776816cbe3&response_mode=query&nonce=ff69c36f-2262-4cf0-beff-f0d8c3abf572 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?access_token=406f6d72-5bae-4135-a56a-959699f0c6a6&code=cea5b754-69d0-4b86-b69e-2166cd841789&scope=address+openid+profile+email&session_id=0e812cb9-691c-4e8d-8888-44c6485f5fb7&state=3d0c5afd-c0df-4552-bcf5-58776816cbe3&token_type=bearer&session_state=881b751dcfa0f617f7415f5c1b469257eb7e2db67ece729018233d546601ba02.fa86cb22-c6de-4ea5-859b-2223bbc45157&expires_in=299&sid=4dce196d-3e21-451d-bb22-297226cd183b ####################################################### TEST: queryResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2ff95a76-8e98-4b0a-96d5-ac40463c9353", "tls_client_auth_subject_dn": "", "registration_access_token": "d857424e-b5b3-4e12-a1ac-56e58dd6e017", "client_id": "2ff95a76-8e98-4b0a-96d5-ac40463c9353", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "d24a5fbf-ee6d-491b-bdb1-7c1873a1a5a3", "client_id_issued_at": 1610964754, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051154, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=2ff95a76-8e98-4b0a-96d5-ac40463c9353&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d2579e42-c77f-49cc-9a95-fd1ff9be9a73&response_mode=query&nonce=1c73803d-78ad-4827-acd4-4c2061974be9 10:12:34.571 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:3d39e34dbe858e39077c8c8ffaaf3b30352d9a87151470db7f790896792df9b5.53c8a133-a21b-4d70-8741-1fd0cecbf288 authenticateResourceOwnerAndGrantAccess: sessionId:c90929b7-3f4a-44ab-9776-ebb64ecbcea3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=2ff95a76-8e98-4b0a-96d5-ac40463c9353&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d2579e42-c77f-49cc-9a95-fd1ff9be9a73&response_mode=query&nonce=1c73803d-78ad-4827-acd4-4c2061974be9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Y06R-23dH2elihVJ91aq01Y97rb9Sck4QsTOg4B4Lp6bigt6oXy43QuoChdyL0K9N4UphiWrfB97CzXxoMykuCIc4hOcIUhwVZ06lCLnf4BhWGeoD65mXhLx5QsLMKXS9vmt6ykWMht1MstdsREhnckt2hSjvGCUiHMJPUNfoGRdDbLehbQYPIyhGlNGAW5zIrUV1kKEKmYajDsXrm6Iw8QcD0D6f0m-9G7-mI8Psml1mnjafiJc3G-0hEjydUHrOU6r5tzLzoU57iQu4irmQwjnBtV4RR9ZHrRf6AfCxsIqefDg5mwkKk1C7NOIoGE9IqAv-DaW3TBOu6XznnGpQw&session_id=c90929b7-3f4a-44ab-9776-ebb64ecbcea3&state=d2579e42-c77f-49cc-9a95-fd1ff9be9a73&session_state=3d39e34dbe858e39077c8c8ffaaf3b30352d9a87151470db7f790896792df9b5.53c8a133-a21b-4d70-8741-1fd0cecbf288&sid=2cca8fcc-f18b-4e31-8bd9-37ddb7b9f601 ####################################################### TEST: queryResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token", "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4008fe1e-8bcc-4de7-9c02-e91d83cc0f55", "tls_client_auth_subject_dn": "", "registration_access_token": "a6fad3dc-4dc8-4b58-8ec5-c8a18a68c494", "client_id": "4008fe1e-8bcc-4de7-9c02-e91d83cc0f55", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e2c1cd00-8255-4aab-b0f4-8236a00c4d53", "client_id_issued_at": 1610964755, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051155, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=4008fe1e-8bcc-4de7-9c02-e91d83cc0f55&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2801aba4-e0b9-481a-a264-339ccd81e15e&response_mode=query&nonce=c2446d8c-c468-4978-b47f-81a379d8888b 10:12:36.213 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:c3724bb3dd9f0f5d60b02a56bc867abf746bab6cbd94955416a3e31ac87b15df.2ab8e7dc-c753-411f-be11-493eac974138 authenticateResourceOwnerAndGrantAccess: sessionId:c31784f5-8b3d-4490-8adc-a838c258ca22 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=4008fe1e-8bcc-4de7-9c02-e91d83cc0f55&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2801aba4-e0b9-481a-a264-339ccd81e15e&response_mode=query&nonce=c2446d8c-c468-4978-b47f-81a379d8888b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?access_token=9af70e40-4686-4ae1-bbc0-12695a0913da&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiaDJrNl9ndDFvR0M5dnkwVVAzSThTQSIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiM2Q0ZWEyMDUtYjQyNy00Nzg1LWI2ZTctMTM3MzVhZjAyOWJhIiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiYzI0NDZkOGMtYzQ2OC00OTc4LWI0N2YtODFhMzc5ZDg4ODhiIiwic2lkIjoiNzU2YzQzODYtMzJmMy00ZDFlLTlkMjctOTU3MWYyMzJkODZlIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiNDAwOGZlMWUtOGJjYy00ZGU3LTljMDItZTkxZDgzY2MwZjU1IiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsInNfaGFzaCI6IngtcnptcjBBV2FDUDd3cXpkazJPTFEiLCJhdXRoX3RpbWUiOjE2MTA5NjQ3NTcsImV4cCI6MTYxMDk2ODM1NywiZ3JhbnQiOiJpbXBsaWNpdCIsImlhdCI6MTYxMDk2NDc1N30.HXnQKtpZMTWox09mCUzK_qluPwwmpgx2jDXae2m_1Wkn6PFYCS0CPnUMWeG0kJozZoAXM8uEUNOqt3cuBIGw_uUOdMHDHi3ot5UgRcmYvJJOuHYFRU1O_3Qn-PEFvSV_xTQYU5JQ3LBqNBlDZj1vtaNGCKsectL6u_RJ_LLbySuFgFf6VrWxEo-Xqpm9HOHpctsF1EI3qfYxh4u6aF8xlsXcd4iWY0yqIePjtP2JMKKa_PY9J7UZ4Zf-N_Omj-kkxIwpR2TAmMR28RO2huSdhvCOuo8tcy7nGPg36wz5mBJ2STw9JhQbUSgW42HtBzQ4EIaWHxVglGcrPga4R67F5Q&session_id=c31784f5-8b3d-4490-8adc-a838c258ca22&state=2801aba4-e0b9-481a-a264-339ccd81e15e&token_type=bearer&session_state=c3724bb3dd9f0f5d60b02a56bc867abf746bab6cbd94955416a3e31ac87b15df.2ab8e7dc-c753-411f-be11-493eac974138&expires_in=299&sid=756c4386-32f3-4d1e-9d27-9571f232d86e ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:12:37 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:37 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: requestAuthorizationAccessToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2a99e6f3-b28b-462e-b18b-ed5efc19defa", "tls_client_auth_subject_dn": "", "registration_access_token": "3155d26c-0961-439f-9ab6-365e310fa70c", "client_id": "2a99e6f3-b28b-462e-b18b-ed5efc19defa", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8d879841-ccb9-405e-bb59-88c620f79172", "client_id_issued_at": 1610964757, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051157, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 3155d26c-0961-439f-9ab6-365e310fa70c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2a99e6f3-b28b-462e-b18b-ed5efc19defa", "tls_client_auth_subject_dn": "", "registration_access_token": "3155d26c-0961-439f-9ab6-365e310fa70c", "client_id": "2a99e6f3-b28b-462e-b18b-ed5efc19defa", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8d879841-ccb9-405e-bb59-88c620f79172", "client_id_issued_at": 1610964757, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051157, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2a99e6f3-b28b-462e-b18b-ed5efc19defa&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=56ed70d0-8469-48f9-903d-4895b4b3f89c&nonce=4a2a7abc-33bd-4d92-bf42-06e3ae13c273 10:12:37.980 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a2c29f546c2fedd6c997d7d60279548b3c2923da0d26a6a60c962866c5689483.8d10b0d3-6999-40d8-8c72-c269da594a22 authenticateResourceOwnerAndGrantAccess: sessionId:ce1adce0-d01b-4160-9235-d8cddddfa0bf ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2a99e6f3-b28b-462e-b18b-ed5efc19defa&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=56ed70d0-8469-48f9-903d-4895b4b3f89c&nonce=4a2a7abc-33bd-4d92-bf42-06e3ae13c273 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=16f88a52-ffb3-4fe9-8ab1-1cb1c6913dd2&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.HrWRPRdsho4wSHvC9zms-0yysVJSCe57w7IqDL0mg1TlwLkosGe5iKMCfrpogrYD5JNBoDajZjB2G_ZbePRBfHg_TOZVvDSEv0IZIXC5TYS0Hb7mwZBfUml2RTjvnhkkAATg4FCvGBYPfXmvWD3xkh3aUcWjjLhq81a2jGc1Knr2GhrVdKVQ2ZKxRs_iUoT5NdhfBQGg9L7-wARanX0c54369-Mg_DiBajTSnoFcUtyxrvFUdR1_97HMTPtUFv_e3az9c2h13iXQfdN67y_rtSnq8mkFzLZhH-DexukZZcOVFTiiIAm6Q-pHeZ7tK0IDxCdCUIeOamk_-KJXadInMQ&session_id=ce1adce0-d01b-4160-9235-d8cddddfa0bf&state=56ed70d0-8469-48f9-903d-4895b4b3f89c&token_type=bearer&session_state=a2c29f546c2fedd6c997d7d60279548b3c2923da0d26a6a60c962866c5689483.8d10b0d3-6999-40d8-8c72-c269da594a22&expires_in=299&sid=8311f051-b600-47d9-9326-7d26946b1806 ####################################################### TEST: requestAuthorizationAccessTokenFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8ca9a58a-c71e-45c2-9126-31aa56eb66d7", "tls_client_auth_subject_dn": "", "registration_access_token": "383adfdf-06a2-4bf2-868b-1884ae8aff60", "client_id": "8ca9a58a-c71e-45c2-9126-31aa56eb66d7", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "c4d96630-c5b8-44f6-b87b-cb214d243165", "client_id_issued_at": 1610964759, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051159, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 383adfdf-06a2-4bf2-868b-1884ae8aff60 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8ca9a58a-c71e-45c2-9126-31aa56eb66d7", "tls_client_auth_subject_dn": "", "registration_access_token": "383adfdf-06a2-4bf2-868b-1884ae8aff60", "client_id": "8ca9a58a-c71e-45c2-9126-31aa56eb66d7", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "c4d96630-c5b8-44f6-b87b-cb214d243165", "client_id_issued_at": 1610964759, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051159, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org response_type=code+id_token&client_id=8ca9a58a-c71e-45c2-9126-31aa56eb66d7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3cbd3cdd-1f44-480a-96b3-565d797bdc0b&prompt=none&access_token=INVALID_ACCESS_TOKEN ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:12:39 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=3cbd3cdd-1f44-480a-96b3-565d797bdc0b&error=invalid_request Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationAccessTokenSubjectTypePublic ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "subject_type" : "public", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1858 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8c500e4f-68bd-4c46-afd8-46c55dd29476", "tls_client_auth_subject_dn": "", "registration_access_token": "2fafabe1-bfa5-4e3c-a09a-66a321571ac9", "client_id": "8c500e4f-68bd-4c46-afd8-46c55dd29476", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7fd97bfd-cb25-4419-9b71-3f3e9c2daf84", "client_id_issued_at": 1610964759, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "public", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051159, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 2fafabe1-bfa5-4e3c-a09a-66a321571ac9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1858 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8c500e4f-68bd-4c46-afd8-46c55dd29476", "tls_client_auth_subject_dn": "", "registration_access_token": "2fafabe1-bfa5-4e3c-a09a-66a321571ac9", "client_id": "8c500e4f-68bd-4c46-afd8-46c55dd29476", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7fd97bfd-cb25-4419-9b71-3f3e9c2daf84", "client_id_issued_at": 1610964759, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "public", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051159, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8c500e4f-68bd-4c46-afd8-46c55dd29476&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e28e2a20-a244-4ced-ae0d-626c51bc56da&nonce=4351abad-71ac-4d2d-ae22-82b313bd6678 10:12:40.131 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:cf02d8061fc149a2aa98c8ee2c157de1827074f85aedb6c452bafef058840c90.62d464ce-9378-410f-a8f7-0257bf578c51 authenticateResourceOwnerAndGrantAccess: sessionId:36f76f24-52c3-4f82-80a9-90e5e6ddf2a3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8c500e4f-68bd-4c46-afd8-46c55dd29476&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=e28e2a20-a244-4ced-ae0d-626c51bc56da&nonce=4351abad-71ac-4d2d-ae22-82b313bd6678 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=991264fe-34c4-46de-b473-cf929dee6639&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.0YDXY09cZ5-xU_12VnvbjJxBE4J8LGeulX7Sw5PA_AXf6vE67NE-0KAnPy7fnhxzmbUodYlj1d-LzgQkvKGcGsU8IYhs_FCo2gBZm56ba16WmJzjYpc8d1N04FevD_X_13Klogospq7gmkRVZDBaG-H43NuyUm8ftAubUkhGMSaaXXqIYRhubyFN9PlB46cp3ZFJVlVMdoyZNaW7ywvzqrJUp2kivthiV8UmXzCc3QxOTKRVZU1RPmBUz5UiyQpn7X42otIwNEHxYEFKOA368_NG23hZHnHrdTLXZBSl0fJUfyXHrj22TaILlkMsTt9PpiwK95a1339RfvLVveToaQ&session_id=36f76f24-52c3-4f82-80a9-90e5e6ddf2a3&state=e28e2a20-a244-4ced-ae0d-626c51bc56da&token_type=bearer&session_state=cf02d8061fc149a2aa98c8ee2c157de1827074f85aedb6c452bafef058840c90.62d464ce-9378-410f-a8f7-0257bf578c51&expires_in=299&sid=02cd0919-9538-4853-a209-0b9182eeb9e6 ####################################################### TEST: requestAuthorizationAccessTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8f574b4f-a20b-48b9-8439-09dc04398b31", "tls_client_auth_subject_dn": "", "registration_access_token": "e9e2a887-eb12-41c0-9884-b4a0576b1551", "client_id": "8f574b4f-a20b-48b9-8439-09dc04398b31", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "40407b50-1987-4c63-b8c9-41aeda78a700", "client_id_issued_at": 1610964761, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051161, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer e9e2a887-eb12-41c0-9884-b4a0576b1551 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=8f574b4f-a20b-48b9-8439-09dc04398b31", "tls_client_auth_subject_dn": "", "registration_access_token": "e9e2a887-eb12-41c0-9884-b4a0576b1551", "client_id": "8f574b4f-a20b-48b9-8439-09dc04398b31", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "40407b50-1987-4c63-b8c9-41aeda78a700", "client_id_issued_at": 1610964761, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051161, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8f574b4f-a20b-48b9-8439-09dc04398b31&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b6710ff2-e2db-4572-8ada-70ab07f61bd4&nonce=b95d7d46-0fba-49a4-aa6f-e5ee02fb507b 10:12:41.632 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2a73d7cd99438b47d69b5661920c41d4a251d81d894f07050bf6f8830c33b292.c15b0e84-52d0-46f1-b83a-6f6268a5ea26 authenticateResourceOwnerAndGrantAccess: sessionId:67db320c-f9dc-4a8d-8f13-1fdd7c57e718 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=8f574b4f-a20b-48b9-8439-09dc04398b31&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b6710ff2-e2db-4572-8ada-70ab07f61bd4&nonce=b95d7d46-0fba-49a4-aa6f-e5ee02fb507b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=2dac2f38-d2db-4181-bc9a-b93e696c5a4c&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.aD2i8uvDV0JMLaRXiZ0XyewQVmiih55-v8xhgpiBozWL_yhKZYLKN0z-YVMHQv6wcLaqjVFlDuu8gNaHe5nUw3zcD6GWMpkzDHb3wIEBgpL5DiWnXU_XgtzNe3Ixk5oMuuDsAmnbMG30qm-IMj6cbmHnI2qCssnIGXMuI8VQCPwGjEAHdG5akrTmDRioi3NXusuxpCR98rW3rwc53MbmuKPZ7ugVNAJc1KMtMdIOSNCL6itfoH0xXfHyRfv629ZIlTOOMNsQ-z_TRZ99lFPM2v-pdeYn54KnG9WsLq5eeUnOQBn247WpPMzwzyCxCvY4v1Xn4abYcC1DV5uwuvRu8A&session_id=67db320c-f9dc-4a8d-8f13-1fdd7c57e718&state=b6710ff2-e2db-4572-8ada-70ab07f61bd4&token_type=bearer&session_state=2a73d7cd99438b47d69b5661920c41d4a251d81d894f07050bf6f8830c33b292.c15b0e84-52d0-46f1-b83a-6f6268a5ea26&expires_in=299&sid=25859c99-5813-49a0-9125-220de2dea0d5 ####################################################### TEST: requestAuthorizationCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=89480b94-bf3f-4b8b-b9ed-6be2f45da58e", "tls_client_auth_subject_dn": "", "registration_access_token": "6faac05d-43dd-4b7f-a77b-bc2906a8c18f", "client_id": "89480b94-bf3f-4b8b-b9ed-6be2f45da58e", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "9d649248-c72b-44a7-bcb7-05ce28e546ba", "client_id_issued_at": 1610964762, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051162, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 6faac05d-43dd-4b7f-a77b-bc2906a8c18f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:43 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=89480b94-bf3f-4b8b-b9ed-6be2f45da58e", "tls_client_auth_subject_dn": "", "registration_access_token": "6faac05d-43dd-4b7f-a77b-bc2906a8c18f", "client_id": "89480b94-bf3f-4b8b-b9ed-6be2f45da58e", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "9d649248-c72b-44a7-bcb7-05ce28e546ba", "client_id_issued_at": 1610964762, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051162, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=89480b94-bf3f-4b8b-b9ed-6be2f45da58e&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b7acad7f-e377-4f1d-ba46-0ab085687e65 10:12:43.305 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:7363d6e654dc531fda64e18848e430c8535b5d339f00f0465be32d8faed07f2e.9128fbae-2f72-4af7-905d-b4044a99560f authenticateResourceOwnerAndGrantAccess: sessionId:e4002e53-0f20-4639-9d5a-3875ea6770d1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=89480b94-bf3f-4b8b-b9ed-6be2f45da58e&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b7acad7f-e377-4f1d-ba46-0ab085687e65 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=699fc590-5b32-4b55-ab14-c30a2b368301&scope=address+openid+profile+email&session_id=e4002e53-0f20-4639-9d5a-3875ea6770d1&state=b7acad7f-e377-4f1d-ba46-0ab085687e65&session_state=7363d6e654dc531fda64e18848e430c8535b5d339f00f0465be32d8faed07f2e.9128fbae-2f72-4af7-905d-b4044a99560f&sid=82fb3466-d1e1-4f71-9192-bf727ce724f4 ####################################################### TEST: requestAuthorizationCodeFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 187 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:44 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "client_id is empty or blank.", "error_description": "The client is not authorized to request an access token using this method.", "error": "unauthorized_client" } ####################################################### TEST: requestAuthorizationCodeFail2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2105e1a5-9f20-41bd-95a6-7bd4518e7901", "tls_client_auth_subject_dn": "", "registration_access_token": "e01c663b-3e3f-407b-b7b3-e690ae39e6e2", "client_id": "2105e1a5-9f20-41bd-95a6-7bd4518e7901", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "bbd9b768-cdd8-499e-8c35-68c28e3e6a9d", "client_id_issued_at": 1610964764, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051164, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer e01c663b-3e3f-407b-b7b3-e690ae39e6e2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2105e1a5-9f20-41bd-95a6-7bd4518e7901", "tls_client_auth_subject_dn": "", "registration_access_token": "e01c663b-3e3f-407b-b7b3-e690ae39e6e2", "client_id": "2105e1a5-9f20-41bd-95a6-7bd4518e7901", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "bbd9b768-cdd8-499e-8c35-68c28e3e6a9d", "client_id_issued_at": 1610964764, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051164, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=2105e1a5-9f20-41bd-95a6-7bd4518e7901&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2FINVALID_REDIRECT_URI&state=99da6ce4-4f84-4fd8-9474-8dc7c77b761c&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 239 Content-Type: text/plain;charset=utf-8 Date: Mon, 18 Jan 2021 10:12:44 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "error_description": "The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.", "state": "99da6ce4-4f84-4fd8-9474-8dc7c77b761c", "error": "invalid_request_redirect_uri" } ####################################################### TEST: requestAuthorizationCodeFail3 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org response_type=code&client_id=%40%211111%210008%21INVALID_VALUE&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0a6bb2a5-aaee-4b4e-b896-25b779df2c4f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 234 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:44 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "Unable to find client.", "error_description": "The client is not authorized to request an access token using this method.", "state": "0a6bb2a5-aaee-4b4e-b896-25b779df2c4f", "error": "unauthorized_client" } ####################################################### TEST: requestAuthorizationCodeFail4 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6e8e5005-2fe5-49cf-8e56-78bf37f74a48", "tls_client_auth_subject_dn": "", "registration_access_token": "d516c407-47c2-4d2a-b46c-ed9aeeca7132", "client_id": "6e8e5005-2fe5-49cf-8e56-78bf37f74a48", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1dbca467-a887-478a-aaa0-af4b16a0507a", "client_id_issued_at": 1610964765, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051165, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer d516c407-47c2-4d2a-b46c-ed9aeeca7132 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=6e8e5005-2fe5-49cf-8e56-78bf37f74a48", "tls_client_auth_subject_dn": "", "registration_access_token": "d516c407-47c2-4d2a-b46c-ed9aeeca7132", "client_id": "6e8e5005-2fe5-49cf-8e56-78bf37f74a48", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1dbca467-a887-478a-aaa0-af4b16a0507a", "client_id_issued_at": 1610964765, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051165, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org response_type=code+id_token&client_id=6e8e5005-2fe5-49cf-8e56-78bf37f74a48&scope=openid+email&redirect_uri=https%3A%2F%2Fevil.com%2FoxLicenceAdmin&nonce=286e39a7-f67a-4e3d-97c3-ebaea916c8e8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 186 Content-Type: text/plain;charset=utf-8 Date: Mon, 18 Jan 2021 10:12:45 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "error_description": "The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.", "error": "invalid_request_redirect_uri" } ####################################################### TEST: requestAuthorizationCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=0680071d-c0cb-4cef-9361-016e07df3dd0", "tls_client_auth_subject_dn": "", "registration_access_token": "6c1a310b-fc38-46cb-a4b0-8b86d2d650c2", "client_id": "0680071d-c0cb-4cef-9361-016e07df3dd0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "cf153382-02fe-4da3-a019-8fe9623f9caa", "client_id_issued_at": 1610964765, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051165, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 6c1a310b-fc38-46cb-a4b0-8b86d2d650c2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=0680071d-c0cb-4cef-9361-016e07df3dd0", "tls_client_auth_subject_dn": "", "registration_access_token": "6c1a310b-fc38-46cb-a4b0-8b86d2d650c2", "client_id": "0680071d-c0cb-4cef-9361-016e07df3dd0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "cf153382-02fe-4da3-a019-8fe9623f9caa", "client_id_issued_at": 1610964765, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051165, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0680071d-c0cb-4cef-9361-016e07df3dd0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=43ae3650-2e40-4eb4-9278-20bc867f1b0a&nonce=bc4c17bd-167e-4ba9-99b2-361e7bcd4210 10:12:45.674 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:73e794604906abf231d4b3cf017a0fefa8c9de9ae56ceead04c9e6c204ab345f.6320e893-dac3-4382-af72-d0ea921cd701 authenticateResourceOwnerAndGrantAccess: sessionId:3a96d15b-2003-43b7-90a0-f7ac21793a0b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0680071d-c0cb-4cef-9361-016e07df3dd0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=43ae3650-2e40-4eb4-9278-20bc867f1b0a&nonce=bc4c17bd-167e-4ba9-99b2-361e7bcd4210 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=190cd9b9-32ca-4e3d-bac0-ced1570f5531&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiY29kZSI6ImZkOTEzY2FhLWU4ZjEtNGIwNy1hMjQ5LTljZGVhZDg0MWIwZCIsImFtciI6WyItMSJdLCJpc3MiOiJodHRwczovL2NlLWRldjUuZ2x1dS5vcmciLCJub25jZSI6ImJjNGMxN2JkLTE2N2UtNGJhOS05OWIyLTM2MWU3YmNkNDIxMCIsInNpZCI6ImU3ZjZiYjU4LWY4NTctNDBmYi1hZjJmLTE0NTQzM2VlNDEwYiIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6IjA2ODAwNzFkLWMwY2ItNGNlZi05MzYxLTAxNmUwN2RmM2RkMCIsImFjciI6ImF1dGhfbGRhcF9zZXJ2ZXIiLCJjX2hhc2giOiJoSnItUEtobW1WN0VMMnVjMzZaa3dnIiwic19oYXNoIjoiMFJXekNjSjZ6ZVBnSDNTTDloZ0RKUSIsImF1dGhfdGltZSI6MTYxMDk2NDc2NiwiZXhwIjoxNjEwOTY4MzY2LCJncmFudCI6ImF1dGhvcml6YXRpb25fY29kZSIsImlhdCI6MTYxMDk2NDc2Nn0.phPTH0VEuY26ln6vfTIfomiHePBNmgXGps0_JuAWAsRaMm4gPRaFuex1mgAneCLA_14vTnE2HKf1RC-QZvmEZ2qsliplVmkQmyh2qXXwORbYhjw6RFkQjCVGZyzpRYK9Nqv5v39G7k9CnlvuOTkr1QWyXqkrGlvZeu_B3_ftVkC3PfyNpaIUBdfoaS1DBx4vBV6Y0hEt4sMopHbYZa1BkaX80Xqucw2QX23k1ZlBFw8wqoLWfd_2D4SWxcQKHBHGcdqYRTjHw7S08xMwmJjmKQAo6IZUwuYuwQSWgbqDZA-4_cRQ79JXC7UbYlSr4up36r87rqgUdcgtofKseX3fcQ&session_id=3a96d15b-2003-43b7-90a0-f7ac21793a0b&state=43ae3650-2e40-4eb4-9278-20bc867f1b0a&session_state=73e794604906abf231d4b3cf017a0fefa8c9de9ae56ceead04c9e6c204ab345f.6320e893-dac3-4382-af72-d0ea921cd701&sid=e7f6bb58-f857-40fb-af2f-145433ee410b ####################################################### TEST: requestAuthorizationCodeIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=01891f2a-099f-4389-8ee0-bd9ac77afeb8", "tls_client_auth_subject_dn": "", "registration_access_token": "c8d94bae-8942-4f62-8f7f-2c70ca74a701", "client_id": "01891f2a-099f-4389-8ee0-bd9ac77afeb8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8ffaf3c7-e6ce-4901-8064-57846b0fa7c7", "client_id_issued_at": 1610964767, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051167, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer c8d94bae-8942-4f62-8f7f-2c70ca74a701 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=01891f2a-099f-4389-8ee0-bd9ac77afeb8", "tls_client_auth_subject_dn": "", "registration_access_token": "c8d94bae-8942-4f62-8f7f-2c70ca74a701", "client_id": "01891f2a-099f-4389-8ee0-bd9ac77afeb8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8ffaf3c7-e6ce-4901-8064-57846b0fa7c7", "client_id_issued_at": 1610964767, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051167, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=01891f2a-099f-4389-8ee0-bd9ac77afeb8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=707a99ae-5f2c-47c9-b60c-6a5803259750&nonce=662bbf05-18dd-4bc3-ab56-9823b88616e0 10:12:47.337 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:6fe4f188a13fe796744ee3eaaa42f64e2f95191230c4db5f98d1286837951735.aaeda531-1a84-4a4a-9627-526a9cd2560a authenticateResourceOwnerAndGrantAccess: sessionId:18c0fe3e-7c72-4e03-bf74-a00f2b6933e0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=01891f2a-099f-4389-8ee0-bd9ac77afeb8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=707a99ae-5f2c-47c9-b60c-6a5803259750&nonce=662bbf05-18dd-4bc3-ab56-9823b88616e0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=8716e2f5-0b45-4b0c-bebb-74b9fc76e50b&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Fmgf2M1JUxZQAWijRVWSHrcPUSrlcEIYchhKw9NcvYpaRGitAQwwJXsHITbco1dzimpLGQvZqJfN5hxj-A3pXrY2wUkNoL8GpNT4_aa7jgX8m6vcqkxykSK4N2AJ91B61tAs7UFpy4y2Nb_Q3NRivztJ5qIE8iI4yUYE9RiNWd9oapoJ4p0taUz3OrRKQv1uzO1lIeUB-Eyt9TmVg6d_WkmvWItOZ1O4qrPZLiijVAEk9XjVuTnM-eN5oFVX68UYzWpJrZg4V6JTg0ZPytt3HARqFNloJq9OWCNMWLnbQeZnpGdNBCZ0jaaKXMSNk8VJptVPro-k47s6qpxRdnrGKg&session_id=18c0fe3e-7c72-4e03-bf74-a00f2b6933e0&state=707a99ae-5f2c-47c9-b60c-6a5803259750&session_state=6fe4f188a13fe796744ee3eaaa42f64e2f95191230c4db5f98d1286837951735.aaeda531-1a84-4a4a-9627-526a9cd2560a&sid=06e98e09-cd77-4d9e-af1d-8ab55ee41906 ####################################################### TEST: requestAuthorizationCodeNoRedirection ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=36735b67-3a3c-4a95-b651-ec17c7c8ce46", "tls_client_auth_subject_dn": "", "registration_access_token": "678d3b76-7cdd-4866-b90d-0a842f5b5dd9", "client_id": "36735b67-3a3c-4a95-b651-ec17c7c8ce46", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "6b0cdbe7-fc77-47fd-9a90-ffe56542fbfc", "client_id_issued_at": 1610964768, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051168, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 678d3b76-7cdd-4866-b90d-0a842f5b5dd9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=36735b67-3a3c-4a95-b651-ec17c7c8ce46", "tls_client_auth_subject_dn": "", "registration_access_token": "678d3b76-7cdd-4866-b90d-0a842f5b5dd9", "client_id": "36735b67-3a3c-4a95-b651-ec17c7c8ce46", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "6b0cdbe7-fc77-47fd-9a90-ffe56542fbfc", "client_id_issued_at": 1610964768, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051168, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=36735b67-3a3c-4a95-b651-ec17c7c8ce46&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=1d823b64-e715-492c-9250-95d0efad8b53 10:12:48.863 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ff22daf0e14018d80d7104ff0490f99c44b520eca7418fe280ed55372f0da5f0.82f1db0b-9846-41e8-b7df-abc14a57e88b authenticateResourceOwnerAndGrantAccess: sessionId:2f0a2f51-b5e5-4bed-b7b7-146857ff5167 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=36735b67-3a3c-4a95-b651-ec17c7c8ce46&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=1d823b64-e715-492c-9250-95d0efad8b53 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=5a5ab93d-863d-4d87-8603-9b9d151f9481&scope=address+openid+profile+email&session_id=2f0a2f51-b5e5-4bed-b7b7-146857ff5167&state=1d823b64-e715-492c-9250-95d0efad8b53&session_state=ff22daf0e14018d80d7104ff0490f99c44b520eca7418fe280ed55372f0da5f0.82f1db0b-9846-41e8-b7df-abc14a57e88b&sid=f8d1f545-b41f-4c3a-8dc0-d14eba775987 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org X-Gluu-NoRedirect: true response_type=code&client_id=36735b67-3a3c-4a95-b651-ec17c7c8ce46&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=1d823b64-e715-492c-9250-95d0efad8b53 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- ####################################################### TEST: requestAuthorizationCodeUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=f277627e-f146-4829-9e71-a9da3bd40ede", "tls_client_auth_subject_dn": "", "registration_access_token": "4786b6e9-d640-45b6-b8b9-114c6c8f18d4", "client_id": "f277627e-f146-4829-9e71-a9da3bd40ede", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ae6e0a19-c238-469f-98c6-62bc70752552", "client_id_issued_at": 1610964770, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051170, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 4786b6e9-d640-45b6-b8b9-114c6c8f18d4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:50 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=f277627e-f146-4829-9e71-a9da3bd40ede", "tls_client_auth_subject_dn": "", "registration_access_token": "4786b6e9-d640-45b6-b8b9-114c6c8f18d4", "client_id": "f277627e-f146-4829-9e71-a9da3bd40ede", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "ae6e0a19-c238-469f-98c6-62bc70752552", "client_id_issued_at": 1610964770, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051170, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=f277627e-f146-4829-9e71-a9da3bd40ede&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=547a88e8-d761-41d7-ac6c-1c7c96f14216 10:12:50.369 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:0e2210f90060af748e21cbe16fc2873dbfa2654820853edc3afe779009a3776e.03e07c60-5a36-4d8e-901b-af8aa68c5a78 authenticateResourceOwnerAndGrantAccess: sessionId:fc1ebee6-6f69-411b-ba33-d6669fac45ce ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=f277627e-f146-4829-9e71-a9da3bd40ede&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=547a88e8-d761-41d7-ac6c-1c7c96f14216 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=96840e0d-4bc6-4c5f-9c6e-b12649d9434b&scope=address+openid+profile+email&session_id=fc1ebee6-6f69-411b-ba33-d6669fac45ce&state=547a88e8-d761-41d7-ac6c-1c7c96f14216&session_state=0e2210f90060af748e21cbe16fc2873dbfa2654820853edc3afe779009a3776e.03e07c60-5a36-4d8e-901b-af8aa68c5a78&sid=7dfd8c9b-99b5-4ef6-9c9e-36a052ce7228 ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUri ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1532 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=979367b5-4836-4929-8a7e-29628cb730ac", "tls_client_auth_subject_dn": "", "registration_access_token": "a78c5370-ca4f-4228-8189-85f202008449", "client_id": "979367b5-4836-4929-8a7e-29628cb730ac", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "964cf9e0-2c3b-4942-b9e7-e30753862ff9", "client_id_issued_at": 1610964771, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://ce-dev5.gluu.org/oxauth-rp/home.htm"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051171, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=979367b5-4836-4929-8a7e-29628cb730ac&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d00d86bd-640e-4c05-b777-9714063035ce 10:12:51.704 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:21ed07bb72d9575cbf3e9f9be94421b92bfca45b6a74344262208537176efd5b.d65f6393-26d6-4215-82fc-a5193ffb81a2 authenticateResourceOwnerAndGrantAccess: sessionId:4e79b0a4-02af-44ec-94e0-3aafb3536a36 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=979367b5-4836-4929-8a7e-29628cb730ac&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d00d86bd-640e-4c05-b777-9714063035ce ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=61a14f45-d203-490f-9136-c4b4a682894e&scope=address+openid+profile+email&session_id=4e79b0a4-02af-44ec-94e0-3aafb3536a36&state=d00d86bd-640e-4c05-b777-9714063035ce&session_state=21ed07bb72d9575cbf3e9f9be94421b92bfca45b6a74344262208537176efd5b.d65f6393-26d6-4215-82fc-a5193ffb81a2&sid=16ad5c01-79c7-4740-b2d4-945a82ad7501 ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUriFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:52 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4359306f-081d-4930-be3a-9154395700f6", "tls_client_auth_subject_dn": "", "registration_access_token": "82b57b11-7739-4919-9b86-0605ed064e76", "client_id": "4359306f-081d-4930-be3a-9154395700f6", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2822187b-017f-4ca4-92e9-b703ac968280", "client_id_issued_at": 1610964772, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051172, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=4359306f-081d-4930-be3a-9154395700f6&scope=openid+profile+address+email&state=9a05bacb-5aac-4af2-9d09-d0e930f4ae56&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 239 Content-Type: text/plain;charset=utf-8 Date: Mon, 18 Jan 2021 10:12:53 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "error_description": "The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.", "state": "9a05bacb-5aac-4af2-9d09-d0e930f4ae56", "error": "invalid_request_redirect_uri" } ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUriUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "subject_type" : "public", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "client_name" : "oxAuth test app", "additional_audience" : [ ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1530 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=409a9142-79de-4a14-88c7-76e26b2639be", "tls_client_auth_subject_dn": "", "registration_access_token": "170e5312-248e-4f80-90be-726fb242056d", "client_id": "409a9142-79de-4a14-88c7-76e26b2639be", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e86c2aec-1a40-4666-9403-74bd1e999a27", "client_id_issued_at": 1610964773, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "public", "keep_client_authorization_after_expiration": false, "redirect_uris": ["https://ce-dev5.gluu.org/oxauth-rp/home.htm"], "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051173, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=409a9142-79de-4a14-88c7-76e26b2639be&scope=openid+profile+address+email&state=8b285523-df37-47a0-b8a8-f6ea092fe783&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:12:53 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=c2c863dc-8f6b-4111-982c-5898b529630c&scope=address+openid+profile+email&session_id=788e0bef-a138-48f0-b7d2-2aaff311e7bd&state=8b285523-df37-47a0-b8a8-f6ea092fe783&session_state=9082b6d09a88549f54c73d43237a31f57acd1a05944ab549d1e528d6a6e92df3.4b537ad2-9555-4f02-a25f-851b1f35e9f1&sid=1d52d3d6-be35-4cbe-ad74-226f0b1eed93 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationDenyAccessThenGrantAccess ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=44eec940-a06b-4808-87b8-82abd14be45c", "tls_client_auth_subject_dn": "", "registration_access_token": "f3b2d460-0525-44b4-87f7-2db8114b70a4", "client_id": "44eec940-a06b-4808-87b8-82abd14be45c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "f61de04a-0b3e-4d0d-920a-a1562235b91d", "client_id_issued_at": 1610964773, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051173, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndDenyAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=c5f199f4-d0dd-4d8d-9187-c6f17f42de5e&acr_values=basic 10:12:53.809 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndDenyAccess: sessionId:5de6fd31-e78e-450c-b7bd-4dd01e4103dd ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=c5f199f4-d0dd-4d8d-9187-c6f17f42de5e&acr_values=basic ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?error_description=The+resource+owner+or+authorization+server+denied+the+request.&state=c5f199f4-d0dd-4d8d-9187-c6f17f42de5e&error=access_denied authorizationRequestAndDenyAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b96a1947-34d0-40d9-9e28-cbc305736a6b&acr_values=basic&session_id=5de6fd31-e78e-450c-b7bd-4dd01e4103dd authorizationRequestAndDenyAccess: sessionState:null ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b96a1947-34d0-40d9-9e28-cbc305736a6b&acr_values=basic&session_id=5de6fd31-e78e-450c-b7bd-4dd01e4103dd ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?error_description=The+resource+owner+or+authorization+server+denied+the+request.