FailedConsole Output

Started by an SCM change
Running as SYSTEM
Building on master in workspace /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace
The recommended git tool is: NONE
No credentials specified
 > git rev-parse --is-inside-work-tree # timeout=10
Fetching changes from the remote Git repository
 > git config remote.origin.url https://github.com/GluuFederation/oxAuth # timeout=10
Fetching upstream changes from https://github.com/GluuFederation/oxAuth
 > git --version # timeout=10
 > git --version # 'git version 1.8.3.1'
 > git fetch --tags --progress https://github.com/GluuFederation/oxAuth +refs/heads/*:refs/remotes/origin/* # timeout=10
 > git rev-parse refs/remotes/origin/master^{commit} # timeout=10
 > git rev-parse refs/remotes/origin/origin/master^{commit} # timeout=10
Checking out Revision 3911544e89cee5d7fc775284eb245e571a4133da (refs/remotes/origin/master)
 > git config core.sparsecheckout # timeout=10
 > git checkout -f 3911544e89cee5d7fc775284eb245e571a4133da # timeout=10
Commit message: "fix: upgrade org.apache.santuario:xmlsec"
 > git rev-list --no-walk c16f1297f7ce2d89993fe0adacb2e1f53eb79b0f # timeout=10
Run condition [Boolean condition] enabling prebuild for step [Trigger/call builds on other projects]
[workspace] $ /bin/bash /opt/jetty/temp/jenkins8342544187849149881.sh
total 64
drwxrwxr-x 22 jetty jetty  4096 Oct  7 13:54 .
drwxrwxr-x  6 jetty jetty   175 Oct  7 13:54 ..
drwxrwxr-x  5 jetty jetty   134 Oct  7 08:21 Client
-rw-rw-r--  1 jetty jetty  3211 Oct  4  2019 CODE_OF_CONDUCT.md
drwxrwxr-x  4 jetty jetty    46 Oct  5 17:35 common
drwxrwxr-x  2 jetty jetty   278 Jun  5  2020 docs
drwxrwxr-x  3 jetty jetty    20 May 14  2020 fido2-client
drwxrwxr-x  3 jetty jetty    20 May 14  2020 fido2-server
drwxrwxr-x  8 jetty jetty   181 Oct  7 13:54 .git
drwxrwxr-x  4 jetty jetty    45 Mar 26  2021 .github
-rw-rw-r--  1 jetty jetty   182 Oct  4  2019 .gitignore
-rw-rw-r--  1 jetty jetty    78 Mar  4  2020 install.bat
drwxrwxr-x  3 jetty jetty    18 Oct  4  2019 jmeter
-rw-rw-r--  1 jetty jetty  1076 Mar 26  2020 LICENSE
drwxrwxr-x  4 jetty jetty    64 Oct  7 08:21 Model
drwxrwxr-x  3 jetty jetty    20 Jun 24  2020 mtls
drwxrwxr-x  3 jetty jetty    20 Jun 24  2020 oxauth-ciba
drwxrwxr-x  4 jetty jetty    64 Oct  5 17:35 oxAuthStatic
drwxr-xr-x  6 jetty jetty    60 Dec 10  2019 oxProfiles
drwxrwxr-x  4 jetty jetty    46 Oct  7 08:21 persistence-model
-rw-rw-r--  1 jetty jetty 25072 Oct  7 08:21 pom.xml
-rw-rw-r--  1 jetty jetty  6681 Oct  4  2019 README
-rw-rw-r--  1 jetty jetty   718 Oct  5 09:35 README.md
-rw-rw-r--  1 jetty jetty   251 Oct  4  2019 release.properties
drwxrwxr-x  3 jetty jetty    20 Oct  5 09:35 RP
drwxrwxr-x  3 jetty jetty    20 Oct  5 09:35 RP-Demo
drwxrwxr-x  3 jetty jetty    20 Oct  5 09:35 rp-spring-boot
drwxrwxr-x 11 jetty jetty   238 Oct  7 13:54 Server
drwxrwxr-x  3 jetty jetty    18 Oct  7 08:21 target
drwxrwxr-x  3 jetty jetty    22 Oct  4  2019 Tests
total 24
drwxr-xr-x 2 jetty jetty    75 Oct  7 13:54 .
drwxr-xr-x 6 jetty jetty    60 Oct  7 13:54 ..
-rw-r--r-- 1 jetty jetty 19673 Oct  7 13:54 client_keystore.jks
-rw-r--r-- 1 jetty jetty   775 Oct  7 13:54 config-oxauth-test-data.properties
total 8
drwxrwxr-x 5 jetty jetty 134 Oct  7 13:54 .
drwxrwxr-x 5 jetty jetty 134 Oct  7 08:21 ..
drwxrwxr-x 2 jetty jetty  75 Apr 27  2020 ce-dev5.gluu.org
-rw-r--r-- 1 jetty jetty 640 Dec 10  2019 config-oxauth-test-data.properties
drwxrwxr-x 2 jetty jetty  75 Oct  5 09:35 default
-rw-rw-r-- 1 jetty jetty  87 Mar 26  2020 .gitignore
drwxrwxr-x 2 jetty jetty  75 Oct  7 13:54 jenkins-ldap.gluu.org
total 20
drwxrwxr-x  5 jetty jetty  234 Oct  7 13:54 .
drwxrwxr-x 11 jetty jetty  238 Oct  7 13:54 ..
drwxrwxr-x  2 jetty jetty  175 Apr 27  2020 ce-dev5.gluu.org
-rw-r--r--  1 jetty jetty  143 Dec 10  2019 config-build.properties
-rw-r--r--  1 jetty jetty  730 Dec 10  2019 config-oxauth.properties
-rw-r--r--  1 jetty jetty  909 Dec 10  2019 config-oxauth-test-data.properties
-rw-r--r--  1 jetty jetty 1304 Dec 10  2019 config-oxauth-test.properties
drwxrwxr-x  2 jetty jetty  175 Oct  5 09:35 default
-rw-rw-r--  1 jetty jetty   55 Oct  4  2019 .gitignore
drwxrwxr-x  2 jetty jetty  175 Oct  7 13:54 jenkins-ldap.gluu.org
[workspace] $ /home/jenkins/.jenkins/tools/hudson.tasks.Maven_MavenInstallation/maven_3.3.9/bin/mvn -DDEPLOY_BUILD=true -DVERSION_NAME=master -DPROFILE_NAME=jenkins-ldap.gluu.org -DDEVELOPMENT_BUILD=false -DDEPENDENCY_CHECK=false -DCVSS_SCORE=9 -DMAVEN_SKIP_TESTS=false -DSKIP_FINDBUGS=true -Dpython.import.site=false -DPYTHON_HOME=/opt/jython -Dcfg=jenkins-ldap.gluu.org -Dmaven.test.skip=false -Ddevelopment-build=false -Dcvss-score=9 -Dfindbugs.skip=true -Ddependency.check=false clean compile install findbugs:findbugs site
[INFO] Scanning for projects...
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-core-bom/4.3.1-SNAPSHOT/maven-metadata.xml

[INFO] ------------------------------------------------------------------------
[INFO] Reactor Build Order:
[INFO] 
[INFO] oxAuth
[INFO] oxAuth Model
[INFO] Persistence model
[INFO] oxAuth Client
[INFO] oxauth-static
[INFO] oxAuth Common
[INFO] oxAuth Server
[INFO]                                                                         
[INFO] ------------------------------------------------------------------------
[INFO] Building oxAuth 4.3.1-SNAPSHOT
[INFO] ------------------------------------------------------------------------
[INFO] 
[INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth ---
[INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/target
[INFO] 
[INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth ---
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/pom.xml to /var/www/html/maven/org/gluu/oxauth/4.3.1-SNAPSHOT/oxauth-4.3.1-SNAPSHOT.pom
[INFO] 
[INFO] --- findbugs-maven-plugin:3.0.4:findbugs (default-cli) @ oxauth ---
[INFO] 
[INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth ---
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/apache/maven/skins/maven-default-skin/maven-metadata.xml

[WARNING] Could not transfer metadata org.apache.maven.skins:maven-default-skin/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org: Name or service not known
[INFO]                                                                         
[INFO] ------------------------------------------------------------------------
[INFO] Building oxAuth Model 4.3.1-SNAPSHOT
[INFO] ------------------------------------------------------------------------
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven-client/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/oxeleven-client/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxeleven-client:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxeleven-client:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxeleven-client:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/oxeleven/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxeleven:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven-model/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/oxeleven-model/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxeleven-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxeleven-model:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxeleven-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-annotation/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-annotation/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-annotation:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-annotation:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-annotation:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-parent/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-parent/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-parent:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-util/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-util/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-util:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-util:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-util:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-model/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-model/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-model:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-model/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-model/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-model:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-model:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-util/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-util/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-util:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-util:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-util:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[INFO] 
[INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-model ---
[INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 1 resource
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-model ---
[INFO] Compiling 196 source files to /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/classes
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 1 resource
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-model ---
[INFO] Nothing to compile - all classes are up to date
[INFO] 
[INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 4 resources
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-model ---
[INFO] Compiling 9 source files to /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/test-classes
[INFO] 
[INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-model ---

-------------------------------------------------------
 T E S T S
-------------------------------------------------------
Running TestSuite
CodeVerifier{codeVerifier='1OvmDfMYDDSSXFaJt9w8X.WlgZ-04fcw1B979AqPXj2Cz8CSo84WaUyZd2xwh267sGBadA7jkLWEe7n3dV3IGuhKDDecFOKFx1QRFJ3Um-NN~BdIIK38i8PxmBIq5yAx', codeChallenge='1OvmDfMYDDSSXFaJt9w8X.WlgZ-04fcw1B979AqPXj2Cz8CSo84WaUyZd2xwh267sGBadA7jkLWEe7n3dV3IGuhKDDecFOKFx1QRFJ3Um-NN~BdIIK38i8PxmBIq5yAx', transformationType=PLAIN}
CodeVerifier{codeVerifier='b~DoBPkv73jCuAzMLekLqTJxVL5-YzY2VtYrtPz.qUmgprSIJv_twGp~PJqK3v2g0GlE995GIX3dqMJ5gdkmGZvR0blldOywlUbyBJaBawtdZqZrntJ3YAJvOgkxCOlp', codeChallenge='MQEoz0ini_PTSwafF94s2jduWTDxfLCCeGkV81HkFW4', transformationType=S256}
Hi there from Javascript, 
Tests run: 10, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 2.665 sec - in TestSuite

Results :

Tests run: 10, Failures: 0, Errors: 0, Skipped: 0

[INFO] 
[INFO] --- maven-jar-plugin:2.4:jar (default-jar) @ oxauth-model ---
[INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/oxauth-model.jar
[INFO] 
[INFO] --- maven-jar-plugin:2.4:test-jar (default) @ oxauth-model ---
[INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/oxauth-model-tests.jar
[INFO] 
[INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth-model ---
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/oxauth-model.jar to /var/www/html/maven/org/gluu/oxauth-model/4.3.1-SNAPSHOT/oxauth-model-4.3.1-SNAPSHOT.jar
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/pom.xml to /var/www/html/maven/org/gluu/oxauth-model/4.3.1-SNAPSHOT/oxauth-model-4.3.1-SNAPSHOT.pom
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Model/target/oxauth-model-tests.jar to /var/www/html/maven/org/gluu/oxauth-model/4.3.1-SNAPSHOT/oxauth-model-4.3.1-SNAPSHOT-tests.jar
[INFO] 
[INFO] --- findbugs-maven-plugin:3.0.4:findbugs (default-cli) @ oxauth-model ---
[INFO] 
[INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth-model ---
[INFO]                                                                         
[INFO] ------------------------------------------------------------------------
[INFO] Building Persistence model 4.3.1-SNAPSHOT
[INFO] ------------------------------------------------------------------------
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-service/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-service/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-service:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-service:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-service:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-ldap/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-ldap/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-ldap:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-ldap:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-ldap:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-core/4.3.1-SNAPSHOT/maven-metadata.xml

Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-core/4.3.1-SNAPSHOT/maven-metadata.xml

[WARNING] Could not transfer metadata org.gluu:gluu-orm-core:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-core:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-core:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-filter/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-filter/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-filter:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-filter:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-filter:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-couchbase/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-couchbase/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-couchbase:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-couchbase:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-couchbase:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-spanner/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-spanner/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-spanner:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-spanner:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-spanner:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-sql/4.3.1-SNAPSHOT/maven-metadata.xml

Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-sql/4.3.1-SNAPSHOT/maven-metadata.xml

[WARNING] Could not transfer metadata org.gluu:gluu-orm-sql:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-sql:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-sql:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-hybrid/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-hybrid/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-hybrid:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-hybrid:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-hybrid:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/gluu-orm-cdi/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/gluu-orm-cdi/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:gluu-orm-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:gluu-orm-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:gluu-orm-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-cache/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-cache/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-cache:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-cache:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-cache:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-script/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-script/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-script:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-script:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-script:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-cdi/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-cdi/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-cdi:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
Downloading: https://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxcore-document-store/4.3.1-SNAPSHOT/maven-metadata.xml
Downloading: https://ox.gluu.org/maven/org/gluu/oxcore-document-store/4.3.1-SNAPSHOT/maven-metadata.xml


[WARNING] Could not transfer metadata org.gluu:oxcore-document-store:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[WARNING] Failure to transfer org.gluu:oxcore-document-store:4.3.1-SNAPSHOT/maven-metadata.xml from https://repo2.maven.org/maven2/org/bouncycastle was cached in the local repository, resolution will not be reattempted until the update interval of bouncycastle has elapsed or updates are forced. Original error: Could not transfer metadata org.gluu:oxcore-document-store:4.3.1-SNAPSHOT/maven-metadata.xml from/to bouncycastle (https://repo2.maven.org/maven2/org/bouncycastle): repo2.maven.org
[INFO] 
[INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-persistence-model ---
[INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-persistence-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 1 resource
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-persistence-model ---
[INFO] Compiling 10 source files to /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target/classes
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-persistence-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 1 resource
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-persistence-model ---
[INFO] Nothing to compile - all classes are up to date
[INFO] 
[INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-persistence-model ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/src/test/resources
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-persistence-model ---
[INFO] No sources to compile
[INFO] 
[INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-persistence-model ---
[INFO] Tests are skipped.
[INFO] 
[INFO] --- maven-jar-plugin:2.4:jar (default-jar) @ oxauth-persistence-model ---
[INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target/oxauth-persistence-model.jar
[INFO] 
[INFO] --- maven-jar-plugin:2.4:test-jar (default) @ oxauth-persistence-model ---
[WARNING] JAR will be empty - no content was marked for inclusion!
[INFO] Building jar: /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target/oxauth-persistence-model-tests.jar
[INFO] 
[INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth-persistence-model ---
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target/oxauth-persistence-model.jar to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.3.1-SNAPSHOT/oxauth-persistence-model-4.3.1-SNAPSHOT.jar
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/pom.xml to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.3.1-SNAPSHOT/oxauth-persistence-model-4.3.1-SNAPSHOT.pom
[INFO] Installing /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/persistence-model/target/oxauth-persistence-model-tests.jar to /var/www/html/maven/org/gluu/oxauth-persistence-model/4.3.1-SNAPSHOT/oxauth-persistence-model-4.3.1-SNAPSHOT-tests.jar
[INFO] 
[INFO] --- findbugs-maven-plugin:3.0.4:findbugs (default-cli) @ oxauth-persistence-model ---
[INFO] 
[INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth-persistence-model ---
[INFO]                                                                         
[INFO] ------------------------------------------------------------------------
[INFO] Building oxAuth Client 4.3.1-SNAPSHOT
[INFO] ------------------------------------------------------------------------
[INFO] 
[INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-client ---
[INFO] Deleting /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/target
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/main/resources
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client ---
[INFO] Compiling 88 source files to /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/target/classes
[INFO] 
[INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] skip non existing resourceDirectory /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/main/resources
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client ---
[INFO] Nothing to compile - all classes are up to date
[INFO] 
[INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-client ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] Copying 15 resources
[INFO] 
[INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-client ---
[INFO] Compiling 179 source files to /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/target/test-classes
[WARNING] /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release
[WARNING] /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release
[WARNING] /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[15,24] X509CertImpl is internal proprietary API and may be removed in a future release
[WARNING] /home/jenkins/.jenkins/jobs/oxAuth_master_LDAP/workspace/Client/src/test/java/org/gluu/oxauth/ws/rs/WebKeysTest.java:[48,35] X509CertImpl is internal proprietary API and may be removed in a future release
[INFO] 
[INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-client ---

-------------------------------------------------------
 T E S T S
-------------------------------------------------------
Running TestSuite
Invoked init test suite method 

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:09 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:10 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: authorizationRequestAlgA128KWEncA128GCM
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "request_object_encryption_alg" : "A128KW",
  "application_type" : "web",
  "userinfo_encrypted_response_enc" : "A128GCM",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "userinfo_encrypted_response_alg" : "A128KW",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "additional_audience" : [ ],
  "id_token_encrypted_response_alg" : "A128KW",
  "id_token_encrypted_response_enc" : "A128GCM",
  "oxIncludeClaimsInIdToken" : "true",
  "client_name" : "oxAuth test app",
  "request_object_encryption_enc" : "A128GCM",
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 2064
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:10 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "request_object_encryption_alg": "A128KW",
    "application_type": "web",
    "rpt_as_jwt": false,
    "userinfo_encrypted_response_enc": "A128GCM",
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=51f5fd2b-4569-4b1b-a557-2a05bd39bcdd",
    "tls_client_auth_subject_dn": "",
    "userinfo_encrypted_response_alg": "A128KW",
    "registration_access_token": "bc803ee2-030c-483c-956e-79f15d75aa81",
    "client_id": "51f5fd2b-4569-4b1b-a557-2a05bd39bcdd",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "0a140768-ab9d-483b-bf48-207c0c679645",
    "client_id_issued_at": 1633614910,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "request_object_encryption_enc": "A128GCM",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "id_token_encrypted_response_alg": "A128KW",
    "client_secret_expires_at": 1633618510,
    "id_token_encrypted_response_enc": "A128GCM",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=51f5fd2b-4569-4b1b-a557-2a05bd39bcdd&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0184d99c-56ec-407d-9950-7a6722d74bed&nonce=5f95ec23-e0ee-4164-9773-6df6d0e45d8e&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.73QwhAdAZoVOkLRtb4NC9_-G_bZ350E1.GwU2g797C-kmmUgm.0naqUKuAeFHNf0eRZjsxcrp9n4ykX_58fWt_QHalrOGNYWcz4hvU0QDQMZHGFOeTr0MutWwbHWeRt6mNR5uPRPTVwYLaFE48dq_35gJfK7YDbJHOJMPkUHX4b6pHp4WrG5oGs-6c6N2DYxlUsIc54AJwEFwxWkR8Fo4x8ldbN6KWW0DBfk-shix7DgQ2lS00gKGFRvv3_nGqLusDTw2RpdDsuRlZ0n7qA3IukVO1j68JEubx17XleS8HQOwxxR8VJ2w_fWeoepe5oqYEWoBmSoyTfsQjPN85CWEEsCk3kXwg4LyW9Wl4AmyNmnvN4b1C-JoT14MAdoKHb8I4C9jhzbI5VRY79KY5ZjAEwTwBLzjjwFP4ejYyxTVNMBNEvKDLJnk1inMZguzVm1ZyKT3xUQdh9pO0DisSj7dthSi65DUlTKWxXbp3zLa0tFbrWtapOpuA9Uq14MsErwOy3875bMMSTyuxh7mTLiWzMojwjtkyzZruxWqBmbe_mGqYuU3fvASb63gKQJFn_gLPG76tAbiUXiL92wdAOmUNXtTE0m9PUpscwVHimfgL8vSqEj-Jz0-hL6SCojBxBZi65jcgw94MCVaVcFETNluM5hjNVtefegK0u63GCeT3LN79VyYJFzr4jmDldlsnBXnauu3B0LCJ3sRpM4zs9NXhotjb5MZJLVBwdOnQi9dUwWRvxt5pPpeqoYRHyJ9cA-YByWFrBA_TIFOoXnbfqXw6BUR9aGnV3vv27pD-rLK7wHG70ksG8iGqET0Nx_a7KOFSS2C666u4pX_SwIBiwtEXUvGzcj_SKtjOWM7UOPA_c-a7FVr4f__8nbkeXbGirAXvfG_chRnnk0IKpIdI.ISs4MFV3RL2UNlEsPYKroQ
13:55:13.104 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:02523183622bd9dc337ee294440a5a4ad6faa8c62d137eea0417e886e6921341.de53af20-b98c-4d47-aec1-91c0e0a7a14a
authenticateResourceOwnerAndGrantAccess: sessionId:fb3eadca-8f24-4cac-92d9-91b3a47cb5f2
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=51f5fd2b-4569-4b1b-a557-2a05bd39bcdd&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0184d99c-56ec-407d-9950-7a6722d74bed&nonce=5f95ec23-e0ee-4164-9773-6df6d0e45d8e&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.73QwhAdAZoVOkLRtb4NC9_-G_bZ350E1.GwU2g797C-kmmUgm.0naqUKuAeFHNf0eRZjsxcrp9n4ykX_58fWt_QHalrOGNYWcz4hvU0QDQMZHGFOeTr0MutWwbHWeRt6mNR5uPRPTVwYLaFE48dq_35gJfK7YDbJHOJMPkUHX4b6pHp4WrG5oGs-6c6N2DYxlUsIc54AJwEFwxWkR8Fo4x8ldbN6KWW0DBfk-shix7DgQ2lS00gKGFRvv3_nGqLusDTw2RpdDsuRlZ0n7qA3IukVO1j68JEubx17XleS8HQOwxxR8VJ2w_fWeoepe5oqYEWoBmSoyTfsQjPN85CWEEsCk3kXwg4LyW9Wl4AmyNmnvN4b1C-JoT14MAdoKHb8I4C9jhzbI5VRY79KY5ZjAEwTwBLzjjwFP4ejYyxTVNMBNEvKDLJnk1inMZguzVm1ZyKT3xUQdh9pO0DisSj7dthSi65DUlTKWxXbp3zLa0tFbrWtapOpuA9Uq14MsErwOy3875bMMSTyuxh7mTLiWzMojwjtkyzZruxWqBmbe_mGqYuU3fvASb63gKQJFn_gLPG76tAbiUXiL92wdAOmUNXtTE0m9PUpscwVHimfgL8vSqEj-Jz0-hL6SCojBxBZi65jcgw94MCVaVcFETNluM5hjNVtefegK0u63GCeT3LN79VyYJFzr4jmDldlsnBXnauu3B0LCJ3sRpM4zs9NXhotjb5MZJLVBwdOnQi9dUwWRvxt5pPpeqoYRHyJ9cA-YByWFrBA_TIFOoXnbfqXw6BUR9aGnV3vv27pD-rLK7wHG70ksG8iGqET0Nx_a7KOFSS2C666u4pX_SwIBiwtEXUvGzcj_SKtjOWM7UOPA_c-a7FVr4f__8nbkeXbGirAXvfG_chRnnk0IKpIdI.ISs4MFV3RL2UNlEsPYKroQ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=3583df43-f4f4-4002-b919-e47e67695a1d&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.JGYXuIp2FTihUlo2w2K563bz6za41D9B._QBuAblSTi5zO1oR.Mx1i9hnk2SVo88m0gl_rJMdko79QWIH6QQHIQRkKnMp0rnE5VzgWtq3qKsfpvoHFpNUxs-98JtrDqX_mo_dqPB9_21--aapcWnwajxBmfSt_84IRQCYn3nS6e0nvslQ-0W0anO_lodREgv4v-03utdeqn85n6ZrsXl40U2PgqvZxhWBJpTSHKg5-1xsp1cpSKCqSXvpbtIC1yP0F7BZNVC2a82XDqiKPjRCmgN_BVylS7uDmaERbiEYqldSoaT3IYPMBZX9CnsJUgW1BW_GfmFrtnvMGuvsO3Lhsqu-J6eFlWPyHs5acuyx6JxrPBRLn6LD7fgbNPLOFLDngf8vqCEnz7KBgkIfHCwU4E05ZM0WpkC9qqjiG7ppUSF6U8GME9US7moX-AedT_6oL8XkEVc7I_paYBGhzmpa7-MVdg04SuSKxIg9qv-Y-4RqgNKBWadByIkuOa1o2Y9eHlLxzGLtzQdmQomUMmH2G_70uPgpkk8P0-FE1Q_Ni6PA43sPQbVgiEgdXJj2XRjQnS-SJb71mgpttD_RHX-bTdsBCqz1j-GzxNSIdvl6t5jCMCKSMJuyoNGBeBlsZJ4bA7u5zE8xkluvofyvpddlKGOW1olMuunWQPh7eu0x3KwsFp1OV2Z78ME6AkJByVLFZmc045CqgztYIGbYTHpF5sf8CPfZbqHqOLzZnwNejXeay_tpZWSY1fWmW9B9n_2YxtGufqrnO6h51RBRk9HV2tMSfcCshnLpOi7NerQNVbD_S3ZciAYaH5Q1aWaPygHgKp4TCRJlFuz8vyfP6f3Der4DvFATIfunMEeeUh3GUI1fPeE2GZyzr3Ek67ITI67E4JRz3c3v5iRo8ofLqlQiqRoXtqwt6hpg0yvpS-yzpVzohqhJy3k72eJa9z_z9eWFtxSNwB9CZaIndIV3c2SWfj3i463AAqT38LvAnsWaiq-AUlOTxNRFvF8pK0mPJK_Rd1Br3QqNRqxFhT6i4k6OR-UiMXPWIe92rg0FJyLZSb_kCKCSzt86vgmuUwDn2GdK7_F9_Zjmczvojp3yXSmWFvnaG.i5FWRgR5jWPJw_FjWYSuwQ&session_id=fb3eadca-8f24-4cac-92d9-91b3a47cb5f2&state=0184d99c-56ec-407d-9950-7a6722d74bed&token_type=bearer&session_state=02523183622bd9dc337ee294440a5a4ad6faa8c62d137eea0417e886e6921341.de53af20-b98c-4d47-aec1-91c0e0a7a14a&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 3583df43-f4f4-4002-b919-e47e67695a1d

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 655
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:16 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiQTEyOEtXIn0.Ea2EDhHc4KmQxuwxRY-Zt_ODxVAVJOc_.a1pHGDGVYTacJkdY.CJLxa3F9b1AO2LF_KAUvBYabP69rqIMDU4e1Ts93gi_TMljOtUXf7TUw0uo4rcrwpiTk6RewbddSRw2wDLefwR8L7BdSIpSXurXLQKKMRnh_U09F7fdB9UmoFV8s5fZXalFxwixJ3H-AAxAOi8gdw15ZnMMUDrEmo8Y86aaOCy6fZi6VJtkfuAvapEgbmTd4glDYtB1MZPX47M5QnboJzT26dVDMdLcbgssIgI55ZS-z5jAS2-wspEmbNXQMRJ8pnjhNiGsF7enAbml29ckGG1OpRXQGcLpuVH8yldBXkS2d2N8L5b1QDBEhKSSmyhCpa5wm1EBBSjIaxLynki2SYP9zFNn4TbwP1BbtVwxhiUlb1sIeGohQWMA_tquKPL-qFPn9S5ZBEc0keWBfOEmalnI0PrqwKjpr4PMVZy-_zQqfV11c3TsRopwms7OqEDEjfZyIbeyTkYHbcTcw_u-ane1oSluFMr3_juzvbej-NjDvnmOfG-52AjbdI4Jz8y6jm6YzzhkXVg.fbArbPZ_8ZpvhAM-2qCcBA

#######################################################
TEST: authorizationRequestAlgA256KWEncA256GCM
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "request_object_encryption_alg" : "A256KW",
  "application_type" : "web",
  "userinfo_encrypted_response_enc" : "A256GCM",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "userinfo_encrypted_response_alg" : "A256KW",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "additional_audience" : [ ],
  "id_token_encrypted_response_alg" : "A256KW",
  "id_token_encrypted_response_enc" : "A256GCM",
  "oxIncludeClaimsInIdToken" : "true",
  "client_name" : "oxAuth test app",
  "request_object_encryption_enc" : "A256GCM",
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 2064
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:16 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "request_object_encryption_alg": "A256KW",
    "application_type": "web",
    "rpt_as_jwt": false,
    "userinfo_encrypted_response_enc": "A256GCM",
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=893a15b6-592b-4279-93d8-4adbfe75da23",
    "tls_client_auth_subject_dn": "",
    "userinfo_encrypted_response_alg": "A256KW",
    "registration_access_token": "a18d94c7-d2e3-4130-a7eb-1ac8359664ad",
    "client_id": "893a15b6-592b-4279-93d8-4adbfe75da23",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "8d27a3af-a98c-4b8d-9bc5-0b784a2fcd63",
    "client_id_issued_at": 1633614916,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "request_object_encryption_enc": "A256GCM",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "id_token_encrypted_response_alg": "A256KW",
    "client_secret_expires_at": 1633618516,
    "id_token_encrypted_response_enc": "A256GCM",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=893a15b6-592b-4279-93d8-4adbfe75da23&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0e49b9dd-ad5c-4d49-a7cf-291537ffafb4&nonce=655e6741-437f-47cf-a3af-35055278baf4&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.Kpl95lWPUCn4kCruXwdKYA_8S5z-KwsYjgwBgbRTEwmyvxNJGK_qKQ.FaBlo4j5MBzbSFfE.CagY7p7FZ_hUht6CcW6L1l1sA1jhsDBax7UI3mAlBNLnSikVPu2l-0hqWb-c67eFIxDEz8JV-JZsM6ys9osxx9_02TbBZ8gUzwS5Pznx-vA11BTGjq2I_mUSFkUafkcRyPqp1_AvBax3DoqtD6rC2gjEiI-8ciV6wZ7CXWMYuUMALy2ENT8wcezss4DJkppX6hhfrrrxAAvlLg_fNvam5q8lEpH5knRED5BZdFY2pMjr50DZbhXrsoTMRdkQPA-S9Qin6B1sbPIjeQk7LXI_fkHekUNCbYiTS4JBRFM27rJ_hXu6vnKyaWc6tznvCEcdlhgLc4pAGGFVDxAkWSi8AC-qM709fkN0m4QXwulbAZ1SsUjezETkan3MIFPQZloRwRKo_4KCAZH2_OwFC-ZnmrQl_8LdGgSXzQLVIco_CoobTSptnWSBirvF1g_PAE0OzvmZPCQFyJhaZiSKzyAtisLs7IWCoojkicbothXbOYVKJcdQ23mmtMFQW79a8T-3IrQ0mGhh6opLTTcag0Sevi97AFQoSf63ufzKCOTlKs88dYHsovnfVv_fWh9NW-lmSDCXPCZW_1Wtgv4OIq6J5gbUUHFlfYc6BB6tnhe11xERJMoMAB-NEw2BY6OMrs2HdUfe2CcXXdTG7oSlXtpSoe-5FxVf7Qp4xGYy_clR0M0jJBRxDFYn9C_tN4hnC8mZJPH6siHhksa1IVtuMhBy1-dbnhBE7xkGQzRJrAiCiqC4HDeJ3mAgD0_Pher2-lHU27NaBtraDW2UgTKmF2Ok7nd4crwsHW757_g4gQp1jpYORyR1IBa3lwNjI7uMTX56T7dYWkxxHfxx5xTF77_v7yGEEsnlLHJV.b8-YRK9F_3JMfbncPODn8w
13:55:16.808 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:7e47cd38e42b93c68027fcf9f42df26e0996319345da440cc13826302b1152bd.ed85f299-a08c-4e38-8887-68b289f24ae6
authenticateResourceOwnerAndGrantAccess: sessionId:c634bd95-2ac6-4f1b-acb0-ee615e7a2d93
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=893a15b6-592b-4279-93d8-4adbfe75da23&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0e49b9dd-ad5c-4d49-a7cf-291537ffafb4&nonce=655e6741-437f-47cf-a3af-35055278baf4&request=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.Kpl95lWPUCn4kCruXwdKYA_8S5z-KwsYjgwBgbRTEwmyvxNJGK_qKQ.FaBlo4j5MBzbSFfE.CagY7p7FZ_hUht6CcW6L1l1sA1jhsDBax7UI3mAlBNLnSikVPu2l-0hqWb-c67eFIxDEz8JV-JZsM6ys9osxx9_02TbBZ8gUzwS5Pznx-vA11BTGjq2I_mUSFkUafkcRyPqp1_AvBax3DoqtD6rC2gjEiI-8ciV6wZ7CXWMYuUMALy2ENT8wcezss4DJkppX6hhfrrrxAAvlLg_fNvam5q8lEpH5knRED5BZdFY2pMjr50DZbhXrsoTMRdkQPA-S9Qin6B1sbPIjeQk7LXI_fkHekUNCbYiTS4JBRFM27rJ_hXu6vnKyaWc6tznvCEcdlhgLc4pAGGFVDxAkWSi8AC-qM709fkN0m4QXwulbAZ1SsUjezETkan3MIFPQZloRwRKo_4KCAZH2_OwFC-ZnmrQl_8LdGgSXzQLVIco_CoobTSptnWSBirvF1g_PAE0OzvmZPCQFyJhaZiSKzyAtisLs7IWCoojkicbothXbOYVKJcdQ23mmtMFQW79a8T-3IrQ0mGhh6opLTTcag0Sevi97AFQoSf63ufzKCOTlKs88dYHsovnfVv_fWh9NW-lmSDCXPCZW_1Wtgv4OIq6J5gbUUHFlfYc6BB6tnhe11xERJMoMAB-NEw2BY6OMrs2HdUfe2CcXXdTG7oSlXtpSoe-5FxVf7Qp4xGYy_clR0M0jJBRxDFYn9C_tN4hnC8mZJPH6siHhksa1IVtuMhBy1-dbnhBE7xkGQzRJrAiCiqC4HDeJ3mAgD0_Pher2-lHU27NaBtraDW2UgTKmF2Ok7nd4crwsHW757_g4gQp1jpYORyR1IBa3lwNjI7uMTX56T7dYWkxxHfxx5xTF77_v7yGEEsnlLHJV.b8-YRK9F_3JMfbncPODn8w

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=c866df37-e048-4599-aedb-83a634b4c006&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0._JdIzZr5aLovE4-_uYYzCGxqt8w3gF0XpVH0H5b9HRo0Cf_YOjxRHw.SRGWjEODW0p6Hwr6.4U-CxkdPhLVAdvNCgFmfv5-AVxhmT_k2b5_IvTTpgXLa0Pwkrbmxc5_1x-PJMXWi8X3k08G1vVNWa_oEd-Kh-TpvJyvESzGY3tAX6aspshkLdVZZtQTecwZrQJsxSd8kzbjNPkL0NcX3OGxL8fZ4SGmWhZn1VGiedLG5kteJ39ozeUL9I_6maP9TCf6iV4BBeXAdXh4gjpnj8aUXpvES3Uj357lfem6YUdzQAG1FQuygN5VegArZh1hcNAcb59ZMkyZdm_uBk06HIX5clMqbu5g2tN3GEhkJZR8rXqeu7rKQ2WT4EGSoLtoUxyYuklqg6_BzQsh6v7CVmh2o_tcDE2ugZiwStY9twAN8QSr_eme0ijlpt2TR7APSDMy8u54Mrk-ATS0TF_OywuUsboXhtcvc6LlWRitM9CpOZWIBQao9Zv2ZLHzL2wd-y3xe-0bNfgUFh42_Xm88I05lQKEioCUL4A1gOP1PIA1i2bCHTVk9RJLpX1yMRNnZlm6Dy0l7FRne-C11pBLoOnPtpfBynWQj0AYxkwbXZppwtC9JpW7uJipk-PpR98aakC7RWXl6zVMxvdr8mJRt6CvHEGRfmtaQihJd9TfjuZWKicC0_4aNe6Z58fuyFValzHpVkAJYWdXyliPWYjT0fYEogCR2CLbTR6nL0nTpeLg1D6fUR-Fe5TEacVCC3M3iirJ-bl-9mgKL4EkpadfFtDXaWXbCAbzer-5FWfi6Dy6dzjpdI-z8sUrEshiagLNdGobc6LynQIS5or-rWv7gkCC8omgwyweI7Sx_GxXINssQEiLUGYYfglFQ9Aed0ab8U3EjMIutnXWRehZJzQRCQqTVk9XyRCSxQHBy66PZQeznYeZLs6EGHmgRO0YsnhKr3K3yzBxbQMbKtAXolWEPTCSx4ofvIKUskAzVRHqiUO_JzEvJ7JEBem_jYQOuhvzt-UDBNGCoOVH6Uu2NZ23LDuijr5Bd7ooi0KTuf56SmeX6WeelRRrn6HWHJNb9Xk6xt3WS1cRFXrfdCEk3Q2ZBm9TbbhNQJ7oS9-zsAwoWpCKCmvz2.Ie-tMto8wT_2XZ94ef0brw&session_id=c634bd95-2ac6-4f1b-acb0-ee615e7a2d93&state=0e49b9dd-ad5c-4d49-a7cf-291537ffafb4&token_type=bearer&session_state=7e47cd38e42b93c68027fcf9f42df26e0996319345da440cc13826302b1152bd.ed85f299-a08c-4e38-8887-68b289f24ae6&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer c866df37-e048-4599-aedb-83a634b4c006

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 677
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:18 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiQTI1NktXIn0.Wvimu-4wyVdYPQh_aT4DseLkts0Fzkvw2EoxqtJPRJkB7l1VmSR0Fg.RCLDQqcHb3jIeRgc.56VboOabeZ0Lnmxu68LMgXOemDNnLxVf3LILOb7uivZpVGXGi-DyU_we_-n_eK-7a0CvGhhrzhkd2o6u7yD9wsgR4yvrV04tO2ScNEfQP96oGS8jVTzkOKG6ueKlKZhQ7T1TsOdRmm88JDTP1l2KLp2seVUN5bP2JyWOL_KGS01wI4i49bDeWVDRKeQYwMqJwz1EzQlsJChhw6LXlmjwUXBNeWwI8bX51NaOVOFtKLY11nfPxB1O6y9CaDS-hm8VkACWUP7D1JeN8-SPat1tHvnOmB1U1u3T8kEkkGzGM96hR9y_6fJ23xk7EWt7P-CZYgAIqc8dPWMA3t2O4L3AChqJYhiOpA48joxnsAtjd7DycusPExQM7U5sEHRZn3xDSFjSccqoVZv7RVvLhmwZZCI6GBMAcGMMTpE2UYehdDHTEZQhJ_fb5_CcBrtuHpAuwrCwUn4J0nkS8HOkKpzA-84p2uueqDekzptk5GH89h9KX4ajt1alZD3uImYAtP-BMTb4_ct6Pg.M9glLjmXNhRp8ARVClTrMg

