Test Summary

Test Results

Expand All Collapse All
All times are UTC
2026-07-19 01:52:13 INFO
TEST-RUNNER
Test instance fydnoLZUDJsEWDW created
baseUrl
https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2
variant
{
  "credential_format": "sd_jwt_vc",
  "request_method": "request_uri_signed",
  "vp_profile": "haip",
  "client_id_prefix": "x509_hash",
  "response_mode": "direct_post.jwt"
}
alias
codeb-oid4vp-haip-v2
description
CodeB OID4VP HAIP verifier - 2026-07-19 v2
planId
Wa46KCPHMZ5EV
config
{
  "alias": "codeb-oid4vp-haip-v2",
  "description": "CodeB OID4VP HAIP verifier - 2026-07-19 v2",
  "server": {
    "discoveryUrl": "https://phone.codeb.io/.well-known/openid-configuration",
    "login_hint": "claude"
  },
  "client": {
    "client_id": "oidf-conf-basic",
    "client_secret": "W6Oag_SfF8T9CKjyQlBz3fSyRCPN60bpa6vL4456yro",
    "request_object_trust_anchor_pem": "-----BEGIN CERTIFICATE-----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\nVKu6saHmHEynI7ysIPd8zQsK1HdmhlHKlw9Z5GpGvA\u003d\u003d\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----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\n6hSW1/IWaas6dg\u003d\u003d\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----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\nTT0mQ/r5XyA4MEAiabn7XJjvCERlF2dcn2wqJw+CreTkkQ2R\n-----END CERTIFICATE-----"
  },
  "client_secret_post": {
    "client_id": "client_secret_post",
    "client_secret": "cRZGUg0oa9MoMEOgo5iXRjg9Z0AJaAf97IrP7wURYpk"
  },
  "client2": {
    "client_id": "client_secret_basic",
    "client_secret": "FdL-0qSC8oVVy9Vh1Et2Tx7owpdukS643i-NWaysQvY"
  },
  "credential": {
    "signing_jwk": {
      "crv": "P-256",
      "d": "QHT_DquJcR7lgyRJKWObrn9jR-Z6c5XJr8v1IpMnHLw",
      "ext": true,
      "key_ops": [
        "sign"
      ],
      "kty": "EC",
      "x": "OBSJttHHHSzol8KlF7yPS_dkXJOWgwNLXVJFGnevtK4",
      "y": "aIRnddtHxT8WBEVpgIbALguRFrNcUU6P8JBtIW5dzaU",
      "alg": "ES256",
      "use": "sig",
      "kid": "codeb-cred-signing-1shj727f"
    }
  }
}
baseMtlsUrl
https://mtls-www.certification.openid.net/test-mtls/a/codeb-oid4vp-haip-v2
testName
oid4vp-1final-verifier-invalid-sd-hash
2026-07-19 01:52:13 SUCCESS
OIDCCGenerateServerConfiguration
Generated default server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "HS384",
    "HS512",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at",
    "txn"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ]
}
2026-07-19 01:52:13
SetRequestUriParameterSupportedToTrueInServerConfiguration
Enabled request_uri support in server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/jwks",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/userinfo",
  "registration_endpoint": "https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/register",
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access"
  ],
  "response_types_supported": [
    "code",
    "id_token code",
