Started by user Javier Blum Building on master in workspace /home/tomcat/.jenkins/jobs/oxAuth/workspace > git rev-parse --is-inside-work-tree # timeout=10 Fetching changes from the remote Git repository > git config remote.origin.url https://github.com/GluuFederation/oxAuth # timeout=10 Fetching upstream changes from https://github.com/GluuFederation/oxAuth > git --version # timeout=10 > git fetch --tags --progress https://github.com/GluuFederation/oxAuth +refs/heads/*:refs/remotes/origin/* > git rev-parse refs/remotes/origin/version_3.1.4^{commit} # timeout=10 > git rev-parse refs/remotes/origin/origin/version_3.1.4^{commit} # timeout=10 Checking out Revision 96e11b834bbdb67d4917cbc2bd7972a5e7093068 (refs/remotes/origin/version_3.1.4) > git config core.sparsecheckout # timeout=10 > git checkout -f 96e11b834bbdb67d4917cbc2bd7972a5e7093068 Commit message: "oxAuth #812 Restrict requesting claims individually" > git rev-list --no-walk 96e11b834bbdb67d4917cbc2bd7972a5e7093068 # timeout=10 [workspace] $ /bin/bash /opt/tomcat/temp/jenkins7059714448624063892.sh Cloning into 'oxHudsonProfiles'... [workspace] $ /home/tomcat/.jenkins/tools/hudson.tasks.Maven_MavenInstallation/maven_3.3.9/bin/mvn -DVERSION_NAME=version_3.1.4 -DPROFILE_NAME=ce-dev4 -DDEVELOPMENT_BUILD=true -DMAVEN_SKIP_TESTS=false -Dpython.import.site=false -DPYTHON_HOME=/opt/jython -Dcfg=ce-dev4 -Dmaven.test.skip=false -Ddevelopment-build=true clean compile install findbugs:findbugs javadoc:javadoc site [INFO] Scanning for projects... [WARNING] [WARNING] Some problems were encountered while building the effective model for org.xdi:oxauth-rp:war:3.1.4-SNAPSHOT [WARNING] 'build.plugins.plugin.version' for org.mortbay.jetty:jetty-maven-plugin is missing. @ org.xdi:oxauth-rp:[unknown-version], /home/tomcat/.jenkins/jobs/oxAuth/workspace/RP/pom.xml, line 74, column 12 [WARNING] [WARNING] It is highly recommended to fix these problems because they threaten the stability of your build. [WARNING] [WARNING] For this reason, future Maven versions might no longer support building such malformed projects. [WARNING] [INFO] ------------------------------------------------------------------------ [INFO] Reactor Build Order: [INFO] [INFO] oxAuth [INFO] oxAuth Model [INFO] oxAuth Client [INFO] oxauth-static [INFO] oxAuth RP [INFO] oxAuth RP Demo [INFO] oxAuth Server [INFO] [INFO] ------------------------------------------------------------------------ [INFO] Building oxAuth 3.1.4-SNAPSHOT [INFO] ------------------------------------------------------------------------ [INFO] [INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth --- [INFO] Deleting /home/tomcat/.jenkins/jobs/oxAuth/workspace/target [INFO] [INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth --- [INFO] Installing /home/tomcat/.jenkins/jobs/oxAuth/workspace/pom.xml to /var/www/html/maven/org/xdi/oxauth/3.1.4-SNAPSHOT/oxauth-3.1.4-SNAPSHOT.pom [INFO] [INFO] --- findbugs-maven-plugin:3.0.4:findbugs (default-cli) @ oxauth --- [INFO] [INFO] >>> maven-javadoc-plugin:2.10.4:javadoc (default-cli) > generate-sources @ oxauth >>> [INFO] [INFO] <<< maven-javadoc-plugin:2.10.4:javadoc (default-cli) < generate-sources @ oxauth <<< [INFO] [INFO] --- maven-javadoc-plugin:2.10.4:javadoc (default-cli) @ oxauth --- [INFO] [INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth --- Downloading: http://repo1.maven.org/maven2/org/apache/maven/skins/maven-default-skin/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/apache/maven/skins/maven-default-skin/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/apache/maven/skins/maven-default-skin/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/apache/maven/skins/maven-default-skin/maven-metadata.xml Downloading: https://repo.maven.apache.org/maven2/org/apache/maven/skins/maven-default-skin/maven-metadata.xml 399/399 B Downloaded: http://repo1.maven.org/maven2/org/apache/maven/skins/maven-default-skin/maven-metadata.xml (399 B at 1.6 KB/sec) 399/399 B Downloaded: http://repository.jboss.org/nexus/content/groups/public-jboss/org/apache/maven/skins/maven-default-skin/maven-metadata.xml (399 B at 0.8 KB/sec) 399/399 B Downloaded: https://repo.maven.apache.org/maven2/org/apache/maven/skins/maven-default-skin/maven-metadata.xml (399 B at 0.8 KB/sec) [INFO] [INFO] ------------------------------------------------------------------------ [INFO] Building oxAuth Model 3.1.4-SNAPSHOT [INFO] ------------------------------------------------------------------------ Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/gluu/oxeleven-client/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/gluu/oxeleven-client/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven-client/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/gluu/oxeleven-client/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/gluu/oxeleven/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/gluu/oxeleven/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/gluu/oxeleven/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/gluu/oxeleven-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/gluu/oxeleven-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/gluu/oxeleven-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/gluu/oxeleven-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/xdi/oxcore-ldap-annotations/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/xdi/oxcore-ldap-annotations/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/xdi/oxcore-ldap-annotations/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/xdi/oxcore-ldap-annotations/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/xdi/oxcore/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/xdi/oxcore/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/xdi/oxcore/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/xdi/oxcore/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/xdi/oxcore-util/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/xdi/oxcore-util/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/xdi/oxcore-util/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/xdi/oxcore-util/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repository.jboss.org/nexus/content/groups/public-jboss/org/xdi/oxcore-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://ox.gluu.org/maven/org/xdi/oxcore-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo2.maven.org/maven2/org/bouncycastle/org/xdi/oxcore-model/3.1.4-SNAPSHOT/maven-metadata.xml Downloading: http://repo1.maven.org/maven2/org/xdi/oxcore-model/3.1.4-SNAPSHOT/maven-metadata.xml [INFO] [INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-model --- [INFO] Deleting /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-model --- [INFO] Compiling 158 source files to /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/classes [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/crypto/AbstractCryptoProvider.java:[21,23] RSAPublicKeyImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/crypto/AbstractCryptoProvider.java:[21,23] RSAPublicKeyImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/crypto/AbstractCryptoProvider.java:[21,23] RSAPublicKeyImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/crypto/AbstractCryptoProvider.java:[144,36] RSAPublicKeyImpl is internal proprietary API and may be removed in a future release [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-model --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-model --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 4 resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-model --- [INFO] Compiling 5 source files to /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/test-classes [INFO] [INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-model --- ------------------------------------------------------- T E S T S ------------------------------------------------------- Running TestSuite CodeVerifier{codeVerifier='y59fqXXdpgADoqu.-idBwnFM~U.rFj47IHYroCA.DEx9Z7jiwzHpWb80Mn7KmaEMfeMM3Fkig0-YHxJBPuMAyI9MLuGpGVWKx2PAcGShGy7jniZpWLKFM2CIiWku9xOQ', codeChallenge='y59fqXXdpgADoqu.-idBwnFM~U.rFj47IHYroCA.DEx9Z7jiwzHpWb80Mn7KmaEMfeMM3Fkig0-YHxJBPuMAyI9MLuGpGVWKx2PAcGShGy7jniZpWLKFM2CIiWku9xOQ', transformationType=PLAIN} CodeVerifier{codeVerifier='tz9avJu66pg.avqkrO5wAFm0q42399wtMWGdpAYsIX8JbAcgo_3NSjjzJKYj~VCu5tDaXDRl202vNTT25c3KhzKNqm_YTtXT-XZ7v1vXBA70FEF-NRr7aqChjJt5N6kH', codeChallenge='Uj9-mQqU76xfffr5T7_4UAKXi3HuNGEhSINWilRvegM', transformationType=S256} SLF4J: Failed to load class "org.slf4j.impl.StaticLoggerBinder". SLF4J: Defaulting to no-operation (NOP) logger implementation SLF4J: See http://www.slf4j.org/codes.html#StaticLoggerBinder for further details. Hi there from Javascript, ERROR StatusLogger No log4j2 configuration file found. Using default configuration: logging only errors to the console. Set system property 'org.apache.logging.log4j.simplelog.StatusLogger.level' to TRACE to show Log4j2 internal initialization logging. Tests run: 7, Failures: 0, Errors: 0, Skipped: 0, Time elapsed: 4.734 sec - in TestSuite Results : Tests run: 7, Failures: 0, Errors: 0, Skipped: 0 [INFO] [INFO] --- maven-jar-plugin:2.4:jar (default-jar) @ oxauth-model --- [INFO] Building jar: /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/oxauth-model.jar [INFO] [INFO] --- maven-jar-plugin:2.4:test-jar (default) @ oxauth-model --- [INFO] Building jar: /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/oxauth-model-tests.jar [INFO] [INFO] --- maven-install-plugin:2.3.1:install (default-install) @ oxauth-model --- [INFO] Installing /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/oxauth-model.jar to /var/www/html/maven/org/xdi/oxauth-model/3.1.4-SNAPSHOT/oxauth-model-3.1.4-SNAPSHOT.jar [INFO] Installing /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/pom.xml to /var/www/html/maven/org/xdi/oxauth-model/3.1.4-SNAPSHOT/oxauth-model-3.1.4-SNAPSHOT.pom [INFO] Installing /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/oxauth-model-tests.jar to /var/www/html/maven/org/xdi/oxauth-model/3.1.4-SNAPSHOT/oxauth-model-3.1.4-SNAPSHOT-tests.jar [INFO] [INFO] --- findbugs-maven-plugin:3.0.4:findbugs (default-cli) @ oxauth-model --- [INFO] Fork Value is true [java] Warnings generated: 53 [INFO] Done FindBugs Analysis.... [INFO] [INFO] >>> maven-javadoc-plugin:2.10.4:javadoc (default-cli) > generate-sources @ oxauth-model >>> [INFO] [INFO] <<< maven-javadoc-plugin:2.10.4:javadoc (default-cli) < generate-sources @ oxauth-model <<< [INFO] [INFO] --- maven-javadoc-plugin:2.10.4:javadoc (default-cli) @ oxauth-model --- [INFO] Loading source files for package org.xdi.oxauth.model.uma... Loading source files for package org.xdi.oxauth.model.uma.wrapper... Loading source files for package org.xdi.oxauth.model.uma.persistence... Loading source files for package org.xdi.oxauth.model.jwt... Loading source files for package org.xdi.oxauth.model.common... Loading source files for package org.xdi.oxauth.model.jwk... Loading source files for package org.xdi.oxauth.model.exception... Loading source files for package org.xdi.oxauth.model.session... Loading source files for package org.xdi.oxauth.model.fido.u2f... Loading source files for package org.xdi.oxauth.model.fido.u2f.message... Loading source files for package org.xdi.oxauth.model.fido.u2f.exception... Loading source files for package org.xdi.oxauth.model.fido.u2f.protocol... Loading source files for package org.xdi.oxauth.model.gluu... Loading source files for package org.xdi.oxauth.model.register... Loading source files for package org.xdi.oxauth.model.discovery... Loading source files for package org.xdi.oxauth.model.jwe... Loading source files for package org.xdi.oxauth.model.userinfo... Loading source files for package org.xdi.oxauth.model.util... Loading source files for package org.xdi.oxauth.model.authorize... Loading source files for package org.xdi.oxauth.model.configuration... Loading source files for package org.xdi.oxauth.model.error... Loading source files for package org.xdi.oxauth.model.jws... Loading source files for package org.xdi.oxauth.model.token... Loading source files for package org.xdi.oxauth.model.crypto... Loading source files for package org.xdi.oxauth.model.crypto.signature... Loading source files for package org.xdi.oxauth.model.crypto.binding... Loading source files for package org.xdi.oxauth.model.crypto.encryption... Constructing Javadoc information... Standard Doclet version 1.8.0_121 Building tree for all the packages and classes... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/ClaimTokenFormatType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/JsonLogic.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/JsonLogicNode.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/JsonLogicNodeParser.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/PermissionTicket.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/RptIntrospectionResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/RptProfiles.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/RPTResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaConstants.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaErrorResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaMetadata.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaNeedInfoResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaPermission.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaPermissionList.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaResource.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaResourceResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaResourceWithId.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaScopeDescription.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaScopeType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/UmaTokenResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/Token.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/UmaPermission.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/UmaResource.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/UmaScopeDescription.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/Jwt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtClaimName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtClaims.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtClaimSet.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtHeader.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtHeaderName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtStateClaimName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtSubClaimObject.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/JwtType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/PureJwt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/AuthenticationMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/AuthorizationMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/Display.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/GrantType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/HasParamName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/Holder.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/Id.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/IdType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/IntrospectionResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/JSONable.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/PairwiseIdType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/ProgrammingLanguage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/Prompt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/ResponseMode.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/ResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/ScopeType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/SubjectType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/TokenType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/WebKeyStorage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/JSONWebKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/JSONWebKeySet.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/JWKParameter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/KeyType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/Use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/InvalidClaimException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/InvalidJweException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/InvalidJwtException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/InvalidParameterException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/SignatureException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/EndSessionErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/EndSessionRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/EndSessionResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/DeviceRegistrationStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/U2fConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/U2fConstants.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/U2fErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/RawAuthenticateResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/RawRegisterResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/BadInputException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/RegistrationNotAllowed.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/AuthenticateRequest.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/AuthenticateRequestMessage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/AuthenticateResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/AuthenticateStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/ClientData.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/DeviceData.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/RegisterRequest.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/RegisterRequestMessage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/RegisterResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/RegisterStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/GluuConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/GluuErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/ApplicationType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/RegisterErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/RegisterRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/RegisterResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/OAuth2Discovery.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/WebFingerLink.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/WebFingerParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/AbstractJweDecrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/AbstractJweEncrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/Jwe.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/JweDecrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/JweDecrypterImpl.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/JweEncrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/JweEncrypterImpl.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/KeyDerivationFunction.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/Schema.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/UserInfoErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/Base64Util.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/JwtUtil.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/LocaleUtil.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/Pair.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/SecurityProviderUtility.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/StringUtils.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/SubjectIdentifierGenerator.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/URLPatternList.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/Util.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/AuthorizeErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/AuthorizeRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/AuthorizeResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/CodeVerifier.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/CodeVerifier.CodeChallengeMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/AppConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/AuthenticationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/BaseFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/ClientAuthenticationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/Configuration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/ConfigurationResponseClaim.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/CorsConfigurationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/IErrorType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/AbstractJwsSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/ECDSASigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/HMACSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/JwsSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/PlainTextSignature.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/RSASigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/ClientAssertionType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/JsonWebResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/TokenErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/AbstractCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/Certificate.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/CryptoProviderFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/Key.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/KeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/OxAuthCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/OxElevenCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/PrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/PublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/AbstractSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/ECDSAKeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/ECDSAPrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/ECDSAPublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/ECEllipticCurve.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/RSAKeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/RSAPrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/RSAPublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/SignatureAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/SignatureAlgorithmFamily.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/Signer.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/TokenBindingExtensionType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/TokenBindingType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/BlockEncryptionAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/KeyEncryptionAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/overview-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/package-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/package-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/package-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/constant-values.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/serialized-form.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/JsonLogic.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaScopeDescription.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaResourceResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/JsonLogicNodeParser.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaPermission.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/RptIntrospectionResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaConstants.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaErrorResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaScopeType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/PermissionTicket.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/ClaimTokenFormatType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaResourceWithId.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaResource.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/JsonLogicNode.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/RptProfiles.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaTokenResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaMetadata.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaNeedInfoResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/UmaPermissionList.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/class-use/RPTResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/class-use/Token.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/class-use/UmaScopeDescription.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/class-use/UmaPermission.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/class-use/UmaResource.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/Jwt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtHeader.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/PureJwt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtStateClaimName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtClaimSet.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtSubClaimObject.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtClaims.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtClaimName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/class-use/JwtHeaderName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/ProgrammingLanguage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/IntrospectionResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/HasParamName.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/IdType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/GrantType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/AuthorizationMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/ResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/PairwiseIdType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/Holder.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/JSONable.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/TokenType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/Id.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/Prompt.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/ResponseMode.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/WebKeyStorage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/ScopeType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/Display.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/SubjectType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/class-use/AuthenticationMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/class-use/JSONWebKeySet.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/class-use/JWKParameter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/class-use/Use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/class-use/KeyType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/class-use/JSONWebKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/class-use/InvalidParameterException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/class-use/SignatureException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/class-use/InvalidJwtException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/class-use/InvalidJweException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/class-use/InvalidClaimException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/class-use/EndSessionErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/class-use/EndSessionRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/class-use/EndSessionResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/class-use/U2fConstants.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/class-use/U2fConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/class-use/DeviceRegistrationStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/class-use/U2fErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/class-use/RawAuthenticateResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/class-use/RawRegisterResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/class-use/RegistrationNotAllowed.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/class-use/BadInputException.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/AuthenticateRequestMessage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/DeviceData.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/AuthenticateRequest.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/RegisterResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/RegisterStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/AuthenticateResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/ClientData.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/AuthenticateStatus.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/RegisterRequestMessage.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/class-use/RegisterRequest.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/class-use/GluuConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/class-use/GluuErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/class-use/RegisterRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/class-use/ApplicationType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/class-use/RegisterErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/class-use/RegisterResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/class-use/WebFingerParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/class-use/OAuth2Discovery.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/class-use/WebFingerLink.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/AbstractJweEncrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/JweEncrypterImpl.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/JweEncrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/JweDecrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/KeyDerivationFunction.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/JweDecrypterImpl.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/Jwe.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/class-use/AbstractJweDecrypter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/class-use/UserInfoErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/class-use/Schema.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/URLPatternList.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/Base64Util.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/SecurityProviderUtility.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/LocaleUtil.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/Util.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/StringUtils.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/SubjectIdentifierGenerator.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/JwtUtil.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/class-use/Pair.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/class-use/AuthorizeResponseParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/class-use/CodeVerifier.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/class-use/CodeVerifier.CodeChallengeMethod.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/class-use/AuthorizeErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/class-use/AuthorizeRequestParam.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/AuthenticationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/Configuration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/BaseFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/AppConfiguration.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/CorsConfigurationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/ConfigurationResponseClaim.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/class-use/ClientAuthenticationFilter.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/class-use/IErrorType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/RSASigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/HMACSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/AbstractJwsSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/PlainTextSignature.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/ECDSASigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/class-use/JwsSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/class-use/JsonWebResponse.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/class-use/TokenErrorResponseType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/class-use/ClientAssertionType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/OxElevenCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/OxAuthCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/PrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/AbstractCryptoProvider.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/Key.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/PublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/CryptoProviderFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/Certificate.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/class-use/KeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/RSAKeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/ECDSAPrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/ECDSAPublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/ECDSAKeyFactory.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/SignatureAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/SignatureAlgorithmFamily.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/RSAPrivateKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/Signer.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/RSAPublicKey.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/AbstractSigner.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/class-use/ECEllipticCurve.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/class-use/TokenBindingExtensionType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/class-use/TokenBindingType.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/class-use/BlockEncryptionAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/class-use/KeyEncryptionAlgorithm.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/authorize/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/common/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/configuration/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/binding/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/encryption/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/crypto/signature/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/discovery/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/error/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/exception/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/exception/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/message/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/fido/u2f/protocol/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/gluu/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwe/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwk/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jws/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/jwt/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/register/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/session/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/token/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/persistence/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/uma/wrapper/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/userinfo/package-use.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/org/xdi/oxauth/model/util/package-use.html... Building index for all the packages and classes... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/overview-tree.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/index-all.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/deprecated-list.html... Building index for all classes... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/allclasses-frame.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/allclasses-noframe.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/index.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/overview-summary.html... Generating /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/target/site/apidocs/help-doc.html... 12 warnings [WARNING] Javadoc Warnings [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/uma/UmaNeedInfoResponse.java:65: warning: no @param for clientId [WARNING] public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/uma/UmaNeedInfoResponse.java:65: warning: no @param for claimsRedirectUri [WARNING] public String buildClaimsGatheringUrl(String clientId, String claimsRedirectUri) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/jwt/JwtHeader.java:44: warning: no @return [WARNING] public JwtHeader setType(JwtType type) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/jwt/JwtHeader.java:63: warning: no @return [WARNING] public JwtHeader setAlgorithm(SignatureAlgorithm algorithm) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/jwt/JwtHeader.java:77: warning: no @return [WARNING] public JwtHeader setAlgorithm(KeyEncryptionAlgorithm algorithm) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/jwt/JwtHeader.java:96: warning: no @return [WARNING] public JwtHeader setKeyId(String keyId) { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/common/ScopeType.java:30: warning: empty

tag [WARNING] *

[WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:37: warning: no @return [WARNING] public byte getUserPresence() { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:45: warning: no @return [WARNING] public long getCounter() { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/fido/u2f/message/RawAuthenticateResponse.java:52: warning: no @return [WARNING] public byte[] getSignature() { [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/util/Util.java:210: warning: no description for @return [WARNING] * @return [WARNING] ^ [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Model/src/main/java/org/xdi/oxauth/model/util/Util.java:212: warning: no @throws for org.codehaus.jettison.json.JSONException [WARNING] public static Map jsonObjectArrayStringAsMap(String jsonString) throws JSONException { [WARNING] ^ [INFO] [INFO] --- maven-site-plugin:2.1.1:site (default-site) @ oxauth-model --- [INFO] [INFO] ------------------------------------------------------------------------ [INFO] Building oxAuth Client 3.1.4-SNAPSHOT [INFO] ------------------------------------------------------------------------ [INFO] [INFO] --- maven-clean-plugin:2.5:clean (default-clean) @ oxauth-client --- [INFO] Deleting /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/target [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/main/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client --- [INFO] Compiling 59 source files to /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/target/classes [INFO] [INFO] --- maven-resources-plugin:2.6:resources (default-resources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] skip non existing resourceDirectory /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/main/resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:compile (default-compile) @ oxauth-client --- [INFO] Nothing to compile - all classes are up to date [INFO] [INFO] --- maven-resources-plugin:2.6:testResources (default-testResources) @ oxauth-client --- [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 17 resources [INFO] [INFO] --- maven-compiler-plugin:2.3.2:testCompile (default-testCompile) @ oxauth-client --- [INFO] Compiling 145 source files to /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/target/test-classes [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/test/java/org/xdi/oxauth/ws/rs/WebKeysTest.java:[14,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/test/java/org/xdi/oxauth/ws/rs/WebKeysTest.java:[14,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/test/java/org/xdi/oxauth/ws/rs/WebKeysTest.java:[14,24] X509CertImpl is internal proprietary API and may be removed in a future release [WARNING] /home/tomcat/.jenkins/jobs/oxAuth/workspace/Client/src/test/java/org/xdi/oxauth/ws/rs/WebKeysTest.java:[47,35] X509CertImpl is internal proprietary API and may be removed in a future release [INFO] [INFO] --- maven-surefire-plugin:2.19.1:test (default-test) @ oxauth-client --- ------------------------------------------------------- T E S T S ------------------------------------------------------- Running TestSuite ERROR StatusLogger No log4j2 configuration file found. Using default configuration: logging only errors to the console. Set system property 'org.apache.logging.log4j.simplelog.StatusLogger.level' to TRACE to show Log4j2 internal initialization logging. Invoked init test suite method ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:53:22 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:22 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: applicationTypeNativeSubjectTypePairwise ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "native", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1344 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1340.58F9.AF2C.E9BC", "client_secret": "0d12ff14-b2dd-43fa-907a-2c05ddaec9f7", "registration_access_token": "1081d309-ba8f-41d3-8581-abe67deadea3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1340.58F9.AF2C.E9BC", "client_id_issued_at": 1530798802, "client_secret_expires_at": 1530885202, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "native", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 1081d309-ba8f-41d3-8581-abe67deadea3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1344 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1340.58F9.AF2C.E9BC", "client_secret": "0d12ff14-b2dd-43fa-907a-2c05ddaec9f7", "registration_access_token": "1081d309-ba8f-41d3-8581-abe67deadea3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1340.58F9.AF2C.E9BC", "client_id_issued_at": 1530798802, "client_secret_expires_at": 1530885202, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "native", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211340.58F9.AF2C.E9BC&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=4d279a23-48a2-4504-b4a1-0e10f820c7d1&nonce=a0f54539-4bd1-457d-828e-47004b4858b2 09:53:47.381 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:59bee033-ee58-40eb-b8c8-5006fd72efd1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211340.58F9.AF2C.E9BC&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=4d279a23-48a2-4504-b4a1-0e10f820c7d1&nonce=a0f54539-4bd1-457d-828e-47004b4858b2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=902012fe-2726-47b6-986c-e0f4b19e9f0a&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExMzQwLjU4RjkuQUYyQy5FOUJDIiwiZXhwIjoxNTMwODAyNDEwLCJpYXQiOjE1MzA3OTg4MTAsIm5vbmNlIjoiYTBmNTQ1MzktNGJkMS00NTdkLTgyOGUtNDcwMDRiNDg1OGIyIiwiYXV0aF90aW1lIjoxNTMwNzk4ODEwLCJjX2hhc2giOiJlOUQ1Sk1UVElPZE5mMnlpcEVyMXdnIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiR2RDRVZzQThoM0lzZ1JmbkJFYUozTkVLTVNLclBPTWR1MmhMbzgyeS16SSJ9.E4dvv-BX08ApBn8JjpHo5n4Dsmg6Ikl9rj-a2qLgm4C7oITyRyN4iw-oI_06BAgc5Jj1eqnW1EmV-8hgEiylyrHSPehiAs-8dUswHlRPJ1zdk8g9dJafVOfSQzmUeUxAdWX59AifP2x7jjS_ZgrRtO02W8trlE4M2czzDMp5rwuW0VphFaQo8pT6tXevbmODekDi5MsPOBOo1z3OkbIgLIwt2HGH-zyf27sGL0p9XluZ_ffJGP-JNwMJkwkSLuyFcECWdqJs-VyOF9XvpciKCaB7paABW3pdNonVBD7XXVFSRC95TsariCEvWqFjP1zCOwfO08SknqIfMM7SuUgDbw&session_id=fa5e7b98-f14f-4dcf-9628-8aa28e9e16ab&state=4d279a23-48a2-4504-b4a1-0e10f820c7d1&session_state=59bee033-ee58-40eb-b8c8-5006fd72efd1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMTM0MC41OEY5LkFGMkMuRTlCQzowZDEyZmYxNC1iMmRkLTQzZmEtOTA3YS0yYzA1ZGRhZWM5Zjc= grant_type=authorization_code&code=902012fe-2726-47b6-986c-e0f4b19e9f0a&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"55b69f22-05f2-455b-b233-884371c43cbd","token_type":"bearer","expires_in":299,"refresh_token":"308b8d9d-1109-4779-baf4-c91d11bc176d","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExMzQwLjU4RjkuQUYyQy5FOUJDIiwiZXhwIjoxNTMwODAyNDExLCJpYXQiOjE1MzA3OTg4MTEsIm5vbmNlIjoiYTBmNTQ1MzktNGJkMS00NTdkLTgyOGUtNDcwMDRiNDg1OGIyIiwiYXV0aF90aW1lIjoxNTMwNzk4ODEwLCJhdF9oYXNoIjoiMUltNzQwYUhzQTJKVVlfSTIxUnE4QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IkdkQ0VWc0E4aDNJc2dSZm5CRWFKM05FS01TS3JQT01kdTJoTG84MnktekkifQ.kpmqKxuieqFcMqHShGbZq7C2LQTc1XuarPvj1pRQkz-9XuE5XlmGjoTErMB1Lm92d2NyIIirFtXvFKDsciOTpDcnb6K-74e_SYe-uo5_dtl5ar-9vWGXbAGypm7LEGY8BSWiUi2nf5AnOFcMC27W46PUG40VSYu5JxnqLM68Q-1al5bvsiNNxWb0b3-U_Dxl6Kr3LPLEtFbbnb8_ZDC0ftcU9M-MbDPLjIXmV_Z8vmUOhsekPDn-oHO8lwD9HgS04bmuXb9bbzPUJl60gjB5Y2ywXux08EBXImVLxPldktKW6q476K_nVpDAIQ_eEOaLy43SVOEhMp2GmUViiALvxA"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMTM0MC41OEY5LkFGMkMuRTlCQzowZDEyZmYxNC1iMmRkLTQzZmEtOTA3YS0yYzA1ZGRhZWM5Zjc= grant_type=refresh_token&scope=address+openid+user_name+profile+email&refresh_token=308b8d9d-1109-4779-baf4-c91d11bc176d ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"d3e479a7-46a2-4717-a7ea-b39616cc3f4e","token_type":"bearer","expires_in":299,"refresh_token":"09439ce0-0bc9-4aab-b1b2-b41f489df271","scope":"address openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer d3e479a7-46a2-4717-a7ea-b39616cc3f4e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 634 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"GdCEVsA8h3IsgRfnBEaJ3NEKMSKrPOMdu2hLo82y-zI","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: applicationTypeNativeSubjectTypePublic ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "native", "client_name": "oxAuth test app", "subject_type": "public", "scope": "openid profile address email user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1209 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CEA9.D526.3815.8AF3", "client_secret": "03bc0d6c-ada2-4636-88a7-db230c004b8f", "registration_access_token": "db849b7e-afc2-4b03-8e65-683bf3e4b2b6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CEA9.D526.3815.8AF3", "client_id_issued_at": 1530798811, "client_secret_expires_at": 1530885211, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "native", "client_name": "oxAuth test app", "subject_type": "public", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer db849b7e-afc2-4b03-8e65-683bf3e4b2b6 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1209 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:32 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CEA9.D526.3815.8AF3", "client_secret": "03bc0d6c-ada2-4636-88a7-db230c004b8f", "registration_access_token": "db849b7e-afc2-4b03-8e65-683bf3e4b2b6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CEA9.D526.3815.8AF3", "client_id_issued_at": 1530798811, "client_secret_expires_at": 1530885211, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "native", "client_name": "oxAuth test app", "subject_type": "public", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21CEA9.D526.3815.8AF3&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8eaa6a28-118c-4dd5-9a16-9fdbf6f7112e&nonce=bdf1f2ff-35c9-4225-b16a-4034b7dc1a7e 09:53:53.419 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9d6353c5-7d6b-4fdb-9cb3-f9b07493568f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21CEA9.D526.3815.8AF3&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8eaa6a28-118c-4dd5-9a16-9fdbf6f7112e&nonce=bdf1f2ff-35c9-4225-b16a-4034b7dc1a7e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=e092a798-363a-4f5d-ac5b-a4ea977537dc&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDRUE5LkQ1MjYuMzgxNS44QUYzIiwiZXhwIjoxNTMwODAyNDE0LCJpYXQiOjE1MzA3OTg4MTQsIm5vbmNlIjoiYmRmMWYyZmYtMzVjOS00MjI1LWIxNmEtNDAzNGI3ZGMxYTdlIiwiYXV0aF90aW1lIjoxNTMwNzk4ODE0LCJjX2hhc2giOiJmLWkyREFHYjM1b1RDVnZqcTFrQmp3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDAhQjFGMy5BRUFFLkI3OTgifQ.lEX9rt-uB_mAzAOHwKtIWo2S0IZYcoEi-XmU_7lINwevKLMtooByTqUyu7mvboX4fMoxQu5cC9QVAO6tVFER_JJDxDOXmZjgFfIek-uLnH447Y2XnVUNoMCHLKLll6w93zQXn-p8xI7Y4i5yNaxzapLEMB-DRVB8Z2upb07gLlKoFj42ZQ-usZBW1Pvecuuq_x2DisM0TkpfYhqD-CCQ3NAcj-Hkr8McPXHuNoVtVWG6nl4hnFjBassKXfbtc1fyHb1UpXbqOP9hub_axjrZhcVEf7sgvee9ZMJ3s0kkjLQEhUxQ-HUk_SORARnoonM2AwqMtEW6da-UA2MfH2Nm5A&session_id=edb26c74-cdb2-40b2-a28f-98d86b9c83dc&state=8eaa6a28-118c-4dd5-9a16-9fdbf6f7112e&session_state=9d6353c5-7d6b-4fdb-9cb3-f9b07493568f ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxQ0VBOS5ENTI2LjM4MTUuOEFGMzowM2JjMGQ2Yy1hZGEyLTQ2MzYtODhhNy1kYjIzMGMwMDRiOGY= grant_type=authorization_code&code=e092a798-363a-4f5d-ac5b-a4ea977537dc&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1074 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"a38d85af-4c1e-4fcf-b27d-a6a7984c6c47","token_type":"bearer","expires_in":299,"refresh_token":"44a90e54-86c4-49c7-a47b-4e713921233a","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDRUE5LkQ1MjYuMzgxNS44QUYzIiwiZXhwIjoxNTMwODAyNDE1LCJpYXQiOjE1MzA3OTg4MTUsIm5vbmNlIjoiYmRmMWYyZmYtMzVjOS00MjI1LWIxNmEtNDAzNGI3ZGMxYTdlIiwiYXV0aF90aW1lIjoxNTMwNzk4ODE0LCJhdF9oYXNoIjoiSDF0NkYzRDQ5dFd5TXl6eUhWSE1DQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IkAhMzhENC40MTBDLjFENDMuODkzMiEwMDAxITM3RjIuQjc0NCEwMDAwIUIxRjMuQUVBRS5CNzk4In0.pPzL_l_93k8YZcermlpe-ydKwoDBJ9wLiEnN1e5YER7mpDXtq1RTqzXdlcvUttSQTGg7foA0AgNioqyz8gSSj92xwV2nV3Bm87F_8vfIU-Y72KHW2-EYeeYdS9Bd3YsoceSJUHPk0Q1rzzFfcNLuWf8nMr1qY-8JKVm3ePs-oUBneeEe8mRNC4umv2vUllKnyZBvDrgcj8YJRMc8Clxprxrkt91TRlpqr2mzq2ehnkqgg6h6xHFcqf5WQKS98JtX0_6u9T_gZn0acAacwroonehRAd8nzvwFOxvLusTPD78DSkRTG47ehwRg0opOsh1KmDdrdIi2E36Jr9hzFiL0hQ"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxQ0VBOS5ENTI2LjM4MTUuOEFGMzowM2JjMGQ2Yy1hZGEyLTQ2MzYtODhhNy1kYjIzMGMwMDRiOGY= grant_type=refresh_token&scope=address+openid+user_name+profile+email&refresh_token=44a90e54-86c4-49c7-a47b-4e713921233a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"6876e3c9-d0fe-45ff-a890-78e91fa7df0b","token_type":"bearer","expires_in":299,"refresh_token":"c99f3299-b894-4591-ae5d-e118fad77399","scope":"address openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 6876e3c9-d0fe-45ff-a890-78e91fa7df0b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 647 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"@!38D4.410C.1D43.8932!0001!37F2.B744!0000!B1F3.AEAE.B798","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: applicationTypeWeb ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4935.1904.197E.48AD", "client_secret": "4d0e72a7-8a6b-4a9c-89ba-8d045529e14e", "registration_access_token": "08895f27-8973-4646-90a8-1355071c2515", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4935.1904.197E.48AD", "client_id_issued_at": 1530798815, "client_secret_expires_at": 1530885215, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 08895f27-8973-4646-90a8-1355071c2515 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4935.1904.197E.48AD", "client_secret": "4d0e72a7-8a6b-4a9c-89ba-8d045529e14e", "registration_access_token": "08895f27-8973-4646-90a8-1355071c2515", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4935.1904.197E.48AD", "client_id_issued_at": 1530798815, "client_secret_expires_at": 1530885215, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ####################################################### TEST: applicationTypeWebFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": ["http://client.example.com/cb"], "application_type": "web", "client_name": "oxAuth test app" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Cache-Control: no-store Connection: close Content-Length: 101 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_redirect_uri","error_description":"Value of one or more redirect_uris is invalid."} ####################################################### TEST: omittedApplicationType ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3850.5098.2784.9F06", "client_secret": "bbebc152-8cc8-4054-a311-ce0b9b2b5291", "registration_access_token": "d3d97ef1-752f-4593-8a98-8b50e1ee1939", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3850.5098.2784.9F06", "client_id_issued_at": 1530798815, "client_secret_expires_at": 1530885215, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer d3d97ef1-752f-4593-8a98-8b50e1ee1939 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3850.5098.2784.9F06", "client_secret": "bbebc152-8cc8-4054-a311-ce0b9b2b5291", "registration_access_token": "d3d97ef1-752f-4593-8a98-8b50e1ee1939", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3850.5098.2784.9F06", "client_id_issued_at": 1530798815, "client_secret_expires_at": 1530885215, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:53:36 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:36 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: authorizationCodeDynamicScopeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email user_name org_name work_phone" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1361 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1915.DBF4.2033.3303", "client_secret": "63d0db09-77a4-4351-8a2c-8b359b8ee0e5", "registration_access_token": "ccff9aec-fc4c-4693-a556-c2a9599c8a80", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1915.DBF4.2033.3303", "client_id_issued_at": 1530798816, "client_secret_expires_at": 1530885216, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name org_name work_phone", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211915.DBF4.2033.3303&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3ac10e7-bff2-4b9f-b584-65a36a52eb72&nonce=3037d584-e02c-4557-85d0-3ab6ab936701 09:53:57.669 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:0b961b1e-53c4-4131-a33f-7257a4374a5b ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211915.DBF4.2033.3303&scope=openid+profile+address+email+user_name+org_name+work_phone&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e3ac10e7-bff2-4b9f-b584-65a36a52eb72&nonce=3037d584-e02c-4557-85d0-3ab6ab936701 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=4ebdd751-fe08-4527-a6d4-6db611a2cc54&scope=address+openid+user_name+profile+work_phone+org_name+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExOTE1LkRCRjQuMjAzMy4zMzAzIiwiZXhwIjoxNTMwODAyNDE4LCJpYXQiOjE1MzA3OTg4MTgsIm5vbmNlIjoiMzAzN2Q1ODQtZTAyYy00NTU3LTg1ZDAtM2FiNmFiOTM2NzAxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODE4LCJjX2hhc2giOiJTMDFjQkMtZGtqUjFXb21COVFiOEJ3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiS1hyb2tfeVU3cWc0Q1JzTHFxUlpvN0Q0akM1SU81TllWREJMQVJOT2xtVSJ9.LBOnEnUJjpLR_iSCADCZc28AN4jzTGd8v6dw0f8ybVsCz3Wg5HcPacFncpoGPQR2WNBz-YzTepj_fJn0mO6lECFk06wdBGUu9will6K8bvqKoWP3wPC0wb9BvXzYwh2_vEOWDY2F1ViHbv9L4TYCmUxGgrJPU_HcA04ib7kGa8JJKIi495BNZfWPBLXSY_aSNZNay8UP_YWKhK5YnSUV00ubBS9d54sarp-h1SN0aDo_ntdSj_xcEZEO-as0mmWx9myI6ORWr-KKgI4gyWNPPWaFynWB6d4GgOxsjs2bm0V919TPF4DqyQNiJuCEAofxWmddBIB9Zi3poof_sUNWOw&session_id=f68c1403-6a23-45e6-bd70-785c0494246a&state=e3ac10e7-bff2-4b9f-b584-65a36a52eb72&session_state=0b961b1e-53c4-4131-a33f-7257a4374a5b ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMTkxNS5EQkY0LjIwMzMuMzMwMzo2M2QwZGIwOS03N2E0LTQzNTEtOGEyYy04YjM1OWI4ZWUwZTU= grant_type=authorization_code&code=4ebdd751-fe08-4527-a6d4-6db611a2cc54&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"b7234bb3-c902-4fcb-9a91-8e6a956463c5","token_type":"bearer","expires_in":299,"refresh_token":"123e120f-7e3f-4b4e-b374-275b2b725911","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExOTE1LkRCRjQuMjAzMy4zMzAzIiwiZXhwIjoxNTMwODAyNDE5LCJpYXQiOjE1MzA3OTg4MTksIm5vbmNlIjoiMzAzN2Q1ODQtZTAyYy00NTU3LTg1ZDAtM2FiNmFiOTM2NzAxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODE4LCJhdF9oYXNoIjoia3hLYzZkdDFNN3BSVUVmTWNmdzZuUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IktYcm9rX3lVN3FnNENSc0xxcVJabzdENGpDNUlPNU5ZVkRCTEFSTk9sbVUifQ.nGVHyeilGE8eRD2ehNCGjMSDlnw172lEyt7x5JGckDz2BuavmX6QUdLVtknztmX3MD1FjGbRA9G59RBCLqEmf27gvyudQ_ZXvdmrmXiLKfa-cS_mlsLK3CgUe0fisQa0BM1jPrwbdauy4Hjlg7uu3KaZVva4Ct4V-2C0tvoPQY55Ky78_2l5LkEj4JJOPjrOen0UADXOdUZw6IzeqUttXR1PAL6K1dQe-io106Trd3ZXZY6zyX6WRvnlbef0IuKL3BuNkwP9DD5rrF45ZwvvvKlsWAlKt1FPC8kyhVunxebzMzslIGT5JG9A-YH9dBv-RvhKP2_6cyA0pQnMmSC-_Q"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer b7234bb3-c902-4fcb-9a91-8e6a956463c5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 690 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"KXrok_yU7qg4CRsLqqRZo7D4jC5IO5NYVDBLARNOlmU","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org","work_phone":["(512) 516-2413"],"org_name":"Gluu, Inc."} ####################################################### TEST: authorizationCodeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email phone user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1347 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!64BB.58AA.F164.235A", "client_secret": "ce36cbfc-74f7-4c86-a1ea-90220f459215", "registration_access_token": "61699ac5-eb50-4bb1-b3e9-6e84a83e6a4d", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!64BB.58AA.F164.235A", "client_id_issued_at": 1530798819, "client_secret_expires_at": 1530885219, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email phone user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2164BB.58AA.F164.235A&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=72c9515f-3507-4cc6-9dc8-f8c30a6fd3d5&nonce=918228b6-2e12-4ad6-abc3-f20eb5941361 09:54:00.670 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:e427c5c8-362a-4ffc-a117-3c1f8013744a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2164BB.58AA.F164.235A&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=72c9515f-3507-4cc6-9dc8-f8c30a6fd3d5&nonce=918228b6-2e12-4ad6-abc3-f20eb5941361 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=82c10068-18be-4dac-9e20-b8ee93c59053&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE2NEJCLjU4QUEuRjE2NC4yMzVBIiwiZXhwIjoxNTMwODAyNDIzLCJpYXQiOjE1MzA3OTg4MjMsIm5vbmNlIjoiOTE4MjI4YjYtMmUxMi00YWQ2LWFiYzMtZjIwZWI1OTQxMzYxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODIzLCJjX2hhc2giOiI1a1NpN3BadE10T3NyUEp2X1lRT1lRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiMmZGNnRReUhPYlYzRGVCYjZxM1RpbmN2czQ4QXpmM3RXWXp6dEQyWkVEVSJ9.YBiNoD5rSDSy9xXwgrJZhoHA6JC7u8c0aVwO6ZI2kNvk_liogU6na8dvMegsQJBxvfzVUjtur3BNNTKjJ0cf4ga6jyNJLP847k8hnu5f6C4QzxQ03pOCx1wy0sQnr64h-IMwk9rTPknbCH1EZNf9CNlEA1EeNjKc9Oot0Za5J3Kh6iysIG_Fr70RoVC73ziPJsZDwyzWW5d8v5AMrWSn-FnA_iEzcWD8Qsm8w5CegRPLkIRlOFnSPae46mOMczgBc83xAFbCCMRzNzME7RyE2TVkDG0srldAKuWR7-bBqO2CGCJmZUfX2oS__TWA-EX4Q5Pgwxi0_11M2ypJ3KQBpg&session_id=ce53f61f-ffda-4893-9926-fd9878df17ad&state=72c9515f-3507-4cc6-9dc8-f8c30a6fd3d5&session_state=e427c5c8-362a-4ffc-a117-3c1f8013744a ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNjRCQi41OEFBLkYxNjQuMjM1QTpjZTM2Y2JmYy03NGY3LTRjODYtYTFlYS05MDIyMGY0NTkyMTU= grant_type=authorization_code&code=82c10068-18be-4dac-9e20-b8ee93c59053&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:43 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"8dcc958f-bca3-4734-b9cb-637fe44fdd6d","token_type":"bearer","expires_in":299,"refresh_token":"24f63be4-6afe-46a2-b6f6-a35ee796f4fd","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE2NEJCLjU4QUEuRjE2NC4yMzVBIiwiZXhwIjoxNTMwODAyNDIzLCJpYXQiOjE1MzA3OTg4MjMsIm5vbmNlIjoiOTE4MjI4YjYtMmUxMi00YWQ2LWFiYzMtZjIwZWI1OTQxMzYxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODIzLCJhdF9oYXNoIjoiSkctRWVqS0ExenFXOEtySXVQWUtSQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjJmRjZ0UXlIT2JWM0RlQmI2cTNUaW5jdnM0OEF6ZjN0V1l6enREMlpFRFUifQ.Yj-682wYZV0DlEdeJMzNNlxwUKHfo7s2BxawxFswyv5RLRet3hp3raikRS20oJqqNElSBG7P-A2R_ggitPxNPdkZKhU0kfIbu-BE-XnG7sT6OTy5SHupIjGJTHEnJIiJmnTjP2SC8xMUA2Ib5KXLlHKnQttKOofVom1oWYGKUOKH2xwDq7DgQdb43qG7rHR38nmzb4X1HUfjZOtPmY8p0huBmDc49ZIL4TL9PgOJ4pgl29jBq3iKHJ7cnsMutCGTN3hE3AUYAlTiA4RbxgAiaoldfo-7hLGL4sUgc_GH6OmI83wi-ZWolNnIh0J6R94ND4YVXyzJkQkQqa2CAaEvxw"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNjRCQi41OEFBLkYxNjQuMjM1QTpjZTM2Y2JmYy03NGY3LTRjODYtYTFlYS05MDIyMGY0NTkyMTU= grant_type=refresh_token&scope=address+phone+openid+user_name+profile+email&refresh_token=24f63be4-6afe-46a2-b6f6-a35ee796f4fd ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 204 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"cf9140f6-4984-4f0c-98cc-36e6cd72e5b2","token_type":"bearer","expires_in":299,"refresh_token":"9b30c813-c096-4610-abb9-f2e2eb0e0610","scope":"address phone openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer cf9140f6-4984-4f0c-98cc-36e6cd72e5b2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 695 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"2fF6tQyHObV3DeBb6q3Tincvs48Azf3tWYzztD2ZEDU","phone_number_verified":true,"phone_number":"(512) 516-2413","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: authorizationCodeFlowLoginHint ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1341 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0998.25BF.AE67.293C", "client_secret": "6bd30cef-6e57-41a7-b353-62fb49f8f3e9", "registration_access_token": "582d3e71-26d5-4fa1-9071-345cd3a999e4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0998.25BF.AE67.293C", "client_id_issued_at": 1530798824, "client_secret_expires_at": 1530885224, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210998.25BF.AE67.293C&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8fcaac9e-5389-4f4a-a71e-037dfb1b95ec&nonce=46ef5e69-c43e-4ab4-b8c5-7391c4b83dc5&login_hint=test_user 09:54:05.648 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:86a390aa-6196-491f-b92e-9bf07caff4b9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210998.25BF.AE67.293C&scope=openid+profile+address+email+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8fcaac9e-5389-4f4a-a71e-037dfb1b95ec&nonce=46ef5e69-c43e-4ab4-b8c5-7391c4b83dc5&login_hint=test_user ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=2fc1ac18-69b7-4c3c-94bd-bbe708f41b13&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwOTk4LjI1QkYuQUU2Ny4yOTNDIiwiZXhwIjoxNTMwODAyNDI2LCJpYXQiOjE1MzA3OTg4MjYsIm5vbmNlIjoiNDZlZjVlNjktYzQzZS00YWI0LWI4YzUtNzM5MWM0YjgzZGM1IiwiYXV0aF90aW1lIjoxNTMwNzk4ODI1LCJjX2hhc2giOiJBWkk2OUhROGxJMXpzcndoSm91VjVRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiR2lYck0xUl9RejhOS2UwWjhVYW1nN3FseUhUcTFPZEpQN3VFcmFIeW95SSJ9.W1_ap4p2CQvi1SJekaGFOXOSW0Z2_oUsF5RB6ccfJqjVAQ5-e0Y1yq5duSch5oocxl4Hyu_OaiQyD4SPOB7pldNP7ZAIVYvUfS_Uwr_42f4RHCPfJcxxHQvWXBkm-HBnxFma_tRywOv9b-F4H3WzFd6hkMGEsyB_5u98Qq1ichCOQrYfupBVb5R1qqAmvujw7Nj5iRtoQwP22q6JOZp5tvQlLUhy_dc3AcV57BHA0CI4rTJPV0eImQrX-Us6C2qfHc2CeDXZrdF8FWKST5ENaYMd-7tJIOKGFI3JywhAm5gQmuscnmYbR5quWjhyNinXrhDrVhSg4n19jhZwfNX8Ow&session_id=163f029b-6156-4fb9-9152-5973d27436b2&state=8fcaac9e-5389-4f4a-a71e-037dfb1b95ec&session_state=86a390aa-6196-491f-b92e-9bf07caff4b9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMDk5OC4yNUJGLkFFNjcuMjkzQzo2YmQzMGNlZi02ZTU3LTQxYTctYjM1My02MmZiNDlmOGYzZTk= grant_type=authorization_code&code=2fc1ac18-69b7-4c3c-94bd-bbe708f41b13&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"f5d57b61-1236-4cfd-9cd6-15d7a3391ebd","token_type":"bearer","expires_in":299,"refresh_token":"54f44713-6407-4cb7-891b-3cac41c6e0a4","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwOTk4LjI1QkYuQUU2Ny4yOTNDIiwiZXhwIjoxNTMwODAyNDI2LCJpYXQiOjE1MzA3OTg4MjYsIm5vbmNlIjoiNDZlZjVlNjktYzQzZS00YWI0LWI4YzUtNzM5MWM0YjgzZGM1IiwiYXV0aF90aW1lIjoxNTMwNzk4ODI1LCJhdF9oYXNoIjoicUhRaUhCaTZ1Q1BiU3J4VkFPYXpCdyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IkdpWHJNMVJfUXo4TktlMFo4VWFtZzdxbHlIVHExT2RKUDd1RXJhSHlveUkifQ.iSRUEw63njV5cSCbreyypx1b65mRagmhpvRQmqMAOlMoVvteL1pGcvD3ZbNPeSNVnqvIYpCnjv6vQUcobfVXFBLBrTZRr1o-NCpD0XFyb_iRtYu_qmoP_ICNcRZ39ZbWZGoIGLBrajSpQTWxfw3Vk8lFZ1c8S3VrWID2PYO-OK3Puu_crI0lS-Zi5-ln_97XAOUXhuV7EvtrTQxYq_jWicrj0ju8atCeJdvEO0a3OfWJy9DvZsPta9y7Igmhfnqp3f0nYS_8DKQ9dxTYP_QjeXTmVyQI8guwhuO41ofgNZhF4brlrHxR4LSEnr8_uFi3jzgUDJYFvmu8gMZFnRUGOQ"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMDk5OC4yNUJGLkFFNjcuMjkzQzo2YmQzMGNlZi02ZTU3LTQxYTctYjM1My02MmZiNDlmOGYzZTk= grant_type=refresh_token&scope=address+openid+user_name+profile+email&refresh_token=54f44713-6407-4cb7-891b-3cac41c6e0a4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 198 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"3095b197-c2a4-42c2-a2cc-7e16b4140d27","token_type":"bearer","expires_in":299,"refresh_token":"01176822-83f5-4544-a5bf-7099dd48da0c","scope":"address openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 3095b197-c2a4-42c2-a2cc-7e16b4140d27 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 634 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"GiXrM1R_Qz8NKe0Z8Uamg7qlyHTq1OdJP7uEraHyoyI","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: authorizationCodeFlowNegativeTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1309 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!721C.7BF5.A091.612A", "client_secret": "a0a27ccc-4126-4176-be48-1813f3083e39", "registration_access_token": "8c8d8ff5-d707-41df-a26f-7b6402c5d3fe", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!721C.7BF5.A091.612A", "client_id_issued_at": 1530798826, "client_secret_expires_at": 1530885226, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21721C.7BF5.A091.612A&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1b41c2c2-1c47-4a17-bbc8-e94fe4f66927&nonce=83d405a7-9698-4f5d-b30f-fb835f21ce2f 09:54:08.003 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:d1f0505a-61a8-420e-8f6a-b43b75b9dbd5 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21721C.7BF5.A091.612A&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1b41c2c2-1c47-4a17-bbc8-e94fe4f66927&nonce=83d405a7-9698-4f5d-b30f-fb835f21ce2f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=14898efc-f700-48d8-90c6-37d6ce19466b&scope=openid&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE3MjFDLjdCRjUuQTA5MS42MTJBIiwiZXhwIjoxNTMwODAyNDI5LCJpYXQiOjE1MzA3OTg4MjksIm5vbmNlIjoiODNkNDA1YTctOTY5OC00ZjVkLWIzMGYtZmI4MzVmMjFjZTJmIiwiYXV0aF90aW1lIjoxNTMwNzk4ODI4LCJjX2hhc2giOiIzRl9PeDU2cVZWejV2bWN6OTdBUTlRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoib0R3VWRnbHZ5cTFITTVDNzVrc3JITVNXUkkxTkk3UW5kNGdrcEVSdTNsbyJ9.Ubbo_Vp1w0TlIPCtVXO9fKQtnYGeLZzup4PgAfg8C1ZXqu_gxRYgkQKEFFGuPtibMdrKXz0zjZi05d9qr4pBqufBUODp1dqmU5AHaxjPPKUBocaAAmV7kh6ZHu4xTdmhm3oTTys4zQRP63PAFMHsdYXRITH__hOFNDjCaZ00ZjL7OOHdiig6uOj3aQLNeRLeXIb1fFqp88LKenOOc4JAOoPxgxmFRIrrpQS4G_HGOJlqx4IyE9er1JSKrvtvDJK-u6MT23gcr_EYNeMhsMhO5zw_1d19zCo6D7nU9hsjEdFM81H6250bnacjYmOkzdLfKc2_P9ECetyb6WxsYOAePA&session_id=86a650fa-ba05-448d-8e1c-a3bd1d426c66&state=1b41c2c2-1c47-4a17-bbc8-e94fe4f66927&session_state=d1f0505a-61a8-420e-8f6a-b43b75b9dbd5 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNzIxQy43QkY1LkEwOTEuNjEyQTphMGEyN2NjYy00MTI2LTQxNzYtYmU0OC0xODEzZjMwODNlMzk= grant_type=authorization_code&code=14898efc-f700-48d8-90c6-37d6ce19466b&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"feae2596-2033-4ef1-a154-e676d0cab310","token_type":"bearer","expires_in":299,"refresh_token":"222b8ecc-05b8-49ed-9cc0-806e8c21443e","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE3MjFDLjdCRjUuQTA5MS42MTJBIiwiZXhwIjoxNTMwODAyNDI5LCJpYXQiOjE1MzA3OTg4MjksIm5vbmNlIjoiODNkNDA1YTctOTY5OC00ZjVkLWIzMGYtZmI4MzVmMjFjZTJmIiwiYXV0aF90aW1lIjoxNTMwNzk4ODI4LCJhdF9oYXNoIjoiYnJhV3dvZUtFSFBEazVGaFNsQTNCZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Im9Ed1VkZ2x2eXExSE01Qzc1a3NySE1TV1JJMU5JN1FuZDRna3BFUnUzbG8ifQ.eo2TxuJnuQP0m88WSml1_YS4MCTDaucKBLMt5i4Y5EEIhlbwBETv8yOLULhiFGglitocUFlaEQgVVGEp9juKXJScZFnZ5y8-KKG6BwRoK4RmYO57wLuhtbR-MMYV3_b7x5qeSyNkp72jumS1fhW0e1uxajKtupx13fBBDKoDh62h2JMisngtLpjFv-KkdnRNdVW42uAHwlvUewo-Cak8RFu063Yg2dGDHC6TyDwZK8dzOTCzxN775yochBQPzh92KTVhgWYAQLcL5IaOdPIc2IZ0IIxGwXDmUqMHKttvE_tYUjDe641cLu45NuY83yEpw_lz25oXQQ4Ir7i2dHQ8eA"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNzIxQy43QkY1LkEwOTEuNjEyQTphMGEyN2NjYy00MTI2LTQxNzYtYmU0OC0xODEzZjMwODNlMzk= grant_type=refresh_token&scope=openid&refresh_token=222b8ecc-05b8-49ed-9cc0-806e8c21443e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 166 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"bbd2388d-94ee-4e1b-b34c-39ab00d681ea","token_type":"bearer","expires_in":299,"refresh_token":"ff66461b-0cfe-429a-8b2b-d7413a56370d","scope":"openid"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer bbd2388d-94ee-4e1b-b34c-39ab00d681ea ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 53 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"sub":"oDwUdglvyq1HM5C75ksrHMSWRI1NI7Qnd4gkpERu3lo"} ####################################################### TEST: authorizationCodeFlowWithOptionalNonce ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EC1D.077E.D5B5.A96E", "client_secret": "2b44d0b0-b65d-4766-97ce-c898c6f1829b", "registration_access_token": "55bb3823-217d-454e-8f30-51d013b2d682", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EC1D.077E.D5B5.A96E", "client_id_issued_at": 1530798829, "client_secret_expires_at": 1530885229, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21EC1D.077E.D5B5.A96E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=ecfb1966-1213-40d7-a04e-2c45f6443e42&nonce=5b7d6933-143a-48f7-833c-8bce636ec258 09:54:10.729 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:7eafa7f5-b1a4-4dc7-b0c5-4475c2792c02 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21EC1D.077E.D5B5.A96E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=ecfb1966-1213-40d7-a04e-2c45f6443e42&nonce=5b7d6933-143a-48f7-833c-8bce636ec258 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=fd35d014-693a-4d7a-8c84-30ea57e59ae7&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFFQzFELjA3N0UuRDVCNS5BOTZFIiwiZXhwIjoxNTMwODAyNDMxLCJpYXQiOjE1MzA3OTg4MzEsIm5vbmNlIjoiNWI3ZDY5MzMtMTQzYS00OGY3LTgzM2MtOGJjZTYzNmVjMjU4IiwiYXV0aF90aW1lIjoxNTMwNzk4ODMxLCJjX2hhc2giOiJfdGlkQUZjelVYWUpneXNtaEloS1pRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiQjdaOVZmWlZPVlVvWUhIcWpBLUZ5MDlUM3YtZENULTcxa0NFel9VZE9KTSJ9.mo_jW2DbcqSX0boEhikiHurO8RSYfPio--fXlXQjIwkdGD5RPgkxaQhiJjwi9EB_odKjck4ovMkdYqMJUykmOWeYUDqBfLBPv2IOWdEGxg93EjSSEpQcAUdu9RCVEdAJaYzdss80gJ_7OwbQycLsczHQ9HVRsimOc1PCThjtjSrSg4ExJbj0rtCRV4BxEOxcRvkrF2r6AR9EfVBZb4rvVLOWmK9dd-Yfu1BMVAFg8spqju6BRCQKUGDcim8MNVvfx70dkp00g0s7xwW8VPk3DV9YI5abOXVbIXMlMS7m5ejAMOoPFRQcaEt196jZQ9Xb53bQwB1TXg_07cuzsNpDHw&session_id=458bd6f7-2b4f-4e3d-9c2e-cca150fda8cb&state=ecfb1966-1213-40d7-a04e-2c45f6443e42&session_state=7eafa7f5-b1a4-4dc7-b0c5-4475c2792c02 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRUMxRC4wNzdFLkQ1QjUuQTk2RToyYjQ0ZDBiMC1iNjVkLTQ3NjYtOTdjZS1jODk4YzZmMTgyOWI= grant_type=authorization_code&code=fd35d014-693a-4d7a-8c84-30ea57e59ae7&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"6bbe8d7b-9e46-4d16-adee-c177eb73f67a","token_type":"bearer","expires_in":299,"refresh_token":"0fcc4898-af19-495b-91f0-e7b537e53984","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFFQzFELjA3N0UuRDVCNS5BOTZFIiwiZXhwIjoxNTMwODAyNDMxLCJpYXQiOjE1MzA3OTg4MzEsIm5vbmNlIjoiNWI3ZDY5MzMtMTQzYS00OGY3LTgzM2MtOGJjZTYzNmVjMjU4IiwiYXV0aF90aW1lIjoxNTMwNzk4ODMxLCJhdF9oYXNoIjoidGdGaWRUS2xQeDVuRWl6UFkxNVdIQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IkI3WjlWZlpWT1ZVb1lISHFqQS1GeTA5VDN2LWRDVC03MWtDRXpfVWRPSk0ifQ.WEyrph8GZzhaFB8fOT5ff56enxDx1woiZcdevk5UoRVTc3W8w1UE_HJNkZ7XPtj5iGbXzz4Cs5Qm2b-qv7Kn8SunIoo5I_UCth6KDI3Yc8FPBqa94Zg_Xf6aU-q_x-JfNPqBP_fTgvLfCN9MlVEvH80SFqZSns9LjWeWJZZjBDDtJPq4lVcLHrNtx0cikw9-jmELb3MCU3qTnBzxDQl3ERymhnJN-4ce290CA9OlM17-CTA__1TAuile9j5CYltH4rv_NGH8MzEf2Rf-8_9NhLwHNpQpHlXFZkBQRi-ofFbdxH4duxR10uhKyNYlOhrzdNFy-nZWrm9hd8E33c2MfQ"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRUMxRC4wNzdFLkQ1QjUuQTk2RToyYjQ0ZDBiMC1iNjVkLTQ3NjYtOTdjZS1jODk4YzZmMTgyOWI= grant_type=refresh_token&scope=address+openid+profile+email&refresh_token=0fcc4898-af19-495b-91f0-e7b537e53984 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 188 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"6dd74185-0112-4526-ab04-dafbe7553724","token_type":"bearer","expires_in":299,"refresh_token":"7c63fdeb-f0c1-4ef9-acbf-a6a331b141f7","scope":"address openid profile email"} ####################################################### TEST: authorizationCodeWithNotAllowedScopeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1341 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2782.7319.193A.FDCC", "client_secret": "9188f522-dc5e-4863-b7b1-6fc433409fc2", "registration_access_token": "7f42b50a-833d-4770-8984-117f7a54b047", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2782.7319.193A.FDCC", "client_id_issued_at": 1530798831, "client_secret_expires_at": 1530885231, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212782.7319.193A.FDCC&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b366c6ed-8229-4020-b0b9-89494f737353&nonce=9ce585c0-9ceb-40fe-b834-ad5a72c21941 09:54:13.119 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9270ea3d-6e39-400d-973b-fa0d4503fdea ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212782.7319.193A.FDCC&scope=openid+profile+address+email+user_name+mobile_phone&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b366c6ed-8229-4020-b0b9-89494f737353&nonce=9ce585c0-9ceb-40fe-b834-ad5a72c21941 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=ae969d4f-9b36-4978-aeba-7cb096d7076e&scope=address+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyNzgyLjczMTkuMTkzQS5GRENDIiwiZXhwIjoxNTMwODAyNDMzLCJpYXQiOjE1MzA3OTg4MzMsIm5vbmNlIjoiOWNlNTg1YzAtOWNlYi00MGZlLWI4MzQtYWQ1YTcyYzIxOTQxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODMzLCJjX2hhc2giOiJ2VnFPSF9IS2lucXhQcDZ6anNFYXZRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiNkE3aVZHTnk3bVRBYXZsaWpfUUllS1EwSHZtaVJvZnJZcFlsb25CR3Y2OCJ9.dU6xtkA7N6ZTSvij5wUghquOTsf22cUIcTQev0IIJrA36Qx020G8CFT_iQYyW8y9aXDPMXqKBWTVdnfear4fC1xBp8DhX4bXy7WK2VvaTCiwiRLzPgxCjQ_JdpvjK-MsUC8XhiJ8ev33jWd1CgJ-PZI4WKkUMx1ctrwhTxRag0mF8yKguS-ztTfOBynz3nBPS0Gn5tZNLpM-LsFGlQpjg0kgm0KKTf5B1pXUN4RR4oGlp1gELR7mnRI7oNjdBUNcaaOb1Ud9jUbEtYLFwTxhs4efzDJEqH6lw0T9JOnw99mBHJMuBMa1kqJpCgNTFq5Q8i9U6qTbTZC7YA9AS6SutA&session_id=df15484b-ed65-4e4c-b0fe-90a721177b7d&state=b366c6ed-8229-4020-b0b9-89494f737353&session_state=9270ea3d-6e39-400d-973b-fa0d4503fdea ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMjc4Mi43MzE5LjE5M0EuRkRDQzo5MTg4ZjUyMi1kYzVlLTQ4NjMtYjdiMS02ZmM0MzM0MDlmYzI= grant_type=authorization_code&code=ae969d4f-9b36-4978-aeba-7cb096d7076e&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"77c0895c-a00c-4024-8c06-dd01a4fac932","token_type":"bearer","expires_in":299,"refresh_token":"3c546276-d0ce-4f8a-b91e-6d6e8cf6b23f","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyNzgyLjczMTkuMTkzQS5GRENDIiwiZXhwIjoxNTMwODAyNDMzLCJpYXQiOjE1MzA3OTg4MzMsIm5vbmNlIjoiOWNlNTg1YzAtOWNlYi00MGZlLWI4MzQtYWQ1YTcyYzIxOTQxIiwiYXV0aF90aW1lIjoxNTMwNzk4ODMzLCJhdF9oYXNoIjoiWWhWRkN6YUw3UmJDaUxKRl82MWZDZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjZBN2lWR055N21UQWF2bGlqX1FJZUtRMEh2bWlSb2ZyWXBZbG9uQkd2NjgifQ.pluzDW7ClObbPosMdTlGMh54Q_vGmMMZCkUQVDWds2eHWYyDIg3NpiVkOm3j95VdvXNJu3vM1UsFrGXcb0oMwXLr294Ik-L1b4xDLL0-IZI6NWsixnLhtXhnqNTUopR41D5uBMYtCvHjTI1lgbyzrdt5nH1rhkSDHTE6dqVcR2xLHxvtV410RQsBphmJUWWrYBMbC5ygeLZGbDr0UtVmky_9N9l2Mu7_uKnnEbBhgJLx34ZvIPxN_xKUIHL474A7Hyt6h4xpSN9tMiX6_HrFipZBYTzC0E3NaTiKS4IxP077k1Lo1Nd-DYdbBCZtpOqTp0AMJEmCdN25rB1IPygnzg"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 77c0895c-a00c-4024-8c06-dd01a4fac932 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 634 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:53:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"6A7iVGNy7mTAavlij_QIeKQ0HvmiRofrYpYlonBGv68","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: revokeTokens ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D9B2.4E3C.46AD.E49A", "client_secret": "d7c5a00d-5e24-4b18-89a2-da0ec3555f60", "registration_access_token": "659e2c76-ba25-4a96-a4c5-5556e6201cd9", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D9B2.4E3C.46AD.E49A", "client_id_issued_at": 1530798834, "client_secret_expires_at": 1530885234, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 659e2c76-ba25-4a96-a4c5-5556e6201cd9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D9B2.4E3C.46AD.E49A", "client_secret": "d7c5a00d-5e24-4b18-89a2-da0ec3555f60", "registration_access_token": "659e2c76-ba25-4a96-a4c5-5556e6201cd9", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D9B2.4E3C.46AD.E49A", "client_id_issued_at": 1530798834, "client_secret_expires_at": 1530885234, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21D9B2.4E3C.46AD.E49A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=919ff1ae-5ea6-40b9-abf4-eb5d011acee7&nonce=41d346a6-da9a-4ec1-a393-9cdeda808403 09:54:15.447 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:94b11c29-5831-4760-b40a-f598d6d14998 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21D9B2.4E3C.46AD.E49A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=919ff1ae-5ea6-40b9-abf4-eb5d011acee7&nonce=41d346a6-da9a-4ec1-a393-9cdeda808403 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=445ef5a7-ac63-4f87-bcf5-ad4cb835238f&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFEOUIyLjRFM0MuNDZBRC5FNDlBIiwiZXhwIjoxNTMwODAyNDM2LCJpYXQiOjE1MzA3OTg4MzYsIm5vbmNlIjoiNDFkMzQ2YTYtZGE5YS00ZWMxLWEzOTMtOWNkZWRhODA4NDAzIiwiYXV0aF90aW1lIjoxNTMwNzk4ODM1LCJjX2hhc2giOiJVUHJFQmxLQ180dDg3MTZreERXbUd3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiV3M2TWFiZnlOMDNlUmhuVUM1OGp2Y2gxRU5kcmNiT3N4VW9yVHNkZU9qMCJ9.BcpFSFUTUqnzKU3xYj78iseglOXJyzo07BNi0K2n2G1vvYav3RiVbnYTrNI8BB8aEGWkchMpOaEtWa04XvFdgW-irkE2D451OnuCDQ4HvU40aoMGS8HfxOXp4lft4-js6de4pim4izwhUBvxB0heSDflmkwtf43s3R5bm_aHtYT0g2Cxof66uH-pcHvyU__zLBv9Zf1y9-xAWWp8ECjY--y9_7EJGTNeUWexHr0_o0CHJxNetpiZl_9z5zFa50DVdveoSpzaYNx6k0yD7rkgJX43HASLSQYjsriX5HHZxsb9U2lOBGxhSrZa3L1--Wp5VmdQHvjKpQTM7Rem1alkTg&session_id=25c891ba-13a8-43d9-a21b-73c54ca40e76&state=919ff1ae-5ea6-40b9-abf4-eb5d011acee7&session_state=94b11c29-5831-4760-b40a-f598d6d14998 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRDlCMi40RTNDLjQ2QUQuRTQ5QTpkN2M1YTAwZC01ZTI0LTRiMTgtODlhMi1kYTBlYzM1NTVmNjA= grant_type=authorization_code&code=445ef5a7-ac63-4f87-bcf5-ad4cb835238f&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"30638d0b-1cab-4f5c-9950-fcecb02610b4","token_type":"bearer","expires_in":299,"refresh_token":"6612cfb9-c295-4e1a-adfa-18772718a2c2","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFEOUIyLjRFM0MuNDZBRC5FNDlBIiwiZXhwIjoxNTMwODAyNDM2LCJpYXQiOjE1MzA3OTg4MzYsIm5vbmNlIjoiNDFkMzQ2YTYtZGE5YS00ZWMxLWEzOTMtOWNkZWRhODA4NDAzIiwiYXV0aF90aW1lIjoxNTMwNzk4ODM1LCJhdF9oYXNoIjoiTVZZaGZDWERWMWpFaHlxdnNnZEF6QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IldzNk1hYmZ5TjAzZVJoblVDNThqdmNoMUVOZHJjYk9zeFVvclRzZGVPajAifQ.LIZG_iS-CwbTdia_vPKNXgrdubk3B2iUAzBo4knl8MplSyimJ5POWyG6K9yQG_CGH0DVMubqET61S4yr9l5F9we2eOHAmqiU9KEBw-BcGUXFIC4mU89Cb7eDvhFq0x-Zb8P5snhGXwaSvwSrNjc0guCd4zLNU1oA8Ve6h0RhtkvzFV1AyS3ldvV2QN6rt2ynu5bgc2QONMcOCauCDh0sQbiDV-SfI1yy7qhLQslf-826PN0mkembU-DzBbzAfAEsLiSrWTpJ3_6ucFQub5OnUm2N-hGVmQYiSx2RaYKapkPk02O8WGf_qUdllBtzf8-SerhMdt9S2sH-drUvo3vONQ"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRDlCMi40RTNDLjQ2QUQuRTQ5QTpkN2M1YTAwZC01ZTI0LTRiMTgtODlhMi1kYTBlYzM1NTVmNjA= grant_type=authorization_code&code=445ef5a7-ac63-4f87-bcf5-ad4cb835238f&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Cache-Control: no-store Connection: close Content-Length: 213 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_grant","error_description":"The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client."} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRDlCMi40RTNDLjQ2QUQuRTQ5QTpkN2M1YTAwZC01ZTI0LTRiMTgtODlhMi1kYTBlYzM1NTVmNjA= grant_type=refresh_token&scope=address+openid+profile+email&refresh_token=6612cfb9-c295-4e1a-adfa-18772718a2c2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Cache-Control: no-store Connection: Keep-Alive Content-Length: 213 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_grant","error_description":"The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client."} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 30638d0b-1cab-4f5c-9950-fcecb02610b4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 203 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_token","error_description":"The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource."} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!ED4F.04E9.140C.C047", "client_secret": "4d9be92b-8085-4833-9dfb-68f886dc6cbe", "registration_access_token": "23d1f493-32a8-4572-83ac-d549e3e134fd", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!ED4F.04E9.140C.C047", "client_id_issued_at": 1530798836, "client_secret_expires_at": 1530885236, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21ED4F.04E9.140C.C047&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b1c08722-f7e1-4465-8af7-ec95c6ed09f4&nonce=068b1c04-4fd9-4b72-bfd1-15ad1b415ef7&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=5abf57c6-038c-4a5c-9e4b-3263154c2bfe&scope=address+openid+profile+email&session_id=45c06290-f96e-444e-8954-de16a6f7150e&state=b1c08722-f7e1-4465-8af7-ec95c6ed09f4&session_state=7cce512f-35ee-47d5-a2a2-3d2e98d546f7 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3F15.97C1.7C77.2A51", "client_secret": "d4d836ea-ef36-478a-8e5c-1e369d84ee68", "registration_access_token": "efe691e6-a195-4ba4-a273-ac09a4df0091", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3F15.97C1.7C77.2A51", "client_id_issued_at": 1530798837, "client_secret_expires_at": 1530885237, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213F15.97C1.7C77.2A51&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=81455e1c-5be2-4379-ab04-6458a9e52cff&nonce=5bfb89b6-d9b0-4345-a8e9-f7da337bec6b&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=e46160a6-a264-4df2-b93c-d4e145bbace3&scope=address+openid+profile+email&session_id=1a8212ee-7890-4b41-9e48-4acd94213429&state=81455e1c-5be2-4379-ab04-6458a9e52cff&token_type=bearer&session_state=7c3bc180-8f83-4efc-8180-bac0e9f8466b&expires_in=299 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4B5D.BA08.90DA.C690", "client_secret": "461a6154-cef3-44ed-9f69-24bed176d4c7", "registration_access_token": "edce220f-b20f-4e4b-b75e-65e19c5c8b99", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4B5D.BA08.90DA.C690", "client_id_issued_at": 1530798837, "client_secret_expires_at": 1530885237, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214B5D.BA08.90DA.C690&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b28167d2-e091-42fb-bd0e-1204c50560ec&nonce=ab01ac85-226f-4e26-b61a-4d8c2421e510&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0QjVELkJBMDguOTBEQS5DNjkwIiwiZXhwIjoxNTMwODAyNDM3LCJpYXQiOjE1MzA3OTg4MzcsIm5vbmNlIjoiYWIwMWFjODUtMjI2Zi00ZTI2LWI2MWEtNGQ4YzI0MjFlNTEwIiwiYXV0aF90aW1lIjoxNTMwNzk4ODM3LCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJnRGJna1hkTUp2R05hQWVXVENtWTZUM3kzZTZvY0VFTzJTb0Y2Tm1UTGdJIn0.tIIqHYkBmt34Axi-qQkP8LRxZr1Rl_a9RogGTEtMcQVKPOa7yFlvixXzki5vcbr-aP4t00PssXhDfCyjxaNDCQo0cKq2KOoBip-_A9cSF_YvO4lrvmRI-dITgzNrmwjPKd04AJyZ3eBGXpL7iNcTfwHFdn3xF7c6dPyNy4mSB7DAF-VM4cqwEuCK_Gw4hhkRttOCZo9y8ZPQjxyWFQuFB82sbt_07-vIUmgrsoF0p-MZg27qM4aCSV11S-jIV6JCECQCqFKPNsRex2_G8t6OOIj8hHqPnwG9qJFpzih_gxfMB7dBrQ23Pphi_dNPOH1EZ-qCWQ6owtcroo2civVUcA&session_id=ef292a49-5a6b-4647-8b7a-f7908a0f3ae9&state=b28167d2-e091-42fb-bd0e-1204c50560ec&session_state=868d0c7c-1584-4409-acd7-8eb7cea0e39e Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5B0D.B2DA.5968.0486", "client_secret": "b119ccec-d1ef-4719-9102-4ac3dc4f65dd", "registration_access_token": "aed8af50-c474-45f2-97f0-0d7d198bc1e7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5B0D.B2DA.5968.0486", "client_id_issued_at": 1530798837, "client_secret_expires_at": 1530885237, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%215B0D.B2DA.5968.0486&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=007279f1-5036-4353-be6e-e9d2aca51e44&nonce=4de356a8-6d04-42f1-8343-cf0d20ecd277&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=a2c324c0-a6aa-4850-b748-7e4d4c3b4631&code=685d4ca1-60a2-4a7c-bd6e-d3510acbe744&scope=address+openid+profile+email&session_id=0853a864-a05f-4537-9639-f9e5d0b22220&state=007279f1-5036-4353-be6e-e9d2aca51e44&token_type=bearer&session_state=4a9253e9-205c-41f0-b6a0-cddae628d525&expires_in=299 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4CAB.32FA.7148.05E6", "client_secret": "9281c61b-2aae-4642-ac8a-d3b52644e774", "registration_access_token": "079fa18c-971a-4145-a6b4-128f760daf58", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4CAB.32FA.7148.05E6", "client_id_issued_at": 1530798837, "client_secret_expires_at": 1530885237, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214CAB.32FA.7148.05E6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=18deb47c-aecd-4ef5-ac92-347577f94a72&nonce=b780f430-d652-4f4d-8d65-172c18bd6712&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:57 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=d20c92d6-3976-4864-958d-f2a1fcd34765&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0Q0FCLjMyRkEuNzE0OC4wNUU2IiwiZXhwIjoxNTMwODAyNDM4LCJpYXQiOjE1MzA3OTg4MzgsIm5vbmNlIjoiYjc4MGY0MzAtZDY1Mi00ZjRkLThkNjUtMTcyYzE4YmQ2NzEyIiwiYXV0aF90aW1lIjoxNTMwNzk4ODM4LCJjX2hhc2giOiJBY0NNSHZtZnhoamUxR25NQzdZanhBIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiRFRBbVExTEF6Q2dYNEhGeFFHNXBLZTN0MDhFTUE2aEp3OWpvZ1VodWMwbyJ9.HPXSyT4MoU-t5nkGFfiCDxmgrSEPLnCEO9iMlBla8P4o2kZsRl10haubpYf8pYviYIkNMe9gLQ5eg75gh60QneWDo73rpmqwulfuazNuQfRMfqZazr5R8sFvWZM_mRryehR12FKoL3rlTKLt_qsZaAbr4cSKEcDvQXCyJcAyJJ80N0W5iePJ-0o0TLyPJqVYp3gDlBHPbzKHkCkiyfUjV-AJiMTAHwzckLGPkh6JTM7OI0i9G88hvyZi_u7gRm9Za3qj5gf94JJG-qLKiVjudNlqMh0TaEMPr0kPDBgQJGhlOaROdFV4EF1A1hj2vHPiHiynMuVrIVFt8_zQAPyT7A&session_id=f7ce2c64-6b10-47c1-92ef-d78c2ec8c61e&state=18deb47c-aecd-4ef5-ac92-347577f94a72&session_state=76d1789b-bd4b-47c3-8485-b4031c641385 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FAB4.1445.CEB8.DA37", "client_secret": "a3691515-639c-40a0-a298-d543cd22f8d6", "registration_access_token": "3f7b8b1f-812b-4167-827b-2b9134c7720e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FAB4.1445.CEB8.DA37", "client_id_issued_at": 1530798838, "client_secret_expires_at": 1530885238, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FAB4.1445.CEB8.DA37&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=0aefef96-d66e-4a6b-9aca-76f170596386&nonce=a0099463-f68f-4944-9866-1542ea9b3858&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=7a58f4ad-acca-415b-9ad0-4e1c97d1fca9&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFGQUI0LjE0NDUuQ0VCOC5EQTM3IiwiZXhwIjoxNTMwODAyNDM4LCJpYXQiOjE1MzA3OTg4MzgsIm5vbmNlIjoiYTAwOTk0NjMtZjY4Zi00OTQ0LTk4NjYtMTU0MmVhOWIzODU4IiwiYXV0aF90aW1lIjoxNTMwNzk4ODM4LCJhdF9oYXNoIjoiY0pwWDNDdkZqSXprZVBZWXF6YTdXUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjdMZE10UjdORlN3U0hpWGZFYU9GRmtLTXg2ZGx6eFJFbHV3cmpiMlZCZFkifQ.rH77NCYldlfxXyKJDj8L8G0e8BOsScczSdNq7dKLOSVtDqi9d3d04kRy0ikl9TQI-YDVKAUnSjkoGFKEiiYyyOvJPaMnTXeZGcp6xTOKxUs7Sl2APofIZkdGnMqRveY-4lJ5B467A2ccHiriMyT7b2DC8tKhTVpffKWJTbMkeGRHylikW-WJ09m9w5TF-BFn9jU6XO9mta3jkbjfqmc-RR9JwzLdGollfFvtDanOl3Irl5PK0DSnhxcT2lulH7kZkRwa6i0Vvn9KJY9FgAe0uaSnb2hJcwrueC9eozwwhWH7D1iPZ0AexIZKEWDzfV5iThYD-OBkqCdHCC7OFKfgYg&session_id=151c2f39-2ee5-4e48-a082-45dd936f7cff&state=0aefef96-d66e-4a6b-9aca-76f170596386&token_type=bearer&session_state=914d733e-baad-494c-a3cb-0375cc7e5179&expires_in=299 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: AuthorizationResponseCustomHeaderTest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!580A.48D7.2937.351D", "client_secret": "4066f9da-2818-4b10-befa-eed97746285b", "registration_access_token": "49434b7b-c80a-4dfd-bed0-dac67048488b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!580A.48D7.2937.351D", "client_id_issued_at": 1530798838, "client_secret_expires_at": 1530885238, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21580A.48D7.2937.351D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=3be15457-6236-4c9f-896a-578a9c604a27&nonce=82aa7f37-58e6-4d6e-a94d-8889f5f3f847&prompt=none&custom_response_headers=%5B%7B%22CustomHeader1%22%3A%22custom_header_value_1%22%7D%2C%7B%22CustomHeader3%22%3A%22custom_header_value_3%22%7D%2C%7B%22CustomHeader2%22%3A%22custom_header_value_2%22%7D%5D ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 CustomHeader1: custom_header_value_1 CustomHeader2: custom_header_value_2 CustomHeader3: custom_header_value_3 Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=1233795c-173f-4f58-9091-2dcf99305e28&code=9a894a73-92d1-4e24-8502-86870706f18d&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE1ODBBLjQ4RDcuMjkzNy4zNTFEIiwiZXhwIjoxNTMwODAyNDM4LCJpYXQiOjE1MzA3OTg4MzgsIm5vbmNlIjoiODJhYTdmMzctNThlNi00ZDZlLWE5NGQtODg4OWY1ZjNmODQ3IiwiYXV0aF90aW1lIjoxNTMwNzk4ODM4LCJjX2hhc2giOiJ5emxsU1dMN2toZkdDUnktbmg5azhnIiwiYXRfaGFzaCI6Ii1RVjN0NXFNeXM5X1NBdWxQUVExSVEiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiI5THNoT0tfc1c3b0cwYzhWSW16QUNfekZ6ZTRyV1FZLUVDdXp1bmRwRldrIn0.ls1yuWaopACEJVdBj2V8xcvwFhkIqUVuHfRDNhmmjFY9xVHbcxkbkIo-Rlaz1QvE59ZZ8pC_ofeqbI0YUhHajfMs0Wiozh1FYychLpxiGUXRnVMtA8PereJJsT5_UL-lqaMARpf5Ej0_PH6Cgc52SEqI0gWxIQNXKLShk_T1fs7nFfm1nSNb147JSBEhVcoInxbyZWXfBaBUCX-_Bt_EjnDeaI6G1GzpEfJBshjwTbPngPLq9eMePv5BakcKptHX6KzDdpFEhEFZDiiae5KKGthRdNuSPU5DLbu6y61u4P-ooWGC23XgCjdXX3fV9x4hXvsrY3OUVS4VeCF4KnRc0Q&session_id=c9a701d8-da64-48fd-a26b-3310a6931a1f&state=3be15457-6236-4c9f-896a-578a9c604a27&token_type=bearer&session_state=9efb55af-a268-455d-b8c8-a4a25199fd3b&expires_in=299 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: defaultResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:53:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0067.8C46.7F26.77CA", "client_secret": "43c115c2-8e24-499e-bdba-3e76ba546e3e", "registration_access_token": "1b7dea9d-d5f5-4326-ad65-afe5c4570466", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0067.8C46.7F26.77CA", "client_id_issued_at": 1530798838, "client_secret_expires_at": 1530885238, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210067.8C46.7F26.77CA&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9abd5b7f-3e0d-421f-8b0d-3ed51d5fbf96 09:54:20.067 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:c95bc432-150d-4406-a6d8-4d37360e40ad ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210067.8C46.7F26.77CA&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9abd5b7f-3e0d-421f-8b0d-3ed51d5fbf96 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=3e2f3bd5-239a-48f9-b834-a394c4e2040a&scope=address+openid+profile+email&session_id=ca3a56d9-6f4e-41d1-a24d-be4d99c05bac&state=9abd5b7f-3e0d-421f-8b0d-3ed51d5fbf96&session_state=c95bc432-150d-4406-a6d8-4d37360e40ad ####################################################### TEST: defaultResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:00 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8AD7.8E41.CCA8.B2EC", "client_secret": "9ed82b2e-8cc3-44f7-b84a-d790618ee3bf", "registration_access_token": "6c63d005-9c7c-45b6-a145-5e5528b930ad", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8AD7.8E41.CCA8.B2EC", "client_id_issued_at": 1530798840, "client_secret_expires_at": 1530885240, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218AD7.8E41.CCA8.B2EC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=a2da0f06-bdc0-46be-bf90-02ebf4cf3915&nonce=ffab5f30-7df3-4b6e-ae45-9d39e0a3a6ea 09:54:21.948 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:10b37668-2bb0-4dd6-abf8-0b540b5a8852 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218AD7.8E41.CCA8.B2EC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=a2da0f06-bdc0-46be-bf90-02ebf4cf3915&nonce=ffab5f30-7df3-4b6e-ae45-9d39e0a3a6ea ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=9f93d7b7-e6c2-4385-8716-ea831ab2f73b&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4QUQ3LjhFNDEuQ0NBOC5CMkVDIiwiZXhwIjoxNTMwODAyNDQyLCJpYXQiOjE1MzA3OTg4NDIsIm5vbmNlIjoiZmZhYjVmMzAtN2RmMy00YjZlLWFlNDUtOWQzOWUwYTNhNmVhIiwiYXV0aF90aW1lIjoxNTMwNzk4ODQyLCJjX2hhc2giOiJqY1dOcmRIZnk0bEhQY3hCSTl6dHR3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoicE9jYzgxNnpaRzdGWG5LclNFbU9fVllDUlF0RWpqR0dxWUo3M0tHZDZxYyJ9.RMZt9OxVMz1iU8T_L6M-1n9NFz877X1k9eDJpm1DqwHgVN1-FXn-7wW6xn2AjTDeLssnS4MgZk6qydLQrwoHsMLsZzs49ZTjPQnfuCpyUNrmU_02L4lXyhqyax4VDKHw4LFJY70WX7eRQeoOKaeu5friHRC9IS-u-V5qWWyZVDbrfz51iqihgQV1abY_4c1PlLyhKN9YnAZWVCg8lfZnAVyPVxei6s0tC368-Id9Ynt53AHKwLIUpaDScG57zcgHYuHuDhqFQrpGedbv0e1-84ZsQ6CFCLU20cxZQ0DxEoZ8oneztk0GlERaLPMzHdMU8M3zSkmYA61BAnGXPzB7-A&session_id=bf7a93cd-5836-443e-a7a6-25ea51ef157a&state=a2da0f06-bdc0-46be-bf90-02ebf4cf3915&session_state=10b37668-2bb0-4dd6-abf8-0b540b5a8852 ####################################################### TEST: defaultResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:02 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CDA3.4294.13BC.9183", "client_secret": "c474893a-43e7-49aa-93fa-60da6894c4a9", "registration_access_token": "8db57fc7-80ac-4ca2-8436-c46baf7044f7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CDA3.4294.13BC.9183", "client_id_issued_at": 1530798842, "client_secret_expires_at": 1530885242, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21CDA3.4294.13BC.9183&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=883bd0d1-9b37-4df4-96b6-ccff6a32aaa6&nonce=99484f89-3985-4fe9-9414-fc12a9014000 09:54:23.897 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:61453167-81c6-481c-8bdd-c96633fc1bb9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21CDA3.4294.13BC.9183&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=883bd0d1-9b37-4df4-96b6-ccff6a32aaa6&nonce=99484f89-3985-4fe9-9414-fc12a9014000 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=0c6a9e2a-32b5-4f11-9700-7a4b48237b66&code=1b7034be-4f2f-4be7-a503-0964966d6a4e&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDREEzLjQyOTQuMTNCQy45MTgzIiwiZXhwIjoxNTMwODAyNDQ0LCJpYXQiOjE1MzA3OTg4NDQsIm5vbmNlIjoiOTk0ODRmODktMzk4NS00ZmU5LTk0MTQtZmMxMmE5MDE0MDAwIiwiYXV0aF90aW1lIjoxNTMwNzk4ODQ0LCJjX2hhc2giOiI0WThUMFZDWlUybjZlSXVuUW1xMEhRIiwiYXRfaGFzaCI6IjhnWXBrZ0RWTFZaUjJTNlFLd1ZCMkEiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJxOUNnMEc5di16aHA0NnlLNE5kUENGQmhWMEJqVU1SWGhDMnhPeDFYeldJIn0.Q4aBI3G7WCsTNkCoQ2yGAwfOGjgi1oC0zxUf_obZpfdpKJ5As3Ksqs5vqaFGSAiUa7vpnJRxIwFbhO43_hhW9uUM_l-IEVlScOxn_XnjSoVtIP2U4vek4g-pf45SOoFOUd82FqQyaH32If6XDg-FrRo4YM6Aq-5j6uWckQn8Rpm3wJ35b8RsJt0Gzn5CYjOiSdfRbevOwEmoIrQj8tTVtnuaIWwf0vLUuZA-MId73OEY22xO3w5-KcB7h5SvuxN1dxhSBhO_XOSa0v3C5A8Kn4IX8sjlkrrROAYNVDzDW9d2fOaWOO4axqs57h7YS8ge-83ntJp162r2zTU58cUyfw&session_id=f791cd2b-9a4e-4d4d-ad32-4a1c2d33f61f&state=883bd0d1-9b37-4df4-96b6-ccff6a32aaa6&token_type=bearer&session_state=61453167-81c6-481c-8bdd-c96633fc1bb9&expires_in=299 ####################################################### TEST: defaultResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!B1EE.0312.666E.1FFA", "client_secret": "3bf9e94d-9abd-4832-a17e-401362ce8203", "registration_access_token": "36ed8e17-ca76-468e-a705-7a623a27e307", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!B1EE.0312.666E.1FFA", "client_id_issued_at": 1530798844, "client_secret_expires_at": 1530885244, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21B1EE.0312.666E.1FFA&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8148b6c6-3608-43df-822f-def05271ab85&nonce=32bcac81-d1a0-4ac1-b86c-3d98be3f5b53 09:54:25.878 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:c384c9aa-9e6a-4e3e-9b5a-95e77bf9c7ce ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21B1EE.0312.666E.1FFA&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8148b6c6-3608-43df-822f-def05271ab85&nonce=32bcac81-d1a0-4ac1-b86c-3d98be3f5b53 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=9dfcba3a-aa5f-448a-bae4-9539bf61991d&code=4364eba5-5dd6-4d1b-88bd-396626160e50&scope=address+openid+profile+email&session_id=32235386-2585-44ec-ba39-721583a5ee80&state=8148b6c6-3608-43df-822f-def05271ab85&token_type=bearer&session_state=c384c9aa-9e6a-4e3e-9b5a-95e77bf9c7ce&expires_in=299 ####################################################### TEST: defaultResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FBCB.6A60.1302.ADE8", "client_secret": "8061befb-a6ae-4478-8ae0-630c6c1d6319", "registration_access_token": "24fa020a-da77-4b4e-bab5-186cb1ff8765", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FBCB.6A60.1302.ADE8", "client_id_issued_at": 1530798846, "client_secret_expires_at": 1530885246, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FBCB.6A60.1302.ADE8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=68cf3610-3458-4550-ac90-cdf7e7e9e2b4&nonce=bdf78bfc-2628-4597-97c5-010efd420744 09:54:27.642 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:cc5d9b23-158a-4c4f-ad74-9fa3fe86c50e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FBCB.6A60.1302.ADE8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=68cf3610-3458-4550-ac90-cdf7e7e9e2b4&nonce=bdf78bfc-2628-4597-97c5-010efd420744 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFGQkNCLjZBNjAuMTMwMi5BREU4IiwiZXhwIjoxNTMwODAyNDQ4LCJpYXQiOjE1MzA3OTg4NDgsIm5vbmNlIjoiYmRmNzhiZmMtMjYyOC00NTk3LTk3YzUtMDEwZWZkNDIwNzQ0IiwiYXV0aF90aW1lIjoxNTMwNzk4ODQ3LCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJMY2NOdW5rSF94LVFLWmJJSXlSd2Z0bUhBc3o3bjhIODN2azlfTUhObDMwIn0.SakHfmvMjXe96m50NhUkxhE_tUfLxLSxzlbhsE79I95vlW-Y-_uznxgyUGP-jiC6DfWkyVhx1zJd22CDLavabbvFvVdACCT1hmuBerXgDiOFWkzgqWonNb60Qdz4uP5u7srEHQGolbwD97O0-N4zJ6H3oZcWKv_bNKk7hkZ7YA7W7L0Z_bvwAYK3yXa1NcRZWty8K9I9G8P1XAAnxOvcBFr5mc44_Gt6KE7NB7eMPSX9b9Ra0kFR1U5_ClgPu4zVm3xsKK9oj9ctwdpyRyMo31AlZqqic0WfsW7SpWII1H5FVJ9UGX2a_PTF3QrZHTnQzpaqyh-7K_C-6yN17H5iwg&session_id=75122eb4-ae49-4cf9-8fe6-00e41f1b7268&state=68cf3610-3458-4550-ac90-cdf7e7e9e2b4&session_state=cc5d9b23-158a-4c4f-ad74-9fa3fe86c50e ####################################################### TEST: defaultResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:08 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A507.08A9.CE0B.F43F", "client_secret": "e90124e2-9066-4b3f-ab3a-12f309da25a8", "registration_access_token": "79b0b9cd-149a-4bd9-bd36-804bb42e5696", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A507.08A9.CE0B.F43F", "client_id_issued_at": 1530798848, "client_secret_expires_at": 1530885248, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A507.08A9.CE0B.F43F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=734b5d95-6f4e-489c-b600-fae7199481d8&nonce=5ada2c05-2279-4e4e-b9a3-97bc99e2fe0b 09:54:29.552 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:14ffbb5e-4a59-4225-b353-3a45b3e31d00 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A507.08A9.CE0B.F43F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=734b5d95-6f4e-489c-b600-fae7199481d8&nonce=5ada2c05-2279-4e4e-b9a3-97bc99e2fe0b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=9858eafe-5db9-4bcf-9933-384c492c40b1&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFBNTA3LjA4QTkuQ0UwQi5GNDNGIiwiZXhwIjoxNTMwODAyNDUwLCJpYXQiOjE1MzA3OTg4NTAsIm5vbmNlIjoiNWFkYTJjMDUtMjI3OS00ZTRlLWI5YTMtOTdiYzk5ZTJmZTBiIiwiYXV0aF90aW1lIjoxNTMwNzk4ODQ5LCJhdF9oYXNoIjoiNk9iQ203X1VGTEpENHpzdDFSTFY4USIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImVLM3B1dGdlQy1zOEN4d29vRXlNamVfLThuU2tJNm14dW9NaDVjVDhhX1EifQ.cyA1IXA8hXHur7IZsKntjgBhK6PV_aTvNiRmphYX5PKiiLIdE7PnTKvvJrYD7x7RltFMv_3p_ArcQUlvIa-qujsrrczOkniiVzGuKmDBMCE9k49Tm0Sf8Br7N51Uc0AoKNbS1_8cHGuwIQIRyKFuZ7yetVcYpnhFQfopNGjP4nPa7Bznoj6uwqlVwaqjuEmw7B3jlYE9R01dPbbVHVnaOiJXL-qRv_A8EdHRsUOPC15aATYpUm76Yzru0Q8xn_dqPKlmmmVFLSSLAxFMx7mpulC5wml3-4Ut7fQA3Ez3oNKDuaHR7lY1EcR2VTuan_KDdYlu0pyB4OXcTajIEYpyWQ&session_id=924f3300-dd45-45eb-b710-fd2c2c20318c&state=734b5d95-6f4e-489c-b600-fae7199481d8&token_type=bearer&session_state=14ffbb5e-4a59-4225-b353-3a45b3e31d00&expires_in=299 ####################################################### TEST: formPostResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FDA1.1731.8565.FEAE", "client_secret": "6c0ea6f5-a704-4a3c-92f9-f2d7289612ed", "registration_access_token": "b74fc4e0-23d6-46a6-9f2d-041b43de4c5b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FDA1.1731.8565.FEAE", "client_id_issued_at": 1530798850, "client_secret_expires_at": 1530885250, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FDA1.1731.8565.FEAE&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=c97c3098-f0da-4486-9bcf-0d6689a20bd8&response_mode=form_post 09:54:31.416 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:3d688dd1-376a-4de3-98cc-44a392457c2c ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FDA1.1731.8565.FEAE&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=c97c3098-f0da-4486-9bcf-0d6689a20bd8&response_mode=form_post ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:12 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9B01.B312.A69B.BD10", "client_secret": "7c79f5d1-faa5-4726-a438-ab682172fc94", "registration_access_token": "76db0dc7-4d6a-4ef5-81ea-28b87dbada74", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9B01.B312.A69B.BD10", "client_id_issued_at": 1530798852, "client_secret_expires_at": 1530885252, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219B01.B312.A69B.BD10&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9b8d0d5-347a-441f-ad07-910b486cb9fa&response_mode=form_post&nonce=cc93f8c4-0698-471e-aab8-8ef25c6b0c61 09:54:33.361 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8d0fd241-f527-4494-979f-0391e75ea8b6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219B01.B312.A69B.BD10&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f9b8d0d5-347a-441f-ad07-910b486cb9fa&response_mode=form_post&nonce=cc93f8c4-0698-471e-aab8-8ef25c6b0c61 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FDDE.C6E8.F3F7.6EC9", "client_secret": "f1268283-195e-4f4c-887b-7450de50a359", "registration_access_token": "442b789a-6bd9-4c7b-b46a-5f5789216153", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!FDDE.C6E8.F3F7.6EC9", "client_id_issued_at": 1530798853, "client_secret_expires_at": 1530885253, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FDDE.C6E8.F3F7.6EC9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e9569662-0d2e-4c9a-a67c-9095c752cf73&response_mode=form_post&nonce=dc88e567-f083-46bd-9ff5-6bb16dc604a5 09:54:35.146 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:bffbeb08-59bd-49b9-bb23-6519c6dd1eef ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21FDDE.C6E8.F3F7.6EC9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e9569662-0d2e-4c9a-a67c-9095c752cf73&response_mode=form_post&nonce=dc88e567-f083-46bd-9ff5-6bb16dc604a5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:15 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BDEB.50D9.67C4.1463", "client_secret": "1ad227f8-4169-46b0-bdf0-bfff47ffce3c", "registration_access_token": "3ba87dd1-0d41-45eb-8152-e179c3c30a05", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BDEB.50D9.67C4.1463", "client_id_issued_at": 1530798855, "client_secret_expires_at": 1530885255, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BDEB.50D9.67C4.1463&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e77bfd32-53e7-4e20-9cbc-2255d31e002e&response_mode=form_post&nonce=0327a8fa-cbdd-4e93-ae6b-0b8bbd15f72f 09:54:36.855 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8f7ba694-3c77-4a5c-92b7-354be67e29da ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BDEB.50D9.67C4.1463&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e77bfd32-53e7-4e20-9cbc-2255d31e002e&response_mode=form_post&nonce=0327a8fa-cbdd-4e93-ae6b-0b8bbd15f72f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:17 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3D5E.1666.8948.2B76", "client_secret": "6a75c130-3e75-4cfa-b6c0-914e824cbbce", "registration_access_token": "5e8f7d02-cb10-445a-af95-c3eba369e5df", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3D5E.1666.8948.2B76", "client_id_issued_at": 1530798857, "client_secret_expires_at": 1530885257, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213D5E.1666.8948.2B76&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9b9b8b98-51db-42fe-b4c2-32da8097a74e&response_mode=form_post&nonce=fdf387ae-4184-43a5-9452-81f5a4ee1c17 09:54:38.640 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2136f377-14df-410d-8e3a-fa3cd5b04475 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213D5E.1666.8948.2B76&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9b9b8b98-51db-42fe-b4c2-32da8097a74e&response_mode=form_post&nonce=fdf387ae-4184-43a5-9452-81f5a4ee1c17 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: formPostResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:19 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!E2A9.47ED.F3EC.C650", "client_secret": "1d38d7f0-073e-4951-9b2d-171bbdbf95d5", "registration_access_token": "53a7cdcb-e702-4ee1-983d-3ada6bcda227", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!E2A9.47ED.F3EC.C650", "client_id_issued_at": 1530798859, "client_secret_expires_at": 1530885259, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21E2A9.47ED.F3EC.C650&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f415b7f9-2bb9-4a53-8274-16bee99bb315&response_mode=form_post&nonce=d8103b3b-c214-4388-a8c2-202accc7e693 09:54:40.406 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2a164910-4b75-4e21-a1b0-22a390e47ff9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21E2A9.47ED.F3EC.C650&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f415b7f9-2bb9-4a53-8274-16bee99bb315&response_mode=form_post&nonce=d8103b3b-c214-4388-a8c2-202accc7e693 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm ####################################################### TEST: fragmentResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:20 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5648.5515.7260.53E0", "client_secret": "b31bee90-6e49-4685-ba75-fc2020a81b4a", "registration_access_token": "16573971-15c3-48ae-bd21-32a0d6fe30e6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5648.5515.7260.53E0", "client_id_issued_at": 1530798860, "client_secret_expires_at": 1530885260, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%215648.5515.7260.53E0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e61d7828-d8d3-467e-ae2e-76262816c6ea&response_mode=fragment 09:54:42.195 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:66926aa5-190f-44a9-9996-a01b1d704dc9 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%215648.5515.7260.53E0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e61d7828-d8d3-467e-ae2e-76262816c6ea&response_mode=fragment ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=4a985445-9a66-4386-81b4-9d38fa82d955&scope=address+openid+profile+email&session_id=4091b7b2-2ce9-4461-962f-7c9c80c819bc&state=e61d7828-d8d3-467e-ae2e-76262816c6ea&session_state=66926aa5-190f-44a9-9996-a01b1d704dc9 ####################################################### TEST: fragmentResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!29A0.9F58.480F.5C0F", "client_secret": "b9703724-897a-49cd-a84e-4c56c3c4626c", "registration_access_token": "4aa231c5-4302-4877-aadb-50e7ef1d519c", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!29A0.9F58.480F.5C0F", "client_id_issued_at": 1530798862, "client_secret_expires_at": 1530885262, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2129A0.9F58.480F.5C0F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=c81bc6e2-9449-454c-a6ec-a53dc305a26c&response_mode=fragment&nonce=53ced562-45c8-491d-8374-7f01e832d833 09:54:44.020 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2004e944-ec88-4a45-bcde-89fea18213e6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2129A0.9F58.480F.5C0F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=c81bc6e2-9449-454c-a6ec-a53dc305a26c&response_mode=fragment&nonce=53ced562-45c8-491d-8374-7f01e832d833 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=269619a7-0c6e-41d7-95f0-85d6925eb71e&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyOUEwLjlGNTguNDgwRi41QzBGIiwiZXhwIjoxNTMwODAyNDY0LCJpYXQiOjE1MzA3OTg4NjQsIm5vbmNlIjoiNTNjZWQ1NjItNDVjOC00OTFkLTgzNzQtN2YwMWU4MzJkODMzIiwiYXV0aF90aW1lIjoxNTMwNzk4ODY0LCJjX2hhc2giOiJabHJXUDhhYXVWVGxGdjZURUc0Z3p3Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiODFfSFVDcFJoZC1wQTB5QU04c0l0VTRmdmt1OE9TVDJic3lCeERZLUViNCJ9.Y6R1EkeFfxnid8vpnKkuhtqihrDRaBbCQLWJUTbNemQeMlhHIENmFbZh-UU1FxcoNiKgHDeN-W-wQcgSwR1na-2fLAi8-TnYHAPTq28hqo-c5rOmU2qcLtitfjx-hmZb0-uDGvz9GHpTHpj5YUbtDz6aGbvHXhaLuubJHse4l2qt1gUMh_lJ_jdqzC55pajJRVpuHqMlQyIxl2ra5zWkkBLwEWQvM38fxWb2U_7c9kOxewGu095bXaT4MX9hWadTKkFSsS8ZqdQUSALrbKYmzbp-yf9GrEmRguB304Ai75i2fJv2TSQe61yJidOGavoX22SfggBwxSTXztNHcZUnZw&session_id=1a68bd1f-fef3-4320-946c-40496e5a1b7f&state=c81bc6e2-9449-454c-a6ec-a53dc305a26c&session_state=2004e944-ec88-4a45-bcde-89fea18213e6 ####################################################### TEST: fragmentResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:24 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8228.DD21.47CF.ADD6", "client_secret": "1dba4d0c-aa8d-4ca5-a167-18da8aaf4489", "registration_access_token": "fc58b1ac-e0dd-46f0-9b37-2c336a94aa76", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8228.DD21.47CF.ADD6", "client_id_issued_at": 1530798864, "client_secret_expires_at": 1530885264, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218228.DD21.47CF.ADD6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1a1fe848-d0cc-4bfc-a73e-942c08b68e15&response_mode=fragment&nonce=69d2c919-d72f-4974-916c-09fab40599d4 09:54:45.729 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a8cf36a6-d1eb-4327-8eb1-37772f113156 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218228.DD21.47CF.ADD6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1a1fe848-d0cc-4bfc-a73e-942c08b68e15&response_mode=fragment&nonce=69d2c919-d72f-4974-916c-09fab40599d4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=87a8445b-f4b7-4ca8-8b9d-6622607e9eb5&code=952b7c9e-2798-4ca8-a4e3-f3d7158777eb&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4MjI4LkREMjEuNDdDRi5BREQ2IiwiZXhwIjoxNTMwODAyNDY2LCJpYXQiOjE1MzA3OTg4NjYsIm5vbmNlIjoiNjlkMmM5MTktZDcyZi00OTc0LTkxNmMtMDlmYWI0MDU5OWQ0IiwiYXV0aF90aW1lIjoxNTMwNzk4ODY1LCJjX2hhc2giOiJ0STJWTl9pNlJxejM4MzJ1Q3ZrNlJBIiwiYXRfaGFzaCI6IndKY1Q2eDBOOTU3Z3hVZGQtOHZzeXciLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJYWElacmw4dzdRMFJfRXZzVHFxU2lMaUh2eWZDZXcxN3E0YkY5Q2pXZUNvIn0.FwNYwWDgTV5_87flkgvxcM_3m1Pl5qd2BGMvO-XIiQnXv1R-S4Tptm1i9X3WUfoHEA5erEaFblfdah1eZTJiKcIQHXNIgLMlRIEhJQdPUEHTMz2ap2lSaF-lEYVOZBuFby3ppPU6NdzMylSp_fXGXwum32noWP2MtjgqWvjXe7mjDkzAaATV02V90a0AZ8BjUx0zr0XcoBFa8Ai599nZRFlByvXlS78Fn2dcnioBStlsLh3-oj5uv7NTVb0f4OK3CRcgCT9g2OPMbec4XwZE0QIRWdW2RCsRAXRmAFk-C3FL1k8-dln3SstkGO21ZiibBWG4amY_W0CkoWBlTdl_dQ&session_id=78ef2b21-1f4b-42e6-a52b-2bce5ffc7a93&state=1a1fe848-d0cc-4bfc-a73e-942c08b68e15&token_type=bearer&session_state=a8cf36a6-d1eb-4327-8eb1-37772f113156&expires_in=299 ####################################################### TEST: fragmentResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1F37.778B.3C0F.34C0", "client_secret": "0f73d667-5ff9-44db-8e5d-6f0f2b302cd9", "registration_access_token": "b9ea0674-ce71-4e9f-b829-70affe6a8afe", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1F37.778B.3C0F.34C0", "client_id_issued_at": 1530798866, "client_secret_expires_at": 1530885266, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211F37.778B.3C0F.34C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=68c8c923-1c58-4905-a266-a7818bf4f193&response_mode=fragment&nonce=bc5077c4-7cdc-4423-895f-b1ab47421caf 09:54:47.570 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:edcf4994-ee0c-4193-80b5-1ac0c526d79a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211F37.778B.3C0F.34C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=68c8c923-1c58-4905-a266-a7818bf4f193&response_mode=fragment&nonce=bc5077c4-7cdc-4423-895f-b1ab47421caf ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=71476f6a-6ff9-4b42-a4da-ca1ddbde4013&code=0618078f-b69d-43f3-ab0f-204014745536&scope=address+openid+profile+email&session_id=96c7751d-fc6c-46f2-b0cb-dbb4cad8f1b8&state=68c8c923-1c58-4905-a266-a7818bf4f193&token_type=bearer&session_state=edcf4994-ee0c-4193-80b5-1ac0c526d79a&expires_in=299 ####################################################### TEST: fragmentResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:28 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!07EC.183D.9002.3026", "client_secret": "0b000b54-bcfb-4b7c-ba90-a6a00820b335", "registration_access_token": "c50a3b75-295e-4c7b-95e0-367a38ac8d3b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!07EC.183D.9002.3026", "client_id_issued_at": 1530798868, "client_secret_expires_at": 1530885268, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2107EC.183D.9002.3026&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f768e99b-4ebf-469e-b5aa-e9b23e9ca906&response_mode=fragment&nonce=d7da468c-ff75-4ddb-a1fb-d48416a1bf1c 09:54:49.301 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:cfc952de-c310-4a3d-9663-761abdc4b72a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2107EC.183D.9002.3026&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f768e99b-4ebf-469e-b5aa-e9b23e9ca906&response_mode=fragment&nonce=d7da468c-ff75-4ddb-a1fb-d48416a1bf1c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwN0VDLjE4M0QuOTAwMi4zMDI2IiwiZXhwIjoxNTMwODAyNDY5LCJpYXQiOjE1MzA3OTg4NjksIm5vbmNlIjoiZDdkYTQ2OGMtZmY3NS00ZGRiLWExZmItZDQ4NDE2YTFiZjFjIiwiYXV0aF90aW1lIjoxNTMwNzk4ODY5LCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJIR2x0Nld0QmQ5OHBUOWIwM0hBRElJSmNwd0VDbnhwWXdzUC1fMG85aHQ4In0.l9_jeGB97NXfUauR2uFdLxDSp1FRi5Q7O16Bs1Fu30eDjS0oauAw4Oh8RF6X3XQ_r6aTu1NxFCZvLYpQReysXG7HtEwEvUKe1C1-sFsm6vwdCd_daJw9GZ4cJMr9eyv1eaqT3mhQ2ioMysVrEOF3pPn1Rz0kuhlvEcy74JyBXnPqlOq_O3DPu52e89rDCBJtDJJlcF1l6X0b36hWo9tZEQVowQQffh2twKJ_nsYkGcT08Y0Pk5g4sjPglLoesrPdyjWj16t51KQwkRqGHKnSM6w3qc_EgM8rIO92vnLMK-8T4MionYp8YfAR61A0K-ah1OQqE1sq1GY6QIcAPQ0A9Q&session_id=1d1173e5-5350-4d1e-8c8b-2d2447374a05&state=f768e99b-4ebf-469e-b5aa-e9b23e9ca906&session_state=cfc952de-c310-4a3d-9663-761abdc4b72a ####################################################### TEST: fragmentResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:29 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!20A2.E794.A7EE.03AC", "client_secret": "50f534b3-156f-4c68-9da9-4e50213b0310", "registration_access_token": "13b12025-fbfd-451b-8086-649eb2a14e84", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!20A2.E794.A7EE.03AC", "client_id_issued_at": 1530798869, "client_secret_expires_at": 1530885269, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2120A2.E794.A7EE.03AC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f80a68c4-d4e8-4125-9773-d47963f02f9b&response_mode=fragment&nonce=fc449235-95a8-4262-b3db-269ee5f94c11 09:54:50.963 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a9135ec6-ce5c-430c-becb-19b70dfddcd3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2120A2.E794.A7EE.03AC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f80a68c4-d4e8-4125-9773-d47963f02f9b&response_mode=fragment&nonce=fc449235-95a8-4262-b3db-269ee5f94c11 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=1734743f-3d9e-4ed4-8324-2d1af359d9ef&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyMEEyLkU3OTQuQTdFRS4wM0FDIiwiZXhwIjoxNTMwODAyNDcxLCJpYXQiOjE1MzA3OTg4NzEsIm5vbmNlIjoiZmM0NDkyMzUtOTVhOC00MjYyLWIzZGItMjY5ZWU1Zjk0YzExIiwiYXV0aF90aW1lIjoxNTMwNzk4ODcxLCJhdF9oYXNoIjoibjQxNkh6bWlweFNGMF9BSERxQ2JsZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Im5lSkdXRUVxM21nTmxWMnpVNnAteUhDalRhZkx5STg4VFc0X0U2d29aNGMifQ.i5-AwemFDhJ0O8qHp9gq_-cF8vRKze2PSSN58swbEL8GO-AbqWiwpm8_Q_51FgKlMmjti8uhFXZJgGWtXg-pjHKUUgTrn8le--2kVOtg105JJA9qur6jLh6HftH1Iv3cuGzLIahGf6_VT5LPF-a5JI3t7T7YkaHUd3SvUS49rKpoO83qAmNxDLpYGLHSS0hd_DNyZb4-86OH98l6NfHVvRJG7rfyHCV2yg85O330RLq6hPiEjD4e86WJwxH-NNYfgdb58f_z64Rw1Ignj2kFbxTjzmIng60I5VEAuPfypEr8Ozzifpw6O4WaDyD3UBpGlMxU2_pj9ZtirXSy2HH9kQ&session_id=30b8b420-1973-4539-be7e-eeaad44f1359&state=f80a68c4-d4e8-4125-9773-d47963f02f9b&token_type=bearer&session_state=a9135ec6-ce5c-430c-becb-19b70dfddcd3&expires_in=299 ####################################################### TEST: queryResponseModeBasicCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:31 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!485F.019B.BBA3.BE71", "client_secret": "c060ce19-e330-40c7-8171-596679bf890e", "registration_access_token": "b44ffc75-a364-4f5e-bd11-9f37519ba88a", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!485F.019B.BBA3.BE71", "client_id_issued_at": 1530798871, "client_secret_expires_at": 1530885271, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21485F.019B.BBA3.BE71&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2bca488b-9c3a-4fa5-9fea-8bc6ce177ea3&response_mode=query 09:54:52.692 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:685ad0c8-b6a5-471b-b2c4-3e8950c509b0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21485F.019B.BBA3.BE71&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2bca488b-9c3a-4fa5-9fea-8bc6ce177ea3&response_mode=query ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=25fde0d9-b26c-4399-97b4-bfebabbfa64c&scope=address+openid+profile+email&session_id=0be3a027-1044-404f-9f43-49f3e0c8a532&state=2bca488b-9c3a-4fa5-9fea-8bc6ce177ea3&session_state=685ad0c8-b6a5-471b-b2c4-3e8950c509b0 ####################################################### TEST: queryResponseModeHybridCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:33 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!71E0.F30B.7139.621A", "client_secret": "747f208a-b91d-408c-82cf-f3a60a315bb8", "registration_access_token": "4733fd59-6b1d-4218-bf83-1b9021508589", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!71E0.F30B.7139.621A", "client_id_issued_at": 1530798873, "client_secret_expires_at": 1530885273, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2171E0.F30B.7139.621A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=dd807341-7911-43e2-9f5f-4dd6c6545a8c&response_mode=query&nonce=0fb67e3c-410f-4309-bd92-5c941f50df92 09:54:54.381 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1e1f0ce7-b111-4d2b-b461-2da54c48ae9e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2171E0.F30B.7139.621A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=dd807341-7911-43e2-9f5f-4dd6c6545a8c&response_mode=query&nonce=0fb67e3c-410f-4309-bd92-5c941f50df92 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=a31206ad-1309-48f4-8971-0cb8ff17fd04&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE3MUUwLkYzMEIuNzEzOS42MjFBIiwiZXhwIjoxNTMwODAyNDc0LCJpYXQiOjE1MzA3OTg4NzQsIm5vbmNlIjoiMGZiNjdlM2MtNDEwZi00MzA5LWJkOTItNWM5NDFmNTBkZjkyIiwiYXV0aF90aW1lIjoxNTMwNzk4ODc0LCJjX2hhc2giOiJWb2ZyZWVHdGdxQ01aNWYyZTA0WlBnIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiRlRsaGJlQzBER0lLM0o4Z2k2Q0QtZUt2bkktM0ltV0hCSm9SR1kycXVLQSJ9.CINk37cirk64T6lfdL4eLavtyd8SMBG-XaUwwo_k02TIt52nNpWMauHX5iYEWcjpFEl4-6vlOLEkZ8fNQfvBqgjZwqKD2E0grIZPdh3J-SN4-c0ePnfuchrHZc3jJuL4mlsqdWHl2pSjj09p65y3gKwTE2w-j-J7J07cHca40MSHJW9-BYezJqc339HnXwPMKILmhb5s4O2gYaZpiCM-amSsAV8DdGaZJjQ8mlPnGSWB5mmeXCkUO_nl2pfxJLznhITgp_GTaCvUPnASlc7i4Ci7GRrYq3yYtH4k0JxOPHPc33VTytfhXYU8zl8kmlE-szGT-1Qe8BuK4mlzSuYPoA&session_id=55a53e4f-76e7-4bba-b6a0-73303ea55008&state=dd807341-7911-43e2-9f5f-4dd6c6545a8c&session_state=1e1f0ce7-b111-4d2b-b461-2da54c48ae9e ####################################################### TEST: queryResponseModeHybridCodeIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9A80.D807.CD21.C9FF", "client_secret": "2a2dc79f-090c-4f20-a77c-6621a3e1fd75", "registration_access_token": "646644f0-b2bd-4247-8a37-c20f804f30e4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9A80.D807.CD21.C9FF", "client_id_issued_at": 1530798874, "client_secret_expires_at": 1530885274, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219A80.D807.CD21.C9FF&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=325ac465-5a54-4c62-adcd-d43bb88f4ad9&response_mode=query&nonce=8ed607e5-499f-49f6-a1d1-57b82b6587e0 09:54:56.002 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:e1a8df42-69c4-411a-99b9-64ba70e3a907 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219A80.D807.CD21.C9FF&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=325ac465-5a54-4c62-adcd-d43bb88f4ad9&response_mode=query&nonce=8ed607e5-499f-49f6-a1d1-57b82b6587e0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?access_token=d4de4a58-1677-4d0a-9bb3-82ba3adeec81&code=044450c6-6aec-47fa-a8f2-817da942aa9c&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5QTgwLkQ4MDcuQ0QyMS5DOUZGIiwiZXhwIjoxNTMwODAyNDc2LCJpYXQiOjE1MzA3OTg4NzYsIm5vbmNlIjoiOGVkNjA3ZTUtNDk5Zi00OWY2LWExZDEtNTdiODJiNjU4N2UwIiwiYXV0aF90aW1lIjoxNTMwNzk4ODc2LCJjX2hhc2giOiJGS0xJcnhtdnNxYjY3NXN5TWd4OFp3IiwiYXRfaGFzaCI6IjdZbjFXdjRLNTBLYWM4Y18wWHRBWHciLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiItTDlEZnJCRUJPNl9BQmplREtJczE3bVJiLV95TGc3dWVWZGdxektwUlFRIn0.KlIilNfI7eWXLhz1O3LrkeKBBe575bq2YbSOYxcOf9SXiGYRTsIQTY7v21Df2eDGSymVQkd9RvebXL2TtMAaVmI-kdAlCcRBkQ6r0yBv_es3f9bb441r-eUCa6a65KfLZiA-AbMOUA7TF1EA2brkfW5oP4qpOELztLG2Wmv-tHE1eGpwANDadYJ_uEFt5GgQYVxKoJN3k5XAgx517V8mWQKnpFkI_Nt5n-Mqs6ckjd8ursNwq9TDz9KPwK_VKxYhVHUxZavl6_x2vw0esEk2e0M4XEq_RLx-c13qmu_whw0KGm1opfRVgcLjjw_DG6phDy6tvRjTMrvBETRxHkC31A&session_id=bf5adbd7-5d2a-4276-8e5e-e0731b35c864&state=325ac465-5a54-4c62-adcd-d43bb88f4ad9&token_type=bearer&session_state=e1a8df42-69c4-411a-99b9-64ba70e3a907&expires_in=299 ####################################################### TEST: queryResponseModeHybridCodeToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A2AB.77BE.3648.08C4", "client_secret": "fa0fd2d1-1b4b-4d47-a36b-4fc87f79e4db", "registration_access_token": "139cc389-02e6-4357-9f03-f223f95f14f4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A2AB.77BE.3648.08C4", "client_id_issued_at": 1530798876, "client_secret_expires_at": 1530885276, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A2AB.77BE.3648.08C4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b5472301-e6bf-44bc-a71c-2677bc526d5d&response_mode=query&nonce=d2e283d1-003a-4eaf-9b40-8dd588b4515b 09:54:57.804 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:48a48e16-edc2-4e53-9c9b-03a018830688 