#######################################################
TEST: authorizationRequestAlgRSA15EncA128CBCPLUSHS256
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "request_object_encryption_alg" : "RSA1_5",
  "application_type" : "web",
  "userinfo_encrypted_response_enc" : "A128CBC+HS256",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "userinfo_encrypted_response_alg" : "RSA1_5",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "additional_audience" : [ ],
  "id_token_encrypted_response_alg" : "RSA1_5",
  "id_token_encrypted_response_enc" : "A128CBC+HS256",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "client_name" : "oxAuth test app",
  "request_object_encryption_enc" : "A128CBC+HS256",
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 2170
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:18 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "request_object_encryption_alg": "RSA1_5",
    "application_type": "web",
    "rpt_as_jwt": false,
    "userinfo_encrypted_response_enc": "A128CBC+HS256",
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=d776654b-1bb3-4b5d-b8c3-5ba7011b4f01",
    "tls_client_auth_subject_dn": "",
    "userinfo_encrypted_response_alg": "RSA1_5",
    "registration_access_token": "d7bbc864-cc6a-49c5-9d16-775acbc8df33",
    "client_id": "d776654b-1bb3-4b5d-b8c3-5ba7011b4f01",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ccb1478c-b79a-476d-8f3e-7fc1ebe26711",
    "client_id_issued_at": 1633614918,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "request_object_encryption_enc": "A128CBC+HS256",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "id_token_encrypted_response_alg": "RSA1_5",
    "client_secret_expires_at": 1633618518,
    "id_token_encrypted_response_enc": "A128CBC+HS256",
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=d776654b-1bb3-4b5d-b8c3-5ba7011b4f01&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=897547da-e691-437b-b1d0-88980a35beb5&nonce=59ec1599-f7b3-47bb-9303-11b10e447166&request=eyJraWQiOiI3OTllMWY0Ny1mNzY5LTRlOGUtYWJiZS1jMmE3NjBiMjc3NmZfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkExMjhDQkMrSFMyNTYiLCJhbGciOiJSU0ExXzUifQ.epA9Kd9SpyqhyYKmlclLgyYPQO1AJI3H6CQG_otyyyVOmK8KMETMx3wrhnrvwccmhI13L95NsqHZ1mPSpJ6nzM8xQ9Q7NyEC9U6Rd8VBTcnJivreatlg8zuZrSRLijGIQ5M27ECKqdHLYD8qPJXDka84C-KFbotiX3rUc1RFHYrKl8ext5K0B-iMpM7nzBjx61eIQlNpRLAiYLSdmzmMNV8Mwx2HZ_yLoESJj6d7lO89ykSI13zy6hCJ_DLDQqyUEf2lOtj58GKLn8XvgBkYhkUMVJjI3Awb2YagrvNaIRefWGh0HE5cqRE2hEARts_5xpV6g1Gh5IshOX5iwcR00A.mDthn37x5mgNpp4LuyyEgg.ZuCKE3SRdIfGjpr1wdVqg4nvBqGgdRz0QJvpEk9lbA-wNeubSRx_3DGU9xznVc3r6lkCB7jLE2xOnFgOWmXZ_VaZEGjMopj2_EDPrdbYDE680yI1TX8Goka5pvi6USSYS-_jtBm33AxKBHUjpQ8yPaDA9Yu8kRqw_I5p0iLVCS0VPscOX2cV0deNFb0e-d2lqM9y10Mfi1GnB9COjNEth18brymUMu80lkqBblot_QAHPFcSzxgz7z4QVRIRcY6k8F6Iq65kfE1PQUIOnXC5QFTQNmY5XgX0H7HB0hgs3GOk6Fe_omdDfZJjwMJkLNKbJqiINedt5AaiQKZ-XjODRuxFV4iOyrzqu6XVlW9OfD0n4iJM8h80ntDrtDR0QZQmpxXYq7BCGFDmJMxLrsBLQ3CkBJX7avHQyDh7_8k5IkuwE-do2eWFD-s8BbhySufp8Rq18F0JIfXtlYupIdYsPsBIM5Rm_cyPSVRtoO7MgCsD_1RstK9PocRKr2EFTTHarvXuV91NWr6JzMx_yyTfjtfxGkJUiFIKM0HweGlnnM2a53lJStGdSZyeq7CXgCDBeYLanKuTlv4yBc2qIFBqz4x6tZz1rizElklciy1dbSF33lTGYoaIYFjsbx4hO9HelxOMt8LDvpTvJevFTaDIGPGMsA24-hgy_3dubUdglBvfCJ6amI8QkjkVKfC1nkMLZHUNnKxzTeFGiV6C5i39abJYbNSy--cwu2NWT61zgliRP9iTxJFasIhsfdKqYKYUNXrFaYYerh4i2ORNEecXm98RqMFZUj_Kj9aU1r1Sn7adEVA9eD7HEped4SGOP_E4K4lY-uQy5wd-FcPul39qcGU55RVCb-U4_C6_mCv2XS8.-FQCfzbRDKuam85-1S9zTa3AJgkJEutpmWsbqiwPoMk
13:55:19.643 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:d24fca1296b931f5e852f8f7a261518ccd6eb3acd709f684ae0b2b3195d76c7f.d5ecc160-5aff-4bff-8705-ff319d2b9147
authenticateResourceOwnerAndGrantAccess: sessionId:8c2b8607-5596-431c-921f-8ab5ae747a80
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=d776654b-1bb3-4b5d-b8c3-5ba7011b4f01&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=897547da-e691-437b-b1d0-88980a35beb5&nonce=59ec1599-f7b3-47bb-9303-11b10e447166&request=eyJraWQiOiI3OTllMWY0Ny1mNzY5LTRlOGUtYWJiZS1jMmE3NjBiMjc3NmZfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkExMjhDQkMrSFMyNTYiLCJhbGciOiJSU0ExXzUifQ.epA9Kd9SpyqhyYKmlclLgyYPQO1AJI3H6CQG_otyyyVOmK8KMETMx3wrhnrvwccmhI13L95NsqHZ1mPSpJ6nzM8xQ9Q7NyEC9U6Rd8VBTcnJivreatlg8zuZrSRLijGIQ5M27ECKqdHLYD8qPJXDka84C-KFbotiX3rUc1RFHYrKl8ext5K0B-iMpM7nzBjx61eIQlNpRLAiYLSdmzmMNV8Mwx2HZ_yLoESJj6d7lO89ykSI13zy6hCJ_DLDQqyUEf2lOtj58GKLn8XvgBkYhkUMVJjI3Awb2YagrvNaIRefWGh0HE5cqRE2hEARts_5xpV6g1Gh5IshOX5iwcR00A.mDthn37x5mgNpp4LuyyEgg.ZuCKE3SRdIfGjpr1wdVqg4nvBqGgdRz0QJvpEk9lbA-wNeubSRx_3DGU9xznVc3r6lkCB7jLE2xOnFgOWmXZ_VaZEGjMopj2_EDPrdbYDE680yI1TX8Goka5pvi6USSYS-_jtBm33AxKBHUjpQ8yPaDA9Yu8kRqw_I5p0iLVCS0VPscOX2cV0deNFb0e-d2lqM9y10Mfi1GnB9COjNEth18brymUMu80lkqBblot_QAHPFcSzxgz7z4QVRIRcY6k8F6Iq65kfE1PQUIOnXC5QFTQNmY5XgX0H7HB0hgs3GOk6Fe_omdDfZJjwMJkLNKbJqiINedt5AaiQKZ-XjODRuxFV4iOyrzqu6XVlW9OfD0n4iJM8h80ntDrtDR0QZQmpxXYq7BCGFDmJMxLrsBLQ3CkBJX7avHQyDh7_8k5IkuwE-do2eWFD-s8BbhySufp8Rq18F0JIfXtlYupIdYsPsBIM5Rm_cyPSVRtoO7MgCsD_1RstK9PocRKr2EFTTHarvXuV91NWr6JzMx_yyTfjtfxGkJUiFIKM0HweGlnnM2a53lJStGdSZyeq7CXgCDBeYLanKuTlv4yBc2qIFBqz4x6tZz1rizElklciy1dbSF33lTGYoaIYFjsbx4hO9HelxOMt8LDvpTvJevFTaDIGPGMsA24-hgy_3dubUdglBvfCJ6amI8QkjkVKfC1nkMLZHUNnKxzTeFGiV6C5i39abJYbNSy--cwu2NWT61zgliRP9iTxJFasIhsfdKqYKYUNXrFaYYerh4i2ORNEecXm98RqMFZUj_Kj9aU1r1Sn7adEVA9eD7HEped4SGOP_E4K4lY-uQy5wd-FcPul39qcGU55RVCb-U4_C6_mCv2XS8.-FQCfzbRDKuam85-1S9zTa3AJgkJEutpmWsbqiwPoMk

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=dcc76698-ed65-417b-90b6-d86eb23fa1f0&scope=address+openid&id_token=eyJraWQiOiJhNDQyZjBlYy03MjM3LTQwYjMtYjdmMy1hNjAzOWY3MGQ5YmQiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2IiwiYWxnIjoiUlNBMV81In0.mILeDfe2WsqlduaNu56gOF3q3mz0b5-2kOkdEy8avszMgyXpHPa0mKL1y_ZMbz096ZNG60Y99GfPClTjxbf6RAdJRtTkpeSoHKA36vV9HyR_-PqKGtzntiBEUA-BePTEMGioyKdbz2oJuqL5uhQjIG7D78fSLycTJnHeN0rrayvSrYdD2YSgEZdugHuALEByJlYGVdf04ZTuyPf2cAQnlSU7jcIGhRfnYWxzwuNAu-7UxooobuGUYzbZRwR1yxua2VdLKDmLvCOJYSfptePMQOkIoSSy3PFgPEKFubDcJp9j8QLDfLeqbyP4a9muul5VToceRY3OpUjZI0hh7p8vvg.K8-nchEZA_Gj2FUCbhLK0w.6PnsgtRGgpiel8zgjU2WSX_IFIxF8B3FJCQ3pZH7EnNXGHSR2kGvPofUcUQnVp_LPzxux9EnUacYepXrEcP1e-rSwBkmq1_rkrdPKkES1YGxA8yRlZAGu6xN8kTcUKpWG2Od_61fB4MMsGIfyMWJDKrydWt_hDWWQcj0t1d3TFlrDySMczg27i72L47o7DabEQg-sY4ZotrmWqsqPFny3hLSBCgQ6eanksnqf2jUDOSIoUtPSI9vwfr5sFggc4zMb2gzVUN-mGgptf3XmyklPjjzEVHZyi3chb95HPzRtjCqZWLz6qujblXGZvsHWuCngXkIS-CSFaZyYwh8PqFIppf4JTKjQ-XdmS_Y6WEjqUJpnx9-vRG8_LcbFTWpFy4Qd9W3QVwMnr-KE3cFohrNfeIp3um4JFA872L1TJYQ8Pc-v-9zuNvTEbpQkN7xGCWTxgJftyAez6kOXC2m74OtjwbKYUIZv9KXUZ_s3qqWicTvKyy3s4UaTkoOnAcHb67IiBQeEi9p0XoNzyDYKALjBJsjq2WQA4Sp1trto-whX0nOT0x8_Nnnmy8Y6Un0dVlZqd5ZMCKZCCjQn0-Od42uD1OrvShMqawlU4sSr-eKKfCXE8EREIDnWIdL_vUrJ46n-CyDrZXbX5PbKEfdeEI2FMWWNG3tkE-wbDnNeQ-sqri796oDxNyEswdoCWacz7QLimVtm17eIK47NT2FhtA9r9fNo8EdBid3hOqOEpe_HLofhP3Lzf7jhyt_nwo_GvzknKeQuV_IhbsnSBFJ2d5Kd7koU5azeEB0KgQjNurZ1c7GbNG_8GFB5q99FQpmEEmWQxSBV27HKcGZvGa8j5jXdPo_h3yu14ZessrVBNzXVKtcg2pbUKhbQ8yTcFlssvfDpP9Nk72oFtdJEb_06GVKr3Kr_qWmXUJR46HKnR1SJiL6yJwNtOP-h5XOF5QejdIL2aW9uLQ1vpv_Dg7Ra0YPUGP-II8_6IYgIrpLMcBZDsUe04pCrZK4DXXHExjrE9t4vR2IwYuShVh1fYeHojeBD9eodzYcdCtiIH4Dlym6xUE.j0CqonrlOYg_2hqESFFW-OeOjGkWfCV8MPDfhx2zvHo&session_id=8c2b8607-5596-431c-921f-8ab5ae747a80&state=897547da-e691-437b-b1d0-88980a35beb5&token_type=bearer&session_state=d24fca1296b931f5e852f8f7a261518ccd6eb3acd709f684ae0b2b3195d76c7f.d5ecc160-5aff-4bff-8705-ff319d2b9147&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer dcc76698-ed65-417b-90b6-d86eb23fa1f0

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 1012
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:21 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2IiwiYWxnIjoiUlNBMV81In0.dwlK5SmJXebeQoWGlSCx5Ol-TrQWkTbHnqE3-6Wg2eGBbwt0FzdB0o7LAYKsUj1bsHnhRROENm65zQYSFAjDQzZbTfkrYgLK40FRU-NoNrukL4l4gZP1WVivMV-Wx-HJLANcJlBcvG9vPd6WKirrOiefkSs9_nfpvq4JrSEPGrBBDrlnU52EkmagZq6lE5q5mTGk8Ryn_CQVQZbDywpkH007miLmHrrlhYsvV718b2-Phl8cOkGp1qh6bfQx7uAhIP9uaWhcL6SdiD-p6IdbmRR56OnvWJyHqSTVh-oA9DY8dTx2N7s-YwAP3KCV7ZfC7YVgIkb4W_E-jBiaXiDH3A.2zGaNr_RhK0JOrgThMECvg.jyt0KhqlmvyM7p-fjy6yFn3UYoT6il5P_Yv4OyVUK-hBth0pnDd0-ov770P7MDfzedZKoUdQFymwOtcPRuUFR5kTA4uHPlg2VO4c6yZqOlk5TBaMMmdcO9pGG6p77-w-EYFdPTb2hA0GD2HUE3O9vC_6nrL8ac-2-1fUPh8uhv2s8NJrcEKiPgjGBrAoCI-wa8p0NDUozrrtHALmrf7qLn0WYQz9ShMpYS5UinbchNQUvrxC3qosAc1jAm6I7J_q2q1h96iRpY0pIPurZDEV3nXzwAMeiISBLwsMsvyWm2Ej_1blk63rs7fil0K5z2Ci1_UzyGsG7WUQLvJ2Mrkt37HqCwFWYFXxdigKh4z1YKQ5IO-WUBUmYKRivT61je-hA6WzBhMHUdLxSs9aavpDcaqTNXqspqLXZ7UBCcL9pEXvCmlit1yJhvMGjxA_5-jUjTzy83R4uaj6ijqUeHFHzUS-yq-N5YOhtMgGZivEBzov2jxPR23gqrKXHm-u15j0U-I2NxjuPZ5oGrk-NSArgw.HViT5QS_FIyO-rxpK3G6_TCfxkSyD-G6FRa3lU1k1Dc

#######################################################
TEST: authorizationRequestAlgRSA15EncA256CBCPLUSHS512
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "request_object_encryption_alg" : "RSA1_5",
  "application_type" : "web",
  "userinfo_encrypted_response_enc" : "A256CBC+HS512",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "userinfo_encrypted_response_alg" : "RSA1_5",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "additional_audience" : [ ],
  "id_token_encrypted_response_alg" : "RSA1_5",
  "id_token_encrypted_response_enc" : "A256CBC+HS512",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "client_name" : "oxAuth test app",
  "request_object_encryption_enc" : "A256CBC+HS512",
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 2170
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:21 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "request_object_encryption_alg": "RSA1_5",
    "application_type": "web",
    "rpt_as_jwt": false,
    "userinfo_encrypted_response_enc": "A256CBC+HS512",
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=71768662-76be-46d4-9a27-19e011bd6cd2",
    "tls_client_auth_subject_dn": "",
    "userinfo_encrypted_response_alg": "RSA1_5",
    "registration_access_token": "35f228bc-d41a-4fa1-8c0a-318194736036",
    "client_id": "71768662-76be-46d4-9a27-19e011bd6cd2",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "fef5a6b8-9ad8-4aed-81f4-b90570e761e9",
    "client_id_issued_at": 1633614921,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "request_object_encryption_enc": "A256CBC+HS512",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "id_token_encrypted_response_alg": "RSA1_5",
    "client_secret_expires_at": 1633618521,
    "id_token_encrypted_response_enc": "A256CBC+HS512",
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=71768662-76be-46d4-9a27-19e011bd6cd2&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=ad2641a5-e40e-490a-b1ca-0e983db6c6ac&nonce=e72e0483-38ac-4d8f-9584-36c7dd874d29&request=eyJraWQiOiI3OTllMWY0Ny1mNzY5LTRlOGUtYWJiZS1jMmE3NjBiMjc3NmZfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkEyNTZDQkMrSFM1MTIiLCJhbGciOiJSU0ExXzUifQ.QsHLX9QOvwoe4ktxl0SEvBcUUnCKCoXESx-EdcwinjAhZyjKlDIxjxR5dm3gppwRXbSQnGC5lMHDPbsbfjNSImX2fVyxAytuO37b0VooFVARWYOP-zJFJjlALt4pntKuaKLIG_ntBFnGhhhbkwcmbS-g6ukSZ42W1ZLTiGQPtkcQqgAMikv2mM3tEFUOWmY0HPfwII-gU3xAyYC9NvG-92rinouV0UNMCQg7g3-FGjcdVamW2BNQGQ4i--19xRt4vo2HyYWUWYMDG89c-uzHnLWA47RCZqjZ0IHPKLUcNVw1jF7ueswhHdpGpPUSdgloARrhdodj_0cd0l2Q5JIe3w.7dumV7FSFSDu8p4OH5lJFg.4bnMICbrX6qEAwglBaP8sw3fxAzsc9nzLUxiYWBBVILB4N02H9NB-ZinbhCR-lJ464ChjHZ4mS58ZQVIeeGf5JbchWBICFI35c2TRo_G6Hi8Li7BU2a9mITxNlE7RHG0JYWxXPqSS-tn8aqkmCNwjiAyTudSYYzDPERqZnFVCfZ9ASiY9nWXwxWfsOoN3PTQHOuj-Haf-OFHbbNn9pZAosYV_AOUnfwx7_qQc49ZjIQVj_Q2c3MBNf6BrKtC1cuCGn1Q4csy7pMG1R9uzNqpwVct-2TpdpSTquuYukQNy7L8ZtJt_GWU7Pqz_w_j2S1uvE1wIJSqpQGn8fqdIFyfXkWn8jKUcXZsp_xnlcrOZI2o4NUx-JpkJ1rWIQpCiZ2mE3U_ZFn5MdJxhBxlCXriThlg6BnnnW4I_SIy_Bgx4JNEcb-vjUBhB0oYV5P_r5-AQo6KXe8rlOTj3AecGxVnyYs0NsD5dyOBkbPJ_iSMuDa1L0neGy-b1qWDlEpVEJGhGuvrq0nBlfJyiWT-gYVOXjq38n2HlaJmwD9yyM6lq3cyjzcV4hLZETPCTjpRTShCu3mjj-bJA-WiaEg8VhEK7gQqsdMzLSZN7RrD9Rny6WZqcBU_JYczZVaoGlbudKxoapYhJt5FP0Bx_IrKCXkf7jxmqdSejAMKV3EO9BAcC-Hc85FJ_wxJ8-jMoasEJg--t3n41-dmUkvMd_KqFAPm-INjKH8yRR7wq1U4Nj_4gLbTEW_RGdn5ExXB3TUrTeF6szm4oFHvbg2svOSQrkpDCStJAraESMIoyx0falN284RCUKXLe2ER1OeYg1gglJ-xGfHVEw-0T4ENiHf2JCj5VQaizufF_CYLuh3rXAH9YYc.mGBQ11jnmTdTsdSTBHQfk0aptWl5YFVmsanGTSZvsN33EYgNEgynKsGyiFzp4k8_eTIy-YBtpi3O7I3wH3oUQA
13:55:22.188 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:79fd22598fd98ce5f0422940ec024559ea1f5ac6a44d3ff1bbda18d834b85960.8eee8078-4a85-47cf-bcdd-ad417e93d77e
authenticateResourceOwnerAndGrantAccess: sessionId:965fa7d9-6287-4c97-a77a-9c5184156de7
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=71768662-76be-46d4-9a27-19e011bd6cd2&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=ad2641a5-e40e-490a-b1ca-0e983db6c6ac&nonce=e72e0483-38ac-4d8f-9584-36c7dd874d29&request=eyJraWQiOiI3OTllMWY0Ny1mNzY5LTRlOGUtYWJiZS1jMmE3NjBiMjc3NmZfc2lnX3JzYTFfNSIsInR5cCI6IkpXVCIsImVuYyI6IkEyNTZDQkMrSFM1MTIiLCJhbGciOiJSU0ExXzUifQ.QsHLX9QOvwoe4ktxl0SEvBcUUnCKCoXESx-EdcwinjAhZyjKlDIxjxR5dm3gppwRXbSQnGC5lMHDPbsbfjNSImX2fVyxAytuO37b0VooFVARWYOP-zJFJjlALt4pntKuaKLIG_ntBFnGhhhbkwcmbS-g6ukSZ42W1ZLTiGQPtkcQqgAMikv2mM3tEFUOWmY0HPfwII-gU3xAyYC9NvG-92rinouV0UNMCQg7g3-FGjcdVamW2BNQGQ4i--19xRt4vo2HyYWUWYMDG89c-uzHnLWA47RCZqjZ0IHPKLUcNVw1jF7ueswhHdpGpPUSdgloARrhdodj_0cd0l2Q5JIe3w.7dumV7FSFSDu8p4OH5lJFg.4bnMICbrX6qEAwglBaP8sw3fxAzsc9nzLUxiYWBBVILB4N02H9NB-ZinbhCR-lJ464ChjHZ4mS58ZQVIeeGf5JbchWBICFI35c2TRo_G6Hi8Li7BU2a9mITxNlE7RHG0JYWxXPqSS-tn8aqkmCNwjiAyTudSYYzDPERqZnFVCfZ9ASiY9nWXwxWfsOoN3PTQHOuj-Haf-OFHbbNn9pZAosYV_AOUnfwx7_qQc49ZjIQVj_Q2c3MBNf6BrKtC1cuCGn1Q4csy7pMG1R9uzNqpwVct-2TpdpSTquuYukQNy7L8ZtJt_GWU7Pqz_w_j2S1uvE1wIJSqpQGn8fqdIFyfXkWn8jKUcXZsp_xnlcrOZI2o4NUx-JpkJ1rWIQpCiZ2mE3U_ZFn5MdJxhBxlCXriThlg6BnnnW4I_SIy_Bgx4JNEcb-vjUBhB0oYV5P_r5-AQo6KXe8rlOTj3AecGxVnyYs0NsD5dyOBkbPJ_iSMuDa1L0neGy-b1qWDlEpVEJGhGuvrq0nBlfJyiWT-gYVOXjq38n2HlaJmwD9yyM6lq3cyjzcV4hLZETPCTjpRTShCu3mjj-bJA-WiaEg8VhEK7gQqsdMzLSZN7RrD9Rny6WZqcBU_JYczZVaoGlbudKxoapYhJt5FP0Bx_IrKCXkf7jxmqdSejAMKV3EO9BAcC-Hc85FJ_wxJ8-jMoasEJg--t3n41-dmUkvMd_KqFAPm-INjKH8yRR7wq1U4Nj_4gLbTEW_RGdn5ExXB3TUrTeF6szm4oFHvbg2svOSQrkpDCStJAraESMIoyx0falN284RCUKXLe2ER1OeYg1gglJ-xGfHVEw-0T4ENiHf2JCj5VQaizufF_CYLuh3rXAH9YYc.mGBQ11jnmTdTsdSTBHQfk0aptWl5YFVmsanGTSZvsN33EYgNEgynKsGyiFzp4k8_eTIy-YBtpi3O7I3wH3oUQA

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=4849e868-5a86-4882-b8b5-ba7291ecaa0b&scope=address+openid&id_token=eyJraWQiOiJhNDQyZjBlYy03MjM3LTQwYjMtYjdmMy1hNjAzOWY3MGQ5YmQiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwiYWxnIjoiUlNBMV81In0.PFFaoQqK7M9MMNwlrE1FO1qOVuf2yR-DFUMORx6fV7BQ1mH0_q70O8jmFVS7UWRN6DN12-yIp_jLOjckkT4vz3w2G86lvfyVn5ZeexA0ckvAlbmX1s69SjrlvVyK2qD2MRrRIrhLcNYuE8rv2nD4eG2WP6I4L589pWB_JF9vhd8XLdbMkIRU631e-zxOw4ptiTme3I6DU2GghBRCEKZ2kjF_vlXe6KdZBzz9GqDvPsKmNWhJ2-qvDgBotVagosfzVHz1kaH-U-Wwn_LFqcorXihsxGB3cgGCeTgKQdR3gdDRttDARl5G46v0KhV0_ZAlxE2DbTyUI2hxL-B363CBcw.3vDwzNshwWpE-eOFJjh1og.U3M5yJFOgfrvhIzYMnx-PElpR16CiBXVKHxKtEItdKIbGaMlELi2b9uhjLR1v-EGqJAm7-a7Wl1cbEWR6CG3B-ht90CPrg3bz1YW-vlRkm8NQ4gxubPVVycXiDJMw-e2lGZkx05TQKefPUDivpjK0KmbJGJEtMgoe0Zpcs8Y7_D8cYCHarGBMeErpBo-KolpojN1JkNsGm1R-GgRgnhkXMRkpKdMFR7038fD6dtgSH_k4ZE2O7tGZt6elc-Oh61gMosyA8qz37tVGFXi_lNaXXHmDpg3OrQVxqMximaJuBVKi0kWQElENfIpBcgLMZzemzreSjifFyYwOVTWEx940TV-M_QFvJor_lUsWlt9M6Qvo_oe6mF8NwaPXDZ8dQv-mqxxUxhFfLiMjG11BYYcryzgNSX1xOI_2Cvvt3Ayg2j05Pjhn27yXo8s9MzeuXz19eYwEXRT23lQHb4DLCGdEHHDfqNGSU-8rA3hRzH3O1lsBYqsi31vNq4gRuTvxzvVvC0CJksVPZJQ2IDqJDC_wM9ZHErKDyeBMI-BJjAUzifMyocZYkdObEEAvkgsL0jrYu6rcixEN43X5KQrHBM9tNy-_fdQ6mXmKI1N26Pk_LqdCsczRDeE44ZmJXL7DeB8pbxcfCZCt1vd-xY7NUlDmWTx8Grffro_CpA35dIbembKuKyd_2bCg4Tj8c6B4aUYyj4XG5SyPt5nyqIEUcIdf86ULqKG_et0UTqaYa0TWFAd8pz0hhhbcabkKTK6OrM1TsW0hKXwQJVetDW28LY-yqCJkK750Y6YJE97iLhVn0neItvP27YMxGFxurYYPW1pzT2mwvZncQpq0WZd9gtnswL4tGy4puDQ8tqHxoR30RTmTNSgeYqt6i71SIVnodGM_eIZwPZCtVRNMfgT-axEirFq_b5LY6gAlEgeNED377cIDY7Nu5BbL8qwD6aEdUNtz6AXyU52UvTC0-sYoXwHpemGRWkoxwB2y8S7kUaH_fUVITRpG2-aRIg_W9KvYIYGhDkgh35gdiP4J_8VD3vdy_wZosRLUImBigZBFJmesGo.0s_Smgz5JZdokWkeD7mAsST9ZgCV_IRJRgtbHANu0j_G4JDPmfAySUjgfBEvs2wJt3l6zAjkeLPRnLFduGC0DQ&session_id=965fa7d9-6287-4c97-a77a-9c5184156de7&state=ad2641a5-e40e-490a-b1ca-0e983db6c6ac&token_type=bearer&session_state=79fd22598fd98ce5f0422940ec024559ea1f5ac6a44d3ff1bbda18d834b85960.8eee8078-4a85-47cf-bcdd-ad417e93d77e&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 4849e868-5a86-4882-b8b5-ba7291ecaa0b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 1055
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:23 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwiYWxnIjoiUlNBMV81In0.AP3udlbLpeQKyeU-m69LobS0V0b2vNRY47xyv6DbMEJOri0ldDJThQRw6-6pbaQiwfRAd0b2Mr1i7m0Kbqtj4URXfd5_s4--9pqnyxPDjyNVZb40hcIbtb2iARkNwgm8Xxl1qP6wAewrSFGkwBMbd9xZ0Kg8_D7TxrZv77x4SWY4rO9Dt-FL83ipPPAqNnn6KxC2dXvxFrnkEplImtLfpcJVur5G9ysoEeMukGOWKCo1OdxDtIcYXveHpozqO1KmZ47DSDcfA0DgwMYqINBn_IpmAd9oweEt-Q_ddLe-NtiAOlqcniM7M8pkn9Oglh8dsbeecXQKRcJ9sFetHQoNww.UM0pyazLvW2tJJQjq1LhJQ.EIPtmzIQq5EYGt0tK0utF8O9js-_sEiLkHWCWAZYTPbOvIYlvRFjiBF0sICMH8UwxORm5zjDF4bbJmJ5gE3l93seCmNZ48JuvkZK_cEXhn6a41ePqdBwP1FFZ8oiwMS6-JZVHvyHGCdmMnIrmoDOhQ8sgJtM_rEWXCcBJUahKrv1nEnfO6pjph7Xw33soRXVzbs7xagzdNPRbkQuPihh6fQ88sZiHcGt5T4lBgodpUhNpVtDWIQbEPWIohEd2RoXT9GbROq4pS7JuX-hKD2WxSbgHohWwjYxAYUPkzEKYlSZZv9BB_de4QkADzP4koeHm4cFB0Pf_k23xirLOBk4y32JLhDivFODDN6g4DiyQOx4NIzIZJm69YSza9WS_vDD9lfDEaVlozYts8waEc9bvFF815m4gFk72hpW9rXlFs3vhtzWVrIGcMKk3bX8XTamPa4Rdod_5LSiQsf4zpan7cDkPnF29jlDNOHZRANwKWNyr3A6U9EmWgc-8P-E8BdlgKsL2ut-O5x4QmJbiNiJvg.KF4OY0wJVjCcp_EHShD3HWYR_EODZfCUEnRWM00RWA2ajS6I10ROY4ZeoXwslGwuGkG0CF94DbMw3LNYua6Zxg

#######################################################
TEST: authorizationRequestAlgRSAOAEPEncA256GCM
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "request_object_encryption_alg" : "RSA-OAEP",
  "application_type" : "web",
  "userinfo_encrypted_response_enc" : "A256GCM",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "userinfo_encrypted_response_alg" : "RSA-OAEP",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "additional_audience" : [ ],
  "id_token_encrypted_response_alg" : "RSA-OAEP",
  "id_token_encrypted_response_enc" : "A256GCM",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "client_name" : "oxAuth test app",
  "request_object_encryption_enc" : "A256GCM",
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 2158
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:23 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "request_object_encryption_alg": "RSA-OAEP",
    "application_type": "web",
    "rpt_as_jwt": false,
    "userinfo_encrypted_response_enc": "A256GCM",
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=52726c39-c5db-4651-80f0-962503f88f41",
    "tls_client_auth_subject_dn": "",
    "userinfo_encrypted_response_alg": "RSA-OAEP",
    "registration_access_token": "fbfbb18a-ce92-4d86-8832-177ac1d583af",
    "client_id": "52726c39-c5db-4651-80f0-962503f88f41",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "a7110aec-5f03-4c25-9bab-7d58a0d0b67d",
    "client_id_issued_at": 1633614923,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "request_object_encryption_enc": "A256GCM",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "client_secret_expires_at": 1633618523,
    "id_token_encrypted_response_enc": "A256GCM",
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=52726c39-c5db-4651-80f0-962503f88f41&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3d14b4f6-c5a8-4946-a395-ed48d28e9b3d&nonce=c0ab26e0-de97-4110-b714-8f9f14920e93&request=eyJraWQiOiI3Y2U3YjJjZC00ZDYwLTQ2OTgtYjI4Yi04MjU2Mjg0NmVhYjJfc2lnX3JzYS1vYWVwIiwidHlwIjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.OW7ESWb18K_yz-jHk7h7gH4RFMILg-ATU4IJkoryAOGuIXakkHMCbyrl09ioO0tWoa2POQs_RN9l3sjpGjp9h9tJgtUYloOcyhl_5htsvfvIF6QGretElET7SxkxuXDnQFBSOy_7UvQgngrFYcfySKnYOXThhxNdJQQEFFOAzAdOrLgTJxECVar958NhT_TVSPUCBIds0l9hAddi7x3Nt3B8a3BCGekd3zDL9gphEPUrxrskNR8hvqXEcPuQisoksmVENKHITV1jiSdufDol96EfyUCSamdU1LLgr-QbmK8MsXvmtZmVEHOk0TXHj5Ik76gtGpQdL4QUz171s9HkuQ.lw1aye5otCvIMixG.htrYtXCgKs1TMOwNHx_DzsLsxcTe5xpau7hbxHLo0Ydf5e6MEKdvBmlNXuzItP7PFSlHxVcFCTQKRYJI4C0iffFB2NjC9hcyLf9k-LKvdchDTD7_DDQiZrqAPZD0xe4yR_3eJO5Y-BcifH4fB28dB793-oaTGpGKRoaIsvwvo_AWblivDkoYztkSDG13oykuxKJrRj3rI3BEjugORSyi32iV23jeGzy-h-wEWK6Iy-HHL4xmyAW3uWFxa4LvOvOU_JdIPIBj9AyYWf8pmVonfvFo9mLC82blTVPfmZcEWRcu9Iih3AuZSYrA71jNh-xRayvb8Z-MaR8uuIS_seswmAmza0TUurttC5dsx_TZTy_NF3ujFCwUmlEuS3YvBvwsKjKUrhQ9yoG2AQfC9xg7nw74Gdhhu7TNLdkSyqzPgCuFYmhX9YljojFf78-PHZBvtzZO6Tg6gfJypNj6bpXYJO7PY1Or8o6uyrL5weLeVcdG3x5bCKybgBio3BiEv3YRiDagA9jcDCAAJyZQHS3GDkItnGJwtRcAL1M8rvvMPPbZZRkKrriUDtZa4MD93OM3VvZ0M7yNVhYB9bjULXd0mRZmG8veWmFDYPBCT9oJeKf14da3RDbhGTW4tBjbLU5mzUVMsGQ5N3fqvPY2Hh9sNL7mgJSE5qdClDoPe-JaVnOEGmwnXz3kISLC829q2cAFTU2_Kc430bAiUZEtZhu6mSAPdthAN_Puy3c04ngSeTT2mNDCIafGlIqNBPg_AQlkt0LzMHC8FbBabNFnjBawLpUV_olvnUO4Nw8ri2pgv7Sdc8jEPiRch1BqsuDpwSo7pr1HjHUZFbQO-iwYy7iRlO6gjxPMY_7M.0GX2PhBOyVH_y5C8L3HPIQ
13:55:24.469 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:24591d33ff34b38b5377806459945fe29777929444000c67a82816df84dfcf55.3cb4fe2d-f9c6-4e1d-b55e-cc9f1c2f059b
authenticateResourceOwnerAndGrantAccess: sessionId:ad65cb8a-0f7b-41e3-b152-c6a64eacf91f
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=52726c39-c5db-4651-80f0-962503f88f41&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3d14b4f6-c5a8-4946-a395-ed48d28e9b3d&nonce=c0ab26e0-de97-4110-b714-8f9f14920e93&request=eyJraWQiOiI3Y2U3YjJjZC00ZDYwLTQ2OTgtYjI4Yi04MjU2Mjg0NmVhYjJfc2lnX3JzYS1vYWVwIiwidHlwIjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.OW7ESWb18K_yz-jHk7h7gH4RFMILg-ATU4IJkoryAOGuIXakkHMCbyrl09ioO0tWoa2POQs_RN9l3sjpGjp9h9tJgtUYloOcyhl_5htsvfvIF6QGretElET7SxkxuXDnQFBSOy_7UvQgngrFYcfySKnYOXThhxNdJQQEFFOAzAdOrLgTJxECVar958NhT_TVSPUCBIds0l9hAddi7x3Nt3B8a3BCGekd3zDL9gphEPUrxrskNR8hvqXEcPuQisoksmVENKHITV1jiSdufDol96EfyUCSamdU1LLgr-QbmK8MsXvmtZmVEHOk0TXHj5Ik76gtGpQdL4QUz171s9HkuQ.lw1aye5otCvIMixG.htrYtXCgKs1TMOwNHx_DzsLsxcTe5xpau7hbxHLo0Ydf5e6MEKdvBmlNXuzItP7PFSlHxVcFCTQKRYJI4C0iffFB2NjC9hcyLf9k-LKvdchDTD7_DDQiZrqAPZD0xe4yR_3eJO5Y-BcifH4fB28dB793-oaTGpGKRoaIsvwvo_AWblivDkoYztkSDG13oykuxKJrRj3rI3BEjugORSyi32iV23jeGzy-h-wEWK6Iy-HHL4xmyAW3uWFxa4LvOvOU_JdIPIBj9AyYWf8pmVonfvFo9mLC82blTVPfmZcEWRcu9Iih3AuZSYrA71jNh-xRayvb8Z-MaR8uuIS_seswmAmza0TUurttC5dsx_TZTy_NF3ujFCwUmlEuS3YvBvwsKjKUrhQ9yoG2AQfC9xg7nw74Gdhhu7TNLdkSyqzPgCuFYmhX9YljojFf78-PHZBvtzZO6Tg6gfJypNj6bpXYJO7PY1Or8o6uyrL5weLeVcdG3x5bCKybgBio3BiEv3YRiDagA9jcDCAAJyZQHS3GDkItnGJwtRcAL1M8rvvMPPbZZRkKrriUDtZa4MD93OM3VvZ0M7yNVhYB9bjULXd0mRZmG8veWmFDYPBCT9oJeKf14da3RDbhGTW4tBjbLU5mzUVMsGQ5N3fqvPY2Hh9sNL7mgJSE5qdClDoPe-JaVnOEGmwnXz3kISLC829q2cAFTU2_Kc430bAiUZEtZhu6mSAPdthAN_Puy3c04ngSeTT2mNDCIafGlIqNBPg_AQlkt0LzMHC8FbBabNFnjBawLpUV_olvnUO4Nw8ri2pgv7Sdc8jEPiRch1BqsuDpwSo7pr1HjHUZFbQO-iwYy7iRlO6gjxPMY_7M.0GX2PhBOyVH_y5C8L3HPIQ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=a313d9ae-1c04-4155-af5a-24654e4ddbe7&scope=address+openid&id_token=eyJraWQiOiJkOTFkYjUxZC0wZTdmLTQyMjUtOTllNS0xNjQ0NDRjMTJkMWEiLCJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.6e5VVZ8Z90mgwonSbuWr9xrBHy9M-yVLiLKXDq5zoi0v39Avf_MDqUZFeOlY0uOlhjal2e3-UHezUqJM1WltlvkcwGaX5XHSDCna1c2yMddaegrDN0xD1kG7CAJJ1IOhElt-UwTHVfep3JRL2_y3tha__zUNtxJNBXU1sHfPm06KBO5RXlDLlx8lze2CWUB0q-z-J-3mLsvGYTL2eg_nol0fwFGDzOEsl7LSrTJ25NgyeK4jnuoZ0Rkdhc8Y3WDSj1u9FrgtwRfoFMqKpqKFpUkVh60YZvgd1GhLZNLiGVFG7xqdjvDXKLADsxFsunTWvUDvWKnMzLGoN218TqDoSA.irDql6nS_fz-UQp2.HaJeULRNdKqH-n7NMarZpmtgRDMWyAI6Z6FCZEgcBz-peYnS9g9Gjes07GTSXaMHuNFsB-JtS7ouHL3gLLAwjCg0Bqt-YSwzc5X964lSQvzgdocQvgguRpjNXXCN6ZY9dBsS2fV7XX_Hi19k8_jfUn5uMx1CRV_oeyDjDjC9b4b-h5-F5mzHIp_DH2qhju9cL8Xbm1Xogb5QnuhvOLe1Kx1An4nUl2Jz9hkO7Uq30jdUia7-r3I1WBuYRiPpT909-ZljvyKbzL1VWw6Wfq4uwUlItnIvnB7tbyIdfEiF-lnlxw1JNC_SbzOX4HFNnYQIAfpSqekJR7zZ82Pda8BtN8mg16lg6ekVQGRs5uF5hTsy_gWkmS6n78AGrJRSskV9kA34KnRtZyUJkg9ckAQePtyCq1-tqhmBmmyDdBSpuchdQ0jAwgqMWwWWsKbvQGBEWmGd3J5XN98puAA7hQ0LQI6ASUOIk1i0WdIqS1Q4MmQuGhzJLivl8_HHGk13PyLcRzdhcC-b3qcfZoU4qLLkoNbDNQt0aXd9NArfFXZd37COYYDFGxbczkeAfGNWGe3_kyF_ipsfjXS_-mdxa5LcRMwe4kcccgVa_sQIxlG7zrjyoDoKg_k1pLdmGpETczlDFQ_Cbs3v0PFVJowJzOQNDk-L_jsOuvUfOmhlC3FGHxnrcTxJYKh9hFU9kE7GttcE4Zr29mFkd0pdzcyvxxP6BcWoDd9Pecai6LmI5jRU_9i2K4XE8qmXXy8aImnPRm848oTHZo7_fP9f_hP0ESL0_CRqSSyIsUkuOF66x7ozRFFc1pGRAhYXJ93DqAmiKTXeYVlp6jj3Yl3TMtorq1a2qo4Z4_yrgkBMb8eRKnr4eBKhzsl5rOebOKxPi6iNlMjvFnPRaZ9hLGFS9CBFeiIuOyxCEcbsmRjsH8JkrdZ1NbKJuuf0DgB-dBiUY-tMfvT4X3agvkHxHBEs02V4rkkImVgEGTALaLMHwSgAUef1g6JHGRuwGmU9_uzuO6XOOoeWpGwCk3P9REFWpvTsZ9seuOqLDrD8EsDx42O4UKbY.fITw2gOIKEt47N3XjJBEnQ&session_id=ad65cb8a-0f7b-41e3-b152-c6a64eacf91f&state=3d14b4f6-c5a8-4946-a395-ed48d28e9b3d&token_type=bearer&session_state=24591d33ff34b38b5377806459945fe29777929444000c67a82816df84dfcf55.3cb4fe2d-f9c6-4e1d-b55e-cc9f1c2f059b&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer a313d9ae-1c04-4155-af5a-24654e4ddbe7

