Details

      Description

      Currently the test com.forgerock.openam.functionaltest.oauth2.TestOpenIdREST.testOPConfig fails on the following assertion:

      java.lang.AssertionError: Incorrect jwks_uri at openid-configuration:
      Expected: "http://amqa-clone71.test.forgerock.com:8080/openam/oauth2/connect/jwk_uri"
           but: was null
      

      The code mentions:

      assertThat("Incorrect jwks_uri at openid-configuration:",    // tests part of OPENAM-4003
                  jsonPath.getString("jwks_uri"), equalTo(openAmPath + "/oauth2/connect/jwk_uri"
                      + (useSubRealm ? "?realm=" + realm : "")));
      

      According to http://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata: "The jwks_uri is REQUIRED. It must return the JSON Web Key Set document".

      JSON response is:

      {
          "response_types_supported": [
              "code token id_token",
              "code",
              "code id_token",
              "id_token",
              "code token",
              "token",
              "token id_token"
          ],
          "claims_parameter_supported": false,
          "end_session_endpoint": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/connect/endSession",
          "version": "3.0",
          "check_session_iframe": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/connect/checkSession",
          "scopes_supported": [
              "openid"
          ],
          "issuer": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2",
          "acr_values_supported": [
              
          ],
          "authorization_endpoint": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/authorize",
          "userinfo_endpoint": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/userinfo",
          "claims_supported": [
              "zoneinfo",
              "address",
              "name",
              "phone_number",
              "locale",
              "given_name",
              "family_name",
              "email"
          ],
          "jwks_uri": null,
          "subject_types_supported": [
              "public"
          ],
          "id_token_signing_alg_values_supported": [
              "HS256",
              "HS512",
              "RS256",
              "HS384"
          ],
          "registration_endpoint": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/connect/register",
          "token_endpoint_auth_methods_supported": [
              "client_secret_post",
              "private_key_jwt",
              "client_secret_basic"
          ],
          "token_endpoint": "http://amqa-clone99.test.forgerock.com:7001/openam/oauth2/access_token"
      }
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jamesphillpotts James Phillpotts
                Reporter:
                n4al Nemanja Lukic
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: