OC5:FTR-op-tok-csjwt-x-Gluu OX

From OSIS Open Source Identity Systems
Jump to: navigation, search

{{#vardefine:DtArticleSortKey|}}

FTR-op-tok-csjwt-x-Gluu OX

{{#vardefine:page|{{#if:{{#var:page}}|{{#var:page}}|FTR-op-tok-csjwt-x-Gluu OX}}}}{{#vardefine:nr|{{#if:{{#var:nr}}|{{#expr:{{#var:nr}}+1}}|1}}}}{{#vardefine:url|{{#replace:{{#var:page}}| |_}}}}{{#if:FTR-op-tok-csjwt-x-Gluu OX|{{#if:{{#var:DtArticleSortKey}}||}}}}{{#ifeq:{{#var:header}}|no||

{{#ifeq:no|no||
{{#if:{{#var:refs}}|[[{{#var:page}}|no_ref's]]|[[Special:Call/DT Article show Refs,page={{#var:page}},refs=yes|ref's]]}}}} {{#if:{{#var:DtArticleSortKey}}|({{#var:DtArticleSortKey}})}}    list help  [[Special:Call/DT Article copy,cat=OC5 Result,from={{#var:page}},namespace=OC5|copy]]  [[Special:Call/DT Articles list XML,type=OC5 Result,title={{#var:page}},namespace=OC5|as XML]]  edit
}}
{{#if:|Feature Test Result |Feature Test Result }}   FTR-op-tok-csjwt-x-Gluu OX
Test Identifier   bgcolor={{{color}}}}}|FTR-op-tok-csjwt
Primary Solution   bgcolor={{{color}}}}}|Gluu OX
Test   bgcolor={{{color}}}}}|{{#dpl:|category = FeatureTest|namespace = OC5|include={FeatureTest}:identifier |includematchparsed=/identifier\s*=\s*FTR-op-tok-csjwt/s| noresultsheader= no matching test found.\n

}}

Date Tested   bgcolor={{{color}}}}}|16 July 2013
Tested by   bgcolor={{{color}}}}}|Javier Rojas Blum
Outcome   bgcolor={{{color}}}}}|Works
Solutions Involved   bgcolor={{{color}}}}}|{{#if: Gluu_OX | OC5:Gluu_OX | }} {{#if: | [[OC5:]] | }}  
  bgcolor={{{color}}}}}|{{#if: | [[OC5:]] |   }}
Operating System   bgcolor={{{color}}}}}|Fedora 18 x86_64
Browser   bgcolor={{{color}}}}}|Firefox 22.0
Notes   bgcolor={{{color}}}}}|https://svn.gluu.info/repository/openxdi/oxAuth/Client/src/test/java/org/xdi/oxauth/interop/SupportAuthenticationToTokenEndpointWithSymmetricallySignedJWTs.java
#######################################################
TEST: OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS256)
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: seed.gluu.org

{
    "redirect_uris": [
        "https://seed.gluu.org/oxauth-rp/home.seam",
        "https://client.example.com/cb",
        "https://client.example.com/cb1",
        "https://client.example.com/cb2"
    ],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{
    "client_id": "@!1111!0008!A538.3EE9",
    "client_secret": "44de9a81-c654-46e3-af24-8ea989611b0b",
    "registration_access_token": "55924947-f94a-4fca-8be0-6e06d85ddd6b",
    "registration_client_uri": "https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/register?client_id=@!1111!0008!A538.3EE9",
    "client_id_issued_at": 1374013209,
    "client_secret_expires_at": 1374099609,
    "response_types": ["code"],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js",
    "subject_type": "public",
    "id_token_signed_response_alg": "RS256",
    "require_auth_time": false,
    "request_uris": [],
    "scopes": [
        "openid",
        "address",
        "profile",
        "phone",
        "email"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/authorize?response_type=code&client_id=%40%211111%210008%21A538.3EE9&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&state=STATE_XYZ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://seed.gluu.org/oxauth-rp/home.seam?foo=bar&&code=02a822ba-cb83-4da4-bba7-a147a2eb1591&auth_level=10&auth_mode=basic&session_id=77c53f24-3690-403a-a980-f89edecb1242&state=STATE_XYZ&scope=openid+profile+address+email