&state=c5f199f4-d0dd-4d8d-9187-c6f17f42de5e&error=access_denied authorizationRequestAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b3e8ec83-7331-45b0-afd4-4eec8994a3f9&acr_values=basic&session_id=5de6fd31-e78e-450c-b7bd-4dd01e4103dd authorizationRequestAndGrantAccess: sessionState:3a87a09a08cc99195106bc4cff6ba23e786347458dea8d0351fdfa434b4c720f.f623b3e4-6f22-4bce-b880-020d29d63ea4 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=44eec940-a06b-4808-87b8-82abd14be45c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b3e8ec83-7331-45b0-afd4-4eec8994a3f9&acr_values=basic&session_id=5de6fd31-e78e-450c-b7bd-4dd01e4103dd ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=8f6aaf27-c543-458f-9628-60299b45dd42&acr_values=basic&scope=address+openid+profile+email&session_id=5de6fd31-e78e-450c-b7bd-4dd01e4103dd&state=c5f199f4-d0dd-4d8d-9187-c6f17f42de5e&session_state=3a87a09a08cc99195106bc4cff6ba23e786347458dea8d0351fdfa434b4c720f.f623b3e4-6f22-4bce-b880-020d29d63ea4&sid=78e07b74-c61c-45fd-905a-77f364965ffc ####################################################### TEST: requestAuthorizationIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e6000f49-b259-4342-a3d7-2e1b5ed0e9a3", "tls_client_auth_subject_dn": "", "registration_access_token": "3c1ba5e3-69ac-4d74-895c-5d311ba22a35", "client_id": "e6000f49-b259-4342-a3d7-2e1b5ed0e9a3", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7a80a87a-4dfe-4697-a3bf-df1c10adebda", "client_id_issued_at": 1610964776, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051176, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 3c1ba5e3-69ac-4d74-895c-5d311ba22a35 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e6000f49-b259-4342-a3d7-2e1b5ed0e9a3", "tls_client_auth_subject_dn": "", "registration_access_token": "3c1ba5e3-69ac-4d74-895c-5d311ba22a35", "client_id": "e6000f49-b259-4342-a3d7-2e1b5ed0e9a3", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "7a80a87a-4dfe-4697-a3bf-df1c10adebda", "client_id_issued_at": 1610964776, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051176, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=e6000f49-b259-4342-a3d7-2e1b5ed0e9a3&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2aa03262-6ad4-430b-a026-c4b484c6b5a3&nonce=b2614221-c349-4345-b3c2-10c38283b997 10:12:56.587 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:5b18a0a0ac006d085ce86f09ffd821bde74626388598cc93f18fb561d4b92c10.e8b7332d-3212-4fd0-8363-f48c40f82ab4 authenticateResourceOwnerAndGrantAccess: sessionId:8741abe4-0eb3-4bdb-812d-5056e19e71cf ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=e6000f49-b259-4342-a3d7-2e1b5ed0e9a3&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2aa03262-6ad4-430b-a026-c4b484c6b5a3&nonce=b2614221-c349-4345-b3c2-10c38283b997 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJkNVFNSF9LLU56LWVXTVU4UVBsUUp1TUdwRTQwNEFST0o5dk5GSzNvVTc4IiwiY29kZSI6ImE5NDdjZGExLTFjNjYtNGFlMS1iNmM0LTdjOTcwY2JiMjI2MSIsImFtciI6WyItMSJdLCJpc3MiOiJodHRwczovL2NlLWRldjUuZ2x1dS5vcmciLCJub25jZSI6ImIyNjE0MjIxLWMzNDktNDM0NS1iM2MyLTEwYzM4MjgzYjk5NyIsInNpZCI6ImM3YTIzODMwLWFjZmMtNGE2Mi1hNDJmLTMwZDk2OTdhMjYwYSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImU2MDAwZjQ5LWIyNTktNDM0Mi1hM2Q3LTJlMWI1ZWQwZTlhMyIsImFjciI6ImF1dGhfbGRhcF9zZXJ2ZXIiLCJzX2hhc2giOiJkekt1bmRZNjdLLWxCck9hWHNVNlJ3IiwiYXV0aF90aW1lIjoxNjEwOTY0Nzc3LCJleHAiOjE2MTA5NjgzNzcsImdyYW50IjoiaW1wbGljaXQiLCJpYXQiOjE2MTA5NjQ3Nzd9.N3tA77QCVf4OReZqewyaC6qN_F3RNyC_KhTiyr0pMHBsF398YpZdwItDuNASFNBjUra6P3k5RKTDNVCofFX4k9ECfNXlZTFiMaorE0i6Oz8oNtYvf_EOn3uS4s4Wt1NPHAR9vISGFkhAYM6pkkscJz_7m2eu2cQjZf45-LLU5EJ65f6DoWx47ilJQYZJCzEMTci4Eah7oFosa5CAJRES4XdaVhQR5FI1zRcoV28Tyd-WdYyg4gjHL325LeEJfucjg9UGC5uxDBwIpgRzTSWwMQ1nvJhdtLpSi_zAxy6daxJvXt6-lyHVmm5YQr38aRv76nyPZjIBakM-n4UCRRsrBg&session_id=8741abe4-0eb3-4bdb-812d-5056e19e71cf&state=2aa03262-6ad4-430b-a026-c4b484c6b5a3&session_state=5b18a0a0ac006d085ce86f09ffd821bde74626388598cc93f18fb561d4b92c10.e8b7332d-3212-4fd0-8363-f48c40f82ab4&sid=c7a23830-acfc-4a62-a42f-30d9697a260a ####################################################### TEST: requestAuthorizationIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=77274b76-dfbc-4fc3-beda-8b02eebfeffe", "tls_client_auth_subject_dn": "", "registration_access_token": "2776715d-f730-4324-b1f4-6d99d1bba847", "client_id": "77274b76-dfbc-4fc3-beda-8b02eebfeffe", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "158361ba-7eb5-47db-90bf-0a57b78f2a20", "client_id_issued_at": 1610964777, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051177, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 2776715d-f730-4324-b1f4-6d99d1bba847 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=77274b76-dfbc-4fc3-beda-8b02eebfeffe", "tls_client_auth_subject_dn": "", "registration_access_token": "2776715d-f730-4324-b1f4-6d99d1bba847", "client_id": "77274b76-dfbc-4fc3-beda-8b02eebfeffe", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "158361ba-7eb5-47db-90bf-0a57b78f2a20", "client_id_issued_at": 1610964777, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051177, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=77274b76-dfbc-4fc3-beda-8b02eebfeffe&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4aa36ccd-db8a-4f17-9d3d-3eed476ddff1&nonce=5471beb1-0116-4767-aa87-13fc40396dd8 10:12:58.087 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:6899c2e761843f3d8d0f59f31112a0a83faf195d7e131478cde4a3a55cbe22f2.f96e379c-8bd7-403a-ba55-b178209d99ca authenticateResourceOwnerAndGrantAccess: sessionId:d33266a2-861c-4cb5-9ce9-9e4c544de526 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=77274b76-dfbc-4fc3-beda-8b02eebfeffe&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=4aa36ccd-db8a-4f17-9d3d-3eed476ddff1&nonce=5471beb1-0116-4767-aa87-13fc40396dd8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.c34FyRtTBecdr4y7GdGb-3mC3_Bhqu_xyDSdpAF6olTXo9bfsUZquXoYUGNjpgMO2vSK3Tm-O_Ar3W69fF1HvkiKS-lRLafX2tgsdpi4QyzZwPn7DUidcKmO5aclTdvMtt8r3iHsmExtZIuIz0z3XuRV2bLxMoA5tOJEw82EmmqjbuUcgZ3-SD_9TWaPLQJOOB7WpbuozfPo6YqFLGxF1cJhLI4JsXOuAl1I4FuOqXk4Uae9bu60b5R80F7toCPaLWuvAnozC5Fx-5HF97gILPoo027YDHmA8gFzmz6uTpXQaeKibKyZvo807q3bc3h4Hd0h82euGseRxhflzRi-Xw&session_id=d33266a2-861c-4cb5-9ce9-9e4c544de526&state=4aa36ccd-db8a-4f17-9d3d-3eed476ddff1&session_state=6899c2e761843f3d8d0f59f31112a0a83faf195d7e131478cde4a3a55cbe22f2.f96e379c-8bd7-403a-ba55-b178209d99ca&sid=8754f3d4-3f01-4d22-a9ad-4a521d299e90 ####################################################### TEST: requestAuthorizationObjectUILocales ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:12:59 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=16d68490-d330-495b-9132-2e85496c524d", "tls_client_auth_subject_dn": "", "registration_access_token": "3b806e09-e84b-440a-b592-c486d41c7080", "client_id": "16d68490-d330-495b-9132-2e85496c524d", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "fdfb0c05-c0ff-49ce-8997-a5220f4801a9", "client_id_issued_at": 1610964779, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051179, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=16d68490-d330-495b-9132-2e85496c524d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9d6aa8f-3314-4c30-a878-453f45255b92&nonce=6a17c288-16e9-43cf-83a9-0a5dffa4941c&ui_locales=es&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.hr7SlJH2_YBWBrY8s_NI1JhjAmMwqZRYV0Vo62ajdyM 10:12:59.520 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a6802678a600e6d1633dbd5e967b9ee77a4f7f8b39dcc3f97984e37888270c24.d462e3a7-55ac-40cd-b9f6-026814ebf3b8 authenticateResourceOwnerAndGrantAccess: sessionId:c3d420c0-033c-44ca-85a0-1aa191797a73 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=16d68490-d330-495b-9132-2e85496c524d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9d6aa8f-3314-4c30-a878-453f45255b92&nonce=6a17c288-16e9-43cf-83a9-0a5dffa4941c&ui_locales=es&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.hr7SlJH2_YBWBrY8s_NI1JhjAmMwqZRYV0Vo62ajdyM ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=0e6438f4-0f4c-4937-948f-2973f0816894&acr_values=basic&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Ym7JGz6b737UpnKXfk1TCb4V7WCSltTNOUN_esF6r_JNPcQNcJkYYVvDdmEsyggVDZrp15MJmK1a8DEFd3EtlDwT-rluW2sosyvJV5QMSYBggEBUB3G4t7yyZzBY-TR6FTdXIjeGFjnP2fMxg5J2a_2iFf0dO6D3XZb7Z-9h_7JKXTFLLEjQFW-G5PbyEydhI7iUHXW3czKvGbQ8Apm14m6kM9JRmJhpFYuVsUbF791b1-rKbrV6oB_w5SVeN0DOSZMQLrqPiWcDcAnnmATHs5ft8pEkzYeuUdlHKRUx8cJCHPfl5MFq2gb_bzpQ7t8Cz5tMKlNh0NvdZo6-06hKWA&session_id=c3d420c0-033c-44ca-85a0-1aa191797a73&state=f9d6aa8f-3314-4c30-a878-453f45255b92&token_type=bearer&session_state=a6802678a600e6d1633dbd5e967b9ee77a4f7f8b39dcc3f97984e37888270c24.d462e3a7-55ac-40cd-b9f6-026814ebf3b8&expires_in=299&sid=aec6ec43-aeac-4bb8-adbd-c33ffa4c3f06 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 0e6438f4-0f4c-4937-948f-2973f0816894 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 609 Content-Type: application/json;charset=utf-8 Date: Mon, 18 Jan 2021 10:13:00 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"d5QMH_K-Nz-eWMU8QPlQJuMGpE404AROJ9vNFK3oU78","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"19830106010101.253Z","email_verified":"true","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1604952049,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"} ####################################################### TEST: requestAuthorizationPromptConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b25cc16e-f269-4534-95c6-38dbee425b5c", "tls_client_auth_subject_dn": "", "registration_access_token": "9bbf4785-26fd-4126-8e47-dd70be266648", "client_id": "b25cc16e-f269-4534-95c6-38dbee425b5c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "f91f4e3c-f3fe-4712-92d0-4b2fa3778920", "client_id_issued_at": 1610964781, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051181, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 9bbf4785-26fd-4126-8e47-dd70be266648 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b25cc16e-f269-4534-95c6-38dbee425b5c", "tls_client_auth_subject_dn": "", "registration_access_token": "9bbf4785-26fd-4126-8e47-dd70be266648", "client_id": "b25cc16e-f269-4534-95c6-38dbee425b5c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "f91f4e3c-f3fe-4712-92d0-4b2fa3778920", "client_id_issued_at": 1610964781, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051181, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=b25cc16e-f269-4534-95c6-38dbee425b5c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3089cc87-b751-49a0-a56e-3d75e584a576&prompt=consent 10:13:01.532 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:b97fcf4a69e96a0263a1c0360965990701bbd15f456e64bb6d8b4a9e657956a1.16b44b2f-64a5-4c8a-9fd9-6ee8c57865ee authenticateResourceOwnerAndGrantAccess: sessionId:72512fd3-4b40-4a0d-92f3-bf2353fbfa11 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=b25cc16e-f269-4534-95c6-38dbee425b5c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3089cc87-b751-49a0-a56e-3d75e584a576&prompt=consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=cae32a90-6fd4-47a7-a99b-77027d75696d&scope=address+openid+profile+email&session_id=72512fd3-4b40-4a0d-92f3-bf2353fbfa11&state=3089cc87-b751-49a0-a56e-3d75e584a576&session_state=b97fcf4a69e96a0263a1c0360965990701bbd15f456e64bb6d8b4a9e657956a1.16b44b2f-64a5-4c8a-9fd9-6ee8c57865ee&sid=891ae52a-809a-42d1-b73c-32e893a19978 ####################################################### TEST: requestAuthorizationPromptConsentTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:02 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e59a7b4a-5766-48df-b512-e18da28325eb", "tls_client_auth_subject_dn": "", "registration_access_token": "9e0ff017-fa07-4cfb-9f08-263c169a9e2b", "client_id": "e59a7b4a-5766-48df-b512-e18da28325eb", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "46187444-a56a-4b43-bdf2-c49eeb0e0174", "client_id_issued_at": 1610964782, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051182, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 9e0ff017-fa07-4cfb-9f08-263c169a9e2b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:02 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=e59a7b4a-5766-48df-b512-e18da28325eb", "tls_client_auth_subject_dn": "", "registration_access_token": "9e0ff017-fa07-4cfb-9f08-263c169a9e2b", "client_id": "e59a7b4a-5766-48df-b512-e18da28325eb", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "46187444-a56a-4b43-bdf2-c49eeb0e0174", "client_id_issued_at": 1610964782, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051182, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=e59a7b4a-5766-48df-b512-e18da28325eb&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0a7fa3e7-b61d-4bf4-9878-0f1fb4ce2df3&prompt=consent 10:13:03.208 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8a8ecbddb27a0dd22f148406b479c8a84fb6a7a4a16830a469d057ac0f574caf.d0c16ec4-9815-43b2-b166-204df8a311b0 