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 968
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:26 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.E8oxNIVTuN_md1JbJ8i_A54ui4DXiivl_hA74dpXx5AtVyr3KIh7T8-9yBwIewix1py3VNTzyuf1Vus6UDFy6FfqYELAtd2aFlsBN8pwh1-3bbkOqsu2o-nq0oyo5JRrTaD-l4ZqxnElAAakVtszQ8NonLpRcQ8tFY_tQmr_rundgdXI2yYQsO0hy5WOD-_o4QHOXwg_StjXFc-9RXGIuqBSeIeYZy3VKE146JoJlV5h5_dhLdqlI8KTAp9hZSUycIFpKYgWg20mDpjeKvTKINAHn1YwXq9C_ByGj6RRS6o9tKI54Jizgj_hOopA-Hf9XOT1QGynK0viz8fE1i8FZQ.OJZKoJ5a3gfqkcN-.pC_7tkmc6Kz_zjwxuoV1X_sMB0qnMQzEQDqmtyMCNGxC0qFjhjpStjIb5Z1DN48cGRli3J1K0-xGRsoF4Fw8HFnuDvToy4UiX-vbDAnM5mAplGB03wVDYHXQrJ7-gPRE9SS2sW_opPJaLhnj4jskTYJ9gqzTsbkHOQ1e0vaiY5DDvj_TmdpgSNev1yyXX_DZstWp7WmWQcSm5TE6GhdO49H8swBnlA2abc4GRhlyIOO9dWXjcCU5c7ZkqeD3eBiUSYbDdmFTNOvdzRtBBlgQPIInzueuhiN24PR1-BkAv6dGg9WI7vDEjTvkeMfGuKsU4RXIgttoqQLhE3X7UL7lzW5P-7p1vqXTBDqq4_4OEV8eXIwUE340khY7fvIGb-BnQlnstOixgh46Lr6NQ2NdE_RzkR_U3LnYCUuikFLNkjpW7nGlW3tT6M7dH64ImkbPAI2mwEDDsHyKBt3ggFmmD2Wil--unJEPEnEyvrdv3LeHk3lqz3YgP_7W5iJJVP29ehbZC4lK2Q.LIuGhPVbQAaU77PX_e32Nw

#######################################################
TEST: authorizationRequestDefault
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1859
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:26 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=afb239d4-fd27-4432-a338-45f5167cf60d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "72aa32b7-be2f-46e2-91b4-17d1fd1084de",
    "client_id": "afb239d4-fd27-4432-a338-45f5167cf60d",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "11b2e17a-a583-4aff-af85-c02137ae7d7b",
    "client_id_issued_at": 1633614926,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618526,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=afb239d4-fd27-4432-a338-45f5167cf60d&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3ef0ac81-9f48-4526-a9f1-52de93bed379&nonce=f237a1c3-8c11-4e41-981c-afd550f503ad&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.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.dy2VszE7zgv9Q_RHFovYvnZY9igkTBvOxrm-EIMskIaeRNFj-0ZZ9-NV1e_mIQ12HbWD9wyirr78SmlQp7tI9kYSgCvozOYvwvmO5bbgZ8WEyOMpjNYIq5mXAfWG4f1xAYOVMGknb6XG7Q57oUFrce-i3MXn_Hcw-eaGm8pZDyvTTxN28s8DNyDC06R8f27g3MAYbQ6aBNM-PApcQ87GCVkKnpL9b5QnSYD-kyOlaYNcYL26T_OBLwb0tYoma0xvfNKEKDCk0QqgtUggggg91xS3Go-6dwNYo1DnE0ACWgsi_VQ2JiCcgx6auC0BIRHqTrdfJEdCDJR2foyWr8eE-w
13:55:26.715 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:8a27c6a31c02cd1a6120d46b2b74ba63a8d2de112f5505e2abdc1cdeb778d14d.2712d3ad-7d21-428c-b507-462d00d2de8d
authenticateResourceOwnerAndGrantAccess: sessionId:f2f71c59-19e8-490b-8fa1-70789605d00b
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=afb239d4-fd27-4432-a338-45f5167cf60d&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3ef0ac81-9f48-4526-a9f1-52de93bed379&nonce=f237a1c3-8c11-4e41-981c-afd550f503ad&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.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.dy2VszE7zgv9Q_RHFovYvnZY9igkTBvOxrm-EIMskIaeRNFj-0ZZ9-NV1e_mIQ12HbWD9wyirr78SmlQp7tI9kYSgCvozOYvwvmO5bbgZ8WEyOMpjNYIq5mXAfWG4f1xAYOVMGknb6XG7Q57oUFrce-i3MXn_Hcw-eaGm8pZDyvTTxN28s8DNyDC06R8f27g3MAYbQ6aBNM-PApcQ87GCVkKnpL9b5QnSYD-kyOlaYNcYL26T_OBLwb0tYoma0xvfNKEKDCk0QqgtUggggg91xS3Go-6dwNYo1DnE0ACWgsi_VQ2JiCcgx6auC0BIRHqTrdfJEdCDJR2foyWr8eE-w

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=3b71f532-a726-4e01-a666-9cc833ebf73f&scope=address+openid&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.f-BZ3O7QF3KO6MhlQwGEIl5rUYNIThJ3ygcX_YKMvJTTkNagftazI7-dboio4pV44NhPakEF3U_VvixKqIXJ6-qJndY-AGnAIKUvz0Y751V8gtDqMFHTbQyo-Y7OVeFOgi6WIaNUc4h9HWqL70cyVGn4JNH-1dYzbzUKj64sxDAe485xe9pPJNASkpTVaVdw0nENTsChPF8VwQmqtcQLnG5TEc9epIpT7QV1jqd6yW_xMlNRl4jBY90TDNcxeTqAlT-i-L-L4NgaVlKVmRiUPr9g5w65QyNUDN4En7IefGsZB1Sl5DtenJYPcZtfcsDY9mYXPRlLa8C4-G0fZZeNZw&session_id=f2f71c59-19e8-490b-8fa1-70789605d00b&state=3ef0ac81-9f48-4526-a9f1-52de93bed379&token_type=bearer&session_state=8a27c6a31c02cd1a6120d46b2b74ba63a8d2de112f5505e2abdc1cdeb778d14d.2712d3ad-7d21-428c-b507-462d00d2de8d&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 3b71f532-a726-4e01-a666-9cc833ebf73f

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 210
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:55:28 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"street_address":"621 East 6th Street","country":"US","sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"}}

#######################################################
TEST: authorizationRequestES256
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "ES256",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "ES256",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "ES256"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:28 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f250dffe-56a7-4a97-83f4-e0a68e4b021a",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "31097d01-bfa8-44e8-a298-95293c6a776f",
    "client_id": "f250dffe-56a7-4a97-83f4-e0a68e4b021a",
    "userinfo_signed_response_alg": "ES256",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "951ecd79-bb72-4c89-b9f1-05f6bf9c127c",
    "client_id_issued_at": 1633614928,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "ES256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618528,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "ES256",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=f250dffe-56a7-4a97-83f4-e0a68e4b021a&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f3c373cd-e03f-4c19-95be-95fa7de65a61&nonce=541ed77a-52b1-4a3e-9be8-c5d34c874484&request=ewogICJraWQiIDogImE4YjYyYzlkLTY1ZWEtNDM4NC1hNDkxLWU1MjkyNGM0YTBlMyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzI1NiIKfQ.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.V1nBZACkAX3avcTAoJcOpiKW8B6Rtm9KmBbKR_a2Xo4OASgyu4Vxy4HfoPJo0bFvvBT9vpFRjIqSiAlyaq_QZQ
13:55:29.011 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:b1ef78c15b6591c51766c81bf0b7e8e1073881547c52812f5d6afba7e20a0efb.1399569e-64bb-4f0f-8ec4-a0b39fc8e5bf
authenticateResourceOwnerAndGrantAccess: sessionId:f70a6f7c-0715-4e70-b274-819eb27c5142
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=f250dffe-56a7-4a97-83f4-e0a68e4b021a&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f3c373cd-e03f-4c19-95be-95fa7de65a61&nonce=541ed77a-52b1-4a3e-9be8-c5d34c874484&request=ewogICJraWQiIDogImE4YjYyYzlkLTY1ZWEtNDM4NC1hNDkxLWU1MjkyNGM0YTBlMyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzI1NiIKfQ.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.V1nBZACkAX3avcTAoJcOpiKW8B6Rtm9KmBbKR_a2Xo4OASgyu4Vxy4HfoPJo0bFvvBT9vpFRjIqSiAlyaq_QZQ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=3917e6a6-df0e-44be-b369-a712773ae62f&scope=address+openid&id_token=eyJraWQiOiIxYTkxMTNjNC1mM2VlLTQ0MzUtYWQ1My04OWY4N2Y0ODMxMjNfc2lnX2VzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiRVMyNTYifQ.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.3XObRnoh2U9G9Kv-vpkhfERIxHzCvzqQWo_MPtUYFRDGWWjC9ETwx-RksSAi_BILM6-q5U5EG8-wNfqlsDENzA&session_id=f70a6f7c-0715-4e70-b274-819eb27c5142&state=f3c373cd-e03f-4c19-95be-95fa7de65a61&token_type=bearer&session_state=b1ef78c15b6591c51766c81bf0b7e8e1073881547c52812f5d6afba7e20a0efb.1399569e-64bb-4f0f-8ec4-a0b39fc8e5bf&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 3917e6a6-df0e-44be-b369-a712773ae62f

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 589
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:30 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiIxYTkxMTNjNC1mM2VlLTQ0MzUtYWQ1My04OWY4N2Y0ODMxMjNfc2lnX2VzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiRVMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiZjI1MGRmZmUtNTZhNy00YTk3LTgzZjQtZTBhNjhlNGIwMjFhIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.yKPgfS9bKcqZpkzhwfO88KInOZJSRDTtl9Bdnk64V1D5t7OcEq1XlcHUzIqcinLZ4R8Jygju1-LDVrV_SiAoKQ

#######################################################
TEST: authorizationRequestES384
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "ES384",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "ES384",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "ES384"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:30 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=7c6d7dab-ef7f-4d23-9366-c7733421c28c",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "194e738b-320d-4431-9376-b989d3853796",
    "client_id": "7c6d7dab-ef7f-4d23-9366-c7733421c28c",
    "userinfo_signed_response_alg": "ES384",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bbe3a4ad-552f-4991-9413-20a0296f2bd9",
    "client_id_issued_at": 1633614930,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "ES384",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618530,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "ES384",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=7c6d7dab-ef7f-4d23-9366-c7733421c28c&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4063a2ad-c54d-47ff-b44f-70608f979298&nonce=93210fca-c34e-49b3-b9a5-f00718eb8703&request=ewogICJraWQiIDogIjBiMWEwMTlmLWZjZmItNGQzZC05ODFiLTE2YjQ1MzU1ZGZkZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzM4NCIKfQ.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.3NGNJBpx3eYALLq7FFKkGkl_-q0Km4yDSIaNhlgIxYR1KwPzuTrjJFEIGP6A1WIdMmgNfM8sdW05sLQhhXKgqbdLBbvF7nKnwJRHHBy7QYsPT1Wo7krGBfeKOL_Af7ro
13:55:31.172 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:932fecb53794a2f5ffefdc21894534e1deebb6b6309f6917120402a2b82a7370.dc4edcc0-24c7-43a1-a836-88cee5795b4f
authenticateResourceOwnerAndGrantAccess: sessionId:c5d67eb1-3b5a-4ad7-9c5c-b847a9a8dbd1
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=7c6d7dab-ef7f-4d23-9366-c7733421c28c&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4063a2ad-c54d-47ff-b44f-70608f979298&nonce=93210fca-c34e-49b3-b9a5-f00718eb8703&request=ewogICJraWQiIDogIjBiMWEwMTlmLWZjZmItNGQzZC05ODFiLTE2YjQ1MzU1ZGZkZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzM4NCIKfQ.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.3NGNJBpx3eYALLq7FFKkGkl_-q0Km4yDSIaNhlgIxYR1KwPzuTrjJFEIGP6A1WIdMmgNfM8sdW05sLQhhXKgqbdLBbvF7nKnwJRHHBy7QYsPT1Wo7krGBfeKOL_Af7ro

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=3c824473-a83f-48f0-b514-34eb2dba1b96&scope=address+openid&id_token=eyJraWQiOiI2ZGI0NThhNC0wYjJmLTRjMzItOGFlNy1iMmZiNGJjNTljN2Rfc2lnX2VzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiRVMzODQifQ.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.w74HSa6NPTQV5ARF9mgqNYRaXAlP7js3vjfYH-rJwqVdW1LsVG1ZiGwmZZ3pkY6p776dWHkb1-s4Bn_wg7lJ3EJpXzZHRfIZHRnJhtEFiETXrYeZqT3q93Cna7h2RRha&session_id=c5d67eb1-3b5a-4ad7-9c5c-b847a9a8dbd1&state=4063a2ad-c54d-47ff-b44f-70608f979298&token_type=bearer&session_state=932fecb53794a2f5ffefdc21894534e1deebb6b6309f6917120402a2b82a7370.dc4edcc0-24c7-43a1-a836-88cee5795b4f&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 3c824473-a83f-48f0-b514-34eb2dba1b96

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 631
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:32 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiI2ZGI0NThhNC0wYjJmLTRjMzItOGFlNy1iMmZiNGJjNTljN2Rfc2lnX2VzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiRVMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiN2M2ZDdkYWItZWY3Zi00ZDIzLTkzNjYtYzc3MzM0MjFjMjhjIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.l2reKUpNBdLsGOWoCNVTVE5ZnDWLXgH_1sWxI4T48xPm5nz5AKPNESj02P5ew8BmppQ1Nu5P07qX6o7J68W6cFJRFXejecTMJJuH1YibpGV80wJ9gzQLnO-tTN4nyKSS

#######################################################
TEST: authorizationRequestES512
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "ES512",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "ES512",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "ES512"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:32 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=3fbcad23-5db1-4985-b4f8-ba2a853b8b2d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "925bdbb5-ee8d-4130-9484-346c6241bf9c",
    "client_id": "3fbcad23-5db1-4985-b4f8-ba2a853b8b2d",
    "userinfo_signed_response_alg": "ES512",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "c3494167-1046-4986-bfa1-49d3c806aee7",
    "client_id_issued_at": 1633614932,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "ES512",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618532,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "ES512",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=3fbcad23-5db1-4985-b4f8-ba2a853b8b2d&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=38290aa2-cbd0-4250-b9b5-069bb98dd5a5&nonce=7fa1a722-44fd-4056-a670-6a3ff1abc237&request=ewogICJraWQiIDogIjA3YzkxN2VmLTk0M2YtNGE5YS05NjFjLWQzY2JhMjhjODFkNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzUxMiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGamVua2lucy1sZGFwLmdsdXUub3JnJTJGb3hhdXRoLXJwJTJGaG9tZS5odG0iLAogICJzdGF0ZSIgOiAiMzgyOTBhYTItY2JkMC00MjUwLWI5YjUtMDY5YmI5OGRkNWE1IiwKICAibm9uY2UiIDogIjdmYTFhNzIyLTQ0ZmQtNDA1Ni1hNjcwLTZhM2ZmMWFiYzIzNyIsCiAgImNsaWVudF9pZCIgOiAiM2ZiY2FkMjMtNWRiMS00OTg1LWI0ZjgtYmEyYTg1M2I4YjJkIgp9.AJXYE9rDvOhW5xd0AuXFlIyJo15liufukj83yf0T98aFK-LHAQ0-NQqKRxhcl1pEUDeMZNibiYoXZuckFj4LJ_x9ARBdohhzOGt_wvgwxRjdoUs3iFlbAnCSFpRCqWG1McddXj2cLKp1BxWJ3TZfOcvA8t9_ke_XwE4Gj5LK2Ns_Ns26
13:55:33.291 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:a109771007a40ae956d4584af499e0780ac3a057569d10488c82aaf341421071.9d64e5e6-7aed-498a-a53a-72436ac47dff
authenticateResourceOwnerAndGrantAccess: sessionId:c0e3a928-f34a-46d9-a93e-45fa2813aa38
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=3fbcad23-5db1-4985-b4f8-ba2a853b8b2d&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=38290aa2-cbd0-4250-b9b5-069bb98dd5a5&nonce=7fa1a722-44fd-4056-a670-6a3ff1abc237&request=ewogICJraWQiIDogIjA3YzkxN2VmLTk0M2YtNGE5YS05NjFjLWQzY2JhMjhjODFkNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJFUzUxMiIKfQ.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.AJXYE9rDvOhW5xd0AuXFlIyJo15liufukj83yf0T98aFK-LHAQ0-NQqKRxhcl1pEUDeMZNibiYoXZuckFj4LJ_x9ARBdohhzOGt_wvgwxRjdoUs3iFlbAnCSFpRCqWG1McddXj2cLKp1BxWJ3TZfOcvA8t9_ke_XwE4Gj5LK2Ns_Ns26

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=1f49b57e-2558-4aa5-97bf-053cd6ad4ea6&scope=address+openid&id_token=eyJraWQiOiJiYmQ5MjE1ZS0xMjQ2LTQwZTAtOTY0ZS1iNzkwMjMwMGRiMzdfc2lnX2VzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiRVM1MTIifQ.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.AAXz1fPyRQ0hTLQRCqsUzHO9wv3ADdIgWJfc_FsJA6xiNETPkbapmhubfRMGDTMPGoNuRvy1tR79CysJnQMCjvSMAEz6eUO2rwPugJYB3r1SnyhbF3pLMiJYHKv8mjI96_mtieIrL2YINR36PCLnhRvX2pDLW70P6odW4l6ubDQsChGN&session_id=c0e3a928-f34a-46d9-a93e-45fa2813aa38&state=38290aa2-cbd0-4250-b9b5-069bb98dd5a5&token_type=bearer&session_state=a109771007a40ae956d4584af499e0780ac3a057569d10488c82aaf341421071.9d64e5e6-7aed-498a-a53a-72436ac47dff&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 1f49b57e-2558-4aa5-97bf-053cd6ad4ea6

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 679
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:34 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiJiYmQ5MjE1ZS0xMjQ2LTQwZTAtOTY0ZS1iNzkwMjMwMGRiMzdfc2lnX2VzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiRVM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiM2ZiY2FkMjMtNWRiMS00OTg1LWI0ZjgtYmEyYTg1M2I4YjJkIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.AZ_78DlOQMBt6diBm6Xw8fllkrilBXIKaCHVO-OW75q65NddHtxaosfgwCq_vaYgpExsUrya9_c7MV9DBwCZL5vJAGv2b9CvJNq4hMvTu5YFJEFfocDFIEs6YUd-JlRXKW2qlVBubct52wRwUPyqZmAn4ybcVF781qLTyrG0-VCZigXe

#######################################################
TEST: authorizationRequestHS256
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "HS256",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "HS256",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "HS256"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1859
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:34 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=5810d28a-464c-41cc-9112-8417eb31c7fb",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "50a10988-1cf3-4cd9-9fed-7121a194a23d",
    "client_id": "5810d28a-464c-41cc-9112-8417eb31c7fb",
    "userinfo_signed_response_alg": "HS256",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "206e0384-6d0a-40c0-bc1e-16f0a14e616d",
    "client_id_issued_at": 1633614935,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "HS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618535,
    "require_auth_time": false,
    "request_object_signing_alg": "HS256",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5810d28a-464c-41cc-9112-8417eb31c7fb&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=bd1d2006-aa40-4537-ad2f-65e1551dec24&nonce=0805e230-3abe-48a1-8fd8-3beba0421ac6&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.K8P8KWNkd_ZcW5d_DndPLyhlotZnsuQQW7LPrMHPOkA
13:55:35.410 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:4b4934f9c6b36fb846dd5c1e19ba1ed0f53c765f0b64139e83578a45dce1e884.23621423-c9e5-4641-b017-e11242cd083d
authenticateResourceOwnerAndGrantAccess: sessionId:d7abcf53-3ac1-439d-9696-a4c343a14bbb
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5810d28a-464c-41cc-9112-8417eb31c7fb&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=bd1d2006-aa40-4537-ad2f-65e1551dec24&nonce=0805e230-3abe-48a1-8fd8-3beba0421ac6&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMyNTYiCn0.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.K8P8KWNkd_ZcW5d_DndPLyhlotZnsuQQW7LPrMHPOkA

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=c52ee100-5bca-4894-9fd9-173090ca48f1&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhdF9oYXNoIjoicEkxeDFFdXFpZHpUZWZQREFMeTJXdyIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJhZGRyZXNzIjp7InN0cmVldF9hZGRyZXNzIjoiNjIxIEVhc3QgNnRoIFN0cmVldCIsImNvdW50cnkiOiJVUyIsImxvY2FsaXR5IjoiQXVzdGluIiwicmVnaW9uIjoiVGV4YXMifSwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIiwibm9uY2UiOiIwODA1ZTIzMC0zYWJlLTQ4YTEtOGZkOC0zYmViYTA0MjFhYzYiLCJzaWQiOiJkZTJjM2YxOS0wNjQxLTRjZTQtYTdmNC0zNjUyMjBmMmEwZDUiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJhdWQiOiI1ODEwZDI4YS00NjRjLTQxY2MtOTExMi04NDE3ZWIzMWM3ZmIiLCJhY3IiOiJzaW1wbGVfcGFzc3dvcmRfYXV0aCIsInNfaGFzaCI6ImI4TmgtUXJ3NG1oSlNYb2xIajZhV0EiLCJhdXRoX3RpbWUiOjE2MzM2MTQ5MzUsImV4cCI6MTYzMzYxODUzNiwiaWF0IjoxNjMzNjE0OTM2fQ.v9LwGtFlSlkJbcuSvqe2upzQFHj89tj2TnF43HSDOKs&session_id=d7abcf53-3ac1-439d-9696-a4c343a14bbb&state=bd1d2006-aa40-4537-ad2f-65e1551dec24&token_type=bearer&session_state=4b4934f9c6b36fb846dd5c1e19ba1ed0f53c765f0b64139e83578a45dce1e884.23621423-c9e5-4641-b017-e11242cd083d&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer c52ee100-5bca-4894-9fd9-173090ca48f1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 472
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:36 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiNTgxMGQyOGEtNDY0Yy00MWNjLTkxMTItODQxN2ViMzFjN2ZiIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.gTG7kcXmgfXdlV-p0BJE9xFzco9QS_6Ufb9oy2ma_Ac

#######################################################
TEST: authorizationRequestHS384
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "HS384",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "HS384",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "HS384"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1859
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:36 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=67413508-c665-437a-82a4-c03ff8eaf3ec",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "6d52be65-539f-4c66-b78f-eb57b324015b",
    "client_id": "67413508-c665-437a-82a4-c03ff8eaf3ec",
    "userinfo_signed_response_alg": "HS384",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "4e388ebc-93c1-4081-9f93-1ec6a3f5fd58",
    "client_id_issued_at": 1633614936,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "HS384",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618536,
    "require_auth_time": false,
    "request_object_signing_alg": "HS384",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=67413508-c665-437a-82a4-c03ff8eaf3ec&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=7888f471-535e-420c-b9bc-23e3307157c5&nonce=71960c1d-5fa8-4443-8f8c-bea93864047a&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMzODQiCn0.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.lnn2icgm-ZD3O6u6iB8aSPGahcIjMNqpbJZsICxb5_fknMYrxKpB2HcdA5176lTP
13:55:37.035 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:f4f37a35a590100536a6944be8acf7ff74b61359f8e7986eb670639389c9834e.e4181c29-2943-410e-9666-cc734a2e090f
authenticateResourceOwnerAndGrantAccess: sessionId:58a33875-1f15-4fce-9324-37a4c1140e8a
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=67413508-c665-437a-82a4-c03ff8eaf3ec&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=7888f471-535e-420c-b9bc-23e3307157c5&nonce=71960c1d-5fa8-4443-8f8c-bea93864047a&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFMzODQiCn0.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.lnn2icgm-ZD3O6u6iB8aSPGahcIjMNqpbJZsICxb5_fknMYrxKpB2HcdA5176lTP

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=32e05cbc-1a67-413d-9e81-a227c6be2ff0&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.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.89WaPkP7suklaj2uui621yxp83bmKx6FYAwT3UU7QQWk2KBVmZzHm-jiwZkJCxKJ&session_id=58a33875-1f15-4fce-9324-37a4c1140e8a&state=7888f471-535e-420c-b9bc-23e3307157c5&token_type=bearer&session_state=f4f37a35a590100536a6944be8acf7ff74b61359f8e7986eb670639389c9834e.e4181c29-2943-410e-9666-cc734a2e090f&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 32e05cbc-1a67-413d-9e81-a227c6be2ff0

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 493
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:38 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiNjc0MTM1MDgtYzY2NS00MzdhLTgyYTQtYzAzZmY4ZWFmM2VjIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.grnd6rNdi82xDp94V9cRyHyBaapUv6ICJUK1rkESOf-fXzdUTV6DTnQjK48Gs6Gh

#######################################################
TEST: authorizationRequestHS512
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "HS512",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "HS512",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "HS512"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1859
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:38 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=5136d9a3-9715-4b1c-8172-6c76d1ee5444",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "c42f17a2-2677-4b6e-97a6-88b5c6dbdc5a",
    "client_id": "5136d9a3-9715-4b1c-8172-6c76d1ee5444",
    "userinfo_signed_response_alg": "HS512",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "7ef3d668-1f47-40d3-8764-6146ff48aa8f",
    "client_id_issued_at": 1633614938,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "HS512",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618538,
    "require_auth_time": false,
    "request_object_signing_alg": "HS512",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5136d9a3-9715-4b1c-8172-6c76d1ee5444&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=30aadc8b-6ea4-4077-ac4d-ba30cb1afabc&nonce=d1657bb9-2df1-44d4-998a-9e91f539dca6&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFM1MTIiCn0.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.BCb3wU9c0m2mBWSSToQM649v4khrbflS_VCY3nOuRhpWc5LIzRk3VY6Yvi7mBQIZ5HcgZ0lpIDERh665H17n5w
13:55:38.607 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:ea897d269e361ee1827f02ada40d1156af7360302de33aa842cbb856a423f72f.83f9cc64-cc2b-4729-8357-3cdf861f2180
authenticateResourceOwnerAndGrantAccess: sessionId:ba21cd76-ae99-43d9-8463-cddbe7e58fbe
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5136d9a3-9715-4b1c-8172-6c76d1ee5444&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=30aadc8b-6ea4-4077-ac4d-ba30cb1afabc&nonce=d1657bb9-2df1-44d4-998a-9e91f539dca6&request=ewogICJ0eXAiIDogIkpXVCIsCiAgImFsZyIgOiAiSFM1MTIiCn0.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGamVua2lucy1sZGFwLmdsdXUub3JnJTJGb3hhdXRoLXJwJTJGaG9tZS5odG0iLAogICJzdGF0ZSIgOiAiMzBhYWRjOGItNmVhNC00MDc3LWFjNGQtYmEzMGNiMWFmYWJjIiwKICAibm9uY2UiIDogImQxNjU3YmI5LTJkZjEtNDRkNC05OThhLTllOTFmNTM5ZGNhNiIsCiAgImNsaWVudF9pZCIgOiAiNTEzNmQ5YTMtOTcxNS00YjFjLTgxNzItNmM3NmQxZWU1NDQ0Igp9.BCb3wU9c0m2mBWSSToQM649v4khrbflS_VCY3nOuRhpWc5LIzRk3VY6Yvi7mBQIZ5HcgZ0lpIDERh665H17n5w

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=32675e55-ad3e-43dc-9cb0-e6e560699bb9&scope=address+openid&id_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.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.R3uxYY6x2lCqvXzISKRj5IcotcMIqOCoX0P48mz37NNrxD_GYf4UCm6e4zaozgOQuutvi0qGhn_tfiV4X6Ql4g&session_id=ba21cd76-ae99-43d9-8463-cddbe7e58fbe&state=30aadc8b-6ea4-4077-ac4d-ba30cb1afabc&token_type=bearer&session_state=ea897d269e361ee1827f02ada40d1156af7360302de33aa842cbb856a423f72f.83f9cc64-cc2b-4729-8357-3cdf861f2180&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 32675e55-ad3e-43dc-9cb0-e6e560699bb9

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 515
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:39 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiNTEzNmQ5YTMtOTcxNS00YjFjLTgxNzItNmM3NmQxZWU1NDQ0IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.OPkaw7gljxhYsf7zPajS_hBKhRIYcipAYesQaW7wUVyNUW3YdTV6bBG9J4S0yqYmEBu46XSAm01mVE94_Y1XXA

#######################################################
TEST: authorizationRequestPS256
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "PS256",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "PS256",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "PS256"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:39 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=cc14ee31-e847-4967-9efb-0a3d19e3399a",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "7306c050-d0b9-4d79-8620-33f62332e64a",
    "client_id": "cc14ee31-e847-4967-9efb-0a3d19e3399a",
    "userinfo_signed_response_alg": "PS256",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "2588122f-85b2-4a44-aad5-a4e6d4915f29",
    "client_id_issued_at": 1633614939,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "PS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618539,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "PS256",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=cc14ee31-e847-4967-9efb-0a3d19e3399a&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0d32d619-a883-45de-bdc3-be6b07b8a0d0&nonce=894d823a-592f-48df-82ff-fe410695dd5a&request=ewogICJraWQiIDogIjI5Y2VmNDA0LTU5ZGItNGFiOS04ZjVjLTZkYThkNTc4ZDEwNyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzI1NiIKfQ.ewogICJzY29wZSIgOiBbICJvcGVuaWQiLCAiYWRkcmVzcyIgXSwKICAiY2xhaW1zIiA6IHsKICAgICJpZF90b2tlbiIgOiB7CiAgICAgICJzdHJlZXRfYWRkcmVzcyIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0sCiAgICAgICJjb3VudHJ5IiA6IHsKICAgICAgICAiZXNzZW50aWFsIiA6IHRydWUKICAgICAgfSwKICAgICAgImF1dGhfdGltZSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0sCiAgICAidXNlcmluZm8iIDogewogICAgICAic3RyZWV0X2FkZHJlc3MiIDogewogICAgICAgICJlc3NlbnRpYWwiIDogdHJ1ZQogICAgICB9LAogICAgICAiY291bnRyeSIgOiB7CiAgICAgICAgImVzc2VudGlhbCIgOiB0cnVlCiAgICAgIH0KICAgIH0KICB9LAogICJyZXNwb25zZV90eXBlIiA6IFsgInRva2VuIiwgImlkX3Rva2VuIiBdLAogICJyZWRpcmVjdF91cmkiIDogImh0dHBzJTNBJTJGJTJGamVua2lucy1sZGFwLmdsdXUub3JnJTJGb3hhdXRoLXJwJTJGaG9tZS5odG0iLAogICJzdGF0ZSIgOiAiMGQzMmQ2MTktYTg4My00NWRlLWJkYzMtYmU2YjA3YjhhMGQwIiwKICAibm9uY2UiIDogIjg5NGQ4MjNhLTU5MmYtNDhkZi04MmZmLWZlNDEwNjk1ZGQ1YSIsCiAgImNsaWVudF9pZCIgOiAiY2MxNGVlMzEtZTg0Ny00OTY3LTllZmItMGEzZDE5ZTMzOTlhIgp9.iAZFM-0d5bO_sRMKqV0yeyI85b_9Y4-WslKlbmhsf4uKU2vPbqB5EFKFkhKNqbk_LW-J8rn4bOCOt61B3jB6apTWUr1EXtu3wVEPKtMcSK5fPbcZPiGHy6C1v3DEt89CgerRiRx_fEXBqXdhXAp35qX_ec-UESPeehnMyOTtv1IQY6Q3N_IUMZUjaO4obWtQ4vGnGTroERuVxLbxmmEMmHeWNyu1vJozudKVZykISIVG2dx5s4UewWOdJWcEO7wY1owzyC6bXpwkLu1pDH2jwYZxpVOaSr9lrytXdkdMx5WqnsuV1uPigec_Qaxs6O_jSChtmro3JOTEACBFcldyWw
13:55:40.456 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:c08d001dee80dbe86da5c44a0166c64c56c3f5f1fbac1b949088ef7f28c3d0c3.e959d382-04ce-4fcf-a8e2-9ce7c658fe00
authenticateResourceOwnerAndGrantAccess: sessionId:a5703df9-df1c-4a54-a860-5525909c442a
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=cc14ee31-e847-4967-9efb-0a3d19e3399a&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0d32d619-a883-45de-bdc3-be6b07b8a0d0&nonce=894d823a-592f-48df-82ff-fe410695dd5a&request=ewogICJraWQiIDogIjI5Y2VmNDA0LTU5ZGItNGFiOS04ZjVjLTZkYThkNTc4ZDEwNyIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzI1NiIKfQ.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.iAZFM-0d5bO_sRMKqV0yeyI85b_9Y4-WslKlbmhsf4uKU2vPbqB5EFKFkhKNqbk_LW-J8rn4bOCOt61B3jB6apTWUr1EXtu3wVEPKtMcSK5fPbcZPiGHy6C1v3DEt89CgerRiRx_fEXBqXdhXAp35qX_ec-UESPeehnMyOTtv1IQY6Q3N_IUMZUjaO4obWtQ4vGnGTroERuVxLbxmmEMmHeWNyu1vJozudKVZykISIVG2dx5s4UewWOdJWcEO7wY1owzyC6bXpwkLu1pDH2jwYZxpVOaSr9lrytXdkdMx5WqnsuV1uPigec_Qaxs6O_jSChtmro3JOTEACBFcldyWw

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=9a9d2205-c47c-44d6-a000-14cc08d32dd7&scope=address+openid&id_token=eyJraWQiOiJlZDM1NmFkYi1mY2E5LTQwZjQtYmFmMi1hYTMzZThjNTkwNmFfc2lnX3BzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.vzvgzcYk62R8KiovZaHpSZJcpkNgBrPgHMx5e4-0DvvEuz828PqeEa_qvlOGcsz2p-_fsWx0i6MdCpE3OxnRC3oDyDIgKKLQKxn0imU9vfzKesBkw-9Or8bvJmtnTGYTla_8o9a6vOsBrYBJ38ZMPk_p6QDgk-jamil__5FyCrbltJbWMt0vqwGs2v3cYI7dqm8OA9CKOZ5WwmnvBVOmmhCdUsjC0Rp_5v7rvNNcj_D0AsadrHxE_0p7XXXQ92zLozmdYt-uNvC_QuBRDptQ6tcYP2NDqpZsiF9oRJShvMFLYFDYrr3ewswln3_7FRWrF3tkxD5KMG7O8jdaA7yTKg&session_id=a5703df9-df1c-4a54-a860-5525909c442a&state=0d32d619-a883-45de-bdc3-be6b07b8a0d0&token_type=bearer&session_state=c08d001dee80dbe86da5c44a0166c64c56c3f5f1fbac1b949088ef7f28c3d0c3.e959d382-04ce-4fcf-a8e2-9ce7c658fe00&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 9a9d2205-c47c-44d6-a000-14cc08d32dd7

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:41 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiJlZDM1NmFkYi1mY2E5LTQwZjQtYmFmMi1hYTMzZThjNTkwNmFfc2lnX3BzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiY2MxNGVlMzEtZTg0Ny00OTY3LTllZmItMGEzZDE5ZTMzOTlhIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.P6jtjNUthdZSUxqldvvj638Ht4H7rCGZydIIK7W98MdTPMP3UgEEU9t9aSwC_WPCe_P_3CxNnLx09vq3qdTvN8_l_NIgwxOhBUetiJpJj_RppD3G4BixyPP4Z2sMtxGm3FTwPS3v1ul05MEv1aX6S4dC17vt2uEL-juwHOv-rnnvXrXdWGMizKfH5DSzKJP_aSG_0LBnezBb-96V0I5zy5KyTvoi2tJl_meqJAeWmRMk3gnm0fui3XKGMaWpAkfVPVIRivms7iCbmC7Q4YJ1Ta2NM5BS2Pa1Ajo_kNbz_C6o0AysuRL8_z6ZixtJqi0QRZFBrbRpdQyC-HGAnKVOiw

#######################################################
TEST: authorizationRequestPS384
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "PS384",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "PS384",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "PS384"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:41 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=18ab9494-96e3-495d-896e-c6bed1ac0c8e",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ee606604-2b47-4d24-b842-1bbcddff6e92",
    "client_id": "18ab9494-96e3-495d-896e-c6bed1ac0c8e",
    "userinfo_signed_response_alg": "PS384",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ddb3d705-7bf1-47c6-97ca-c4a657e50beb",
    "client_id_issued_at": 1633614942,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "PS384",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618542,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "PS384",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=18ab9494-96e3-495d-896e-c6bed1ac0c8e&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=a6066a5b-71a4-4bae-bf43-766b2e49db7f&nonce=87ccbb6e-cc57-4c7e-9e77-15941c39c64f&request=ewogICJraWQiIDogIjZiZDdjYzBjLWUxNzYtNGRhOS1iNjQ2LWZlNzc4MjM5M2RjMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzM4NCIKfQ.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.vnwHbWZEdU_JFs8Hq8-_p6caNN_Otd-NJeuGQyLRxOBNMX2wREUOOTvFL2YYHhDTIDMQ2u2neqAvGwYDkLh-qWrfge5XQj41GaB1NLXpYeUNMd_wcHCOKn8aN4y5qgEMykj6-dvxYsc2PocnmRrlvF8pv9y5M6AGwvyZ4y0moNEhCSO6w-uPdoKLYdcCzXzl91VwqBAQokRhRNjj_UUm8Wh_ELvvALLGlSCjPaEwWyyoX9wS73j_YdidLOan16SdxPP_0Q7tVxgYK_REdj3LfZwlQ3E-scNOhSM6PuIZnC1zgIrq_qSkwGMcTyiGdWxKJqFzf8H2MSCxZ5ZtxkkdGw
13:55:42.452 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:22ca4f0c713ca86cbe5a2981d72785e52ff9f906aa179f5da5781986e8f0734d.d6c60ee8-c98d-4fc3-bfd4-58c9a1fc317a
authenticateResourceOwnerAndGrantAccess: sessionId:dd61d610-0d33-4006-8a1b-35ccd8db584f
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=18ab9494-96e3-495d-896e-c6bed1ac0c8e&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=a6066a5b-71a4-4bae-bf43-766b2e49db7f&nonce=87ccbb6e-cc57-4c7e-9e77-15941c39c64f&request=ewogICJraWQiIDogIjZiZDdjYzBjLWUxNzYtNGRhOS1iNjQ2LWZlNzc4MjM5M2RjMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzM4NCIKfQ.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.vnwHbWZEdU_JFs8Hq8-_p6caNN_Otd-NJeuGQyLRxOBNMX2wREUOOTvFL2YYHhDTIDMQ2u2neqAvGwYDkLh-qWrfge5XQj41GaB1NLXpYeUNMd_wcHCOKn8aN4y5qgEMykj6-dvxYsc2PocnmRrlvF8pv9y5M6AGwvyZ4y0moNEhCSO6w-uPdoKLYdcCzXzl91VwqBAQokRhRNjj_UUm8Wh_ELvvALLGlSCjPaEwWyyoX9wS73j_YdidLOan16SdxPP_0Q7tVxgYK_REdj3LfZwlQ3E-scNOhSM6PuIZnC1zgIrq_qSkwGMcTyiGdWxKJqFzf8H2MSCxZ5ZtxkkdGw

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=93ef6ca4-21a3-4d50-8e7c-fa8e3d6c293a&scope=address+openid&id_token=eyJraWQiOiI4ZWE3OTQ2YS0xMjk0LTQ5YzEtYmM4My0yMTY3MTk1YWE1NDdfc2lnX3BzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMzODQifQ.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.ZkvEJ1sH9LUSbx4HHQlE5IR6G6B2F-o_seVp3Zv7RjsdEbglsbxyfO1NThjKI8vg636hfTaLZnM4nhys3SxlUuctG1Cy0zd1qldo1cFWe8zbvLeaqRjUzPX2Qw9cfrUL9FXpM-MSHOkCnfP9Lvx9Jvjy8iSbmEHylm8nVVMDhhoD4KUmAkoLat2B3U7g4MWVdm00bsWDuwGNFXYtx_iyy7oC10EQ1WaapNu2rEttCnQEF9-5vejnm_fI9--1QpwtgYoiR5nA6WcNd6l9sdOepOvaC7iJziwmFv1WeAcvku97Sw8P-HV8wHI33JhYUu-_9M45CBld_L2cPOuzeW9HyA&session_id=dd61d610-0d33-4006-8a1b-35ccd8db584f&state=a6066a5b-71a4-4bae-bf43-766b2e49db7f&token_type=bearer&session_state=22ca4f0c713ca86cbe5a2981d72785e52ff9f906aa179f5da5781986e8f0734d.d6c60ee8-c98d-4fc3-bfd4-58c9a1fc317a&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 93ef6ca4-21a3-4d50-8e7c-fa8e3d6c293a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:43 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiI4ZWE3OTQ2YS0xMjk0LTQ5YzEtYmM4My0yMTY3MTk1YWE1NDdfc2lnX3BzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiMThhYjk0OTQtOTZlMy00OTVkLTg5NmUtYzZiZWQxYWMwYzhlIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.VxDDE997jnBvBiSeBG76WcSoT6ilMS8yXE0qQ46s70xdo4JYjFur81moOYfj5_G5FwGPoQ4_Yj1hbFGR-O7a3IrBjMoGggGvQINjv91vi8GkyUfCBl8xGrBeJnCq8oEbHRb5w5yhgAbrHlyH_Sb6ElRq9G2NaWpqdYgJM1d0gqtZXuh6F13jG7e7CtV83Jv0VzzskGFFQWBy1wMX0xIiRVfvElEiuxEXi62XIvcmQf3HnLiP8tKAA7RS0NyZyxtisTwfevO2gvDwUYjhE1WQaboY1fZCwKOYztrRfPbQ5vXSLw9GxRtLSNy5kDXAdAkfZ2dBhkvhhFq03I5663cS8Q

#######################################################
TEST: authorizationRequestPS512
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "PS512",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "PS512",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "PS512"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:43 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a500fa16-fc17-4ca8-a15f-dae6b0e69565",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "27421dc6-f14d-4d48-be2a-edd0f86411a2",
    "client_id": "a500fa16-fc17-4ca8-a15f-dae6b0e69565",
    "userinfo_signed_response_alg": "PS512",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ea7a1c39-83d8-43a3-b105-2742eef6f427",
    "client_id_issued_at": 1633614943,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "PS512",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618543,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "PS512",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=a500fa16-fc17-4ca8-a15f-dae6b0e69565&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=69f758de-628f-4f7f-9517-fdedd3adfee3&nonce=c61dcea1-7e8b-43b3-9631-6cc392438a0c&request=ewogICJraWQiIDogImE2MTRkNmFlLWU4MGYtNDY5YS1hMzA0LTUxYjliYmVmYzk1ZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzUxMiIKfQ.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.aHRLmpg0XTB3Bp5t0CkCoNBpdutMGq_9Zp5SBtqMHL0m41dNQooi-JKrh-t4pHr-5sgUc9_-RfEirQCvnKxdypo-HDAPIESvY6NzffJ4w2ALTooCPiq2nhorC0fKethjEZ31riTtk-d3X_T5lJkvdHrqRYF-m1-zN3sg8_ENPLwnVw470EhVju-ZovB8l9u-E-CabG4RjxZVZEvSex5xJ_ZM3winwU-zfVHOvZXMUH30bFknqNJEdvY8Zj-BSz3XjnbcX9YbWunlb-mX9uYPYKfHYyGn6N7QZUpECnWnihr-k53W97dGbD1VvapVcDdX9Bi4TYzJkPDZjMQitfvNaw
13:55:44.354 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:bc4ae08f8e8c2d78727bded85c7c88056516ae1fc8abd075ffaae7a5f17136e5.3b95f96c-7c17-42c1-8c20-296ce3c77dda
authenticateResourceOwnerAndGrantAccess: sessionId:48b8057c-d246-4847-9170-d1604bd7df06
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=a500fa16-fc17-4ca8-a15f-dae6b0e69565&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=69f758de-628f-4f7f-9517-fdedd3adfee3&nonce=c61dcea1-7e8b-43b3-9631-6cc392438a0c&request=ewogICJraWQiIDogImE2MTRkNmFlLWU4MGYtNDY5YS1hMzA0LTUxYjliYmVmYzk1ZiIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJQUzUxMiIKfQ.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.aHRLmpg0XTB3Bp5t0CkCoNBpdutMGq_9Zp5SBtqMHL0m41dNQooi-JKrh-t4pHr-5sgUc9_-RfEirQCvnKxdypo-HDAPIESvY6NzffJ4w2ALTooCPiq2nhorC0fKethjEZ31riTtk-d3X_T5lJkvdHrqRYF-m1-zN3sg8_ENPLwnVw470EhVju-ZovB8l9u-E-CabG4RjxZVZEvSex5xJ_ZM3winwU-zfVHOvZXMUH30bFknqNJEdvY8Zj-BSz3XjnbcX9YbWunlb-mX9uYPYKfHYyGn6N7QZUpECnWnihr-k53W97dGbD1VvapVcDdX9Bi4TYzJkPDZjMQitfvNaw

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=cbb29f95-56aa-4cc8-9970-632d6ec1a400&scope=address+openid&id_token=eyJraWQiOiJmMjJhNzA1OC03YjYxLTQyODUtODllNS03MGFjZWMyYzJlOWNfc2lnX3BzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUFM1MTIifQ.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.V5Jk7Wum0W7Epo3x6-BhzvYwj9O0FuhSIvyAPKPwxalQEIBElaWSHxnCiehNXK_-xuf9pOW4su_FffHIVMpN0XZr3eM1FZ0j6jUJ6EEkr8604apFrpif1iWFcE1RfrocZU-GeT24bGVrDYPeo2i2GvKo2dgh1odKrq1g91RGICR0mPapiY29RlOheB8FMzi8O_W46CPGtGZl1_9UVYGqPfyhFdF3TWBsHl0bbyE0WnxMNFDYif7XSziA8ZbetZf2LLAOp0vkAso3xlUAloAV_OjHkPzwq6pncWDzuKwI7P-w25jWr_P_8-BdVhhSHok9jpfcclCTP9vGtSirgDZvlw&session_id=48b8057c-d246-4847-9170-d1604bd7df06&state=69f758de-628f-4f7f-9517-fdedd3adfee3&token_type=bearer&session_state=bc4ae08f8e8c2d78727bded85c7c88056516ae1fc8abd075ffaae7a5f17136e5.3b95f96c-7c17-42c1-8c20-296ce3c77dda&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer cbb29f95-56aa-4cc8-9970-632d6ec1a400

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:45 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiJmMjJhNzA1OC03YjYxLTQyODUtODllNS03MGFjZWMyYzJlOWNfc2lnX3BzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUFM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiYTUwMGZhMTYtZmMxNy00Y2E4LWExNWYtZGFlNmIwZTY5NTY1IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.fiSxEpHOhclq207MAh-fXSBbGW-jVNa_MSIDrCsC_t-UA9Y3QxrAGozT8UJKmy6k-fUabvmjuN2CpZ1Z8zeK-0tWHLIQ7avgprd6ctufdK2ZRsoxYCd7H9V2je2BK-xySfR-J2TPgUj7bB-PS0pbBDwl7M4f5ImpKqyNdNe9kO1SG-YeQdy2H4vbzL34un_rXq3wkupu1T0IfdTugJleK1VvogypAJSsUKzs6huzyJP0hLinm8_Dyw0V8S6uYrV5DGBvS60yVTzJzxaVu8lh3-DRTL1x7bJZQyL_a62BSIBS89nittV2rN26zlaK_ORr68ZrebROJvNMpzxqpN6b9Q

#######################################################
TEST: authorizationRequestRS256
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "RS256",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "RS256",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "RS256"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:45 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=49a8e768-89c2-40ef-bd7c-37ce5c8ff390",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "74193a5e-aceb-48d1-8a49-d15ae20bad31",
    "client_id": "49a8e768-89c2-40ef-bd7c-37ce5c8ff390",
    "userinfo_signed_response_alg": "RS256",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "963ec28e-4a64-45aa-ab56-fae4e433b468",
    "client_id_issued_at": 1633614945,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618545,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "RS256",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=49a8e768-89c2-40ef-bd7c-37ce5c8ff390&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=facc2e86-0ad8-424e-b16f-c8abccd8c181&nonce=0c4e81ce-f041-4c15-9ec9-e08fc41c2875&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.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.Ipxu_GQMb5t5W9ZkLOus4s-Uii66UphhPsblLTDusuMdV-MKlWwxxsvy-3xmn875dGEsuKzug15FnywKYthTebvE1Q4_RelfNKPiRHurd_FVZfdA9RRjjdNbsClltBQCKlvjTmd6fkFY5_MUfIzSlDv18LIbPHMRTf1E_rsSlCnJkkQDgPBrJCgno6LULUdxEswQ-e3NLQGvoGp3UXoJ_PJOl2O42uHrB91XdsxIEiFVmgLgduwMH9z0Mrc9JCJUpI5Eh5R937SoBnn5lTqwxPEe_r0w8xGpMlRyxb13NaXBprKZY5U7LYusYGH0FkawQTovo_IcONqUawzGQHbKlg
13:55:46.316 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:a22d99fdfe9c60457194eea6647c0cb209f45ddbcbafc02be20ee10220846d31.c11a2440-cc1f-4895-9fd6-c17472601f2a
authenticateResourceOwnerAndGrantAccess: sessionId:3d9b7043-3e63-46a8-b02c-dd6b78e0c165
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=49a8e768-89c2-40ef-bd7c-37ce5c8ff390&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=facc2e86-0ad8-424e-b16f-c8abccd8c181&nonce=0c4e81ce-f041-4c15-9ec9-e08fc41c2875&request=ewogICJraWQiIDogIjZmYjE4NTlhLTU0ZDktNDdjNi1hMjkzLTkyY2UyY2VlNjNlMCIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzI1NiIKfQ.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.Ipxu_GQMb5t5W9ZkLOus4s-Uii66UphhPsblLTDusuMdV-MKlWwxxsvy-3xmn875dGEsuKzug15FnywKYthTebvE1Q4_RelfNKPiRHurd_FVZfdA9RRjjdNbsClltBQCKlvjTmd6fkFY5_MUfIzSlDv18LIbPHMRTf1E_rsSlCnJkkQDgPBrJCgno6LULUdxEswQ-e3NLQGvoGp3UXoJ_PJOl2O42uHrB91XdsxIEiFVmgLgduwMH9z0Mrc9JCJUpI5Eh5R937SoBnn5lTqwxPEe_r0w8xGpMlRyxb13NaXBprKZY5U7LYusYGH0FkawQTovo_IcONqUawzGQHbKlg

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=d78a6a68-8f67-4c37-913d-b4214e3499a5&scope=address+openid&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.ejElERO1zJXPKZcM0OF_955va6iGYguno6w5ysrTmtIsL5KKNXXsbsl12jVa9qIFg77vetP1GInZzoZMN4kCJcZmagLVDWrGyYsaIFZiTBtSgfWS2sJSPBWsBFyJCgdDm5gPou0LyGr0YjUqjS0-0Lh17rhydmTZ6qQYr8RxBpk1oEWMXbsdSBqpmWrAH8EXRZrQrX33er4JCCQU0veCYBdA8EGQqsTmKDmuTt4GmNCfh5pp_m1dkXff_WDvZD-A6hZg7amRYW8e1LUiO7D_1CCPpVo1V2TnkLcKrYg3eB33gQJlSFw1_MT49fYJD6mcIwls9XP18fng9NxivHmNSA&session_id=3d9b7043-3e63-46a8-b02c-dd6b78e0c165&state=facc2e86-0ad8-424e-b16f-c8abccd8c181&token_type=bearer&session_state=a22d99fdfe9c60457194eea6647c0cb209f45ddbcbafc02be20ee10220846d31.c11a2440-cc1f-4895-9fd6-c17472601f2a&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer d78a6a68-8f67-4c37-913d-b4214e3499a5

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:47 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiNDlhOGU3NjgtODljMi00MGVmLWJkN2MtMzdjZTVjOGZmMzkwIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.f1n6LPMCSi7agJYmsEOfvlFJZgUUEHvmxqUW63XC7koRDP26Lxw0kFJNEdoGxnWMSFRfsKjPQl5dcaXKN1v_DNVDqg8wXv8yDzz39nlv7LyP_uR7ZJK8IC-21ShIdpxrI1PRUjRnJNtLVLzkK0KubzcTvE0r4-xJkXR80Theu-fY1fPp0pSUABQMNt4UWyS6yPRc10XcY_8FcZDryyq4-rqr4nxr5mor4Lae-OuZAl6hkiZRKiAgRKHzFuDX2zl4KnoAVeDNwZXpDLWv_nvDgRfaElzeyRwBYh3gWwzJZTBoJenqAjeHOUkEEzFTaqNpF-DfOLmwwR_fw_Bv6tNM4g

#######################################################
TEST: authorizationRequestRS384
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "RS384",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "RS384",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "RS384"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:47 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c3e091e7-bfef-4ecc-8fe2-28829c7abd90",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "30a14632-ef19-433a-9992-9e7a33425ed2",
    "client_id": "c3e091e7-bfef-4ecc-8fe2-28829c7abd90",
    "userinfo_signed_response_alg": "RS384",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "858c05b8-e547-467b-b1fd-c87ce94ebc7e",
    "client_id_issued_at": 1633614947,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS384",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618547,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "RS384",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=c3e091e7-bfef-4ecc-8fe2-28829c7abd90&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0b66a07-ba54-406b-b3ef-3568b187b44d&nonce=a3e905c3-7bb2-40b6-adad-41837c1910df&request=ewogICJraWQiIDogImE2OGM2MWRkLWY4ZjYtNGZhZi04NTViLWZiYmI4YmVlMDI4YSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzM4NCIKfQ.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.JAk8KAt9R1Askpn_nD8v7S8beGvlB73ico7nPaXJLBnqFT_mNGPJojALXMa-uCn4zm_ttUsGHilVhnmovwA1eZ1OuUmf-N6qAbRPxqin6IZa3pvtIjenPflksmDO58CZesqziVX8anU4NeTYNWZqlc7lbri1cqFBrnurhQeNp7r_gBUaeIuk-X5iUj17CP_ZefMz-vN9VyhuE7iQ4e0BrJMJUmpVLnU7Z0wPLjivXCKcrWe07hVw81lbZ6RWECdueTiIFF3GfMoBe9GHk1_4XRlvoPgkdVdL4ayMz71CDjvtANlRsAcW4EF07Je4Iye-dsoKFm8sJeNtvGgc7Si3Eg
13:55:48.189 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:7a762b7351d0f5e6eed0e89c04f61241b2d2218ed1fefc7e755aeaf9ce55a3f1.f82d9a41-6eb9-4ff6-b555-e85126183c82
authenticateResourceOwnerAndGrantAccess: sessionId:7af13287-b695-4210-9e01-043be1e40f77
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=c3e091e7-bfef-4ecc-8fe2-28829c7abd90&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0b66a07-ba54-406b-b3ef-3568b187b44d&nonce=a3e905c3-7bb2-40b6-adad-41837c1910df&request=ewogICJraWQiIDogImE2OGM2MWRkLWY4ZjYtNGZhZi04NTViLWZiYmI4YmVlMDI4YSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzM4NCIKfQ.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.JAk8KAt9R1Askpn_nD8v7S8beGvlB73ico7nPaXJLBnqFT_mNGPJojALXMa-uCn4zm_ttUsGHilVhnmovwA1eZ1OuUmf-N6qAbRPxqin6IZa3pvtIjenPflksmDO58CZesqziVX8anU4NeTYNWZqlc7lbri1cqFBrnurhQeNp7r_gBUaeIuk-X5iUj17CP_ZefMz-vN9VyhuE7iQ4e0BrJMJUmpVLnU7Z0wPLjivXCKcrWe07hVw81lbZ6RWECdueTiIFF3GfMoBe9GHk1_4XRlvoPgkdVdL4ayMz71CDjvtANlRsAcW4EF07Je4Iye-dsoKFm8sJeNtvGgc7Si3Eg

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=cf36200c-24bc-449b-99c9-8eb87346b162&scope=address+openid&id_token=eyJraWQiOiJhYWVkOTRkZS01MTAzLTQ1ZjEtOTE0MS1iYzNiOTUxOTkxOGNfc2lnX3JzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUlMzODQifQ.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.r8HRNOrl8iPP-l8NtcXAfZ9UgrbTGUkDBulBoEXCIH-SQbv1c56PSG1xGjYbsNpK6XLniX4jh4toeqIZerhl75w8FCUyzRqpa0FbahjR0GmbflSB-ljjNNlVvB2S3hZtD1e3E7bt2AIfxSH5UiSWmJbPXcf9YsbXZKoBO2F0_CgBmokuo3SXFD5DKI9i9LwYMTVt-xnBjh6PAwrCCO59uDBLKxdyuv8NGKRWitF2EMJ4B_2F0IOOgSgU2X_0WAeY9jKHC7H8DSmAbBc_WQvsvfQPXBa5b7dMIywrRLrjMfdHuO3PIApnjKML3PddM8E1kg6widlqfaAck2xUqUJECA&session_id=7af13287-b695-4210-9e01-043be1e40f77&state=d0b66a07-ba54-406b-b3ef-3568b187b44d&token_type=bearer&session_state=7a762b7351d0f5e6eed0e89c04f61241b2d2218ed1fefc7e755aeaf9ce55a3f1.f82d9a41-6eb9-4ff6-b555-e85126183c82&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer cf36200c-24bc-449b-99c9-8eb87346b162

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:49 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiJhYWVkOTRkZS01MTAzLTQ1ZjEtOTE0MS1iYzNiOTUxOTkxOGNfc2lnX3JzMzg0IiwidHlwIjoiSldUIiwiYWxnIjoiUlMzODQifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiYzNlMDkxZTctYmZlZi00ZWNjLThmZTItMjg4MjljN2FiZDkwIiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.vy3M1ITnhqzOEvhmT_qmkbnn-myvVniN6tf5ggETJkwRfpHAKPhByIBAfydXdrela3LKUK7e1_7F4yquZM72cmyi-Tr0HHsjO0y-iK_zOvSi2bjxFgRsHbQcyN7BbSYSe-F55ksy1dieda-LRhBvhqqHnnsxXzHCyqx6QPPAXsetAojbjz0SdUTbjYY8wir4n5YASFztFCTAyL4Gx3L2ucQ5hXgemldL-lTf7VZ6CffYENw0G9XN3dihAMGLr9_1oXI4Joy9Wjj74SnH0qn8xPpxJyKzO1vINNadP_wi2APdTFPSGnHP9wFNVSmFdLfNm4h_QavZgZ5NtUu8yLBqeA

#######################################################
TEST: authorizationRequestRS512
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "oxIncludeClaimsInIdToken" : "true",
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "request_object_signing_alg" : "RS512",
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "userinfo_signed_response_alg" : "RS512",
  "response_types" : [ "token", "id_token" ],
  "id_token_signed_response_alg" : "RS512"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1947
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:49 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=b810a0a1-f079-465c-ac07-3b181bb77f19",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "f1d05aa2-dd8c-4789-998c-a26fdbb7cc6a",
    "client_id": "b810a0a1-f079-465c-ac07-3b181bb77f19",
    "userinfo_signed_response_alg": "RS512",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "02c755c1-55b8-4bc3-9065-f23f46a60694",
    "client_id_issued_at": 1633614949,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS512",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618549,
    "jwks_uri": "https://jenkins-ldap.gluu.org/oxauth-client/test/resources/jwks.json",
    "require_auth_time": false,
    "request_object_signing_alg": "RS512",
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b810a0a1-f079-465c-ac07-3b181bb77f19&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=00c96f7b-ca1a-496e-817c-770575ddb167&nonce=911af825-c19a-465e-8272-1b49f677b69a&request=ewogICJraWQiIDogIjc5ZDEyZTY2LTBiYWEtNGI1OS04YThiLWJkMzE2NDI2MGJmNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzUxMiIKfQ.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.Gu_mvSuqdL3veX-jOyHJEJ6Wmmz2mo_KvEPJqCILMcNlRwsu-XH_VCwaDCL5ZoqwQ6j6TCeyT-qs5CESJbENQSUVsj7xqQoX6lhltw9klEhyetjqj-p2vnOEzjSZDpHU4qUJ3qxOuUw8rJ3_ErcajovqM3rEYtkAYNnKGd1RGCSu6QsckjOufvcs84qeznFzYzMrBAO3C0l4mQOicCNcUdb-qLD5ZhijTwRETsqBsSdmTlqUnkre_DUhYNuo7QgaA_pqq_o1a9OHCc6oR4FTkFG_zgyjswWgwLoo5RhrSRKeUTJsbu_utDy-58dmMtzYOqQ1M10ye340ssl1iqnjsg
13:55:50.034 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:2249b5601e12afa77e826b6c59ff82a9ab64abd1c5d9d1baf7e6d20d2a73f101.b88ca4f4-47f9-496e-b7c0-62edca962292
authenticateResourceOwnerAndGrantAccess: sessionId:9ee3138b-5ef5-48b7-93a4-b46ac201c2a9
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b810a0a1-f079-465c-ac07-3b181bb77f19&scope=openid+address&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=00c96f7b-ca1a-496e-817c-770575ddb167&nonce=911af825-c19a-465e-8272-1b49f677b69a&request=ewogICJraWQiIDogIjc5ZDEyZTY2LTBiYWEtNGI1OS04YThiLWJkMzE2NDI2MGJmNSIsCiAgInR5cCIgOiAiSldUIiwKICAiYWxnIiA6ICJSUzUxMiIKfQ.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.Gu_mvSuqdL3veX-jOyHJEJ6Wmmz2mo_KvEPJqCILMcNlRwsu-XH_VCwaDCL5ZoqwQ6j6TCeyT-qs5CESJbENQSUVsj7xqQoX6lhltw9klEhyetjqj-p2vnOEzjSZDpHU4qUJ3qxOuUw8rJ3_ErcajovqM3rEYtkAYNnKGd1RGCSu6QsckjOufvcs84qeznFzYzMrBAO3C0l4mQOicCNcUdb-qLD5ZhijTwRETsqBsSdmTlqUnkre_DUhYNuo7QgaA_pqq_o1a9OHCc6oR4FTkFG_zgyjswWgwLoo5RhrSRKeUTJsbu_utDy-58dmMtzYOqQ1M10ye340ssl1iqnjsg

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=53b0215f-4769-4627-b955-b1a84d9f9e15&scope=address+openid&id_token=eyJraWQiOiI4OWYxYWIxNy1hOWZkLTQ4ZGMtOGUyNC1kYzIxYzFiM2U2Mzdfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.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.mUWL05MlSEW4-paCjW7ekF2S1-ZTWXZlpbaXXaXbKkJSmNdgXf0M4PGb76BietDBjDr7ZCl1rH3mhx8cqiTu0wefGBZfkkrYzeWi2NJwNQKH3V2I36Hq2Gmx_aSmsrgjziuBDQwSsgzdJ3uXb23Pnz8a9zFDBE-MmupOBXCQnKLNFxOF2hhj3BV0CjZOeQDa9xsPnDlbMCAUPDa-SBolrdcew_iCdI9I86crnPz40UouZYPGBdgc32lABn_Ed35FkXKLLQgorMuzsTYv8sn_YzwxVp9B9pSFjQNHiXXNOGb8NWFgD0YrYtPTRgs3_Bki-xhnJvfPKkXFxDYgixbxxg&session_id=9ee3138b-5ef5-48b7-93a4-b46ac201c2a9&state=00c96f7b-ca1a-496e-817c-770575ddb167&token_type=bearer&session_state=2249b5601e12afa77e826b6c59ff82a9ab64abd1c5d9d1baf7e6d20d2a73f101.b88ca4f4-47f9-496e-b7c0-62edca962292&expires_in=299

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 53b0215f-4769-4627-b955-b1a84d9f9e15

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 845
Content-Type: application/jwt
Date: Thu, 07 Oct 2021 13:55:51 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

eyJraWQiOiI4OWYxYWIxNy1hOWZkLTQ4ZGMtOGUyNC1kYzIxYzFiM2U2Mzdfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYXVkIjoiYjgxMGEwYTEtZjA3OS00NjVjLWFjMDctM2IxODFiYjc3ZjE5IiwiYWRkcmVzcyI6eyJzdHJlZXRfYWRkcmVzcyI6IjYyMSBFYXN0IDZ0aCBTdHJlZXQiLCJjb3VudHJ5IjoiVVMiLCJsb2NhbGl0eSI6IkF1c3RpbiIsInJlZ2lvbiI6IlRleGFzIn0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIn0.o132R8DPRlD928ebOXT_SbV8SZq-SHyyJz4l7JL7Sm3Z0f2ZNVHoFGoK12-i9u6O9DVHyFLAuoXUWxopZZBQu49aYTnoQUKH279TGGcCXqoT95Iu3ybrUg86iWWiz9Fy1V9Ye4nvmYsz1Sdj0NEixmAMFnNn6GEBMI1Q8tkbOa8gew5_eKB67gW-OgjmXnltS_9vBK6ov-x4oUTJJ829ZxzFky5hykdNGvW1cFbwzf3mNUkiWOXoRzOgGDYWcGVbaYuNuo2kaGSj7AKlGa1k_KVu5DYFh_JnPguXgrG41w-7WAGLrKxCqCE-9i3d-hWUis_CCVM3Fjk5oRCR10jXDA

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:51 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:51 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: applicationTypeNativeSubjectTypePairwise
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "native",
  "scope" : "openid profile address email user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1749
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:51 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "native",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=db678208-aa8b-4f60-8502-4ba38c3cde9a",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "84e1459b-b20d-412f-9b6d-25f1d91dcd7a",
    "client_id": "db678208-aa8b-4f60-8502-4ba38c3cde9a",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "79e69801-2aa0-4bd0-aef8-ad6bf3bb8be9",
    "client_id_issued_at": 1633614951,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618551,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 84e1459b-b20d-412f-9b6d-25f1d91dcd7a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1749
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:51 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "native",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=db678208-aa8b-4f60-8502-4ba38c3cde9a",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "84e1459b-b20d-412f-9b6d-25f1d91dcd7a",
    "client_id": "db678208-aa8b-4f60-8502-4ba38c3cde9a",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "79e69801-2aa0-4bd0-aef8-ad6bf3bb8be9",
    "client_id_issued_at": 1633614951,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618551,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=db678208-aa8b-4f60-8502-4ba38c3cde9a&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=1894dc60-f9b1-46ff-903e-bc37ed2e7a6e&nonce=a43a7ea8-5be4-4fd7-852b-9e5aedf2af0b
13:55:51.912 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:237175323bb2c2bd995b1b40929fbc4fec8fdb8e8f74d74c94e9b5624f7c9e51.925861e9-7e38-4b0e-84e3-833ae64d90a6
authenticateResourceOwnerAndGrantAccess: sessionId:3e344af7-71c6-4b3f-a4bf-3428dc7ee5c5
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=db678208-aa8b-4f60-8502-4ba38c3cde9a&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=1894dc60-f9b1-46ff-903e-bc37ed2e7a6e&nonce=a43a7ea8-5be4-4fd7-852b-9e5aedf2af0b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=26aeee6d-9377-41f8-bf8f-85b66819ad4f&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.J5ZY71N_y4ZcK4HVZ1xlydWGZ3ic-lb5Cy8RDgaoeMN0wdLbGHfDuKxr0NBXvcHJJ0yshBy9BQV6RrwrtV-adj5S9wcJHOZK7-CkQI3L-reqos2j8y8Aeat_Uh9zQ4Z2cm4jgd8uWrHjlAhU3Miblw1mIqweNmBX_BXhFp3ur2FB5XgY86hnu9eF_hhS-yBiP8uFP_eP2tbObM3B7XVcXXJvfhMXuFdzijFSHsQe3QMOhPmaM_EJBJLX5_5SeEzbJM_YFDJLfloVvl6AK2vxwF7WHMypL6NV8vfJSsl7sn4XO7FvOFn1Njv-9mHkWZTwJcgT0Ojq6pTxLAZCm5s6iQ&session_id=3e344af7-71c6-4b3f-a4bf-3428dc7ee5c5&state=1894dc60-f9b1-46ff-903e-bc37ed2e7a6e&session_state=237175323bb2c2bd995b1b40929fbc4fec8fdb8e8f74d74c94e9b5624f7c9e51.925861e9-7e38-4b0e-84e3-833ae64d90a6

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZGI2NzgyMDgtYWE4Yi00ZjYwLTg1MDItNGJhMzhjM2NkZTlhOjc5ZTY5ODAxLTJhYTAtNGJkMC1hZWY4LWFkNmJmM2JiOGJlOQ==

grant_type=authorization_code&code=26aeee6d-9377-41f8-bf8f-85b66819ad4f&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:52 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"0e050077-2fbc-4fe9-80c9-f60bcd1d0ab9","refresh_token":"d21360d0-5c98-4158-bab2-bf563368d7c7","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.EHNITT4sJXv_2fBjnYNZu0DrUtvgG6pVgRnfhddUskEhSDH9xsBkKuaGSgG13_cYE2sTvp5G4xQ_fqc7ZQgfogegRH4WKL6tbxxMJpRZtYVLqt3sW1GNIYKw3j_Nm78ccW5hIWOWHs7FivPoAgJvoV5VEcQ6vK5d5U4IKxYyod9R9ie9zzTMpHLXy0N55ToLQNMCuWQbdWBb_SU1MqSLRHD83Rdly0wCz63-H0h3pVP0W9xvmIRd_3ojbynIaJwenF9ir9u4uCKyHlTjY3PciwO7LSVAuI2sDNV3kMva5eg25bRyKxU3ZQYJO4VbnRNsl3_GnGUfRvyBgxNvk38-Zw","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZGI2NzgyMDgtYWE4Yi00ZjYwLTg1MDItNGJhMzhjM2NkZTlhOjc5ZTY5ODAxLTJhYTAtNGJkMC1hZWY4LWFkNmJmM2JiOGJlOQ==

grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=d21360d0-5c98-4158-bab2-bf563368d7c7

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 198
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:53 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"69db04cf-ca83-4901-9e91-a3f9fa70d7d4","refresh_token":"08146fd7-db8a-4fbe-ace7-9fd751d721ea","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 69db04cf-ca83-4901-9e91-a3f9fa70d7d4

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 633
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:55:53 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: applicationTypeNativeSubjectTypePublic
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "public",
  "application_type" : "native",
  "scope" : "openid profile address email user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1624
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:53 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "native",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=0c015218-cf99-43bd-979c-9285922b1f51",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "db55dab8-bf54-4c0c-bee2-581e7108dc61",
    "client_id": "0c015218-cf99-43bd-979c-9285922b1f51",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ed506c11-8bb9-457b-bda6-798d98ee9bfe",
    "client_id_issued_at": 1633614953,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "public",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618553,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer db55dab8-bf54-4c0c-bee2-581e7108dc61

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1624
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:53 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "native",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=0c015218-cf99-43bd-979c-9285922b1f51",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "db55dab8-bf54-4c0c-bee2-581e7108dc61",
    "client_id": "0c015218-cf99-43bd-979c-9285922b1f51",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ed506c11-8bb9-457b-bda6-798d98ee9bfe",
    "client_id_issued_at": 1633614953,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "public",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618553,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0c015218-cf99-43bd-979c-9285922b1f51&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=c31eaf99-8068-4b92-9561-96002d061ea9&nonce=27f9bcfe-24cd-45aa-ac36-806d404ee3cb
13:55:53.566 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:75f9715339f8f370774120a7051136316c02ee6ba25fe2904548f722ef801b9c.3daeb91b-5b67-4c52-8993-95277bb86af9
authenticateResourceOwnerAndGrantAccess: sessionId:a45c1039-6888-4716-8d4b-fc544cc545c9
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0c015218-cf99-43bd-979c-9285922b1f51&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=c31eaf99-8068-4b92-9561-96002d061ea9&nonce=27f9bcfe-24cd-45aa-ac36-806d404ee3cb

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=20e90ab1-f44a-4e6c-b9fb-323afda20b9b&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.MGMBO2ygYtn4UNPgUaWIuHeVpeoWIRhsRVcE_BrlYL_Zd4oAlM5b5L9MqSyVnB7-KVANCuiMiGcvZ9-dQXIttwIQa5mNvyQPi_Jgdfan6ccFl0-dTHJdKes3Cfsw-cihsfpY-e84ss-hkdwc7M-P9L8wLRnm6CeuMyRK5xjzpcRt0lqbaO-vWs_gdsCqrKl_bgfJ9HjuIYOMS230Xioa5hUiO085Jmct42w_FJJam6sRNt8gKZOygbHhPtjzfn6DiK2IHuBTaGzxSzwLczvHl4EHAu31c7V5s5WT41BsRyKB7VCvegY3ZH-1mJvoRSFkSwGc_uTShArNMhIh5waVuw&session_id=a45c1039-6888-4716-8d4b-fc544cc545c9&state=c31eaf99-8068-4b92-9561-96002d061ea9&session_state=75f9715339f8f370774120a7051136316c02ee6ba25fe2904548f722ef801b9c.3daeb91b-5b67-4c52-8993-95277bb86af9