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A2AB.77BE.3648.08C4&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b5472301-e6bf-44bc-a71c-2677bc526d5d&response_mode=query&nonce=d2e283d1-003a-4eaf-9b40-8dd588b4515b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?access_token=5af869be-9858-44f0-9ea8-701f3f1a3e7d&code=8512cb0d-b551-4e16-8df9-871e299a69f2&scope=address+openid+profile+email&session_id=e6b3c56e-6840-469c-a620-c10f38759f17&state=b5472301-e6bf-44bc-a71c-2677bc526d5d&token_type=bearer&session_state=48a48e16-edc2-4e53-9c9b-03a018830688&expires_in=299 ####################################################### TEST: queryResponseModeImplicitIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!790A.6DAA.9EB9.551C", "client_secret": "bef1c765-7e4d-4223-b2c2-28ef0afb52a4", "registration_access_token": "7bd261aa-86df-4318-b0cf-1975c368d17f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!790A.6DAA.9EB9.551C", "client_id_issued_at": 1530798878, "client_secret_expires_at": 1530885278, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21790A.6DAA.9EB9.551C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eb649fa1-8552-4898-83c9-1b43a8078fb7&response_mode=query&nonce=bf46b5bb-3c1d-407c-9706-6fa2330fd632 09:54:59.540 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:04448fe1-35a2-45ce-81ca-0238de11a9b8 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21790A.6DAA.9EB9.551C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eb649fa1-8552-4898-83c9-1b43a8078fb7&response_mode=query&nonce=bf46b5bb-3c1d-407c-9706-6fa2330fd632 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE3OTBBLjZEQUEuOUVCOS41NTFDIiwiZXhwIjoxNTMwODAyNDc5LCJpYXQiOjE1MzA3OTg4NzksIm5vbmNlIjoiYmY0NmI1YmItM2MxZC00MDdjLTk3MDYtNmZhMjMzMGZkNjMyIiwiYXV0aF90aW1lIjoxNTMwNzk4ODc5LCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiI4OEVUbXJMX2hCbGZEY2tiakQwblhtaEo4X0JNbHJnQm1BNnY1cmZ2bFNVIn0.Vq8NVGntx6tXgF4RZ_OXEGBL7xTNd_cJjFSZRjQYmkmJl8iNygXD8t81cSCq0Ecs23-EAlUAeH1ClQen61aBbxUT5tkqqFnzcuzFvYQwXNBT3xUFq-Z_LbbEVFZZD-YIvA5PBSDayBBnG8zqoxb6hbuLKx_SpXRepw0lWp2H5Dfufe28RMYhepWYhFwpMKJeTSysd3X0YBeMjQ3FhOlcXvXKbP-0osM1RWCLD42JfbEf0-Mifqo9ZiKkKfjln5B8M2qqaFgFIEjRuhakl_qizDUACp5z8BtQZYzfVqduo4BGCVoDAt598ago4fFzOa5JyCna-UEDH3p7C4A0KQDRGw&session_id=ab67dac7-46bd-4bcd-9ba8-0132a87f1606&state=eb649fa1-8552-4898-83c9-1b43a8078fb7&session_state=04448fe1-35a2-45ce-81ca-0238de11a9b8 ####################################################### TEST: queryResponseModeImplicitIdTokenToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "id_token", "token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4B88.8995.E8AF.AC6F", "client_secret": "89604c26-96d1-4192-b87f-99c26ca57b2f", "registration_access_token": "344f24f9-eca7-49a5-9b0b-04196627f4a3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4B88.8995.E8AF.AC6F", "client_id_issued_at": 1530798880, "client_secret_expires_at": 1530885280, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214B88.8995.E8AF.AC6F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=fc3a0f9a-7d03-4505-adaa-9915cd885e7d&response_mode=query&nonce=a6fe0751-4213-4c50-86cd-9acaeaeb7188 09:55:01.385 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:de0a73e0-9ff0-44f0-8471-7a556b4c0eeb ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token+token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214B88.8995.E8AF.AC6F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=fc3a0f9a-7d03-4505-adaa-9915cd885e7d&response_mode=query&nonce=a6fe0751-4213-4c50-86cd-9acaeaeb7188 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?access_token=35b023d5-826c-42da-9a8a-31307fde4132&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0Qjg4Ljg5OTUuRThBRi5BQzZGIiwiZXhwIjoxNTMwODAyNDgyLCJpYXQiOjE1MzA3OTg4ODIsIm5vbmNlIjoiYTZmZTA3NTEtNDIxMy00YzUwLTg2Y2QtOWFjYWVhZWI3MTg4IiwiYXV0aF90aW1lIjoxNTMwNzk4ODgyLCJhdF9oYXNoIjoiU0xGZnV5ejl2emVMQWE2cXplRVQ4QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IlM3RWJseDk5YVJVVk1ibWNFTzBTaGRmSXd1Mng3MUo3TTQ1YUNybk9HQWMifQ.ODz24jr99IjFvnkPEf7u_d9xCLoMIPKEhWlZDcXIejGGvu9-8EFj8rKR4z7qE6A2JWq1lkZn8_qsKx59TzT26090-brqsdp1Rb3UHOAa2s-HDcjjOy4h0K6Q4aJE-MNhqbA9bYiJgd-lJR7aB2uHIISbV-0huFERAOXIyfqOTv7AjPvRNCzU2o2KQZ0DZroTRgH_qfVr7R6uXGHDPk8zeTBNmzH0Sw_TT6f1aA5eSqI7YrS95QRa1_2e6ng6yNa2H817OKCkXQivBCotpID8nPubl2jtm_aKN32dKownlzQ4Duvgxwusc_3x2Zg3VMJedwUy6nxoI8tFDQ-HCOKRUA&session_id=b5a8054f-28c7-4380-b02a-4d5b2d917535&state=fc3a0f9a-7d03-4505-adaa-9915cd885e7d&token_type=bearer&session_state=de0a73e0-9ff0-44f0-8471-7a556b4c0eeb&expires_in=299 ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:54:42 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:42 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestAuthorizationAccessToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:43 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0D64.C957.3EA6.B533", "client_secret": "9b279a4f-ff21-44a6-bee7-ad7b253ed11c", "registration_access_token": "f5549f91-b634-4909-b520-88590e10be98", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0D64.C957.3EA6.B533", "client_id_issued_at": 1530798883, "client_secret_expires_at": 1530885283, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer f5549f91-b634-4909-b520-88590e10be98 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:43 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0D64.C957.3EA6.B533", "client_secret": "9b279a4f-ff21-44a6-bee7-ad7b253ed11c", "registration_access_token": "f5549f91-b634-4909-b520-88590e10be98", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0D64.C957.3EA6.B533", "client_id_issued_at": 1530798883, "client_secret_expires_at": 1530885283, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210D64.C957.3EA6.B533&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=16a30c2f-6114-4de9-95e3-84fb390bff57&nonce=4db10e4d-da44-44aa-9009-3faa71074be5 09:55:04.292 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a3f9be2b-4b0d-4a95-a3b6-ad4bdcd2bbd6 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210D64.C957.3EA6.B533&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=16a30c2f-6114-4de9-95e3-84fb390bff57&nonce=4db10e4d-da44-44aa-9009-3faa71074be5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=de4e7d1b-2f11-4165-8c07-680926669e5f&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwRDY0LkM5NTcuM0VBNi5CNTMzIiwiZXhwIjoxNTMwODAyNDg0LCJpYXQiOjE1MzA3OTg4ODQsIm5vbmNlIjoiNGRiMTBlNGQtZGE0NC00NGFhLTkwMDktM2ZhYTcxMDc0YmU1IiwiYXV0aF90aW1lIjoxNTMwNzk4ODg0LCJhdF9oYXNoIjoieXNJN2FDZnZYbHB1VWkzaTJ2RTRYQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJ4UjdTeWRBVFJuQkZWanZqNk0yd0doNlVjQmgzbUI3RGI2enR3TXFTNHMifQ.B_ZPhljN86qTB1t50CpgdNskR5hZGClxTbOsaJnSwVRVP-ZEnbsXOJXyYC5FJ4rHTnOXmbdDPnqKAe9A7AC3ioy1zCZfPPOk1UjZh_Ro3REr00GfP8w2huTN68Gzo79LoHK6T5IMtEpBnBskzz7BGsl-HFXK9n9PWZN0C-iNiihD3R2RFgL9MYZFF4X4CRUQxpgIjv9SdiA8I0VNdlz99RrV4n1iA_z5jiZKPcMOzYwQsVHJq8MqhFxCUR3RaNjDSvbl5bFXGT7OjUgIGZVXRLYPGE6IESlRMZg3NUYt_wdRXgKyhBmW51wW1zFksnsu3LUGeQIDUvaTtDsmQJl2bQ&session_id=ec881346-1329-477c-8da0-07c2605d92f9&state=16a30c2f-6114-4de9-95e3-84fb390bff57&token_type=bearer&session_state=a3f9be2b-4b0d-4a95-a3b6-ad4bdcd2bbd6&expires_in=299 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210D64.C957.3EA6.B533&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=3d2f53b9-bc56-4264-b709-6d29a942cf6b&nonce=4b455f09-156d-41e1-bdbf-53000991165d&prompt=none&access_token=de4e7d1b-2f11-4165-8c07-680926669e5f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:54:44 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=ad9815a6-c070-4be0-afcb-6294c59f27ec&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwRDY0LkM5NTcuM0VBNi5CNTMzIiwiZXhwIjoxNTMwODAyNDg0LCJpYXQiOjE1MzA3OTg4ODQsIm5vbmNlIjoiNGI0NTVmMDktMTU2ZC00MWUxLWJkYmYtNTMwMDA5OTExNjVkIiwiYXV0aF90aW1lIjoxNTMwNzk4ODg0LCJjX2hhc2giOiJqTFlqQ0duRi0tN3FoWWwxQjVjT3JnIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiYnhSN1N5ZEFUUm5CRlZqdmo2TTJ3R2g2VWNCaDNtQjdEYjZ6dHdNcVM0cyJ9.LIY2j6uC8fqccTVIyrRmfqqBfyJ7yQGxjsf7VVW8WgdrCaUSS6rWnzp_ZyKQSwd3MmCZ7kLFpWmkefHQJVtHruHQ4YshnwRYfVhkFQAvJNPMwE4YyNvuf0eidrjIBYxrYdScp5xd0klUnZOWnxUy8rFeAo63J8JDcd8FG7UiVTv1EPEEG0TIBvxlXo1HdaJt0gDNQje2LnybVwmdt8MVw305yiQsHVpaQF4RnUfC67olfDHAYSG0HA4V4OMnkwJKTJ7ZwN3vW7cd-7J3-KUHZ3D9AIvtypL_6hzD9-FQ9UyKCo-_IBvh6xmWGB3xnXEBuL3IANfS_4-itayZ37dwaw&session_id=8aff2c0f-0117-4e5e-9f2f-785670590e92&state=3d2f53b9-bc56-4264-b709-6d29a942cf6b&session_state=bc44b0f5-7387-4c9a-93a8-c44e80bec28e Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMEQ2NC5DOTU3LjNFQTYuQjUzMzo5YjI3OWE0Zi1mZjIxLTQ0YTYtYmVlNy1hZDdiMjUzZWQxMWM= grant_type=authorization_code&code=ad9815a6-c070-4be0-afcb-6294c59f27ec&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"b3a16e2c-06c2-47e2-be40-d7ec5dc20b45","token_type":"bearer","expires_in":299,"refresh_token":"bbdccdce-a0e7-4c8c-bd85-3ac32308281b","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwRDY0LkM5NTcuM0VBNi5CNTMzIiwiZXhwIjoxNTMwODAyNDg1LCJpYXQiOjE1MzA3OTg4ODUsIm5vbmNlIjoiNGI0NTVmMDktMTU2ZC00MWUxLWJkYmYtNTMwMDA5OTExNjVkIiwiYXV0aF90aW1lIjoxNTMwNzk4ODg0LCJhdF9oYXNoIjoiVTRGRGpsMS1PZURQSGZSb3FIaXZoUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJ4UjdTeWRBVFJuQkZWanZqNk0yd0doNlVjQmgzbUI3RGI2enR3TXFTNHMifQ.XCAmn6QI77Lc8d81X72Avld39ujagRzu0QKTB6-7wZbLO3e-Ib0SUtgpbSCrYre-SjLalG_xGPgsR_d_tuvsw3_bMeWCZPguwONANuO1uNxldu7zjjmrJ3b_TjJQpyAUBU19kwnl0_vN2UazZy6TQdpND5FKgERF4mAN0jYekbjiypJOeNNIDZ7D3oR7p3W2FuPVnHY_k-2ykCopnekdOw8WMognkQ9eGRAwKdQQS-kl3CsWU5PlNnCWJthI6cK08DaMvpVMah5GarEDr0oMnDkCpBAAkXhaCTSZjrdox5PQixALJtncamUKi65sDJsIL_M7M8kvDaMOFjGbzL6ERQ"} ####################################################### TEST: requestAuthorizationAccessTokenFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3E2D.13F6.AEBD.050D", "client_secret": "ab63179b-dd8c-4ad6-be2b-d2ad9993f31b", "registration_access_token": "25e452df-de43-4d44-ab19-e49d1c1c237b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3E2D.13F6.AEBD.050D", "client_id_issued_at": 1530798885, "client_secret_expires_at": 1530885285, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 25e452df-de43-4d44-ab19-e49d1c1c237b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3E2D.13F6.AEBD.050D", "client_secret": "ab63179b-dd8c-4ad6-be2b-d2ad9993f31b", "registration_access_token": "25e452df-de43-4d44-ab19-e49d1c1c237b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3E2D.13F6.AEBD.050D", "client_id_issued_at": 1530798885, "client_secret_expires_at": 1530885285, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213E2D.13F6.AEBD.050D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=94d1915d-9d94-46f2-91b7-fc12274cfaf1&prompt=none&access_token=INVALID_ACCESS_TOKEN ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=94d1915d-9d94-46f2-91b7-fc12274cfaf1&error=invalid_request Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationAccessTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC3.59C2.F4D3.66D7", "client_secret": "19b4be89-49ea-47a0-b3f0-7449ca5af34f", "registration_access_token": "b957e3f7-5d7b-478e-8440-9a98beb8c2b4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC3.59C2.F4D3.66D7", "client_id_issued_at": 1530798885, "client_secret_expires_at": 1530885285, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer b957e3f7-5d7b-478e-8440-9a98beb8c2b4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:45 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC3.59C2.F4D3.66D7", "client_secret": "19b4be89-49ea-47a0-b3f0-7449ca5af34f", "registration_access_token": "b957e3f7-5d7b-478e-8440-9a98beb8c2b4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC3.59C2.F4D3.66D7", "client_id_issued_at": 1530798885, "client_secret_expires_at": 1530885285, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218DC3.59C2.F4D3.66D7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=6e262c91-b25a-49b7-aad5-f902388c5c57&nonce=e890e31b-f6e0-4838-a3a3-c43399e8a595 09:55:06.686 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:f80a4ba3-aa60-481b-a57c-e9126cb5ff0c ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218DC3.59C2.F4D3.66D7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=6e262c91-b25a-49b7-aad5-f902388c5c57&nonce=e890e31b-f6e0-4838-a3a3-c43399e8a595 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=a5546d3f-58ae-4648-8294-fd0b658b6790&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4REMzLjU5QzIuRjREMy42NkQ3IiwiZXhwIjoxNTMwODAyNDg2LCJpYXQiOjE1MzA3OTg4ODYsIm5vbmNlIjoiZTg5MGUzMWItZjZlMC00ODM4LWEzYTMtYzQzMzk5ZThhNTk1IiwiYXV0aF90aW1lIjoxNTMwNzk4ODg2LCJhdF9oYXNoIjoiLU9CUnduaUFVSGhTc3ZhbmZ5S0Y2ZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Ik0zNW9ObGxwUG1NODZjc2RHQlRBay1BM2s0N0JRaXJGVVR4UmdVN0REdGMifQ.JLJ1A4AjO17Odz27VlD5J5H9nMEAZibyniKMDt2cEfAz5gE5ugbrs9kTj1xIhQiQgBV7zGM61P-i2Kov4PZxnDUn9SZYTop7uWo7QvLOviGCQgxbeNvH9C0SququKdZ5AxEowXSSi-rC0lJB6rRRSLhSwz2rvXvNGDkXq8lL-IwQDzfvGsEnl7FKqKUONW3R_OlThWwgsc91EAvngVrl1oXZ7D1AOIK2cAHct_KDZoxOAU2JN26XYEdpMJU9pnG5SigUh77fHKDJyHC_iF8W3wb0dMX4gOpA_3KHrbKryznT7ZxssHC3meBegqqoyLTFoi8FPfcK-HZqPVd2UP9O1Q&session_id=f880d2ea-4c65-4e45-a008-02a504543dae&state=6e262c91-b25a-49b7-aad5-f902388c5c57&token_type=bearer&session_state=f80a4ba3-aa60-481b-a57c-e9126cb5ff0c&expires_in=299 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218DC3.59C2.F4D3.66D7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=0ba352db-6652-4bee-8ac9-526543b57b4f&nonce=69ff5efd-5ac3-4a56-bff9-111539ce8a90&prompt=none&access_token=a5546d3f-58ae-4648-8294-fd0b658b6790 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:54:47 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=ed1594cb-8525-47b9-81a1-02ab865d2782&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4REMzLjU5QzIuRjREMy42NkQ3IiwiZXhwIjoxNTMwODAyNDg3LCJpYXQiOjE1MzA3OTg4ODcsIm5vbmNlIjoiNjlmZjVlZmQtNWFjMy00YTU2LWJmZjktMTExNTM5Y2U4YTkwIiwiYXV0aF90aW1lIjoxNTMwNzk4ODg3LCJjX2hhc2giOiJLbi1IWXVwbktKVUlaV2V5MlFBQkhBIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiTTM1b05sbHBQbU04NmNzZEdCVEFrLUEzazQ3QlFpckZVVHhSZ1U3RER0YyJ9.YrYpE9gv_vmgHAxFA1MFbnm6znupwUDEO3hqI6NF0PFO4ehoTKVoVljpaKafnv5N3pvJCWUDX2YVqzVevUfBIRzkfcAAE_fh-Wn7RcKLFed03bA-X1OoDW8IYOSBS3W8ekuALU-7PLK9FZk8yXVliEdA1pCjwo6Akww8jBajjwhj2vsHEDBOEA6RIq6ZAZ1r84QQqDvMzc96ciRWFiELFlt97SiVs23EZotrkbYQgTviVNafSIA2p_NiCIZPi2XYKrdpbpNs7htXXVmtUH-Q1sAKSEIH8412BNa9FgeJHMsGBa3kLNM1N4Lm9H4Xr6-AaFC61ZxSLmKtq6tCG7sEiA&session_id=61863dbb-9b60-4e49-8cd2-162312cb92f6&state=0ba352db-6652-4bee-8ac9-526543b57b4f&session_state=8fe81257-7036-4ca8-96e7-b1d7ef91591e Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxOERDMy41OUMyLkY0RDMuNjZENzoxOWI0YmU4OS00OWVhLTQ3YTAtYjNmMC03NDQ5Y2E1YWYzNGY= grant_type=authorization_code&code=ed1594cb-8525-47b9-81a1-02ab865d2782&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"cf89034d-3998-4809-883e-fb6b6e3dfada","token_type":"bearer","expires_in":299,"refresh_token":"b965742b-5b65-40e4-a8e7-3cfd6ae5dad4","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4REMzLjU5QzIuRjREMy42NkQ3IiwiZXhwIjoxNTMwODAyNDg3LCJpYXQiOjE1MzA3OTg4ODcsIm5vbmNlIjoiNjlmZjVlZmQtNWFjMy00YTU2LWJmZjktMTExNTM5Y2U4YTkwIiwiYXV0aF90aW1lIjoxNTMwNzk4ODg3LCJhdF9oYXNoIjoiSkZ3cERoVi1NSWNOZnRwb0E0UkdtdyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Ik0zNW9ObGxwUG1NODZjc2RHQlRBay1BM2s0N0JRaXJGVVR4UmdVN0REdGMifQ.fPogZzvuHeUo3_8M-p3ikFOjwuxlrQAuD8FfIsGBqRxyZ2akJEz8jFWIht_GP7N5X8Pv7nJ6IwxnLVZpXfAVJ_pz3mDA-FzPLftPHQa65IMEHP1K3XwBzo6gJhy83mxJ36uIArY8VVeswfm7RANUP5KN4xoIeHmMb7v6q898v-fhp6fLVvwOGqaMZf2pRWN0j7TSEpsQ519rhtRbXb1YievGPA4An79sXeFv4hfUPGVBAvB6sidwID142x9laEwUi2fFljajPrWaqhS_lh_s9VlPZLCHpWPdwpY6gr8W4Nqa7aTLJgdZU2pEx5D5m5T02wptflhWYwpAx6akFuu35w"} ####################################################### TEST: requestAuthorizationCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BA54.3E15.6A18.C1EC", "client_secret": "cf462cc3-d26f-4b0c-84cd-739f9ab1eb25", "registration_access_token": "8271623c-7c58-4aa0-b685-572c16734a21", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BA54.3E15.6A18.C1EC", "client_id_issued_at": 1530798887, "client_secret_expires_at": 1530885287, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 8271623c-7c58-4aa0-b685-572c16734a21 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BA54.3E15.6A18.C1EC", "client_secret": "cf462cc3-d26f-4b0c-84cd-739f9ab1eb25", "registration_access_token": "8271623c-7c58-4aa0-b685-572c16734a21", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BA54.3E15.6A18.C1EC", "client_id_issued_at": 1530798887, "client_secret_expires_at": 1530885287, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BA54.3E15.6A18.C1EC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=499b93c0-93f3-4433-a106-0e82fc4dd563 09:55:08.533 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:693e0132-02cd-45d5-beb5-62fb0583a57f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BA54.3E15.6A18.C1EC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=499b93c0-93f3-4433-a106-0e82fc4dd563 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=ed55a962-f9e3-4c10-8230-c2847709ac63&scope=address+openid+profile+email&session_id=47f96843-c32a-41fa-9516-641a8a8f191f&state=499b93c0-93f3-4433-a106-0e82fc4dd563&session_state=693e0132-02cd-45d5-beb5-62fb0583a57f ####################################################### TEST: requestAuthorizationCodeFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 175 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:54:48 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_request","error_description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, or is otherwise malformed."} ####################################################### TEST: requestAuthorizationCodeFail2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:48 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F0AF.BEE6.5BFB.271B", "client_secret": "13e2733b-145c-4fd8-af82-3f5cf91cc868", "registration_access_token": "a26ee90d-9071-4b02-85c2-0bdd627e63b1", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F0AF.BEE6.5BFB.271B", "client_id_issued_at": 1530798889, "client_secret_expires_at": 1530885289, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer a26ee90d-9071-4b02-85c2-0bdd627e63b1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F0AF.BEE6.5BFB.271B", "client_secret": "13e2733b-145c-4fd8-af82-3f5cf91cc868", "registration_access_token": "a26ee90d-9071-4b02-85c2-0bdd627e63b1", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F0AF.BEE6.5BFB.271B", "client_id_issued_at": 1530798889, "client_secret_expires_at": 1530885289, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21F0AF.BEE6.5BFB.271B&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2FINVALID_REDIRECT_URI&state=2c8d03ec-f279-414d-9a72-5b3756218373&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 220 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:54:49 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_request_redirect_uri","error_description":"The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.","state":"2c8d03ec-f279-414d-9a72-5b3756218373"} ####################################################### TEST: requestAuthorizationCodeFail3 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org response_type=code&client_id=%40%211111%210008%21INVALID_VALUE&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=5e68b07b-d71d-44d0-bfd6-dddc22c9fdb3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 175 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:54:49 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"unauthorized_client","error_description":"The client is not authorized to request an access token using this method.","state":"5e68b07b-d71d-44d0-bfd6-dddc22c9fdb3"} ####################################################### TEST: requestAuthorizationCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6103.6D3E.1D9F.8A07", "client_secret": "ff3397eb-2cf9-457e-9af7-f94eb8fdea1f", "registration_access_token": "fdc758d0-959f-45cb-a2af-664318143329", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6103.6D3E.1D9F.8A07", "client_id_issued_at": 1530798889, "client_secret_expires_at": 1530885289, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer fdc758d0-959f-45cb-a2af-664318143329 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6103.6D3E.1D9F.8A07", "client_secret": "ff3397eb-2cf9-457e-9af7-f94eb8fdea1f", "registration_access_token": "fdc758d0-959f-45cb-a2af-664318143329", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6103.6D3E.1D9F.8A07", "client_id_issued_at": 1530798889, "client_secret_expires_at": 1530885289, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%216103.6D3E.1D9F.8A07&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=7a069556-9f67-4637-b3d6-6e4dc7958c43&nonce=2a038944-8fc8-4bf1-a790-7facfd3fe6bc 09:55:10.642 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:eed21c79-bfaa-4e6c-8932-d15fd0348d12 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%216103.6D3E.1D9F.8A07&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=7a069556-9f67-4637-b3d6-6e4dc7958c43&nonce=2a038944-8fc8-4bf1-a790-7facfd3fe6bc ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=80356324-9272-4bb8-a633-6e4596675619&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE2MTAzLjZEM0UuMUQ5Ri44QTA3IiwiZXhwIjoxNTMwODAyNDkxLCJpYXQiOjE1MzA3OTg4OTEsIm5vbmNlIjoiMmEwMzg5NDQtOGZjOC00YmYxLWE3OTAtN2ZhY2ZkM2ZlNmJjIiwiYXV0aF90aW1lIjoxNTMwNzk4ODkwLCJjX2hhc2giOiJWd2xSOVNGUU5oeGV0bVFHTTFYU013Iiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiVklmbkFnS05jdXNBOFU0aVlwMkRmRVdpWFB6aU4yR1d4LW5kT1VCZjNnTSJ9.JQrMmubuFRG4Uhgq3FXrKcx6PU9UxsurOAak6r95YYRHzhvh1WVY7YXAC3KKvSkD0pl1jcBoZ98LLMV-we0isqnRtI7tQFRGV1LUAEi2mpgQhF3iwtCTxGR1bqZE8srNWoDfrFt4L6GPXtpMQNYDE6oqkJDdx7szaOYwN9BI0942Gd0oZJsVfNb4Q1C5Yezw3-JAu94yWRYj_LphPY3gFP_eZKAaf2vnJBcSrqDB4_G9adjotoCMyehv1T3K1lPveRX2dH0rXA5Cqm-5s4RpEH4fCnWh69xC8Eq14RlxZTLCk7ztMAn5MoBGAx9PBMMRyaHsax96v-eheWQruWkw8A&session_id=79c4980d-3d93-461b-bbeb-f239f1f1cf25&state=7a069556-9f67-4637-b3d6-6e4dc7958c43&session_state=eed21c79-bfaa-4e6c-8932-d15fd0348d12 ####################################################### TEST: requestAuthorizationCodeIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C935.2E12.9231.D8CC", "client_secret": "089f24f4-7472-4cbf-97c7-7309dbea570d", "registration_access_token": "83b023bb-7c28-4bc7-8b85-cead73e02f5e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C935.2E12.9231.D8CC", "client_id_issued_at": 1530798891, "client_secret_expires_at": 1530885291, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 83b023bb-7c28-4bc7-8b85-cead73e02f5e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C935.2E12.9231.D8CC", "client_secret": "089f24f4-7472-4cbf-97c7-7309dbea570d", "registration_access_token": "83b023bb-7c28-4bc7-8b85-cead73e02f5e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C935.2E12.9231.D8CC", "client_id_issued_at": 1530798891, "client_secret_expires_at": 1530885291, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C935.2E12.9231.D8CC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=a4c9ee97-cd8b-4489-8fd3-7922303ea6f1&nonce=4c369420-9098-4901-92d1-b37358359498 09:55:12.509 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1260f35b-4171-419f-a767-0ab7067c4777 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C935.2E12.9231.D8CC&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=a4c9ee97-cd8b-4489-8fd3-7922303ea6f1&nonce=4c369420-9098-4901-92d1-b37358359498 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=e269663d-9c68-4c0d-b9b2-5654c3429506&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDOTM1LjJFMTIuOTIzMS5EOENDIiwiZXhwIjoxNTMwODAyNDkyLCJpYXQiOjE1MzA3OTg4OTIsIm5vbmNlIjoiNGMzNjk0MjAtOTA5OC00OTAxLTkyZDEtYjM3MzU4MzU5NDk4IiwiYXV0aF90aW1lIjoxNTMwNzk4ODkyLCJjX2hhc2giOiJqTEVnWUxkUjFVc2VleHJFd2N3ZFdBIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiQXphMnBvd0gtc09uekY0TlBIaTA4eW9lQlZUMjF4RXczWWo1Y0FtRFZjRSJ9.gBD1f_MBy_9XAbM7QmBOR3uoZHma8pxg-Y60MfC-yROmY8iVvNNiT9DckoyuhdfPQENw9fy9p-5vpYmWekvtokQidz_4pVdqV-6GjiVF7GckEodGi_Y12IiguR5fC_Ke_X6BeImG9u-nrmwEolq4gJG7u6KnLXHO_8qxtUKN89z9HIP45diMZKwYMwanHg9u8TQWkP5yDLDF_d9txpQ9T_FwwO0x_1Y6Qxsn7uukquiQI7M8Tf4go9tNPdQs1eZpqzvDymTdlBZA7i76PO63IOmra_g8rDPjtOqYabEgqoupW882ZiXpGjRjIlKAh0-_T1lDpEDw1cGQHc5Pzmy4bg&session_id=7fa30b33-f297-4465-8675-1d6080f738e5&state=a4c9ee97-cd8b-4489-8fd3-7922303ea6f1&session_state=1260f35b-4171-419f-a767-0ab7067c4777 ####################################################### TEST: requestAuthorizationCodeNoRedirection ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9667.4E67.3569.5B77", "client_secret": "577e5dc6-f529-4cae-90cf-beff6a2819a3", "registration_access_token": "a4eff9c5-6dcb-4085-aba8-2c87bd93d3bf", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9667.4E67.3569.5B77", "client_id_issued_at": 1530798893, "client_secret_expires_at": 1530885293, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer a4eff9c5-6dcb-4085-aba8-2c87bd93d3bf ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:53 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9667.4E67.3569.5B77", "client_secret": "577e5dc6-f529-4cae-90cf-beff6a2819a3", "registration_access_token": "a4eff9c5-6dcb-4085-aba8-2c87bd93d3bf", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9667.4E67.3569.5B77", "client_id_issued_at": 1530798893, "client_secret_expires_at": 1530885293, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219667.4E67.3569.5B77&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=334ca5b7-aa92-4e82-bf8e-475f58192024 09:55:14.418 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:eb063f0c-8027-4cc1-9f78-d95a203e5918 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219667.4E67.3569.5B77&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=334ca5b7-aa92-4e82-bf8e-475f58192024 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=2d08433e-58bf-432f-b212-f36e2b69f0b3&scope=address+openid+profile+email&session_id=c5ca09da-019e-433b-9632-3dcee8f9c909&state=334ca5b7-aa92-4e82-bf8e-475f58192024&session_state=eb063f0c-8027-4cc1-9f78-d95a203e5918 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org X-Gluu-NoRedirect: true response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219667.4E67.3569.5B77&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=334ca5b7-aa92-4e82-bf8e-475f58192024 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- ####################################################### TEST: requestAuthorizationCodeUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!384D.480F.969A.DCAB", "client_secret": "3d0fd93d-da30-4f50-8a15-d25b1ab476a4", "registration_access_token": "e8c01646-6df8-4a5a-b165-89ad19a4c0e7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!384D.480F.969A.DCAB", "client_id_issued_at": 1530798894, "client_secret_expires_at": 1530885294, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer e8c01646-6df8-4a5a-b165-89ad19a4c0e7 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!384D.480F.969A.DCAB", "client_secret": "3d0fd93d-da30-4f50-8a15-d25b1ab476a4", "registration_access_token": "e8c01646-6df8-4a5a-b165-89ad19a4c0e7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!384D.480F.969A.DCAB", "client_id_issued_at": 1530798894, "client_secret_expires_at": 1530885294, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21384D.480F.969A.DCAB&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=3e48d936-c8fa-473a-b859-f29aca93b4d7 09:55:16.057 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:fceb920f-2fd8-441b-ae01-c000a0c5d5e4 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21384D.480F.969A.DCAB&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=3e48d936-c8fa-473a-b859-f29aca93b4d7 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=6c5c576c-b0dd-4107-ba43-027e32c12f15&scope=address+openid+profile+email&session_id=7ed3709e-d706-4b0b-a759-c55a5db8f450&state=3e48d936-c8fa-473a-b859-f29aca93b4d7&session_state=fceb920f-2fd8-441b-ae01-c000a0c5d5e4 ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUri ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"], "application_type": "web", "client_name": "oxAuth test app" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1082 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3F69.E8B1.097D.EDE6", "client_secret": "cbcc34ae-7e0d-4e42-80f9-b166179ee451", "registration_access_token": "7d5ae28b-c75d-4c10-8385-3f6262164e4e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3F69.E8B1.097D.EDE6", "client_id_issued_at": 1530798896, "client_secret_expires_at": 1530885296, "redirect_uris": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213F69.E8B1.097D.EDE6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=39426247-6682-4811-bfe7-e75277f0dc28 09:55:17.639 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:8ed66cd3-ee14-4a14-954c-7f6ede653b44 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213F69.E8B1.097D.EDE6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=39426247-6682-4811-bfe7-e75277f0dc28 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=1d13f670-edcc-4ae9-a0bb-afb8ea6d5f67&scope=address+openid+profile+email&session_id=fecbe5cf-3013-493b-9dd6-ba204eb11557&state=39426247-6682-4811-bfe7-e75277f0dc28&session_state=8ed66cd3-ee14-4a14-954c-7f6ede653b44 ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUriFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:57 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!06EA.38A7.F4D2.C5FE", "client_secret": "fd906a50-55b6-4d95-8233-4f133acbaa9e", "registration_access_token": "615744b1-462e-4b29-a10a-1cbb6ec882ae", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!06EA.38A7.F4D2.C5FE", "client_id_issued_at": 1530798898, "client_secret_expires_at": 1530885298, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2106EA.38A7.F4D2.C5FE&scope=openid+profile+address+email&state=24c2e813-f12e-4f9e-aac4-560b9f7bb786&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 220 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:54:58 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_request_redirect_uri","error_description":"The redirect_uri in the Authorization Request does not match any of the Client's pre-registered redirect_uris.","state":"24c2e813-f12e-4f9e-aac4-560b9f7bb786"} ####################################################### TEST: requestAuthorizationCodeWithoutRedirectUriUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"], "application_type": "web", "client_name": "oxAuth test app", "subject_type": "public", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1080 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A011.F9C6.DEDD.6E7F", "client_secret": "8a3fc82b-de13-4edc-ac93-8ed94e34d02f", "registration_access_token": "ea5c87b6-8624-42ec-bb3f-99c3b3d26477", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A011.F9C6.DEDD.6E7F", "client_id_issued_at": 1530798898, "client_secret_expires_at": 1530885298, "redirect_uris": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "subject_type": "public", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A011.F9C6.DEDD.6E7F&scope=openid+profile+address+email&state=84a9557f-9c0d-421b-8a59-156775104ad9&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:54:58 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=45481c17-5fb8-4306-8f3d-66e7409439b3&scope=address+openid+profile+email&session_id=0925b15f-d7a1-435c-842d-5fa1805b0020&state=84a9557f-9c0d-421b-8a59-156775104ad9&session_state=9bde92c1-12cb-4765-82b2-dbfdd0ba624d Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationDenyAccessThenGrantAccess ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:54:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!79F8.3F84.529D.09C0", "client_secret": "d3c50b3c-ee40-4d70-a522-2f73b5abd135", "registration_access_token": "b5d3d44a-78e3-4860-a94b-46c3939bf0b6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!79F8.3F84.529D.09C0", "client_id_issued_at": 1530798898, "client_secret_expires_at": 1530885298, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndDenyAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=178e9093-5cce-4cb4-b771-3a091dca9551 09:55:19.609 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndDenyAccess: sessionId:72691844-a0c0-4ef1-b58c-702364c36137 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=178e9093-5cce-4cb4-b771-3a091dca9551 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?error=access_denied&error_description=The+resource+owner+or+authorization+server+denied+the+request.&state=178e9093-5cce-4cb4-b771-3a091dca9551 authorizationRequestAndDenyAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=af33fc54-b34a-46ca-91fd-14209a9d4c91&session_id=72691844-a0c0-4ef1-b58c-702364c36137 authorizationRequestAndDenyAccess: sessionState:null ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=af33fc54-b34a-46ca-91fd-14209a9d4c91&session_id=72691844-a0c0-4ef1-b58c-702364c36137 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?error=access_denied&error_description=The+resource+owner+or+authorization+server+denied+the+request.&state=af33fc54-b34a-46ca-91fd-14209a9d4c91 authorizationRequestAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=417d3d63-8640-4b95-9772-05d621aedce0&session_id=72691844-a0c0-4ef1-b58c-702364c36137 authorizationRequestAndGrantAccess: sessionState:e5a90c7f-1f78-4bf2-99ad-961e8ee8379e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2179F8.3F84.529D.09C0&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=417d3d63-8640-4b95-9772-05d621aedce0&session_id=72691844-a0c0-4ef1-b58c-702364c36137 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=2629b4c5-22af-48b7-ae8e-ebf166ad8478&scope=address+openid+profile+email&session_id=72691844-a0c0-4ef1-b58c-702364c36137&state=417d3d63-8640-4b95-9772-05d621aedce0&session_state=e5a90c7f-1f78-4bf2-99ad-961e8ee8379e ####################################################### TEST: requestAuthorizationIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!02E0.D901.15F2.F178", "client_secret": "5e52f019-a0cc-4070-994c-f3141ce2572f", "registration_access_token": "174ad366-6b61-42a8-af9e-656c313bb31d", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!02E0.D901.15F2.F178", "client_id_issued_at": 1530798901, "client_secret_expires_at": 1530885301, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 174ad366-6b61-42a8-af9e-656c313bb31d ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!02E0.D901.15F2.F178", "client_secret": "5e52f019-a0cc-4070-994c-f3141ce2572f", "registration_access_token": "174ad366-6b61-42a8-af9e-656c313bb31d", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!02E0.D901.15F2.F178", "client_id_issued_at": 1530798901, "client_secret_expires_at": 1530885301, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2102E0.D901.15F2.F178&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=96b5d2ad-f34d-42a8-870b-a317d96633a8&nonce=2ec63db4-9970-4a1f-8127-d5d34d7a814a 09:55:22.624 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:d92ebc76-c9c4-458a-95c3-f45a3c49bc69 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2102E0.D901.15F2.F178&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=96b5d2ad-f34d-42a8-870b-a317d96633a8&nonce=2ec63db4-9970-4a1f-8127-d5d34d7a814a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwMkUwLkQ5MDEuMTVGMi5GMTc4IiwiZXhwIjoxNTMwODAyNTAyLCJpYXQiOjE1MzA3OTg5MDIsIm5vbmNlIjoiMmVjNjNkYjQtOTk3MC00YTFmLTgxMjctZDVkMzRkN2E4MTRhIiwiYXV0aF90aW1lIjoxNTMwNzk4OTAyLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJ0WVRvSlkwZjIyY0hvQndyREJBVzI1dWo0OENjLU5IWHo0OC1tc05YY25ZIn0.MTjiWLAsaOfWT62xZ7U39LHi-y9snUz_w8gAgpfF6s-nhZYrEmGKjLXeL_kl8jT4_fGi3yLFNCd0apFC0CXxuqsXLbbHg5YGEim4RLMQznwXXidNQS_yDgvJeFOVMmas6fJP_62UzERU7_ZtPJfnBK3_dJDWJVbUWwSyT-zP6tvIiMmFtKBiQZgkme2AEJrWMb2EMZ7lQoV6fNkNlhIwA-Q74GDLBw5aYtbstwD1zlIQeLkqlvOzOzPyHt5N9rxesZVdqNG_-zddE-rZAoVISz0lJ8jJKk_JPXsY7qj__loMaL0j4ismtemoRzN45WWuZRjEPPkmngdjDSK_jPrGag&session_id=4a754920-d12f-49af-9883-be62a141fbd3&state=96b5d2ad-f34d-42a8-870b-a317d96633a8&session_state=d92ebc76-c9c4-458a-95c3-f45a3c49bc69 ####################################################### TEST: requestAuthorizationIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["id_token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:03 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9ADA.D026.7908.CB42", "client_secret": "5dfc1fff-d5c1-48b0-a2d3-86ec8d9e6a5c", "registration_access_token": "1898610d-4b3d-457d-aad4-96ea011e5cd0", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9ADA.D026.7908.CB42", "client_id_issued_at": 1530798903, "client_secret_expires_at": 1530885303, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 1898610d-4b3d-457d-aad4-96ea011e5cd0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:03 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9ADA.D026.7908.CB42", "client_secret": "5dfc1fff-d5c1-48b0-a2d3-86ec8d9e6a5c", "registration_access_token": "1898610d-4b3d-457d-aad4-96ea011e5cd0", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9ADA.D026.7908.CB42", "client_id_issued_at": 1530798903, "client_secret_expires_at": 1530885303, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219ADA.D026.7908.CB42&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b3d04e2c-afbc-4c25-bb90-f6da376f3261&nonce=e29986a1-8120-43dd-ae2b-32cfb37a65a8 09:55:24.331 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:557321a8-96cf-4017-805c-5b7d8b9d6f83 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219ADA.D026.7908.CB42&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=b3d04e2c-afbc-4c25-bb90-f6da376f3261&nonce=e29986a1-8120-43dd-ae2b-32cfb37a65a8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5QURBLkQwMjYuNzkwOC5DQjQyIiwiZXhwIjoxNTMwODAyNTA0LCJpYXQiOjE1MzA3OTg5MDQsIm5vbmNlIjoiZTI5OTg2YTEtODEyMC00M2RkLWFlMmItMzJjZmIzN2E2NWE4IiwiYXV0aF90aW1lIjoxNTMwNzk4OTA0LCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJBNmdMaGNET2NFdXhqaXM1MEtqeWk5V2R3ZV9HUk51N2dSWnY2MHV0YWlRIn0.JcvzZzYBjdCWBnUCNMDK9w3aKpo6YvLp5GsISP8klgAQxivOZtgT9c5XQxyoLEJCFxmJgPvze-i6qu5MeKMsDyp8gVq5nFEkld4zrrkEv_4NCvW-yPAqbcYSFVkkO5d6rprnCe1gIfxVmS_GPDMcJ3-nDojiDfV28m4FRZ7kgGEDE7i8I4DfSpHaEqdA1fj4FoX66TxF709CZ6T40Y-Ha0olXDk54Ru2sAcZFZYtf1cmMDvMiOm3zHEkxP3rdvapy_KwarpkvqR9-O3eBjBBBT3PQa6jmADo2qYOyvLczEet8VQinItvCzu2CY_Jl_nbpWLieMZEFL682LdCybmkdA&session_id=4afd42ff-aee3-4504-99a1-3dab31f50c05&state=b3d04e2c-afbc-4c25-bb90-f6da376f3261&session_state=557321a8-96cf-4017-805c-5b7d8b9d6f83 ####################################################### TEST: requestAuthorizationPromptConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BED4.AB62.3C21.944D", "client_secret": "bc645cd5-09b5-4281-97a2-fbe8a4e5cc9b", "registration_access_token": "0e69e7ef-e38a-417f-861d-1f4aff3dd12f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BED4.AB62.3C21.944D", "client_id_issued_at": 1530798904, "client_secret_expires_at": 1530885304, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 0e69e7ef-e38a-417f-861d-1f4aff3dd12f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BED4.AB62.3C21.944D", "client_secret": "bc645cd5-09b5-4281-97a2-fbe8a4e5cc9b", "registration_access_token": "0e69e7ef-e38a-417f-861d-1f4aff3dd12f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BED4.AB62.3C21.944D", "client_id_issued_at": 1530798904, "client_secret_expires_at": 1530885304, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BED4.AB62.3C21.944D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=aa92e5b8-2ad0-43c7-b620-a58e8e16e27f&prompt=consent 09:55:25.963 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ada1358d-9266-4c40-9600-6e6f24bb13d3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BED4.AB62.3C21.944D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=aa92e5b8-2ad0-43c7-b620-a58e8e16e27f&prompt=consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=b3d7f975-2ed9-4546-8dac-467c1b1fc26c&scope=address+openid+profile+email&session_id=1cb8ad3f-bffd-4528-bd3b-a432942014f6&state=aa92e5b8-2ad0-43c7-b620-a58e8e16e27f&session_state=ada1358d-9266-4c40-9600-6e6f24bb13d3 ####################################################### TEST: requestAuthorizationPromptConsentTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3FCD.3BDA.3468.B59F", "client_secret": "4d6ef4be-eff9-4917-bb88-b67491eb01c3", "registration_access_token": "7157c02c-937e-4383-a7a4-123b18c1ab48", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3FCD.3BDA.3468.B59F", "client_id_issued_at": 1530798906, "client_secret_expires_at": 1530885306, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 7157c02c-937e-4383-a7a4-123b18c1ab48 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3FCD.3BDA.3468.B59F", "client_secret": "4d6ef4be-eff9-4917-bb88-b67491eb01c3", "registration_access_token": "7157c02c-937e-4383-a7a4-123b18c1ab48", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3FCD.3BDA.3468.B59F", "client_id_issued_at": 1530798906, "client_secret_expires_at": 