authenticateResourceOwnerAndGrantAccess: sessionId:8b7f4b10-ccad-4442-9fdd-d98d8ab89a1c ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=e59a7b4a-5766-48df-b512-e18da28325eb&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0a7fa3e7-b61d-4bf4-9878-0f1fb4ce2df3&prompt=consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=de503cf2-8952-4fc1-86dc-cc562f69cfa9&scope=address+openid+profile+email&session_id=8b7f4b10-ccad-4442-9fdd-d98d8ab89a1c&state=0a7fa3e7-b61d-4bf4-9878-0f1fb4ce2df3&session_state=8a8ecbddb27a0dd22f148406b479c8a84fb6a7a4a16830a469d057ac0f574caf.d0c16ec4-9815-43b2-b166-204df8a311b0&sid=7b056832-9a7d-4236-b000-7538abf0251b ####################################################### TEST: requestAuthorizationPromptLogin ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=056be3be-2127-4a05-bc6f-fcefb10a89bf", "tls_client_auth_subject_dn": "", "registration_access_token": "228ff910-60f3-45e5-b5d6-8ca6acc92e35", "client_id": "056be3be-2127-4a05-bc6f-fcefb10a89bf", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "05a19da2-eebb-4f3d-baf7-5a8edd19e892", "client_id_issued_at": 1610964784, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051184, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 228ff910-60f3-45e5-b5d6-8ca6acc92e35 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=056be3be-2127-4a05-bc6f-fcefb10a89bf", "tls_client_auth_subject_dn": "", "registration_access_token": "228ff910-60f3-45e5-b5d6-8ca6acc92e35", "client_id": "056be3be-2127-4a05-bc6f-fcefb10a89bf", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "05a19da2-eebb-4f3d-baf7-5a8edd19e892", "client_id_issued_at": 1610964784, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051184, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=056be3be-2127-4a05-bc6f-fcefb10a89bf&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=77b17a7c-5e95-4397-b898-de39e6d8cb25&prompt=login 10:13:05.140 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:91bac77e885bbf26e025a9c58d24b4d9f487e4cc3741c79378c809220d48077f.541f7f47-d72d-4ade-8094-4be0a57648f2 authenticateResourceOwnerAndGrantAccess: sessionId:518dbb9c-9a07-4edb-938a-2c52fbe378a0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=056be3be-2127-4a05-bc6f-fcefb10a89bf&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=77b17a7c-5e95-4397-b898-de39e6d8cb25&prompt=login ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=d081c2f4-2266-4531-aca6-e9ba284f885f&scope=address+openid+profile+email&session_id=518dbb9c-9a07-4edb-938a-2c52fbe378a0&state=77b17a7c-5e95-4397-b898-de39e6d8cb25&session_state=91bac77e885bbf26e025a9c58d24b4d9f487e4cc3741c79378c809220d48077f.541f7f47-d72d-4ade-8094-4be0a57648f2&sid=840916c1-184e-41cf-aff8-04f340b13783 ####################################################### TEST: requestAuthorizationPromptLoginConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=442de5de-5a49-46e0-a9e7-ca2cae3962e2", "tls_client_auth_subject_dn": "", "registration_access_token": "f321af39-398b-4d23-9269-75c867569173", "client_id": "442de5de-5a49-46e0-a9e7-ca2cae3962e2", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "87a7d718-5e2e-435f-bcad-b0fedf9eb4ce", "client_id_issued_at": 1610964786, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051186, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer f321af39-398b-4d23-9269-75c867569173 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=442de5de-5a49-46e0-a9e7-ca2cae3962e2", "tls_client_auth_subject_dn": "", "registration_access_token": "f321af39-398b-4d23-9269-75c867569173", "client_id": "442de5de-5a49-46e0-a9e7-ca2cae3962e2", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "87a7d718-5e2e-435f-bcad-b0fedf9eb4ce", "client_id_issued_at": 1610964786, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051186, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=442de5de-5a49-46e0-a9e7-ca2cae3962e2&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3a6ed6b9-8e70-4703-a747-d6b36750bd86&prompt=login+consent 10:13:06.648 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ef74f38de3ea762add9f9623652b1154a61841cba7bef3b8ece6ab68148ca8fd.3dc287d0-5db3-47b1-a82e-604494542732 authenticateResourceOwnerAndGrantAccess: sessionId:cd32718e-0b5d-464f-9832-f8ecc8652875 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=442de5de-5a49-46e0-a9e7-ca2cae3962e2&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3a6ed6b9-8e70-4703-a747-d6b36750bd86&prompt=login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=a382ebed-f722-4742-801f-7fb6c1ba8722&scope=address+openid+profile+email&session_id=cd32718e-0b5d-464f-9832-f8ecc8652875&state=3a6ed6b9-8e70-4703-a747-d6b36750bd86&session_state=ef74f38de3ea762add9f9623652b1154a61841cba7bef3b8ece6ab68148ca8fd.3dc287d0-5db3-47b1-a82e-604494542732&sid=04fe1ee4-bf3a-40ba-81ee-c9b02e54d268 ####################################################### TEST: requestAuthorizationPromptLoginConsentTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:07 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=3d065859-e249-46bb-96ca-db107645b546", "tls_client_auth_subject_dn": "", "registration_access_token": "5e95cae8-5713-40e2-b348-5308d52d995e", "client_id": "3d065859-e249-46bb-96ca-db107645b546", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "23cb8b97-19f2-44c6-95c5-4923db175e4d", "client_id_issued_at": 1610964787, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051187, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 5e95cae8-5713-40e2-b348-5308d52d995e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:08 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=3d065859-e249-46bb-96ca-db107645b546", "tls_client_auth_subject_dn": "", "registration_access_token": "5e95cae8-5713-40e2-b348-5308d52d995e", "client_id": "3d065859-e249-46bb-96ca-db107645b546", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "23cb8b97-19f2-44c6-95c5-4923db175e4d", "client_id_issued_at": 1610964787, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051187, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=3d065859-e249-46bb-96ca-db107645b546&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3be5ff9d-0405-4b2c-891a-ac4250caa754&prompt=login+consent 10:13:08.343 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:00312cdaec44ef722b037055508a92691d6d54369d82d1e2bf22f77de2070cd6.56a82a6e-44ad-4e70-962b-bd4453739836 authenticateResourceOwnerAndGrantAccess: sessionId:4a0cb7e0-8cca-4144-9aad-23810539c815 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=3d065859-e249-46bb-96ca-db107645b546&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3be5ff9d-0405-4b2c-891a-ac4250caa754&prompt=login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=59eb47be-e771-4a63-8dc5-9c358ff60895&scope=address+openid+profile+email&session_id=4a0cb7e0-8cca-4144-9aad-23810539c815&state=3be5ff9d-0405-4b2c-891a-ac4250caa754&session_state=00312cdaec44ef722b037055508a92691d6d54369d82d1e2bf22f77de2070cd6.56a82a6e-44ad-4e70-962b-bd4453739836&sid=05d5202f-5b98-4e63-821b-3a20fd286412 ####################################################### TEST: requestAuthorizationPromptNoneFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=1beb735a-3f31-4b56-a466-2a66baae4517", "tls_client_auth_subject_dn": "", "registration_access_token": "005d6fb8-e2b2-44dd-90af-41a5462905a0", "client_id": "1beb735a-3f31-4b56-a466-2a66baae4517", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "5f7a6cd4-a0a5-4f5b-943f-798303f52544", "client_id_issued_at": 1610964789, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051189, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 005d6fb8-e2b2-44dd-90af-41a5462905a0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=1beb735a-3f31-4b56-a466-2a66baae4517", "tls_client_auth_subject_dn": "", "registration_access_token": "005d6fb8-e2b2-44dd-90af-41a5462905a0", "client_id": "1beb735a-3f31-4b56-a466-2a66baae4517", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "5f7a6cd4-a0a5-4f5b-943f-798303f52544", "client_id_issued_at": 1610964789, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051189, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org response_type=code&client_id=1beb735a-3f31-4b56-a466-2a66baae4517&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=3eac9650-4e64-4754-9214-596bde49d988&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?error_description=The+Authorization+Server+requires+End-User+authentication.+This+error+MAY+be+returned+when+the+prompt+parameter+in+the+Authorization+Request+is+set+to+none+to+request+that+the+Authorization+Server+should+not+display+any+user+interfaces+to+the+End-User%2C+but+the+Authorization+Request+cannot+be+completed+without+displaying+a+user+interface+for+user+authentication.&state=3eac9650-4e64-4754-9214-596bde49d988&error=login_required Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationPromptLoginConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=9d24ba5e-7fca-42b2-bf15-86717ee85aa8", "tls_client_auth_subject_dn": "", "registration_access_token": "094f7878-2968-4c71-9af2-416187d35d72", "client_id": "9d24ba5e-7fca-42b2-bf15-86717ee85aa8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8a738bd0-0212-4b5e-9db4-f119f4a27e73", "client_id_issued_at": 1610964790, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051190, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 094f7878-2968-4c71-9af2-416187d35d72 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=9d24ba5e-7fca-42b2-bf15-86717ee85aa8", "tls_client_auth_subject_dn": "", "registration_access_token": "094f7878-2968-4c71-9af2-416187d35d72", "client_id": "9d24ba5e-7fca-42b2-bf15-86717ee85aa8", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "8a738bd0-0212-4b5e-9db4-f119f4a27e73", "client_id_issued_at": 1610964790, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051190, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=9d24ba5e-7fca-42b2-bf15-86717ee85aa8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=5a1c1cff-9318-4289-8c37-625742beaac5&prompt=none+login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=5a1c1cff-9318-4289-8c37-625742beaac5&error=invalid_request Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationPromptNoneTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "oxAuthTrustedClient" : "true", "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4ef9de1f-50ce-4ed8-94ae-69e966d67144", "tls_client_auth_subject_dn": "", "registration_access_token": "a2726f60-ac02-474c-963f-e516e53ab296", "client_id": "4ef9de1f-50ce-4ed8-94ae-69e966d67144", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1ea22f38-970a-4344-80aa-cbae205d5063", "client_id_issued_at": 1610964790, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051190, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer a2726f60-ac02-474c-963f-e516e53ab296 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4ef9de1f-50ce-4ed8-94ae-69e966d67144", "tls_client_auth_subject_dn": "", "registration_access_token": "a2726f60-ac02-474c-963f-e516e53ab296", "client_id": "4ef9de1f-50ce-4ed8-94ae-69e966d67144", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1ea22f38-970a-4344-80aa-cbae205d5063", "client_id_issued_at": 1610964790, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051190, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=4ef9de1f-50ce-4ed8-94ae-69e966d67144&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=51872807-2ff8-447c-8b3d-9392b229d47c&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:13:10 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm?code=4059873b-63d2-405d-8f61-ad12f2028709&scope=address+openid+profile+email&session_id=f4c83325-498b-4f58-a83c-b4be7554ad15&state=51872807-2ff8-447c-8b3d-9392b229d47c&session_state=87c82d8c184cdbcb3861fdd6f581910ce000ca94fc1827b5216bc2cfb02cd8a7.dc524204-517e-4c2a-ade5-7dd41e4c44d1&sid=ba7f8dd8-d47f-4b18-8e1c-94e6573bd69e Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:11 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=72cf3765-4d1a-4ba9-ada3-d0015d8588fd", "tls_client_auth_subject_dn": "", "registration_access_token": "9a5d6fc5-ef4b-49b9-aa8b-36f94e4563bc", "client_id": "72cf3765-4d1a-4ba9-ada3-d0015d8588fd", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "4f1bc926-cfec-4dab-85ab-a5b7aee7d5f3", "client_id_issued_at": 