| DisplaysPolicyUriInLoginPage | 00:00:00.416 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanMakeAccessTokenRequestWithClientSecretPostAuthentication | 00:00:01.276 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectInvalidAsymmetricIdTokenSignature | 00:00:01.371 | 0 | -1 | 0 | 0 | 1 | 0 |
| EnablesDynamicRegistration | 00:00:00.170 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportCombinationOfCodeTokenResponseTypes | 00:00:01.281 | 0 | -1 | 0 | 0 | 1 | 0 |
| VerifiesCorrectCHashWhenCodeFlowUsed | 00:00:01.587 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportAuthenticationToTokenEndpointUsingHttpBasicWithPost | 00:00:01.289 | 0 | -1 | 0 | 0 | 1 | 0 |
| AcceptValidAsymmetricIdTokenSignature | 00:00:03.236 | 0 | -2 | 0 | 0 | 2 | 0 |
| SupportWebFingerDiscovery | 00:00:00.038 | 0 | 0 | 0 | 0 | 1 | 0 |
| ProvidingAcrValues | 00:00:01.261 | 0 | -1 | 0 | 0 | 1 | 0 |
| RequestingUserInfoClaimsWithOpenIdRequestObject | 00:00:01.479 | 0 | -1 | 0 | 0 | 1 | 0 |
| UsesAsymmetricIdTokenSignatures | 00:00:07.331 | 0 | -6 | 0 | 0 | 6 | 0 |
| OPRegistrationJwks | 00:00:03.408 | 0 | -2 | 0 | 0 | 2 | 0 |
| SupportIdTokenResponseType | 00:00:01.215 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectRequestsWithoutNonceUsingImplicitFlow | 00:00:01.331 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectsIncorrectAtHashWhenImplicitFlowUsed | 00:00:01.405 | 0 | -1 | 0 | 0 | 1 | 0 |
| AcceptRequestWithoutRedirectUriWhenOneRegistered | 00:00:01.137 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectsSecondUseOfAccessCode | 00:00:01.632 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportRequestsWithoutNonce | 00:00:01.382 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportCombinationOfCodeIdTokenTokenResponseTypes | 00:00:01.418 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportCombinationOfIdTokenCodeResponseTypes | 00:00:01.235 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportAuthenticationToTokenEndpointUsingFormEncodedClientCredentialsInPostBody | 00:00:01.308 | 0 | -1 | 0 | 0 | 1 | 0 |
| UserInfoEndpointAccessWithHeaderMethod | 00:00:01.377 | 0 | -1 | 0 | 0 | 1 | 0 |
| AcceptValidSymmetricIdTokenSignature | 00:00:01.254 | 0 | -1 | 0 | 0 | 1 | 0 |
| PublishOpenIdConfigurationDiscoveryInformation | 00:00:00.035 | 0 | 0 | 0 | 0 | 1 | 0 |
| IncludesAtHashInIdTokenWhenImplicitFlowUsed | 00:00:01.504 | 0 | -1 | 0 | 0 | 1 | 0 |
| UsesDynamicRegistration | 00:00:00.168 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportDisplayValuePopup | 00:00:01.203 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportPromptValueLogin | 00:00:02.257 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanRequestAndUseEncryptedIdTokenResponse | 00:00:01.505 | 0 | -1 | 0 | 0 | 1 | 0 |
| IgnoresExtraQueryComponentInRequest | 00:00:01.463 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectRequestWithoutResponseType | 00:00:00.090 | 0 | 0 | 0 | 0 | 1 | 0 |
| CanMakeAccessTokenRequestWithClientSecretJwtAuthentication | 00:00:01.301 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportCombinationOfIdTokenTokenResponseTypes | 00:00:01.183 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanProvideEncryptedIdTokenResponse | 00:00:06.262 | 0 | -5 | 0 | 0 | 5 | 0 |
| SupportsReturningDifferentClaimsInIdTokenAndUserInfoEndpoint | 00:00:01.394 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportRegistrationRead | 00:00:00.268 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanDiscoverIdentifiersUsingUrlSyntax | 00:00:00.000 | 0 | 0 | 0 | 0 | 11 | 0 |
| RejectInvalidSymmetricIdTokenSignature | 00:00:01.283 | 0 | -1 | 0 | 0 | 1 | 0 |
| ProvidingIndividuallyRequestedEssentialClaims | 00:00:01.410 | 0 | -1 | 0 | 0 | 1 | 0 |
| DisplaysLogoInLoginPage | 00:00:00.417 | 0 | -1 | 0 | 0 | 1 | 0 |
| IncludesCHashInIdTokenWhenCodeFlowUsed | 00:00:01.457 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanMakeAccessTokenRequestWithPrivateKeyJwtAuthentication | 00:00:01.461 | 0 | -1 | 0 | 0 | 1 | 0 |
| UsesDiscovery | 00:00:00.037 | 0 | 0 | 0 | 0 | 1 | 0 |
| UserInfoEndpointAccessWithFormEncodedBodyMethod | 00:00:01.361 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportAuthenticationToTokenEndpointWithAsymmetricallySignedJWTs | 00:00:08.946 | 0 | -6 | 0 | 0 | 6 | 0 |
| SupportsCombiningClaimsRequestedWithScopeAndRequestObject | 00:00:01.443 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingAllBasicClaims | 00:00:02.592 | 0 | -1 | 0 | 0 | 1 | 0 |
| UsesSymmetricIdTokenSignatures | 00:00:04.538 | 0 | -3 | 0 | 0 | 3 | 0 |
| SupportTokenResponseType | 00:00:01.184 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanProvideSignedUserInfoResponse | 00:00:14.500 | 0 | -9 | 0 | 0 | 9 | 0 |
| RejectRedirectUriNotMatchingARegisteredRedirectUri | 00:00:00.188 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingNoSpecificClaims | 00:00:01.418 | 0 | -1 | 0 | 0 | 1 | 0 |
| Supports3rdPartyInitLoginNoHttps | 00:00:00.073 | 0 | 0 | 0 | 0 | 1 | 0 |
| RejectsSectorIdentifierNotContainingRegisteredRedirectUriValues | 00:00:00.113 | 0 | 0 | 0 | 0 | 1 | 0 |
| SecondUseOfAccessCodeRevokesPreviouslyIssuedAccessToken | 00:00:01.653 | 0 | -1 | 0 | 0 | 1 | 0 |
| Supports3rdPartyInitLogin | 00:00:00.135 | 0 | -1 | 0 | 0 | 1 | 0 |
| ProvidingIdTokenWithMaxAgeRestriction | 00:02:04.538 | 0 | -2 | 0 | 0 | 2 | 0 |
| RejectRequestWithoutRedirectUriWhenMultipleRegistered | 00:00:00.284 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanMakeAccessTokenRequestWithClientSecretBasicAuthentication | 00:00:01.284 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanProvideEncryptedUserInfoResponse | 00:00:07.469 | 0 | -5 | 0 | 0 | 5 | 0 |
| RejectsIncorrectCHashWhenCodeFlowUsed | 00:00:01.345 | 0 | -1 | 0 | 0 | 1 | 0 |
| RequestingUserInfoClaimsWithScopeValues | 00:00:01.428 | 0 | -1 | 0 | 0 | 1 | 0 |
| ProvidingIndividuallyRequestedVoluntaryClaims | 00:00:01.401 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingEmailClaims | 00:00:01.355 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportPromptValueNone | 00:00:01.605 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectRegistrationOfRedirectUriWithFragment | 00:00:00.070 | 0 | 0 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingPhoneClaims | 00:00:01.487 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportDisplayValuePage | 00:00:01.204 | 0 | -1 | 0 | 0 | 1 | 0 |
| UserInfoEndpoint | 00:00:00.033 | 0 | 0 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingProfileClaims | 00:00:01.203 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportScopeRequestingAddressClaims | 00:00:01.420 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanRequestAndUseSignedUserInfoResponse | 00:00:01.652 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs | 00:00:05.545 | 0 | -3 | 0 | 0 | 3 | 0 |
| ProvidingIndividuallyRequestedEssentialAndVoluntaryClaims | 00:00:01.503 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportsReturningClaimsInIdToken | 00:00:01.381 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanRequestAndUseClaimsInIdToken | 00:00:01.616 | 0 | -1 | 0 | 0 | 1 | 0 |
| RejectsRedirectUriWhenQueryParameterDoesNotMatch | 00:00:00.242 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportCodeResponseType | 00:00:01.451 | 0 | -1 | 0 | 0 | 1 | 0 |
| CanDiscoverIdentifiersUsingEMailSyntax | 00:00:00.000 | 0 | 0 | 0 | 0 | 6 | 0 |
| SupportClaimsRequestSpecifyingSubValue | 00:00:03.724 | 0 | -2 | 0 | 0 | 2 | 0 |
| ProvidingIdTokenWithEssentialAuthTimeClaim | 00:00:01.449 | 0 | -1 | 0 | 0 | 1 | 0 |
| VerifiesCorrectAtHashWhenImplicitFlowUsed | 00:00:01.456 | 0 | -1 | 0 | 0 | 1 | 0 |
| SupportRequestsContainingNonce | 00:00:01.275 | 0 | -1 | 0 | 0 | 1 | 0 |
![[Jenkins]](/jenkins/static/47b8b5fb/images/jenkins-header-logo-v2.svg){kind=logo}