1530885306, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213FCD.3BDA.3468.B59F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=88f7ba64-aeb5-44a1-9d63-9ea45a9b16c1&prompt=consent 09:55:27.663 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:f5d3a33e-82cf-44c6-9c35-3b12b9ac1043 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213FCD.3BDA.3468.B59F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=88f7ba64-aeb5-44a1-9d63-9ea45a9b16c1&prompt=consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=4d189524-b507-46c7-9f78-c52e755ac6dd&scope=address+openid+profile+email&session_id=d879b967-8ab4-4ff7-b82e-5b828309b79c&state=88f7ba64-aeb5-44a1-9d63-9ea45a9b16c1&session_state=f5d3a33e-82cf-44c6-9c35-3b12b9ac1043 ####################################################### TEST: requestAuthorizationPromptLogin ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:08 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!67C3.BF9F.E15B.F292", "client_secret": "d21d857d-f61a-4324-8b35-2c4c5ad8c774", "registration_access_token": "1d4cd884-2575-41eb-9913-508f151d9ba3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!67C3.BF9F.E15B.F292", "client_id_issued_at": 1530798908, "client_secret_expires_at": 1530885308, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 1d4cd884-2575-41eb-9913-508f151d9ba3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:08 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!67C3.BF9F.E15B.F292", "client_secret": "d21d857d-f61a-4324-8b35-2c4c5ad8c774", "registration_access_token": "1d4cd884-2575-41eb-9913-508f151d9ba3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!67C3.BF9F.E15B.F292", "client_id_issued_at": 1530798908, "client_secret_expires_at": 1530885308, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2167C3.BF9F.E15B.F292&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=947bc019-39f0-4995-8ea3-3028e88a4f7d&prompt=login 09:55:29.550 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:1308093a-8ffd-491c-b364-bd9ec63d3c2a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2167C3.BF9F.E15B.F292&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=947bc019-39f0-4995-8ea3-3028e88a4f7d&prompt=login ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=ebecec7c-8bfd-490c-9ada-70988ecd73fa&scope=address+openid+profile+email&session_id=6ad2dddb-dc76-4254-a3bc-a5b55bb08388&state=947bc019-39f0-4995-8ea3-3028e88a4f7d&session_state=1308093a-8ffd-491c-b364-bd9ec63d3c2a ####################################################### TEST: requestAuthorizationPromptLoginConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C18B.09A6.B5AD.9A09", "client_secret": "b367a20c-2880-4d19-8600-46215f6c4e23", "registration_access_token": "35e8d9d5-d9bd-4514-bdc5-7a4c6070b6a6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C18B.09A6.B5AD.9A09", "client_id_issued_at": 1530798910, "client_secret_expires_at": 1530885310, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 35e8d9d5-d9bd-4514-bdc5-7a4c6070b6a6 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C18B.09A6.B5AD.9A09", "client_secret": "b367a20c-2880-4d19-8600-46215f6c4e23", "registration_access_token": "35e8d9d5-d9bd-4514-bdc5-7a4c6070b6a6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C18B.09A6.B5AD.9A09", "client_id_issued_at": 1530798910, "client_secret_expires_at": 1530885310, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C18B.09A6.B5AD.9A09&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=20e49291-6a5f-43b3-a852-841226da0df7&prompt=login+consent 09:55:31.283 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a36418d1-dd5c-4149-9400-04d6d7618bc4 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C18B.09A6.B5AD.9A09&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=20e49291-6a5f-43b3-a852-841226da0df7&prompt=login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=76625f00-a55e-4293-a463-6b814aa04514&scope=address+openid+profile+email&session_id=65c4a62a-a466-4ce8-bde0-ca86f94b0047&state=20e49291-6a5f-43b3-a852-841226da0df7&session_state=a36418d1-dd5c-4149-9400-04d6d7618bc4 ####################################################### TEST: requestAuthorizationPromptLoginConsentTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:11 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EE39.8777.666F.266C", "client_secret": "ee5fc629-29c7-4d24-b77d-71ad8a2f913b", "registration_access_token": "92427095-8202-4122-8a0d-d2b7180f6814", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EE39.8777.666F.266C", "client_id_issued_at": 1530798911, "client_secret_expires_at": 1530885311, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 92427095-8202-4122-8a0d-d2b7180f6814 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:11 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EE39.8777.666F.266C", "client_secret": "ee5fc629-29c7-4d24-b77d-71ad8a2f913b", "registration_access_token": "92427095-8202-4122-8a0d-d2b7180f6814", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!EE39.8777.666F.266C", "client_id_issued_at": 1530798911, "client_secret_expires_at": 1530885311, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21EE39.8777.666F.266C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2400e303-3fcd-4825-bf0b-d599be2de34f&prompt=login+consent 09:55:32.989 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9710ee3f-8211-43e2-8a6e-b1523ca11ef4 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21EE39.8777.666F.266C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2400e303-3fcd-4825-bf0b-d599be2de34f&prompt=login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=2ed4aa2b-6398-4248-a701-d7538accaa8f&scope=address+openid+profile+email&session_id=19e21cc1-7e3c-489b-a6ac-f68ca76c8b7f&state=2400e303-3fcd-4825-bf0b-d599be2de34f&session_state=9710ee3f-8211-43e2-8a6e-b1523ca11ef4 ####################################################### TEST: requestAuthorizationPromptNoneFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1E48.12B6.B432.9CB7", "client_secret": "4cfe9203-3608-4199-b490-1bc89fa2d73e", "registration_access_token": "9d71063c-8660-4215-acd9-4ce9022c9526", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1E48.12B6.B432.9CB7", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 9d71063c-8660-4215-acd9-4ce9022c9526 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1E48.12B6.B432.9CB7", "client_secret": "4cfe9203-3608-4199-b490-1bc89fa2d73e", "registration_access_token": "9d71063c-8660-4215-acd9-4ce9022c9526", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1E48.12B6.B432.9CB7", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211E48.12B6.B432.9CB7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=8f978c72-8eff-4209-bde1-647bc4bdf14f&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?error_description=The+Authorization+Server+requires+End-User+authentication.+This+error+MAY+be+returned+when+the+prompt+parameter+in+the+Authorization+Request+is+set+to+none+to+request+that+the+Authorization+Server+should+not+display+any+user+interfaces+to+the+End-User%2C+but+the+Authorization+Request+cannot+be+completed+without+displaying+a+user+interface+for+user+authentication.&state=8f978c72-8eff-4209-bde1-647bc4bdf14f&error=login_required Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationPromptLoginConsent ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5D2.ADC1.E1FC.0184", "client_secret": "acf38739-383f-4108-a6f7-5463f20b99a8", "registration_access_token": "303cdb87-4714-47b2-a8db-4d4e0633e35e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5D2.ADC1.E1FC.0184", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 303cdb87-4714-47b2-a8db-4d4e0633e35e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5D2.ADC1.E1FC.0184", "client_secret": "acf38739-383f-4108-a6f7-5463f20b99a8", "registration_access_token": "303cdb87-4714-47b2-a8db-4d4e0633e35e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5D2.ADC1.E1FC.0184", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21A5D2.ADC1.E1FC.0184&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=4685c19a-831a-4995-88bf-339755d8ddc3&prompt=none+login+consent ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=4685c19a-831a-4995-88bf-339755d8ddc3&error=invalid_request Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationPromptNoneTrustedClient ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!28E9.8EBF.215B.147C", "client_secret": "d377aab1-2b5f-4333-98e5-aa515a87f9b3", "registration_access_token": "f33a0bc1-cda1-48ea-818c-a325480420ed", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!28E9.8EBF.215B.147C", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer f33a0bc1-cda1-48ea-818c-a325480420ed ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!28E9.8EBF.215B.147C", "client_secret": "d377aab1-2b5f-4333-98e5-aa515a87f9b3", "registration_access_token": "f33a0bc1-cda1-48ea-818c-a325480420ed", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!28E9.8EBF.215B.147C", "client_id_issued_at": 1530798913, "client_secret_expires_at": 1530885313, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2128E9.8EBF.215B.147C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=aa2fa028-e222-4884-8452-f18eef7a0ead&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:55:14 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=02710070-8f25-4482-8d79-ac0b31b408ed&scope=address+openid+profile+email&session_id=f2fad9db-2b98-4a3f-bc01-de90e39bdbe4&state=aa2fa028-e222-4884-8452-f18eef7a0ead&session_state=7d5ca22c-65da-47dd-8f92-605b838671c9 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AB0C.C23C.B030.5D14", "client_secret": "4f93dc7d-012b-4c9a-af33-72ba9ff34d90", "registration_access_token": "44249a5a-5030-4707-bbf5-b0be58b9457b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AB0C.C23C.B030.5D14", "client_id_issued_at": 1530798914, "client_secret_expires_at": 1530885314, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 44249a5a-5030-4707-bbf5-b0be58b9457b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:14 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AB0C.C23C.B030.5D14", "client_secret": "4f93dc7d-012b-4c9a-af33-72ba9ff34d90", "registration_access_token": "44249a5a-5030-4707-bbf5-b0be58b9457b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AB0C.C23C.B030.5D14", "client_id_issued_at": 1530798914, "client_secret_expires_at": 1530885314, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21AB0C.C23C.B030.5D14&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=05583723-7bce-458d-8906-07a36c0b9137&nonce=607517ae-a148-4f20-960f-bfd026b878ea 09:55:35.480 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:a67af845-70b1-4657-b620-bf240751604d ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21AB0C.C23C.B030.5D14&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=05583723-7bce-458d-8906-07a36c0b9137&nonce=607517ae-a148-4f20-960f-bfd026b878ea ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=2d437148-fd88-4ec8-8c35-6374b26f9a19&scope=address+openid+profile+email&session_id=ee65d8a9-781b-4f87-9765-d19d03747e31&state=05583723-7bce-458d-8906-07a36c0b9137&token_type=bearer&session_state=a67af845-70b1-4657-b620-bf240751604d&expires_in=299 ####################################################### TEST: requestAuthorizationTokenCode ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:15 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!14D5.AC9C.A2D6.B12D", "client_secret": "5ba4abad-1169-4588-a262-2aad5a7e9c78", "registration_access_token": "f222968a-281e-4f30-92a8-bfea3ee7d89e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!14D5.AC9C.A2D6.B12D", "client_id_issued_at": 1530798915, "client_secret_expires_at": 1530885315, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer f222968a-281e-4f30-92a8-bfea3ee7d89e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:15 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!14D5.AC9C.A2D6.B12D", "client_secret": "5ba4abad-1169-4588-a262-2aad5a7e9c78", "registration_access_token": "f222968a-281e-4f30-92a8-bfea3ee7d89e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!14D5.AC9C.A2D6.B12D", "client_id_issued_at": 1530798915, "client_secret_expires_at": 1530885315, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2114D5.AC9C.A2D6.B12D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2e6dac56-d27b-43db-80b9-51dba0f7e3a1&nonce=75f6fc77-daca-4e0c-a381-b315e5c7f0be 09:55:37.115 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:de39e766-eea3-4209-9c4a-f9c7d25eacf1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2114D5.AC9C.A2D6.B12D&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=2e6dac56-d27b-43db-80b9-51dba0f7e3a1&nonce=75f6fc77-daca-4e0c-a381-b315e5c7f0be ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=ab07fe86-530c-409b-b120-ac2ba4a2c57f&code=00facf8f-536c-4130-aa0e-eb2a84cbab91&scope=address+openid+profile+email&session_id=f6fe0863-965f-4537-9784-903812bf670f&state=2e6dac56-d27b-43db-80b9-51dba0f7e3a1&token_type=bearer&session_state=de39e766-eea3-4209-9c4a-f9c7d25eacf1&expires_in=299 ####################################################### TEST: requestAuthorizationTokenCodeIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:17 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1318.2E3B.F68F.E50A", "client_secret": "196c884b-82c5-4775-b40a-0b304aee69e4", "registration_access_token": "bf512358-6bc6-4d1a-b3c7-6bc2cc109f03", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1318.2E3B.F68F.E50A", "client_id_issued_at": 1530798917, "client_secret_expires_at": 1530885317, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer bf512358-6bc6-4d1a-b3c7-6bc2cc109f03 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:17 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1318.2E3B.F68F.E50A", "client_secret": "196c884b-82c5-4775-b40a-0b304aee69e4", "registration_access_token": "bf512358-6bc6-4d1a-b3c7-6bc2cc109f03", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1318.2E3B.F68F.E50A", "client_id_issued_at": 1530798917, "client_secret_expires_at": 1530885317, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211318.2E3B.F68F.E50A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=73ed1863-c02a-4852-b989-f49369d5434a&nonce=51b8fc18-6677-4df2-900a-fd9a1e48d34b 09:55:38.803 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:e24b975a-500d-4d4f-8687-98f70f0de190 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211318.2E3B.F68F.E50A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=73ed1863-c02a-4852-b989-f49369d5434a&nonce=51b8fc18-6677-4df2-900a-fd9a1e48d34b ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=d7abd3c3-8375-4a65-8c94-bcf2932c4edf&code=47557811-3ac7-4bf9-893f-273623b2ac7a&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExMzE4LjJFM0IuRjY4Ri5FNTBBIiwiZXhwIjoxNTMwODAyNTE5LCJpYXQiOjE1MzA3OTg5MTksIm5vbmNlIjoiNTFiOGZjMTgtNjY3Ny00ZGYyLTkwMGEtZmQ5YTFlNDhkMzRiIiwiYXV0aF90aW1lIjoxNTMwNzk4OTE4LCJjX2hhc2giOiJ3TExtQy1vb3ExdHNTUThKSkZVN1hRIiwiYXRfaGFzaCI6ImZueGhBX0pwOFIzWVNtNWxDd0N4aVEiLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiIyMEVJTFBHVUJoX1pJcHVQN0Q5SmdWR2J1TXpmb3pPbUxGT3g1b0RGazZ3In0.jNtgfyhWfmqCjaODobd4sFv4AbAf5NXLMki1idSjFmi04cDoxoOuv7mDPZlnIANFb2y-CMVHhsIPFV0cER1gz8zwMXrL6n_wpSdihC74pqilK18VsE42S2lw5uhizgLLUFHwjyLameIhCttRIKGu7Fq3Ava2iz6g_h-z6w_AxIiL8rLE0BXdaA9qUpGbzXp9fbpqN_Neiu81luzy-5gTVlww6GdG-cmQ-IdglYJf4hl1yeWlu7jkIGssd0RZYcD8kqWYmC7Emxnb4-x-2sDu4gFrQp0QcHLTcjr2zVmjS72FQVWLdphBawaOSvnvLSL43e6PfvtNYNZmwEPrW3bstg&session_id=e26566ca-881c-4497-b269-cc7cfe1d7373&state=73ed1863-c02a-4852-b989-f49369d5434a&token_type=bearer&session_state=e24b975a-500d-4d4f-8687-98f70f0de190&expires_in=299 ####################################################### TEST: requestAuthorizationTokenCodeIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:19 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3512.38BE.D6CE.3791", "client_secret": "88b78edc-2400-4d80-a3e1-15cfdaad0a4a", "registration_access_token": "808d3b98-0aa6-4e69-bb90-aa0231a287bb", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3512.38BE.D6CE.3791", "client_id_issued_at": 1530798919, "client_secret_expires_at": 1530885319, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 808d3b98-0aa6-4e69-bb90-aa0231a287bb ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:19 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3512.38BE.D6CE.3791", "client_secret": "88b78edc-2400-4d80-a3e1-15cfdaad0a4a", "registration_access_token": "808d3b98-0aa6-4e69-bb90-aa0231a287bb", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3512.38BE.D6CE.3791", "client_id_issued_at": 1530798919, "client_secret_expires_at": 1530885319, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213512.38BE.D6CE.3791&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=04c66b54-739b-490f-817a-60a85c55adbc&nonce=8871dd85-5523-4144-bf2a-4acbe7b9b5a4 09:55:40.533 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:c5c37cfe-3fb9-421e-b63d-126e28bbabb0 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213512.38BE.D6CE.3791&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=04c66b54-739b-490f-817a-60a85c55adbc&nonce=8871dd85-5523-4144-bf2a-4acbe7b9b5a4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=9fdd862d-ec62-40f9-a711-4f9554bf37b5&code=a4de0a42-8e95-48f8-9871-d3c57e07cfb3&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEzNTEyLjM4QkUuRDZDRS4zNzkxIiwiZXhwIjoxNTMwODAyNTIwLCJpYXQiOjE1MzA3OTg5MjAsIm5vbmNlIjoiODg3MWRkODUtNTUyMy00MTQ0LWJmMmEtNGFjYmU3YjliNWE0IiwiYXV0aF90aW1lIjoxNTMwNzk4OTIwLCJjX2hhc2giOiJJSzcxYmhQdzVOWHoyNm9MTFloVy1nIiwiYXRfaGFzaCI6Ikp4MEpHWlFreTlZblowc2NiVnhJRHciLCJveE9wZW5JRENvbm5lY3RWZXJzaW9uIjoib3BlbmlkY29ubmVjdC0xLjAiLCJzdWIiOiJrVU04cjN5SjZ5R3NUSWFhNmY0UU4wNGlObnduWmVVVTlJSHNHaTJSMmFzIn0.FNRzNw7lKEmnoBVSVwJ8JTL2ANcfRsJyi0FTAipe3_J-OlGRzPlRATybxoer4FjhC2iOL76F10htfPZwhMHALKNZrF2mFpexfSplsOGUczBEL17AL-jRFG7KujneY3CR-w0N-6K9dJOMQxd5dijCMxx11v5SmozzbXxCKLS7shzyZ-jPR98hSjOKPkNxYtsSvNp5VKt3-_PAZiGJSw7pb7zJobg0abM2MKYHaBpu7J4HRqOYpKaTosyEVnTYxRJpRP2nhc5TrFsweB-ra1u-50rWnsTXRntN3IPVEA8pLHamniMZTI_Rh3yE9_p0uoppE9wDCM5D36SA3KnbNnxlKg&session_id=3be6ccb4-ea37-4e9f-a0e7-9fda4dec2187&state=04c66b54-739b-490f-817a-60a85c55adbc&token_type=bearer&session_state=c5c37cfe-3fb9-421e-b63d-126e28bbabb0&expires_in=299 ####################################################### TEST: requestAuthorizationTokenCodeUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:21 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!DDFD.2433.4386.94C8", "client_secret": "cfba62b3-fa1a-4c9b-b913-624a2edf43f0", "registration_access_token": "70a059b9-5226-457b-8205-3013713179d7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!DDFD.2433.4386.94C8", "client_id_issued_at": 1530798921, "client_secret_expires_at": 1530885321, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 70a059b9-5226-457b-8205-3013713179d7 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1405 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:21 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!DDFD.2433.4386.94C8", "client_secret": "cfba62b3-fa1a-4c9b-b913-624a2edf43f0", "registration_access_token": "70a059b9-5226-457b-8205-3013713179d7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!DDFD.2433.4386.94C8", "client_id_issued_at": 1530798921, "client_secret_expires_at": 1530885321, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21DDFD.2433.4386.94C8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9ab7de3d-33c0-4652-9587-80170bfcce9d&nonce=2c0d6dee-0d70-4a48-bd82-115ed7bb8c66 09:55:42.389 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:7931e5c0-6a10-4a4b-b2ad-65cfc3b65733 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21DDFD.2433.4386.94C8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=9ab7de3d-33c0-4652-9587-80170bfcce9d&nonce=2c0d6dee-0d70-4a48-bd82-115ed7bb8c66 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=1036604a-f829-4794-a7f3-962382f6c7af&code=0c376dc9-6aa2-4a8f-b81f-fb9125108103&scope=address+openid+profile+email&session_id=ce90acd6-f535-4b48-a063-a61573661ae9&state=9ab7de3d-33c0-4652-9587-80170bfcce9d&token_type=bearer&session_state=7931e5c0-6a10-4a4b-b2ad-65cfc3b65733&expires_in=299 ####################################################### TEST: requestAuthorizationTokenFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=a28174e0-56e9-4a8f-885c-cd81df0f7cb8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 222 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:55:22 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_request","error_description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, or is otherwise malformed.","state":"a28174e0-56e9-4a8f-885c-cd81df0f7cb8"} ####################################################### TEST: requestAuthorizationTokenFail2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C246.890A.8FD3.4C65", "client_secret": "efc5d4e1-93ea-4933-8022-0d29949b8ce6", "registration_access_token": "22a7b970-b178-4eb4-bf22-e5f75e3de7a0", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C246.890A.8FD3.4C65", "client_id_issued_at": 1530798922, "client_secret_expires_at": 1530885322, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 22a7b970-b178-4eb4-bf22-e5f75e3de7a0 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:22 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C246.890A.8FD3.4C65", "client_secret": "efc5d4e1-93ea-4933-8022-0d29949b8ce6", "registration_access_token": "22a7b970-b178-4eb4-bf22-e5f75e3de7a0", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C246.890A.8FD3.4C65", "client_id_issued_at": 1530798922, "client_secret_expires_at": 1530885322, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C246.890A.8FD3.4C65&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=69532160-b318-4e50-91bb-1f054496a831&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:55:23 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#error_description=The+request+is+missing+a+required+parameter%2C+includes+an+unsupported+parameter+or+parameter+value%2C+or+is+otherwise+malformed.&state=69532160-b318-4e50-91bb-1f054496a831&error=invalid_request Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ####################################################### TEST: requestAuthorizationTokenIdToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:23 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F43A.6346.C1D0.6328", "client_secret": "302d150e-2756-4bba-a172-8806fcb44b34", "registration_access_token": "15248ba6-8793-4b6f-a7fe-90650832c30c", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F43A.6346.C1D0.6328", "client_id_issued_at": 1530798923, "client_secret_expires_at": 1530885323, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 15248ba6-8793-4b6f-a7fe-90650832c30c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:23 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F43A.6346.C1D0.6328", "client_secret": "302d150e-2756-4bba-a172-8806fcb44b34", "registration_access_token": "15248ba6-8793-4b6f-a7fe-90650832c30c", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F43A.6346.C1D0.6328", "client_id_issued_at": 1530798923, "client_secret_expires_at": 1530885323, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21F43A.6346.C1D0.6328&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=d95a5b0f-fa3d-43a7-ae42-4f4630870fe7&nonce=0eda59f9-71cf-4f6b-b476-f2d2c9835f01 09:55:44.473 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:20342997-c5c0-4df1-b095-8cb220572b71 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21F43A.6346.C1D0.6328&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=d95a5b0f-fa3d-43a7-ae42-4f4630870fe7&nonce=0eda59f9-71cf-4f6b-b476-f2d2c9835f01 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=07e65a53-bddb-4603-aa71-9cb8ee7edb46&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFGNDNBLjYzNDYuQzFEMC42MzI4IiwiZXhwIjoxNTMwODAyNTI0LCJpYXQiOjE1MzA3OTg5MjQsIm5vbmNlIjoiMGVkYTU5ZjktNzFjZi00ZjZiLWI0NzYtZjJkMmM5ODM1ZjAxIiwiYXV0aF90aW1lIjoxNTMwNzk4OTI0LCJhdF9oYXNoIjoiSkR5VlFBbUxKSVJRckxtTHp4REZoZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImNLWXRROHJwZTFuWElHR3NGLWFNUmplTElpajdMYk04U3M2OW9nOURGQ2cifQ.spdVMLzVbQFzgehHBZIVU2WOgHYG-kv4kXTLy0y_SRMz59pRIXci-mINfOOxp40g8xlJh-uDZqBYZvPR6Zw4UBjXdO1cEmLfQJmVMeTE9iVwSxWgTmyX-nzZNuUj2-zkzfulMYSgICBLAMNKoJ4igR561XMXdb6y-vjJC1XvJtVCJ4aKb24T1agSCHEs3gxkQlQJ9BBgjgIx_ax2vkG4jKp-XC2GoswR-TPrIsONAfECcHVi1TMJlrdOxf9CTXWQFbyELRmZ7bqeJFq_CxlXFYubSPB3vJ_QDDJWeZ7otkt01-Y15aIYxuIASlwC8y0F3cKocFi4oS_id6iTE9THRQ&session_id=f73bc923-5fac-4f32-ac7e-0ac6407d50b2&state=d95a5b0f-fa3d-43a7-ae42-4f4630870fe7&token_type=bearer&session_state=20342997-c5c0-4df1-b095-8cb220572b71&expires_in=299 ####################################################### TEST: requestAuthorizationTokenIdTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:24 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1DFF.DA8E.C5A4.B89F", "client_secret": "e6a4cb03-9fed-43ce-98e0-8d7b1d19adcd", "registration_access_token": "b1129dca-d291-4f7b-92e6-1ecfdca604fa", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1DFF.DA8E.C5A4.B89F", "client_id_issued_at": 1530798925, "client_secret_expires_at": 1530885325, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer b1129dca-d291-4f7b-92e6-1ecfdca604fa ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:25 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1DFF.DA8E.C5A4.B89F", "client_secret": "e6a4cb03-9fed-43ce-98e0-8d7b1d19adcd", "registration_access_token": "b1129dca-d291-4f7b-92e6-1ecfdca604fa", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1DFF.DA8E.C5A4.B89F", "client_id_issued_at": 1530798925, "client_secret_expires_at": 1530885325, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211DFF.DA8E.C5A4.B89F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f92d4b10-8b1a-458d-879b-f1fd0afaa015&nonce=b7d29f5f-76b1-4d12-9a79-2827a3b5ecb8 09:55:46.227 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:71787a9d-1a25-4ab8-b034-4c8cb58503b7 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%211DFF.DA8E.C5A4.B89F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f92d4b10-8b1a-458d-879b-f1fd0afaa015&nonce=b7d29f5f-76b1-4d12-9a79-2827a3b5ecb8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=6044b4d5-4ddf-49b7-886a-a2c10a0423e8&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExREZGLkRBOEUuQzVBNC5CODlGIiwiZXhwIjoxNTMwODAyNTI2LCJpYXQiOjE1MzA3OTg5MjYsIm5vbmNlIjoiYjdkMjlmNWYtNzZiMS00ZDEyLTlhNzktMjgyN2EzYjVlY2I4IiwiYXV0aF90aW1lIjoxNTMwNzk4OTI2LCJhdF9oYXNoIjoiM3BESzUxQkNrcXE3c3lXUVBWNTg0ZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Imh4YkE5bnMtZy1IT0lzU3lxc0syT1ozN0YxZ19kLUs2NzNEc0xpRnVjelUifQ.sLitqtEKS4JTcMgNjjU3A5etDA5ZZ8uJXLwoUj8h7ndABJYTpsw-w1Kq7tOxCTveJAVWDXJ3cnF7g8eki2iuWPEK7wGXFHscXFnOdR0V9iITQV3WOAMK1t6o4jBJUhanBY5rL4qxxTEj8ZY74DAKHRKRJZGteuLGqYsgSj0vCO_qalZUPkQUqfelbPtIv2YiJ_0K-4Nl2NoLdOxrnfwBwYDjeoH8Ru6N5f-UhssuwUU05IsFnPI_o1lwVmHqnkYKQbMSMJTlIA_Ten6_YERTNrncC_lPe3e9WSrY8mqgb2FgEBP9VO7SDavgi804n92yh210Zw7tcL-o5W0ZNdMV0w&session_id=26fb666a-53f9-4409-a3cd-b2df76f69fe1&state=f92d4b10-8b1a-458d-879b-f1fd0afaa015&token_type=bearer&session_state=71787a9d-1a25-4ab8-b034-4c8cb58503b7&expires_in=299 ####################################################### TEST: requestAuthorizationTokenUserBasicAuth ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["token"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7C50.705C.C14E.A58C", "client_secret": "4f7ea06a-8e33-447c-bccd-e408f6bd8e31", "registration_access_token": "b5df0c5f-446f-4c97-ab8b-fad0c8b90f37", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7C50.705C.C14E.A58C", "client_id_issued_at": 1530798926, "client_secret_expires_at": 1530885326, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer b5df0c5f-446f-4c97-ab8b-fad0c8b90f37 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1306 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:26 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7C50.705C.C14E.A58C", "client_secret": "4f7ea06a-8e33-447c-bccd-e408f6bd8e31", "registration_access_token": "b5df0c5f-446f-4c97-ab8b-fad0c8b90f37", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7C50.705C.C14E.A58C", "client_id_issued_at": 1530798926, "client_secret_expires_at": 1530885326, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["token"], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217C50.705C.C14E.A58C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=05af270c-1af0-479c-a433-44783efbe002&nonce=9dc482b7-d785-4b1b-bfa8-fdd00d028a49 09:55:48.055 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:de0e22c6-ec13-46b8-a781-316f092657b3 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217C50.705C.C14E.A58C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=05af270c-1af0-479c-a433-44783efbe002&nonce=9dc482b7-d785-4b1b-bfa8-fdd00d028a49 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=786fe058-d3a4-4608-be97-f598dda7b234&scope=address+openid+profile+email&session_id=be012760-987a-491a-9947-b649374134f9&state=05af270c-1af0-479c-a433-44783efbe002&token_type=bearer&session_state=de0e22c6-ec13-46b8-a781-316f092657b3&expires_in=299 ####################################################### TEST: requestAuthorizationWithoutScope ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:28 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9579.AB49.7DE4.9F62", "client_secret": "216883a4-686c-4728-a8ff-4448fd78bb10", "registration_access_token": "80e8e4c8-be5f-4d8f-85db-1ce319cdbfa9", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9579.AB49.7DE4.9F62", "client_id_issued_at": 1530798928, "client_secret_expires_at": 1530885328, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 80e8e4c8-be5f-4d8f-85db-1ce319cdbfa9 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1425 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:28 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9579.AB49.7DE4.9F62", "client_secret": "216883a4-686c-4728-a8ff-4448fd78bb10", "registration_access_token": "80e8e4c8-be5f-4d8f-85db-1ce319cdbfa9", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9579.AB49.7DE4.9F62", "client_id_issued_at": 1530798928, "client_secret_expires_at": 1530885328, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219579.AB49.7DE4.9F62&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f0e23265-f47a-4bef-9df7-8523aee5ec29&nonce=ef066822-65f4-48cd-ac5b-133d88307429 09:55:49.731 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:35ca9768-7b34-408a-bcbc-9b27f3b07047 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219579.AB49.7DE4.9F62&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f0e23265-f47a-4bef-9df7-8523aee5ec29&nonce=ef066822-65f4-48cd-ac5b-133d88307429 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=01d4df37-f11e-4c3b-adf5-14106f7507bf&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5NTc5LkFCNDkuN0RFNC45RjYyIiwiZXhwIjoxNTMwODAyNTI5LCJpYXQiOjE1MzA3OTg5MjksIm5vbmNlIjoiZWYwNjY4MjItNjVmNC00OGNkLWFjNWItMTMzZDg4MzA3NDI5IiwiYXV0aF90aW1lIjoxNTMwNzk4OTI5LCJjX2hhc2giOiI0VFg0eDJnVFFGQnBGTU5GVkoyVUtBIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoidHZyZ3BGTHhWSm0yTHpyUnprdklqM19jUld1a3o4SFo4UTF5dndKQXZ1NCJ9.J8aWp0QyAJWb4CBgk8gMln92xIV3yYiRuHFM4cp04bcwVCKoTmF3xx3qYhjdpdS1xeyxnBalm-BBcQfp0bD4mivloTPOoiNyW_3xf5QUCJ_QMUuxzqwosKjneNWH1HvGQXyDY_UJnwLCPHmBpqReg7Te3TGeUOhjy080Ue08oZyWsp8a3i9YzGuMqEyY8yNV_9GMwDyoPLcsG8EI3_T1smuulkFCq041Gske0T4LxkQUzqZ3HLtXzLcmOgJxJEDshgj8SypZ3Id6QLQy107y6XEvtzfKNyVGxO7Cn95aKNztwy2Xk-qj27H03E4YX57fXy4TIuFj2Z-TlNxYvDDOdg&session_id=c948727b-c10f-4b99-a346-a998d8e56212&state=f0e23265-f47a-4bef-9df7-8523aee5ec29&session_state=35ca9768-7b34-408a-bcbc-9b27f3b07047 ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:30 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:30 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestSessionIdAuthorizationCode1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:30 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7B4B.50DE.A3B4.E8B6", "client_secret": "b8294b6b-1c4b-4422-8e38-26ce06a33e84", "registration_access_token": "fd63e39a-76ff-4574-bc2a-e87270ea7b97", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7B4B.50DE.A3B4.E8B6", "client_id_issued_at": 1530798930, "client_secret_expires_at": 1530885330, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer fd63e39a-76ff-4574-bc2a-e87270ea7b97 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:30 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7B4B.50DE.A3B4.E8B6", "client_secret": "b8294b6b-1c4b-4422-8e38-26ce06a33e84", "registration_access_token": "fd63e39a-76ff-4574-bc2a-e87270ea7b97", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!7B4B.50DE.A3B4.E8B6", "client_id_issued_at": 1530798930, "client_secret_expires_at": 1530885330, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } waitForResourceOwnerAndGrantLoginForm: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217B4B.50DE.A3B4.E8B6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=ed0635bb-fedf-4277-8f09-f61d21b155d0 09:55:51.507 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] waitForResourceOwnerAndGrantLoginForm: sessionState:fb24facf-e9fa-418f-8f3b-ab0f7c6a0881 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217B4B.50DE.A3B4.E8B6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=ed0635bb-fedf-4277-8f09-f61d21b155d0 authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217B4B.50DE.A3B4.E8B6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=6347f49b-dcbb-42c2-a922-bdb96b7b3ae5 09:55:51.756 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:ccc715e5-91c9-4d67-8bdb-7f0c4a659b89 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%217B4B.50DE.A3B4.E8B6&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=6347f49b-dcbb-42c2-a922-bdb96b7b3ae5 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=b8e641b9-a3dc-41b7-9ce3-050dd48d4e4f&scope=address+openid+profile+email&session_id=d56a49f3-562c-4460-9123-d6d49f7fe0d9&state=6347f49b-dcbb-42c2-a922-bdb96b7b3ae5&session_state=ccc715e5-91c9-4d67-8bdb-7f0c4a659b89 ####################################################### TEST: requestSessionIdAuthorizationCode2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": ["code"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:32 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C71C.8332.3C61.4EB8", "client_secret": "19c35ee3-4bd8-4dcd-8892-308b9cd0d5b6", "registration_access_token": "9b663ed1-9462-4c38-b170-01a50c504326", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C71C.8332.3C61.4EB8", "client_id_issued_at": 1530798932, "client_secret_expires_at": 1530885332, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/register?{} HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 9b663ed1-9462-4c38-b170-01a50c504326 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:32 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C71C.8332.3C61.4EB8", "client_secret": "19c35ee3-4bd8-4dcd-8892-308b9cd0d5b6", "registration_access_token": "9b663ed1-9462-4c38-b170-01a50c504326", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C71C.8332.3C61.4EB8", "client_id_issued_at": 1530798932, "client_secret_expires_at": 1530885332, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } waitForResourceOwnerAndGrantLoginForm: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C71C.8332.3C61.4EB8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=cbd59ae3-3aa7-4512-8445-24a8a6773720 09:55:53.348 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] waitForResourceOwnerAndGrantLoginForm: sessionState:19888689-8087-4da7-a0b5-c4b13b48763a ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C71C.8332.3C61.4EB8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=cbd59ae3-3aa7-4512-8445-24a8a6773720 authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C71C.8332.3C61.4EB8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1be4b511-7262-457f-a9e5-3c0df306a457 09:55:53.586 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:3c76e9d2-05a2-4c56-ad20-4a48ae459eda ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C71C.8332.3C61.4EB8&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=1be4b511-7262-457f-a9e5-3c0df306a457 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm?code=f4f214dd-2ce2-4436-aea4-78027c8a2f99&scope=address+openid+profile+email&session_id=88a3ed41-b1ca-4627-b39b-dc611f9a4f66&state=1be4b511-7262-457f-a9e5-3c0df306a457&session_state=3c76e9d2-05a2-4c56-ad20-4a48ae459eda ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:33 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestClientRegistrationWithCustomAttributes ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "token", "id_token" ], "grant_types": ["password"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "oxAuthTrustedClient": "true", "myCustomAttr1": "808fd3ba-069b-49e3-bb95-9509f2477a4a" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1445 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BE09.AC4D.3A67.CF3A", "client_secret": "84141406-413a-4ef0-8f80-01cfd9256ab0", "registration_access_token": "d1ca4fa1-b895-45da-9d08-d3241190af4d", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BE09.AC4D.3A67.CF3A", "client_id_issued_at": 1530798934, "client_secret_expires_at": 1530885334, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "password", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ####################################################### TEST: requestAccessTokenCustomClientAuth1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/authorize HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Basic dGVzdF91c2VyOnRlc3RfdXNlcl9wYXNzd29yZA== response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BE09.AC4D.3A67.CF3A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=adc69cdf-42aa-4346-8fcc-47b6fbc25803&nonce=5bda9d04-b66b-46af-bc28-adad52fd8ec3&prompt=none ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Connection: Keep-Alive Content-Length: 0 Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=612a3965-d857-4d58-8739-61cf466d8fbd&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFCRTA5LkFDNEQuM0E2Ny5DRjNBIiwiZXhwIjoxNTMwODAyNTM0LCJpYXQiOjE1MzA3OTg5MzQsIm5vbmNlIjoiNWJkYTlkMDQtYjY2Yi00NmFmLWJjMjgtYWRhZDUyZmQ4ZWMzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTM0LCJjX2hhc2giOiJwNFltN0lUM2J2aU9aQ3F3ZU9OZnRnIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiam1GX0FQQXV4eV9EWmYzWERTbVpYTDFlVW5GSzBZSlZaSTZJOVdSQXZxayJ9.IcT5nGKpjsYMQLU1W53gvFM9d60jiM3OrnAAgZ-UIW_qgQahdml8bd2Ehbb4IXrAnXdiZqVuEm7MUTC-49KnDa8aywqNEcpf3QPuMvgPegs3mb1rgo_1ou8PMvrIgVf3DpCUqZ5clL3EJXRKGIjOl8XNWHPm0zXc3ezUdMBAF_1zayHZDe3KR-eDFrtCQJSSk9WSAel6G4NMs1f8Ysnvl9OE_zLDCgZg2VVxM2lZTSVJkQ6ui7OP96oA_kxX0xOTgar31ezSRuYT9IKWmKOl7z8kuKN5yYeHAc7snnC-9ncXHOqlu-LxDqavfXXM-kwtk2RwsZPoU9Y4H7_r-VpVUA&session_id=cf6018da-cab6-4ff3-93f9-a265a3c58622&state=adc69cdf-42aa-4346-8fcc-47b6fbc25803&session_state=6d77ac2b-1549-4d8f-84e2-e652bc379424 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=authorization_code&code=612a3965-d857-4d58-8739-61cf466d8fbd&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&myCustomAttr1=808fd3ba-069b-49e3-bb95-9509f2477a4a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"bff668fa-ffe7-433f-bbc6-c4ad495c39fe","token_type":"bearer","expires_in":299,"refresh_token":"70c3469c-5305-4ee8-add8-5e8eb874b3c8","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFCRTA5LkFDNEQuM0E2Ny5DRjNBIiwiZXhwIjoxNTMwODAyNTM0LCJpYXQiOjE1MzA3OTg5MzQsIm5vbmNlIjoiNWJkYTlkMDQtYjY2Yi00NmFmLWJjMjgtYWRhZDUyZmQ4ZWMzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTM0LCJhdF9oYXNoIjoiT0I3WnRIM2kzRDJWbzl2ZjYzeHJhUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImptRl9BUEF1eHlfRFpmM1hEU21aWEwxZVVuRkswWUpWWkk2STlXUkF2cWsifQ.L7Zt3fRtIrzM8lDPKgx86S_3DN5cYTFj7Y66U628wQ7mf6xOeY3f8BHGf0WTrwzu7RqaA8VbGwG5vJh22W5z_PUaf10EM4gqBydft9JeDhWGZJQVK8hXT_ixIKCDvsM7bKkcSnxqZwAglZG6NLtyWq6teWeeSLOXOVmK59hvcKgpQ2ED8gR_K3iI9BQf-KE4Ek12HZ05ziiUfnbZUFHRM4axAUfPkXgqcPRZ670ZtbKqbfsJf-Yy3bdfOcv_hkIImtPBxb-vSinnHc9xfqBmRBjg5o8c9eV9EPMgO6m2_tKUC3IG2cPZvWF9beatUEEWSR7EzaOVINQ7L_qrQr0osg"} ####################################################### TEST: requestAccessTokenCustomClientAuth2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=password&scope=openid&username=test_user&password=test_user_password&myCustomAttr1=808fd3ba-069b-49e3-bb95-9509f2477a4a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 934 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"90767e70-7900-4ca8-b781-8e4a43ddde7c","token_type":"bearer","expires_in":299,"refresh_token":"a9aa7dee-59c1-4866-87f4-0f174d490595","scope":"openid","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFCRTA5LkFDNEQuM0E2Ny5DRjNBIiwiZXhwIjoxNTMwODAyNTM0LCJpYXQiOjE1MzA3OTg5MzQsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImptRl9BUEF1eHlfRFpmM1hEU21aWEwxZVVuRkswWUpWWkk2STlXUkF2cWsifQ.ijkIE5KJRoH52Six2y1sVPNBuFBhPvKPWdqZTufmmN13Hg7SAyQgYTMhjhtx7tcnW_kHwQPKl-gacCZKTY4nHhxn1dshfLWaYc6x_LMOv6V0q4mxYj-tlbWvxiUFTsTLvWZ1yG9kyPXuD4rNfyxtPOB03umu41d_sJhu2h4XDO1E19h3vzUp2q-ZWW6X-AiQD4S75rOHnotzIYInHHJXYAX0SH1BPeJist9oyq4k-1Cy5b--hWI6bqh4WwqkbPcomtLEdL-rugomg5GQ5kMZMpnvDD5cqs6IFvvC9MFjTWm81qjtni5vO-38bwQBAjRClsOi8y2y2UwXz38dlmDmeA"} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: clientSecretBasicAuthenticationMethod ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_basic", "scope": "openid profile address email clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1226 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!98A6.6496.CD6C.635D", "client_secret": "9a1677c8-b822-4192-99c8-7d63934d4f1a", "registration_access_token": "88a63744-43fe-4979-9b46-0b8334f900ee", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!98A6.6496.CD6C.635D", "client_id_issued_at": 1530798934, "client_secret_expires_at": 1530885334, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxOThBNi42NDk2LkNENkMuNjM1RDo5YTE2NzdjOC1iODIyLTQxOTItOTljOC03ZDYzOTM0ZDRmMWE= grant_type=client_credentials&scope=clientinfo ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"0dc03f76-7132-4c8a-aeba-34116d6ce20f","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 412 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!98A6.6496.CD6C.635D","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["openid","profile","address","email","clientinfo"]} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 0dc03f76-7132-4c8a-aeba-34116d6ce20f ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 403 Connection: Keep-Alive Content-Length: 126 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:34 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"insufficient_scope","error_description":"The request requires higher privileges than provided by the access token."