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic MGMwMTUyMTgtY2Y5OS00M2JkLTk3OWMtOTI4NTkyMmIxZjUxOmVkNTA2YzExLThiYjktNDU3Yi1iZGE2LTc5OGQ5OGVlOWJmZQ==

grant_type=authorization_code&code=20e90ab1-f44a-4e6c-b9fb-323afda20b9b&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1167
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:54 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"5ae906a7-5930-4df0-b591-b4da22aff01f","refresh_token":"7624c428-5814-4514-b0f6-8dc2b09406cb","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.F0pF1oiEqaVy4HDgEVWxW1BkNDD9MM0HXWLZX-Aeic9TdK4cFlLyZIqGIvrNtdgxatKytjmpoGFcDoauiS-WNlrTZ_jdjRQDC76IE-PxsOltS59EvzsdoJ73hkW-qF5QKpga4BIcbe2OE61PqlhY507MEL7Ae9XaaZLNpOu8b2ISZE2jAt3x_CTRmlCyv4Ld86m58dw9-1qcLbgoKKhICMXFjBh2p0NKmKVLMaSoH_M-P0B83-WNBu814xQSKfSIxtWXkLnSAr-0SQh7gcIVTFxvlQdWvW4HqucNm2Fx4YzdX9KvE71wgsz3TBiOUUz9s1n9TJlLz3yrQl_jpK3GIw","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic MGMwMTUyMTgtY2Y5OS00M2JkLTk3OWMtOTI4NTkyMmIxZjUxOmVkNTA2YzExLThiYjktNDU3Yi1iZGE2LTc5OGQ5OGVlOWJmZQ==

grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=7624c428-5814-4514-b0f6-8dc2b09406cb

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 198
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:54 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"5da74b89-9a62-475b-b99b-5e91c45a154e","refresh_token":"177a0e27-2b7b-4363-8a81-0c8f61ed26db","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 5da74b89-9a62-475b-b99b-5e91c45a154e

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 604
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:55:54 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"B1F3-AEAE-B798","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: applicationTypeWeb
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:54 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=3e5c2ef5-6a73-41e2-b8e2-59f236d4eb31",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "edd84c9d-93bc-4ac7-a6d2-c82c78f02506",
    "client_id": "3e5c2ef5-6a73-41e2-b8e2-59f236d4eb31",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "558dd395-afc4-4c5b-8373-50521c4159aa",
    "client_id_issued_at": 1633614954,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618554,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer edd84c9d-93bc-4ac7-a6d2-c82c78f02506

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=3e5c2ef5-6a73-41e2-b8e2-59f236d4eb31",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "edd84c9d-93bc-4ac7-a6d2-c82c78f02506",
    "client_id": "3e5c2ef5-6a73-41e2-b8e2-59f236d4eb31",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "558dd395-afc4-4c5b-8373-50521c4159aa",
    "client_id_issued_at": 1633614954,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618554,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

#######################################################
TEST: applicationTypeWebFail1
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "http://client.example.com/cb" ],
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Connection: close
Content-Length: 165
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "reason": "Failed to validate redirect uris.",
    "error_description": "Value of one or more redirect_uris is invalid.",
    "error": "invalid_redirect_uri"
}

#######################################################
TEST: omittedApplicationType
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=1b20c353-f525-423f-8ccf-2a0009f31e39",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "54c27c68-9ed1-49b2-99ee-da4aab427cd7",
    "client_id": "1b20c353-f525-423f-8ccf-2a0009f31e39",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f9a5cd89-873a-4007-a17f-e5eaa7b30f1b",
    "client_id_issued_at": 1633614955,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618555,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 54c27c68-9ed1-49b2-99ee-da4aab427cd7

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=1b20c353-f525-423f-8ccf-2a0009f31e39",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "54c27c68-9ed1-49b2-99ee-da4aab427cd7",
    "client_id": "1b20c353-f525-423f-8ccf-2a0009f31e39",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f9a5cd89-873a-4007-a17f-e5eaa7b30f1b",
    "client_id_issued_at": 1633614955,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618555,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: tokenBindingWithImplicitFlow
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "grant_types" : [ "password" ],
  "application_type" : "web",
  "id_token_token_binding_cnf" : "tbh",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm" ],
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1543
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=cd4f0219-7ced-4b62-9ca0-9b40eed0156c",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "eb93784e-5b96-43a2-b73f-a6df3abe81b9",
    "client_id": "cd4f0219-7ced-4b62-9ca0-9b40eed0156c",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "b4d8fcca-97e5-4316-b7a4-3b70f94f92aa",
    "client_id_issued_at": 1633614955,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "password"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": ["https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618555,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=token+id_token&client_id=cd4f0219-7ced-4b62-9ca0-9b40eed0156c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=533cda94-f732-4fd9-87c5-cc5f182ca1e8&nonce=bef31dc7-b450-4849-9990-28a61baaa5d8&prompt=none

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=94cd7403-be62-4f82-98f1-bf0ad03eab6f&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoieWtJaDVjMDRfNW4xUUdDb3hRQ1FsQSIsImF1ZCI6ImNkNGYwMjE5LTdjZWQtNGI2Mi05Y2EwLTliNDBlZWQwMTU2YyIsInN1YiI6ImNjR081b3JWeHpHQWlCQ2wzN0lhWW94OXFjZHVuRUFZc3RYeERqa1BiQVEiLCJzX2hhc2giOiJkMTRiTUNGNjV3OGZzSTJIaHBtdThRIiwiYXV0aF90aW1lIjoxNjMzNjE0OTU1LCJpc3MiOiJodHRwczovL2plbmtpbnMtbGRhcC5nbHV1Lm9yZyIsImNuZiI6eyJ0YmgiOiJzdU11eGhfSWxyUC1acmozM0x1UU9RNXJYMDM5Y21CZS13dDJkZjNCclVRIn0sImV4cCI6MTYzMzYxODU1NSwiaWF0IjoxNjMzNjE0OTU1LCJub25jZSI6ImJlZjMxZGM3LWI0NTAtNDg0OS05OTkwLTI4YTYxYmFhYTVkOCIsInNpZCI6ImUxMzhhYWVkLWViMGMtNDIyYy04YjkzLWFkNGM0MDYxMmVmYSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCJ9.m7KFr3qmO9OBx8pH_FvAPK-tqYz2WIVUYrs7Ky-sVZnDqXxWVxM88pJ0bVk5LwuX0uuIcCIeJpRRY__R3RA82UNPAYza0ghbvzjx-nDrvpRzPtmIY19ZWQLoTM5_J1jqt9qoKeOCj4gpOhxdZZoRYBaCMb_CMLb71voENH8Q7Kqt_qAB7lz0tNdjArshLYsPlDesSQsQjg9HTYHDpUoldTA2D2_upAXLTC0k9dVtTBv0EzYLrDWV7zxxM_jtU3d4nbXmwsNDHMCcFUZKMjDv5NQNUrudTarHFNASv9qm3ZOMGv1VvEiaYvKJGT7tVyj3qecSgq2HO_T9FrAHVcWHpQ&session_id=a6ac4645-fb6f-4003-b962-2b7a09242ecb&state=533cda94-f732-4fd9-87c5-cc5f182ca1e8&token_type=bearer&session_state=cb0a29b6696e99a174bbe13b9085ccbb34c856619f47cf8b7c04fe2961116bdb.d92f2c9b-efe8-46f4-8c94-df3602efee13&expires_in=299
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: accessTokenAsJwt
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "access_token_as_jwt" : "true",
  "application_type" : "web",
  "scope" : "openid profile address email phone user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm" ],
  "access_token_signing_alg" : "RS512",
  "client_name" : "access token as JWT test",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1498
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=d3cad6cb-c8c9-4bbd-aa3f-1b2b35f7fc4e",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "b5bd1923-a1ad-4a33-885e-c7902d57807b",
    "client_id": "d3cad6cb-c8c9-4bbd-aa3f-1b2b35f7fc4e",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "phone address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "0fae4eea-907c-4a2c-a032-3e7e899e4ce4",
    "client_id_issued_at": 1633614955,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "access token as JWT test",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": true,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": ["https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618555,
    "require_auth_time": false,
    "access_token_signing_alg": "RS512",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=d3cad6cb-c8c9-4bbd-aa3f-1b2b35f7fc4e&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=dc5e8c31-6387-4c67-8268-69fbf1c99728&nonce=b96010c2-7be1-448a-87b8-b144df425527
13:55:55.836 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:08a1d7a5d774bcd6219976b26fa4f37d829fe0804ef231575cc53781a01ae441.fa2d5448-98b0-4163-bd35-6bac569da8ca
authenticateResourceOwnerAndGrantAccess: sessionId:0ef36369-3307-4f7a-a8e5-6e77c1bd5e68
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=d3cad6cb-c8c9-4bbd-aa3f-1b2b35f7fc4e&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=dc5e8c31-6387-4c67-8268-69fbf1c99728&nonce=b96010c2-7be1-448a-87b8-b144df425527

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=eyJraWQiOiI4OWYxYWIxNy1hOWZkLTQ4ZGMtOGUyNC1kYzIxYzFiM2U2Mzdfc2lnX3JzNTEyIiwidHlwIjoiSldUIiwiYWxnIjoiUlM1MTIifQ.eyJhdWQiOiJkM2NhZDZjYi1jOGM5LTRiYmQtYWEzZi0xYjJiMzVmN2ZjNGUiLCJzdWIiOiJjY0dPNW9yVnh6R0FpQkNsMzdJYVlveDlxY2R1bkVBWXN0WHhEamtQYkFRIiwieDV0I1MyNTYiOiIiLCJzY29wZSI6WyJhZGRyZXNzIiwicGhvbmUiLCJvcGVuaWQiLCJ1c2VyX25hbWUiLCJwcm9maWxlIiwiZW1haWwiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJ0b2tlbl90eXBlIjoiYmVhcmVyIiwiZXhwIjoxNjMzNjE1MjU2LCJpYXQiOjE2MzM2MTQ5NTYsImNsaWVudF9pZCI6ImQzY2FkNmNiLWM4YzktNGJiZC1hYTNmLTFiMmIzNWY3ZmM0ZSIsInVzZXJuYW1lIjoib3hBdXRoIFRlc3QgVXNlciJ9.gWpuanvS2cPXj9l0C6fEk3cdRTyVLDWy22WCoN-yXIoDWkI8vr9ucKlI3ozcqvm4efDnQDMwZLW7rTTb3FG2M9KDfh5x7k7IMjtMAS2e8ApFB409B9m6qw5P9pxWI540kcu5BCMPHiyXbCywsd25DQZDvLt9yeoYo0TbBnK3gZhXLI6EGFvzpF4atCxLppQ86e4xYHBOhYcgArUBbUrTIIgczVCaEubilswVb5HpJVSYQz1hg9lM__0wLVOSpN7e2BHTyl5uVg0IbPdYCRbM0_WjKmRlvDbII67IqN3Z2b4qtdlUbI2GkJu0rgNcWztP2dH27EU_6oBpiHHXsR5LNQ&code=538d7680-235e-4d6f-8684-b000bc14485b&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.I_h5reXfd-alK-DFaaUTkgCdCFeh3-qoXg7ywG-qHKdJgjZu997T-wonKAihEfWNg9p78WS9wK4N0cN9bilnUTu_Pfn9p9zwi3F-ZTOUiZot_D6N1yFXIeA1e384uzVQbigDRcNkPDoB7GUdB4LiSmTfuj_MBSawrGzm8KnFRJ-SmWodjfZqDrlDGZ9lE02Hi24V_zRi7YXmNaL6RKnV6ThLIJwAaaHnp4E8laNuURPmaFtqwE-DxJGk7VTxhyGMH5fq5w5JgTewdJIrMcx_QktI0uk8Vaj-EMJhZhib_uoxfM3oT6EvnSzrXH7rJQcIOD7erbdyU77ze_iDMtPC-g&session_id=0ef36369-3307-4f7a-a8e5-6e77c1bd5e68&state=dc5e8c31-6387-4c67-8268-69fbf1c99728&token_type=bearer&session_state=08a1d7a5d774bcd6219976b26fa4f37d829fe0804ef231575cc53781a01ae441.fa2d5448-98b0-4163-bd35-6bac569da8ca&expires_in=299

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:56 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:56 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: spontaneousScope
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "allow_spontaneous_scopes" : true,
  "application_type" : "web",
  "scope" : "openid profile address email phone user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm" ],
  "client_name" : "Spontaneous scope test",
  "additional_audience" : [ ],
  "spontaneous_scopes" : [ "^transaction:.+$" ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1514
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:56 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": true,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f7b3d51b-3e30-40c2-9508-ae2000e295fa",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "67031c4d-2da8-433a-865a-4795c5caa5d6",
    "client_id": "f7b3d51b-3e30-40c2-9508-ae2000e295fa",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "phone address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "50ff3736-811d-4690-9a1c-5ce7e11b6e78",
    "client_id_issued_at": 1633614956,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "Spontaneous scope test",
    "spontaneous_scopes": ["^transaction:.+$"],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": ["https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618556,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=f7b3d51b-3e30-40c2-9508-ae2000e295fa&scope=openid+profile+address+email+phone+user_name+transaction%3A245+transaction%3A8645&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af866adc-1757-4eed-8a9c-bbbeddec08d6&nonce=2a579adb-a3f3-43e2-92d5-45518dcf7e9b
13:55:56.858 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:f6425c0ed44e9c7367c306d3aa3bdab5e0d8515f0e8e8ff33715bf205c6f4798.33ed107f-4c24-4fd9-b3c7-f2cd4cef5299
authenticateResourceOwnerAndGrantAccess: sessionId:a29e6cfd-2fdf-44ef-891b-799eeccb5f97
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=f7b3d51b-3e30-40c2-9508-ae2000e295fa&scope=openid+profile+address+email+phone+user_name+transaction%3A245+transaction%3A8645&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af866adc-1757-4eed-8a9c-bbbeddec08d6&nonce=2a579adb-a3f3-43e2-92d5-45518dcf7e9b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=f22dcfbf-ecb2-4f3d-8577-70ed8a79e165&code=cb05ac73-1b7b-428d-b219-eb98449f0b2e&scope=address+phone+openid+user_name+profile+transaction%3A8645+transaction%3A245+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.l_nqLfH7Kggru4zvn0XpgniPoHoPFcM2qJ0BFL5BJEW-WG3f-T2jM80-sy79NdKCxar10aD6H98_3wuZFeqZ_sy0No3we25N6dDqTvcfAE3zw96qShcqqVl-so0qOMogPGEgd77MoyhVqMIsAFRr97nGdMxFMiwqrJ8yMNwfufBOR-VBZGKfvVdAULY3Q5mCXSUFM5ZJplblKeyq9dCQu_E_Oin9xDEkID9uBVY3xLUKgbCkhQG4fqU3AamJcSGRCiMagel5a1g6guLHyaYQtXuttDm7IzFLja5TP-uqKy-pmw1knPlnb310vetEhvYw_CmW8R0C0ZOM2yxqhkkasQ&session_id=a29e6cfd-2fdf-44ef-891b-799eeccb5f97&state=af866adc-1757-4eed-8a9c-bbbeddec08d6&token_type=bearer&session_state=f6425c0ed44e9c7367c306d3aa3bdab5e0d8515f0e8e8ff33715bf205c6f4798.33ed107f-4c24-4fd9-b3c7-f2cd4cef5299&expires_in=299

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:57 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:57 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "allow_spontaneous_scopes" : true,
  "grant_types" : [ "none", "authorization_code", "implicit", "password", "client_credentials", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "urn:openid:params:grant-type:ciba", "urn:ietf:params:oauth:grant-type:device_code" ],
  "application_type" : "web",
  "scope" : "openid uma_protection profile address email phone user_name",
  "redirect_uris" : [ "https://cb.example.com" ],
  "client_name" : "UMA Spontaneous scope test",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1695
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:57 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": true,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=0fa2bfbd-7e20-4e40-a7c7-22a72fc8c1ca",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "675d4c68-6914-4fa4-b301-35dbe10b57ba",
    "client_id": "0fa2bfbd-7e20-4e40-a7c7-22a72fc8c1ca",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "phone address profile uma_protection email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "e0105855-aeb0-4195-92a1-dc135573310f",
    "client_id_issued_at": 1633614957,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "UMA Spontaneous scope test",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "client_credentials",
        "password",
        "urn:ietf:params:oauth:grant-type:uma-ticket",
        "urn:ietf:params:oauth:grant-type:device_code",
        "authorization_code",
        "urn:openid:params:grant-type:ciba",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": ["https://cb.example.com"],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618557,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

#######################################################
TEST: registerResource
#######################################################
#######################################################
TEST: registerPermissions
#######################################################
#######################################################
TEST: successfulRptRequest
#######################################################
#######################################################
TEST: rptStatus
#######################################################
#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:55:58 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:58 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: authorizationCodeFlow
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid profile address email phone user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth select accounts test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1768
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:55:58 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "1f64609a-cee4-48a9-a66e-59935bbce9ff",
    "client_id": "c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "phone address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "d9436763-892a-44f2-a049-04c7f9bf0a29",
    "client_id_issued_at": 1633614958,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth select accounts test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618558,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

1. Account1 : Request authorization and receive the code and id_token
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f06a813b-4cc4-414e-9783-890b87efbccb&nonce=86d46cdc-a49b-4b67-a666-5c2be2680c36
13:55:58.871 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:c1d71324c48d1dfa9235627e5209ec333006637cb63f40a60afd3aece48f086a.2a7ec111-45c6-41ad-b48b-26d4f15a41f4
authenticateResourceOwnerAndGrantAccess: sessionId:35b0cdb4-1bb4-4a06-bbfa-73b8a867bde7
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f06a813b-4cc4-414e-9783-890b87efbccb&nonce=86d46cdc-a49b-4b67-a666-5c2be2680c36

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=78af1521-c751-4e47-99af-92bf0b6051be&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.EBkWMz45SvaUV7of9bvUZjJmBsHsfp1KtGOQJuilet-ZIHfoskUAGgjYd2bHyO5t0BYMNWl_4LUdkBaAe46nX56xVL9K6-ta67SW4XgjouYJHSzgRq7jXH2Y7_OAoj-CMomVLg_yjC22mc0D3D7Db92x4RN1vupnVDdIFREXXRJp7LRRhUVDXl8z1l80MGJFLeGIxSCQRDfson9FK6Av3jgIPN2uebQOHPrn1qDqMBxpKPui2qafRNLGds6qB3969TswW0AuyvVFGoNFma-nAq6Ol8FHCJC6U4M0FziCb6bT88yVz4ae1co3Ljp8EgtfYuV4yBrcePPpOvK5R7t9mw&session_id=35b0cdb4-1bb4-4a06-bbfa-73b8a867bde7&state=f06a813b-4cc4-414e-9783-890b87efbccb&session_state=c1d71324c48d1dfa9235627e5209ec333006637cb63f40a60afd3aece48f086a.2a7ec111-45c6-41ad-b48b-26d4f15a41f4

Cookie session_id: 35b0cdb4-1bb4-4a06-bbfa-73b8a867bde7
2. Account2 : Request authorization with prompt=select_account and receive the code and id_token
Navigate URL: https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=642c36b8-02ce-49d4-a5a1-a34c9108c8be&nonce=47c9a4ff-4ee5-401a-ab5e-026953668007&prompt=select_account
13:55:59.964 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
Removed session_id
Clicked Login as another user button
13:56:00.345 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
Navigate URL: https://jenkins-ldap.gluu.org/oxauth/authorize.htm?scope=openid+profile+address+email+phone+user_name&response_type=code+id_token&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=642c36b8-02ce-49d4-a5a1-a34c9108c8be&nonce=47c9a4ff-4ee5-401a-ab5e-026953668007&client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2
13:56:00.516 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:de6e06453b6ade7c74bcb7268807014370b2b5d8569d1a7453d7ccfa423e51dd.ee5b1dae-ce16-4cef-81f5-37db38ccfe8d
authenticateResourceOwnerAndGrantAccess: sessionId:b554a8bf-470b-4ba7-9064-573ef142cf63
Cookie session_id: b554a8bf-470b-4ba7-9064-573ef142cf63
3. Go again to Select Accounts : we should have 2 accounts
4. both Account 1 and Account 2 sessions must be in current_sessions cookie
Cookie session_id: b554a8bf-470b-4ba7-9064-573ef142cf63
5. Check that we have 2 buttons for Account 1 and Account 2
Navigate URL: https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c2a2a4d6-fb3b-4bd8-8201-c777f029b4f2&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4a415dfc-4321-43db-8d4b-cde32fecd6f9&nonce=bea9f1b1-e562-4166-962f-b322b4917466&prompt=select_account
13:56:01.721 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
6. Switch back to Account 1
Switching account to: oxAuth Test User
Cookie session_id: 35b0cdb4-1bb4-4a06-bbfa-73b8a867bde7
#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:56:02 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:02 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: authorizationCodeDynamicScopeFlow
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid profile address email user_name org_name work_phone",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1766
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:02 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=00cc0cbc-06b7-42e9-be48-642b54fc8d79",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "2c5b30ce-cd48-4609-bc7f-e36f0df94218",
    "client_id": "00cc0cbc-06b7-42e9-be48-642b54fc8d79",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name work_phone org_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "cd52543e-5e92-4dfc-95e6-e54e35fd5d11",
    "client_id_issued_at": 1633614962,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618562,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=00cc0cbc-06b7-42e9-be48-642b54fc8d79&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0ef39d7e-ddbb-4dc1-afd2-af416463afca&nonce=a22d4a27-8533-4ed7-a986-7d6b64212b35
13:56:02.993 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:4d685c5bd2c0a351b142646b7ca2ccf40624fcf881dda8476dafa24a5c42caba.e9ced647-e36c-4206-bce7-dbf10dcef92f
authenticateResourceOwnerAndGrantAccess: sessionId:38e74ad8-3163-43ad-a32d-0ebd21a51771
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=00cc0cbc-06b7-42e9-be48-642b54fc8d79&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0ef39d7e-ddbb-4dc1-afd2-af416463afca&nonce=a22d4a27-8533-4ed7-a986-7d6b64212b35

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=2806090e-6b72-41d6-8f72-763b20c62e22&scope=address+openid+user_name+profile+work_phone+org_name+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.EoNaB4R3pIJDS67HIomYkTZhqHe-VRqF38xy9wd9d7EExcNtzbi7WrLoT-k0kR853uFa_YQnswwCoOqg0iBt2-oZdAmH7I9kKVehxEXOMBDX1b5BT1boLmLkgwSM781b13nMLpWqCbyYVGfcUz_RM1RbWYXrfLpv93IE8dN66L3txvV3GnhCAtV_Zc49iFmXKjmoFrLSofR7X04zWJ7hrj-0KmobhZxxxtFvTaFcesyTwEMH1htwZNBvNnlMcCDPlsFE6o_OgCH9BwH4colE0hXngH2rN40EW4N_1vK5DD0DW7GTBuKquLyLhQmlf0QaddqMYa5fQGYVcupZWdR74g&session_id=38e74ad8-3163-43ad-a32d-0ebd21a51771&state=0ef39d7e-ddbb-4dc1-afd2-af416463afca&session_state=4d685c5bd2c0a351b142646b7ca2ccf40624fcf881dda8476dafa24a5c42caba.e9ced647-e36c-4206-bce7-dbf10dcef92f

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic MDBjYzBjYmMtMDZiNy00MmU5LWJlNDgtNjQyYjU0ZmM4ZDc5OmNkNTI1NDNlLTVlOTItNGRmYy05NWU2LWU1NGUzNWZkNWQxMQ==

grant_type=authorization_code&code=2806090e-6b72-41d6-8f72-763b20c62e22&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:04 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"373bff7b-f370-42d9-abbd-2781353011b1","refresh_token":"f67fc67e-ab5a-4d1c-b3d7-abc0238ad892","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.TvgIHPWatM9WxQupuQ3awcbIP1Ju7FfQmxn52K8xLzyk4qoNEu7hOFVOl5MX-55xsXaHw40RcHcgDBRLOyjSzSUtCR5IVkpH_HEf6on34VEGozfBWmnCd1j6bBHrgf2qQB7yq64b-ySglPkdRcP4zM7bWl12ZdkcGY1elW3dL0TdYXEyGlw4yauhtlNLOrphNLK-YvWoYQBmutX-76GXFyln6J2S2r8dhBshLCD2kci-1S601lS4nuxbXwMDzUKSrw2-PZj_m5hByQkG0F52riRIzAdYd09QJxiA0uOlLyIT08YYFRK0hMAdnU8R0tUya5-2Zh5uzN-_ACUFdathTQ","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 373bff7b-f370-42d9-abbd-2781353011b1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 689
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:04 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","work_phone":["(512) 516-2413"],"preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","org_name":"Gluu, Inc.","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: authorizationCodeFlow
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid profile address email phone user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1752
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:04 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c1cdb0a3-8d50-4004-8590-7216b113504f",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "3c4c6fc6-8471-484a-a123-be36ba1d9d23",
    "client_id": "c1cdb0a3-8d50-4004-8590-7216b113504f",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "phone address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "509d17b8-db19-4e2f-b878-db139cc6a5d8",
    "client_id_issued_at": 1633614964,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618564,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c1cdb0a3-8d50-4004-8590-7216b113504f&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4f6545c5-c74a-4d51-a7b8-08b1f9a4f53a&nonce=c1290dd9-8d99-4f07-b6f1-d7e37e07f83f
13:56:04.784 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:af75cd7f72ce0efc2879c39c114915350bea8144a01126b76ecd91bb0d1a60de.9e5364ab-919e-4efa-a320-74b0637c8d4e
authenticateResourceOwnerAndGrantAccess: sessionId:791330e8-6165-4b73-b2c1-a9bc34dd6ec7
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=c1cdb0a3-8d50-4004-8590-7216b113504f&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4f6545c5-c74a-4d51-a7b8-08b1f9a4f53a&nonce=c1290dd9-8d99-4f07-b6f1-d7e37e07f83f

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=6a321b14-8159-4900-b4cb-40be14424b2c&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.GJto01UQ-qrf6-BUty2Mr6-UTBcORiTC3hsgwWV3OQQejOKMHMh26H80GnS8zkr7NawuO9Cfg6dTzHsIYpJ9JzNNh2eqxhQ5LNkZmH-0Nv5b6_pkcmCnGRgHHK7NFcWRzanExaBxX-_6OSfxPi7dpWkSlh4FTxIXF2qH9JOd7_kx7PsAOmyJMaOGod_3Uv51nb3rWWg9iJ3dBztdClLPcpLDXfltVMQR7sEHOdDmg24aYxBz1quAUt3mMnwLzY886A4mpsBv6x16xGsOxICXGymGxUE-VqcksXl4RX3RzG_dD9rLNPJRjvRrDTaBasH_Do0kb7Fm4MEzCLUebHZD5A&session_id=791330e8-6165-4b73-b2c1-a9bc34dd6ec7&state=4f6545c5-c74a-4d51-a7b8-08b1f9a4f53a&session_state=af75cd7f72ce0efc2879c39c114915350bea8144a01126b76ecd91bb0d1a60de.9e5364ab-919e-4efa-a320-74b0637c8d4e

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic YzFjZGIwYTMtOGQ1MC00MDA0LTg1OTAtNzIxNmIxMTM1MDRmOjUwOWQxN2I4LWRiMTktNGUyZi1iODc4LWRiMTM5Y2M2YTVkOA==

grant_type=authorization_code&code=6a321b14-8159-4900-b4cb-40be14424b2c&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:06 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"c8710bcf-79c6-4f67-a52e-54f2f5769e09","refresh_token":"e2f5806e-2793-4f5d-920e-af131acf87a4","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiMkVheVdtRWthendSQlh5WllyVE5fdyIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6ImMxMjkwZGQ5LThkOTktNGYwNy1iNmYxLWQ3ZTM3ZTA3ZjgzZiIsInNpZCI6ImFjNmRlY2QyLWQ4N2UtNDY2NS1iNzZiLTEwZjQ0Mzg3NmExNCIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImMxY2RiMGEzLThkNTAtNDAwNC04NTkwLTcyMTZiMTEzNTA0ZiIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwiY19oYXNoIjoiM0tLTklVWjRpSjY1Z2NEc3VteGZrdyIsImF1dGhfdGltZSI6MTYzMzYxNDk2NSwiZXhwIjoxNjMzNjE4NTY2LCJpYXQiOjE2MzM2MTQ5NjZ9.KxzG7lwBnoJYSwglcgFupNLsqERx-eBOWRYICsSgGXksGJPk2szyiRk1U70VyveDF46VigpgnBqYThHeuLNlf4tRxgYTVWf9bT1bDDbS_dp4bViKuHHlAUSbLVSGczS6mzxBfwPGk3LVOCaNBtSfLOxrEI8QXZHqBZTi5ub4edmhZEHmT4RguxvH9VXEtzc3WiKsJGnIzWodM-VkSZUPw0XpRSq1vqODy0phDWsQzqss2fdNFzuRmH7K4lKdsy_1yDdHYLCu37CHofi79CtPbWfgiAdDgAKaG5OjM8oolmEoJgf3HSihC5_xxc5AP7yTW7Nd9uQXr6kdF28VvP6FBQ","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic YzFjZGIwYTMtOGQ1MC00MDA0LTg1OTAtNzIxNmIxMTM1MDRmOjUwOWQxN2I4LWRiMTktNGUyZi1iODc4LWRiMTM5Y2M2YTVkOA==

grant_type=refresh_token&scope=address+phone+openid+user_name+profile+email&refreshToken=e2f5806e-2793-4f5d-920e-af131acf87a4

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 204
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:06 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"38663382-610d-41db-abca-f1e83afcff6a","refresh_token":"ba934d3a-9386-45a9-ae21-42ebfbd897bc","scope":"address phone openid user_name profile email","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 38663382-610d-41db-abca-f1e83afcff6a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 694
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:06 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","phone_number_verified":true,"preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","phone_number":"(512) 516-2413","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: authorizationCodeFlowLoginHint
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid profile address email user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1746
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:06 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=cc5b3af6-df14-4689-931a-d60fab56dea6",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "84d00b0f-0a19-4d21-94b7-c239ae9127df",
    "client_id": "cc5b3af6-df14-4689-931a-d60fab56dea6",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "075a6e92-6b10-41ad-9263-ecd4347aca81",
    "client_id_issued_at": 1633614966,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618566,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=cc5b3af6-df14-4689-931a-d60fab56dea6&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af4eae40-148a-45ff-8a8c-bf6747aa4906&nonce=e443bc06-bca2-4038-ba97-61e0600f5133&login_hint=test_user
13:56:06.643 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:b5ca577614645ad09cc394db6dad6acb382a4212e7590f349ce516b3637ea3d2.a1f8441e-8745-4b5e-bad5-0c614922e7e0
authenticateResourceOwnerAndGrantAccess: sessionId:2f83936b-3e62-446a-b897-7a6f21eea068
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=cc5b3af6-df14-4689-931a-d60fab56dea6&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af4eae40-148a-45ff-8a8c-bf6747aa4906&nonce=e443bc06-bca2-4038-ba97-61e0600f5133&login_hint=test_user

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=d7c9f417-edcb-4ead-a189-2670db47d6d4&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.l5QEin2C1jDcBalATI86hW7vCk4czrRbEx26uhZoY6UGeIOKSTYk2ndudAwgkEYCqzWDdeJ6YxNHoqZNLQbjGlG-P2RhqtZPT5tc8oNbL82wMAoy1_v-uuUlZDef_c3jvZsFp0LX5PuoVxZrwSEiy0fnPImDu8Am-XEcwsrBupzEdHTcOPeaJOzeMzSWgK0PHA8Q5w2KKTo2WmCZpySglqOq3qW2FpeIAeU5-byeWURUnoety4ZtC6K-nNKVOYDQu_afH9MmCrmiJIg9W8CmyYV5QlVSc8_sTmP0bg3JT-SUhlTeZjykDjjeqt4RTt3Mq2OTcE2_ZhlfUtIFy3rXpw&session_id=2f83936b-3e62-446a-b897-7a6f21eea068&state=af4eae40-148a-45ff-8a8c-bf6747aa4906&session_state=b5ca577614645ad09cc394db6dad6acb382a4212e7590f349ce516b3637ea3d2.a1f8441e-8745-4b5e-bad5-0c614922e7e0

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic Y2M1YjNhZjYtZGYxNC00Njg5LTkzMWEtZDYwZmFiNTZkZWE2OjA3NWE2ZTkyLTZiMTAtNDFhZC05MjYzLWVjZDQzNDdhY2E4MQ==

grant_type=authorization_code&code=d7c9f417-edcb-4ead-a189-2670db47d6d4&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:07 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"969d6ffb-68a8-4e83-91ec-15f1902ebf82","refresh_token":"e7bcea82-483e-408c-bd24-b3ad1ca9b408","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.RYCj-KDgmrlrU-_DWL2ZV36bKys2CixUUE3LJpdcN8lcDEwgezwZAgMdqUhTsfqQkgMShMtSIKm-YkanwZno3kdpA1SvcfmERx1FUT3MzWIa9AfZ8WeGA0EJISOY4nu3CTXeKgMkfCg24yNYX3IYIaAQ39hKdL6n7o5e9NHBESl2nmuJVl_tLoMenEWDSlJZ5MdKhUwMmWUXSCsd0msotZhg3bKyD6Bf38EAr-S9CME6O-ARIeNsD53XGojALMsiYcQ7ag6dcqTLSya9gkebKUIOdksG3A5tNQGsoFz98oN1w_iEMm9iXn575xPZZ620_Qt-hG0Q5W2afPHqPwJXpQ","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic Y2M1YjNhZjYtZGYxNC00Njg5LTkzMWEtZDYwZmFiNTZkZWE2OjA3NWE2ZTkyLTZiMTAtNDFhZC05MjYzLWVjZDQzNDdhY2E4MQ==

grant_type=refresh_token&scope=address+openid+user_name+profile+email&refreshToken=e7bcea82-483e-408c-bd24-b3ad1ca9b408

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 198
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:07 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"6d66f157-cdb3-44d8-998b-e2e5bd6130b1","refresh_token":"87644113-ae22-4e50-a6f3-039cee538a58","scope":"address openid user_name profile email","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 6d66f157-cdb3-44d8-998b-e2e5bd6130b1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 633
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:08 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: authorizationCodeFlowNegativeTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1714
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:08 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a45c9f71-d5c6-403f-bff7-a6c3d7590882",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "eff8ea27-e290-40d0-8234-096bb4a37cb0",
    "client_id": "a45c9f71-d5c6-403f-bff7-a6c3d7590882",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "426fe1ad-c21d-4ef4-b708-7da936cc5818",
    "client_id_issued_at": 1633614968,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618568,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=a45c9f71-d5c6-403f-bff7-a6c3d7590882&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=b581c119-d69d-4504-852f-885bdb1d16a3&nonce=ca811e4c-d40a-466e-bcf1-9e057ed99c2a
13:56:08.419 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:55c76d9da8bbfb9dfb10141855604519176fbd7c9e3e00a69cb7c1105e20ff37.cb353a4c-5839-4da1-9d46-d8105b3057ba
authenticateResourceOwnerAndGrantAccess: sessionId:c6e33362-2506-4310-a9be-36da4c2a5244
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=a45c9f71-d5c6-403f-bff7-a6c3d7590882&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=b581c119-d69d-4504-852f-885bdb1d16a3&nonce=ca811e4c-d40a-466e-bcf1-9e057ed99c2a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=616c3fd9-43cd-4132-b1cb-846420a52796&scope=openid&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.Y9bBB6_SlDDyA4in4SfhPobcXQBcoLhKS7x5uJFvJH_jcGGQu-xLWNmi4Wd38_kgWs6uJPBIR8O8DVHLrkVSIfFR_O9kuZSKc9YVC9V51sthQdGqRBTVM-szb95VnOp74ux9LMdeuoBLhTl26YZpYEUEirgjeLwITjPyBsy2PEYofv7aZmjt6qXnldsGW2hjNks5Y-TwN1K6QWH7nDgig8qHpTmRKQyuWn-SEYRci8pRqezLzn790WggEFdv8ukSmXSQZapf8OoDV0TzoShF6Mu3M-DtSWEQ8_OWsvY9mbJ6Y9E97UOq6Oq_hvqGdXhSFChhU3wDqW-j86_t_eo_1Q&session_id=c6e33362-2506-4310-a9be-36da4c2a5244&state=b581c119-d69d-4504-852f-885bdb1d16a3&session_state=55c76d9da8bbfb9dfb10141855604519176fbd7c9e3e00a69cb7c1105e20ff37.cb353a4c-5839-4da1-9d46-d8105b3057ba

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic YTQ1YzlmNzEtZDVjNi00MDNmLWJmZjctYTZjM2Q3NTkwODgyOjQyNmZlMWFkLWMyMWQtNGVmNC1iNzA4LTdkYTkzNmNjNTgxOA==

grant_type=authorization_code&code=616c3fd9-43cd-4132-b1cb-846420a52796&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:09 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"8c5bb199-377e-4228-8441-2bff381434ae","refresh_token":"af1be422-ee1a-428f-9db7-686d4657c3ba","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiOENTaDdBSjh0dWh6RktfdW9ldF91USIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6ImNhODExZTRjLWQ0MGEtNDY2ZS1iY2YxLTllMDU3ZWQ5OWMyYSIsInNpZCI6ImY4NjNjYmM0LWZmODctNDc5OS05ZWFkLTZmZmQxZWQ5ZjZmZCIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImE0NWM5ZjcxLWQ1YzYtNDAzZi1iZmY3LWE2YzNkNzU5MDg4MiIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwiY19oYXNoIjoiNnJGb01QQkF1Q3dnX1RzZmt1YUZsZyIsImF1dGhfdGltZSI6MTYzMzYxNDk2OCwiZXhwIjoxNjMzNjE4NTY5LCJpYXQiOjE2MzM2MTQ5Njl9.dbo6NOWmyc0IGUIMlaRKEClbd3bnNzSR0DgUE-PvvDpZ3mHK6s_7SU0DKy56zgrm_iqv4c3PfagGFW5ESElYGnvcP4HRNsjg4ab30gSNF6P5dO8or5jbrMUZUK37_ztnHNhIqenKQ0PumfF7VrKoUVAyQ-zDUK3M2KV0SqOA2yIohMono4dUSSdwN7tO_NWqB2LAfIqE0gvzydpbetGXRigbf46TOFdFM3wdcTflEIrqprn7dvJ1NSckUtdtkH815HCeeNITyoVf52gFfwhHu6qqeVCSJ3zWRjD-RKyyi1B-itx8TUFXDvajDhJm55yPDqAKiNHLMs-bq3Af4txdJg","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic YTQ1YzlmNzEtZDVjNi00MDNmLWJmZjctYTZjM2Q3NTkwODgyOjQyNmZlMWFkLWMyMWQtNGVmNC1iNzA4LTdkYTkzNmNjNTgxOA==

grant_type=refresh_token&scope=openid&refreshToken=af1be422-ee1a-428f-9db7-686d4657c3ba