    "token code id_token",
    "id_token",
    "token id_token",
    "token code",
    "token"
  ],
  "response_modes_supported": [
    "query",
    "fragment",
    "form_post"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_post",
    "client_secret_jwt",
    "private_key_jwt"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "HS384",
    "HS512",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "grant_types_supported": [
    "authorization_code",
    "implicit"
  ],
  "claims_parameter_supported": true,
  "acr_values_supported": [
    "PASSWORD"
  ],
  "subject_types_supported": [
    "public",
    "pairwise"
  ],
  "claim_types_supported": [
    "normal",
    "aggregated",
    "distributed"
  ],
  "claims_supported": [
    "sub",
    "name",
    "given_name",
    "family_name",
    "middle_name",
    "nickname",
    "preferred_username",
    "gender",
    "birthdate",
    "address",
    "zoneinfo",
    "locale",
    "phone_number",
    "phone_number_verified",
    "email",
    "email_verified",
    "website",
    "profile",
    "updated_at",
    "txn"
  ],
  "id_token_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "id_token_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "id_token_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_object_signing_alg_values_supported": [
    "none",
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "request_object_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "request_object_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "userinfo_signing_alg_values_supported": [
    "RS256",
    "RS384",
    "RS512",
    "PS256",
    "PS384",
    "PS512",
    "ES256",
    "ES256K",
    "ES384",
    "ES512",
    "EdDSA",
    "Ed25519",
    "Ed448"
  ],
  "userinfo_encryption_alg_values_supported": [
    "RSA1_5",
    "RSA-OAEP",
    "RSA-OAEP-256",
    "RSA-OAEP-384",
    "RSA-OAEP-512",
    "ECDH-ES",
    "ECDH-ES+A128KW",
    "ECDH-ES+A192KW",
    "ECDH-ES+A256KW",
    "A128KW",
    "A192KW",
    "A256KW",
    "A128GCMKW",
    "A192GCMKW",
    "A256GCMKW",
    "dir"
  ],
  "userinfo_encryption_enc_values_supported": [
    "A128CBC-HS256",
    "A192CBC-HS384",
    "A256CBC-HS512",
    "A128GCM",
    "A192GCM",
    "A256GCM"
  ],
  "request_uri_parameter_supported": true,
  "require_request_uri_registration": false
}
2026-07-19 01:52:13
RegisterClientRequestObjectTrustAnchor
Registered client request object trust anchor certificate
trust_anchor_pem
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2026-07-19 01:52:13 SUCCESS
EnsureClientRequestObjectTrustAnchorConfigured
Request Object Trust Anchor is configured
2026-07-19 01:52:13
oid4vp-1final-verifier-invalid-sd-hash
Setup Done
2026-07-19 01:52:16 INCOMING
oid4vp-1final-verifier-invalid-sd-hash