} ####################################################### TEST: clientSecretBasicAuthenticationMethodFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_basic", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1242 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0937.3E79.9101.35B2", "client_secret": "f59a5a4e-106b-435c-b296-4437d5686edd", "registration_access_token": "ff6290de-c030-46b6-a2a1-32d5c79e56a7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0937.3E79.9101.35B2", "client_id_issued_at": 1530798935, "client_secret_expires_at": 1530885335, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMDkzNy4zRTc5LjkxMDEuMzVCMjpJTlZBTElEX0NMSUVOVF9TRUNSRVQ= grant_type=client_credentials&scope=clientinfo ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1195 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!45F9.7D45.23AE.FA47", "client_secret": "b86b13de-bfee-47f5-b0f2-3b57e25ae491", "registration_access_token": "d3a756d1-4f85-4841-95bd-0b42b4369684", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!45F9.7D45.23AE.FA47", "client_id_issued_at": 1530798935, "client_secret_expires_at": 1530885335, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0NUY5LjdENDUuMjNBRS5GQTQ3Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghNDVGOS43RDQ1LjIzQUUuRkE0NyIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiZmY0MDYwZDMtZjg3MS00ZWZmLTk2MTctYmQyMTQ2ZWQ0ZDg4IiwiZXhwIjoxNTMwNzk5MjU2LCJpYXQiOjE1MzA3OTg5NTZ9.ch3e6uPFZAKhBxexufAIRZP5ZSjjsTf-bLWpfFbpGCg ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"5b3de081-ad28-4619-ba25-dd67650d6620","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!45F9.7D45.23AE.FA47","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS256Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1240 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!86C2.DD04.432B.3B9B", "client_secret": "5deefb3d-cd55-433d-bf28-c8a221d7ce63", "registration_access_token": "8626f66e-52ee-4cae-8cfc-1d919b02a58f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!86C2.DD04.432B.3B9B", "client_id_issued_at": 1530798935, "client_secret_expires_at": 1530885335, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4NkMyLkREMDQuNDMyQi4zQjlCIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghODZDMi5ERDA0LjQzMkIuM0I5QiIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiYzY3NjYzNmMtMmJkYi00Zjk0LThhZmQtMTM1ZWY3NzVlMjk3IiwiZXhwIjoxNTMwNzk5MjU2LCJpYXQiOjE1MzA3OTg5NTZ9.lZTKW8Am-aB74pEN-PpIEjAhtzGMY4b_OAkaxbzqwt8 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1195 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5AE.D8E8.FA62.5E09", "client_secret": "30151224-7055-4817-b6b2-e9481ae8ca5f", "registration_access_token": "131433d2-56ca-4e2d-a038-2502ae3414d6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5AE.D8E8.FA62.5E09", "client_id_issued_at": 1530798935, "client_secret_expires_at": 1530885335, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFBNUFFLkQ4RTguRkE2Mi41RTA5Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghQTVBRS5EOEU4LkZBNjIuNUUwOSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNWRiM2FjZWUtZDg0Mi00ZGI1LWIwMzQtYmZhYTBmYjc5YmNlIiwiZXhwIjoxNTMwNzk5MjU2LCJpYXQiOjE1MzA3OTg5NTZ9.7Tk3NzVirSPw65T-lSdCBR1gZykVNGyLqen9QkKyuiVIfh_fU0qQ7Uc9G2scqrv_ ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"fa3be857-5dae-407f-97b2-02320166535c","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A5AE.D8E8.FA62.5E09","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS384Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1240 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:35 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CB02.8949.D546.B444", "client_secret": "4e1a6f7b-38a6-478b-8d88-27ebb0caaf40", "registration_access_token": "e395e97b-88da-4486-aee7-38afae2c5da7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CB02.8949.D546.B444", "client_id_issued_at": 1530798936, "client_secret_expires_at": 1530885336, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDQjAyLjg5NDkuRDU0Ni5CNDQ0Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghQ0IwMi44OTQ5LkQ1NDYuQjQ0NCIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiMzliZDRkYmMtNGQxZC00OGEyLWFjYTktN2E1YmFkMmEwMjQ0IiwiZXhwIjoxNTMwNzk5MjU3LCJpYXQiOjE1MzA3OTg5NTd9.Jv1FVA6B916rIl6KGcFSkwyeVqDFJG-bDm4ogI_-WIeaMEi3wI0B2o9Wu6LkqVTx ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1195 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!836C.B2BE.5CA7.EC55", "client_secret": "ec888e40-9e30-4891-8675-08d68f36ac9e", "registration_access_token": "76a3c3a4-b443-49a7-985f-a691703b60ec", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!836C.B2BE.5CA7.EC55", "client_id_issued_at": 1530798936, "client_secret_expires_at": 1530885336, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4MzZDLkIyQkUuNUNBNy5FQzU1Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghODM2Qy5CMkJFLjVDQTcuRUM1NSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiMjQ0YTRkNjItZjgwNS00YmMxLWEyOTQtOTU1N2QwNTUyZDcwIiwiZXhwIjoxNTMwNzk5MjU3LCJpYXQiOjE1MzA3OTg5NTd9.f4KBjo6VvS5l_rl5XMd1zH9rP7sWtJS8j0ojpQJ8YIgyO0qTV1ZTSkKSB_eHMtkivstnX874sJ1ExpY9SQGJ8Q ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"065369c5-a071-471f-9aa0-c4d1d4a77c33","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!836C.B2BE.5CA7.EC55","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: clientSecretJwtAuthenticationMethodHS512Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1240 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!50BE.CE1F.A39C.AA8B", "client_secret": "d7c1aa57-c05b-4716-9700-5301b76ce11b", "registration_access_token": "06ebdbb8-64bb-4c29-940a-8760a78bfca7", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!50BE.CE1F.A39C.AA8B", "client_id_issued_at": 1530798936, "client_secret_expires_at": 1530885336, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE1MEJFLkNFMUYuQTM5Qy5BQThCIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghNTBCRS5DRTFGLkEzOUMuQUE4QiIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiYTExN2Y3ZDItYWRmYy00YjAzLTlkNmMtOWZhZDhlMTFhYzZiIiwiZXhwIjoxNTMwNzk5MjU3LCJpYXQiOjE1MzA3OTg5NTd9.t5ajUdDMnd9rlJO4dlN9TsZ6av1zw8ybXCRN2MCs4OoL6AjMm7GKqOiNnwHHG_Zn-2Z8qDc1dWBwcN6n6scsXw ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretPostAuthenticationMethod ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_post", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1196 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8D80.18DE.7E48.AB45", "client_secret": "40e91011-e911-40fb-b9b1-b2e55e60baf1", "registration_access_token": "8bdcc12b-c057-4d01-b6e4-da6c8f2120b4", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8D80.18DE.7E48.AB45", "client_id_issued_at": 1530798936, "client_secret_expires_at": 1530885336, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_post", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218D80.18DE.7E48.AB45&client_secret=40e91011-e911-40fb-b9b1-b2e55e60baf1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"e2219ba7-0c4c-42f5-bbaf-48d91ea7d450","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8D80.18DE.7E48.AB45","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: clientSecretPostAuthenticationMethodFail1 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_post", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1241 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8381.E3E9.E621.A9A5", "client_secret": "618e70e1-70c8-49d5-b068-54e6c25e3c29", "registration_access_token": "e9a6aaa5-0a87-4d7c-8900-5609de17bd51", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8381.E3E9.E621.A9A5", "client_id_issued_at": 1530798936, "client_secret_expires_at": 1530885336, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_post", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218381.E3E9.E621.A9A5&client_secret=INVALID_CLIENT_SECRET ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretPostAuthenticationMethodFail2 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_post", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1241 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:36 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C636.15F6.74C3.1BEB", "client_secret": "3c309cdd-7ea5-4bb9-bf88-411389f81b1e", "registration_access_token": "acdbec7f-2825-493f-b73c-6d5c2ad09a1b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!C636.15F6.74C3.1BEB", "client_id_issued_at": 1530798937, "client_secret_expires_at": 1530885337, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_post", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21C636.15F6.74C3.1BEB ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: clientSecretPostAuthenticationMethodFail3 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "client_secret_post", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1241 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AF1C.CC18.C68A.B528", "client_secret": "f9c81b65-a21a-4887-bf83-b0800d474fb1", "registration_access_token": "25b59834-209e-4d79-b80f-017d8ae3be96", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AF1C.CC18.C68A.B528", "client_id_issued_at": 1530798937, "client_secret_expires_at": 1530885337, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_post", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: defaultAuthenticationMethod ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1197 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2230.0613.D0DE.6803", "client_secret": "b6bf4a5b-e4b6-41a2-b482-4d976ed3a6be", "registration_access_token": "4f856b59-9ee2-44e1-9c2e-fb9f32320b90", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2230.0613.D0DE.6803", "client_id_issued_at": 1530798937, "client_secret_expires_at": 1530885337, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxMjIzMC4wNjEzLkQwREUuNjgwMzpiNmJmNGE1Yi1lNGI2LTQxYTItYjQ4Mi00ZDk3NmVkM2E2YmU= grant_type=client_credentials&scope=clientinfo ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"5902c806-9ef0-42eb-a02d-ce50689314de","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2230.0613.D0DE.6803","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: defaultAuthenticationMethodFail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1242 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!69DE.AC3B.118B.8273", "client_secret": "1ba8bbea-4a55-4e0e-8cec-2429390d104f", "registration_access_token": "440b3898-14cc-48c5-8835-1c9627dd5708", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!69DE.AC3B.118B.8273", "client_id_issued_at": 1530798937, "client_secret_expires_at": 1530885337, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNjlERS5BQzNCLjExOEIuODI3MzpJTlZBTElEX0NMSUVOVF9TRUNSRVQ= grant_type=client_credentials&scope=clientinfo ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodES256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:37 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!524D.FD87.5FEA.AA5E", "client_secret": "f83573e9-09b2-46cb-8020-002372441c65", "registration_access_token": "85c53ea7-241b-4eef-bb2a-ccfd46f1bb6d", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!524D.FD87.5FEA.AA5E", "client_id_issued_at": 1530798937, "client_secret_expires_at": 1530885337, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IjU0N2IyODM4LWE4NDgtNDY3MS04YTQ3LWQ1MzYxNzM4ZjJhZSJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE1MjRELkZEODcuNUZFQS5BQTVFIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghNTI0RC5GRDg3LjVGRUEuQUE1RSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNmQ5MjNhMDAtNDEyZS00MzQzLTljZGMtZDk1YmY4ZDU2N2I4IiwiZXhwIjoxNTMwNzk5MjU5LCJpYXQiOjE1MzA3OTg5NTl9.MEUCICBNNo9KyvYjCBBPXr8BLfCRZWDn04rARfB_m3SkDjJ9AiEA8cfLIOMyQo1sV59DDpZuQ3jZnnouhBzeLasKwqUqN5g ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"48f9928d-9aad-46a2-8163-ad7aefbc6d4a","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!524D.FD87.5FEA.AA5E","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodES256Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!836D.09EB.BC72.805C", "client_secret": "e1c73be4-cc8f-4686-a778-b77b78ad394a", "registration_access_token": "66b64c91-5608-4a07-bd77-554d60791cd6", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!836D.09EB.BC72.805C", "client_id_issued_at": 1530798938, "client_secret_expires_at": 1530885338, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:55:59.575 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES256Fail(ClientCredentialsGrantHttpTest.java:1312) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:55:59.699 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES256Fail(ClientCredentialsGrantHttpTest.java:1314) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IkVTMjU2U0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4MzZELjA5RUIuQkM3Mi44MDVDIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghODM2RC4wOUVCLkJDNzIuODA1QyIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNDg5OTQ5YmQtNmUzMi00NzNlLTllNTMtMzI4OWNiZWE0MTUxIiwiZXhwIjoxNTMwNzk5MjU5LCJpYXQiOjE1MzA3OTg5NTl9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:38 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodES384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:38 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A9B8.9762.9A3D.7597", "client_secret": "afd2537c-f67d-4489-8ab1-a06c2cbd9497", "registration_access_token": "99754a0b-1b69-446a-beb5-e0b280693973", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A9B8.9762.9A3D.7597", "client_id_issued_at": 1530798938, "client_secret_expires_at": 1530885338, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6ImM0ZmU0MTEwLWViNTYtNDFjNi1iYWMzLTUzMTZmNmIxNDQzZCJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFBOUI4Ljk3NjIuOUEzRC43NTk3Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghQTlCOC45NzYyLjlBM0QuNzU5NyIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNDQ4OTJjZWEtNDliYy00M2Q0LTg3MDMtNzRmMGUyZjI3NTlkIiwiZXhwIjoxNTMwNzk5MjYwLCJpYXQiOjE1MzA3OTg5NjB9.MGYCMQD74Kfbi7CHO8y6EGJvx7UaFKbJe7YC8Zqmo53SvouF5R9KDTtXj25cy0fyDOyuE8wCMQDvxFHL3GouJ_RJjrqMH9iKbGpY8fEfGIosZcHfvh63dZAQUFKsANdxTGsGSxhy8MY ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"a103ba34-91b5-4c28-b092-bcd4205c1c49","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!A9B8.9762.9A3D.7597","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodES384Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BF31.ED0B.EB88.515B", "client_secret": "b442c168-807a-402b-9be1-f6d2ca9dd823", "registration_access_token": "4a7f2e0c-7b4d-48be-9e0b-d5f09c81827f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BF31.ED0B.EB88.515B", "client_id_issued_at": 1530798939, "client_secret_expires_at": 1530885339, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:56:00.295 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES384Fail(ClientCredentialsGrantHttpTest.java:1437) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:56:00.412 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES384Fail(ClientCredentialsGrantHttpTest.java:1439) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6IkVTMzg0U0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFCRjMxLkVEMEIuRUI4OC41MTVCIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghQkYzMS5FRDBCLkVCODguNTE1QiIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNGE3NmU1NjgtZTljYy00MTZmLWE2ODItYzg2Y2JkNmI1MzEwIiwiZXhwIjoxNTMwNzk5MjYwLCJpYXQiOjE1MzA3OTg5NjB9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodES512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!25BC.5406.9135.F5DD", "client_secret": "374acbb7-0061-48f1-bd5e-a76e1dcf206e", "registration_access_token": "05f5d96e-2d43-4c84-9d9b-2b20537e0cd3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!25BC.5406.9135.F5DD", "client_id_issued_at": 1530798939, "client_secret_expires_at": 1530885339, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IjI2ZjgwNDBjLWFlOGItNGRhYS04ZjcxLWE3ZmRmMTRkZjY0MyJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyNUJDLjU0MDYuOTEzNS5GNUREIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghMjVCQy41NDA2LjkxMzUuRjVERCIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiOTA4MDQ3YjMtZjZkNS00OGRkLTg1NzQtYzY3NzdjZGMxNTViIiwiZXhwIjoxNTMwNzk5MjYwLCJpYXQiOjE1MzA3OTg5NjB9.MIGHAkFE-r5M8hwcBPOQ6CAPfKXk1kYMHUMnZQKiJcKWpn8S9sTADFtT5YNF_71EzBCwKpMmP66EWbGfePtO7em338Wk9QJCAO9XT9AX-iEi6kC_dZn3hiv5GIUqLXR9gCaeZSOaMjBqiEUrT3LQX130OOTuvQU7c_2eVcqq8b6ejW9Enm1vPVQi ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"cae601dd-e057-4fb9-9a91-f1ba67ec7d96","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!25BC.5406.9135.F5DD","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodES512Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:39 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D65F.7371.6ADD.C335", "client_secret": "9a39615b-eaf7-46f8-96a3-20b13bbc0881", "registration_access_token": "80bab15b-02cc-41e7-b00c-6f466d71012b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D65F.7371.6ADD.C335", "client_id_issued_at": 1530798939, "client_secret_expires_at": 1530885339, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:56:00.952 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES512Fail(ClientCredentialsGrantHttpTest.java:1562) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:56:01.100 [main] ERROR org.xdi.oxauth.client.TokenRequest - cannot identify EC private key: java.lang.NullPointerException java.security.InvalidKeyException: cannot identify EC private key: java.lang.NullPointerException at org.bouncycastle.jcajce.provider.asymmetric.util.ECUtil.generatePrivateKeyParameter(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at org.bouncycastle.jcajce.provider.asymmetric.ec.SignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodES512Fail(ClientCredentialsGrantHttpTest.java:1564) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IkVTNTEyU0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFENjVGLjczNzEuNkFERC5DMzM1Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghRDY1Ri43MzcxLjZBREQuQzMzNSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiNGNkZWNlY2EtYjM3Ny00NjFmLWIxNDMtN2U4NWI3ODE0YTMwIiwiZXhwIjoxNTMwNzk5MjYxLCJpYXQiOjE1MzA3OTg5NjF9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3B70.95E0.9B3B.60B5", "client_secret": "a390016b-0fb6-4c82-82a2-ccc0009b7f77", "registration_access_token": "27056872-6d89-48b3-aa55-42f59c11f6bc", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3B70.95E0.9B3B.60B5", "client_id_issued_at": 1530798940, "client_secret_expires_at": 1530885340, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEzQjcwLjk1RTAuOUIzQi42MEI1Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghM0I3MC45NUUwLjlCM0IuNjBCNSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiOTA5ZDk5MzktZDE0OC00MmYzLWI5Y2YtMDlkZGViOTM3MmRjIiwiZXhwIjoxNTMwNzk5MjYxLCJpYXQiOjE1MzA3OTg5NjF9.EBEVaty5HQSoWsnH2hEJya_846ijyhkMR3rAzB6_Oq6xrMoYGKzn7YNem07P8kLlcGR1OhYoghCqjuMCA9Q-xO7eRybuo9Fu5curdNYeaoAgCRKKSYCEEOIRWWOI_D_ZXfa26EGNDXgmB0JleplY4yObBF4AnS3o22n8I0WN00dRczFBXrtxO7sWGwyd7WSDQaYuRFs7hDS0pVMs9ayTrgWocV8xOg_-yLaYhmqx8LfUxi0xi5sYfSdViFGhyKkQtufdE5xOJ88q0BFPlLWc4flBv3JeWDLwUJYxc5Reu5mz-Lgl4ZTmHf3yZdQrSyPkHpt2hR_5A539gra63p0AwQ ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"54c1d2a7-4884-4e2d-88b5-6e3ac3f26d7f","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3B70.95E0.9B3B.60B5","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS256Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CABA.D794.BE0C.3EBF", "client_secret": "7c2bd48e-4e1e-4fdd-a291-e2b9f153e165", "registration_access_token": "1c8035d9-2186-41f4-a94b-85a59eb6f3ae", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!CABA.D794.BE0C.3EBF", "client_id_issued_at": 1530798940, "client_secret_expires_at": 1530885340, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:56:01.658 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS256Fail(ClientCredentialsGrantHttpTest.java:937) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:56:01.780 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS256Fail(ClientCredentialsGrantHttpTest.java:939) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IlJTMjU2U0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFDQUJBLkQ3OTQuQkUwQy4zRUJGIiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghQ0FCQS5ENzk0LkJFMEMuM0VCRiIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiZmQ0NjVhOGEtYmYyMS00MzFiLTlhZjctMzQ0ZTU0YjQzNGFlIiwiZXhwIjoxNTMwNzk5MjYxLCJpYXQiOjE1MzA3OTg5NjF9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:40 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1026.73BE.BD1A.AC65", "client_secret": "98e5bbbe-b972-46d8-a911-8c00872a345c", "registration_access_token": "5f173d15-1a7a-4c66-9e00-5f317d2762cc", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1026.73BE.BD1A.AC65", "client_id_issued_at": 1530798940, "client_secret_expires_at": 1530885340, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6ImM0NjIxNDNmLWExOTctNGY3YS1hZjk5LTBiMTA4NzM2ODYxNiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCExMDI2LjczQkUuQkQxQS5BQzY1Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghMTAyNi43M0JFLkJEMUEuQUM2NSIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiZGU3NmM5MDctZDIwNS00YjBhLWI5YzctZDI3NDUwZGI5ZDk2IiwiZXhwIjoxNTMwNzk5MjYyLCJpYXQiOjE1MzA3OTg5NjJ9.drULOj1G8lzUFIdSWsMu6_OTx-1D0cmVt1HF6gWm83Aus2RCREqX6522xbP5Bftlpl-6VZumbdYmFwJRNwzjnGdk0mOIcWDdGpc0ngDgWKa5vRfcM36hVBcynBxM85HVpE149VdjR69GDsETqsYX9B-4wYwZvKZ3on7mavx6xFiuL2PyxITUYVNeqjIKuaD2Q2Jp5sMsZFIe7J9pdtiId9Pb9ixlp1I9ijV0K048PxwcnEATwy0aknqcnk6BJsEDOjOzOpMBOjN2emYfWJEsu-YbojKFuUwUsy3gVVH0Whw689J8B3sXQb4FLMmDvLkne0rkwGZHb2RU8j_BD6tXXw ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"bcb3a157-aad4-40d2-9949-d1aa3856a944","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!1026.73BE.BD1A.AC65","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS384Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F3BF.AB92.1E9D.C646", "client_secret": "eb58969c-4b98-4f2f-ab96-e9f8fb4dadec", "registration_access_token": "618aacb6-62e5-48bf-aa50-f076b4320f5e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!F3BF.AB92.1E9D.C646", "client_id_issued_at": 1530798941, "client_secret_expires_at": 1530885341, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:56:02.585 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS384Fail(ClientCredentialsGrantHttpTest.java:1062) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:56:02.729 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS384Fail(ClientCredentialsGrantHttpTest.java:1064) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6IlJTMzg0U0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFGM0JGLkFCOTIuMUU5RC5DNjQ2Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghRjNCRi5BQjkyLjFFOUQuQzY0NiIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiMTRhYTFlMTQtMzA3ZC00NjNlLTk0NDMtMzU4YWYzNWIyNWVkIiwiZXhwIjoxNTMwNzk5MjYyLCJpYXQiOjE1MzA3OTg5NjJ9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:41 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1276 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:41 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4CEE.76A7.5FF5.C064", "client_secret": "502706a5-f162-4632-a0e2-adafb1950181", "registration_access_token": "f9dff232-9ab3-4645-8701-97e0dd054134", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4CEE.76A7.5FF5.C064", "client_id_issued_at": 1530798941, "client_secret_expires_at": 1530885341, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["client_credentials"], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6Ijg1YjA4NDgzLTY4OTAtNDg0My05YmFmLTgzN2EyNGEzYzZkMiJ9.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0Q0VFLjc2QTcuNUZGNS5DMDY0Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghNENFRS43NkE3LjVGRjUuQzA2NCIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiMGViN2E2NDMtMzM0OC00OGY3LTkyOWYtNjk5ODA2MTEyMjZjIiwiZXhwIjoxNTMwNzk5MjYzLCJpYXQiOjE1MzA3OTg5NjN9.rppIhsJCFGVn9UKZlnTKunkcj7DOfOTv0oweZ-cB9PPToWIhrwR6jFp7eWh6zzRhFAjcHoHeWVViG749Wj-vJ1LbnDf98iV9_IlbchBTetk3yAXKP4v59k2JWEkAsWHhwWgWhdfyYiUxmAUXJGoiU9dVmdDSsNY_Joy2b3AoE0RpsYwtdWh5nHDMLePrxx9Mccpm0xbJW6K-FSVj_BfCB1E27CPlFXtT1elasCVJKoj2xqZHv6pSCL31fre80I-e49fqyIc3ZM1BAwDYC9FNfSMTR5emkobkG6-m2aisG_UkyfnfvgOV0h8depYvuVbhDz6EHyNGowhYekVxACVX9Q ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 115 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"ed247615-680b-4248-a07b-190d4044d84e","token_type":"bearer","expires_in":299,"scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 375 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4CEE.76A7.5FF5.C064","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["clientinfo"]} ####################################################### TEST: privateKeyJwtAuthenticationMethodRS512Fail ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "token_endpoint_auth_method": "private_key_jwt", "scope": "clientinfo" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1321 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6E5A.784D.6540.2ED4", "client_secret": "57528c00-b967-44bc-bbe2-879189c2540e", "registration_access_token": "7fdcf4f6-9220-4595-a3a2-74305f18b6a3", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6E5A.784D.6540.2ED4", "client_id_issued_at": 1530798942, "client_secret_expires_at": 1530885342, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "jwks_uri": "https://ce-dev4.gluu.org/oxauth-client/test/resources/jwks.json", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "private_key_jwt", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "clientinfo", "claims": "" } 09:56:03.377 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenClient.exec(TokenClient.java:265) [classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS512Fail(ClientCredentialsGrantHttpTest.java:1187) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] ------------------------------------------------------- REQUEST: ------------------------------------------------------- 09:56:03.542 [main] ERROR org.xdi.oxauth.client.TokenRequest - Supplied key (null) is not a RSAPrivateKey instance java.security.InvalidKeyException: Supplied key (null) is not a RSAPrivateKey instance at org.bouncycastle.jcajce.provider.asymmetric.rsa.DigestSignatureSpi.engineInitSign(Unknown Source) ~[bcprov-jdk15on-1.54.jar:1.54.0] at java.security.Signature$Delegate.engineInitSign(Signature.java:1174) ~[?:1.8.0_121] at java.security.Signature.initSign(Signature.java:527) ~[?:1.8.0_121] at org.xdi.oxauth.model.crypto.OxAuthCryptoProvider.sign(OxAuthCryptoProvider.java:171) ~[oxauth-model.jar:?] at org.xdi.oxauth.client.TokenRequest.getClientAssertion(TokenRequest.java:338) [classes/:?] at org.xdi.oxauth.client.TokenRequest.getQueryString(TokenRequest.java:409) [classes/:?] at org.xdi.oxauth.client.BaseClient.getRequestAsString(BaseClient.java:158) [classes/:?] at org.xdi.oxauth.client.ClientUtils.showClient(ClientUtils.java:25) [classes/:?] at org.xdi.oxauth.BaseTest.showClient(BaseTest.java:766) [test-classes/:?] at org.xdi.oxauth.ws.rs.ClientCredentialsGrantHttpTest.privateKeyJwtAuthenticationMethodRS512Fail(ClientCredentialsGrantHttpTest.java:1189) [test-classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_121] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_121] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_121] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_121] at org.testng.internal.MethodInvocationHelper.invokeMethod(MethodInvocationHelper.java:108) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeMethod(Invoker.java:661) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethod(Invoker.java:869) [testng-6.11.jar:?] at org.testng.internal.Invoker.invokeTestMethods(Invoker.java:1193) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.invokeTestMethods(TestMethodWorker.java:126) [testng-6.11.jar:?] at org.testng.internal.TestMethodWorker.run(TestMethodWorker.java:109) [testng-6.11.jar:?] at org.testng.TestRunner.privateRun(TestRunner.java:744) [testng-6.11.jar:?] at org.testng.TestRunner.run(TestRunner.java:602) [testng-6.11.jar:?] at org.testng.SuiteRunner.runTest(SuiteRunner.java:380) [testng-6.11.jar:?] at org.testng.SuiteRunner.runSequentially(SuiteRunner.java:375) [testng-6.11.jar:?] at org.testng.SuiteRunner.privateRun(SuiteRunner.java:340) [testng-6.11.jar:?] at org.testng.SuiteRunner.run(SuiteRunner.java:289) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.runSuite(SuiteRunnerWorker.java:52) [testng-6.11.jar:?] at org.testng.SuiteRunnerWorker.run(SuiteRunnerWorker.java:86) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesSequentially(TestNG.java:1301) [testng-6.11.jar:?] at org.testng.TestNG.runSuitesLocally(TestNG.java:1226) [testng-6.11.jar:?] at org.testng.TestNG.runSuites(TestNG.java:1144) [testng-6.11.jar:?] at org.testng.TestNG.run(TestNG.java:1115) [testng-6.11.jar:?] at org.apache.maven.surefire.testng.TestNGExecutor.run(TestNGExecutor.java:281) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGXmlTestSuite.execute(TestNGXmlTestSuite.java:75) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.testng.TestNGProvider.invoke(TestNGProvider.java:121) [surefire-testng-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) [surefire-booter-2.19.1.jar:2.19.1] at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) [surefire-booter-2.19.1.jar:2.19.1] POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org grant_type=client_credentials&scope=clientinfo&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6IlJTNTEyU0lHX0lOVkFMSURfS0VZSUQifQ.eyJpc3MiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE2RTVBLjc4NEQuNjU0MC4yRUQ0Iiwic3ViIjoiQCEzOEQ0LjQxMEMuMUQ0My44OTMyITAwMDEhMzdGMi5CNzQ0ITAwMDghNkU1QS43ODRELjY1NDAuMkVENCIsImF1ZCI6Imh0dHBzOi8vY2UtZGV2NC5nbHV1Lm9yZy9veGF1dGgvcmVzdHYxL3Rva2VuIiwianRpIjoiOGFlYTIwNmItNzgwMi00YWFmLWJmYzktNTc3NmI5ZGZlYWU4IiwiZXhwIjoxNTMwNzk5MjYzLCJpYXQiOjE1MzA3OTg5NjN9. ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 401 Connection: Keep-Alive Content-Length: 586 Content-Type: application/json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains WWW-Authenticate: Basic realm="oxAuth" X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client","error_description":"Client authentication failed (e.g. unknown client, no client authentication included, or unsupported authentication method). The authorization server MAY return an HTTP 401 (Unauthorized) status code to indicate which HTTP authentication schemes are supported. If the client attempted to authenticate via the Authorization request header field, the authorization server MUST respond with an HTTP 401 (Unauthorized) status code, and include the WWW-Authenticate response header field matching the authentication scheme used by the client."} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestClientInfoImplicitFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:42 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3D88.EFF0.EB78.5DD2", "client_secret": "fe7bd974-242d-476b-8715-5533a496ed74", "registration_access_token": "0557558e-e3d2-4e26-9621-2fa810fd366f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3D88.EFF0.EB78.5DD2", "client_id_issued_at": 1530798942, "client_secret_expires_at": 1530885342, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213D88.EFF0.EB78.5DD2&scope=clientinfo&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f5f03974-7ab8-4a22-8986-54abdca6925d&nonce=b73eda11-bf3e-43bb-9faa-d8ed646684c2 09:56:03.968 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:66247003-be09-4744-aef0-dd5d5994eb2c ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213D88.EFF0.EB78.5DD2&scope=clientinfo&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=f5f03974-7ab8-4a22-8986-54abdca6925d&nonce=b73eda11-bf3e-43bb-9faa-d8ed646684c2 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=3682f232-7f85-4832-9738-b969ff6858f2&scope=clientinfo&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEzRDg4LkVGRjAuRUI3OC41REQyIiwiZXhwIjoxNTMwODAyNTQ0LCJpYXQiOjE1MzA3OTg5NDQsIm5vbmNlIjoiYjczZWRhMTEtYmYzZS00M2JiLTlmYWEtZDhlZDY0NjY4NGMyIiwiYXV0aF90aW1lIjoxNTMwNzk4OTQ0LCJhdF9oYXNoIjoibzEyOWNHTlMwTVJ0Ulg1cGVBS2tUQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImVzdjA3b2ZYcjVQS3BEZV9tWmt0eDVRNUo3UTREcVg0MjlLV05NRUc3TW8ifQ.fVldbH8FM8j1PFB6cDyPiP7PZdVUO3-Kl1XEbzxqYZmkPGL5-FpQh6szDJkBtar4KyO0gN6oVKrGDgeRmUZgjavnjLCJfTqpr_kXPDOOMdJtI1ymPwYyFdk0vm1v38YjyPUpdweNXG6DDAo5G-TgofgdT6UjUCd0x5LUJOgZrDgH9wVCxVHB0WXbNJsGIKdbGLCKqsZkFw_k5yIAK9UV9smVfcrXASGD99L2wWtiTr0fluKSnufDJTm1gwYXvdH6ETP5Dml1F4kbBHb5WTyP_LvhpN0iCxbbSMbCD9xhdQqngl03I77Xi-eRFNdXjDO3oSPV8-G1fP1Tv6ALk4hiPQ&session_id=2814b2ce-175f-4ca8-a6d4-17636f82ad35&state=f5f03974-7ab8-4a22-8986-54abdca6925d&token_type=bearer&session_state=66247003-be09-4744-aef0-dd5d5994eb2c&expires_in=299 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 513 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3D88.EFF0.EB78.5DD2","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["permission","uma_protection","clientinfo","email","user_name","sub","org_name","address","openid","test_scope1","work_phone","phone","profile","test"]} ####################################################### TEST: requestClientInfoInvalidRequest ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 260 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_request","error_description":"The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats the same parameter, uses more than one method for including an access token, or is otherwise malformed."} ####################################################### TEST: requestClientInfoInvalidToken ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 203 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_token","error_description":"The access token provided is expired, revoked, malformed, or invalid for other reasons. Try to request a new access token and retry the protected resource."} ####################################################### TEST: requestClientInfoPasswordFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "grant_types": ["password"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1299 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!85D9.E34C.090D.1E5B", "client_secret": "45be0453-1eb2-4992-9b7d-7b8f3c16b3cf", "registration_access_token": "8dff4793-e75b-4eba-9b15-faffba7cff08", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!85D9.E34C.090D.1E5B", "client_id_issued_at": 1530798944, "client_secret_expires_at": 1530885344, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [], "grant_types": ["password"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxODVEOS5FMzRDLjA5MEQuMUU1Qjo0NWJlMDQ1My0xZWIyLTQ5OTItOWI3ZC03YjhmM2MxNmIzY2Y= grant_type=password&scope=clientinfo&username=test_user&password=test_user_password ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 170 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"49f11979-10b0-432f-b0d1-3995baaaabc0","token_type":"bearer","expires_in":299,"refresh_token":"c5a8c657-8402-4c1c-a9b4-765304d1ab1d","scope":"clientinfo"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/clientinfo HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 513 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"displayName":"oxAuth test app","inum":"@!38D4.410C.1D43.8932!0001!37F2.B744!0008!85D9.E34C.090D.1E5B","oxAuthAppType":"web","oxAuthIdTokenSignedResponseAlg":"RS256","oxAuthRedirectURI":["https:\/\/client.example.com\/cb2","https:\/\/client.example.com\/cb1","https:\/\/client.example.com\/cb","https:\/\/ce-dev4.gluu.org\/oxauth-rp\/home.htm"],"oxAuthScope":["permission","uma_protection","clientinfo","email","user_name","sub","org_name","address","openid","test_scope1","work_phone","phone","profile","test"]} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: authorizationCodeFlow ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "scope": "openid profile address email phone user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1347 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:44 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D81F.04FC.E3CF.945C", "client_secret": "2ebfd986-ff5b-4b5e-986d-f64b97714546", "registration_access_token": "b494af30-2f34-4106-90ef-46104b851d43", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!D81F.04FC.E3CF.945C", "client_id_issued_at": 1530798945, "client_secret_expires_at": 1530885345, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "openid profile address email phone user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21D81F.04FC.E3CF.945C&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e2f13302-6666-4b4c-9930-37ad8c91c731&nonce=44fc7300-06c7-4d23-a88b-ab591f96b179 09:56:06.212 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2823e95e-42a9-46ce-a43b-9ab9833596eb ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21D81F.04FC.E3CF.945C&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=e2f13302-6666-4b4c-9930-37ad8c91c731&nonce=44fc7300-06c7-4d23-a88b-ab591f96b179 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=d863ed28-e548-49c4-828f-137f4bdb0bff&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFEODFGLjA0RkMuRTNDRi45NDVDIiwiZXhwIjoxNTMwODAyNTQ2LCJpYXQiOjE1MzA3OTg5NDYsIm5vbmNlIjoiNDRmYzczMDAtMDZjNy00ZDIzLWE4OGItYWI1OTFmOTZiMTc5IiwiYXV0aF90aW1lIjoxNTMwNzk4OTQ2LCJjX2hhc2giOiJaaHpSNjN6MjF5OFktOWRQMUQ2aG1RIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiYl9KV09ROGJSRldDdWN3TnZ3eDZRRlI1bDdfblUyOUZWUXUwYjN0UkFoSSJ9.MTuYZLTYrIcG33HMbXlVeZ9arOEdJsVrX6EeAofsKptmKPwAU3mSFoVvc9bMeIRDZI9ZgLSGvkdyOEXvll3SGWSXeN88CFPrLwt9TEkMLcvZYGDD9asA-uRaUOXmkyTUDHYSafwhVdiZfPa52jZ4cgxYK2fy98wsiMdj1LlRfwiMnNzO5SUJEhswPfCWguRdoUIEy_zoEF3d73ZMVWkM2YJy_suK_JkV838nl1HGShe_yfygYReQuc4JERdyXrovDcju0YOlYTY5xL_E1il0N1ZCp65cpImXtkzX25Y5EGK2_pNxaPqGfTR2a55iGRihhA1gK8yRjOb1eXz4ZqppKQ&session_id=262d209e-f170-4a94-8553-a5b2e713a66e&state=e2f13302-6666-4b4c-9930-37ad8c91c731&session_state=2823e95e-42a9-46ce-a43b-9ab9833596eb ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRDgxRi4wNEZDLkUzQ0YuOTQ1QzoyZWJmZDk4Ni1mZjViLTRiNWUtOTg2ZC1mNjRiOTc3MTQ1NDY= grant_type=authorization_code&code=d863ed28-e548-49c4-828f-137f4bdb0bff&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"0af47cc9-8d72-4798-a4af-793c10c29c05","token_type":"bearer","expires_in":299,"refresh_token":"31a4ce9f-daf7-4109-9016-90eeda51f9c3","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFEODFGLjA0RkMuRTNDRi45NDVDIiwiZXhwIjoxNTMwODAyNTQ2LCJpYXQiOjE1MzA3OTg5NDYsIm5vbmNlIjoiNDRmYzczMDAtMDZjNy00ZDIzLWE4OGItYWI1OTFmOTZiMTc5IiwiYXV0aF90aW1lIjoxNTMwNzk4OTQ2LCJhdF9oYXNoIjoiUVpXRVc2RFRKVzl5U3RBQmNCY3RJQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJfSldPUThiUkZXQ3Vjd052d3g2UUZSNWw3X25VMjlGVlF1MGIzdFJBaEkifQ.b_CbZg8zQKoOQqAXZPbamViVc5xc-BADyP513SeemNeSGFjODRInQgUPCv80xYpCCtugvMAc6RiK0HhNI440t1wOj07RAE4MvMa9fPvDWWt7nZsRR_bWvJTF0Vw5oiWFZOVRrjCcY9buzK3IX6Jfndhxx8izwf1rkRRHauN9fbtqWTUD8f-1E8IEaaKHTs1XhMadp_pZN9kkK1nkv8qXKhgTGyXs0PB4GpjQpvtOx0sRTUzNKqi7ezhSqyWLYskPORoZML8P2Cn05cBhMKN4u7_83a_yRLJEeAGVj-pV1-WM72uGx01bqydiPD4E5EnykmlQ0Ra2jqjNCb_6cyuh6g"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxRDgxRi4wNEZDLkUzQ0YuOTQ1QzoyZWJmZDk4Ni1mZjViLTRiNWUtOTg2ZC1mNjRiOTc3MTQ1NDY= grant_type=refresh_token&scope=address+phone+openid+user_name+profile+email&refresh_token=31a4ce9f-daf7-4109-9016-90eeda51f9c3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 204 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"859ff77a-9eee-443f-b2ea-1f22226f8dda","token_type":"bearer","expires_in":299,"refresh_token":"744342de-e75d-4be2-92d6-f382e636741e","scope":"address phone openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer 859ff77a-9eee-443f-b2ea-1f22226f8dda ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 695 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:55:46 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"b_JWOQ8bRFWCucwNvwx6QFR5l7_nU29FVQu0b3tRAhI","phone_number_verified":true,"phone_number":"(512) 516-2413","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: testEncode1 ####################################################### ####################################################### TEST: testEncode2 ####################################################### ####################################################### TEST: testEncode3 ####################################################### ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:46 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:46 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestClientAssociate ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1354 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6CA1.F1F6.D5E3.2F29", "client_secret": "37d01aef-0ec9-4254-82fb-e1ae4a28b0b2", "registration_access_token": "1ae5a558-f05b-4cb8-9303-fe1c7c5013cc", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!6CA1.F1F6.D5E3.2F29", "client_id_issued_at": 1530798947, "client_secret_expires_at": 1530885347, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": ["code"], "grant_types": [ "refresh_token", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } ####################################################### TEST: requestClientAssociateInBlackList ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": ["https://www.attacker.com"], "application_type": "web", "client_name": "oxAuth test app" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Cache-Control: no-store Connection: close Content-Length: 101 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_redirect_uri","error_description":"Value of one or more redirect_uris is invalid."