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 166
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:09 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"1590df81-8064-44ea-b114-e6bc8b39aaf1","refresh_token":"edc65395-95b5-4382-96cf-ae3a16390a29","scope":"openid","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 1590df81-8064-44ea-b114-e6bc8b39aaf1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 53
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:09 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8"}

#######################################################
TEST: authorizationCodeFlowWithOptionalNonce
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:09 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=3ddf5da8-d53f-48e9-98af-8bc0e43eb84c",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ef489d6c-3394-4b1e-a337-0efb89bc1aa7",
    "client_id": "3ddf5da8-d53f-48e9-98af-8bc0e43eb84c",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "2e8aefef-687b-4bef-bfb8-9cabc6254d9f",
    "client_id_issued_at": 1633614969,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618569,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=3ddf5da8-d53f-48e9-98af-8bc0e43eb84c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0c277f1-65b7-4d1e-86c0-63b50934feb6&nonce=9dc91262-588e-4a44-8541-a62a830a2da1
13:56:10.146 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:5aaf6e9f57109e3231797a04e34d00f546612cfafad72fa75e54eed42fe85089.d7c456dc-d000-4fdd-8d02-f711be073a1f
authenticateResourceOwnerAndGrantAccess: sessionId:b11322ee-9034-434b-8794-208fa1de5474
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=3ddf5da8-d53f-48e9-98af-8bc0e43eb84c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=d0c277f1-65b7-4d1e-86c0-63b50934feb6&nonce=9dc91262-588e-4a44-8541-a62a830a2da1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=a28ab8a7-75ae-47f9-a5b1-6beb8400e501&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.ci-HkFl7iRlLenbZTlD6wC0WCsygSTyUNr5LyUhocgXg8GudzgAV75VsFDxzuoVa1z5IzvXL1vpUsMPZmVNW6LyLfG9VDRZByjTPvSe2mf-8Bg3mE9xql6SJOmywilAxOsgdB_nvJXzlalpJ-vFjfxm8fiqxI0cGe-Wy964Apo1teTbZnhSNQluoyLQxXOoX32v5y8D6QGoA3lXT1v1r5eeuRWsaenwTkYs90HpMpj7H3mo-a1xEa2h_qsFYzkZwQ-5KEuZQGjAuqBaNvxCzm4okzNtZkTci5TCwTqoNeWSWsdCgCmo63Q2i9tWzrKovMKoS7Bu3jDWKdMOglUfRVg&session_id=b11322ee-9034-434b-8794-208fa1de5474&state=d0c277f1-65b7-4d1e-86c0-63b50934feb6&session_state=5aaf6e9f57109e3231797a04e34d00f546612cfafad72fa75e54eed42fe85089.d7c456dc-d000-4fdd-8d02-f711be073a1f

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic M2RkZjVkYTgtZDUzZi00OGU5LTk4YWYtOGJjMGU0M2ViODRjOjJlOGFlZmVmLTY4N2ItNGJlZi1iZmI4LTljYWJjNjI1NGQ5Zg==

grant_type=authorization_code&code=a28ab8a7-75ae-47f9-a5b1-6beb8400e501&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:11 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"cbff2348-4676-4f4c-9c97-daf8214339ab","refresh_token":"d950dbe3-a1a1-472a-9736-b67c5e3868e1","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiWjhtVTNVOW5KVjdNdkQ5VnF0R1MzUSIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6IjlkYzkxMjYyLTU4OGUtNGE0NC04NTQxLWE2MmE4MzBhMmRhMSIsInNpZCI6IjUyMDRjMmVhLWE4YWYtNDg2Yy1iNDVhLWNlNTRkZDFhOGVjYiIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6IjNkZGY1ZGE4LWQ1M2YtNDhlOS05OGFmLThiYzBlNDNlYjg0YyIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwiY19oYXNoIjoiSnNkM3ZacjZsZ2FZdWJXMGxYWk4tQSIsImF1dGhfdGltZSI6MTYzMzYxNDk3MCwiZXhwIjoxNjMzNjE4NTcxLCJpYXQiOjE2MzM2MTQ5NzF9.q4_ZMihAx6StIPRLSJhvMDCi3_UVXjVZCYemG4vZX8BjWn_bpuPoYp_eh8PVmmehEq7sHxqT1VjE5jvAdffB9MSvHWlNATUM6xzaTwJbvSpx1Jed9hZxdrr3T84lBgkKR8EkJ1kUMOVVBXrq6N0uv7uiXhn-hwEfvnjF7MOKc8SEsXxW7XDqXloQQye7qOvhT9fJmLHFwBz_udiEM0uAHsVWs6M3-D7AjyCdGksfQDE5xJGSKy6r1F8jot_mHOnI2A-B3lvQ1H_4UshLp0zsDPcmR7-81k94FEgFl8g-haQ-DUBoUs6KzmwscKbr5SCcPlC_TFo7EmxD00FmPYBkcg","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic M2RkZjVkYTgtZDUzZi00OGU5LTk4YWYtOGJjMGU0M2ViODRjOjJlOGFlZmVmLTY4N2ItNGJlZi1iZmI4LTljYWJjNjI1NGQ5Zg==

grant_type=refresh_token&scope=address+openid+profile+email&refreshToken=d950dbe3-a1a1-472a-9736-b67c5e3868e1

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 188
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:11 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"03e4460a-a616-432b-be17-f67a008a6363","refresh_token":"883f2815-e7c7-4b69-9f14-b5142bd6bd84","scope":"address openid profile email","token_type":"bearer","expires_in":299}

#######################################################
TEST: authorizationCodeWithNotAllowedScopeFlow
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "pairwise",
  "application_type" : "web",
  "scope" : "openid profile address email user_name",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1746
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:11 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f6b24dfe-0519-4726-b995-9c889b6271b4",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "043b19ec-09ba-4b5d-bc40-70e75e47607e",
    "client_id": "f6b24dfe-0519-4726-b995-9c889b6271b4",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "address profile email user_name openid",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ef393c48-832e-4c90-a497-ffeefff8cfa5",
    "client_id_issued_at": 1633614971,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618571,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=f6b24dfe-0519-4726-b995-9c889b6271b4&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4fc09ddb-de4a-41c3-b5b8-e22e53fb9b09&nonce=64b4d476-8b6c-4885-a22f-5517363976a2
13:56:11.905 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:69bc8a819762dc4db4a26932c7ceabab6a0df04cf19a08cdb7e7098c3ac94456.0ad30bc0-b214-480c-9166-ed168ad696cb
authenticateResourceOwnerAndGrantAccess: sessionId:714d84b1-5ac4-4c8b-90bf-59e4f84af8ae
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=f6b24dfe-0519-4726-b995-9c889b6271b4&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4fc09ddb-de4a-41c3-b5b8-e22e53fb9b09&nonce=64b4d476-8b6c-4885-a22f-5517363976a2

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=fab58551-3c59-4af1-9d77-b57c4780b21f&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.QeHCCwav7ajS6csTukuxutxwfbtpq8-YXnZ7oFsnJqO8k-CMKxIPTwR5Yz66D4ZZIH7zWpYK0njPO7QK0QNv65LxZz3DHREb6iYavpeDIjkmTKilnR1G4P9WdUg4yrhwtFcq7qds_nNdiNCuVQvTxkTzSGfy1oV9Sm5fy_4CjjT-M-6DS1acXLChiam7myW7MtxIQlu1-pCopq20oZ1L6x9MXgLnrchHgoomjQUtTvBICTk7_9I5zq9nXFWb9NgYwe9056Ys2vsnP3r9haZJyudV9w6y0YlPJwUUBLNaxRe3h0FH6oxTYjInxPPfsh6jpVzJD7jJkTUjmBJeBcp9Og&session_id=714d84b1-5ac4-4c8b-90bf-59e4f84af8ae&state=4fc09ddb-de4a-41c3-b5b8-e22e53fb9b09&session_state=69bc8a819762dc4db4a26932c7ceabab6a0df04cf19a08cdb7e7098c3ac94456.0ad30bc0-b214-480c-9166-ed168ad696cb

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZjZiMjRkZmUtMDUxOS00NzI2LWI5OTUtOWM4ODliNjI3MWI0OmVmMzkzYzQ4LTgzMmUtNGM5MC1hNDk3LWZmZWVmZmY4Y2ZhNQ==

grant_type=authorization_code&code=fab58551-3c59-4af1-9d77-b57c4780b21f&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:12 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"abf92ca5-e257-4279-bbe3-b62ac26040ff","refresh_token":"6b37523c-aa7f-4e75-9420-69744e944486","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiUGY2R1JVdWdNaHNoaGh5N3RGZFRGQSIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6IjY0YjRkNDc2LThiNmMtNDg4NS1hMjJmLTU1MTczNjM5NzZhMiIsInNpZCI6ImY2YTAwMjQ5LTUwYTYtNDk3NS04Njc0LWE0N2M4MTg1NzZlZiIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImY2YjI0ZGZlLTA1MTktNDcyNi1iOTk1LTljODg5YjYyNzFiNCIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwiY19oYXNoIjoiNWJFbFFSQnduZXpjVW9PNXllNnB3USIsImF1dGhfdGltZSI6MTYzMzYxNDk3MiwiZXhwIjoxNjMzNjE4NTcyLCJpYXQiOjE2MzM2MTQ5NzJ9.DAtNBcIUw8K6Kc7PsSUsoMR19SXI3D9fTuf-aLq--wT6yJQiPILeBU9NioB8LU_Thx78LmRQfc4MBykOELc1F61SkFJ0JjJjpT6axFobzHarXm8sfse1p-ZRORZrT59dDkkUR5ikEWljrBC-KbUjuyW5Aw-lZBU3ImneAc3RoXz1jkt2VxhMaj9dpRAMvVnWypKezRqPaS2pxFs3lQHwDTug03w2d7sVZzwMQB_zmHjw-fgUQt3NgyPxxZF5QwkIEzisz5V_eAJzO_0KXQrBq0ph_rVGVHKVu_ctBstQ0ywfEu-4_vxOvEXpesqUqmgEqNj4UOFfNLMsW4n_lZUcfA","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer abf92ca5-e257-4279-bbe3-b62ac26040ff

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 633
Content-Type: application/json;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:13 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"sub":"3VjRwssCatXcqhCKq0tnY5_ZZ_GzkwBgbXuESsnfjE8","website":"http://www.gluu.org","zoneinfo":"America/Chicago","address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"birthdate":"20201022000000.000Z","email_verified":true,"gender":"female","user_name":"test_user","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1603387003,"name":"oxAuth Test User","nickname":"user","family_name":"User","email":"test_user@test.org"}

#######################################################
TEST: revokeTokens
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:13 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f800b660-4c4f-47b4-95ba-913ddbf87f51",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "59244ad9-e98a-41cc-9b56-6c5780706473",
    "client_id": "f800b660-4c4f-47b4-95ba-913ddbf87f51",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "39896b38-ab77-4e69-9e6a-c1eefb98e8c0",
    "client_id_issued_at": 1633614973,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618573,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 59244ad9-e98a-41cc-9b56-6c5780706473

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:13 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f800b660-4c4f-47b4-95ba-913ddbf87f51",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "59244ad9-e98a-41cc-9b56-6c5780706473",
    "client_id": "f800b660-4c4f-47b4-95ba-913ddbf87f51",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "39896b38-ab77-4e69-9e6a-c1eefb98e8c0",
    "client_id_issued_at": 1633614973,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618573,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=f800b660-4c4f-47b4-95ba-913ddbf87f51&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e3c1204-a75d-4986-bb1c-08c2e132d08a&nonce=da1f5208-573d-4c4b-9008-ee568c64ea1f
13:56:13.800 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:3713af7de5e4d744551cb0e1521f8754c39d9767d93abefb445d8451df022af2.efa54b7d-6334-47a5-ae9d-e474c235a68a
authenticateResourceOwnerAndGrantAccess: sessionId:da0f431d-e5d4-450a-9a81-522f64693440
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=f800b660-4c4f-47b4-95ba-913ddbf87f51&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e3c1204-a75d-4986-bb1c-08c2e132d08a&nonce=da1f5208-573d-4c4b-9008-ee568c64ea1f

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=d856aa1a-05e4-4c23-911a-b9e78b6ec3f1&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.J-qtiOJBM3KMokN0hJdb1_WK9zTPu9tGmkRCDahTj27Jmc1OHz6UZxi7fX-Xq7jrNwyEpVlTmf9STRomWcUFnnJgx_03VRau_o42YG8gU1SQZZo6wu4VVAtTgVaPr-MZuELnDWhg8so1RvgyZ1CfxFFXmBHlhjhRKnAX9Y_vkC4VKersE_xjhVWvg2Nnq2trVz1gBIq2IlQXQYgUphCH-cjJSKIVEJtjtqV0DuXHJSySkmsaxIvxHiMNXHylJss7MTP1P-VorTKXr4KJnIjtkuZlI6zrkMLXruUIzFBFTOYRf_sMbcNp25nNSbuD0PUxKV3zDw-YHHIYMjBhHJb8tQ&session_id=da0f431d-e5d4-450a-9a81-522f64693440&state=5e3c1204-a75d-4986-bb1c-08c2e132d08a&session_state=3713af7de5e4d744551cb0e1521f8754c39d9767d93abefb445d8451df022af2.efa54b7d-6334-47a5-ae9d-e474c235a68a

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZjgwMGI2NjAtNGM0Zi00N2I0LTk1YmEtOTEzZGRiZjg3ZjUxOjM5ODk2YjM4LWFiNzctNGU2OS05ZTZhLWMxZWVmYjk4ZThjMA==

grant_type=authorization_code&code=d856aa1a-05e4-4c23-911a-b9e78b6ec3f1&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1205
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:14 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{"access_token":"9eb7d840-26f8-491d-908f-7ff5c5e21404","refresh_token":"66eb1ecf-f9d5-4425-bfb2-0d9277b263be","id_token":"eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.B0XdXkoFlMyx8Sbsh9NeL_QDC8N5Xk60c0UJd1OUd_DJZbbPdnww3KeZmHUGBh-V1nnAH8DnVECiAWOuMrprDo6KPlDOnLQSTqpljI2QOXcx0jseeHFEZineALdRkfSRnVbM0UD0X1-cUApfDqZx9Iy5OgssENq4gLikpPLpKup5RnZbySg06Tow74ehcpkhwKymm01R4tcowOaedNYiuVbpKp1_xX6gXhVx6J5Nptdex4LTnxmwBLwTtrGXTYODXPIJgGG8N0Soy5Z1ir9C8kTCKgmtlD_bYl9ABwmB4MK3tRtLkOXpMuVdYuHQD6GiSBASGbbNyzUUc-Qj1Tdi8g","token_type":"bearer","expires_in":299}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZjgwMGI2NjAtNGM0Zi00N2I0LTk1YmEtOTEzZGRiZjg3ZjUxOjM5ODk2YjM4LWFiNzctNGU2OS05ZTZhLWMxZWVmYjk4ZThjMA==

grant_type=authorization_code&code=d856aa1a-05e4-4c23-911a-b9e78b6ec3f1&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Cache-Control: no-store
Connection: close
Content-Length: 287
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "reason": "Unable to find grant object for given code.",
    "error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.",
    "error": "invalid_grant"
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: jenkins-ldap.gluu.org
Authorization: Basic ZjgwMGI2NjAtNGM0Zi00N2I0LTk1YmEtOTEzZGRiZjg3ZjUxOjM5ODk2YjM4LWFiNzctNGU2OS05ZTZhLWMxZWVmYjk4ZThjMA==

grant_type=refresh_token&scope=address+openid+profile+email&refreshToken=66eb1ecf-f9d5-4425-bfb2-0d9277b263be

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Cache-Control: no-store
Connection: close
Content-Length: 338
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "reason": "Unable to find grant object by refresh token or otherwise token type or client does not match.",
    "error_description": "The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.",
    "error": "invalid_grant"
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/userinfo HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 9eb7d840-26f8-491d-908f-7ff5c5e21404

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 401
Cache-Control: no-store, private
Connection: Keep-Alive
Content-Length: 216
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "error_description": "The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource.",
    "error": "invalid_token"
}

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a99bd802-dbef-4ae7-b978-e902e0a3cd1a",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "78cc4a15-7aec-4323-87f2-01bdbf6b55af",
    "client_id": "a99bd802-dbef-4ae7-b978-e902e0a3cd1a",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "4dfbae81-c850-4b65-9cc9-f36acd2c03a9",
    "client_id_issued_at": 1633614975,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618575,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code&client_id=a99bd802-dbef-4ae7-b978-e902e0a3cd1a&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=6df3faee-c103-4e32-b1db-90794267814f&nonce=1f587830-b016-47f0-aeaa-d69287ee6985&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=5fd7f9e0-4e22-4021-bb10-5a29ffd9ba99&scope=address+openid+profile+email&session_id=0900e0d0-4bb2-4f46-a736-934a2677f35a&state=6df3faee-c103-4e32-b1db-90794267814f&session_state=f1625c4a9b489ef65ff2e52a7cffeab3bfe7240280ec57fdf099599927bfee97.fb5ac134-7a49-4318-856c-05e5f4b37773
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1737
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:15 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=dfcbfba9-4bb4-472f-ad0f-d55a82987963",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "9fcf7e55-1365-4ced-b14d-3acb7d9db93d",
    "client_id": "dfcbfba9-4bb4-472f-ad0f-d55a82987963",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ba8bc7b7-503c-4c8b-aa88-410a0440ae79",
    "client_id_issued_at": 1633614975,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618575,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["token"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=token&client_id=dfcbfba9-4bb4-472f-ad0f-d55a82987963&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f2d72ace-2d9c-4038-bd79-866a997b7662&nonce=45db064a-bcfa-4dc5-b964-5ef4fd30eddb&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:16 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=768f25ab-41bd-497b-9070-e081cb052909&scope=address+openid+profile+email&session_id=23c6753b-3111-4712-8251-0a05bdfa7f37&state=f2d72ace-2d9c-4038-bd79-866a997b7662&token_type=bearer&session_state=02a740bd933228e210d8fb9117fa9958b28829496fb7efa52968e5438b4b4f41.8bc9e2ff-7221-4f69-b68f-46016e5e1493&expires_in=299
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:16 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a1355537-cb0c-46bd-9c67-2a5be605f6ac",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ee7efbb8-d755-49be-9cfd-56ead820dd4f",
    "client_id": "a1355537-cb0c-46bd-9c67-2a5be605f6ac",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "dde39c25-8f81-4e21-9b6a-9e0e416388e6",
    "client_id_issued_at": 1633614976,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618576,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=id_token&client_id=a1355537-cb0c-46bd-9c67-2a5be605f6ac&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=bd7b07de-e6a9-4833-b214-71df91c6402e&nonce=83e1c6be-d859-4438-ab6e-049270cc0307&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:16 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdWQiOiJhMTM1NTUzNy1jYjBjLTQ2YmQtOWM2Ny0yYTViZTYwNWY2YWMiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4Iiwic19oYXNoIjoiZDBtdXdPT0F5cmptWnhpd0dkX3ZmUSIsImF1dGhfdGltZSI6MTYzMzYxNDk3NiwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJleHAiOjE2MzM2MTg1NzYsImlhdCI6MTYzMzYxNDk3Niwibm9uY2UiOiI4M2UxYzZiZS1kODU5LTQ0MzgtYWI2ZS0wNDkyNzBjYzAzMDciLCJzaWQiOiI1MDgzZDMwZi1lZTk4LTQxZjYtYTgyYy01Y2UwNzg5ZDZiNjIiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAifQ.UI2WOKCJkP5cZyp7m-8GsfhtxZQLvFJepu95X7h6tKt_GUu32EmcL6grCX2CR2Ox-qe73yFudYVf1V7hhLumQPXKSAATvDJTH6k_qgk-dDpsG_ncjWNfJKKnCudjw9RIsZf5Bxck__UC_PH5Ss4eDdg9wSuLGeAHH4JqPZI050BAE74Mb8xidtUFhIxcGIGbp5T19mk2_kLpau7F8d3vw929YDE5y2KzzMgY0gVhBR4RnN1BQRVo2ZgHFLBFBVa6crE9wkdYN-mNxfGfyCJbbhDdzMFrpbkF9CtIsockLMweIMGqxoogFxAWo9RplWi3qyou-MhnbnMTN9lzZhRJ9A&session_id=fc185038-e8b1-4342-8ca6-20ea446d9c52&state=bd7b07de-e6a9-4833-b214-71df91c6402e&session_state=3e58b8b25f44eeaac17a6b67924f261cc3830fbbca036592facfca9045ebcdea.e067d5d6-bc37-4cfe-ac8b-ca7ee0567a31
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1836
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:16 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=6440baaa-127b-4e19-9c72-9dd8f174e296",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "e5b2f292-6f0e-4901-a392-123cb7367991",
    "client_id": "6440baaa-127b-4e19-9c72-9dd8f174e296",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "448f0e21-a515-463a-8b79-5ad03897f64a",
    "client_id_issued_at": 1633614976,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618576,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code+token&client_id=6440baaa-127b-4e19-9c72-9dd8f174e296&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=03713e85-ac3a-4467-87f2-48ff1ccd7956&nonce=771a1d64-a569-486c-a9d2-4b1eb4beff0a&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:16 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=29a5597b-2a1b-4551-a4ba-6818e40c1ac4&code=6af4cafd-3b52-418e-aec2-f4bfddb77273&scope=address+openid+profile+email&session_id=dfb2cf5e-b35b-418e-acea-1864cea1bbdb&state=03713e85-ac3a-4467-87f2-48ff1ccd7956&token_type=bearer&session_state=e0d81826ff81bb3d5c2b3b14898a5a64f8ba57cf253b74343672de5a8c1d9808.fe1f3210-9fae-4c08-83c2-651e5e6de2b2&expires_in=299
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:17 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=91fa65bd-e7d8-4abf-95d9-5da0b61631cb",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "c744575b-fb03-4004-9bda-3b7786e650f2",
    "client_id": "91fa65bd-e7d8-4abf-95d9-5da0b61631cb",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f85487cd-a6c5-4572-91de-3d9753ad3973",
    "client_id_issued_at": 1633614977,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618577,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code+id_token&client_id=91fa65bd-e7d8-4abf-95d9-5da0b61631cb&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=aeb0c129-166a-454a-98d8-b1ad702b440a&nonce=ba21f180-8c86-475d-b17e-1198cbdd8fdf&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:17 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=fc4d3978-8215-498a-b18c-e439b82fa63e&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdWQiOiI5MWZhNjViZC1lN2Q4LTRhYmYtOTVkOS01ZGEwYjYxNjMxY2IiLCJjX2hhc2giOiJhd3RXczEzb2pBQkE3SEFrbEl3SEZ3Iiwic3ViIjoiM1ZqUndzc0NhdFhjcWhDS3EwdG5ZNV9aWl9Hemt3QmdiWHVFU3NuZmpFOCIsInNfaGFzaCI6ImxmenJJQkl4cnRhNm1OeG9pQnZNNnciLCJhdXRoX3RpbWUiOjE2MzM2MTQ5NzcsImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIiwiZXhwIjoxNjMzNjE4NTc3LCJpYXQiOjE2MzM2MTQ5NzcsIm5vbmNlIjoiYmEyMWYxODAtOGM4Ni00NzVkLWIxN2UtMTE5OGNiZGQ4ZmRmIiwic2lkIjoiZDRkOTk3ODctYTNmYi00ZWFlLTkxY2YtM2M1NTBjZWYzNWNkIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIn0.IglsVzQd-7r8xyWcXL7uuF9zJ2hVvcRGNhwq0RICHzxAXLwgVQyX_BzoitjhIfcHcHXguNw94cMUy_d0cno-qJWdWHLez9412-pzBLewCx85YzWD3nLeN8egz0YMJhePXGdTtriA_UricmlOItSkwX_rqhrIY0L0oqOZTZlhJ5lO30L8_IIHR2Q5d9dXBPT3OAOgZrBkpnxpY8z7h3pDJWmR42_TxvW4K47YDYRFVNPhtA3rLEeSsRJIDu88ZawTEBUFwx-o51SqkpKpjH1-OJwRtXMiQQcoiLJkO7b8O3g_41_0AGCX05zQ_ggl_Aps1mUp88cq7yomh8CRzRvd0A&session_id=4f68d971-0fd5-4f10-b073-328e9fc69d2f&state=aeb0c129-166a-454a-98d8-b1ad702b440a&session_state=9635d67ebe7d62486687c15a307044369a02f8c1d0c0a60001bc5a56708168c6.056407d7-b317-4090-ac0b-3174a67e7bd3
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:17 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=3c909a35-dcf0-4110-b1c9-23b89a7bf7f9",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "de064747-9bbf-4679-b629-3f59fb18092b",
    "client_id": "3c909a35-dcf0-4110-b1c9-23b89a7bf7f9",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f8d514b2-6b68-4675-b11a-16b8b4f9eb81",
    "client_id_issued_at": 1633614977,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618577,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=token+id_token&client_id=3c909a35-dcf0-4110-b1c9-23b89a7bf7f9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=959c306f-1f61-429b-88c9-0fffe6cbb175&nonce=86b75766-ddaf-4178-b58e-948807610258&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:17 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=09eb7515-5735-488b-abfb-e9691d689df7&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.TnglhC9aWjh8Z8AGY0nyfz0cjbMPMzYnE6AlD8xYyKJV-GYWiQcdh8714t87uGsnIjEQ8HKgRVfQcNFTbD1A9Y1rdzCH-Pe73u5jmpTU9C6OYcY1UdJ-u8cv29Z7nqJXE6uEB7uS-XVH-NPnBJgEuvWF9bsHlfq-GKVo6f36GnePoNT06-QjwqzfU7pdxR5sKt8AAqj2AJ8-7Z0jeq6DTwlkr4H2-rCJD9nwv2gcP1tls1bJIrypPoO_4CpaPM2T5QFdmMmgSAqz7VqqLU5OvBfJ1paPvu_iyUv83EFMyr1IANrxJthJEMftDTMMYpYa2F5Ueef-mldnfxOpzIBQXA&session_id=5634e626-d0df-4fbc-ab34-c8ee58784477&state=959c306f-1f61-429b-88c9-0fffe6cbb175&token_type=bearer&session_state=8359ce1f94e3e856c5567d77ddedcd2e1b7b07be91b97ae65b39bddb19c62621.3115cc58-b394-4c3d-811b-65a118503081&expires_in=299
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: AuthorizationResponseCustomHeaderTest
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "oxAuthTrustedClient" : "true",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:17 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=1a39fecf-09a4-40c7-810a-90b5fb3295da",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "19daed1b-e69a-47de-968c-ce3d7c9f58e6",
    "client_id": "1a39fecf-09a4-40c7-810a-90b5fb3295da",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ffe8ec77-9820-43d0-8bf4-c47e257230ee",
    "client_id_issued_at": 1633614977,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618577,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code+token+id_token&client_id=1a39fecf-09a4-40c7-810a-90b5fb3295da&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=e851dd05-5959-473a-9486-eb77b10feba4&nonce=67e7e8da-3100-4e0e-a730-4826abd8db46&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
CustomHeader1: custom_header_value_1
CustomHeader2: custom_header_value_2
CustomHeader3: custom_header_value_3
Date: Thu, 07 Oct 2021 13:56:18 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=522c96c0-3bbd-4716-8450-0f5b03cd77a3&code=763f71e4-fc4e-4209-b908-1994802f36ec&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiaF9jV3ZsZjV2Z0xfMkIyVjNfTUZvZyIsImF1ZCI6IjFhMzlmZWNmLTA5YTQtNDBjNy04MTBhLTkwYjVmYjMyOTVkYSIsImNfaGFzaCI6ImYyOWFZWXpqYjZkQ2xBRnpxOTFfUUEiLCJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4Iiwic19oYXNoIjoiRkdJUERVTkxyTkEzdlRQMTV4VDFpdyIsImF1dGhfdGltZSI6MTYzMzYxNDk3OCwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJleHAiOjE2MzM2MTg1NzgsImlhdCI6MTYzMzYxNDk3OCwibm9uY2UiOiI2N2U3ZThkYS0zMTAwLTRlMGUtYTczMC00ODI2YWJkOGRiNDYiLCJzaWQiOiJhMWI1NjViMy0xYjQxLTQ2M2MtODA0YS05NTcxY2Q4ODgyZGMiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAifQ.WHgZHFD6b9eQCXrmJqjG7onfYDo_YO9phXRYzuO0Cht9bRh06EJlJyDoRHfFwTC_5DHXabyPqUSHLVY66geQD3Ec1v6I90ZJH0YYzaYUrBD7-zVlijRdcAAW8MRv7aDpjvtNZq0geDM4WYomqX6TTSnYp6uzyCbKbP5u0cz4cpEw5OzZERNE7LcML2IJYR8_x6_mgNgzL182oJJcBJHuJ2feHkjAFZmt-Zt8t7fwJqre3nFwc9xhoxOetssjXHhtZdHLsahe3U_IXulVTqoyisqe3AWXQlxdipANVQOxb82i32mriX3CI_9nBIJvXom1zj5giyna7sR71H13Mj6Aig&session_id=f6fb2495-6808-4fef-8ca3-9838bb9ccbbe&state=e851dd05-5959-473a-9486-eb77b10feba4&token_type=bearer&session_state=76504a164f63a3a4686e4902685672059b76df55d2d8166fb400e6937b78b983.69c73a06-1f98-48fc-ad05-933dafaca403&expires_in=299
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:56:18 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:18 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: defaultResponseModeBasicCode
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:18 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=29788caf-c927-486b-afee-406570ea5ae5",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "c7bc308f-ba84-40cf-b4fe-ea9e2f3e5062",
    "client_id": "29788caf-c927-486b-afee-406570ea5ae5",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "310a3355-5d13-435c-9c94-4d82b27905c4",
    "client_id_issued_at": 1633614978,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618578,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=29788caf-c927-486b-afee-406570ea5ae5&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3aff8eb8-86fd-4243-8fea-428d22741dda
13:56:18.716 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:0b2927c0a1c8037e822f6d287a9fce219b42096fae64f2baf610513065469007.2c102eb5-8867-4444-934d-9a809e37b29b
authenticateResourceOwnerAndGrantAccess: sessionId:62984a2a-c5fd-43b9-959e-75954c36477e
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=29788caf-c927-486b-afee-406570ea5ae5&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3aff8eb8-86fd-4243-8fea-428d22741dda

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=e33301da-5106-47b9-a56d-e7f2891ddfa6&scope=address+openid+profile+email&session_id=62984a2a-c5fd-43b9-959e-75954c36477e&state=3aff8eb8-86fd-4243-8fea-428d22741dda&session_state=0b2927c0a1c8037e822f6d287a9fce219b42096fae64f2baf610513065469007.2c102eb5-8867-4444-934d-9a809e37b29b

#######################################################
TEST: defaultResponseModeHybridCodeIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:19 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=579000e6-b519-47fe-b242-0f1b61825f34",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "df465dd4-d410-4f2c-b70f-acc7cb312096",
    "client_id": "579000e6-b519-47fe-b242-0f1b61825f34",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "795cf085-50c2-45cd-89f3-741dcc8429a0",
    "client_id_issued_at": 1633614979,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618579,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=579000e6-b519-47fe-b242-0f1b61825f34&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=a9eac18c-09c9-4161-aa06-77b3aef14866&nonce=a2b732ba-12f7-4de0-8dcc-3285a0e6aa9d
13:56:20.006 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:0f5f26ed514a88bba43921790ad767a252719e015ebe04cb7996f8de2ab80655.fd581b77-9b15-4bc3-bac8-8608f5990610
authenticateResourceOwnerAndGrantAccess: sessionId:585a887a-ffe4-49a2-a8c6-df2e7f6ddfeb
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=579000e6-b519-47fe-b242-0f1b61825f34&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=a9eac18c-09c9-4161-aa06-77b3aef14866&nonce=a2b732ba-12f7-4de0-8dcc-3285a0e6aa9d

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=946d9c0c-bd7d-4fc3-a1e0-a7eadab36030&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.AKInxXAQzhjWH0IiPcJsASTdeSI9CMZabyY5isDH_rOZi__XxHms183_XTVdRSPst0D2DYBYlclkGZ7mzk0ihz7FYSHr-bYCihTKeYQvyO7GkXBTwmvsFyl5kzO0lJo1KCv25i1Kw7GdGZO-bUEXo8S4pT8wPgq7ESjlbIEXJ0HiyS2YL6TmtNciB9cBWmQ91fuig9-YFQzXHLVwBU90t5C3jMrmELMUt6MB926Ps0FJizZlUOJgjA3ml14vbAPibMJ2IQWmQrqFvBnD6kkoRDe7gv4vo0ZGWOfjAnXIp1HrZRxMR4jY0r0Wd3LB_mvez4-qUbRQuBigFctjDxRPNA&session_id=585a887a-ffe4-49a2-a8c6-df2e7f6ddfeb&state=a9eac18c-09c9-4161-aa06-77b3aef14866&session_state=0f5f26ed514a88bba43921790ad767a252719e015ebe04cb7996f8de2ab80655.fd581b77-9b15-4bc3-bac8-8608f5990610

#######################################################
TEST: defaultResponseModeHybridCodeIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:21 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=09fd1d17-460c-4740-9fe1-7eaa2dfbc6f7",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "969f38b1-2ada-4a57-abe5-ebf7ae32207e",
    "client_id": "09fd1d17-460c-4740-9fe1-7eaa2dfbc6f7",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "eadff763-1b7a-4aeb-a59c-7a5b04a07dc0",
    "client_id_issued_at": 1633614981,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618581,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=09fd1d17-460c-4740-9fe1-7eaa2dfbc6f7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=40634651-6629-4a43-861d-5ce00f5ecbc3&nonce=bf1f0a9f-f2c2-4d15-880b-2607c3b2f96c
13:56:21.396 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:6a584f42504a9050faca5a3fad52225ee9d361f28e6d33342d045d391455d8a7.35863cc4-6e10-466b-ab51-1a8430ca6d8e
authenticateResourceOwnerAndGrantAccess: sessionId:d61f0725-cb88-4c40-b1a4-4091dac4a946
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=09fd1d17-460c-4740-9fe1-7eaa2dfbc6f7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=40634651-6629-4a43-861d-5ce00f5ecbc3&nonce=bf1f0a9f-f2c2-4d15-880b-2607c3b2f96c

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=92ec6248-72af-4355-b22e-3e7dd57a873e&code=c0a116a9-218c-4f60-ba57-0aa73554899b&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.VpmQaJ6eIxt_BM1DKTqQY2YXIW2RYXZQgQ21hSRpWu14160Cy34Lo8EFoLwyGUvHlhK8HwYFQfQyfjX9B6P-SGaECWqCI1rMW6UgvOdvCjWtdJqn8SRF3MxxG2_0FF6SmALV9600O7vSNz4SkXutZEXhSYVR8cqAlv7nQ6dvYDt5LEbA-nikxUl6COM5bNth3ZVFaD__j9bQ9yXi1wzRfzrXAGqK3TUGhutAhApxqM0FbKBPlLNu15V3OB58Hn4hm8ud_2Vuo40GRyy2RRRcMgUAZX1SE7nOPmzPNLs0DKLp-gGzLBTfHLVjLr6fwJIw9VIQleQfGhr7uMj-S3PhKA&session_id=d61f0725-cb88-4c40-b1a4-4091dac4a946&state=40634651-6629-4a43-861d-5ce00f5ecbc3&token_type=bearer&session_state=6a584f42504a9050faca5a3fad52225ee9d361f28e6d33342d045d391455d8a7.35863cc4-6e10-466b-ab51-1a8430ca6d8e&expires_in=299

#######################################################
TEST: defaultResponseModeHybridCodeToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1836
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:22 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=1b8416da-04eb-45d1-9ce2-42936d11349c",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "bd1c6631-7d20-417c-b4b4-a34f7c5dc68c",
    "client_id": "1b8416da-04eb-45d1-9ce2-42936d11349c",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "8db3bf79-d888-452b-a5de-ad5322543bf7",
    "client_id_issued_at": 1633614982,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618582,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=1b8416da-04eb-45d1-9ce2-42936d11349c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=cae74a96-5fc9-4c8d-a0d1-73706b8f86c8&nonce=6daab515-f276-4ba5-8150-b86161686033
13:56:22.785 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:4741eb73c786bb8fd43670af757abe4b8d5ff2f42e8bc146082ab09297128161.221cff26-ee01-4974-867d-6d6127109f14
authenticateResourceOwnerAndGrantAccess: sessionId:ebea39ca-f023-49f0-8ebf-4a12856bc382
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=1b8416da-04eb-45d1-9ce2-42936d11349c&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=cae74a96-5fc9-4c8d-a0d1-73706b8f86c8&nonce=6daab515-f276-4ba5-8150-b86161686033

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=8f72b96f-f5e7-49e5-8236-0409669f5370&code=1fe4fffe-250e-4eb4-8ea6-d29ab8f8934a&scope=address+openid+profile+email&session_id=ebea39ca-f023-49f0-8ebf-4a12856bc382&state=cae74a96-5fc9-4c8d-a0d1-73706b8f86c8&token_type=bearer&session_state=4741eb73c786bb8fd43670af757abe4b8d5ff2f42e8bc146082ab09297128161.221cff26-ee01-4974-867d-6d6127109f14&expires_in=299

#######################################################
TEST: defaultResponseModeImplicitIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:23 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=02067590-e5d5-458e-9dc2-501ede653655",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "82ced219-7661-414c-b000-ec4d9d1457e2",
    "client_id": "02067590-e5d5-458e-9dc2-501ede653655",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "4b2359a9-b8c9-4a46-8175-0161fe06eb4c",
    "client_id_issued_at": 1633614983,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618583,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=02067590-e5d5-458e-9dc2-501ede653655&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=fa5e19ef-aede-4023-a0b0-7b5709c59e06&nonce=e944b980-b9ba-4a8d-a32b-d34be73c9624
13:56:24.182 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:b6f210d043ccdb3ddffd6a3d01576afcf309ee42affc88ad144e6798928b1fe0.665bbeba-65c5-454a-9fd5-55492aa7c8ec
authenticateResourceOwnerAndGrantAccess: sessionId:f455a1da-97d8-446a-8668-950499d9efc5
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=02067590-e5d5-458e-9dc2-501ede653655&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=fa5e19ef-aede-4023-a0b0-7b5709c59e06&nonce=e944b980-b9ba-4a8d-a32b-d34be73c9624