1610964791, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051191, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 9a5d6fc5-ef4b-49b9-aa8b-36f94e4563bc ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:11 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=72cf3765-4d1a-4ba9-ada3-d0015d8588fd", "tls_client_auth_subject_dn": "", "registration_access_token": "9a5d6fc5-ef4b-49b9-aa8b-36f94e4563bc", "client_id": "72cf3765-4d1a-4ba9-ada3-d0015d8588fd", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "4f1bc926-cfec-4dab-85ab-a5b7aee7d5f3", "client_id_issued_at": 1610964791, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051191, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=72cf3765-4d1a-4ba9-ada3-d0015d8588fd&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0405fe0b-c816-4d21-8af6-44844dd302b8&nonce=507e815d-88d0-4971-b416-c785bf1014da 10:13:11.545 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:0e25d6332d49767acfb9bf9edb0a2b9a501ef2b86a20e04721135a363c525256.6ee858ba-c507-4106-ab1a-d647a62e9023 authenticateResourceOwnerAndGrantAccess: sessionId:7156f988-68cb-489f-81c0-b470b805031b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=72cf3765-4d1a-4ba9-ada3-d0015d8588fd&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=0405fe0b-c816-4d21-8af6-44844dd302b8&nonce=507e815d-88d0-4971-b416-c785bf1014da ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=f6bd7c67-9a48-47d6-8e32-3d4551b83cb8&scope=address+openid+profile+email&session_id=7156f988-68cb-489f-81c0-b470b805031b&state=0405fe0b-c816-4d21-8af6-44844dd302b8&token_type=bearer&session_state=0e25d6332d49767acfb9bf9edb0a2b9a501ef2b86a20e04721135a363c525256.6ee858ba-c507-4106-ab1a-d647a62e9023&expires_in=299&sid=37cb7229-7d34-470d-8c3a-b0932b40e4c5 ####################################################### TEST: requestAuthorizationTokenCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:12 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=1502cfe8-c1bd-40c8-8657-7c1c0194181c", "tls_client_auth_subject_dn": "", "registration_access_token": "f5cbdb11-a186-441f-912d-27dad90d351b", "client_id": "1502cfe8-c1bd-40c8-8657-7c1c0194181c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "20ba8f85-a6b9-45d9-a91d-b8eedd1fff54", "client_id_issued_at": 1610964793, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051193, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer f5cbdb11-a186-441f-912d-27dad90d351b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=1502cfe8-c1bd-40c8-8657-7c1c0194181c", "tls_client_auth_subject_dn": "", "registration_access_token": "f5cbdb11-a186-441f-912d-27dad90d351b", "client_id": "1502cfe8-c1bd-40c8-8657-7c1c0194181c", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "20ba8f85-a6b9-45d9-a91d-b8eedd1fff54", "client_id_issued_at": 1610964793, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051193, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=1502cfe8-c1bd-40c8-8657-7c1c0194181c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=01b9369a-be8a-4c7c-8e95-c613f9dc4cc4&nonce=557f8f72-905d-44c4-a0fe-b6b74bc12b42 10:13:13.422 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:58f01d2c6641b8bebf922d3a008de1fea84376e12cce1fad30f0e4566f91703e.b6aa45e8-2e10-44a6-bcd7-e023ced2bd51 authenticateResourceOwnerAndGrantAccess: sessionId:cc1f9d9a-9b11-42ec-9306-85460f1f6def ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=1502cfe8-c1bd-40c8-8657-7c1c0194181c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=01b9369a-be8a-4c7c-8e95-c613f9dc4cc4&nonce=557f8f72-905d-44c4-a0fe-b6b74bc12b42 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=d37234e2-4528-4bad-9c12-b31aec7a9ed1&code=c768e43e-ac28-444d-8580-b85963e6ee62&scope=address+openid+profile+email&session_id=cc1f9d9a-9b11-42ec-9306-85460f1f6def&state=01b9369a-be8a-4c7c-8e95-c613f9dc4cc4&token_type=bearer&session_state=58f01d2c6641b8bebf922d3a008de1fea84376e12cce1fad30f0e4566f91703e.b6aa45e8-2e10-44a6-bcd7-e023ced2bd51&expires_in=299&sid=f01bb733-9b21-4bfe-a90e-0afbad43c92a ####################################################### TEST: requestAuthorizationTokenCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4bb9ec6d-e3e8-46bb-8074-bfd95db1440b", "tls_client_auth_subject_dn": "", "registration_access_token": "42a970a5-ad28-4542-a187-a81a41e0562f", "client_id": "4bb9ec6d-e3e8-46bb-8074-bfd95db1440b", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2d0e1526-3271-4e69-b105-aca5f9342840", "client_id_issued_at": 1610964794, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051194, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 42a970a5-ad28-4542-a187-a81a41e0562f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:15 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=4bb9ec6d-e3e8-46bb-8074-bfd95db1440b", "tls_client_auth_subject_dn": "", "registration_access_token": "42a970a5-ad28-4542-a187-a81a41e0562f", "client_id": "4bb9ec6d-e3e8-46bb-8074-bfd95db1440b", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2d0e1526-3271-4e69-b105-aca5f9342840", "client_id_issued_at": 1610964794, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051194, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=4bb9ec6d-e3e8-46bb-8074-bfd95db1440b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=814430de-7e8b-4e8c-a840-acbae49cb40d&nonce=c7cad281-8c38-4833-8a54-ef9bbf091736 10:13:15.317 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:3e806621b6ec46ab42a5955bc4abda2f18baba8ef7697080635c3fad30532bd4.4e2db71e-8896-49d1-9086-32926820f112 authenticateResourceOwnerAndGrantAccess: sessionId:37272ba7-c5e3-48d3-9483-17150c78ceb3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=4bb9ec6d-e3e8-46bb-8074-bfd95db1440b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=814430de-7e8b-4e8c-a840-acbae49cb40d&nonce=c7cad281-8c38-4833-8a54-ef9bbf091736 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=caf9b55c-683c-4e5c-b1aa-ef310a1f255f&code=ac12acad-520a-43a0-a581-044316d5ed97&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.bOmBvaAXwZ2XoQaP11N9mqHrtMlGbzlOMrfoZxfy-jG1rFPYxJRkiOw8Cu5ScuVe_mcfABb7XPHtY25r2_QntbovlHaqVn12KC-HR8yZiKJwCI_vSGB4qcWcFJXJtzlHJd2ZF8c3A0fH4p9hy8e8aE2NdyMN_1_VltCf_Bu7HoWlS308TDqbbgCYAiB7ET-we172wmJhhiFdAIBDtOhjulWm1Es3vxYw7SuX_pAxQweUsa4zdE2aPW5R54vcSX15EWub4jvhYv9bqjt-99yrhLl--A2D1wCGxehzhUDuivB84WjnybBeQ_FV7sZzaIK8iKMYoF1haA1yo4cHt8iATw&session_id=37272ba7-c5e3-48d3-9483-17150c78ceb3&state=814430de-7e8b-4e8c-a840-acbae49cb40d&token_type=bearer&session_state=3e806621b6ec46ab42a5955bc4abda2f18baba8ef7697080635c3fad30532bd4.4e2db71e-8896-49d1-9086-32926820f112&expires_in=299&sid=2d80e420-dd59-4485-b076-b4e891fac34f ####################################################### TEST: requestAuthorizationTokenCodeIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:16 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=de1d34b6-09e9-4b47-b64d-5218bcb9dca0", "tls_client_auth_subject_dn": "", "registration_access_token": "f5268d5e-24b3-4ac4-9306-0e01509a3c73", "client_id": "de1d34b6-09e9-4b47-b64d-5218bcb9dca0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "38d4ada5-59f4-4a1d-aa47-32996a551700", "client_id_issued_at": 1610964796, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051196, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer f5268d5e-24b3-4ac4-9306-0e01509a3c73 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:17 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=de1d34b6-09e9-4b47-b64d-5218bcb9dca0", "tls_client_auth_subject_dn": "", "registration_access_token": "f5268d5e-24b3-4ac4-9306-0e01509a3c73", "client_id": "de1d34b6-09e9-4b47-b64d-5218bcb9dca0", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "38d4ada5-59f4-4a1d-aa47-32996a551700", "client_id_issued_at": 1610964796, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051196, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=de1d34b6-09e9-4b47-b64d-5218bcb9dca0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=783c7871-2c5a-41af-9a17-f7ddc76a1e24&nonce=81f9e66b-c23d-4849-988d-913aeae6c083 10:13:17.271 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ca5beaef4272c6b432ab7e00163474ff71008ffa1d76d4727be0f4a39df46b41.d4d71744-2943-406e-a9ce-0aa9eeff9552 authenticateResourceOwnerAndGrantAccess: sessionId:767cd18b-c5a3-447a-b41b-27e687150924 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=de1d34b6-09e9-4b47-b64d-5218bcb9dca0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=783c7871-2c5a-41af-9a17-f7ddc76a1e24&nonce=81f9e66b-c23d-4849-988d-913aeae6c083 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=5631e5d0-25dd-410b-abe1-9da2d99b79f3&code=82b6fd46-624a-4118-a46f-828f65f8a7df&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.gwsX0-OnM0_vh77uIBqn7R1oJUulXG_YctTkNuDdWm8W_fL_tW0Atk0xQGIBxpvtwrrHnrb0e7w_4sj_033RIv2uQPX98eyY71CU7WH2W4Ww2zT421coJb0YEyHyESFMnMOHhJ5wXlvOrJFCzvxpVXUn4ZJR4mqAH-M1CT1KRczZvKWHQjtE1xIHJfcw24Sl0MIot9Hyr8w39qucGjXU8Wd0ah7d5YeMFXVHmo2Ofmmoys5mupaIvDa9NPgDZeYccjCUnT-6GDerJC5zpJNxoN6DkyugEzJR9715AT1SdTiMjiSjs-eCqNNjdfDkL1t2SlUe0l3AdBRB7W8DVyXdNw&session_id=767cd18b-c5a3-447a-b41b-27e687150924&state=783c7871-2c5a-41af-9a17-f7ddc76a1e24&token_type=bearer&session_state=ca5beaef4272c6b432ab7e00163474ff71008ffa1d76d4727be0f4a39df46b41.d4d71744-2943-406e-a9ce-0aa9eeff9552&expires_in=299&sid=e856e8c9-2e86-41f3-a992-185a1820ce60 ####################################################### TEST: requestAuthorizationTokenCodeUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:18 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=c6ed4b65-a67e-4492-9040-ab42185100fc", "tls_client_auth_subject_dn": "", "registration_access_token": "e7fe1724-15fd-4c81-826b-d85364e39c11", "client_id": "c6ed4b65-a67e-4492-9040-ab42185100fc", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1fc0dc60-2339-4a31-812a-dae845d51e71", "client_id_issued_at": 1610964798, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051198, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer e7fe1724-15fd-4c81-826b-d85364e39c11 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1840 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:18 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=c6ed4b65-a67e-4492-9040-ab42185100fc", "tls_client_auth_subject_dn": "", "registration_access_token": "e7fe1724-15fd-4c81-826b-d85364e39c11", "client_id": "c6ed4b65-a67e-4492-9040-ab42185100fc", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "1fc0dc60-2339-4a31-812a-dae845d51e71", "client_id_issued_at": 1610964798, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051198, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=c6ed4b65-a67e-4492-9040-ab42185100fc&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=9390f35d-17e5-4d69-b71b-6e83b5776ce5&nonce=1f01c626-fadd-4b5e-a25c-5d6243b8b6a9 10:13:19.042 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8251369971b72f0dc54d14cd1e3ee80ec146ece2ed47121911dbe745976bcffd.dc5b8563-e6d1-4a7a-b967-b8017b8bc479 authenticateResourceOwnerAndGrantAccess: sessionId:06902def-465b-4a34-96bf-4791f17ae4d0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=c6ed4b65-a67e-4492-9040-ab42185100fc&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=9390f35d-17e5-4d69-b71b-6e83b5776ce5&nonce=1f01c626-fadd-4b5e-a25c-5d6243b8b6a9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=6b815add-040e-4aa1-ac0c-d14a6f16d113&code=8f992048-43e3-48c6-b0a6-7930cc185794&scope=address+openid+profile+email&session_id=06902def-465b-4a34-96bf-4791f17ae4d0&state=9390f35d-17e5-4d69-b71b-6e83b5776ce5&token_type=bearer&session_state=8251369971b72f0dc54d14cd1e3ee80ec146ece2ed47121911dbe745976bcffd.dc5b8563-e6d1-4a7a-b967-b8017b8bc479&expires_in=299&sid=096450e8-9e52-4ae3-b7fc-279a855f0526 ####################################################### TEST: requestAuthorizationTokenFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=160d37c4-25e3-411f-b4d1-5c52b01d5ab2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 240 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:20 GMT Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "reason": "client_id is empty or blank.", "error_description": "The client is not authorized to request an access token using this method.", "state": "160d37c4-25e3-411f-b4d1-5c52b01d5ab2", "error": "unauthorized_client" } ####################################################### TEST: requestAuthorizationTokenFail2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=15132a84-3bbf-482e-89e7-51566290a5cd", "tls_client_auth_subject_dn": "", "registration_access_token": "77d68310-0ac5-4ded-b2d0-3d920e4603b2", "client_id": "15132a84-3bbf-482e-89e7-51566290a5cd", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "27d39889-1bf6-4329-8fc7-1c769a84626b", "client_id_issued_at": 1610964800, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051200, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 77d68310-0ac5-4ded-b2d0-3d920e4603b2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=15132a84-3bbf-482e-89e7-51566290a5cd", "tls_client_auth_subject_dn": "", "registration_access_token": "77d68310-0ac5-4ded-b2d0-3d920e4603b2", "client_id": "15132a84-3bbf-482e-89e7-51566290a5cd", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "27d39889-1bf6-4329-8fc7-1c769a84626b", "client_id_issued_at": 1610964800, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051200, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&client_id=15132a84-3bbf-482e-89e7-51566290a5cd&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=13e52394-eb3b-4906-9eff-f147d08000ad&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Mon, 18 Jan 2021 10:13:20 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=13e52394-eb3b-4906-9eff-f147d08000ad&error=invalid_request Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationTokenIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49", "tls_client_auth_subject_dn": "", "registration_access_token": "1eda3a4f-e698-44c1-9cc6-22d830cc5a1d", "client_id": "2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "299cc73f-32f5-460a-b612-56bc773ca6da", "client_id_issued_at": 1610964800, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051200, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 1eda3a4f-e698-44c1-9cc6-22d830cc5a1d ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:21 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49", "tls_client_auth_subject_dn": "", "registration_access_token": "1eda3a4f-e698-44c1-9cc6-22d830cc5a1d", "client_id": "2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "299cc73f-32f5-460a-b612-56bc773ca6da", "client_id_issued_at": 1610964800, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051200, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7201f6d8-0ab4-4e1e-983a-909ea79e3a6f&nonce=3dc9bf3e-6d48-4d1e-ae89-a9bf12fa49dd 10:13:21.241 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9f81855789d07cb76ea9a882b9d3b53816aca963b34b5982f664417751431265.5008aaa0-edab-4f1b-b3be-7486ba19602a authenticateResourceOwnerAndGrantAccess: sessionId:020b1e6f-ebbc-4722-9498-c871a5c5f8d3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=2e5f193a-c0ec-40d8-a7f6-520d9bbf7e49&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=7201f6d8-0ab4-4e1e-983a-909ea79e3a6f&nonce=3dc9bf3e-6d48-4d1e-ae89-a9bf12fa49dd ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=7aaa9516-1811-4668-a6a8-3619c32dc6ae&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.toPpx6K4aGAU1ErAGT996nh9xug0BP23Y9Iq0reJta88lE8okvgGn26FGNGcf0MkNagVeCnE1YsJZTItGjEmqTCWNDGc1VMGRNC1hYrT-lzRYyx9k5Q0VWty94coz88-RiG8erTkNi8s5EAh6MhmC1gM04dA3-sXemF8RQFzd7SDsUy_OvOl8qm3v_HAJQ-8wRD3OLIHQ0nidLMNp218A4cvFiv3TU_wVFQscZ2HpC13Y4Gt4-NCmGK2IBHapgFtFN2URwhkY1sRR8wGwNtIDDGxxUL1DSPV64g2RS5jPQ8Rmj50qgcW2bNgIEanJjeiv00M39r6j7DPE7CBxlEKbA&session_id=020b1e6f-ebbc-4722-9498-c871a5c5f8d3&state=7201f6d8-0ab4-4e1e-983a-909ea79e3a6f&token_type=bearer&session_state=9f81855789d07cb76ea9a882b9d3b53816aca963b34b5982f664417751431265.5008aaa0-edab-4f1b-b3be-7486ba19602a&expires_in=299&sid=7f2ca524-945d-4673-b7fd-2d6d92addbba ####################################################### TEST: requestAuthorizationTokenIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b0657dcb-d57f-4e6c-8401-e2ff20f9f498", "tls_client_auth_subject_dn": "", "registration_access_token": "193b3c63-17f3-4d91-b9f3-d5ffc5943c7d", "client_id": "b0657dcb-d57f-4e6c-8401-e2ff20f9f498", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e127ec5d-90a4-439f-b851-d1f3a5001d1b", "client_id_issued_at": 1610964802, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051202, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 193b3c63-17f3-4d91-b9f3-d5ffc5943c7d ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1775 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=b0657dcb-d57f-4e6c-8401-e2ff20f9f498", "tls_client_auth_subject_dn": "", "registration_access_token": "193b3c63-17f3-4d91-b9f3-d5ffc5943c7d", "client_id": "b0657dcb-d57f-4e6c-8401-e2ff20f9f498", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "e127ec5d-90a4-439f-b851-d1f3a5001d1b", "client_id_issued_at": 1610964802, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051202, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b0657dcb-d57f-4e6c-8401-e2ff20f9f498&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2bead3ed-ead9-405e-9f38-053fc5e6ad7d&nonce=70d3c93c-866d-49a2-b69d-94fc8757220b 10:13:22.989 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:b47e638a29b204667dd279dbd9fd9796a98f31d2f72ecbac989430f78c0150d4.a13182b1-9b97-4fb1-9e8a-79c5e571d58c authenticateResourceOwnerAndGrantAccess: sessionId:13e002c1-8b23-46bc-9996-04764f3d51a6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b0657dcb-d57f-4e6c-8401-e2ff20f9f498&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=2bead3ed-ead9-405e-9f38-053fc5e6ad7d&nonce=70d3c93c-866d-49a2-b69d-94fc8757220b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=69573fcf-f786-44c3-9742-17f9a7e56fc4&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiWWpORTRvaE9DakNob0xGUXZXWkVSdyIsInN1YiI6ImQ1UU1IX0stTnotZVdNVThRUGxRSnVNR3BFNDA0QVJPSjl2TkZLM29VNzgiLCJjb2RlIjoiZDE1OTc5ZTEtZDZiMS00ZmQwLTkyZGMtZTdlMTM1MDNjM2RlIiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vY2UtZGV2NS5nbHV1Lm9yZyIsIm5vbmNlIjoiNzBkM2M5M2MtODY2ZC00OWEyLWI2OWQtOTRmYzg3NTcyMjBiIiwic2lkIjoiYjk5YWI5NGYtYjMwMS00OGQ5LWJmZjMtMjA5NmE0NDdkNTRhIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwiYXVkIjoiYjA2NTdkY2ItZDU3Zi00ZTZjLTg0MDEtZTJmZjIwZjlmNDk4IiwiYWNyIjoiYXV0aF9sZGFwX3NlcnZlciIsInNfaGFzaCI6IndBdS11V3pzVkNzQk9RWHQtcnNwZHciLCJhdXRoX3RpbWUiOjE2MTA5NjQ4MDMsImV4cCI6MTYxMDk2ODQwNCwiZ3JhbnQiOiJpbXBsaWNpdCIsImlhdCI6MTYxMDk2NDgwNH0.AmlVI4YGpQVaCrg21EdAPWXExBgCaLLUvHWk5yT58CZ5m7gYAcWQoTl00BMDSIxxgkDt9xczFHWKTAB7pPcMaMKMbPKrHE9UFB4B-yIsYXXm5hglIOO6BaIM5vco4MHMhY1RfX92yy4l4sBFaGZ_BekXYVzEPljMWp4BxDk5rSBe8xf0A3P4Osyft4CbZlI-JEhr0Kn3Xa0Nta4AlQQnK6JuMMICICWQB14nMg4BWCsebm7a6ZWbsTlK5whOt0z_IvOr8LGGDPy5yGQXIO4kcxNIvYEDniET4ehg-aoFUYuOL4KKfZYktN4b3Mn3Ac2HXnuYnD9KowHh1AWcKmODUw&session_id=13e002c1-8b23-46bc-9996-04764f3d51a6&state=2bead3ed-ead9-405e-9f38-053fc5e6ad7d&token_type=bearer&session_state=b47e638a29b204667dd279dbd9fd9796a98f31d2f72ecbac989430f78c0150d4.a13182b1-9b97-4fb1-9e8a-79c5e571d58c&expires_in=299&sid=b99ab94f-b301-48d9-bff3-2096a447d54a ####################################################### TEST: requestAuthorizationTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:24 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=0d045a02-d4e9-4e54-822f-56b5d1aa0b35", "tls_client_auth_subject_dn": "", "registration_access_token": "354ae020-e6fd-4b44-9ac5-1c359e7514d1", "client_id": "0d045a02-d4e9-4e54-822f-56b5d1aa0b35", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "aa9948d7-41ba-4537-a5af-277c25699c8a", "client_id_issued_at": 1610964804, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051204, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 354ae020-e6fd-4b44-9ac5-1c359e7514d1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1741 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:24 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=0d045a02-d4e9-4e54-822f-56b5d1aa0b35", "tls_client_auth_subject_dn": "", "registration_access_token": "354ae020-e6fd-4b44-9ac5-1c359e7514d1", "client_id": "0d045a02-d4e9-4e54-822f-56b5d1aa0b35", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "aa9948d7-41ba-4537-a5af-277c25699c8a", "client_id_issued_at": 1610964804, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": ["implicit"], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051204, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["token"] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=0d045a02-d4e9-4e54-822f-56b5d1aa0b35&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=282eeba4-6fb3-4092-9bf2-caed8f169879&nonce=69857344-9377-4f62-8fc4-655ff2ead024 10:13:25.118 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9a0d78e2fdf93a1e6dce79dac56d6c67202ce12e402cd28245f663f0ef64bf10.7a7bb7ec-0db4-4d2d-b717-5dbc85998a04 authenticateResourceOwnerAndGrantAccess: sessionId:ba60fd5a-29c0-40bc-8f92-323481fd278b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=0d045a02-d4e9-4e54-822f-56b5d1aa0b35&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=282eeba4-6fb3-4092-9bf2-caed8f169879&nonce=69857344-9377-4f62-8fc4-655ff2ead024 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=10842d4d-7397-46c9-9964-7f634505012b&scope=address+openid+profile+email&session_id=ba60fd5a-29c0-40bc-8f92-323481fd278b&state=282eeba4-6fb3-4092-9bf2-caed8f169879&token_type=bearer&session_state=9a0d78e2fdf93a1e6dce79dac56d6c67202ce12e402cd28245f663f0ef64bf10.7a7bb7ec-0db4-4d2d-b717-5dbc85998a04&expires_in=299&sid=280439f5-3d8b-4955-bf31-72223868492c ####################################################### TEST: requestAuthorizationUILocales ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "token", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=bb4d265e-e481-4bf8-815d-a039ce8e9dd4", "tls_client_auth_subject_dn": "", "registration_access_token": "4cb85c93-16f9-4c07-9355-80d0b07cfd4d", "client_id": "bb4d265e-e481-4bf8-815d-a039ce8e9dd4", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "038e93e1-4c9f-49ef-aeed-b43806568651", "client_id_issued_at": 1610964806, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051206, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 4cb85c93-16f9-4c07-9355-80d0b07cfd4d ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=bb4d265e-e481-4bf8-815d-a039ce8e9dd4", "tls_client_auth_subject_dn": "", "registration_access_token": "4cb85c93-16f9-4c07-9355-80d0b07cfd4d", "client_id": "bb4d265e-e481-4bf8-815d-a039ce8e9dd4", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "038e93e1-4c9f-49ef-aeed-b43806568651", "client_id_issued_at": 1610964806, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051206, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=bb4d265e-e481-4bf8-815d-a039ce8e9dd4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ab58ddb4-6601-49d4-938a-0124a9c041a3&nonce=708aa47b-e9b1-4799-93d3-69bce65ec3a5&ui_locales=es 10:13:26.665 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:653291fdb65192ecc400424e28549e4f3a231d6112714b1fd20248ecd8386ddd.e2dcb14b-53ff-406d-8669-f8352cef0e30 authenticateResourceOwnerAndGrantAccess: sessionId:46bc88c5-effc-40d3-b3e0-f72ce2b8e270 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=bb4d265e-e481-4bf8-815d-a039ce8e9dd4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ab58ddb4-6601-49d4-938a-0124a9c041a3&nonce=708aa47b-e9b1-4799-93d3-69bce65ec3a5&ui_locales=es ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#access_token=779f7066-0283-48b3-9c16-f9ebff761078&scope=address+openid+profile+email&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.BiIwt2DwYz4Fkd5M_6r-6LjD0-626bX20ldejhSaFNbv_ejXValBOvhaTf7el7a34WGzxgNs9xHQYpA2940eplalus6d-a_chzO6nQY4pgblcFK5j6RM3gLFPoQwEQI02Fgbk6wdUtsze7oZtPu_9_RxZcL_wq5jKuU5YfzgCH5m-ucimvDZz29MyUdcX-meb1-r5iOGb7F2ENl6DtbUaRo6IrxYxUGRJhYnHmG9QQwBDYIYxFVeBtcEOaEzv3YhxyHokjjOvq3f9mXpE5G9N8Fj9tDS9xZR3y8a7OGkmPagKV7UM8d28nYTfL_upz_XxGqQjl5TZOVQpLhMkj2qbw&session_id=46bc88c5-effc-40d3-b3e0-f72ce2b8e270&state=ab58ddb4-6601-49d4-938a-0124a9c041a3&token_type=bearer&session_state=653291fdb65192ecc400424e28549e4f3a231d6112714b1fd20248ecd8386ddd.e2dcb14b-53ff-406d-8669-f8352cef0e30&expires_in=299&sid=a1eb559b-ded3-495e-8ec7-b2ebd8e3750e ####################################################### TEST: requestAuthorizationWithoutScope ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code", "id_token" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:27 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=707e25e5-68bd-4944-a15c-9a140b9f55ba", "tls_client_auth_subject_dn": "", "registration_access_token": "50e48b13-1b25-4ced-b58d-135f8f62cd3e", "client_id": "707e25e5-68bd-4944-a15c-9a140b9f55ba", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2e3c5097-d905-4467-8367-df2ba72372e8", "client_id_issued_at": 