Incoming HTTP request to /test/a/codeb-oid4vp-haip-v2/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Google Chrome\";v\u003d\"149\", \"Chromium\";v\u003d\"149\", \"Not)A;Brand\";v\u003d\"24\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/149.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br, zstd",
  "accept-language": "en-GB,en;q\u003d0.9,en-US;q\u003d0.8,de;q\u003d0.7",
  "cookie": "_gid\u003dGA1.2.1519654100.1784391516; _ga\u003dGA1.2.1777941607.1784391515; _ga_NF8HNLNJJE\u003dGS2.1.s1784391515$o1$g1$t1784393527$j26$l0$h0; JSESSIONID\u003dE70C083A1BBAF19EB73F190970FD3626",
  "connection": "close"
}
incoming_path
/test/a/codeb-oid4vp-haip-v2/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{
  "client_id": "x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs",
  "request_uri": "https://phone.codeb.io/oidc.ashx?action\u003dvp-request\u0026id\u003d8mwT-r-yZVsgWt-Rxg4F5g"
}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_body_json_parse_error
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
Authorization endpoint
2026-07-19 01:52:16
FetchRequestUriAndExtractRequestObject
Fetching request object from request_uri
request_uri
https://phone.codeb.io/oidc.ashx?action=vp-request&id=8mwT-r-yZVsgWt-Rxg4F5g
2026-07-19 01:52:16
FetchRequestUriAndExtractRequestObject
HTTP request
request_uri
https://phone.codeb.io/oidc.ashx?action=vp-request&id=8mwT-r-yZVsgWt-Rxg4F5g
request_method
GET
request_headers
{
  "Accept": "text/plain, application/json, application/yaml, application/*+json, */*",
  "Content-Length": "0"
}
request_body

                                
2026-07-19 01:52:17 RESPONSE
FetchRequestUriAndExtractRequestObject
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "cache-control": "private, no-store,no-store, no-cache, must-revalidate, max-age\u003d0",
  "pragma": "no-cache,no-cache",
  "content-type": "application/oauth-authz-req+jwt; charset\u003dutf-8",
  "expires": "0",
  "x-aspnet-version": "4.0.30319",
  "referrer-policy": "no-referrer",
  "x-content-type-options": "nosniff",
  "permissions-policy": "camera\u003d(self), microphone\u003d(self), display-capture\u003d(self)",
  "strict-transport-security": "max-age\u003d63072000; includeSubDomains",
  "date": "Sun, 19 Jul 2026 01:52:16 GMT",
  "content-length": "3158"
}
response_body
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.eyJpc3MiOiJ4NTA5X2hhc2g6ckN3Vk8yeXlrSjhySlVRcmxnYUxuZkY3VWphdEdqQWxLX1JjNFY5QmhCcyIsImNsaWVudF9pZCI6Ing1MDlfaGFzaDpyQ3dWTzJ5eWtKOHJKVVFybGdhTG5mRjdVamF0R2pBbEtfUmM0VjlCaEJzIiwiYXVkIjoiaHR0cHM6Ly9zZWxmLWlzc3VlZC5tZS92MiIsInJlc3BvbnNlX3R5cGUiOiJ2cF90b2tlbiIsInJlc3BvbnNlX21vZGUiOiJkaXJlY3RfcG9zdC5qd3QiLCJyZXNwb25zZV91cmkiOiJodHRwczovL3Bob25lLmNvZGViLmlvL29pZGMuYXNoeD9hY3Rpb249dnAtcmVzcG9uc2VcdTAwMjZpZD04bXdULXIteVpWc2dXdC1SeGc0RjVnIiwibm9uY2UiOiJDZzNlMWt0MHhiakstRHJKQ3lZSFcwWXB6WWc3OC1CUnJ6VEY3ekFtdERjIiwic3RhdGUiOiJ5NXFKdHp5WFFGX3RqbkFCaWVmS1BRIiwiZGNxbF9xdWVyeSI6eyJjcmVkZW50aWFscyI6W3siaWQiOiJldWRpX3BpZCIsImZvcm1hdCI6ImRjK3NkLWp3dCIsIm1ldGEiOnsidmN0X3ZhbHVlcyI6WyJ1cm46ZXUuZXVyb3BhLmVjLmV1ZGk6cGlkOjEiXX0sImNsYWltcyI6W3sicGF0aCI6WyJnaXZlbl9uYW1lIl19LHsicGF0aCI6WyJmYW1pbHlfbmFtZSJdfSx7InBhdGgiOlsiYWdlX292ZXJfMTgiXX1dfV19LCJjbGllbnRfbWV0YWRhdGEiOnsiandrcyI6eyJrZXlzIjpbeyJrdHkiOiJFQyIsImNydiI6IlAtMjU2IiwidXNlIjoiZW5jIiwiYWxnIjoiRUNESC1FUyIsIngiOiJxVElOWkNOZVp4VFFYaEphMTlzSWdVNWVMZnFxVmZJc21iZ3M0VGF3Q1ZzIiwieSI6Ik04UmRxaGhtQzdiWW1lOE1LNkM4bENGWThhbU9Zbk5PQ0VMeGZ6TFJfN2siLCJraWQiOiJrS3dtVjJIVGNkYyJ9XX0sImVuY3J5cHRlZF9yZXNwb25zZV9lbmNfdmFsdWVzX3N1cHBvcnRlZCI6WyJBMTI4R0NNIiwiQTI1NkdDTSJdLCJ2cF9mb3JtYXRzX3N1cHBvcnRlZCI6eyJkYytzZC1qd3QiOnsic2Qtand0X2FsZ192YWx1ZXMiOlsiRVMyNTYiXSwia2Itand0X2FsZ192YWx1ZXMiOlsiRVMyNTYiXX19fSwiaWF0IjoxNzg0NDI1OTM2LCJleHAiOjE3ODQ0MjYyMzZ9.2AyeGkjlsGibJQzYKUVmBAX5zKvotomyfuMa8sLMW8QZ3EqGhXL3n71rNjodQMM3mK_uDqYO4dmw_Of4Ric8RQ
2026-07-19 01:52:17
FetchRequestUriAndExtractRequestObject
Downloaded request object
request_object
eyJhbGciOiJFUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJ4NWMiOlsiTUlJRGlqQ0NBeENnQXdJQkFnSVNCWkpZL0VuUityVkZpN3IwU3puRUIxUG9NQW9HQ0NxR1NNNDlCQU1ETURNeEN6QUpCZ05WQkFZVEFsVlRNUll3RkFZRFZRUUtFdzFNWlhRbmN5QkZibU55ZVhCME1Rd3dDZ1lEVlFRREV3TlpSVEV3SGhjTk1qWXdOekU0TWpBMU1UTXhXaGNOTWpZeE1ERTJNakExTVRNd1dqQVpNUmN3RlFZRFZRUURFdzV3YUc5dVpTNWpiMlJsWWk1cGJ6QlpNQk1HQnlxR1NNNDlBZ0VHQ0NxR1NNNDlBd0VIQTBJQUJGMGZTVVFXdVIrY2FXamo1YUZMeXN4TVZlcEFXQktmRjRONXgwS2sydmEzTTJ6ZURUVVBwU1VrbHJRUWs3TUdUOVRJbWFNNFUzbEYzR3NtS3dabzJRQ2pnZ0ljTUlJQ0dEQU9CZ05WSFE4QkFmOEVCQU1DQjRBd0V3WURWUjBsQkF3d0NnWUlLd1lCQlFVSEF3RXdEQVlEVlIwVEFRSC9CQUl3QURBZEJnTlZIUTRFRmdRVUpDbWR1ZHhnL3duTTJIK3I1R0hUa0xwdWE2NHdId1lEVlIwakJCZ3dGb0FVdXlES1J3disxK1djK1k4SktxT01OMFd4dk5nd013WUlLd1lCQlFVSEFRRUVKekFsTUNNR0NDc0dBUVVGQnpBQ2hoZG9kSFJ3T2k4dmVXVXhMbWt1YkdWdVkzSXViM0puTHpBWkJnTlZIUkVFRWpBUWdnNXdhRzl1WlM1amIyUmxZaTVwYnpBVEJnTlZIU0FFRERBS01BZ0dCbWVCREFFQ0FUQXZCZ05WSFI4RUtEQW1NQ1NnSXFBZ2hoNW9kSFJ3T2k4dmVXVXhMbU11YkdWdVkzSXViM0puTHpFd05TNWpjbXd3Z2dFTEJnb3JCZ0VFQWRaNUFnUUNCSUg4QklINUFQY0FkUURDTVg1WFJSbWpSZTUvT042eWtFSHJ4OEloV2lLL2Y5VzFyWGFhMlE1U3pRQUFBWjkzTlN2Y0FBQUVBd0JHTUVRQ0lGVzBKKzJkcDI5Ri9Jc2RiOS9Gd3o0T3hWTjhEVktMK1BNNW5VaDBsc0tlQWlBWkpTZzM3T1NwSVdUZVRXL2g5WEZ3NDdGaklFNlU5OXZTM1hWRDFPSzNpQUIrQUNialpHNVlhU0VqdkRRL1J5UTFtemVTelNSYWlOZ1YwNU16L1prWXEwY2pBQUFCbjNjMUtPZ0FDQUFBQlFBcXE4MDFCQU1BUnpCRkFpRUF2S3NPaDJRSUQ1UzM0V3gxMk5lNksrSEFEUjkzRTRxL1BkVmc0SHhOdEpzQ0lFR2V1Y0NzbXV3MnhlUUNMN3I4MXZXeE1zSElVZTJRWCtBcjhsRWphNDlzTUFvR0NDcUdTTTQ5QkFNREEyZ0FNR1VDTUNHaG9KY1puZE9ZUVhCaS9ndGh4S3NvZXdEOXMydDdVY0pJTGlCVW9JcjF0MWt2N1NtRS9yNDZYUHRwWmtnVVJ3SXhBUHhoWjFWU2I4c3BVSVZDMTFITkRHYmVvVURrYjdCWk9xRGp2UDdDRWlCNjg5RmUrL0RMSU9LcXk1UjhWNHBCTGc9PSJdfQ.eyJpc3MiOiJ4NTA5X2hhc2g6ckN3Vk8yeXlrSjhySlVRcmxnYUxuZkY3VWphdEdqQWxLX1JjNFY5QmhCcyIsImNsaWVudF9pZCI6Ing1MDlfaGFzaDpyQ3dWTzJ5eWtKOHJKVVFybGdhTG5mRjdVamF0R2pBbEtfUmM0VjlCaEJzIiwiYXVkIjoiaHR0cHM6Ly9zZWxmLWlzc3VlZC5tZS92MiIsInJlc3BvbnNlX3R5cGUiOiJ2cF90b2tlbiIsInJlc3BvbnNlX21vZGUiOiJkaXJlY3RfcG9zdC5qd3QiLCJyZXNwb25zZV91cmkiOiJodHRwczovL3Bob25lLmNvZGViLmlvL29pZGMuYXNoeD9hY3Rpb249dnAtcmVzcG9uc2VcdTAwMjZpZD04bXdULXIteVpWc2dXdC1SeGc0RjVnIiwibm9uY2UiOiJDZzNlMWt0MHhiakstRHJKQ3lZSFcwWXB6WWc3OC1CUnJ6VEY3ekFtdERjIiwic3RhdGUiOiJ5NXFKdHp5WFFGX3RqbkFCaWVmS1BRIiwiZGNxbF9xdWVyeSI6eyJjcmVkZW50aWFscyI6W3siaWQiOiJldWRpX3BpZCIsImZvcm1hdCI6ImRjK3NkLWp3dCIsIm1ldGEiOnsidmN0X3ZhbHVlcyI6WyJ1cm46ZXUuZXVyb3BhLmVjLmV1ZGk6cGlkOjEiXX0sImNsYWltcyI6W3sicGF0aCI6WyJnaXZlbl9uYW1lIl19LHsicGF0aCI6WyJmYW1pbHlfbmFtZSJdfSx7InBhdGgiOlsiYWdlX292ZXJfMTgiXX1dfV19LCJjbGllbnRfbWV0YWRhdGEiOnsiandrcyI6eyJrZXlzIjpbeyJrdHkiOiJFQyIsImNydiI6IlAtMjU2IiwidXNlIjoiZW5jIiwiYWxnIjoiRUNESC1FUyIsIngiOiJxVElOWkNOZVp4VFFYaEphMTlzSWdVNWVMZnFxVmZJc21iZ3M0VGF3Q1ZzIiwieSI6Ik04UmRxaGhtQzdiWW1lOE1LNkM4bENGWThhbU9Zbk5PQ0VMeGZ6TFJfN2siLCJraWQiOiJrS3dtVjJIVGNkYyJ9XX0sImVuY3J5cHRlZF9yZXNwb25zZV9lbmNfdmFsdWVzX3N1cHBvcnRlZCI6WyJBMTI4R0NNIiwiQTI1NkdDTSJdLCJ2cF9mb3JtYXRzX3N1cHBvcnRlZCI6eyJkYytzZC1qd3QiOnsic2Qtand0X2FsZ192YWx1ZXMiOlsiRVMyNTYiXSwia2Itand0X2FsZ192YWx1ZXMiOlsiRVMyNTYiXX19fSwiaWF0IjoxNzg0NDI1OTM2LCJleHAiOjE3ODQ0MjYyMzZ9.2AyeGkjlsGibJQzYKUVmBAX5zKvotomyfuMa8sLMW8QZ3EqGhXL3n71rNjodQMM3mK_uDqYO4dmw_Of4Ric8RQ
2026-07-19 01:52:17 SUCCESS
FetchRequestUriAndExtractRequestObject
Parsed request object
value
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.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.2AyeGkjlsGibJQzYKUVmBAX5zKvotomyfuMa8sLMW8QZ3EqGhXL3n71rNjodQMM3mK_uDqYO4dmw_Of4Ric8RQ
header
{
  "x5c": [
    "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\u003d\u003d"
  ],
  "typ": "oauth-authz-req+jwt",
  "alg": "ES256"
}
claims
{
  "response_uri": "https://phone.codeb.io/oidc.ashx?action\u003dvp-response\u0026id\u003d8mwT-r-yZVsgWt-Rxg4F5g",
  "aud": "https://self-issued.me/v2",
  "iss": "x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs",
  "response_type": "vp_token",
  "state": "y5qJtzyXQF_tjnABiefKPQ",
  "dcql_query": {
    "credentials": [
      {
        "id": "eudi_pid",
        "format": "dc+sd-jwt",
        "meta": {
          "vct_values": [
            "urn:eu.europa.ec.eudi:pid:1"
          ]
        },
        "claims": [
          {
            "path": [
              "given_name"
            ]
          },
          {
            "path": [
              "family_name"
            ]
          },
          {
            "path": [
              "age_over_18"
            ]
          }
        ]
      }
    ]
  },
  "exp": 1784426236,
  "nonce": "Cg3e1kt0xbjK-DrJCyYHW0YpzYg78-BRrzTF7zAmtDc",
  "iat": 1784425936,
  "client_id": "x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs",
  "client_metadata": {
    "jwks": {
      "keys": [
        {
          "kty": "EC",
          "crv": "P-256",
          "use": "enc",
          "alg": "ECDH-ES",
          "x": "qTINZCNeZxTQXhJa19sIgU5eLfqqVfIsmbgs4TawCVs",
          "y": "M8RdqhhmC7bYme8MK6C8lCFY8amOYnNOCELxfzLR_7k",
          "kid": "kKwmV2HTcdc"
        }
      ]
    },