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.TDMPlMGhkq4IuIjFAa6Ap8wGwhbrEo1N6WR0WMMzso-aB-MLHeJOMqlxQO2jE-eTT2aV2cC5fpZdl21qODoC7Hapzth-3jqa8C9qPhIWumoBGU1eAPMBHRdewsbodFVD-J5Tg_j19U8X4AACsOLfGG3ilDVY-SFSy44yiaiIulPBQnOGHk8KnyfoT1kJ_aFl2hDMkUDI4PZ7duO97LyMdh0gBz84PV70yoC6b7GPL1FCPKwMe0ShMd5N4ICpolzW9wGo4XngrAXD9016ExT0W6Yhwd2SSgrjrYVRZalHooMvid0bKSLKoiAcii6GaVw0kt3bM_abfawVlwV9tY75cg&session_id=f455a1da-97d8-446a-8668-950499d9efc5&state=fa5e19ef-aede-4023-a0b0-7b5709c59e06&session_state=b6f210d043ccdb3ddffd6a3d01576afcf309ee42affc88ad144e6798928b1fe0.665bbeba-65c5-454a-9fd5-55492aa7c8ec

#######################################################
TEST: defaultResponseModeImplicitIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:25 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c6f377dd-4fa2-45ba-b655-16759af2ca02",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "4756642f-18cd-4846-98d4-ca4988e8d9b0",
    "client_id": "c6f377dd-4fa2-45ba-b655-16759af2ca02",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "dab00547-b630-4d4f-ae72-6e4050122248",
    "client_id_issued_at": 1633614985,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618585,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=c6f377dd-4fa2-45ba-b655-16759af2ca02&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5c723251-be6d-4f91-8eea-e8ef9254348f&nonce=3b7d7321-83e3-4e24-9542-380f1a06b17b
13:56:25.498 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:8e969b6f0f42373b1d3b1965bd22fa331b0fce4591c7ecde8a0f922cab058033.74839025-0f62-40e7-a326-a7da5edf4dc5
authenticateResourceOwnerAndGrantAccess: sessionId:db2bc665-d0a7-42b9-8573-41fe682cb329
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=c6f377dd-4fa2-45ba-b655-16759af2ca02&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5c723251-be6d-4f91-8eea-e8ef9254348f&nonce=3b7d7321-83e3-4e24-9542-380f1a06b17b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=a62a47dc-8600-4ff9-9845-e2cc7d40fdce&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.jOUOq6uzQyzJONtaNQ1ay7AikP8o60cNRajQ_PJ_nYUbCKsj4Tn7iqZITDNl2Li3AdlprUdKBiqUqbfuEcvre5-tUOcgGqSlOF4UQq_Gt_RonfXX0Qlw_TOMZRdVxLOd0MDR-anBW72pLncNIMtW0RljWCCMer49XDKycaHobLJpXstHl46SQz9li9tVZ9GUX-Dp0ZRtNitwY_81PJScDH3mET88jHluTZ0Ky8nL2QejiIeRCo49DVwSKibEHVNEtqSIPyR-r-BFffASYYOQ9kwpkEfnpRRsGhooQpjzQrsh2hcwYFd36pG1ZFdvpbwFAIxzfYxQtqzS9Ke6088ppg&session_id=db2bc665-d0a7-42b9-8573-41fe682cb329&state=5c723251-be6d-4f91-8eea-e8ef9254348f&token_type=bearer&session_state=8e969b6f0f42373b1d3b1965bd22fa331b0fce4591c7ecde8a0f922cab058033.74839025-0f62-40e7-a326-a7da5edf4dc5&expires_in=299

#######################################################
TEST: formPostResponseModeBasicCode
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:26 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=0786289f-b181-4994-a8c6-dbc489be1629",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "fef0f2ba-ecc9-4b26-8dde-7442d181b290",
    "client_id": "0786289f-b181-4994-a8c6-dbc489be1629",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "76e080d5-c63c-4e4e-b6f8-71f4efb630ae",
    "client_id_issued_at": 1633614986,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618586,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=0786289f-b181-4994-a8c6-dbc489be1629&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=600f4843-7079-4412-b852-887c20b4dd4c&response_mode=form_post
13:56:26.856 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:9398b9d08f9ae7c529469c157fe276330dcb7bb4f64455b55a3dd10358d211a5.eb1fb9e3-190a-4095-9d3d-a285ca5ef3f9
authenticateResourceOwnerAndGrantAccess: sessionId:21226a32-5327-4e36-8642-2cc2589c3ccd
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=0786289f-b181-4994-a8c6-dbc489be1629&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=600f4843-7079-4412-b852-887c20b4dd4c&response_mode=form_post

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: formPostResponseModeHybridCodeIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:27 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=ec42b691-4100-49bb-a510-9f9c89882aa1",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "1efed750-bbcd-48da-a5e5-a3079ac967a6",
    "client_id": "ec42b691-4100-49bb-a510-9f9c89882aa1",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "590d0885-d24b-4d91-baa4-37f465d090b5",
    "client_id_issued_at": 1633614987,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618587,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=ec42b691-4100-49bb-a510-9f9c89882aa1&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=6e78d2f8-94a6-4a77-9aaa-1895cc18e248&response_mode=form_post&nonce=bb509662-9920-4a51-9bc9-9ffc3b189a96
13:56:28.209 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:44413e61b6dea78c04d13379611355798d4804e45e243f67d184b3c0fb380d85.33fd0cfa-287e-47aa-9381-cf75e14f5ec6
authenticateResourceOwnerAndGrantAccess: sessionId:07fd1d17-950b-4e68-a1db-99d77d233026
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=ec42b691-4100-49bb-a510-9f9c89882aa1&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=6e78d2f8-94a6-4a77-9aaa-1895cc18e248&response_mode=form_post&nonce=bb509662-9920-4a51-9bc9-9ffc3b189a96

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: formPostResponseModeHybridCodeIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:29 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=225a0695-a0f5-4457-9ee6-b3154bc2ed5b",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "0e2dfb2c-4e67-4f56-949d-fd09ef348fa6",
    "client_id": "225a0695-a0f5-4457-9ee6-b3154bc2ed5b",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "96024b05-eb16-4c24-af67-0e16a019ba62",
    "client_id_issued_at": 1633614989,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618589,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=225a0695-a0f5-4457-9ee6-b3154bc2ed5b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=39e2a92a-2e73-4062-ac25-c9902063f81c&response_mode=form_post&nonce=94949f1a-3a06-4a76-9c96-7e25d87e075a
13:56:29.600 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:86be2fa297b447eab40492f768309a19a3e4a563c18cd82098d9caa24a274347.ac85b066-4be9-4a42-a4b7-76388a88c58f
authenticateResourceOwnerAndGrantAccess: sessionId:431d11e1-ae39-4453-9bfc-e8b6cd46d8ca
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=225a0695-a0f5-4457-9ee6-b3154bc2ed5b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=39e2a92a-2e73-4062-ac25-c9902063f81c&response_mode=form_post&nonce=94949f1a-3a06-4a76-9c96-7e25d87e075a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: formPostResponseModeHybridCodeToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1836
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:30 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=20bc1791-d24d-43d8-bc1f-1ef3f9212f33",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "0902b5bf-ed74-4aea-8e98-43fd5f135366",
    "client_id": "20bc1791-d24d-43d8-bc1f-1ef3f9212f33",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "3914bb20-a6c4-441a-9603-37ac331ec494",
    "client_id_issued_at": 1633614990,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618590,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=20bc1791-d24d-43d8-bc1f-1ef3f9212f33&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=761600e8-f0f2-4f01-916e-d0c63cb75381&response_mode=form_post&nonce=0136cddc-a050-4136-abe9-e621ea35aee5
13:56:30.908 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:068d10f2afd1e1cf2aaf1f488f52521d916214382989a0af814439a26b734297.233086b5-6780-4078-8644-bc0d71ccb4a4
authenticateResourceOwnerAndGrantAccess: sessionId:fdc45224-4d39-438f-80c9-3c608b87acf6
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=20bc1791-d24d-43d8-bc1f-1ef3f9212f33&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=761600e8-f0f2-4f01-916e-d0c63cb75381&response_mode=form_post&nonce=0136cddc-a050-4136-abe9-e621ea35aee5

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: formPostResponseModeImplicitIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:31 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=ea35cabd-ef41-4105-8801-bb1833357b8b",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "25b11807-f501-43f5-9268-4497ebe94e59",
    "client_id": "ea35cabd-ef41-4105-8801-bb1833357b8b",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "e2e5d7a6-084e-43f8-93bd-f0a4965acc5a",
    "client_id_issued_at": 1633614991,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618591,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=ea35cabd-ef41-4105-8801-bb1833357b8b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0cb16cc5-b790-486b-bea1-1a2c586b1626&response_mode=form_post&nonce=7ebff917-03dc-434b-b5a8-a357abf04578
13:56:32.319 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:5e8365615fdf82fcc08ff4fd692bf6d971f3e0cb2dc1700de0259b24030f0c0c.26da666c-6383-4b09-b2fc-14de504a958c
authenticateResourceOwnerAndGrantAccess: sessionId:674eb179-db9e-4362-b959-313998509103
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=ea35cabd-ef41-4105-8801-bb1833357b8b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=0cb16cc5-b790-486b-bea1-1a2c586b1626&response_mode=form_post&nonce=7ebff917-03dc-434b-b5a8-a357abf04578

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: formPostResponseModeImplicitIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:33 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=ec65e9da-11b4-49f6-88a4-5d1a453550c4",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "fdcc91cc-112d-4954-b33b-eda6fcccf08a",
    "client_id": "ec65e9da-11b4-49f6-88a4-5d1a453550c4",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "7534c57c-e065-4824-9ad6-96cda1e9d599",
    "client_id_issued_at": 1633614993,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618593,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=ec65e9da-11b4-49f6-88a4-5d1a453550c4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=c3453987-574d-464a-9f70-3b74ba3de775&response_mode=form_post&nonce=110f33ae-9607-486d-9edc-194577a57025
13:56:33.639 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:5197681b6646ed84aee7a6d3cd159d7aaee4cb2d4a5d2ecc45efcd258ffc8868.07a47850-76e0-4cda-9c1c-6f65ae95b0ee
authenticateResourceOwnerAndGrantAccess: sessionId:10ba0f8e-2171-4cf7-900c-515893cb21e8
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=ec65e9da-11b4-49f6-88a4-5d1a453550c4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=c3453987-574d-464a-9f70-3b74ba3de775&response_mode=form_post&nonce=110f33ae-9607-486d-9edc-194577a57025

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm

#######################################################
TEST: fragmentResponseModeBasicCode
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:34 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=733a7ae3-809c-4188-b812-1eb196880803",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "b6563586-8ac2-4f88-8eb7-66ca0e1f1ddb",
    "client_id": "733a7ae3-809c-4188-b812-1eb196880803",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "5d609d84-e648-4815-aa94-6b564d98a691",
    "client_id_issued_at": 1633614994,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618594,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=733a7ae3-809c-4188-b812-1eb196880803&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=fc1c9e5f-5daa-4d55-b074-af31dacee534&response_mode=fragment
13:56:35.059 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:c939605e71edcce4cfbe5140b12cca3269d23b4da112a066f6fafd74dafbe66e.aae8efe3-48cf-4b72-96a4-adf2de4f66d3
authenticateResourceOwnerAndGrantAccess: sessionId:1b34ced1-01e2-4939-ab51-897d01bcaf1d
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=733a7ae3-809c-4188-b812-1eb196880803&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=fc1c9e5f-5daa-4d55-b074-af31dacee534&response_mode=fragment

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=1be078b0-96c1-4959-bdf9-f0a96599e9a8&scope=address+openid+profile+email&session_id=1b34ced1-01e2-4939-ab51-897d01bcaf1d&state=fc1c9e5f-5daa-4d55-b074-af31dacee534&session_state=c939605e71edcce4cfbe5140b12cca3269d23b4da112a066f6fafd74dafbe66e.aae8efe3-48cf-4b72-96a4-adf2de4f66d3

#######################################################
TEST: fragmentResponseModeHybridCodeIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:35 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=2418871e-bd31-483b-aa99-0c21c6768046",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ebb51c0a-a57f-49d4-9d20-55aa1ca7d4af",
    "client_id": "2418871e-bd31-483b-aa99-0c21c6768046",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "38b089f3-6544-4826-ba22-d66e3d701a3f",
    "client_id_issued_at": 1633614996,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618596,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=2418871e-bd31-483b-aa99-0c21c6768046&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4170c847-3899-4da4-a587-995040938383&response_mode=fragment&nonce=9fcc4e64-d828-4343-9263-946fedeb3f30
13:56:36.310 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:c02f88eb732d088f7245ff07c2cb82893433e9b8dcc2b180afa9203df3fe4b46.85fb12ff-1cc8-4537-bcd1-537ed4eebd3e
authenticateResourceOwnerAndGrantAccess: sessionId:d4d0f916-f078-4a52-b724-1feb9b9c0bce
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=2418871e-bd31-483b-aa99-0c21c6768046&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=4170c847-3899-4da4-a587-995040938383&response_mode=fragment&nonce=9fcc4e64-d828-4343-9263-946fedeb3f30

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=4aaf6570-35f9-4c6c-84ea-348ba678a73e&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.TAgDXmMDmcSn9t3bp0j1UzX43y21VJGUhOx4qhHq_LzmijkXkW_bjCNlyEuMCtUSWJxherfiG9MMRTHDxtQoyQ5IWtg5v-xCBlVEQFt1TTIPl9_4ZkQrdccCSwZ72wFRdA0ggrhEu9zQyxwqRRWmQELktrvUlANonA2OPcr4FLuR-VXD8ews-Z3M7qXxP2z26F6F8QBICVVY3nH7A6tM50uIfw2MSp8x4kwzy--HX_5wZIztLX1uSchrvGvbOAT4Z29aPWt1qwm1qbLcChWh84f2cf2jFRMrq5kaohftrxbNy4FNLH9IvAj5l4-mqbchOwAPKkJA9Bw4BUHmblND2Q&session_id=d4d0f916-f078-4a52-b724-1feb9b9c0bce&state=4170c847-3899-4da4-a587-995040938383&session_state=c02f88eb732d088f7245ff07c2cb82893433e9b8dcc2b180afa9203df3fe4b46.85fb12ff-1cc8-4537-bcd1-537ed4eebd3e

#######################################################
TEST: fragmentResponseModeHybridCodeIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:37 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c4985cc4-6fb1-4258-a7c7-63e0cba592a3",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "2af6c093-39e5-4a9b-aba5-9217dda02d78",
    "client_id": "c4985cc4-6fb1-4258-a7c7-63e0cba592a3",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bf69e88c-b22b-4c18-9045-048d64b6478a",
    "client_id_issued_at": 1633614997,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618597,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=c4985cc4-6fb1-4258-a7c7-63e0cba592a3&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=206f0248-a0fd-4cd1-971a-eb7bc9ead6ab&response_mode=fragment&nonce=98fbdb12-79c3-4758-8ccb-4e698200ec3c
13:56:37.683 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:a67b2d55466ea6e26bc7b2644c06b5a4666aa6885c918abb94f8ba287c292a87.aa5b3832-a666-4e90-87a3-a130474dd409
authenticateResourceOwnerAndGrantAccess: sessionId:43d4dbd9-93e8-459a-a566-fb78d78be1eb
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=c4985cc4-6fb1-4258-a7c7-63e0cba592a3&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=206f0248-a0fd-4cd1-971a-eb7bc9ead6ab&response_mode=fragment&nonce=98fbdb12-79c3-4758-8ccb-4e698200ec3c

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=8443e9df-5cdf-4ec0-8194-b6762ecfe6b1&code=84f6da54-1f17-46e3-86c8-c33297f64d0c&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.nDmXT4l0rVEfBOkOLwl1nV4faYtW3SfbfoqXwed3LUfWy4B3PfiH7u24jL0Qq0KgcrgFhzTxj_GqqnlzDZqUFXJVIAuQp2qPGK0WYuStJNyo9Mpgyjo9QDzRvNFf4FrZal9lS-C2y2LYaol8IqurFU3yBx-xR0snXeXlM9Ujx0i3BUsxTKqfPuPVELHL4uHrx7q78BXWojbrGzpHdxgbwnvdZlKUlFCBpPUo8QoPkzlsZ5YORa5KN-3cAy1qDLlU7RF6O8t9z307_StFgK8MZ4Vkj3uHr-gUEZp04Fb16qWGIfGE9dypSDOWFfXYae_7XXLDlC1pnXtzHqZ4BZy5gQ&session_id=43d4dbd9-93e8-459a-a566-fb78d78be1eb&state=206f0248-a0fd-4cd1-971a-eb7bc9ead6ab&token_type=bearer&session_state=a67b2d55466ea6e26bc7b2644c06b5a4666aa6885c918abb94f8ba287c292a87.aa5b3832-a666-4e90-87a3-a130474dd409&expires_in=299

#######################################################
TEST: fragmentResponseModeHybridCodeToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1836
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:38 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=f77af59f-325b-48aa-af3e-07cb08b629a6",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "9a31a5d3-a7db-444c-b999-9cf8dd1f382e",
    "client_id": "f77af59f-325b-48aa-af3e-07cb08b629a6",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "c4b68b5a-3dcb-4af9-8179-0fd170598413",
    "client_id_issued_at": 1633614998,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618598,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=f77af59f-325b-48aa-af3e-07cb08b629a6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f257f99a-91a6-4b01-a972-b6165e9b3691&response_mode=fragment&nonce=6e006dc1-47e1-425b-8ce3-86525d03a9bb
13:56:38.977 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:8b11f99627ac7dfc27d7cc76c604696b94c12f36e74d412cfd7dacb19fc1da34.1c098f36-c6a5-4136-89e4-c7697a4cdb1a
authenticateResourceOwnerAndGrantAccess: sessionId:97226b0c-79bb-411e-b5cd-d29b8c65eb17
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=f77af59f-325b-48aa-af3e-07cb08b629a6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=f257f99a-91a6-4b01-a972-b6165e9b3691&response_mode=fragment&nonce=6e006dc1-47e1-425b-8ce3-86525d03a9bb

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=b057c04a-2dcf-4099-b268-cb830afedd8a&code=53c8759f-a3a6-4b45-9574-5e5f697ba407&scope=address+openid+profile+email&session_id=97226b0c-79bb-411e-b5cd-d29b8c65eb17&state=f257f99a-91a6-4b01-a972-b6165e9b3691&token_type=bearer&session_state=8b11f99627ac7dfc27d7cc76c604696b94c12f36e74d412cfd7dacb19fc1da34.1c098f36-c6a5-4136-89e4-c7697a4cdb1a&expires_in=299

#######################################################
TEST: fragmentResponseModeImplicitIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:39 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=4c8055a5-814a-46ff-be48-72e785df4cf5",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "bb24a1ce-c2f3-46e6-813c-ebd52f186a1a",
    "client_id": "4c8055a5-814a-46ff-be48-72e785df4cf5",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "ff19d342-a3d3-41cb-b908-b8d2dffcba22",
    "client_id_issued_at": 1633614999,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618599,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=4c8055a5-814a-46ff-be48-72e785df4cf5&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=53e51876-3d05-4265-920c-95ab54e9d451&response_mode=fragment&nonce=f1f2c80c-6595-45ee-b37b-6b2ccfde22ab
13:56:40.325 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:698499befded477827e16f7980b7698c7aad99cfb1f7f8178076daed0d1696f0.6e2ba0e4-506c-4328-b787-961f5cad69ed
authenticateResourceOwnerAndGrantAccess: sessionId:284d5657-5198-4e72-9437-407f19ba20df
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=4c8055a5-814a-46ff-be48-72e785df4cf5&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=53e51876-3d05-4265-920c-95ab54e9d451&response_mode=fragment&nonce=f1f2c80c-6595-45ee-b37b-6b2ccfde22ab

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdWQiOiI0YzgwNTVhNS04MTRhLTQ2ZmYtYmU0OC03MmU3ODVkZjRjZjUiLCJhY3IiOiJzaW1wbGVfcGFzc3dvcmRfYXV0aCIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJzX2hhc2giOiIxNjBVWWZnOEZiNWlFM3pmLTVlWWlRIiwiYW1yIjpbIi0xIl0sImF1dGhfdGltZSI6MTYzMzYxNTAwMCwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJleHAiOjE2MzM2MTg2MDEsImlhdCI6MTYzMzYxNTAwMSwibm9uY2UiOiJmMWYyYzgwYy02NTk1LTQ1ZWUtYjM3Yi02YjJjY2ZkZTIyYWIiLCJzaWQiOiI5YTMzNzAwMy1iZDY0LTQ3OGQtOGY2OC1jNTc1MTdmMGMzZWEiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAifQ.mdan15G5HP7FQDc91An__snBP5XGpZI7--E6pZvuu-Rag5dVwcrjPjEMpwfEFR4gcerTZ030-kl4sqAlxmzM6gi4dkdbYyFL_6wtTltYWOGK4Ft8ZwjTZQpR-iXVjcg5zrFaDo8WfcUb89C0XVPYaXCvWj5uF65xA-V2rIGpPpHZp73n8u7MEbb_gaK6hNyNTLnz0dyaAgYyk0PrW-29Q6dmdxj5EVlUwcPj582TU4ifUDp372vD0DEx9DECzn8jMXxcZcfS4XLn2ZmmoB7irJBKHHurmaYeHBwjXyXtJVnxhozCqD0hWOwNJptNPqTjISeLdqG63-Hsu9W85B8VUQ&session_id=284d5657-5198-4e72-9437-407f19ba20df&state=53e51876-3d05-4265-920c-95ab54e9d451&session_state=698499befded477827e16f7980b7698c7aad99cfb1f7f8178076daed0d1696f0.6e2ba0e4-506c-4328-b787-961f5cad69ed

#######################################################
TEST: fragmentResponseModeImplicitIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:41 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=4088b616-608f-4cb7-8823-0cde29fbc2ba",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "f53f8075-0ccd-41d5-bf7c-1220d7bf56df",
    "client_id": "4088b616-608f-4cb7-8823-0cde29fbc2ba",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bc2bcf18-b846-46da-ba25-de2ba6dff36e",
    "client_id_issued_at": 1633615001,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618601,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=4088b616-608f-4cb7-8823-0cde29fbc2ba&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5eb72e37-93f1-4d0c-977e-bd042914139f&response_mode=fragment&nonce=f98bdd6b-5313-494f-b1a8-62adc3243997
13:56:41.608 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:ab0087871d69073731f62a1f3ceb663d492142828307be4fa1fdf9deee55982e.83aa1d0b-44cf-4793-92c4-ec5013d89395
authenticateResourceOwnerAndGrantAccess: sessionId:619bca0d-5e6c-4b56-923c-62f5d1b3dfa0
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=4088b616-608f-4cb7-8823-0cde29fbc2ba&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5eb72e37-93f1-4d0c-977e-bd042914139f&response_mode=fragment&nonce=f98bdd6b-5313-494f-b1a8-62adc3243997

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=7d82d017-a9ba-4aa7-af5b-a9807fe39162&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.CbY1hMkXszQQq5VIPA_ewj1UQs4GujQpzkHQRKmRWcUwub-We3wZjQBtoO1rwfrzhk1DFw2zhWfV7h2LUjb75IBB5xLcEdPE1bXZ-FZoaHFSCXQEDDNqwD535gcoVj4kTgQdXr-LxWtXtfegQwftx3PqiJ8M93oxi0WV0PEg-0o1g8MqgzARezePTj3jDyPQru3nOJ13wRk_j6BuINTmaEP5BAAZnNUy-8IOREq0u_edEDMKbV0DY1i5xQE58cEX0Mk_7GNVCQDMrP52qEqEaxuEs4j-E18pDwveEhcaIgX9SvbNtDRWGtL5XQaBth3hXw67XIUIiY6Aq2RclfugAQ&session_id=619bca0d-5e6c-4b56-923c-62f5d1b3dfa0&state=5eb72e37-93f1-4d0c-977e-bd042914139f&token_type=bearer&session_state=ab0087871d69073731f62a1f3ceb663d492142828307be4fa1fdf9deee55982e.83aa1d0b-44cf-4793-92c4-ec5013d89395&expires_in=299

#######################################################
TEST: queryResponseModeBasicCode
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:42 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=bb797f68-590e-450a-a34e-c314a4b95443",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "1301342b-b7ae-4d81-968e-28a68de3b70f",
    "client_id": "bb797f68-590e-450a-a34e-c314a4b95443",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "7f9c71ad-6834-4f95-a654-7064bd5f6801",
    "client_id_issued_at": 1633615002,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618602,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=bb797f68-590e-450a-a34e-c314a4b95443&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3dd01aca-beb3-4e78-9f2b-15b5d9dde9ac&response_mode=query
13:56:42.859 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:8e8f5455d4aecfb91502da3f35327cb882df27d68ab7c6b896626381a7ddf51c.dee8c3a8-c536-4eb1-9152-b7d1b2fdcd78
authenticateResourceOwnerAndGrantAccess: sessionId:e62ffbd4-efad-4994-8f6c-e4425c8de5f0
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=bb797f68-590e-450a-a34e-c314a4b95443&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=3dd01aca-beb3-4e78-9f2b-15b5d9dde9ac&response_mode=query

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=575de5bc-9240-4568-9894-ff3866f3db81&scope=address+openid+profile+email&session_id=e62ffbd4-efad-4994-8f6c-e4425c8de5f0&state=3dd01aca-beb3-4e78-9f2b-15b5d9dde9ac&session_state=8e8f5455d4aecfb91502da3f35327cb882df27d68ab7c6b896626381a7ddf51c.dee8c3a8-c536-4eb1-9152-b7d1b2fdcd78

#######################################################
TEST: queryResponseModeHybridCodeIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:43 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=0eb1df0f-c179-4669-ac7a-417a624343b1",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "8cde1447-39b9-422c-8689-d853a3aa17b6",
    "client_id": "0eb1df0f-c179-4669-ac7a-417a624343b1",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "4e9cd3bd-b616-41bd-912d-d40737ac2d9e",
    "client_id_issued_at": 1633615003,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618603,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0eb1df0f-c179-4669-ac7a-417a624343b1&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e3db039-fc1b-4c3c-8454-22ec9945d1ff&response_mode=query&nonce=d73f4e98-32fb-499f-839e-943326bbc3ea
13:56:44.177 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:b83b94ae5e5517970de8c355e2833f06a543991054efcbaf7b4bed6111cc0f78.4bf48412-72e4-489b-880c-4d99ca38545d
authenticateResourceOwnerAndGrantAccess: sessionId:254b7736-66f9-4761-800a-fb225be2c1ec
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=0eb1df0f-c179-4669-ac7a-417a624343b1&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e3db039-fc1b-4c3c-8454-22ec9945d1ff&response_mode=query&nonce=d73f4e98-32fb-499f-839e-943326bbc3ea

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=d88ef16a-0fa4-4fe4-8218-02390890d86d&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.eCg0KCPoqqruiPXczaPFX2Mrs7f8FFOkFWGXMVc4n5dIQPhbfqTe6Kidfc22fsuLsjolSgoD5eY5LODm5wZsedGY_3hJqdmMhwCcGwVUv-i_Pw1Y4IQVFnNt34Gj9QRpF1x6vuhfyQm7AwF6eLudC7BUPJaZ6MP3hUb4lGZ1DVAsChEL7iq8UH6jOkuuGBGzHt5BiZgG2sLJAH77Haq9G8Maq-rgPDThEbEmieB6ynyUGP_x4sdM9BQFF72ZfAR7x9fU2HUEi4hFzNkcfLPskoPYHfY9QoCR2pxrIe9d90Dpgrgr4apVNNrUup7FvO-dApjiTiOpHqPFNsiFHzy1sg&session_id=254b7736-66f9-4761-800a-fb225be2c1ec&state=5e3db039-fc1b-4c3c-8454-22ec9945d1ff&session_state=b83b94ae5e5517970de8c355e2833f06a543991054efcbaf7b4bed6111cc0f78.4bf48412-72e4-489b-880c-4d99ca38545d

#######################################################
TEST: queryResponseModeHybridCodeIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:45 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=cad63813-3590-4d30-adfb-ef35ba8c57c4",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "b98bd87e-bf64-451a-9611-6b3c04828c46",
    "client_id": "cad63813-3590-4d30-adfb-ef35ba8c57c4",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "964eeceb-0372-4bbb-a8c2-9663ed402d78",
    "client_id_issued_at": 1633615005,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618605,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=cad63813-3590-4d30-adfb-ef35ba8c57c4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af62a48d-baf3-4cd6-9bbf-2b7d92d7655e&response_mode=query&nonce=adc5f1a2-c6d6-4863-a7e3-87c96e98ab6b
13:56:45.551 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:a4367cdeef28adc55b2058399f8acba77e3fc673358d56b1213461ee0f4eb459.0f5f61a0-312c-4142-87e4-9a0f9ea27fb1
authenticateResourceOwnerAndGrantAccess: sessionId:7b852262-b509-45a0-9850-6cc05ecdc612
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=cad63813-3590-4d30-adfb-ef35ba8c57c4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=af62a48d-baf3-4cd6-9bbf-2b7d92d7655e&response_mode=query&nonce=adc5f1a2-c6d6-4863-a7e3-87c96e98ab6b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?access_token=2a098e35-636f-41c0-a2c5-07cea18b16bf&code=faa1843a-6603-4459-9ef7-bce598b5cec5&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoib2xMb3pfU1IyVDhidEJMTnJkNHBsZyIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6ImFkYzVmMWEyLWM2ZDYtNDg2My1hN2UzLTg3Yzk2ZTk4YWI2YiIsInNpZCI6IjFhM2VlZjhlLTFiNzYtNDNlOC05MzBkLTgyMDE5NjU0NTZhMSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImNhZDYzODEzLTM1OTAtNGQzMC1hZGZiLWVmMzViYThjNTdjNCIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwiY19oYXNoIjoiSTBwMmFlSlhqMHphR2RmVjAteG1PUSIsInNfaGFzaCI6IlZyR09ucDFQVmFGUjc5T1NEQl84MnciLCJhdXRoX3RpbWUiOjE2MzM2MTUwMDUsImV4cCI6MTYzMzYxODYwNiwiaWF0IjoxNjMzNjE1MDA2fQ.hNqNxfKYGkcc8odoNxd14YEaUtKLwz2tPDj79nA6SGOEAsghl9IF4rYCOAKgJU_XCVnaIyw6ket-cB6Azm5I2egpWQTvK1AkLWRr5xYhNs8OxS9k2nqgxYUNPA2TOM45r4ItvhTL-ePItdkMxIr5t2cFX9ZLMrRRGZgLRZ021gn6TtK8CGbwNbQtpyCTRLyP3zeekey2_RYYKxNd4QSDJsqTGLHA5DyiUR_iJYgUWWcdYd759sY4LdPs0UU3JCac9SjHe6VNMLWmJ74YQ175mczRknomKeUDDrXtJPRpSkGHumpu8jd6Oezy54AsrZmeLeZ5_aCJFz5WqHUiW_ZdoA&session_id=7b852262-b509-45a0-9850-6cc05ecdc612&state=af62a48d-baf3-4cd6-9bbf-2b7d92d7655e&token_type=bearer&session_state=a4367cdeef28adc55b2058399f8acba77e3fc673358d56b1213461ee0f4eb459.0f5f61a0-312c-4142-87e4-9a0f9ea27fb1&expires_in=299

#######################################################
TEST: queryResponseModeHybridCodeToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1836
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:46 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=cc4ba3d7-667f-45d9-a0a3-1b5b1e51da3e",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "93320ff3-0f01-43e2-9b30-80640b818664",
    "client_id": "cc4ba3d7-667f-45d9-a0a3-1b5b1e51da3e",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "9525b011-0160-42ea-a579-8b16a3a1ccca",
    "client_id_issued_at": 1633615006,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618606,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=cc4ba3d7-667f-45d9-a0a3-1b5b1e51da3e&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=b74296c3-ad67-4ae1-b97b-88d57e70a3d6&response_mode=query&nonce=0d61dafd-48b7-44b5-8461-df423a8742ea
13:56:46.901 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:0ddc07645dbe9e956bfd75111f4917ac7b187e7cefea35eca0df8943314e73b5.118e73e2-8eac-4643-8cb0-449b8a466a36
authenticateResourceOwnerAndGrantAccess: sessionId:91efc16e-1fbe-477a-a4a6-5df35ddc751d
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=cc4ba3d7-667f-45d9-a0a3-1b5b1e51da3e&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=b74296c3-ad67-4ae1-b97b-88d57e70a3d6&response_mode=query&nonce=0d61dafd-48b7-44b5-8461-df423a8742ea

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?access_token=97a1ca65-d05a-41ab-89f9-e9fdf2d7fbf8&code=df6c25f0-d680-4a6a-aca1-9d83c24db2f1&scope=address+openid+profile+email&session_id=91efc16e-1fbe-477a-a4a6-5df35ddc751d&state=b74296c3-ad67-4ae1-b97b-88d57e70a3d6&token_type=bearer&session_state=0ddc07645dbe9e956bfd75111f4917ac7b187e7cefea35eca0df8943314e73b5.118e73e2-8eac-4643-8cb0-449b8a466a36&expires_in=299

#######################################################
TEST: queryResponseModeImplicitIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:47 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=d2eb151e-480c-447a-bfca-7f85e8beda4b",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "a968c83c-c934-4847-9283-838519f512ba",
    "client_id": "d2eb151e-480c-447a-bfca-7f85e8beda4b",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "df9abff2-4254-48b8-9802-cf4c25dcff64",
    "client_id_issued_at": 1633615007,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618607,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=d2eb151e-480c-447a-bfca-7f85e8beda4b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=474c16e2-9387-4ed1-8edd-1f8dab91ded7&response_mode=query&nonce=bb2342f8-6f16-442a-9fda-430b3e55016b
13:56:48.288 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:fc4c434adcef74987d29b3480af0b004143a0368743496cdee9806769de6182c.ac45fd6b-010b-48c4-9bf9-af8ded0fbc8d
authenticateResourceOwnerAndGrantAccess: sessionId:cdb2ec76-944e-49aa-ab49-986bfeefddea
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=d2eb151e-480c-447a-bfca-7f85e8beda4b&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=474c16e2-9387-4ed1-8edd-1f8dab91ded7&response_mode=query&nonce=bb2342f8-6f16-442a-9fda-430b3e55016b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdWQiOiJkMmViMTUxZS00ODBjLTQ0N2EtYmZjYS03Zjg1ZThiZWRhNGIiLCJhY3IiOiJzaW1wbGVfcGFzc3dvcmRfYXV0aCIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJzX2hhc2giOiJacjRRX2tTc0VtT3BFWmdNUXlYc093IiwiYW1yIjpbIi0xIl0sImF1dGhfdGltZSI6MTYzMzYxNTAwOCwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJleHAiOjE2MzM2MTg2MDksImlhdCI6MTYzMzYxNTAwOSwibm9uY2UiOiJiYjIzNDJmOC02ZjE2LTQ0MmEtOWZkYS00MzBiM2U1NTAxNmIiLCJzaWQiOiI5MGJlMmI1NC0zNGUyLTQ5MzEtOGYzYS0zOTNlY2RjMzkyYmIiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAifQ.agckH5LDDA9G_okSKV0g5d4Gzd_Tcpa_ShzWe2XxrqWGx2GEeZzZXSJlzQ8A6Tm6gMCtTuIPQfIT8oFSLPtX7zDTm6CmtpRsvMApICIWIvGHQPtJ7i3wvgLIwtf8Y1hQIak30GFjQ7m6hgUPyLLAoK0xUPbYgiZckMI8ZFgpaJckY5zKLqv3s4mReZhwRde9PNHsgWNDrgtzBXSxBHiZbUEkbHTPbHeUzegRYVmFFcGlYdjNzVsXqhkiJAekb6-_ZCZFtDF-5ZQD44x9Wx3YO6II6n3mSnGrq62ul_WuXabmKWbtEc0-B_yGzio94gcH5gk3DwpQTEuxXeFahxGUhQ&session_id=cdb2ec76-944e-49aa-ab49-986bfeefddea&state=474c16e2-9387-4ed1-8edd-1f8dab91ded7&session_state=fc4c434adcef74987d29b3480af0b004143a0368743496cdee9806769de6182c.ac45fd6b-010b-48c4-9bf9-af8ded0fbc8d

#######################################################
TEST: queryResponseModeImplicitIdTokenToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "id_token", "token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1771
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:49 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=bd700562-0864-4325-9689-2a57861e08ff",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "f41e59a6-c276-4772-81c1-ffbb2ada8f49",
    "client_id": "bd700562-0864-4325-9689-2a57861e08ff",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "c0c02494-38b7-45f0-947b-908472ce7d22",
    "client_id_issued_at": 1633615009,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": ["implicit"],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618609,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=bd700562-0864-4325-9689-2a57861e08ff&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5af6210a-88de-4765-bb72-3e3b6e3223e5&response_mode=query&nonce=ea322e74-cebe-4e0e-998c-62e8b785e5d4
13:56:49.663 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:d0d8230b49513862496c3b6b0da034c6fbaacffcaa4224099120555c72c8c530.bc8fe2f2-5b40-479a-9b67-7913a57a6725
authenticateResourceOwnerAndGrantAccess: sessionId:a6080c6b-4921-4ff5-9e62-d62a5a70f4c2
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=bd700562-0864-4325-9689-2a57861e08ff&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5af6210a-88de-4765-bb72-3e3b6e3223e5&response_mode=query&nonce=ea322e74-cebe-4e0e-998c-62e8b785e5d4