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: seed.gluu.org

grant_type=authorization_code&code=02a822ba-cb83-4da4-bba7-a147a2eb1591&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1MiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJAITExMTEhMDAwOCFBNTM4LjNFRTkiLCJzdWIiOiJAITExMTEhMDAwOCFBNTM4LjNFRTkiLCJhdWQiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC90b2tlbiIsImp0aSI6ImI4YzdhN2Y5LTAyM2EtNGE4NS1iMmY1LWNmODk4NTk0OWFlMyIsImV4cCI6MTM3NDAxMzUyOSwiaWF0IjoxMzc0MDEzMjI5fQ.F5FHfu7EKSFOLceqs7Pey-lPwnvnIReo4tLMjCiy1tI

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{"access_token":"6eeb1b81-fa76-42e9-9e01-8da3f1db1571","token_type":"bearer","expires_in":3599,"refresh_token":"f66aa20d-d2f7-4609-8afe-9912b38dbd02","id_token":"eyJ0eXAiOiJKV1MiLCJhbGciOiJSUzI1NiIsImprdSI6Imh0dHBzOi8vc2VlZC5nbHV1Lm9yZy9veGF1dGgvc2VhbS9yZXNvdXJjZS9yZXN0djEvb3hhdXRoL2p3a3MiLCJraWQiOiIxIn0.eyJpc3MiOiJodHRwczovL3NlZWQuZ2x1dS5vcmciLCJhdWQiOiJAITExMTEhMDAwOCFBNTM4LjNFRTkiLCJleHAiOjEzNzQwMTY4MjksImlhdCI6MTM3NDAxMzIyOSwic3ViIjoibWlrZSIsIm94SW51bSI6IkAhMTExMSEwMDAwIUQ0RTciLCJveFZhbGlkYXRpb25VUkkiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC9jaGVja19zZXNzaW9uIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIn0.eua9gSil0OdLGjIpb67Q8X0wTn8lc2hKEsGktaxSYwZUQ8jpnzxyn9HsdwJpbpmrD23qTaomCp0nW00dFr8xiMnRC600_GKMrs1bK-AjcyL-2yyQtEEaILYFp_nd6pxSlNUZh8sg-Hq7PL2XO6hgayfwJPvin13NMBcc-ya7X-qalNUHV4QgCPRtPW285Ux--9nvXqcFXbNPWd8AMzmQYzQTaU_r0JyMg5yzVPaMrwl6ohWH2EY3bfH8Z5gAr2RX81bRsAV2TdqNJ7ORk7q0urmQr9hUoXPBpwwVioFInbeW9mx9AVkAUtRRa6QBnKUhHGvmtgJr-EIt1FQjiH3Oag"}


#######################################################
TEST: OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS384)
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: seed.gluu.org

{
    "redirect_uris": [
        "https://seed.gluu.org/oxauth-rp/home.seam",
        "https://client.example.com/cb",
        "https://client.example.com/cb1",
        "https://client.example.com/cb2"
    ],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{
    "client_id": "@!1111!0008!0739.5515",
    "client_secret": "a325da77-fd44-4fa1-9e22-3be28b15755f",
    "registration_access_token": "9b6bbd5a-30e8-405a-bf6e-fc347268e5e7",
    "registration_client_uri": "https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/register?client_id=@!1111!0008!0739.5515",
    "client_id_issued_at": 1374013230,
    "client_secret_expires_at": 1374099630,
    "response_types": ["code"],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js",
    "subject_type": "public",
    "id_token_signed_response_alg": "RS256",
    "require_auth_time": false,
    "request_uris": [],
    "scopes": [
        "openid",
        "address",
        "profile",
        "phone",
        "email"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/authorize?response_type=code&client_id=%40%211111%210008%210739.5515&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&state=STATE_XYZ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://seed.gluu.org/oxauth-rp/home.seam?foo=bar&&code=cd99fd1e-6487-44eb-a504-4973ec5af6dc&auth_level=10&auth_mode=basic&session_id=296598cb-3a46-4b90-b176-cd98096d2430&state=STATE_XYZ&scope=openid+profile+address+email

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: seed.gluu.org

grant_type=authorization_code&code=cd99fd1e-6487-44eb-a504-4973ec5af6dc&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1MiLCJhbGciOiJIUzM4NCJ9.eyJpc3MiOiJAITExMTEhMDAwOCEwNzM5LjU1MTUiLCJzdWIiOiJAITExMTEhMDAwOCEwNzM5LjU1MTUiLCJhdWQiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC90b2tlbiIsImp0aSI6ImJkZGM1NGQ2LWQzOGEtNGEyNi05OTc2LTljNzg2YTU5Y2I5MCIsImV4cCI6MTM3NDAxMzU1NiwiaWF0IjoxMzc0MDEzMjU2fQ.YAJ597OOKfHqzU82PwpJUknR8nGjGU08j1dEEXlnRXbA6WQ_cOPassmJQfdgiEjG

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{"access_token":"0c3fb888-bf34-446f-93be-de02c82eed42","token_type":"bearer","expires_in":3599,"refresh_token":"9aafa8a6-3515-4e59-bd63-887a5057ff86","id_token":"eyJ0eXAiOiJKV1MiLCJhbGciOiJSUzI1NiIsImprdSI6Imh0dHBzOi8vc2VlZC5nbHV1Lm9yZy9veGF1dGgvc2VhbS9yZXNvdXJjZS9yZXN0djEvb3hhdXRoL2p3a3MiLCJraWQiOiIxIn0.eyJpc3MiOiJodHRwczovL3NlZWQuZ2x1dS5vcmciLCJhdWQiOiJAITExMTEhMDAwOCEwNzM5LjU1MTUiLCJleHAiOjEzNzQwMTY4NTYsImlhdCI6MTM3NDAxMzI1Niwic3ViIjoibWlrZSIsIm94SW51bSI6IkAhMTExMSEwMDAwIUQ0RTciLCJveFZhbGlkYXRpb25VUkkiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC9jaGVja19zZXNzaW9uIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIn0.Q0NKEQPIP_9jKv2IyaZBoBpMfgLJExxeMPSZaXRlCkNnHGR1exPVhIHWnZHQekC4irqe4jneMig9Wt2N-ibqsqlIJqlY2P97WnCfHYMLwT5-UJYJ94-6gNyhwYLhnajQ5aE0ESJNbi4JcwD3fzpHDTIcPGIqLfuPexWmNbKkW_IaYYuy4YLY4SeximHfrXHd4kfgKXqy6qYv0Bm5HBll-vxdA0SrjQtnUEkPfWobuXw-6h7BCg-CKNtEq7BteRx1gL6cAm-5XudlzOItnXvMkl_0fxsW3IHkgROkAFaZwRpECrxsidJWhk2vs-58cEgIsRyrb0UuWcXzc6xzTfBxYQ"}


#######################################################
TEST: OC5:FeatureTest-Support Authentication to Token Endpoint with Symmetrically Signed JWTs (HS512)
#######################################################
-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/register HTTP/1.1
Content-Type: application/json
Accept: application/json
Host: seed.gluu.org

{
    "redirect_uris": [
        "https://seed.gluu.org/oxauth-rp/home.seam",
        "https://client.example.com/cb",
        "https://client.example.com/cb1",
        "https://client.example.com/cb2"
    ],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js"
}

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{
    "client_id": "@!1111!0008!5BBE.90EB",
    "client_secret": "aa1292a0-b124-4b1a-b77e-c7c8eed5deaf",
    "registration_access_token": "870d68fe-a81c-4fb6-8fa6-422619635944",
    "registration_client_uri": "https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/register?client_id=@!1111!0008!5BBE.90EB",
    "client_id_issued_at": 1374013257,
    "client_secret_expires_at": 1374099657,
    "response_types": ["code"],
    "application_type": "web",
    "client_name": "oxAuth test app",
    "token_endpoint_auth_method": "client_secret_jwt",
    "sector_identifier_uri": "https://seed.gluu.org/oxauth-client/test/resources/sector_identifier.js",
    "subject_type": "public",
    "id_token_signed_response_alg": "RS256",
    "require_auth_time": false,
    "request_uris": [],
    "scopes": [
        "openid",
        "address",
        "profile",
        "phone",
        "email"
    ]
}

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
https://seed.gluu.org/oxauth/seam/resource/restv1/oxauth/authorize?response_type=code&client_id=%40%211111%210008%215BBE.90EB&scope=openid+profile+address+email&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&state=STATE_XYZ