} ####################################################### TEST: testUrlPatterList ####################################################### ####################################################### TEST: requestClientUpdate ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 400 Connection: close Content-Length: 282 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_client_metadata","error_description":"The value of one of the Client Metadata fields is invalid and the server has rejected this request. Note that an Authorization Server MAY choose to substitute a valid value for any requested parameter of a Client's Metadata."} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } ####################################################### TEST: OpenID Connect Configuration ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: enableClientToRestrictJavascriptOrigin ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "code", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "authorized_origins": ["https://ce.gluu.info:8443"], "scope": "openid profile address email phone user_name" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1404 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:47 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5148.F0F5.BFF8.906E", "client_secret": "3ad321f8-3e0c-4bcc-b48c-618cfe628ca9", "registration_access_token": "c90f653b-c237-4fba-8306-d581ad6a0ccf", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!5148.F0F5.BFF8.906E", "client_id_issued_at": 1530798947, "client_secret_expires_at": 1530885347, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "code", "token" ], "grant_types": [ "refresh_token", "implicit", "authorization_code" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "authorized_origins": ["https://ce.gluu.info:8443"], "frontchannel_logout_session_required": false, "scope": "openid profile address email phone user_name", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%215148.F0F5.BFF8.906E&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=347b3dee-50a9-46d7-93a7-4dbe3ba30e00&nonce=59b8e4f1-79eb-404a-9471-b577bad115c3 09:56:08.930 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:2a82ea2f-50b5-4c45-a946-a9e3dbc32d64 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=code+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%215148.F0F5.BFF8.906E&scope=openid+profile+address+email+phone+user_name&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=347b3dee-50a9-46d7-93a7-4dbe3ba30e00&nonce=59b8e4f1-79eb-404a-9471-b577bad115c3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#code=478f94e0-0bdc-4187-9aec-e638ba0d8f1e&scope=address+phone+openid+user_name+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE1MTQ4LkYwRjUuQkZGOC45MDZFIiwiZXhwIjoxNTMwODAyNTQ5LCJpYXQiOjE1MzA3OTg5NDksIm5vbmNlIjoiNTliOGU0ZjEtNzllYi00MDRhLTk0NzEtYjU3N2JhZDExNWMzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTQ5LCJjX2hhc2giOiJQQ1JqdkU0bHd5Nnl2VTBxeVRIcTZRIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIiwic3ViIjoiNV9JcnY4TW84STExTjBMbDdRZHFKM1JsY2taZnVidjBFa0czRnJDT2RmdyJ9.BE9lhtWe2gHMsTZBPxaQzG6hEaKZ4zoU5QutnXZBOrZLBE_ji_aJtKrHxcB58NcNdjwXuefEzubIY7L-nZvqL5Rd05cEu5qF9ddRRmJzF7Ubzm4NyJW7QfYol3CAZHLRGJY2HQ7vXG30LuEKcPqkiU0I99RvF399u7PS_5Tfd-TYwsmcEFyKhJyiHN4nzBbtsHNNgEEnhG_3iC_gUPwOScKMxAsSTxbdp7x1Z2mhRgX_9Yu3asnvTcPWDWthQkie-WcXLCgr8wfNyXCICmmxYfFxYmELEn47qJxJMLdnp0THhWZcMUkj6iP1EVLWRsqs6ijvfmoZmxVBSQROxQ7Ebw&session_id=18078cb4-1f3b-44b9-a4fb-6f0d71b8c7a5&state=347b3dee-50a9-46d7-93a7-4dbe3ba30e00&session_state=2a82ea2f-50b5-4c45-a946-a9e3dbc32d64 ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNTE0OC5GMEY1LkJGRjguOTA2RTozYWQzMjFmOC0zZTBjLTRiY2MtYjQ4Yy02MThjZmU2MjhjYTk= grant_type=authorization_code&code=478f94e0-0bdc-4187-9aec-e638ba0d8f1e&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1057 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"bf9afd20-f416-4bad-a714-8d7b472376ac","token_type":"bearer","expires_in":299,"refresh_token":"c239c1d1-8802-4960-ae43-f3ea9684b0e7","id_token":"eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE1MTQ4LkYwRjUuQkZGOC45MDZFIiwiZXhwIjoxNTMwODAyNTQ5LCJpYXQiOjE1MzA3OTg5NDksIm5vbmNlIjoiNTliOGU0ZjEtNzllYi00MDRhLTk0NzEtYjU3N2JhZDExNWMzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTQ5LCJhdF9oYXNoIjoicHpGbDVhckFzOHBzSWlCMkdBV0hRQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjVfSXJ2OE1vOEkxMU4wTGw3UWRxSjNSbGNrWmZ1YnYwRWtHM0ZyQ09kZncifQ.ibYM90KSwPlVn9tE6rPTWwPuvqjvpdwV4uZkqcAKfQThW1lUEpD964_GNG-iVG9gsxJQRmntZc-5u_FG66YErmrn8FLwKMumaikWF5c0RMlmANV-1ZKbTpRyQjGmWbUNlZ6-moRmNTCXvY-PcSYG_W7H2KtZ5Irq7EMqq3GumGmyBw9FIN5_3MflIa-_jT38ImmYaJ1trxE-8uOm1d_Ampse0ckXbDsNdYtWucHLLVRPjAU8DfyZ3-7DCmsGOWc-o3CHhjVOzTP54DWfSjPeEWOEZ3jMAW0NNxBd_5SgVc2547IZR13-uC1GMQxg08_c0z6TUjnV17GCwZ2DxhP5Nw"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/token HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: ce-dev4.gluu.org Authorization: Basic JTQwJTIxMzhENC40MTBDLjFENDMuODkzMiUyMTAwMDElMjEzN0YyLkI3NDQlMjEwMDA4JTIxNTE0OC5GMEY1LkJGRjguOTA2RTozYWQzMjFmOC0zZTBjLTRiY2MtYjQ4Yy02MThjZmU2MjhjYTk= grant_type=refresh_token&scope=address+phone+openid+user_name+profile+email&refresh_token=c239c1d1-8802-4960-ae43-f3ea9684b0e7 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 204 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"access_token":"a258bcaa-a8ab-401f-a45b-e56dda2bf8e6","token_type":"bearer","expires_in":299,"refresh_token":"19425afe-e558-48f4-8572-99bf0cb8b294","scope":"address phone openid user_name profile email"} ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/userinfo HTTP/1.1 Host: ce-dev4.gluu.org Authorization: Bearer a258bcaa-a8ab-401f-a45b-e56dda2bf8e6 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store, private Connection: Keep-Alive Content-Length: 695 Content-Type: application/json;charset=utf-8 Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"address":{"street_address":"621 East 6th Street","country":"US","locality":"Austin","region":"Texas"},"sub":"5_Irv8Mo8I11N0Ll7QdqJ3RlckZfubv0EkG3FrCOdfw","phone_number_verified":true,"phone_number":"(512) 516-2413","user_name":"test_user","website":"http://www.gluu.org","zoneinfo":"America/Chicago","birthdate":"19830106010101.253Z","gender":"Male","profile":"http://www.mywebsite.com/profile","preferred_username":"user","given_name":"Test","middle_name":"User","locale":"en-US","picture":"http://www.gluu.org/wp-content/uploads/2012/04/mike3.png","updated_at":1526659613066,"name":"oxAuth Test User","nickname":"user","family_name":"User","email_verified":true,"email":"test_user@test.org"} ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: encodeClaimsInStateParameterAlgA128KWEncA128GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:49 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0AD3.BFB6.69B9.163C", "client_secret": "b0ee3b33-b84f-4abb-ad25-ab08c05445e5", "registration_access_token": "b81c5fe8-7836-4eb8-9a49-1db5b482c68f", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!0AD3.BFB6.69B9.163C", "client_id_issued_at": 1530798949, "client_secret_expires_at": 1530885349, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210AD3.BFB6.69B9.163C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.E0Z6HoG2QlMG1xkznX_8sQypZe-vWsSd.EsZhM9Pl9iRkeU8t.x9HpFkDuVCPDJX2jxehBNmJZb7Hx7Z58J_a8uqmpVFaHDjmv_ugnXG5Mn4wuwE8MHOLc6MOh9EHnB03RsFwWPEfdRaWWxdPzwthsHzLms36USKIPDYmQQC-fPkkJ9gLMQ-IQyqOAVluPcYMasxHul5h8q1_OaCN9pRb9cabEAANGuDujPD7IdCZIoxbRn7gyPlGLrUFjeDNm5YpFZg0YiZTv9vVQdCpHjsBpGsv5SVh_qZZuKQb8eTFChKcYPtlKLQ0SN5FrmS7BB15RGDe2--mjiRcBeOXRJH9WjZ2GLYA4xCWd7dICLYu3mVJegweI9H8ehzKqJA.hafydJzG4onkrxP_VTTxug&nonce=2152be11-d042-416f-9513-bfcd08b4e3b3 09:56:11.006 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:b642fdd7-11d0-4734-8f5a-563374c0a1df ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%210AD3.BFB6.69B9.163C&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.E0Z6HoG2QlMG1xkznX_8sQypZe-vWsSd.EsZhM9Pl9iRkeU8t.x9HpFkDuVCPDJX2jxehBNmJZb7Hx7Z58J_a8uqmpVFaHDjmv_ugnXG5Mn4wuwE8MHOLc6MOh9EHnB03RsFwWPEfdRaWWxdPzwthsHzLms36USKIPDYmQQC-fPkkJ9gLMQ-IQyqOAVluPcYMasxHul5h8q1_OaCN9pRb9cabEAANGuDujPD7IdCZIoxbRn7gyPlGLrUFjeDNm5YpFZg0YiZTv9vVQdCpHjsBpGsv5SVh_qZZuKQb8eTFChKcYPtlKLQ0SN5FrmS7BB15RGDe2--mjiRcBeOXRJH9WjZ2GLYA4xCWd7dICLYu3mVJegweI9H8ehzKqJA.hafydJzG4onkrxP_VTTxug&nonce=2152be11-d042-416f-9513-bfcd08b4e3b3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=550f6bf4-6d8a-4682-bf01-40516f7621af&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwQUQzLkJGQjYuNjlCOS4xNjNDIiwiZXhwIjoxNTMwODAyNTUxLCJpYXQiOjE1MzA3OTg5NTEsIm5vbmNlIjoiMjE1MmJlMTEtZDA0Mi00MTZmLTk1MTMtYmZjZDA4YjRlM2IzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTUxLCJhdF9oYXNoIjoiMHZGbVRDMzlDcy1YR1lHbHh1TkxyUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjQ5bWRLVkJxVVo4a3o0amxpVXNPS01iak8xR0tYR0NmNG5aWmg3SHlvblkifQ.gJJ1LpLcD1Dx1CYkYxF9bcepmDMH5YBiYzL6dVuYuHaS8Uv7le9ISXleGhqwL13v-EjGX7f2HAKtftfUx9IG01RkQtDeSByuadG5mIbt6hiMtb2zUQ13GBC9BbbihbMXbuLK3feHT2HzvC478Y6XZVcqrTLCh2sta5RAmiSi3BpPCXUvONm-hBSJ7oZJ59Qo3UCtFxHAkcb8HxCY6e7weVmibXEkZZ0zQPrXi5O0mVfEW-IdAuzkSPdAE0iXWFXadMDRJBy7HHNpI5COKNrMozhG42QNocIJTDtbFS-ZvwGZglyYde7hGv7jVf_6gtqR-ml808bzqkTb5cSplWuOTA&session_id=4f325238-05fb-41e0-a1e6-fabd09e7bf67&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.E0Z6HoG2QlMG1xkznX_8sQypZe-vWsSd.EsZhM9Pl9iRkeU8t.x9HpFkDuVCPDJX2jxehBNmJZb7Hx7Z58J_a8uqmpVFaHDjmv_ugnXG5Mn4wuwE8MHOLc6MOh9EHnB03RsFwWPEfdRaWWxdPzwthsHzLms36USKIPDYmQQC-fPkkJ9gLMQ-IQyqOAVluPcYMasxHul5h8q1_OaCN9pRb9cabEAANGuDujPD7IdCZIoxbRn7gyPlGLrUFjeDNm5YpFZg0YiZTv9vVQdCpHjsBpGsv5SVh_qZZuKQb8eTFChKcYPtlKLQ0SN5FrmS7BB15RGDe2--mjiRcBeOXRJH9WjZ2GLYA4xCWd7dICLYu3mVJegweI9H8ehzKqJA.hafydJzG4onkrxP_VTTxug&token_type=bearer&session_state=b642fdd7-11d0-4734-8f5a-563374c0a1df&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterAlgA256KWEncA256GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:51 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AFF5.40B2.DF59.5217", "client_secret": "436ccfdf-41b6-4ea7-a54d-00372c3c9888", "registration_access_token": "41944af7-ea05-433d-8c04-7aa7ec606586", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!AFF5.40B2.DF59.5217", "client_id_issued_at": 1530798951, "client_secret_expires_at": 1530885351, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21AFF5.40B2.DF59.5217&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIn0.O4Bvneo3Ynrnjont92EGmpEAQkuS96ojyNnjDFtLG70lbUZPEr9PZQ.EUFt9oFA0YGijGUr.YunuikYaKCTa7Tb5IMY4fyeRq8jwNw7uVi4Wf2NXC2Luou8wgjftQpEpXxj5kHlaRn17FkmygeIyN5vB306_cRDlli6Khz992P3sCwtQ43fKd_DnL-HrL3mJvcCHuaTbQt4qLzC-6t3ekwjDmECPKT_7z_9Gyy1yRLTZf8jnXImBAJXXTJtK4y50vBxPLRtDLsn-bZrJK4jNlUYBYS5WybNhzuGuj8ho27FvTUSNcHa3HsBB2OoCKejL0sLNAmfkAj5dw0WvmXq5yNdCyZWpjJoRaZQK07f64DGhLGGvSvCNJkPuMMtVDwh5Vx4ti-8ofguca26Rug.HnM_nd-bIO8S7MtOA69l1A&nonce=6a33980d-faf2-4472-a73f-ce56fb1782be 09:56:12.582 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:c8533705-f75a-4666-baf0-7da7b830b274 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21AFF5.40B2.DF59.5217&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIn0.O4Bvneo3Ynrnjont92EGmpEAQkuS96ojyNnjDFtLG70lbUZPEr9PZQ.EUFt9oFA0YGijGUr.YunuikYaKCTa7Tb5IMY4fyeRq8jwNw7uVi4Wf2NXC2Luou8wgjftQpEpXxj5kHlaRn17FkmygeIyN5vB306_cRDlli6Khz992P3sCwtQ43fKd_DnL-HrL3mJvcCHuaTbQt4qLzC-6t3ekwjDmECPKT_7z_9Gyy1yRLTZf8jnXImBAJXXTJtK4y50vBxPLRtDLsn-bZrJK4jNlUYBYS5WybNhzuGuj8ho27FvTUSNcHa3HsBB2OoCKejL0sLNAmfkAj5dw0WvmXq5yNdCyZWpjJoRaZQK07f64DGhLGGvSvCNJkPuMMtVDwh5Vx4ti-8ofguca26Rug.HnM_nd-bIO8S7MtOA69l1A&nonce=6a33980d-faf2-4472-a73f-ce56fb1782be ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=4250f820-212e-4732-ba06-98951536b490&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFBRkY1LjQwQjIuREY1OS41MjE3IiwiZXhwIjoxNTMwODAyNTUyLCJpYXQiOjE1MzA3OTg5NTIsIm5vbmNlIjoiNmEzMzk4MGQtZmFmMi00NDcyLWE3M2YtY2U1NmZiMTc4MmJlIiwiYXV0aF90aW1lIjoxNTMwNzk4OTUyLCJhdF9oYXNoIjoiNTBsbFFCSXJFQXVlMnJXXzlWSm5LdyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImhiLUUzS2RwR1hGY1UtdmVUYVIyRlhzbjNNM0NaOTN4UEkwRGRESEpDMm8ifQ.hfSFRccgke5vCrASj9ZwwMN4SNr1gewE-zzyBaY1zOOlR5nBE5CCAlmmjY3VfApYTMC9NjyfMMukiZ5OX4hHcL123bmzlxmPFGrtJmxcSbyCv4VouDkV__R8DX4P0Dpw8W9ZXK0QLEU13ATGGAgtISXTRXjMONj15zswnV2JOB74scAJ74QhKwky7ZKBcHkEzT2Tuh5kZNJiB2wSfhN9_Do1kH9fhoLeeTmVMOEWsPMQW6fOXU3WaOT5_jf8Q4nyCD-wwS6Tapgomm0M6dnXQ7xOS-PY33j7bVrCeXql9LPzH1KioR5jvtmugKqr49EOm3ivuL4a6bggBYihW_o2CA&session_id=5c07874b-fb2e-47ee-a4b3-a1536e09aec4&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIn0.O4Bvneo3Ynrnjont92EGmpEAQkuS96ojyNnjDFtLG70lbUZPEr9PZQ.EUFt9oFA0YGijGUr.YunuikYaKCTa7Tb5IMY4fyeRq8jwNw7uVi4Wf2NXC2Luou8wgjftQpEpXxj5kHlaRn17FkmygeIyN5vB306_cRDlli6Khz992P3sCwtQ43fKd_DnL-HrL3mJvcCHuaTbQt4qLzC-6t3ekwjDmECPKT_7z_9Gyy1yRLTZf8jnXImBAJXXTJtK4y50vBxPLRtDLsn-bZrJK4jNlUYBYS5WybNhzuGuj8ho27FvTUSNcHa3HsBB2OoCKejL0sLNAmfkAj5dw0WvmXq5yNdCyZWpjJoRaZQK07f64DGhLGGvSvCNJkPuMMtVDwh5Vx4ti-8ofguca26Rug.HnM_nd-bIO8S7MtOA69l1A&token_type=bearer&session_state=c8533705-f75a-4666-baf0-7da7b830b274&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterAlgRSA15EncA128CBCPLUSHS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:52 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3A0A.637B.2AE0.71CF", "client_secret": "e793045c-fec8-4d70-b764-689d3223d8fc", "registration_access_token": "2fb2f7bc-7e35-430d-a302-c3365255fc11", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!3A0A.637B.2AE0.71CF", "client_id_issued_at": 1530798953, "client_secret_expires_at": 1530885353, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213A0A.637B.2AE0.71CF&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2Iiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.g0KBG6ORCurO24qfAJ9M2PwIhafvlnUSpA1VhL5Yn36OSUh9RSIxiyNzbVAWT6k-95ktVS0y3HpiVT0eNlPGFYh-K2dMGW4LHOmQOuFemOhupOBZ0DKLp-4ai-GdP9zLHpQt8cnBXEYbgvUpJMVo_QfwQlKynnXkdN5jZkQyYo3L-F4d2osQT_qJwEMElWRH8YJ3r74hTIj3JYEb6pVeSV9J6FIZCuTFc9Gm1TywHt80PsC0WBaoDkn996bGfWhvLES1wfPAUJ1Bvl4j_zKvPUbx6vknMucsj5RhIFwcOavYfnS8_kRvlZDHYSwztpFd1jAoZcr1zeSMhWcTgQq4hQ.aOLdwz0ECI9lc2O27N54vQ.u1rY2I1kAxihaBy7JjAsg5mR2IrSboojriR3LhmR_Otl4VAiDlsYnthyVffnfTlWMxb0zZE92NrWi6zH_2bU680JU3TL9r8iyEugP67y-lylBOU9jBNz5wZQx-TmENhKIE5mlNFOAPQrIEX2FmPkEj82D6adnDtdy2WWRyBUyebGU00qBdcYXbGuEdDFmdze15goxJCefUtXcL62nyM6xuCQHztNwoT6kVm1El3WZEk23pj7K-mVbVngNLVpoFgyFX6J8tZA1tjva1XwNmJIWaukwDMLeIWQ9JSM2B0M9ugMCr_0Mm_VjgWRqZl1Ti1OTAqBgH0SGMRnh_0zb79h0lsA9AE5A1SYt64zulH8qRAEOEKddFNHHhVxVCMy8Ce62eC5FG-JZw9c1aJvfhZBBhyTw_PAWm5cAzrT4CYZgNI.NdiD-Y0eMFkEyBV6PDmWGBndx27P130nQhmRjZx4aSE&nonce=e06d1ae2-79d6-4d30-81f7-98593d4fa3c3 09:56:14.308 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:bafba259-500f-4d91-b5a7-d80b4d8cbe4e ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%213A0A.637B.2AE0.71CF&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2Iiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.g0KBG6ORCurO24qfAJ9M2PwIhafvlnUSpA1VhL5Yn36OSUh9RSIxiyNzbVAWT6k-95ktVS0y3HpiVT0eNlPGFYh-K2dMGW4LHOmQOuFemOhupOBZ0DKLp-4ai-GdP9zLHpQt8cnBXEYbgvUpJMVo_QfwQlKynnXkdN5jZkQyYo3L-F4d2osQT_qJwEMElWRH8YJ3r74hTIj3JYEb6pVeSV9J6FIZCuTFc9Gm1TywHt80PsC0WBaoDkn996bGfWhvLES1wfPAUJ1Bvl4j_zKvPUbx6vknMucsj5RhIFwcOavYfnS8_kRvlZDHYSwztpFd1jAoZcr1zeSMhWcTgQq4hQ.aOLdwz0ECI9lc2O27N54vQ.u1rY2I1kAxihaBy7JjAsg5mR2IrSboojriR3LhmR_Otl4VAiDlsYnthyVffnfTlWMxb0zZE92NrWi6zH_2bU680JU3TL9r8iyEugP67y-lylBOU9jBNz5wZQx-TmENhKIE5mlNFOAPQrIEX2FmPkEj82D6adnDtdy2WWRyBUyebGU00qBdcYXbGuEdDFmdze15goxJCefUtXcL62nyM6xuCQHztNwoT6kVm1El3WZEk23pj7K-mVbVngNLVpoFgyFX6J8tZA1tjva1XwNmJIWaukwDMLeIWQ9JSM2B0M9ugMCr_0Mm_VjgWRqZl1Ti1OTAqBgH0SGMRnh_0zb79h0lsA9AE5A1SYt64zulH8qRAEOEKddFNHHhVxVCMy8Ce62eC5FG-JZw9c1aJvfhZBBhyTw_PAWm5cAzrT4CYZgNI.NdiD-Y0eMFkEyBV6PDmWGBndx27P130nQhmRjZx4aSE&nonce=e06d1ae2-79d6-4d30-81f7-98593d4fa3c3 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=e4967d38-614d-4c95-aad0-1495dd908b89&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEzQTBBLjYzN0IuMkFFMC43MUNGIiwiZXhwIjoxNTMwODAyNTU0LCJpYXQiOjE1MzA3OTg5NTQsIm5vbmNlIjoiZTA2ZDFhZTItNzlkNi00ZDMwLTgxZjctOTg1OTNkNGZhM2MzIiwiYXV0aF90aW1lIjoxNTMwNzk4OTU0LCJhdF9oYXNoIjoiRXZ4R1pXQlNMaGp3SGlaNmZJQlRCZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Ik1xaEVFUWRLb3c3SDBaZWt4RDNGeHBmSjNoVG9ZNGZhSVJmYkVEVjVudTAifQ.AY5fDKv2cFBl-aSDg_gOK_Zk5pOfds0jW2NKcKyjbhWlro06wDRBt39gAuCLF3nGz_WEhoT73uX1Z2OscwErru11Rj4AViCI-LU-kG6ntGsJ1XviZ2qVXp2plBE5xqm2UZG4MYk9gVaIl6pqW-pO5g_VEJvBMItTzsfl6GO26cO-zpiALfwK7pdqVpuUfboZGh7jsZxh2c2P_P_yGSspijXEUothgedL3yjAt5fXYFbP7krsnW--WesS2LvSb8x2SHGs0I5qBj_h5QOSjvFETto_u8qxofxk1lq4chT-UvzOdkvLVRhF_ZAveBCZeMly6Etz7Td7Syj8Bo3AGo4ugw&session_id=004af2bc-64be-4596-93b1-1fe0dccfa29b&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2Iiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.g0KBG6ORCurO24qfAJ9M2PwIhafvlnUSpA1VhL5Yn36OSUh9RSIxiyNzbVAWT6k-95ktVS0y3HpiVT0eNlPGFYh-K2dMGW4LHOmQOuFemOhupOBZ0DKLp-4ai-GdP9zLHpQt8cnBXEYbgvUpJMVo_QfwQlKynnXkdN5jZkQyYo3L-F4d2osQT_qJwEMElWRH8YJ3r74hTIj3JYEb6pVeSV9J6FIZCuTFc9Gm1TywHt80PsC0WBaoDkn996bGfWhvLES1wfPAUJ1Bvl4j_zKvPUbx6vknMucsj5RhIFwcOavYfnS8_kRvlZDHYSwztpFd1jAoZcr1zeSMhWcTgQq4hQ.aOLdwz0ECI9lc2O27N54vQ.u1rY2I1kAxihaBy7JjAsg5mR2IrSboojriR3LhmR_Otl4VAiDlsYnthyVffnfTlWMxb0zZE92NrWi6zH_2bU680JU3TL9r8iyEugP67y-lylBOU9jBNz5wZQx-TmENhKIE5mlNFOAPQrIEX2FmPkEj82D6adnDtdy2WWRyBUyebGU00qBdcYXbGuEdDFmdze15goxJCefUtXcL62nyM6xuCQHztNwoT6kVm1El3WZEk23pj7K-mVbVngNLVpoFgyFX6J8tZA1tjva1XwNmJIWaukwDMLeIWQ9JSM2B0M9ugMCr_0Mm_VjgWRqZl1Ti1OTAqBgH0SGMRnh_0zb79h0lsA9AE5A1SYt64zulH8qRAEOEKddFNHHhVxVCMy8Ce62eC5FG-JZw9c1aJvfhZBBhyTw_PAWm5cAzrT4CYZgNI.NdiD-Y0eMFkEyBV6PDmWGBndx27P130nQhmRjZx4aSE&token_type=bearer&session_state=bafba259-500f-4d91-b5a7-d80b4d8cbe4e&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterAlgRSA15EncA256CBCPLUSHS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:54 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2701.8A08.7150.AF0E", "client_secret": "20fb7fd6-de20-49a9-a578-968a66310f59", "registration_access_token": "7110936d-75c3-4941-9af7-2ecf36d82f01", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2701.8A08.7150.AF0E", "client_id_issued_at": 1530798954, "client_secret_expires_at": 1530885354, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212701.8A08.7150.AF0E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.mmAILHHmb_Ouf9lM-5uO27MII_YgtfJR0YtXnPtUgxdQGPLGEEKjn8Ja7Gw1Nbc8Jx89S0EfW7ZaNV1jvi1lj9PBzGKO_2vWYgp0pLuShmDGVsgonXfNzoHmNBarRGLlvG7Kq_n4PI08Q6wshL8dBjcO6SqOyVmW-Nox8cxIhx5UIR2_M8wn8cIYTVSQFEwB0RP48mlZT0NhkDqelrQhMfs2ryWIcK9_oqwByNuYir0bCoF5H4kVb9B-QrkQbmxZ8IFKfX--_5N8-spERtRvR_-sgWrOQgzo37G6NL3YsGBWqTM67O0mdiLNzrtCG3Z0_36WN3AisnEAOCixqfqfNw.wMNC8b1l40UdrZJ1AOuaLg.YzGQZN-YdO8NNIh7wQRP2xn-ibx95sHF2jLjf7X28cWPUlp8J54bDfaUP2JYcmYX6MTPfTu_sUbY075wy8C5I6e-0hU7DcKdo044ABpZOx4Bs_szsSs-ZjWXFQgL6TqDW7aicT3a5uOI39ChWyNNQZcO88WtbjVM8GjSl16lTUjIxDhfl5U5EgIqBZPYkrulEOcBiw_e0Qno4FJBdLk5S3uaiOIAOXp7CcHyb7t6buFO-P2ZY9TM0L_ODdYTrv8O-OFZSr6hm6NbjNHKDS7pQcUqgle461PUjKv16mHVC0WS_ySlUeDREdT-kmE_sVothH-UcIeT1vaafOxG1h2YFOGxrkdgA2RDtfvGe2f87WbKv5HMoNvOZTA2A3h2tDJgrZwOIir9pRq1wJ4eQUnMfwxFjqWOyuaUT0quEsOKNjU.8zKDbfq6XUuDOnqlZd_ggHpJg2RSLlYnuZAmB1WQr9GkAQcFdPiuRTB9cWDHZFjhOf5NryibD6w34O0uz7FIGg&nonce=f030bfa8-efbf-4780-9ce2-2d7f9a94efec 09:56:16.055 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:944e6df8-10d1-4dd1-b765-87c30231e0a1 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212701.8A08.7150.AF0E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.mmAILHHmb_Ouf9lM-5uO27MII_YgtfJR0YtXnPtUgxdQGPLGEEKjn8Ja7Gw1Nbc8Jx89S0EfW7ZaNV1jvi1lj9PBzGKO_2vWYgp0pLuShmDGVsgonXfNzoHmNBarRGLlvG7Kq_n4PI08Q6wshL8dBjcO6SqOyVmW-Nox8cxIhx5UIR2_M8wn8cIYTVSQFEwB0RP48mlZT0NhkDqelrQhMfs2ryWIcK9_oqwByNuYir0bCoF5H4kVb9B-QrkQbmxZ8IFKfX--_5N8-spERtRvR_-sgWrOQgzo37G6NL3YsGBWqTM67O0mdiLNzrtCG3Z0_36WN3AisnEAOCixqfqfNw.wMNC8b1l40UdrZJ1AOuaLg.YzGQZN-YdO8NNIh7wQRP2xn-ibx95sHF2jLjf7X28cWPUlp8J54bDfaUP2JYcmYX6MTPfTu_sUbY075wy8C5I6e-0hU7DcKdo044ABpZOx4Bs_szsSs-ZjWXFQgL6TqDW7aicT3a5uOI39ChWyNNQZcO88WtbjVM8GjSl16lTUjIxDhfl5U5EgIqBZPYkrulEOcBiw_e0Qno4FJBdLk5S3uaiOIAOXp7CcHyb7t6buFO-P2ZY9TM0L_ODdYTrv8O-OFZSr6hm6NbjNHKDS7pQcUqgle461PUjKv16mHVC0WS_ySlUeDREdT-kmE_sVothH-UcIeT1vaafOxG1h2YFOGxrkdgA2RDtfvGe2f87WbKv5HMoNvOZTA2A3h2tDJgrZwOIir9pRq1wJ4eQUnMfwxFjqWOyuaUT0quEsOKNjU.8zKDbfq6XUuDOnqlZd_ggHpJg2RSLlYnuZAmB1WQr9GkAQcFdPiuRTB9cWDHZFjhOf5NryibD6w34O0uz7FIGg&nonce=f030bfa8-efbf-4780-9ce2-2d7f9a94efec ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=da18a8a2-c413-44c0-a658-ebf58564e961&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyNzAxLjhBMDguNzE1MC5BRjBFIiwiZXhwIjoxNTMwODAyNTU2LCJpYXQiOjE1MzA3OTg5NTYsIm5vbmNlIjoiZjAzMGJmYTgtZWZiZi00NzgwLTljZTItMmQ3ZjlhOTRlZmVjIiwiYXV0aF90aW1lIjoxNTMwNzk4OTU2LCJhdF9oYXNoIjoiQ2tYcldlckxFQlc0eUVxRDk5UkY3ZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Impjek5Oa0JEV1hLV1JzbEc3dnp0QURRemVhSFF4bzVzWlgyRm4wTE03MDgifQ.OIdCxbpKcxIxyr3Ms_G8vJ2wJaBMA0NWOqNdJmFn7EuzCqNypRk2evIK3ItesDD_7lftxQJMvWBn4OV1PkIVnmnuPhu8QtCwP0lITYlNG8AnP_-OHkESbLM90akihhzn_mHKW15Jl_cOgaJW_ZRTTtYt_eF0sAaPGsIutA5TYsHPdY7KWXcVSij-2jZVjHhWubALh4QEvkbSS09Jbrs0hiZIdJ4c7YpTJ8ByqgfjrCcXZFwUk8f5JA7_oz_dEgqSziSVP0vivj2HuiK-DE5Xa9xKTrG4uDQ6qj61e450Z8iQrMPJR1WFSZDDgx1rMZmeWV4iG_EiA7wwZZhzbWhyxw&session_id=a45b6f60-68de-4643-b061-ffe61db371d7&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.mmAILHHmb_Ouf9lM-5uO27MII_YgtfJR0YtXnPtUgxdQGPLGEEKjn8Ja7Gw1Nbc8Jx89S0EfW7ZaNV1jvi1lj9PBzGKO_2vWYgp0pLuShmDGVsgonXfNzoHmNBarRGLlvG7Kq_n4PI08Q6wshL8dBjcO6SqOyVmW-Nox8cxIhx5UIR2_M8wn8cIYTVSQFEwB0RP48mlZT0NhkDqelrQhMfs2ryWIcK9_oqwByNuYir0bCoF5H4kVb9B-QrkQbmxZ8IFKfX--_5N8-spERtRvR_-sgWrOQgzo37G6NL3YsGBWqTM67O0mdiLNzrtCG3Z0_36WN3AisnEAOCixqfqfNw.wMNC8b1l40UdrZJ1AOuaLg.YzGQZN-YdO8NNIh7wQRP2xn-ibx95sHF2jLjf7X28cWPUlp8J54bDfaUP2JYcmYX6MTPfTu_sUbY075wy8C5I6e-0hU7DcKdo044ABpZOx4Bs_szsSs-ZjWXFQgL6TqDW7aicT3a5uOI39ChWyNNQZcO88WtbjVM8GjSl16lTUjIxDhfl5U5EgIqBZPYkrulEOcBiw_e0Qno4FJBdLk5S3uaiOIAOXp7CcHyb7t6buFO-P2ZY9TM0L_ODdYTrv8O-OFZSr6hm6NbjNHKDS7pQcUqgle461PUjKv16mHVC0WS_ySlUeDREdT-kmE_sVothH-UcIeT1vaafOxG1h2YFOGxrkdgA2RDtfvGe2f87WbKv5HMoNvOZTA2A3h2tDJgrZwOIir9pRq1wJ4eQUnMfwxFjqWOyuaUT0quEsOKNjU.8zKDbfq6XUuDOnqlZd_ggHpJg2RSLlYnuZAmB1WQr9GkAQcFdPiuRTB9cWDHZFjhOf5NryibD6w34O0uz7FIGg&token_type=bearer&session_state=944e6df8-10d1-4dd1-b765-87c30231e0a1&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterAlgRSAOAEPEncA256GCM ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:56 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!99B4.8E70.6B07.125F", "client_secret": "26863be3-a725-4493-89b7-a67f37db83d6", "registration_access_token": "21ef793d-eec4-42fb-8c7b-b7cd779c76c1", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!99B4.8E70.6B07.125F", "client_id_issued_at": 1530798956, "client_secret_expires_at": 1530885356, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2199B4.8E70.6B07.125F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkifQ.aDe_nu5LReBn5QZpK-Yoe3SicgXTX9fi-DqgiXHZvaGRzu1EU2oYR1YpjZUSw2kuQsBOPzLKa9UxlM9BZYyMQfqFZhW1XrK0VwNE0OhlD2ojSByFzs4d9kgnOwpsucasIuCaP7ejJP5NRN3FZ_Ukv3q4FBYlGZQhoHymPgt_iDk3rngUgFKbVT0opID5JwrILVxdx-Vv6C5ZSUtYQ9NInVgmf6MjWKQn027uj7_nhBU9sJPoS_fS4xpADCkIrbBI64t0eizNPnrxUlsyNvlhrueciPuRg8Mz8srrsFC0Q1H05hQPd33R3lOKrlUOCxu5KzQa5luMCm5BIkIhe25WBQ.NBui_56MLzK6JN9l.SB6AEmZUN4YB0CQPS5rfSZw5y22nAETOwwk52HKDPAT4cpWMivk0eTqqoL8nT14h_9a2TMoRKs9kM0xeNQCn4Ej4DUX93JR7F1aL45whfP6lkvWFNMhcd5m9aPi0eiaXL7yOFT6KK_bKRKgQVs8AdbNqISB2iAxc0ilSn0KBrqx5omNL9pXWPZfl1Bt0OPDrSYYhn1ysrc1yrginbGr0bx4ZEoAM78pPcenVeTW-vhfayDs5iK3ZvXcFylhyjP6rF6jwm8mYksPcQ9C7TqhrcqEN5LHl8aNvlU7gmGx1pGmuEpQF0nJMntGsKClpAz-3JBx63MLaka2D76pD74OnypBNB9OdJylI6zDOjWQ2_Uw6H-sHceRgc1hAGtFDbzBXEShjKcUE_DrG60SpIwerxBgelA.40QnnJb_gWlXLarwAP7CIg&nonce=1fea5916-2efd-4a9a-b6d1-4543af958a8e 09:56:17.776 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:4ca3bcbd-5000-4b19-afbb-2adf506d9f12 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2199B4.8E70.6B07.125F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkifQ.aDe_nu5LReBn5QZpK-Yoe3SicgXTX9fi-DqgiXHZvaGRzu1EU2oYR1YpjZUSw2kuQsBOPzLKa9UxlM9BZYyMQfqFZhW1XrK0VwNE0OhlD2ojSByFzs4d9kgnOwpsucasIuCaP7ejJP5NRN3FZ_Ukv3q4FBYlGZQhoHymPgt_iDk3rngUgFKbVT0opID5JwrILVxdx-Vv6C5ZSUtYQ9NInVgmf6MjWKQn027uj7_nhBU9sJPoS_fS4xpADCkIrbBI64t0eizNPnrxUlsyNvlhrueciPuRg8Mz8srrsFC0Q1H05hQPd33R3lOKrlUOCxu5KzQa5luMCm5BIkIhe25WBQ.NBui_56MLzK6JN9l.SB6AEmZUN4YB0CQPS5rfSZw5y22nAETOwwk52HKDPAT4cpWMivk0eTqqoL8nT14h_9a2TMoRKs9kM0xeNQCn4Ej4DUX93JR7F1aL45whfP6lkvWFNMhcd5m9aPi0eiaXL7yOFT6KK_bKRKgQVs8AdbNqISB2iAxc0ilSn0KBrqx5omNL9pXWPZfl1Bt0OPDrSYYhn1ysrc1yrginbGr0bx4ZEoAM78pPcenVeTW-vhfayDs5iK3ZvXcFylhyjP6rF6jwm8mYksPcQ9C7TqhrcqEN5LHl8aNvlU7gmGx1pGmuEpQF0nJMntGsKClpAz-3JBx63MLaka2D76pD74OnypBNB9OdJylI6zDOjWQ2_Uw6H-sHceRgc1hAGtFDbzBXEShjKcUE_DrG60SpIwerxBgelA.40QnnJb_gWlXLarwAP7CIg&nonce=1fea5916-2efd-4a9a-b6d1-4543af958a8e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=20b55e4e-1f1b-4a38-a94e-788c3ba4bd8d&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5OUI0LjhFNzAuNkIwNy4xMjVGIiwiZXhwIjoxNTMwODAyNTU4LCJpYXQiOjE1MzA3OTg5NTgsIm5vbmNlIjoiMWZlYTU5MTYtMmVmZC00YTlhLWI2ZDEtNDU0M2FmOTU4YThlIiwiYXV0aF90aW1lIjoxNTMwNzk4OTU3LCJhdF9oYXNoIjoickNFaFJYTjhGR0xSbGc1a0NGOGRPZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjBtbDlTdDQwRWktaWJDQkUtd1hYYjcySGdhWFZlZENwWXlpRlRMWHlfM3cifQ.SlZK9VZvEqWtUsRzFF8SKxj_1pZ4P-_CtwYi0tkBfeDeLKIi6wNQX5WH7ewpgwjYMPaN8E14D65QUghorWJSBFP8thEI8zA1x-fUlBOFWmaIsP_BagRPoiKm2b9VUiCFDMWuq49T_O0fTDXucmSKAgFva0KOL2VfHSmbtxZms_txnpvhQ5Dnu7U__8SeRG0opO7MZPYV-BnqJkeUS3NLMV32KSqFT3wvsuqjQUfkC73h65fa-lKR4rdMi5P2EVAkM-v6jG5hODM8V3k21FpPcyNjl9x7Yrl01JJgzx6VK4VC5i6QZuQkPhv27dv3FHg_xqMzqveEH5Ab6oNkhS5yYQ&session_id=f26f069a-240c-493f-ab37-32ae9130a0e2&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkifQ.aDe_nu5LReBn5QZpK-Yoe3SicgXTX9fi-DqgiXHZvaGRzu1EU2oYR1YpjZUSw2kuQsBOPzLKa9UxlM9BZYyMQfqFZhW1XrK0VwNE0OhlD2ojSByFzs4d9kgnOwpsucasIuCaP7ejJP5NRN3FZ_Ukv3q4FBYlGZQhoHymPgt_iDk3rngUgFKbVT0opID5JwrILVxdx-Vv6C5ZSUtYQ9NInVgmf6MjWKQn027uj7_nhBU9sJPoS_fS4xpADCkIrbBI64t0eizNPnrxUlsyNvlhrueciPuRg8Mz8srrsFC0Q1H05hQPd33R3lOKrlUOCxu5KzQa5luMCm5BIkIhe25WBQ.NBui_56MLzK6JN9l.SB6AEmZUN4YB0CQPS5rfSZw5y22nAETOwwk52HKDPAT4cpWMivk0eTqqoL8nT14h_9a2TMoRKs9kM0xeNQCn4Ej4DUX93JR7F1aL45whfP6lkvWFNMhcd5m9aPi0eiaXL7yOFT6KK_bKRKgQVs8AdbNqISB2iAxc0ilSn0KBrqx5omNL9pXWPZfl1Bt0OPDrSYYhn1ysrc1yrginbGr0bx4ZEoAM78pPcenVeTW-vhfayDs5iK3ZvXcFylhyjP6rF6jwm8mYksPcQ9C7TqhrcqEN5LHl8aNvlU7gmGx1pGmuEpQF0nJMntGsKClpAz-3JBx63MLaka2D76pD74OnypBNB9OdJylI6zDOjWQ2_Uw6H-sHceRgc1hAGtFDbzBXEShjKcUE_DrG60SpIwerxBgelA.40QnnJb_gWlXLarwAP7CIg&token_type=bearer&session_state=4ca3bcbd-5000-4b19-afbb-2adf506d9f12&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterES256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:58 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC5.AF93.94DE.8A0F", "client_secret": "d5dde272-c78d-4a87-9112-2630a40c9639", "registration_access_token": "e59baeed-a17a-4274-a023-d9d3d5e72214", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8DC5.AF93.94DE.8A0F", "client_id_issued_at": 1530798958, "client_secret_expires_at": 1530885358, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218DC5.AF93.94DE.8A0F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IjU0N2IyODM4LWE4NDgtNDY3MS04YTQ3LWQ1MzYxNzM4ZjJhZSJ9.eyJyZnAiOiJkNDMyMjFiYi1jYTliLTRhMjAtODhiYS1mMjUzNzhlYzk0NGUiLCJraWQiOiI1NDdiMjgzOC1hODQ4LTQ2NzEtOGE0Ny1kNTM2MTczOGYyYWUiLCJqdGkiOiIwYTFiZTlmMi1hZGYxLTQ1MzMtOGU3Zi04YjI2MDI1NTQxYTAiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MEYCIQDK9Nldwa4hnpleOzN876prBQC9tb0GN4NxA6B4UbzQIwIhAOWfbtofZfAno30zVP1xihz8jhLwRpWBz2ETrG4yvA1C&nonce=61b2da4e-6f57-42cd-a432-c6a18d5cb6e1 09:56:19.351 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:e22bf4de-b124-405f-9fe5-f355b2272f59 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218DC5.AF93.94DE.8A0F&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IjU0N2IyODM4LWE4NDgtNDY3MS04YTQ3LWQ1MzYxNzM4ZjJhZSJ9.eyJyZnAiOiJkNDMyMjFiYi1jYTliLTRhMjAtODhiYS1mMjUzNzhlYzk0NGUiLCJraWQiOiI1NDdiMjgzOC1hODQ4LTQ2NzEtOGE0Ny1kNTM2MTczOGYyYWUiLCJqdGkiOiIwYTFiZTlmMi1hZGYxLTQ1MzMtOGU3Zi04YjI2MDI1NTQxYTAiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MEYCIQDK9Nldwa4hnpleOzN876prBQC9tb0GN4NxA6B4UbzQIwIhAOWfbtofZfAno30zVP1xihz8jhLwRpWBz2ETrG4yvA1C&nonce=61b2da4e-6f57-42cd-a432-c6a18d5cb6e1 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=79e5467c-ff2d-407f-82f7-19c1a0b41c26&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4REM1LkFGOTMuOTRERS44QTBGIiwiZXhwIjoxNTMwODAyNTU5LCJpYXQiOjE1MzA3OTg5NTksIm5vbmNlIjoiNjFiMmRhNGUtNmY1Ny00MmNkLWE0MzItYzZhMThkNWNiNmUxIiwiYXV0aF90aW1lIjoxNTMwNzk4OTU5LCJhdF9oYXNoIjoiMmZPZnhfZ2hkZ21heFZWX0VLQVRDQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImpGY2RNdzRPLUNvYUNUZXBZekZ0TXNKTTE0aFJWbkNJbzEzTFlqNk1sZ1kifQ.U3rwK_ZtcCWHiZkJg8XotnYRVbUOi7N1qRATFDk3zZ4ESdDpRZ6kG2Y7LmeGgwGax2iPKYcaohYcmNtdeVh68Dc1nWUzYbuY0RGLtDSD1kxc6mVe_kyWjWeZ8WehguPNbgQpuE1U5q3MTMdxFhcK5TTkk50K6BhhlCiofqZBa5J4tRqWJcBXi-m0eceF14dnPOov-26GovBXAPuaeWMJTV8KbmPJqdxPPQB5_3txNU_xkBzAkn84SbDw1Y5yA-ludgMMRpV45aRTtIBIkKOS43MKXDUsjS9SrNO3XQlaC529yXi5oTyxpnIOcfLlTkKlqz-2_UIgNPwlYGfETP7p5A&session_id=ae6d196d-e47e-4d41-8642-baabaa3ce1cc&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IjU0N2IyODM4LWE4NDgtNDY3MS04YTQ3LWQ1MzYxNzM4ZjJhZSJ9.eyJyZnAiOiJkNDMyMjFiYi1jYTliLTRhMjAtODhiYS1mMjUzNzhlYzk0NGUiLCJraWQiOiI1NDdiMjgzOC1hODQ4LTQ2NzEtOGE0Ny1kNTM2MTczOGYyYWUiLCJqdGkiOiIwYTFiZTlmMi1hZGYxLTQ1MzMtOGU3Zi04YjI2MDI1NTQxYTAiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MEYCIQDK9Nldwa4hnpleOzN876prBQC9tb0GN4NxA6B4UbzQIwIhAOWfbtofZfAno30zVP1xihz8jhLwRpWBz2ETrG4yvA1C&token_type=bearer&session_state=e22bf4de-b124-405f-9fe5-f355b2272f59&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterES384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:55:59 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!08FA.3A7A.1D21.7D44", "client_secret": "28fb3355-7770-4a92-98c6-d68d5d08e909", "registration_access_token": "5394b1fa-1279-46ec-a5b3-d03c8f9a899b", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!08FA.3A7A.1D21.7D44", "client_id_issued_at": 1530798959, "client_secret_expires_at": 1530885359, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2108FA.3A7A.1D21.7D44&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6ImM0ZmU0MTEwLWViNTYtNDFjNi1iYWMzLTUzMTZmNmIxNDQzZCJ9.eyJyZnAiOiIxMjY3OTg1ZC1hYzU2LTRmMmEtYjMzOC0zMGNmOWMzNjJlMTEiLCJraWQiOiJjNGZlNDExMC1lYjU2LTQxYzYtYmFjMy01MzE2ZjZiMTQ0M2QiLCJqdGkiOiI0YThkYzhhZS0xMDVjLTQ4OTctYTUxMi05YzEzNjYyMzRiMDkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MGUCMDEoM0vPpuQiz2pBw0Qzc4-1iPgjKFCdt8pvd_lAUOjA5FT3abKUDTdwA6NsDe2x9wIxAKSln586VuzTgAzPjCWKtl6hzBvD2-3Yy8-C85O8-ugAyuepYz3TUMLNf9WsSot-JQ&nonce=d83a7af6-14f2-415e-ac56-a880944fd097 09:56:20.913 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:987ec92c-b49e-49f0-8855-bd4c4ca5b211 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%2108FA.3A7A.1D21.7D44&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6ImM0ZmU0MTEwLWViNTYtNDFjNi1iYWMzLTUzMTZmNmIxNDQzZCJ9.eyJyZnAiOiIxMjY3OTg1ZC1hYzU2LTRmMmEtYjMzOC0zMGNmOWMzNjJlMTEiLCJraWQiOiJjNGZlNDExMC1lYjU2LTQxYzYtYmFjMy01MzE2ZjZiMTQ0M2QiLCJqdGkiOiI0YThkYzhhZS0xMDVjLTQ4OTctYTUxMi05YzEzNjYyMzRiMDkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MGUCMDEoM0vPpuQiz2pBw0Qzc4-1iPgjKFCdt8pvd_lAUOjA5FT3abKUDTdwA6NsDe2x9wIxAKSln586VuzTgAzPjCWKtl6hzBvD2-3Yy8-C85O8-ugAyuepYz3TUMLNf9WsSot-JQ&nonce=d83a7af6-14f2-415e-ac56-a880944fd097 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=5b89fdb7-ebb4-4ed6-bfbf-008bce8456f9&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEwOEZBLjNBN0EuMUQyMS43RDQ0IiwiZXhwIjoxNTMwODAyNTYxLCJpYXQiOjE1MzA3OTg5NjEsIm5vbmNlIjoiZDgzYTdhZjYtMTRmMi00MTVlLWFjNTYtYTg4MDk0NGZkMDk3IiwiYXV0aF90aW1lIjoxNTMwNzk4OTYwLCJhdF9oYXNoIjoiZWZXSVJKQUg5SUN2Qy0zWlk3dlFWQSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Ilc0SEViT05nSDVJT2Q2RnJwdWdQYU5XNjhFV25Ea2o5LU1uVUVZV0thLWsifQ.NLEyF4yDvA3FBy-cqgeNv4nGDDrrwoV8EVFlbpm8yulMpy8cM58NfL7wpX3MGMvgAfQ06t5Wql44lE4aO-8U4w8F11BiDv9bMpvuPSuVjYh0Fk5WCeTyQoCbjjSdMkqNU6LEpqKwIU2HFlzFv-NhEjz8ejwslCRttSq3gngI-Ou8LXnwGPWbE9hads8HFdjAujC9UnfhK3ttasKPreHh_0qPWUUvU05p7ZP7VTr1agOepytJZ2sQT4cI5RHXaNUVTg8VOpuiqEvb5DMMPUDzJ2ORIpmdiIMa9Rk4gTIxOXAFs6PSgvYzeiwHDWRq31AAeZlrQt2ni9ppNT2KparCrw&session_id=d3f21d0f-f7ae-49d3-947e-ef7f7a992bd1&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6ImM0ZmU0MTEwLWViNTYtNDFjNi1iYWMzLTUzMTZmNmIxNDQzZCJ9.eyJyZnAiOiIxMjY3OTg1ZC1hYzU2LTRmMmEtYjMzOC0zMGNmOWMzNjJlMTEiLCJraWQiOiJjNGZlNDExMC1lYjU2LTQxYzYtYmFjMy01MzE2ZjZiMTQ0M2QiLCJqdGkiOiI0YThkYzhhZS0xMDVjLTQ4OTctYTUxMi05YzEzNjYyMzRiMDkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MGUCMDEoM0vPpuQiz2pBw0Qzc4-1iPgjKFCdt8pvd_lAUOjA5FT3abKUDTdwA6NsDe2x9wIxAKSln586VuzTgAzPjCWKtl6hzBvD2-3Yy8-C85O8-ugAyuepYz3TUMLNf9WsSot-JQ&token_type=bearer&session_state=987ec92c-b49e-49f0-8855-bd4c4ca5b211&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterES512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:01 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BC87.66FE.247F.B980", "client_secret": "e384f0fd-f3ae-48da-b6b4-95f53f929ad4", "registration_access_token": "840a0326-4c53-4289-a4dc-4af5655e2d14", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!BC87.66FE.247F.B980", "client_id_issued_at": 1530798961, "client_secret_expires_at": 1530885361, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BC87.66FE.247F.B980&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IjI2ZjgwNDBjLWFlOGItNGRhYS04ZjcxLWE3ZmRmMTRkZjY0MyJ9.eyJyZnAiOiIzZmI0NDVkNi1iMWVkLTRmZjMtYmY1OS02MzVlNmQ1MTMxYWEiLCJraWQiOiIyNmY4MDQwYy1hZThiLTRkYWEtOGY3MS1hN2ZkZjE0ZGY2NDMiLCJqdGkiOiI4NTkwYWJlNC1jZjNjLTQzYmQtODk0ZC1kNTk0ZmYwMDdlNzkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MIGIAkIBfbdhz8a4n695A1z7WAond1iAkxX6rjIsbJxAq2gVky2MGkvNvb4XZipBCdcFOS6zhloY7fLzpDrsdf63DIO81ZYCQgCYPKdwn8Yp_6hTf3xwEz06ZaH3wRgfdqLngbiUK_xo4ZlPYWCUaLaOU2KCNNz4ON3ScOv-ITWTavcNX7pmJPF6fg&nonce=7c3040ed-5bea-4723-88ca-55a602d2d062 09:56:22.430 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:daceb824-fc20-42d2-b03f-1a1be4c06718 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21BC87.66FE.247F.B980&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IjI2ZjgwNDBjLWFlOGItNGRhYS04ZjcxLWE3ZmRmMTRkZjY0MyJ9.eyJyZnAiOiIzZmI0NDVkNi1iMWVkLTRmZjMtYmY1OS02MzVlNmQ1MTMxYWEiLCJraWQiOiIyNmY4MDQwYy1hZThiLTRkYWEtOGY3MS1hN2ZkZjE0ZGY2NDMiLCJqdGkiOiI4NTkwYWJlNC1jZjNjLTQzYmQtODk0ZC1kNTk0ZmYwMDdlNzkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MIGIAkIBfbdhz8a4n695A1z7WAond1iAkxX6rjIsbJxAq2gVky2MGkvNvb4XZipBCdcFOS6zhloY7fLzpDrsdf63DIO81ZYCQgCYPKdwn8Yp_6hTf3xwEz06ZaH3wRgfdqLngbiUK_xo4ZlPYWCUaLaOU2KCNNz4ON3ScOv-ITWTavcNX7pmJPF6fg&nonce=7c3040ed-5bea-4723-88ca-55a602d2d062 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=ea63ae84-47c0-4a4f-ac15-2600b800ecc7&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCFCQzg3LjY2RkUuMjQ3Ri5COTgwIiwiZXhwIjoxNTMwODAyNTYyLCJpYXQiOjE1MzA3OTg5NjIsIm5vbmNlIjoiN2MzMDQwZWQtNWJlYS00NzIzLTg4Y2EtNTVhNjAyZDJkMDYyIiwiYXV0aF90aW1lIjoxNTMwNzk4OTYyLCJhdF9oYXNoIjoiaVN3UTM5aU5OMHQ1WmR6LWJtOXotdyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJmSGdibFRMSlZmZ0xhZ3pndzIyLXNlMGxoc3ZrdVpocjVWaTJyYUsyQ28ifQ.EuGUueLtq11U5YNBblzkR3xzUQBHc36hLSE0ptxI8AQ21oCqIrB9oF5a-pH9SJH24Ga-zRpPvyxAm0CyCTOLw3L16nr-xO1l0OxBhqxp4uG5JMnxGDWQyFmariC3pOkB-JZA0xG7PU3C4LyXzDga6zdLQbHVpkCrE55CoSOpFEKych7uaFjkYAArtTFcHfmmIgZ4At3K0ReO1MNOnF-My-NI0_cDjjdYC7ES9g5lVM7pWeFCF5BfuQf9SCuX8tXS3vtYdN8FIDvZf-uZKuGBN9LIyZgU4z6WCnbzm9_QdSB-XFprwek2qJc3bhJi0OUp_xZgR9Sykbl5FqplLDDDBQ&session_id=e0ddb4a3-8196-481e-adda-35e879650e52&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IjI2ZjgwNDBjLWFlOGItNGRhYS04ZjcxLWE3ZmRmMTRkZjY0MyJ9.eyJyZnAiOiIzZmI0NDVkNi1iMWVkLTRmZjMtYmY1OS02MzVlNmQ1MTMxYWEiLCJraWQiOiIyNmY4MDQwYy1hZThiLTRkYWEtOGY3MS1hN2ZkZjE0ZGY2NDMiLCJqdGkiOiI4NTkwYWJlNC1jZjNjLTQzYmQtODk0ZC1kNTk0ZmYwMDdlNzkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MIGIAkIBfbdhz8a4n695A1z7WAond1iAkxX6rjIsbJxAq2gVky2MGkvNvb4XZipBCdcFOS6zhloY7fLzpDrsdf63DIO81ZYCQgCYPKdwn8Yp_6hTf3xwEz06ZaH3wRgfdqLngbiUK_xo4ZlPYWCUaLaOU2KCNNz4ON3ScOv-ITWTavcNX7pmJPF6fg&token_type=bearer&session_state=daceb824-fc20-42d2-b03f-1a1be4c06718&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterHS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:02 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2BD6.7CC6.D253.5080", "client_secret": "81032d64-5e84-4759-a49d-4118f231d238", "registration_access_token": "25f7a193-2d2f-469a-bea1-fb62b4e6aedd", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2BD6.7CC6.D253.5080", "client_id_issued_at": 1530798962, "client_secret_expires_at": 1530885362, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212BD6.7CC6.D253.5080&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJyZnAiOiJjOTczODZkOS0yZWZlLTQ0NzktYjZmMC02ZDFmN2RiMmNmMTEiLCJqdGkiOiI2MjA3NmE3Zi1kNTdjLTQwNWQtODkwZS1mOTU0NDdjNDY0ODMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.1-u_kqR2VEnTPmEE4EtcFTATSnXLCDBbjdqXnQ1Pe9k&nonce=d06b800f-520a-4412-a49d-8e80e148903c 09:56:24.104 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:9f2f6962-050b-4da9-9ba4-85e7741a6730 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212BD6.7CC6.D253.5080&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJyZnAiOiJjOTczODZkOS0yZWZlLTQ0NzktYjZmMC02ZDFmN2RiMmNmMTEiLCJqdGkiOiI2MjA3NmE3Zi1kNTdjLTQwNWQtODkwZS1mOTU0NDdjNDY0ODMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.1-u_kqR2VEnTPmEE4EtcFTATSnXLCDBbjdqXnQ1Pe9k&nonce=d06b800f-520a-4412-a49d-8e80e148903c ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=d4dcb83f-423a-4061-bc61-1af29911c6ca&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyQkQ2LjdDQzYuRDI1My41MDgwIiwiZXhwIjoxNTMwODAyNTY0LCJpYXQiOjE1MzA3OTg5NjQsIm5vbmNlIjoiZDA2YjgwMGYtNTIwYS00NDEyLWE0OWQtOGU4MGUxNDg5MDNjIiwiYXV0aF90aW1lIjoxNTMwNzk4OTY0LCJhdF9oYXNoIjoicTlnREE4czlxV3pNY3ctVnZ1SjZ5dyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IlBNUWxLRTExRDJiZHlkOTRwVFRfNWdWZmUzR0hQNlp6U1hJZ3FDWnoxSFEifQ.flSidZfIE6_H_hisunFibXTO0uekCM5MuqfBPVbz7FVlfhnycW6eyxN7M54pyMecBsFg1eTYvt43Bgm6gOwpElkKxsEUE4U4mDi3N2_VnLwuV1c6cg8a0-KrFoAXt2z-43DyCJqA9a1yUiZuqgUufpMxoyR-XK1lMFeSmGSbKyTZBT2CgOybrJCUYM75aZ5KLbyJXVxVRopHnlcTLYOYpZlZ9XVOesSBYR6IOu8lKpphUO9uny-DAUXLnBb8tmfijJ6VkwWlGXGyFaMZNI4a26eZ1FcGOyytUhfV0XKlac_i4dxnrUh-kJCJOYfXNyQxqQby_Z37wZgDfqYlTH5Nyw&session_id=854512e1-26a9-4753-8838-9c383049e8ae&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJyZnAiOiJjOTczODZkOS0yZWZlLTQ0NzktYjZmMC02ZDFmN2RiMmNmMTEiLCJqdGkiOiI2MjA3NmE3Zi1kNTdjLTQwNWQtODkwZS1mOTU0NDdjNDY0ODMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.1-u_kqR2VEnTPmEE4EtcFTATSnXLCDBbjdqXnQ1Pe9k&token_type=bearer&session_state=9f2f6962-050b-4da9-9ba4-85e7741a6730&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterHS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:04 