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?access_token=2d9493fc-69d9-496e-991b-c577fc6f5d61&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJhdF9oYXNoIjoiZnRhajNuejhJY0hFNl9ZSFd4RWJvZyIsInN1YiI6IjNWalJ3c3NDYXRYY3FoQ0txMHRuWTVfWlpfR3prd0JnYlh1RVNzbmZqRTgiLCJhbXIiOlsiLTEiXSwiaXNzIjoiaHR0cHM6Ly9qZW5raW5zLWxkYXAuZ2x1dS5vcmciLCJub25jZSI6ImVhMzIyZTc0LWNlYmUtNGUwZS05OThjLTYyZThiNzg1ZTVkNCIsInNpZCI6IjdkYzM5YzEwLTE3ZTYtNDA3Ni1iNzNhLTFiMzJjMDVkMDM4MCIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsImF1ZCI6ImJkNzAwNTYyLTA4NjQtNDMyNS05Njg5LTJhNTc4NjFlMDhmZiIsImFjciI6InNpbXBsZV9wYXNzd29yZF9hdXRoIiwic19oYXNoIjoiSUsyYkRseUhYcE5xdUNDR1BROWRidyIsImF1dGhfdGltZSI6MTYzMzYxNTAxMCwiZXhwIjoxNjMzNjE4NjEwLCJpYXQiOjE2MzM2MTUwMTB9.ioOsfN0sWilaDpqtkZbtp72l5x8WXmmDylOQPgwvzemzr9y0SrMAV8i0TobcyloJq5h2XdcPDhtrNJSlUMtJ8mmvFhzphZufWVZLtks5rqu1rgL0AAkC2nLP5It6PQzxcf7pEbtuxnywBREarvoU1R2hn6f97K-zDK-3a_6ArBkiSKejtqDV9kFm5bjtY6eb_qwKA_YHwUOf5BFrEhxKNodL8FN8Z2jnh-UNEOalUpcgPJUWlQbZEFeXAJHq1nuhj2G5fulrsenFbc40w7zlT2l0WuTkifV7Pfhhup3aH2gk_hTXi7Y7n-pL3byTJjfYLiTAX-1JgDC4zjUC_460OA&session_id=a6080c6b-4921-4ff5-9e62-d62a5a70f4c2&state=5af6210a-88de-4765-bb72-3e3b6e3223e5&token_type=bearer&session_state=d0d8230b49513862496c3b6b0da034c6fbaacffcaa4224099120555c72c8c530.bc8fe2f2-5b40-479a-9b67-7913a57a6725&expires_in=299

#######################################################
TEST: OpenID Connect Discovery
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/webfinger HTTP/1.1?resource=acct%3Atest_user%40jenkins-ldap.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 191
Content-Type: application/jrd+json;charset=iso-8859-1
Date: Thu, 07 Oct 2021 13:56:50 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "subject": "acct:test_user@jenkins-ldap.gluu.org",
    "links": [{
        "rel": "http://openid.net/specs/connect/1.0/issuer",
        "href": "https://jenkins-ldap.gluu.org"
    }]
}


OpenID Connect Configuration
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /.well-known/openid-configuration HTTP/1.1 HTTP/1.1
Host: jenkins-ldap.gluu.org

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Connection: Keep-Alive
Content-Length: 8460
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:50 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
  "request_parameter_supported" : true,
  "token_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "introspection_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/introspection",
  "claims_parameter_supported" : true,
  "issuer" : "https://jenkins-ldap.gluu.org",
  "userinfo_encryption_enc_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "id_token_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/authorize",
  "service_documentation" : "http://gluu.org/docs",
  "id_generation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/id",
  "claims_supported" : [ "oxAuthRedirectURI", "street_address", "country", "zoneinfo", "birthdate", "gender", "formatted", "user_name", "oxAuthIdTokenSignedResponseAlg", "work_phone", "oxAuthScope", "phone_mobile_number", "preferred_username", "locale", "inum", "oxAuthAppType", "updated_at", "nickname", "org_name", "member_of", "email", "website", "email_verified", "profile", "locality", "phone_number_verified", "given_name", "middle_name", "picture", "name", "phone_number", "postal_code", "region", "family_name" ],
  "scope_to_claims_mapping" : [ {
    "profile" : [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]
  }, {
    "openid" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access" : [ ]
  }, {
    "permission" : [ ]
  }, {
    "http://photoz.example.com/dev/scopes/all" : [ ]
  }, {
    "super_gluu_ro_session" : [ ]
  }, {
    "work_phone" : [ "work_phone" ]
  }, {
    "http://photoz.example.com/dev/scopes/view" : [ ]
  }, {
    "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access" : [ ]
  }, {
    "phone" : [ "phone_number_verified", "phone_number" ]
  }, {
    "address" : [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]
  }, {
    "http://photoz.example.com/dev/actions/add" : [ ]
  }, {
    "org_name" : [ "org_name" ]
  }, {
    "http://photoz.example.com/dev/actions/view" : [ ]
  }, {
    "clientinfo" : [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]
  }, {
    "http://photoz.example.com/dev/actions/all" : [ ]
  }, {
    "mobile_phone" : [ "phone_mobile_number" ]
  }, {
    "^^/user/.+$" : [ ]
  }, {
    "email" : [ "email_verified", "email" ]
  }, {
    "user_name" : [ "user_name" ]
  }, {
    "test" : [ "member_of" ]
  }, {
    "http://photoz.example.com/dev/actions/remove" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a2" : [ ]
  }, {
    "^/user/[^/]+/.+$" : [ ]
  }, {
    "oxtrust-api-write" : [ ]
  }, {
    "oxd" : [ ]
  }, {
    "revoke_session" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a1" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/a3" : [ ]
  }, {
    "http://photoz.example.com/dev/actions/see" : [ ]
  }, {
    "^^/user/[^/]+/.+$" : [ ]
  }, {
    "uma_protection" : [ ]
  }, {
    "oxtrust-api-read" : [ ]
  }, {
    "gathering_id" : [ ]
  }, {
    "modify" : [ ]
  }, {
    "^/user/[^/]+$" : [ ]
  }, {
    "^/user/.+$" : [ ]
  }, {
    "with-claims" : [ ]
  }, {
    "jans_client_api" : [ ]
  } ],
  "op_policy_uri" : "http://ox.gluu.org/doku.php?id=oxauth:policy",
  "token_endpoint_auth_methods_supported" : [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ],
  "tls_client_certificate_bound_access_tokens" : true,
  "response_modes_supported" : [ "fragment", "form_post", "query" ],
  "backchannel_logout_session_supported" : true,
  "token_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/token",
  "backchannel_authentication_request_signing_alg_values_supported" : [ "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "response_types_supported" : [ "code id_token", "token id_token", "code", "token", "code token id_token", "id_token", "code token" ],
  "backchannel_token_delivery_modes_supported" : [ "poll", "ping", "push" ],
  "request_uri_parameter_supported" : true,
  "backchannel_user_code_parameter_supported" : true,
  "grant_types_supported" : [ "implicit", "client_credentials", "urn:ietf:params:oauth:grant-type:uma-ticket", "password", "urn:ietf:params:oauth:grant-type:device_code", "authorization_code", "urn:openid:params:grant-type:ciba", "refresh_token" ],
  "ui_locales_supported" : [ "en", "bg", "de", "es", "fr", "it", "ru", "tr" ],
  "userinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/userinfo",
  "op_tos_uri" : "http://ox.gluu.org/doku.php?id=oxauth:tos",
  "auth_level_mapping" : {
    "1" : [ "basic_multi_authn", "basic_multi_authn_for_zico" ],
    "-1" : [ "simple_password_auth" ],
    "70" : [ "fido2" ],
    "60" : [ "super_gluu" ],
    "50" : [ "u2f" ],
    "20" : [ "basic_lock" ],
    "10" : [ "basic" ]
  },
  "require_request_uri_registration" : false,
  "id_token_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "frontchannel_logout_session_supported" : true,
  "claims_locales_supported" : [ "en" ],
  "clientinfo_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/clientinfo",
  "request_object_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "request_object_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "session_revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke_session",
  "check_session_iframe" : "https://jenkins-ldap.gluu.org/oxauth/opiframe.htm",
  "scopes_supported" : [ "^/user/.+$", "clientinfo", "user_name", "work_phone", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/passport_access", "^/user/[^/]+$", "https://jenkins-ldap.gluu.org/oxauth/restv1/uma/scopes/scim_access", "revoke_session", "mobile_phone", "http://photoz.example.com/dev/actions/view", "oxd", "super_gluu_ro_session", "org_name", "email", "jans_client_api", "http://photoz.example.com/dev/actions/remove", "address", "test", "http://photoz.example.com/dev/actions/add", "http://photoz.example.com/dev/actions/all", "openid", "profile", "uma_protection", "http://photoz.example.com/dev/scopes/view", "permission", "http://photoz.example.com/dev/scopes/all", "http://photoz.example.com/dev/actions/see", "with-claims", "gathering_id", "http://photoz.example.com/dev/actions/a1", "http://photoz.example.com/dev/actions/a2", "modify", "oxtrust-api-write", "oxtrust-api-read", "phone", "http://photoz.example.com/dev/actions/a3", "^/user/[^/]+/.+$", "^^/user/[^/]+/.+$", "^^/user/.+$" ],
  "backchannel_logout_supported" : true,
  "acr_values_supported" : [ "simple_password_auth", "basic_lock", "basic_multi_authn", "u2f", "super_gluu", "fido2", "basic", "basic_multi_authn_for_zico" ],
  "request_object_encryption_enc_values_supported" : [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ],
  "device_authorization_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/device_authorization",
  "display_values_supported" : [ "page", "popup" ],
  "userinfo_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported" : [ "normal" ],
  "userinfo_encryption_alg_values_supported" : [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ],
  "end_session_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/end_session",
  "revocation_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/revoke",
  "backchannel_authentication_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/bc-authorize",
  "token_endpoint_auth_signing_alg_values_supported" : [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "frontchannel_logout_supported" : true,
  "jwks_uri" : "https://jenkins-ldap.gluu.org/oxauth/restv1/jwks",
  "subject_types_supported" : [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported" : [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "registration_endpoint" : "https://jenkins-ldap.gluu.org/oxauth/restv1/register",
  "id_token_token_binding_cnf_values_supported" : [ "tbh" ]
}


#######################################################
TEST: requestAuthorizationAccessToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:50 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=5bce5273-1191-48cd-ada2-e20a7ac2c2c9",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "44b3e69d-3d47-4507-956b-71f072a0c3c7",
    "client_id": "5bce5273-1191-48cd-ada2-e20a7ac2c2c9",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "edb736dc-4d53-49fe-8864-5fdf9dfc44bf",
    "client_id_issued_at": 1633615010,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618610,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 44b3e69d-3d47-4507-956b-71f072a0c3c7

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:50 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=5bce5273-1191-48cd-ada2-e20a7ac2c2c9",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "44b3e69d-3d47-4507-956b-71f072a0c3c7",
    "client_id": "5bce5273-1191-48cd-ada2-e20a7ac2c2c9",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "edb736dc-4d53-49fe-8864-5fdf9dfc44bf",
    "client_id_issued_at": 1633615010,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618610,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5bce5273-1191-48cd-ada2-e20a7ac2c2c9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=ce03a80f-7245-438e-8ed4-a0d4ece65bd4&nonce=df0f2e7b-1f9f-44be-a373-bad1a882086b
13:56:51.142 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:6907ef52eaf2580542d96f82ddfbd2b24ec62dc844162e1c7c1f7a892d0e40ca.359ce560-e8d6-4068-a30c-3ac7b537e90d
authenticateResourceOwnerAndGrantAccess: sessionId:36dea91f-d243-4531-8475-fb5860ae5095
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=5bce5273-1191-48cd-ada2-e20a7ac2c2c9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=ce03a80f-7245-438e-8ed4-a0d4ece65bd4&nonce=df0f2e7b-1f9f-44be-a373-bad1a882086b

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=095c90d1-4558-4024-84b5-507bb886d398&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.XJ2ILpSQVSK6zAbVa9kx3Xk7HSFFGqB6WP-PoPmURkbuFAQy7dEpdR2ifHABgoFf1BO-AyyyQca8IPvdeECHJMb2QnmhvehxUSRiK-BnnlIR7rUekCZiSCi-ccRnIsWWdBU7qqgdIjzkAOVJEgp4apkbbSg0wsNuEMrSIC1KFGuP7EuUAbWTOsLp2ff-MnhAe22Ou8lnCJFvqfc8IvO_YN8bu0TWzUZc4E2Ik0SQpjdXleW62XVtg02JItgm2aSU6ts-KY7xHdS1A74RoGvhJ2bV1MnAHQT1U6cUfve5biGMec7zXLVNzOVVN0U7xjM9QQHrRRPb1unk-hdTwdsbYA&session_id=36dea91f-d243-4531-8475-fb5860ae5095&state=ce03a80f-7245-438e-8ed4-a0d4ece65bd4&token_type=bearer&session_state=6907ef52eaf2580542d96f82ddfbd2b24ec62dc844162e1c7c1f7a892d0e40ca.359ce560-e8d6-4068-a30c-3ac7b537e90d&expires_in=299

#######################################################
TEST: requestAuthorizationAccessTokenFail
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:52 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=47d6845b-3ada-4188-8f14-3df2de9ec917",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "a40bc883-ec10-44b1-9e4f-32d0e8b2bdf9",
    "client_id": "47d6845b-3ada-4188-8f14-3df2de9ec917",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f6a6aed9-0df6-48ab-9a66-5c0e5d3a836a",
    "client_id_issued_at": 1633615012,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618612,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer a40bc883-ec10-44b1-9e4f-32d0e8b2bdf9

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:52 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=47d6845b-3ada-4188-8f14-3df2de9ec917",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "a40bc883-ec10-44b1-9e4f-32d0e8b2bdf9",
    "client_id": "47d6845b-3ada-4188-8f14-3df2de9ec917",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "f6a6aed9-0df6-48ab-9a66-5c0e5d3a836a",
    "client_id_issued_at": 1633615012,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618612,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org

response_type=code+id_token&client_id=47d6845b-3ada-4188-8f14-3df2de9ec917&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=cf2f85e7-9c55-4301-a7d7-18f1f0bb79c8&prompt=none&access_token=INVALID_ACCESS_TOKEN

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302
Connection: Keep-Alive
Content-Length: 0
Date: Thu, 07 Oct 2021 13:56:52 GMT
Keep-Alive: timeout=5, max=100
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=cf2f85e7-9c55-4301-a7d7-18f1f0bb79c8&error=invalid_request
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block



#######################################################
TEST: requestAuthorizationAccessTokenSubjectTypePublic
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "subject_type" : "public",
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1854
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:52 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=287f35ec-e8f9-4a3e-9df7-11fed050cc92",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "d8843723-0ec4-49b7-a719-86e9a496f297",
    "client_id": "287f35ec-e8f9-4a3e-9df7-11fed050cc92",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "a57da7e5-2d44-43b0-864b-69a4e0e72f8f",
    "client_id_issued_at": 1633615012,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "public",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618612,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer d8843723-0ec4-49b7-a719-86e9a496f297

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1854
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:52 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=287f35ec-e8f9-4a3e-9df7-11fed050cc92",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "d8843723-0ec4-49b7-a719-86e9a496f297",
    "client_id": "287f35ec-e8f9-4a3e-9df7-11fed050cc92",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "a57da7e5-2d44-43b0-864b-69a4e0e72f8f",
    "client_id_issued_at": 1633615012,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "public",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618612,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=287f35ec-e8f9-4a3e-9df7-11fed050cc92&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=adb30222-8c8f-4919-86c5-b00d3f58c797&nonce=52d0bb2b-88b2-4930-be06-703b74787a42
13:56:52.986 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:340bbbf290f60a75d874e161620dc82c6b9708bf5b023b7ab6c0bbb34e5c6a79.9e662b09-207b-48fe-84a8-f9aa5cc74d72
authenticateResourceOwnerAndGrantAccess: sessionId:c0d25e8d-b0ea-4770-a7b0-ca4ae24eee9e
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=287f35ec-e8f9-4a3e-9df7-11fed050cc92&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=adb30222-8c8f-4919-86c5-b00d3f58c797&nonce=52d0bb2b-88b2-4930-be06-703b74787a42

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=553a5734-57b8-46ce-9db3-428bc2a3d815&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.gz1w7VH6daGYl6CgQErlPIgB-vwe3tNy4Yn8NbU77D-RPb3epQCvJEq3rv8DVmY2A-5AS_OXDXLhYlVGYczOi9iTEYle-ObSafGhroGCwSutFDr0nMwEWk5nKAAwXU6pyp_zAWVjcU388Q83UDlnxlfEgMsppzIBpsflAG7xNHMpulScNy7I77qiksN9zjE1iMkNmKdOz0JjjFMXANz3ueGDMvmtdSJFCC5Oopm-WmpB2ncJXRlyakswwO1mIKgkPhp0rXgbQTpgZJ-IY5PoNqPHMoVEI9ZX1gvRea2u-iaItpE3oNDPp93uk3EPh92NNn6JQyCkAXjSJmeEQnjGpw&session_id=c0d25e8d-b0ea-4770-a7b0-ca4ae24eee9e&state=adb30222-8c8f-4919-86c5-b00d3f58c797&token_type=bearer&session_state=340bbbf290f60a75d874e161620dc82c6b9708bf5b023b7ab6c0bbb34e5c6a79.9e662b09-207b-48fe-84a8-f9aa5cc74d72&expires_in=299

#######################################################
TEST: requestAuthorizationAccessTokenUserBasicAuth
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "token", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:53 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=b574d4ab-2ddc-4c55-b330-9cc5722a40e4",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "e41446f1-f9ba-4af9-8139-39644a06bea2",
    "client_id": "b574d4ab-2ddc-4c55-b330-9cc5722a40e4",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "704277df-169b-4e4a-97ee-c87948d6d8cd",
    "client_id_issued_at": 1633615013,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618613,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer e41446f1-f9ba-4af9-8139-39644a06bea2

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:54 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=b574d4ab-2ddc-4c55-b330-9cc5722a40e4",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "e41446f1-f9ba-4af9-8139-39644a06bea2",
    "client_id": "b574d4ab-2ddc-4c55-b330-9cc5722a40e4",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "704277df-169b-4e4a-97ee-c87948d6d8cd",
    "client_id_issued_at": 1633615013,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618613,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b574d4ab-2ddc-4c55-b330-9cc5722a40e4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=dfb84166-f51a-4ae7-8f2b-6933535dad35&nonce=04caac73-22ab-4303-bc2e-f13787631437
13:56:54.333 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:49a7794bba3623ea4f43ee203e02c73d27d1c0b7f237484d426f81aebdf27884.bc79ac71-768b-43f5-a6af-33f05fb17e39
authenticateResourceOwnerAndGrantAccess: sessionId:6b64b46b-51de-486d-b97d-94600fe9e003
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=b574d4ab-2ddc-4c55-b330-9cc5722a40e4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=dfb84166-f51a-4ae7-8f2b-6933535dad35&nonce=04caac73-22ab-4303-bc2e-f13787631437

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#access_token=8c8dff5c-751e-4c52-9673-ca283635414d&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.UmJUvGBiYh5SmQSIGuRis5gSkeAxRP58vlpX0KYGgSlUyRjmEDYY5YmqkSl1mxkXaaVDtjgXm8PskDVe4iU5RyV08Z37GFEM57OB2ssnoD-685knF_wQVCiK-EHaNAU73Qqs0ypBHkKY_37hm2LaQJhND4gjLlmh1Kxj8qVvfYv9ZnqaI1Z7FSxIWZOtxGwF7W76Zemnxf5xDiE__6uE3PkJFx1WUCwGnEjeCG5JznD5aSZvCqq_svT25xp8YdRAMAnfUE3h07Elk5X99rECZbbOm8tyn5Xs4wfoiayQX91jdT4Hs7bdKZXQBI93Lu19U4vRmVO8gMm--k0h_YidaQ&session_id=6b64b46b-51de-486d-b97d-94600fe9e003&state=dfb84166-f51a-4ae7-8f2b-6933535dad35&token_type=bearer&session_state=49a7794bba3623ea4f43ee203e02c73d27d1c0b7f237484d426f81aebdf27884.bc79ac71-768b-43f5-a6af-33f05fb17e39&expires_in=299

#######################################################
TEST: requestAuthorizationCode
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=2a4c524f-c30c-4a75-a9f7-9f88f3f95e93",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "dd8d0616-ea1d-47b6-a56d-af06f1d944db",
    "client_id": "2a4c524f-c30c-4a75-a9f7-9f88f3f95e93",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bca8e795-54bc-486b-ac0b-26a480d9b2df",
    "client_id_issued_at": 1633615015,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618615,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer dd8d0616-ea1d-47b6-a56d-af06f1d944db

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:55 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=2a4c524f-c30c-4a75-a9f7-9f88f3f95e93",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "dd8d0616-ea1d-47b6-a56d-af06f1d944db",
    "client_id": "2a4c524f-c30c-4a75-a9f7-9f88f3f95e93",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bca8e795-54bc-486b-ac0b-26a480d9b2df",
    "client_id_issued_at": 1633615015,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618615,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=2a4c524f-c30c-4a75-a9f7-9f88f3f95e93&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=57ebd747-55ec-4c69-a6cb-3bd91c4f881c
13:56:55.795 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:c6601e17cbcf2ca555c77e9b0eff3d3adf35a4bd41508cd465f51dd7d81700ef.8c72e699-1209-4392-9a4b-c5cdc89aedab
authenticateResourceOwnerAndGrantAccess: sessionId:d6094d65-c050-4bc8-af4b-2a62f1a360f1
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=2a4c524f-c30c-4a75-a9f7-9f88f3f95e93&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=57ebd747-55ec-4c69-a6cb-3bd91c4f881c

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=7f7f1e9d-dd02-4b34-87d7-26fe0238f0ef&scope=address+openid+profile+email&session_id=d6094d65-c050-4bc8-af4b-2a62f1a360f1&state=57ebd747-55ec-4c69-a6cb-3bd91c4f881c&session_state=c6601e17cbcf2ca555c77e9b0eff3d3adf35a4bd41508cd465f51dd7d81700ef.8c72e699-1209-4392-9a4b-c5cdc89aedab

#######################################################
TEST: requestAuthorizationCodeFail1
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Connection: close
Content-Length: 187
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:56 GMT
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "reason": "client_id is empty or blank.",
    "error_description": "The client is not authorized to request an access token using this method.",
    "error": "unauthorized_client"
}

#######################################################
TEST: requestAuthorizationCodeFail2
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:56 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c27a9fa6-fd6e-4239-8f6b-659f99e1056d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "8b70fee8-8c93-4594-9ab4-47d8081712cc",
    "client_id": "c27a9fa6-fd6e-4239-8f6b-659f99e1056d",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "9b39f487-3b29-4667-84fa-27b5be85a7ec",
    "client_id_issued_at": 1633615016,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618616,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 8b70fee8-8c93-4594-9ab4-47d8081712cc

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:56 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=c27a9fa6-fd6e-4239-8f6b-659f99e1056d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "8b70fee8-8c93-4594-9ab4-47d8081712cc",
    "client_id": "c27a9fa6-fd6e-4239-8f6b-659f99e1056d",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "9b39f487-3b29-4667-84fa-27b5be85a7ec",
    "client_id_issued_at": 1633615016,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618616,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA==

response_type=code&client_id=c27a9fa6-fd6e-4239-8f6b-659f99e1056d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2FINVALID_REDIRECT_URI&state=f97fd45a-879a-4970-9dbd-20fe7521d32e&prompt=none

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Connection: close
Content-Length: 239
Content-Type: text/plain;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:57 GMT
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "error_description": "The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.",
    "state": "f97fd45a-879a-4970-9dbd-20fe7521d32e",
    "error": "invalid_request_redirect_uri"
}

#######################################################
TEST: requestAuthorizationCodeFail3
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org

response_type=code&client_id=%40%211111%210008%21INVALID_VALUE&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e0bb6e6-daad-464f-a7d0-be12194e99fa

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 401
Connection: Keep-Alive
Content-Length: 234
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:57 GMT
Keep-Alive: timeout=5, max=100
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "reason": "Unable to find client.",
    "error_description": "The client is not authorized to request an access token using this method.",
    "state": "5e0bb6e6-daad-464f-a7d0-be12194e99fa",
    "error": "unauthorized_client"
}

#######################################################
TEST: requestAuthorizationCodeFail4
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:57 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a01db87d-08bc-40c2-8b2b-b5ff6b903ebd",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "434c6339-4282-46fc-9254-a1bf439e66d9",
    "client_id": "a01db87d-08bc-40c2-8b2b-b5ff6b903ebd",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "1f5c2260-f4b7-42cd-8a2f-fc692f787477",
    "client_id_issued_at": 1633615017,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618617,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 434c6339-4282-46fc-9254-a1bf439e66d9

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:57 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=a01db87d-08bc-40c2-8b2b-b5ff6b903ebd",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "434c6339-4282-46fc-9254-a1bf439e66d9",
    "client_id": "a01db87d-08bc-40c2-8b2b-b5ff6b903ebd",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "1f5c2260-f4b7-42cd-8a2f-fc692f787477",
    "client_id_issued_at": 1633615017,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618617,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org

response_type=code+id_token&client_id=a01db87d-08bc-40c2-8b2b-b5ff6b903ebd&scope=openid+email&redirect_uri=https%3A%2F%2Fevil.com%2FoxLicenceAdmin&nonce=ff429776-010c-4cdf-ac1b-3edc23944327

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 400
Connection: close
Content-Length: 186
Content-Type: text/plain;charset=utf-8
Date: Thu, 07 Oct 2021 13:56:57 GMT
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "error_description": "The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.",
    "error": "invalid_request_redirect_uri"
}

#######################################################
TEST: requestAuthorizationCodeIdToken
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:57 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=49753a5f-ee4b-4632-af5f-862a337c97f2",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ebe811a9-25fd-4bc6-ae79-fc9642103349",
    "client_id": "49753a5f-ee4b-4632-af5f-862a337c97f2",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "9e6d045e-2150-4332-88ca-992493d64dbd",
    "client_id_issued_at": 1633615017,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618617,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer ebe811a9-25fd-4bc6-ae79-fc9642103349

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:57 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=49753a5f-ee4b-4632-af5f-862a337c97f2",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "ebe811a9-25fd-4bc6-ae79-fc9642103349",
    "client_id": "49753a5f-ee4b-4632-af5f-862a337c97f2",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "9e6d045e-2150-4332-88ca-992493d64dbd",
    "client_id_issued_at": 1633615017,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618617,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=49753a5f-ee4b-4632-af5f-862a337c97f2&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=da1fde83-c114-4306-a4e3-4a586b01c5d6&nonce=2a121df6-db9d-49c8-8775-9b7e299fc581
13:56:58.181 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:6ce3ff4e9a7a991ad8156f4ba286b3390684ecd6c4b991f0bc347fc7ca8027ea.1127c066-dd11-42c9-a094-ecc5844d5860
authenticateResourceOwnerAndGrantAccess: sessionId:cecd4e27-7843-4bd4-be2d-157834158ce3
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=49753a5f-ee4b-4632-af5f-862a337c97f2&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=da1fde83-c114-4306-a4e3-4a586b01c5d6&nonce=2a121df6-db9d-49c8-8775-9b7e299fc581

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=362a52ad-ec5f-40db-b1db-15ab8c7145e9&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.FOuZQ1o3c_GGHTCtzb3VkLDEdzpSk-U3RuftaC8VQKjetA70czy2f9vgyaqiMrOXludDGE-JNv6DvcdF7cicBvYPRc9poDDk1me7CaxDKjwm6rXLpsQ13Ebthc96-42bWsjweGyX8rWmwptZU4cYzjESc-_FGmq54hmk4zLjMRATcbnpTmfx8ZQaWMtpkEs4hnFb6atiX8M1s0yzzXwqED0c_FAShPoLajT9Wl_dP3dZayWA0Y_PMGXSv-Tx5Owbqz8riOmkDrsGMutnW-ixj4253bhgrTe0N2GXWzOXfdCq-SGKT2pWipsgMvOtA6UFTmuqpxbXoP2VjMfwgpYIUQ&session_id=cecd4e27-7843-4bd4-be2d-157834158ce3&state=da1fde83-c114-4306-a4e3-4a586b01c5d6&session_state=6ce3ff4e9a7a991ad8156f4ba286b3390684ecd6c4b991f0bc347fc7ca8027ea.1127c066-dd11-42c9-a094-ecc5844d5860

#######################################################
TEST: requestAuthorizationCodeIdTokenUserBasicAuth
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code", "id_token" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:59 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=e0165e3e-e73a-4263-bd5f-dc2f02575f39",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "346dda89-17a4-422d-b2e2-ee22346428da",
    "client_id": "e0165e3e-e73a-4263-bd5f-dc2f02575f39",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bca7a512-f028-41bc-8464-bf41c072d287",
    "client_id_issued_at": 1633615019,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618619,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 346dda89-17a4-422d-b2e2-ee22346428da

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1856
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:56:59 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=e0165e3e-e73a-4263-bd5f-dc2f02575f39",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "346dda89-17a4-422d-b2e2-ee22346428da",
    "client_id": "e0165e3e-e73a-4263-bd5f-dc2f02575f39",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "bca7a512-f028-41bc-8464-bf41c072d287",
    "client_id_issued_at": 1633615019,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "implicit",
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618619,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": [
        "code",
        "token",
        "id_token"
    ]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e0165e3e-e73a-4263-bd5f-dc2f02575f39&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=1f64e2e8-c5b0-4402-9ca2-0136886648c9&nonce=d4c41e15-0238-47a3-9ae0-dcff7fe1920c
13:56:59.659 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:95a7d796c9b19e1bab5b6bbcb74e4a8971bd0551625779444ba918395b67b991.241d2585-7f89-45e6-940d-bf1584bfdee6
authenticateResourceOwnerAndGrantAccess: sessionId:2aa523b9-9c31-4c2b-9504-de3eca424164
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=e0165e3e-e73a-4263-bd5f-dc2f02575f39&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=1f64e2e8-c5b0-4402-9ca2-0136886648c9&nonce=d4c41e15-0238-47a3-9ae0-dcff7fe1920c

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm#code=aa4256dd-e1e6-4dbb-997e-b186c7296a44&scope=address+openid+profile+email&id_token=eyJraWQiOiJmZTQzYTg4ZS1mMmE5LTQ1MGQtOGE1NS00M2Q5ZjJmYTRiOGNfc2lnX3JzMjU2IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiIzVmpSd3NzQ2F0WGNxaENLcTB0blk1X1paX0d6a3dCZ2JYdUVTc25makU4IiwiYW1yIjpbIi0xIl0sImlzcyI6Imh0dHBzOi8vamVua2lucy1sZGFwLmdsdXUub3JnIiwibm9uY2UiOiJkNGM0MWUxNS0wMjM4LTQ3YTMtOWFlMC1kY2ZmN2ZlMTkyMGMiLCJzaWQiOiJjMTAyMWIzMi00NWMwLTRjMzMtOWMxOS0yNmZmYTc4MjFmMWQiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJhdWQiOiJlMDE2NWUzZS1lNzNhLTQyNjMtYmQ1Zi1kYzJmMDI1NzVmMzkiLCJhY3IiOiJzaW1wbGVfcGFzc3dvcmRfYXV0aCIsImNfaGFzaCI6InZZU1VTUlRjRjhtSEhYdXdtSC1uQ3ciLCJzX2hhc2giOiJBaEl4SEJVaEh4VjhOUnUyTFVXYV9nIiwiYXV0aF90aW1lIjoxNjMzNjE1MDIwLCJleHAiOjE2MzM2MTg2MjAsImlhdCI6MTYzMzYxNTAyMH0.EclUwr-_ZqSGOZuhnO_ma-_vB22x4g3GveSRcIqMeWO6AxFOwGkoBMYFOUdF5YdJWTdmvekUzsMzTndrItjOcBsmMqE_W5Btl1fF5vopcZwoddbs97TwtKNdjaFtSaDD2NkV08pJFMv1C4RxkRWttlvzZHZqYJ6JafXAsSJzow3x86mTR2pzROzj9kMiZurSbwsEFwdZMPAstJbQPqOqGUS_HOzA1q-tNSxLu4u2sMHBErxt5IVaWdKo6zxQ-R-vvGSOhouPMi8-uWj5bEk0iJOnlJyK9DAvf87i8R-LxBcsHxyrMw-NZmLnie1YKCSduyei2M5FGiNyXqTDW1i6lw&session_id=2aa523b9-9c31-4c2b-9504-de3eca424164&state=1f64e2e8-c5b0-4402-9ca2-0136886648c9&session_state=95a7d796c9b19e1bab5b6bbcb74e4a8971bd0551625779444ba918395b67b991.241d2585-7f89-45e6-940d-bf1584bfdee6

#######################################################
TEST: requestAuthorizationCodeNoRedirection
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:57:00 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=32ca8279-754a-4c69-983e-7921c3227f9d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "495dfee9-9e96-4fbf-8d2a-31266cdd458c",
    "client_id": "32ca8279-754a-4c69-983e-7921c3227f9d",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "8fabb071-735d-41fa-8878-6d05859d5f1b",
    "client_id_issued_at": 1633615020,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618620,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 495dfee9-9e96-4fbf-8d2a-31266cdd458c

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:57:00 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=32ca8279-754a-4c69-983e-7921c3227f9d",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "495dfee9-9e96-4fbf-8d2a-31266cdd458c",
    "client_id": "32ca8279-754a-4c69-983e-7921c3227f9d",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "8fabb071-735d-41fa-8878-6d05859d5f1b",
    "client_id_issued_at": 1633615020,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618620,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=32ca8279-754a-4c69-983e-7921c3227f9d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=24e567e8-143a-4a73-95bc-085a64174a64
13:57:01.261 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:97230cdb54b0a70501902daa1f75895bfa5676bd3986972e441679fa4784139f.08dfff00-f575-4563-bcd8-c1ec56f38b53
authenticateResourceOwnerAndGrantAccess: sessionId:fdb9b209-4ec6-4c74-a9f3-3936303a33ec
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=32ca8279-754a-4c69-983e-7921c3227f9d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=24e567e8-143a-4a73-95bc-085a64174a64

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=d54bb0c5-e3e6-4799-a12e-f8eac5837790&scope=address+openid+profile+email&session_id=fdb9b209-4ec6-4c74-a9f3-3936303a33ec&state=24e567e8-143a-4a73-95bc-085a64174a64&session_state=97230cdb54b0a70501902daa1f75895bfa5676bd3986972e441679fa4784139f.08dfff00-f575-4563-bcd8-c1ec56f38b53

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/authorize HTTP/1.1
Host: jenkins-ldap.gluu.org
X-Gluu-NoRedirect: true

response_type=code&client_id=32ca8279-754a-4c69-983e-7921c3227f9d&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=24e567e8-143a-4a73-95bc-085a64174a64

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------


#######################################################
TEST: requestAuthorizationCodeUserBasicAuth
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ],
  "sector_identifier_uri" : "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ],
  "response_types" : [ "code" ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:57:02 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=176af447-7cfc-4409-bd08-d9408ca793a8",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "61bdbf65-4832-40cc-9ba8-e65b688d9516",
    "client_id": "176af447-7cfc-4409-bd08-d9408ca793a8",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "1d502489-d6dd-4e78-92d9-c4d771d3c053",
    "client_id_issued_at": 1633615022,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618622,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
GET /oxauth/restv1/register HTTP/1.1?{
  "additional_audience" : [ ]
} HTTP/1.1
Host: jenkins-ldap.gluu.org
Authorization: Bearer 61bdbf65-4832-40cc-9ba8-e65b688d9516

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1785
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:57:02 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=176af447-7cfc-4409-bd08-d9408ca793a8",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "61bdbf65-4832-40cc-9ba8-e65b688d9516",
    "client_id": "176af447-7cfc-4409-bd08-d9408ca793a8",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "1d502489-d6dd-4e78-92d9-c4d771d3c053",
    "client_id_issued_at": 1633615022,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": [
        "https://client.example.com/cb2",
        "https://client.example.com/cb1",
        "https://client.example.com/cb",
        "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"
    ],
    "sector_identifier_uri": "https://jenkins-ldap.gluu.org/oxauth/sectoridentifier/a55ede29-8f5a-461d-b06e-76caee8d40b5",
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at": 1633618622,
    "require_auth_time": false,
    "access_token_signing_alg": "RS256",
    "response_types": ["code"]
}

authenticateResourceOwnerAndGrantAccess: Cleaning cookies
authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=176af447-7cfc-4409-bd08-d9408ca793a8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=bb6bcfce-f10b-4de5-a858-06aaf195b90a
13:57:03.209 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://jenkins-ldap.gluu.org/oxauth/js/jquery-3.4.1.min.js] line=[2] lineSource=[null] lineOffset=[0]
authenticateResourceOwnerAndGrantAccess: sessionState:e465935f43f76317ddcd1818ce17961f3d596524c97ffabc3866d16a83758812.29e077c2-2664-4c97-a9e8-d18dff643ed2
authenticateResourceOwnerAndGrantAccess: sessionId:8ed4149a-39e5-441e-8e42-79aed189a546
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://jenkins-ldap.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=176af447-7cfc-4409-bd08-d9408ca793a8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fjenkins-ldap.gluu.org%2Foxauth-rp%2Fhome.htm&state=bb6bcfce-f10b-4de5-a858-06aaf195b90a

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://jenkins-ldap.gluu.org/oxauth-rp/home.htm?code=d5578c65-4492-4f37-9dee-930297c8e91c&scope=address+openid+profile+email&session_id=8ed4149a-39e5-441e-8e42-79aed189a546&state=bb6bcfce-f10b-4de5-a858-06aaf195b90a&session_state=e465935f43f76317ddcd1818ce17961f3d596524c97ffabc3866d16a83758812.29e077c2-2664-4c97-a9e8-d18dff643ed2

#######################################################
TEST: requestAuthorizationCodeWithoutRedirectUri
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/restv1/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: jenkins-ldap.gluu.org

{
  "application_type" : "web",
  "redirect_uris" : [ "https://jenkins-ldap.gluu.org/oxauth-rp/home.htm" ],
  "client_name" : "oxAuth test app",
  "additional_audience" : [ ]
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Cache-Control: no-store
Connection: Keep-Alive
Content-Length: 1523
Content-Type: application/json
Date: Thu, 07 Oct 2021 13:57:04 GMT
Keep-Alive: timeout=5, max=100
Pragma: no-cache
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

{
    "allow_spontaneous_scopes": false,
    "application_type": "web",
    "rpt_as_jwt": false,
    "registration_client_uri": "https://jenkins-ldap.gluu.org/oxauth/restv1/register?client_id=82621129-c893-424c-9f43-a6d818273165",
    "tls_client_auth_subject_dn": "",
    "registration_access_token": "49202c47-fed6-48e0-b08c-c355855a9d50",
    "client_id": "82621129-c893-424c-9f43-a6d818273165",
    "token_endpoint_auth_method": "client_secret_basic",
    "scope": "profile openid permission super_gluu_ro_session work_phone phone address org_name clientinfo email user_name test oxd uma_protection jans_client_api",
    "run_introspection_script_before_access_token_as_jwt_creation_and_include_claims": false,
    "client_secret": "3b66d516-582e-49f5-8c47-aa57576e6f67",
    "client_id_issued_at": 1633615024,
    "backchannel_logout_uri": [],
    "backchannel_logout_session_required": false,
    "client_name": "oxAuth test app",
    "spontaneous_scopes": [],
    "id_token_signed_response_alg": "RS256",
    "access_token_as_jwt": false,
    "grant_types": [
        "authorization_code",
        "refresh_token"
    ],
    "subject_type": "pairwise",
    "keep_client_authorization_after_expiration": false,
    "redirect_uris": ["https://jenkins-ldap.gluu.org/oxauth-rp/home.htm"],
    "additional_audience": [],
    "frontchannel_logout_session_required": false,
    "client_secret_expires_at