1610964807, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051207, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 50e48b13-1b25-4ced-b58d-135f8f62cd3e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1860 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:27 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=707e25e5-68bd-4944-a15c-9a140b9f55ba", "tls_client_auth_subject_dn": "", "registration_access_token": "50e48b13-1b25-4ced-b58d-135f8f62cd3e", "client_id": "707e25e5-68bd-4944-a15c-9a140b9f55ba", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "2e3c5097-d905-4467-8367-df2ba72372e8", "client_id_issued_at": 1610964807, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051207, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": [ "token", "code", "id_token" ] } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=707e25e5-68bd-4944-a15c-9a140b9f55ba&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec0fb27b-7205-4a04-b6f7-c778169c77f7&nonce=5f4dbcab-12fd-44c3-a384-0925d5b24491 10:13:28.124 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:22b9f006fbbe2770b81afcd18513929acbc0cb3097844f4f5e750fa81fda51f9.ceea8ed9-e052-45b1-b9da-2068ee355eeb authenticateResourceOwnerAndGrantAccess: sessionId:8c71ecd1-69ba-4499-8e60-960d8d04ea0b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=707e25e5-68bd-4944-a15c-9a140b9f55ba&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=ec0fb27b-7205-4a04-b6f7-c778169c77f7&nonce=5f4dbcab-12fd-44c3-a384-0925d5b24491 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev5.gluu.org/oxauth-rp/home.htm#code=f1809e74-e77a-44a2-8442-94e3953bea2d&id_token=eyJraWQiOiIzMDdkYjMxNS1mZjkzLTQ0NDgtYTYyMi1jOGQ4M2UzMjM0Yzlfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.jtogm1WkJlK6ctBCX9btTIR_d_ROb3qApmeBO2yvCrrhsCsHFtfD5qNZ4Dbmx1t6IAHBHtb9V2pM6Gw9n_UwE-JyYGj01iBgxiVlrZsYWWSBaM1UDyYTyOAwz_lP7nVbnGGUqeXbfIPpP4CaIbomkVmMh4eEzU9aybjMxqXOiGYnbAV4Cw9wMXo_DCDbNxYtEOF65_PX2MZW8NBCdBC6I6p0m7ANjGPwnPWcm8NgutZTFjM54hFo5YBgBmilSRYFmGAwrO0rDBxHISQR0VFkGzGSRgg-Y2kkDOKOZguZbyi8s73eUQd4hLrMB4ougESigf_LEx9cR6AM1gdwYjLYcw&session_id=8c71ecd1-69ba-4499-8e60-960d8d04ea0b&state=ec0fb27b-7205-4a04-b6f7-c778169c77f7&session_state=22b9f006fbbe2770b81afcd18513929acbc0cb3097844f4f5e750fa81fda51f9.ceea8ed9-e052-45b1-b9da-2068ee355eeb&sid=62481df9-c514-4c4d-a044-83cf4e5f8dac ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40ce-dev5.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Mon, 18 Jan 2021 10:13:29 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev5.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev5.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1 Host: ce-dev5.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 7969 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:29 GMT Keep-Alive: timeout=5, max=100 Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "request_parameter_supported" : true, "token_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "introspection_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/introspection", "claims_parameter_supported" : true, "issuer" : "https://ce-dev5.gluu.org", "userinfo_encryption_enc_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/authorize", "service_documentation" : "http://gluu.org/docs", "id_generation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/id", "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ], "scope_to_claims_mapping" : [ { "http://photoz.example.com/dev/actions/a3" : [ ] }, { "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ] }, { "http://photoz.example.com/dev/actions/internalClient" : [ ] }, { "http://photoz.example.com/dev/actions/see" : [ ] }, { "openid" : [ ] }, { "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ] }, { "http://photoz.example.com/dev/actions/view" : [ ] }, { "permission" : [ ] }, { "/user" : [ ] }, { "http://photoz.example.com/dev/scopes/all" : [ ] }, { "super_gluu_ro_session" : [ ] }, { "work_phone" : [ "work_phone" ] }, { "http://photoz.example.com/dev/scopes/view" : [ ] }, { "http://photoz.example.com/dev/actions/all" : [ ] }, { "phone" : [ "phone_number_verified", "phone_number" ] }, { "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ] }, { "^/user/[^/]+$" : [ ] }, { "org_name" : [ "org_name" ] }, { "http://photoz.example.com/dev/actions/remove" : [ ] }, { "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ] }, { "mobile_phone" : [ "phone_mobile_number" ] }, { "http://photoz.example.com/dev/actions/a1" : [ ] }, { "email" : [ "email_verified", "email" ] }, { "user_name" : [ "user_name" ] }, { "http://photoz.example.com/dev/actions/a2" : [ ] }, { "test" : [ "member_of" ] }, { "http://photoz.example.com/dev/actions/walk" : [ ] }, { "oxtrust-api-write" : [ ] }, { "oxd" : [ ] }, { "uma_protection" : [ ] }, { "oxtrust-api-read" : [ ] }, { "^/user/.+$" : [ ] }, { "modify" : [ ] }, { "http://photoz.example.com/dev/actions/add" : [ ] } ], "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy", "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt", "none", "access_token", "tls_client_auth" ], "tls_client_certificate_bound_access_tokens" : true, "response_modes_supported" : [ "fragment", "query", "form_post" ], "backchannel_logout_session_supported" : true, "token_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/token", "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "response_types_supported" : [ "token", "token code", "token id_token", "code", "token code id_token", "id_token", "code id_token" ], "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ], "request_uri_parameter_supported" : true, "backchannel_user_code_parameter_supported" : true, "grant_types_supported" : [ "refresh_token", "implicit", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials" ], "ui_locales_supported" : [ "en", "es" ], "userinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/userinfo", "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos", "auth_level_mapping" : { "-1" : [ "auth_ldap_server" ], "60" : [ "super_gluu" ], "20" : [ "basic_lock" ], "10" : [ "basic" ] }, "require_request_uri_registration" : false, "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "frontchannel_logout_session_supported" : true, "claims_locales_supported" : [ "en" ], "clientinfo_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/clientinfo", "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "session_revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke_session", "check_session_iframe" : "https://ce-dev5.gluu.org/oxauth/opiframe.htm", "scopes_supported" : [ "^/user/.+$", "http://photoz.example.com/dev/actions/internalClient", "clientinfo", "user_name", "work_phone", "^/user/[^/]+$", "mobile_phone", "http://photoz.example.com/dev/actions/view", "https://ce-dev5.gluu.org/oxauth/restv1/uma/scopes/scim_access", "oxd", "super_gluu_ro_session", "org_name", "email", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/all", "http://photoz.example.com/dev/actions/add", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/actions/see", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "http://photoz.example.com/dev/actions/walk", "phone", "http://photoz.example.com/dev/actions/a3", "/user" ], "backchannel_logout_supported" : true, "acr_values_supported" : [ "basic_lock", "auth_ldap_server", "super_gluu", "basic" ], "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "device_authorization_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/device_authorization", "display_values_supported" : [ "page", "popup" ], "userinfo_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "claim_types_supported" : [ "normal" ], "userinfo_encryption_alg_values_supported" : [ "none", "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "end_session_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/end_session", "revocation_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/revoke", "backchannel_authentication_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/bc-authorize", "token_endpoint_auth_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "frontchannel_logout_supported" : true, "jwks_uri" : "https://ce-dev5.gluu.org/oxauth/restv1/jwks", "subject_types_supported" : [ "public", "pairwise" ], "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ], "registration_endpoint" : "https://ce-dev5.gluu.org/oxauth/restv1/register", "id_token_token_binding_cnf_values_supported" : [ "tbh" ] } ####################################################### TEST: requestSessionIdAuthorizationCode1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev5.gluu.org { "application_type" : "web", "redirect_uris" : [ "https://ce-dev5.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "sector_identifier_uri" : "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "client_name" : "oxAuth test app", "additional_audience" : [ ], "response_types" : [ "code" ] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=07eabf94-bd2e-46f7-a875-9edd5f633bbf", "tls_client_auth_subject_dn": "", "registration_access_token": "0121f467-ea06-44e5-ba2c-142d130b85f1", "client_id": "07eabf94-bd2e-46f7-a875-9edd5f633bbf", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "baeb4ab2-637e-4bd9-8333-02ef9a990ff8", "client_id_issued_at": 1610964809, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051209, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register HTTP/1.1?{ "additional_audience" : [ ] } HTTP/1.1 Host: ce-dev5.gluu.org Authorization: Bearer 0121f467-ea06-44e5-ba2c-142d130b85f1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1789 Content-Type: application/json Date: Mon, 18 Jan 2021 10:13:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Apache/2.4.29 (Ubuntu) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "allow_spontaneous_scopes": false, "application_type": "web", "rpt_as_jwt": false, "registration_client_uri": "https://ce-dev5.gluu.org/oxauth/restv1/register?client_id=07eabf94-bd2e-46f7-a875-9edd5f633bbf", "tls_client_auth_subject_dn": "", "registration_access_token": "0121f467-ea06-44e5-ba2c-142d130b85f1", "client_id": "07eabf94-bd2e-46f7-a875-9edd5f633bbf", "token_endpoint_auth_method": "client_secret_basic", "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection", "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false, "client_secret": "baeb4ab2-637e-4bd9-8333-02ef9a990ff8", "client_id_issued_at": 1610964809, "backchannel_logout_uri": [], "backchannel_logout_session_required": false, "client_name": "oxAuth test app", "spontaneous_scopes": [], "id_token_signed_response_alg": "RS256", "access_token_as_jwt": false, "grant_types": [ "refresh_token", "authorization_code" ], "subject_type": "pairwise", "keep_client_authorization_after_expiration": false, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev5.gluu.org/oxauth-rp/home.htm" ], "sector_identifier_uri": "https://ce-dev5.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5", "additional_audience": [], "frontchannel_logout_uri": [], "frontchannel_logout_session_required": false, "client_secret_expires_at": 1611051209, "require_auth_time": false, "access_token_signing_alg": "RS256", "response_types": ["code"] } waitForResourceOwnerAndGrantLoginForm: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=07eabf94-bd2e-46f7-a875-9edd5f633bbf&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d1aaf317-48f5-472d-a6d1-3ccdb1095d97 10:13:29.617 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] waitForResourceOwnerAndGrantLoginForm: sessionState:1b378af5a4d4363517dcfd100776e38cc5e55cddb91694b4250eb8f8c8401e87.f727c8c0-3dfc-4814-92f0-4a89039bea85 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=07eabf94-bd2e-46f7-a875-9edd5f633bbf&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=d1aaf317-48f5-472d-a6d1-3ccdb1095d97 authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev5.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=07eabf94-bd2e-46f7-a875-9edd5f633bbf&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev5.gluu.org%2Foxauth-rp%2Fhome.htm&state=b6f1c875-50c4-4fd9-b6ae-2ffdb95e5c9f 10:13:29.883 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev5.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:f4b43ca0456fd0eba3dd5ce3872555ee36f79a6ad57415afe898f8a798ca9c0d.517fb8fe-c39a-444d-a9aa-aac01a85c5f5 authenticateResourceOwnerAndGrantAccess: ses