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 302 Found
Location: https://seed.gluu.org/oxauth-rp/home.seam?foo=bar&&code=e16b4f1e-f5bd-4e93-9055-64a174b40721&auth_level=10&auth_mode=basic&session_id=02aec0b1-3009-4ff8-82d2-53c35a531cc3&state=STATE_XYZ&scope=openid+profile+address+email

-------------------------------------------------------
REQUEST:
-------------------------------------------------------
POST /oxauth/seam/resource/restv1/oxauth/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Host: seed.gluu.org

grant_type=authorization_code&code=e16b4f1e-f5bd-4e93-9055-64a174b40721&redirect_uri=https%3A%2F%2Fseed.gluu.org%2Foxauth-rp%2Fhome.seam%3Ffoo%3Dbar&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&client_assertion=eyJ0eXAiOiJKV1MiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJAITExMTEhMDAwOCE1QkJFLjkwRUIiLCJzdWIiOiJAITExMTEhMDAwOCE1QkJFLjkwRUIiLCJhdWQiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC90b2tlbiIsImp0aSI6ImI4NzFhNjdhLTk5ODAtNDFhNC04ZmNkLTY1MjViMWI3YjkzNSIsImV4cCI6MTM3NDAxMzU3NSwiaWF0IjoxMzc0MDEzMjc1fQ.Spkj7cCMRw6RmNVQfQm7KfhoEUmEJS6xG8MXQFEu3qyZ1p6TZYUkmxKPsbE96Ax_q9hf5a8-aR7_doEo2RSz0w

-------------------------------------------------------
RESPONSE:
-------------------------------------------------------
HTTP/1.1 200
Content-Type: application/json
Cache-Control: no-store
Pragma: no-cache

{"access_token":"5e662c3d-5e99-40b5-bd8c-c963110062bd","token_type":"bearer","expires_in":3599,"refresh_token":"76164abf-e76c-4b7a-b898-727b37fe97e2","id_token":"eyJ0eXAiOiJKV1MiLCJhbGciOiJSUzI1NiIsImprdSI6Imh0dHBzOi8vc2VlZC5nbHV1Lm9yZy9veGF1dGgvc2VhbS9yZXNvdXJjZS9yZXN0djEvb3hhdXRoL2p3a3MiLCJraWQiOiIxIn0.eyJpc3MiOiJodHRwczovL3NlZWQuZ2x1dS5vcmciLCJhdWQiOiJAITExMTEhMDAwOCE1QkJFLjkwRUIiLCJleHAiOjEzNzQwMTY4NzUsImlhdCI6MTM3NDAxMzI3NSwic3ViIjoibWlrZSIsIm94SW51bSI6IkAhMTExMSEwMDAwIUQ0RTciLCJveFZhbGlkYXRpb25VUkkiOiJodHRwczovL3NlZWQuZ2x1dS5vcmcvb3hhdXRoL3NlYW0vcmVzb3VyY2UvcmVzdHYxL294YXV0aC9jaGVja19zZXNzaW9uIiwib3hPcGVuSURDb25uZWN0VmVyc2lvbiI6Im9wZW5pZGNvbm5lY3QtMS4wIn0.TuRpNfM8FpPdbFQJSNRln9OVonhDFba-sDYQ2kJ0iFmHMHUE7WyhXaK8TytMNoBUEvIfH7mBlpvov8qSsmxWW0jaAV9YIsZYe6QMHcMCzhPHWSYrsiWg08TJOkErSU9oiLWWu9fUScmzGHCVYdyUY2BIglMAqxs9LVhPSbhIxF5RjUaSud8ZWRvkBhpYu6sVLUw7BcXtUk0dWqi-bOTU-JMcNbSv_ChJdRuL74dpW6f36w3TeMj38iv1EKGhVPIDBdFAnK_3lL5UQUPwZw2wAQybSLG72y-zLyTuphI11KqW6euFhcShYjZ_yzI60fkDUVTOOIFtkFaM3gJ2znQMJg"}


===============================================
Custom suite
Total tests run: 3, Failures: 0, Skips: 0
===============================================

Back To

{{#dpl: namespace = OC5 | linksto = OC5:FTR-op-tok-csjwt-x-Gluu OX }}