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4D6D.C43F.9EAA.8655", "client_secret": "0e3fc30a-50f2-4e1e-a91e-857fe984ee1f", "registration_access_token": "f14a76c4-7866-4d08-bc0e-9b5591c02836", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!4D6D.C43F.9EAA.8655", "client_id_issued_at": 1530798964, "client_secret_expires_at": 1530885364, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214D6D.C43F.9EAA.8655&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJyZnAiOiI0MTM4Y2Q3OC0yZjk0LTRmNjctYmRmYi1jYTM3OGYyYTkzMWIiLCJqdGkiOiI5MDBmZWIzZi02ZDk2LTQ5MTUtOGM5NC1kYzcyZGNjMDA3YTEiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.LrT4XMWrRfMkhAxGLstUrhh0HlCH9Xvhq6ud7MttnwD4EaWSbsRoeYTp9s0u7In9&nonce=1181d7cb-4fa8-425b-8a12-f4bc30937a26 09:56:25.761 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:19a45b8c-de19-4e69-9923-27252db78e11 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%214D6D.C43F.9EAA.8655&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJyZnAiOiI0MTM4Y2Q3OC0yZjk0LTRmNjctYmRmYi1jYTM3OGYyYTkzMWIiLCJqdGkiOiI5MDBmZWIzZi02ZDk2LTQ5MTUtOGM5NC1kYzcyZGNjMDA3YTEiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.LrT4XMWrRfMkhAxGLstUrhh0HlCH9Xvhq6ud7MttnwD4EaWSbsRoeYTp9s0u7In9&nonce=1181d7cb-4fa8-425b-8a12-f4bc30937a26 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=42c27f1b-fc84-4290-8b15-0cdacfff9f73&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE0RDZELkM0M0YuOUVBQS44NjU1IiwiZXhwIjoxNTMwODAyNTY2LCJpYXQiOjE1MzA3OTg5NjYsIm5vbmNlIjoiMTE4MWQ3Y2ItNGZhOC00MjViLThhMTItZjRiYzMwOTM3YTI2IiwiYXV0aF90aW1lIjoxNTMwNzk4OTY1LCJhdF9oYXNoIjoidG5UWHZ0T2ZtbThFdHFmeUlTd2tDUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjFDZzZhRnFoX1Zla0tKZHFPM09hRXZCUks3YmFRMjZjSG1WajdjQkMyQmsifQ.Q8ZfBkCdWMUSVaB93OD1nSEIBKlsSI60ubxnTWxR7aT-xxWt7j2xzBzMVyU8oE2AcRzQU0md2QFxspc7tvbx0wAViYMEhehtBTr_Nko0tAc72wUVG_A1NdlZzAEcdGvRCOb9zx88I7nTB8eFNfQqSxhEiWtv-M6MNDKD_m9DHeXGLZmT4KtsnydmYT6F8LEPD8pKDHdWv7HG8iWoinxUHp_vGGt9d_vOtkuvvHVpSKZMZss702QO7wN5cNdL20pboyWJDzpuhIbalVBEq4j0W4iBXAuunaRUdl3KJx3SV_eRdeInhJojkIhlRCcyf5EetoW6Ff0Tk_Tw3pJE_tD5oQ&session_id=dc2452d9-ed7d-4d73-a370-4908ed8e2269&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJyZnAiOiI0MTM4Y2Q3OC0yZjk0LTRmNjctYmRmYi1jYTM3OGYyYTkzMWIiLCJqdGkiOiI5MDBmZWIzZi02ZDk2LTQ5MTUtOGM5NC1kYzcyZGNjMDA3YTEiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.LrT4XMWrRfMkhAxGLstUrhh0HlCH9Xvhq6ud7MttnwD4EaWSbsRoeYTp9s0u7In9&token_type=bearer&session_state=19a45b8c-de19-4e69-9923-27252db78e11&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterHS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:06 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2FDF.895E.7815.F7D7", "client_secret": "6266de0c-1e4c-4016-95dc-dfc2977696d8", "registration_access_token": "964fc113-e53d-4109-b4c8-c4759859e344", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2FDF.895E.7815.F7D7", "client_id_issued_at": 1530798966, "client_secret_expires_at": 1530885366, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212FDF.895E.7815.F7D7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJyZnAiOiJmYjZmOWNkNC0yY2FkLTQxYWQtODgwMi00OWRhMzRhNWYwYWMiLCJqdGkiOiI4NDA1YWVlMS04NDZmLTQzMmEtOTM4OC00NDk2NmE1M2QzZmUiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.mN5UfSqYn6yLidyNPv9L6PqSYj7eGtTrtRI2ktdBkr_bi7asf8RCjEZCGAvUhGmPCiCfXnXl6m6hsks-cHtZtQ&nonce=357703b5-33cf-4e74-ab58-b247ae4ffbc4 09:56:27.279 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:382bc222-8af2-4418-94f3-f46331704e11 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212FDF.895E.7815.F7D7&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJyZnAiOiJmYjZmOWNkNC0yY2FkLTQxYWQtODgwMi00OWRhMzRhNWYwYWMiLCJqdGkiOiI4NDA1YWVlMS04NDZmLTQzMmEtOTM4OC00NDk2NmE1M2QzZmUiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.mN5UfSqYn6yLidyNPv9L6PqSYj7eGtTrtRI2ktdBkr_bi7asf8RCjEZCGAvUhGmPCiCfXnXl6m6hsks-cHtZtQ&nonce=357703b5-33cf-4e74-ab58-b247ae4ffbc4 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=990b9006-43b0-4da9-a033-789d80536546&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyRkRGLjg5NUUuNzgxNS5GN0Q3IiwiZXhwIjoxNTMwODAyNTY3LCJpYXQiOjE1MzA3OTg5NjcsIm5vbmNlIjoiMzU3NzAzYjUtMzNjZi00ZTc0LWFiNTgtYjI0N2FlNGZmYmM0IiwiYXV0aF90aW1lIjoxNTMwNzk4OTY3LCJhdF9oYXNoIjoidDlyX0hpdGc5Y0ZhMHdvb3FuaVd0ZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Ijc2X1JwNGYwUTZuRGJwRmNDb3o4Q1RFYkQ1UG1mSHJVd0Rtai1aek5JSWcifQ.RRbFfl8pzLlzgA9eOZqwqVQlhu-bSBcQr9uuSjV6woGXl-lsMdF5bvyAShEb2L1JBRdp0o4mptd4CukS98rOOKq0fr5gIh7dsD0D5JdnGmh9_agrp26LkhZ_lW7aqK0YBpL612gadUmS3aHyk1GPY_OAZRnceeGJtgbRvTNDh0u74sxo4THtfet35bhmSR0OcSHoNY4vVLllodbUNJqgWQubnKG5rWp1A5Y703mWlbKvT4djGCH9jRLedK_D4R51DhLfwAfgdFv4SqB7llcYrkohhwByt89YreT7m57K7q6tFKWz-_um7SDvmQ9RQa-MwrCiO-9MR2uH_ovm8L2uuw&session_id=744ef69e-7a14-4b51-817c-2c7c996ecd1a&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJyZnAiOiJmYjZmOWNkNC0yY2FkLTQxYWQtODgwMi00OWRhMzRhNWYwYWMiLCJqdGkiOiI4NDA1YWVlMS04NDZmLTQzMmEtOTM4OC00NDk2NmE1M2QzZmUiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.mN5UfSqYn6yLidyNPv9L6PqSYj7eGtTrtRI2ktdBkr_bi7asf8RCjEZCGAvUhGmPCiCfXnXl6m6hsks-cHtZtQ&token_type=bearer&session_state=382bc222-8af2-4418-94f3-f46331704e11&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterRS256 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:07 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9F1B.F85A.D487.4F9A", "client_secret": "40b0a1db-3544-435b-ae4e-73c889fd19da", "registration_access_token": "9dacac91-e558-4f12-a32f-2eaebae6fbda", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!9F1B.F85A.D487.4F9A", "client_id_issued_at": 1530798967, "client_secret_expires_at": 1530885367, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219F1B.F85A.D487.4F9A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.eyJyZnAiOiJkYzYwZTVkOS01YWYzLTQ4ZTYtYmRkYy00MjIyMzA4MGMwYjEiLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkiLCJqdGkiOiJkNzAxZmYwZS00Mjg0LTRhYjgtYjQ3YS02NTNkODU2MTEwOWMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.NlyphxVSTl2tdM_vM1epHTPXmlNw_mTjjvbrDbtuQC7720v4sS9UeptjyX2SwonNboNe-6gFAV83OUgcbt9YA_N814pv7_B3XuKAeN-OWiPwLIATLAnyU9PCYpguXBaojYQyCGAg0M88xccs030JLXqkwf4T1hlCt2Rn6ldDDKf_27I0KhX2tLFMLLA4NAet3G4eKGJlGRPk_p3zo9kgQj-TjE7BieBL3Zhf0dEvnQTDGz3OH2CZ9xnc5liEf54jr4wMC2auF5OpepkNhb8mTVKVNyis0I3DzOwouJa_KFqWF51GGkvkKIWNCJGm8i59eoFCyU1evatMRmWVbpKYmA&nonce=ff80f1be-95aa-411d-86c9-95c30ac7df9e 09:56:28.798 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:408d0b20-019b-4af6-bfab-0b5e4b8a4706 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%219F1B.F85A.D487.4F9A&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.eyJyZnAiOiJkYzYwZTVkOS01YWYzLTQ4ZTYtYmRkYy00MjIyMzA4MGMwYjEiLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkiLCJqdGkiOiJkNzAxZmYwZS00Mjg0LTRhYjgtYjQ3YS02NTNkODU2MTEwOWMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.NlyphxVSTl2tdM_vM1epHTPXmlNw_mTjjvbrDbtuQC7720v4sS9UeptjyX2SwonNboNe-6gFAV83OUgcbt9YA_N814pv7_B3XuKAeN-OWiPwLIATLAnyU9PCYpguXBaojYQyCGAg0M88xccs030JLXqkwf4T1hlCt2Rn6ldDDKf_27I0KhX2tLFMLLA4NAet3G4eKGJlGRPk_p3zo9kgQj-TjE7BieBL3Zhf0dEvnQTDGz3OH2CZ9xnc5liEf54jr4wMC2auF5OpepkNhb8mTVKVNyis0I3DzOwouJa_KFqWF51GGkvkKIWNCJGm8i59eoFCyU1evatMRmWVbpKYmA&nonce=ff80f1be-95aa-411d-86c9-95c30ac7df9e ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=b30b4881-fbbd-491a-b5b3-42c86b9f9681&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5RjFCLkY4NUEuRDQ4Ny40RjlBIiwiZXhwIjoxNTMwODAyNTY5LCJpYXQiOjE1MzA3OTg5NjksIm5vbmNlIjoiZmY4MGYxYmUtOTVhYS00MTFkLTg2YzktOTVjMzBhYzdkZjllIiwiYXV0aF90aW1lIjoxNTMwNzk4OTY4LCJhdF9oYXNoIjoiOXJaOXYyZDRQNW1kcmNZRXNfbnF4USIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Im9FaE91dkJrTmZUeWRGS0NiRG5KdDhLNlhEbUM0Y19kSm1ObjZlZHlZUjgifQ.sRst3UHyM6VkQbUXZrgePVzc_rmPtRMLJ03b6OTkWpbZzNZlx-RlasXyhPyu4udsBv-PjDnBAJ2W-Rq53J5GUNLTvcLv3sFCAWEniNKYPN7q8RnwCRouOIkrBBs8_W4iwLOovdLOkbL2UoLevGOE4I3lrCN10Z8tA6ro6Z43jFTupRnT1bG2f8fr4ov6AR3zWeqfS8aXiTQhCk81qRCH7SPtEhAWAO2BR-MO43tzbqT1h1nssk5ZULtmD2ispzUtbVooT-kusbypfvCRZ5YUGNFuzCT9H21brFa75zK9Af81APFtHdLq9pVtpYQ9y249XuZGOfFxex9AVtXs_OvuBQ&session_id=e25a1e4b-8a88-4055-86fb-1a6a4bb822a3&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.eyJyZnAiOiJkYzYwZTVkOS01YWYzLTQ4ZTYtYmRkYy00MjIyMzA4MGMwYjEiLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkiLCJqdGkiOiJkNzAxZmYwZS00Mjg0LTRhYjgtYjQ3YS02NTNkODU2MTEwOWMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.NlyphxVSTl2tdM_vM1epHTPXmlNw_mTjjvbrDbtuQC7720v4sS9UeptjyX2SwonNboNe-6gFAV83OUgcbt9YA_N814pv7_B3XuKAeN-OWiPwLIATLAnyU9PCYpguXBaojYQyCGAg0M88xccs030JLXqkwf4T1hlCt2Rn6ldDDKf_27I0KhX2tLFMLLA4NAet3G4eKGJlGRPk_p3zo9kgQj-TjE7BieBL3Zhf0dEvnQTDGz3OH2CZ9xnc5liEf54jr4wMC2auF5OpepkNhb8mTVKVNyis0I3DzOwouJa_KFqWF51GGkvkKIWNCJGm8i59eoFCyU1evatMRmWVbpKYmA&token_type=bearer&session_state=408d0b20-019b-4af6-bfab-0b5e4b8a4706&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterRS384 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:09 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2BFB.B97F.CC14.9268", "client_secret": "2d25705f-27b1-4284-8444-ebae3cc9f9cf", "registration_access_token": "952e265b-799e-4662-80ee-8c794f90bc3e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!2BFB.B97F.CC14.9268", "client_id_issued_at": 1530798969, "client_secret_expires_at": 1530885369, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212BFB.B97F.CC14.9268&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6ImM0NjIxNDNmLWExOTctNGY3YS1hZjk5LTBiMTA4NzM2ODYxNiJ9.eyJyZnAiOiIyYzk3M2MxYi1jODcyLTQ5ZTctODQ4MC1lOWJiNGUyMWZlOGYiLCJraWQiOiJjNDYyMTQzZi1hMTk3LTRmN2EtYWY5OS0wYjEwODczNjg2MTYiLCJqdGkiOiIzM2Q0OGE1Mi1iNDU0LTQwYzYtOWQ4NS1mZDFlYTQ2MjYxMGMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.eQ6Jt9AaEumCP7wR9x_12xHr_Cd8BFTmo9-PLnfMsysYZUvj7gPk_a0nU0CWnrnHlmzXP1ds2qm93ezPGi8x5ip8NE456PT0ZNfW--MzTovESXdqFo_4Q2lNImlmFf70iTBeypFnhOrT1zEORXSUNGWTHUN3OWYagbRy27h3I0XcEchu12IplZwGBP63wsPE2AfKy2STtkgnGbd9-n8jbPD5XxO9xGDSK72vU-Pt5LQK1Lt2B0sGS-WbWwitj0asqbZfmQXVbFqQcnR6ulBGqsrbfvj3LjyZzqWgDP3nxB-ZEc4ibkJDn2pPdy1Obbt3cRDN6fIW4jSoDToFbv4O9w&nonce=a8e9a81a-1cec-4491-b04b-5bdaac608457 09:56:30.495 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:25b70374-7651-4fff-ab09-a305d559c302 ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%212BFB.B97F.CC14.9268&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6ImM0NjIxNDNmLWExOTctNGY3YS1hZjk5LTBiMTA4NzM2ODYxNiJ9.eyJyZnAiOiIyYzk3M2MxYi1jODcyLTQ5ZTctODQ4MC1lOWJiNGUyMWZlOGYiLCJraWQiOiJjNDYyMTQzZi1hMTk3LTRmN2EtYWY5OS0wYjEwODczNjg2MTYiLCJqdGkiOiIzM2Q0OGE1Mi1iNDU0LTQwYzYtOWQ4NS1mZDFlYTQ2MjYxMGMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.eQ6Jt9AaEumCP7wR9x_12xHr_Cd8BFTmo9-PLnfMsysYZUvj7gPk_a0nU0CWnrnHlmzXP1ds2qm93ezPGi8x5ip8NE456PT0ZNfW--MzTovESXdqFo_4Q2lNImlmFf70iTBeypFnhOrT1zEORXSUNGWTHUN3OWYagbRy27h3I0XcEchu12IplZwGBP63wsPE2AfKy2STtkgnGbd9-n8jbPD5XxO9xGDSK72vU-Pt5LQK1Lt2B0sGS-WbWwitj0asqbZfmQXVbFqQcnR6ulBGqsrbfvj3LjyZzqWgDP3nxB-ZEc4ibkJDn2pPdy1Obbt3cRDN6fIW4jSoDToFbv4O9w&nonce=a8e9a81a-1cec-4491-b04b-5bdaac608457 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=246e0a6a-63f6-4e6b-b7f0-2279ae913814&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCEyQkZCLkI5N0YuQ0MxNC45MjY4IiwiZXhwIjoxNTMwODAyNTcwLCJpYXQiOjE1MzA3OTg5NzAsIm5vbmNlIjoiYThlOWE4MWEtMWNlYy00NDkxLWIwNGItNWJkYWFjNjA4NDU3IiwiYXV0aF90aW1lIjoxNTMwNzk4OTcwLCJhdF9oYXNoIjoiQTlhYmJEVzQ0dmpGQzhuOFhnOUlOUSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6Imd2ZjRxYVhLVWp1ZzBJU3hBRWY2REN6Z2tmZUVHUU9iVm8xQ1J5Q2ZEaFUifQ.q6qEeHApYW_oQJViq-0caWpLlC1jsbv7zZx7WFvk698WTaijcW63L3i_Pizbzg79oVR9RtpjxZ8zD5YyIYoIxsInmpQOISrmq-L7_aY7rrXdKmw2e44w2Ijfg2s-WZQJm23_5SsaTCwuGSY0rX064uwM62GFx3ZvWzUxrINCO8fLo_YXm6_d-kQszRZZrvlpMcIH-52HIu0DVH6L93VeJ1jYEtGZ1NYd9aDyGS_LK2_xQIV-HsgcezKpp7xrowoajQMDDf3saqnUrsLiA_IWQvxmWYEdVrWC_maQ7nlS4i8aN88X4IQGcAd8GNrbrPikm8fLLZ1oLppF5dR5mftvXw&session_id=80bb29a8-0f74-4c3c-9f05-c431481da84a&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6ImM0NjIxNDNmLWExOTctNGY3YS1hZjk5LTBiMTA4NzM2ODYxNiJ9.eyJyZnAiOiIyYzk3M2MxYi1jODcyLTQ5ZTctODQ4MC1lOWJiNGUyMWZlOGYiLCJraWQiOiJjNDYyMTQzZi1hMTk3LTRmN2EtYWY5OS0wYjEwODczNjg2MTYiLCJqdGkiOiIzM2Q0OGE1Mi1iNDU0LTQwYzYtOWQ4NS1mZDFlYTQ2MjYxMGMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.eQ6Jt9AaEumCP7wR9x_12xHr_Cd8BFTmo9-PLnfMsysYZUvj7gPk_a0nU0CWnrnHlmzXP1ds2qm93ezPGi8x5ip8NE456PT0ZNfW--MzTovESXdqFo_4Q2lNImlmFf70iTBeypFnhOrT1zEORXSUNGWTHUN3OWYagbRy27h3I0XcEchu12IplZwGBP63wsPE2AfKy2STtkgnGbd9-n8jbPD5XxO9xGDSK72vU-Pt5LQK1Lt2B0sGS-WbWwitj0asqbZfmQXVbFqQcnR6ulBGqsrbfvj3LjyZzqWgDP3nxB-ZEc4ibkJDn2pPdy1Obbt3cRDN6fIW4jSoDToFbv4O9w&token_type=bearer&session_state=25b70374-7651-4fff-ab09-a305d559c302&expires_in=299 ####################################################### TEST: encodeClaimsInStateParameterRS512 ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD" } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1340 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:10 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!963E.DB3F.967E.6D44", "client_secret": "e968304b-bd54-46c8-ad3e-0dca4c579356", "registration_access_token": "8c98f984-f27e-41b3-a2ce-ed5934d86d2e", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!963E.DB3F.967E.6D44", "client_id_issued_at": 1530798970, "client_secret_expires_at": 1530885370, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21963E.DB3F.967E.6D44&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6Ijg1YjA4NDgzLTY4OTAtNDg0My05YmFmLTgzN2EyNGEzYzZkMiJ9.eyJyZnAiOiI4Yzc4OGI0OS0wZDRmLTQ4NjQtODU0OC04NTY2MDliNGNiMGYiLCJraWQiOiI4NWIwODQ4My02ODkwLTQ4NDMtOWJhZi04MzdhMjRhM2M2ZDIiLCJqdGkiOiI4MGMxNjI5Ny0zNGM0LTRlYzUtYjM5MC1kZjU4ZmEwYzk4YzciLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.pgYqWzB9inv0iNFW_6XK2tnh-E5_zNZ92w6OkLl2eGaFEU8aefngeG3WAjrvbdlzdLmtXs9E0l4hwILdd17vUjO0wflDX6jgG922QED_lb8LsAZI975RdpRcopKf6qK6c2G_OGP65KBZxCXpsjAMYEShDSGnv1GG0pNM5SBhp9WEYWPl73yb1Mh7yBAOd_cHshvnIW6hjJj1b5GS000ilzCSoUpwLHaNMwxA6m5krZ8r348WbC7PrF3eR0n977LfCef5MHji301GWZOxEaNR2qE30CXjhvLKu7_CarwvIu8nNkqvMLOsgT5cZWvzMkHj5f_cMjpFN6PdmYdl7O0A1w&nonce=e0c42f79-9503-487a-b0b0-293bfa6acd62 09:56:32.179 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:185e9942-0600-4631-8c85-6990d6c0907f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%21963E.DB3F.967E.6D44&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6Ijg1YjA4NDgzLTY4OTAtNDg0My05YmFmLTgzN2EyNGEzYzZkMiJ9.eyJyZnAiOiI4Yzc4OGI0OS0wZDRmLTQ4NjQtODU0OC04NTY2MDliNGNiMGYiLCJraWQiOiI4NWIwODQ4My02ODkwLTQ4NDMtOWJhZi04MzdhMjRhM2M2ZDIiLCJqdGkiOiI4MGMxNjI5Ny0zNGM0LTRlYzUtYjM5MC1kZjU4ZmEwYzk4YzciLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.pgYqWzB9inv0iNFW_6XK2tnh-E5_zNZ92w6OkLl2eGaFEU8aefngeG3WAjrvbdlzdLmtXs9E0l4hwILdd17vUjO0wflDX6jgG922QED_lb8LsAZI975RdpRcopKf6qK6c2G_OGP65KBZxCXpsjAMYEShDSGnv1GG0pNM5SBhp9WEYWPl73yb1Mh7yBAOd_cHshvnIW6hjJj1b5GS000ilzCSoUpwLHaNMwxA6m5krZ8r348WbC7PrF3eR0n977LfCef5MHji301GWZOxEaNR2qE30CXjhvLKu7_CarwvIu8nNkqvMLOsgT5cZWvzMkHj5f_cMjpFN6PdmYdl7O0A1w&nonce=e0c42f79-9503-487a-b0b0-293bfa6acd62 ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=1e1e1d43-dd57-415c-9ca0-c43c0789c9e0&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE5NjNFLkRCM0YuOTY3RS42RDQ0IiwiZXhwIjoxNTMwODAyNTcyLCJpYXQiOjE1MzA3OTg5NzIsIm5vbmNlIjoiZTBjNDJmNzktOTUwMy00ODdhLWIwYjAtMjkzYmZhNmFjZDYyIiwiYXV0aF90aW1lIjoxNTMwNzk4OTcyLCJhdF9oYXNoIjoiLWM0OGdrZlRTVmJ1QXAxVWJzYUZZZyIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6IjhzNVd6bUljZ04yWDZGYThVbzFJRFJMM3J0TlV0MWxnZUFlUXdySGFodWsifQ.cVTcmhN05Ocz8carV-ixMfWsqNwZxxVPb8AGhjI2TIy0PJBekImS6BGI4ySYWSKVY2miyBzXOh0h_sMxzURa_xGnQ-flPRdarB1TUuufbrtGFM6cRbdnj4HPPE5Z4B7_ykkEwHPEg0K6yEc4q-ExCbg9rq5pGaa8RTrhS78UJVRMG3Unk1dX4j0doY9U1Ul_Br9hbF4Sc31foV-8gwhWxaSibd2Gfdvo_DsNvDgxOyFOTCrFAxHs_ONOlNAMjcwO44YR0Dh2a4dIjEN1WM-pi2OHwHwP6244dmjDhe037CkVc3zyfjK9tp2RcT7zZ7lAqg87f8hnJ4v9A42MZ0iy_Q&session_id=f06a1b13-4818-4fb0-8695-e40075bbc965&state=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6Ijg1YjA4NDgzLTY4OTAtNDg0My05YmFmLTgzN2EyNGEzYzZkMiJ9.eyJyZnAiOiI4Yzc4OGI0OS0wZDRmLTQ4NjQtODU0OC04NTY2MDliNGNiMGYiLCJraWQiOiI4NWIwODQ4My02ODkwLTQ4NDMtOWJhZi04MzdhMjRhM2M2ZDIiLCJqdGkiOiI4MGMxNjI5Ny0zNGM0LTRlYzUtYjM5MC1kZjU4ZmEwYzk4YzciLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.pgYqWzB9inv0iNFW_6XK2tnh-E5_zNZ92w6OkLl2eGaFEU8aefngeG3WAjrvbdlzdLmtXs9E0l4hwILdd17vUjO0wflDX6jgG922QED_lb8LsAZI975RdpRcopKf6qK6c2G_OGP65KBZxCXpsjAMYEShDSGnv1GG0pNM5SBhp9WEYWPl73yb1Mh7yBAOd_cHshvnIW6hjJj1b5GS000ilzCSoUpwLHaNMwxA6m5krZ8r348WbC7PrF3eR0n977LfCef5MHji301GWZOxEaNR2qE30CXjhvLKu7_CarwvIu8nNkqvMLOsgT5cZWvzMkHj5f_cMjpFN6PdmYdl7O0A1w&token_type=bearer&session_state=185e9942-0600-4631-8c85-6990d6c0907f&expires_in=299 ####################################################### TEST: jwtStateAlgA128KWEncA128GCMTest ####################################################### Encrypted JWE State: eyJ0eXAiOiJKV1QiLCJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.iPAPwrafL2VBPG-_3x3fyiFADHJ4k82k.jC6C3tM3aDq8jN-I.I-RJtgOmCBJaRtLivJ9mT26CnOcoRMjKa8ARAEv_jRRNIj-Y5ne08kQ1cw56c_6uDYqcAYy_XHq8NCjWB_07ito_bP5uBUAVkeajoeXPpcicARIvgioSbSmDLzmfBBiuVDUSv8A6U7LA4pLV7Up2EOLpH35GEM1-sNM79ei_33iqX3rWlod5rdm1_M9Gk5G_wnDes4HrvxPKQYo51exAEZeQDz20YdX3haOWwSEqJlYnSOmsABJqcVeh8asg0paJ8Vu0VLsriPguxNLmBLDhZtP27Y0YYr0qvh6p6yYB00oXv2kUDn3SUiyszXNwM6QIn31hotvodg._W25T-Qnwy9xERCS_AlKRA ####################################################### TEST: jwtStateAlgA256KWEncA256GCMTest ####################################################### Encrypted JWE State: eyJ0eXAiOiJKV1QiLCJhbGciOiJBMjU2S1ciLCJlbmMiOiJBMjU2R0NNIn0.el7_G-4VrfrYMd72ZvknBpyDh4aoNpgHAov1MNp3m_rEaAiVq-rjRg.8_U-Q66n4o0bGeYv.p8SrsNkLZsRJWjlRVOJudf46EJDgti171GqsycANwJFhaynU0sIPVCFqKID6i5T6pqi5rzedlvUyPN0xILtUEc2TOPZXbff4EX75NKStXQIAnwPnL4fgW9lUJDGH16sRX28XcA-Cs1vPLHZau7ePjMBLeTaAs5b8OXRGDjZRooBZVG1GubNUJcGkIEnUNZd6s-v2x0zdMOBZot1zUmPNeDHxtY0hF5y68jJ8HBvAWV7c4_dXmf8uMy7pdJT6jAW-0OaH8pbqa-vQYh_jKqi6uhJ39Gobst9YYJdaw-7p-20MkYwUKP6LxhZkxDA-KGsyFcB6E3n4KA.WEG7Ful2hQqS2Rop5B8-MQ ####################################################### TEST: jwtStateAlgRSA15EncA128CBCPLUSHS256Test ####################################################### Encrypted JWE State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMTI4Q0JDK0hTMjU2Iiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.ZORZ4snRElMZ3c1wkgJJhxjg5TIw9z2d6tklPHEdMARicIq03cohlfe1At9o8URoC09RcBMnC78P5wKYWlTse2vA7hLXVNlEPEDp1NHZlyz912wC_87my_G8KWNa9lsyISiHOlV2X87u1udnyFb9Y4TFiVUxBJWwh0t5U2L8QdIEQEumhOpw50CO0V5HV07btp4P_qR7V9CvN763SToyT7hHJJ-XCH3AkAFMfI7cVeP1lRfLP16FmxNWkF2P3XDJGrsq-Nqh1vTAMptiJAwaTBeq515no8yqLosk6t05AlOJyA35dL9P3k5ftHyaI1hSBY0vt0GFjsUNPs-358pl8w.zjD3mx4sLay38bulijYEXg.nF-5KDC_G3FcCUg0L910XUAkaVX2TyfLNNQhszVq8MfL6DHFBg6zf2cHuRiKaVZjXJrOMTxQ4GSYg3pz2PyXdR7cM8wVqaksbVYJwzkPcEme9PsmV4XfJkgOiGzUTTNt3xBM2gYDtSswAtUJ14IBVb16yUbIg2DgUEiPfBN_OMdacFOULSC-i6cWk2LpssUs_h0J6Xbqq1x6Sh6HkXM9fYHY263i6PKkPQyut6BEOL56qe3dyMWe7LRHUUlPMrIFaN5yhqFFJijXkYsZrbjATiqa2BhVgrY3BtYpVYIsNUYrUEZpRzUhmsvKwIq2i0Xo7Py2gvEchGklE2kEnL-OQYhakyZcbp4AkMXx8mN1lMiorTsrDfrE1bwzuzvSAqZwbJuwyCv22fm0ukJtUkWtw3SFgjrki0EBGFw0yK1Ofco.BCP1b57IhP8JGE6Jo74Tts8sapcjiV21v0l9o8wPuJA ####################################################### TEST: jwtStateAlgRSA15EncA256CBCPLUSHS512Test ####################################################### Encrypted JWE State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0ExXzUiLCJlbmMiOiJBMjU2Q0JDK0hTNTEyIiwia2lkIjoiNDhiZmE4YTQtYzhhNy00YTA5LWFlOTgtYmYzMjVkNzQ5MTE5In0.LbkYH18cwmir0rC_PrOB4SoSHhpXTXIbRVGzh2BFf9lIYWfGBSysBDQu19__spCtQ9HiaFTC-2odhe7ElQuE_wMty9tRHyKMOZGHpN_IsTM_Uuj6ggooWIY23jCGexoGS-hiO5UZXA9d-ws15e5ZcA4Igip7gr_OkSqUndKtdG_Y65ZxPtksZ-muW2B2lIXERhhh0pgAtLb0tMyqfQKEtAyCHzkPZJIUTzZK_thWkvnKWpw3G41yNxhU12ArmqRTnqT0C5fjneviovEP28rt_XWQwcwU9asn05PP2v8o3aPs1lYBSzJGqAQXLOQ1_4riw2CndgzTExx9YhiVQgSljw.fAI2oFX_qkwSVJOE2WHXGw.GEciLjRxFltbTbU2enI6_idN7sGV0LrBocJAuqJHDUuLlo566H2NgKRuzoYCldz02hEFVKaagRd3Iw_OLXr-O4AoA9UFRfsbEEz3l9jS83vzjQ8_qOJatGi7u-y9rgfFLNOfVDifMYlPLXReUAjMIkNSBSO-nljjIaQySHoKW-JmI-FxaNvjd826mYrOiVTMhD6PZUTyGa0d5yaXdGNEfUNVuv-g6YZzLRXJ8R_2kXPR4O7jaBxBCJEc0_QS8Z8FfEmJiYjGHe_90RTxQDC1xwieBgSIaviyr5MacJNpnBFCKSS3wwpSeSq8bNx1coxNTq0x8DZgF7N8H_UCN6QxFChqTjTXJ-X4CKkYHreGmF7AF5vlrwToFU7VAvyWpjYxm8W91mXugEAd2tMcCa2PUKxIY8Zk3IjCpjPYebO9Bf4.AnpqPdi7YpPg0YczZY9uhhnAf-XuEx7UOfloCgwnlQp7Y1pO2GK2tJgjPpxQuP8Kho95hsjmE_bEJPCnuTtbjg ####################################################### TEST: jwtStateAlgRSAOAEPEncA256GCMTest ####################################################### Encrypted JWE State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkifQ.VwWfZ_gtbJCVydR9xpzlgxPPveqN-CwAEjDW_1RF9fvPcWOJL6OVnpM9RmB3FlFi_bllSJWFVM56GKK_cRjAUgXwkLq_rXxEH6dxTLV6XPsMBVMQJaBSIDx__yLBV-y5V64ydJdb_swM68AlvvphvwTHPZBVGFKAIlk7L2F3inizsly5R93jTCR6RJhOpim75TZc2dlNv_F8aLZhrxMV_2A7V4WL5olvZlYgBLISb3hCYQL-ngl8HSCcHJq_L6ihj5yJvFhk-4rHUuhIv-R9xhMMkyd2BWrtLSmOqeW8-kxpq7qWCjvM8bHwQygChbUhbxraJyWMe5Y1SgM2RYFswg.sRSTKfBtBcNGMMNH.PuC-oFYr2Sd5DSkLYpZo_IiyNz3MiW3jwrlsNEwVr64CGoxuFxHZRXebFX30tQyzbgO8fhqL7QbGP4lsGi0mYJaQtTtLASiW5Edeenxy3sBvC5lS07iwPbVC-OVzjvBQzYhP0amHRa0mK-gMZkcMnsjzMGgV0UHzttSTbH-kG2N7TSwWeBXJkMyHHIrrhwy96ihf_XbqiOtvxSuSF0eALeoCR7EQ19fk6_fqaf7fJyJofTFQqLsHXGURCFgvcHw0WyoZLPaVQ65A4k2hXBZX9SBVr3SAT9gqeL-DqblycvMqvwkN9Gi8M_SJD4mE2Ur5IeJxgFwQpyJt3qySTW4-2II3sAeaqAgkq1yjEQ_oHklZIpv7W4CG_nLQPugpj1X0O__p08vfpqtCvpONvg8PdARZ-g.WSS-Nm04YnmdN0BumiUo0Q ####################################################### TEST: jwtStateES256Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzI1NiIsImtpZCI6IjU0N2IyODM4LWE4NDgtNDY3MS04YTQ3LWQ1MzYxNzM4ZjJhZSJ9.eyJyZnAiOiI2OGMxMDk3ZC1kMzllLTQ2YjctOGUzNi0xYjZlNGM5ZTZlNDkiLCJraWQiOiI1NDdiMjgzOC1hODQ4LTQ2NzEtOGE0Ny1kNTM2MTczOGYyYWUiLCJqdGkiOiJkMTdiOTNlNC05ZmM5LTRmYzAtOWZhNi0yMTM1ZDM1YmE4NTgiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MEUCIQDjowRRsvaM5UQxJa7mcs155tgIanUNKD-lQFoux3VZFQIgU-vt6mMJPGAtuAX7-5QwwYec_wtQKcebGSzL2T3u-bA ####################################################### TEST: jwtStateES384Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzM4NCIsImtpZCI6ImM0ZmU0MTEwLWViNTYtNDFjNi1iYWMzLTUzMTZmNmIxNDQzZCJ9.eyJyZnAiOiI0ZTJiMDg1Ni1mNjNiLTQ3NTAtYjVlMi00Njg5YjExYWE1YTYiLCJraWQiOiJjNGZlNDExMC1lYjU2LTQxYzYtYmFjMy01MzE2ZjZiMTQ0M2QiLCJqdGkiOiIyOTljNGUwNy0zYWUwLTRhMzUtYTA3ZC0xOGM3YmIzNjAwMDYiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MGUCMQCZ-qnKD_wLhA3j8XDBkXuDoa5LBDi146xl-Hfh3TvjUvaF8PSUtvYGxDBWiRFAW1QCMGIRDYolsXP6eilLzLFrvnIq_0YsHVPKr2AxhI-bu27wLET4HLTlfz6aKFnMXs9ANw ####################################################### TEST: jwtStateES512Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJFUzUxMiIsImtpZCI6IjI2ZjgwNDBjLWFlOGItNGRhYS04ZjcxLWE3ZmRmMTRkZjY0MyJ9.eyJyZnAiOiJlNjZlODc1NC0wMGUwLTRmZGUtODlhMy0xNzU5Yzc3NjZjYjAiLCJraWQiOiIyNmY4MDQwYy1hZThiLTRkYWEtOGY3MS1hN2ZkZjE0ZGY2NDMiLCJqdGkiOiIxNzc5OTM4Ni1kYmU3LTRmMDAtOTE1Zi00NDA4OGM1N2U3ZjEiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.MIGIAkIApGL9UeOCpqAeS25ymOdOC9wE-fq7R97atok6i0RO2EGVeQzZUvopku8g0uuALzIAjFucu8qK7ivtFt6729XNdEICQgH9pHll8XF4Mj3xlGtWMglDPpXkKIEQVQwwH17zQc6nBbe9c0LNpv6O8DH_55jFJzxVtq_tKE7nnuKo7QzL4rFQZQ ####################################################### TEST: jwtStateHS256Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJyZnAiOiI1ODg1YWI0ZC05YmYzLTRmY2ItOTcwMC1hNWRlZTAwOGNmNDkiLCJqdGkiOiI1ODdlZTc4OC0yNjUyLTRkNzMtODY1My04NmE1Y2Y4ZmUyYjMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.UxksRlnNz2KFPThybTsMPQ86RcgDZII9SxMZGmEncY4 ####################################################### TEST: jwtStateHS384Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzM4NCJ9.eyJyZnAiOiI3MWNlOGZjOC1mZTViLTRhMzEtYTA1Yy1hOGQ2YmI1MTkxNmMiLCJqdGkiOiJlNTI0MGRlYy0zYTMyLTQxOWMtOGJhOS03MGU0Njc4Y2ViODAiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.sDqKT75YD1E9rjVzglL9nR47WbmrqvpZToKRedoaNPKiKavn3i-J49fjA0Cfi2ac ####################################################### TEST: jwtStateHS512Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJyZnAiOiJiMTNjNmNjOS1lMTU4LTQ0ZjUtOGU4ZC1jMjdkZDFmYjNlMTgiLCJqdGkiOiJiNjc1MTNkMC1mMGY1LTQ0ZDYtOTczMi0wZjUwNGVjZmQxZjciLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.r-rS15pJnhPrmcLsuv_nDlFRiyLLzRMP557YeaXGq1CQyFCM5cwt3LuecY4Povni6cZ_-nzmB9Y0YZ0o7MjBSQ ####################################################### TEST: jwtStateNONETest ####################################################### Encoded State: eyJ0eXAiOiJKV1QiLCJhbGciOiJub25lIn0.eyJyZnAiOiI4YTY3YjAxMi0yZDVmLTRhNzktYjIwMy03OGZkNmEwY2NkMDMiLCJqdGkiOiI0M2NkNTc3ZS0wOWZhLTQ2NjktOGJmMS1kOWExNTZlMmM1MWUiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0. ####################################################### TEST: jwtStateRS256Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IjQ4YmZhOGE0LWM4YTctNGEwOS1hZTk4LWJmMzI1ZDc0OTExOSJ9.eyJyZnAiOiI1M2I5YzRiMC03ODAzLTQ0OTktYWExMi0xZmVhYjJhNWRmZmYiLCJraWQiOiI0OGJmYThhNC1jOGE3LTRhMDktYWU5OC1iZjMyNWQ3NDkxMTkiLCJqdGkiOiIxZmUxZTQzYi04ZGNjLTQ4ZTgtODAyNC04NWVmNTM4NGU1YWMiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.QluCZ5l90in_UjIhx1ixZJKFwOUBrm9qaAujqU1XYgKiS9cawsCCVegy_wvv1qFJFugAGm4e67-B75rHbMgbq0JHJpqH6HT7NIV-GByUoqNAmAxS0h0-5aF2frFBqU0zHoKY2bNzZhRBWUh5WIR1d5eFodJGJti7qcXeJwFR63e9_2qoFN6ZupQZYHc_q0ol8NAu8FeBE_NmrZISjIPCHFrMz4BOeR33BE-g7ChNKkOMglreuZqaRipUvUYBcHzMUiuBHYTwUAwxGhT1ACsmrvtKg8TXo5qpsaASVxruudDFm_r50Mw6Po3J2q904x3V6eaqDTPn4hQr0VCcabApew ####################################################### TEST: jwtStateRS384Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzM4NCIsImtpZCI6ImM0NjIxNDNmLWExOTctNGY3YS1hZjk5LTBiMTA4NzM2ODYxNiJ9.eyJyZnAiOiIyZjczYzBlYy0zMmZjLTQ2NTctODdmZC0xYTg3YmZhMDg4ZDYiLCJraWQiOiJjNDYyMTQzZi1hMTk3LTRmN2EtYWY5OS0wYjEwODczNjg2MTYiLCJqdGkiOiJhZTk2YTE3Zi0xMDJiLTRiNmYtYWJjYy01YWI5OTAyYmY3YTkiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.UY_IDEFeYNiIfXEQ_3r7iSNA26vSwFziSPJUgBvVqBy8TS3V0RO6IaGaODqNCcEf1JZ8O9lRya9xEH0AFZF0AxYRqdqgj_QiylsdKvEd6_OWJPNSTeixfe8ELfWhjph-K5ulr15iZj4zgKpKnjj9Lyw7ADnz1v5KWTzzjWp9z3K5hve5Mf92CvIQUE0pVS82Tv5Dnsc6-aVj3oo5McE7Jz57G7HiMRMPagOSRNMSKmMIiFjwLV1NK7OJBmjc93HglgV6R5fDWQIEy5kuX91TkS3gsMG03j-oTykvggvPcrzcSahwuFKS5hPXxsay5jdc_iR_EUPWJo8jS_uQPYEP8w ####################################################### TEST: jwtStateRS512Test ####################################################### Signed JWS State: eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzUxMiIsImtpZCI6Ijg1YjA4NDgzLTY4OTAtNDg0My05YmFmLTgzN2EyNGEzYzZkMiJ9.eyJyZnAiOiI1MjdmMjZjYy1jNTM4LTQ5NTUtODYyYy0yYWZiNzQzMzI2NzMiLCJraWQiOiI4NWIwODQ4My02ODkwLTQ4NDMtOWJhZi04MzdhMjRhM2M2ZDIiLCJqdGkiOiIyYjllN2U5NS02MWEyLTRhOTAtYjQ3Ni0yMGY2OTI4MDI3ZTIiLCJhZGRpdGlvbmFsX2NsYWltcyI6eyJmaXJzdF9uYW1lIjoiSmF2aWVyIiwibGFzdF9uYW1lIjoiUm9qYXMiLCJhZ2UiOjM0LCJtb3JlIjpbImZvbyIsImJhciJdfX0.jI_58F37ctAHxcPgsXELJ9_cGwE9p836d5Jyinv48xF3xoA7xSunnBj5trkwG1CFimkNgyeXg-Q05dkJ9scZqFhM2fz6Le-LRmYMSDjBszMq5Sq1nDsZzeIRY5a-iiclYY20t3yBG5N6Sc_p2NBWG90AQn0lWTqEaikfLFC_LyWpDb6bJUPvifJsFS4EXr6iIIKqUVLKej_y9uGiSQG2kSWVuQKK8UnNBRHm6SXFzRfl7SCiT5gLWCxmgGr2Rc_psTodJj_H1l0Z4d-oiHqnqxTVxWvxAfYzvwN2HDuzEhZ4TQBgz21NsGd7p3by4g92H3CkfJclr7h3iS9uZQ3A-Q ####################################################### TEST: OpenID Connect Discovery ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/webfinger?resource=acct%3Atest_user%40ce-dev4.gluu.org&rel=http%3A%2F%2Fopenid.net%2Fspecs%2Fconnect%2F1.0%2Fissuer HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 181 Content-Type: application/jrd+json;charset=iso-8859-1 Date: Thu, 05 Jul 2018 13:56:13 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "subject": "acct:test_user@ce-dev4.gluu.org", "links": [{ "rel": "http://openid.net/specs/connect/1.0/issuer", "href": "https://ce-dev4.gluu.org" }] } OpenID Connect Configuration ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /.well-known/openid-configuration HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Connection: Keep-Alive Content-Length: 6342 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:13 GMT Keep-Alive: timeout=5, max=100 Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "issuer": "https://ce-dev4.gluu.org", "authorization_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/authorize", "token_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/token", "userinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/userinfo", "clientinfo_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/clientinfo", "check_session_iframe": "https://ce-dev4.gluu.org/oxauth/opiframe", "end_session_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/end_session", "jwks_uri": "https://ce-dev4.gluu.org/oxauth/restv1/jwks", "registration_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/register", "id_generation_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/id", "introspection_endpoint": "https://ce-dev4.gluu.org/oxauth/restv1/introspection", "scopes_supported": [ "permission", "clientinfo", "email", "user_name", "sub", "org_name", "address", "openid", "test_scope1", "work_phone", "phone", "profile", "mobile_phone", "test" ], "response_types_supported": [ "id_token", "code", "id_token code token", "id_token code", "code token", "id_token token", "token" ], "grant_types_supported": [ "implicit", "refresh_token", "urn:ietf:params:oauth:grant-type:uma-ticket", "client_credentials", "authorization_code", "password" ], "acr_values_supported": [ "super_gluu", "u2f", "otp", "basic", "auth_ldap_server" ], "auth_level_mapping": { "-1": ["auth_ldap_server"], "50": ["otp"], "100": ["basic"], "10": ["u2f"], "15": ["super_gluu"] }, "subject_types_supported": [ "public", "pairwise" ], "userinfo_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "userinfo_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "userinfo_encryption_enc_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "id_token_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "id_token_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "request_object_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "request_object_encryption_alg_values_supported": [ "RSA1_5", "RSA-OAEP", "A128KW", "A256KW" ], "request_object_encryption_enc_values_supported": [ "A128CBC+HS256", "A256CBC+HS512", "A128GCM", "A256GCM" ], "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "client_secret_jwt", "private_key_jwt" ], "token_endpoint_auth_signing_alg_values_supported": [ "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512" ], "display_values_supported": [ "page", "popup" ], "claim_types_supported": ["normal"], "claims_supported": [ "birthdate", "country", "name", "email", "email_verified", "given_name", "gender", "inum", "family_name", "updated_at", "locale", "member_of", "middle_name", "nickname", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope", "phone_number_verified", "picture", "preferred_username", "profile", "zoneinfo", "user_name", "website" ], "service_documentation": "http://gluu.org/docs", "claims_locales_supported": ["en"], "ui_locales_supported": [ "en", "es" ], "scope_to_claims_mapping": [ {"permission": []}, {"uma_protection": []}, {"clientinfo": [ "name", "inum", "oxAuthAppType", "oxAuthIdTokenSignedResponseAlg", "oxAuthRedirectURI", "oxAuthScope" ]}, {"email": [ "email_verified", "email" ]}, {"user_name": ["user_name"]}, {"sub": []}, {"org_name": []}, {"address": [ "formatted", "postal_code", "street_address", "locality", "country", "region" ]}, {"openid": []}, {"test_scope1": []}, {"work_phone": []}, {"phone": [ "phone_number_verified", "phone_number" ]}, {"profile": [ "name", "family_name", "given_name", "middle_name", "nickname", "preferred_username", "profile", "picture", "website", "gender", "birthdate", "zoneinfo", "locale", "updated_at" ]}, {"mobile_phone": ["phone_mobile_number"]}, {"test": ["member_of"]} ], "claims_parameter_supported": true, "request_parameter_supported": true, "request_uri_parameter_supported": true, "require_request_uri_registration": false, "op_policy_uri": "http://ox.gluu.org/doku.php?id=oxauth:policy", "op_tos_uri": "http://ox.gluu.org/doku.php?id=oxauth:tos", "frontchannel_logout_supported": true, "frontchannel_logout_session_supported": true } ####################################################### TEST: requestEndSession by id_token ####################################################### ------------------------------------------------------- REQUEST: ------------------------------------------------------- POST /oxauth/restv1/register HTTP/1.1 Content-Type: application/json Accept: application/json Host: ce-dev4.gluu.org { "redirect_uris": [ "https://ce-dev4.gluu.org/oxauth-rp/home.htm", "https://client.example.com/cb", "https://client.example.com/cb1", "https://client.example.com/cb2" ], "response_types": [ "token", "id_token" ], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "post_logout_redirect_uris": ["https://client.example.com/pl"], "frontchannel_logout_uri": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"] } ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-store Connection: Keep-Alive Content-Length: 1488 Content-Type: application/json Date: Thu, 05 Jul 2018 13:56:13 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block { "client_id": "@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8D84.589E.00BC.CA8E", "client_secret": "18ff21ad-0474-4fd0-8fdb-a4c25b6f324a", "registration_access_token": "fa6602b7-9099-4aa4-a42f-fd1469ebd764", "registration_client_uri": "https://ce-dev4.gluu.org/oxauth/restv1/register?client_id=@!38D4.410C.1D43.8932!0001!37F2.B744!0008!8D84.589E.00BC.CA8E", "client_id_issued_at": 1530798973, "client_secret_expires_at": 1530885373, "redirect_uris": [ "https://client.example.com/cb2", "https://client.example.com/cb1", "https://client.example.com/cb", "https://ce-dev4.gluu.org/oxauth-rp/home.htm" ], "response_types": [ "id_token", "token" ], "grant_types": ["implicit"], "application_type": "web", "client_name": "oxAuth test app", "sector_identifier_uri": "https://ce-dev4.gluu.org/oxauth/sectoridentifier/@!38D4.410C.1D43.8932!0001!37F2.B744!0012!D426.70FD", "subject_type": "pairwise", "id_token_signed_response_alg": "RS256", "token_endpoint_auth_method": "client_secret_basic", "require_auth_time": false, "post_logout_redirect_uris": ["https://client.example.com/pl"], "frontchannel_logout_uri": ["https://ce-dev4.gluu.org/oxauth-rp/home.htm"], "frontchannel_logout_session_required": false, "scope": "permission uma_protection clientinfo email user_name sub org_name address openid test_scope1 work_phone phone profile test", "claims": "" } authenticateResourceOwnerAndGrantAccess: Cleaning cookies authenticateResourceOwnerAndGrantAccess: authorizationRequestUrl:https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218D84.589E.00BC.CA8E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=66177c20-f55a-4f85-b8f6-9f9ad2137718&nonce=750335ce-a59d-4045-9f1f-076e5d8a8c7a 09:56:34.400 [main] ERROR com.gargoylesoftware.htmlunit.javascript.StrictErrorReporter - runtimeError: message=[An invalid or illegal selector was specified (selector: '*,:x' error: Invalid selector: :x).] sourceName=[https://ce-dev4.gluu.org/oxauth/js/jquery-1.12.4.min.js] line=[2] lineSource=[null] lineOffset=[0] authenticateResourceOwnerAndGrantAccess: sessionState:5dfdc9cf-461d-4e25-b906-39b6d3cdad1f ------------------------------------------------------- REQUEST: ------------------------------------------------------- https://ce-dev4.gluu.org/oxauth/restv1/authorize?response_type=token+id_token&client_id=%40%2138D4.410C.1D43.8932%210001%2137F2.B744%210008%218D84.589E.00BC.CA8E&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fce-dev4.gluu.org%2Foxauth-rp%2Fhome.htm&state=66177c20-f55a-4f85-b8f6-9f9ad2137718&nonce=750335ce-a59d-4045-9f1f-076e5d8a8c7a ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 302 Found Location: https://ce-dev4.gluu.org/oxauth-rp/home.htm#access_token=003b7c91-f207-47cd-a3b2-100f0cc6d173&scope=address+openid+profile+email&id_token=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4RDg0LjU4OUUuMDBCQy5DQThFIiwiZXhwIjoxNTMwODAyNTc0LCJpYXQiOjE1MzA3OTg5NzQsIm5vbmNlIjoiNzUwMzM1Y2UtYTU5ZC00MDQ1LTlmMWYtMDc2ZTVkOGE4YzdhIiwiYXV0aF90aW1lIjoxNTMwNzk4OTc0LCJhdF9oYXNoIjoiZEhlTjJPSTlXZU83Xzc5UjQ3bDY1QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJnU1IzSXlnWDh0LWRlZXZQMnVqWXRROU5nbUE0LXBlN0NXbTgyTDhkUG8ifQ.VBGU-X9USB3NQbkl8eQRYD_Y004fBQYYtUdPA6wmV--cesAkQuh383xTy00Gf-58o-8TQZ5DWBTzP1VwOpKWkPlXpHXo3RxuDnYU-0GccYmXGYenDzBvYiY4eJELwp7nGC04XWggBgbrNm9UjCpAGUDYhfO2vITNirNC0qizh9D1DfQ_RspJhA8EVSC5vg2sAq69p3t0h1CmCtrpJcF_J5OBXJp2LuN0UBSibWFDkVwFbSFb4lxzQoAGbahW-WUzYvOSG6HjA2ZBqkKB2SCbJTtfODhc1CgOBTIMNK_rFyqCV5lYaUut0KTkvuzATNoPL2o7sQA4Ht8ZFM2vCmW1Ag&session_id=e0673278-662d-4ab1-ab45-6ff5a5aeb66d&state=66177c20-f55a-4f85-b8f6-9f9ad2137718&token_type=bearer&session_state=5dfdc9cf-461d-4e25-b906-39b6d3cdad1f&expires_in=299 ------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/end_session?id_token_hint=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4RDg0LjU4OUUuMDBCQy5DQThFIiwiZXhwIjoxNTMwODAyNTc0LCJpYXQiOjE1MzA3OTg5NzQsIm5vbmNlIjoiNzUwMzM1Y2UtYTU5ZC00MDQ1LTlmMWYtMDc2ZTVkOGE4YzdhIiwiYXV0aF90aW1lIjoxNTMwNzk4OTc0LCJhdF9oYXNoIjoiZEhlTjJPSTlXZU83Xzc5UjQ3bDY1QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJnU1IzSXlnWDh0LWRlZXZQMnVqWXRROU5nbUE0LXBlN0NXbTgyTDhkUG8ifQ.VBGU-X9USB3NQbkl8eQRYD_Y004fBQYYtUdPA6wmV--cesAkQuh383xTy00Gf-58o-8TQZ5DWBTzP1VwOpKWkPlXpHXo3RxuDnYU-0GccYmXGYenDzBvYiY4eJELwp7nGC04XWggBgbrNm9UjCpAGUDYhfO2vITNirNC0qizh9D1DfQ_RspJhA8EVSC5vg2sAq69p3t0h1CmCtrpJcF_J5OBXJp2LuN0UBSibWFDkVwFbSFb4lxzQoAGbahW-WUzYvOSG6HjA2ZBqkKB2SCbJTtfODhc1CgOBTIMNK_rFyqCV5lYaUut0KTkvuzATNoPL2o7sQA4Ht8ZFM2vCmW1Ag&post_logout_redirect_uri=https%3A%2F%2Fclient.example.com%2Fpl&state=54e630ee-c8b8-43d9-bc7e-385cb515befe&session_id=e0673278-662d-4ab1-ab45-6ff5a5aeb66d HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 200 Cache-Control: no-transform, no-store Connection: Keep-Alive Content-Length: 343 Content-Type: text/html Date: Thu, 05 Jul 2018 13:56:14 GMT Expires: Thu, 01 Jan 1970 00:00:00 GMT Keep-Alive: timeout=5, max=100 Pragma: no-cache Server: Jetty(9.4.9.v20180320) Set-Cookie: session_id=;Path=/;Expires=Thu, 01-Jan-1970 00:00:00 GMT;Max-Age=0;HttpOnly Strict-Transport-Security: max-age=31536000; includeSubDomains Vary: Accept-Encoding X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block Gluu Generated logout pageLogout requests sent.
------------------------------------------------------- REQUEST: ------------------------------------------------------- GET /oxauth/restv1/end_session?id_token_hint=eyJraWQiOiI4NzE2OGJjMS1lNTU4LTQxNjktOGRkMS05ZmJkNDUxZGU1ZDciLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpc3MiOiJodHRwczovL2NlLWRldjQuZ2x1dS5vcmciLCJhdWQiOiJAITM4RDQuNDEwQy4xRDQzLjg5MzIhMDAwMSEzN0YyLkI3NDQhMDAwOCE4RDg0LjU4OUUuMDBCQy5DQThFIiwiZXhwIjoxNTMwODAyNTc0LCJpYXQiOjE1MzA3OTg5NzQsIm5vbmNlIjoiNzUwMzM1Y2UtYTU5ZC00MDQ1LTlmMWYtMDc2ZTVkOGE4YzdhIiwiYXV0aF90aW1lIjoxNTMwNzk4OTc0LCJhdF9oYXNoIjoiZEhlTjJPSTlXZU83Xzc5UjQ3bDY1QSIsIm94T3BlbklEQ29ubmVjdFZlcnNpb24iOiJvcGVuaWRjb25uZWN0LTEuMCIsInN1YiI6ImJnU1IzSXlnWDh0LWRlZXZQMnVqWXRROU5nbUE0LXBlN0NXbTgyTDhkUG8ifQ.VBGU-X9USB3NQbkl8eQRYD_Y004fBQYYtUdPA6wmV--cesAkQuh383xTy00Gf-58o-8TQZ5DWBTzP1VwOpKWkPlXpHXo3RxuDnYU-0GccYmXGYenDzBvYiY4eJELwp7nGC04XWggBgbrNm9UjCpAGUDYhfO2vITNirNC0qizh9D1DfQ_RspJhA8EVSC5vg2sAq69p3t0h1CmCtrpJcF_J5OBXJp2LuN0UBSibWFDkVwFbSFb4lxzQoAGbahW-WUzYvOSG6HjA2ZBqkKB2SCbJTtfODhc1CgOBTIMNK_rFyqCV5lYaUut0KTkvuzATNoPL2o7sQA4Ht8ZFM2vCmW1Ag&post_logout_redirect_uri=https%3A%2F%2Fclient.example.com%2Fpl&state=fa315eff-6f01-45b3-8fa4-4d38c46c5bea&session_id=e0673278-662d-4ab1-ab45-6ff5a5aeb66d HTTP/1.1 Host: ce-dev4.gluu.org ------------------------------------------------------- RESPONSE: ------------------------------------------------------- HTTP/1.1 307 Connection: Keep-Alive Content-Length: 149 Content-Type: text/plain Date: Thu, 05 Jul 2018 13:56:14 GMT Expires: Thu, 01 Jan 1970 00:00:00 GMT Keep-Alive: timeout=5, max=100 Location: https://client.example.com/pl Server: Jetty(9.4.9.v20180320) Set-Cookie: session_id=;Path=/;Expires=Thu, 01-Jan-1970 00:00:00 GMT;Max-Age=0;HttpOnly Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Xss-Protection: 1; mode=block {"error":"invalid_grant_and_session","error_description":"The provided access token and session state are invalid or were issued to another client."} #######################################################