    "encrypted_response_enc_values_supported": [
      "A128GCM",
      "A256GCM"
    ],
    "vp_formats_supported": {
      "dc+sd-jwt": {
        "sd-jwt_alg_values": [
          "ES256"
        ],
        "kb-jwt_alg_values": [
          "ES256"
        ]
      }
    }
  },
  "response_mode": "direct_post.jwt"
}
2026-07-19 01:52:17 SUCCESS
EnsureRequestUriIsHttps
request_uri is a https url
request_uri
https://phone.codeb.io/oidc.ashx?action=vp-request&id=8mwT-r-yZVsgWt-Rxg4F5g
2026-07-19 01:52:17 SUCCESS
EnsureRequestUriHasNoFragment
request_uri does not contain a fragment
request_uri
https://phone.codeb.io/oidc.ashx?action=vp-request&id=8mwT-r-yZVsgWt-Rxg4F5g
2026-07-19 01:52:17 SUCCESS
ExtractAndValidateX509HashClientId
Client ID matched
client_id
x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs
2026-07-19 01:52:17 SUCCESS
ValidateRequestObjectTypIsOAuthQauthReqJwt
Request object typ header is valid
typ
oauth-authz-req+jwt
2026-07-19 01:52:17 SUCCESS
OIDCCValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Jul 19, 2026, 1:57:16 AM"
2026-07-19 01:52:17 SUCCESS
ValidateRequestObjectIat
iat claim is valid
iat
1784425936
2026-07-19 01:52:17 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2026-07-19 01:52:17
ValidateRequestObjectMaxAge
Request object does not contain a max_age claim
2026-07-19 01:52:17 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2026-07-19 01:52:17 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2026-07-19 01:52:17 SUCCESS
ValidateRequestObjectIssIfPresent
iss claim matches the client id
iss
x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs
2026-07-19 01:52:17 SUCCESS
ValidateRequestObjectAudForVP
Request object aud claim is valid
aud
https://self-issued.me/v2
expected_self_issued
https://self-issued.me/v2
expected_wallet_issuer
https://www.certification.openid.net/test/a/codeb-oid4vp-haip-v2/
2026-07-19 01:52:17 SUCCESS
ValidateRequestObjectSignatureAgainstX5cHeader
Request object x5c chain validated and signature verified
chain_length
1
leaf_cert_subject
CN=phone.codeb.io
request_object_signing_alg
ES256
2026-07-19 01:52:17 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2026-07-19 01:52:17 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2026-07-19 01:52:17 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2026-07-19 01:52:17 SUCCESS
CheckForUnexpectedParametersInVpAuthorizationEndpointHttpRequest
All HTTP authorization request parameters are expected
known_params
[
  "client_id",
  "request_uri",
  "request_uri_method"
]
parameters
[
  "client_id",
  "request_uri"
]
2026-07-19 01:52:17 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs",
  "response_uri": "https://phone.codeb.io/oidc.ashx?action\u003dvp-response\u0026id\u003d8mwT-r-yZVsgWt-Rxg4F5g",
  "aud": "https://self-issued.me/v2",
  "iss": "x509_hash:rCwVO2yykJ8rJUQrlgaLnfF7UjatGjAlK_Rc4V9BhBs",
  "response_type": "vp_token",
  "state": "y5qJtzyXQF_tjnABiefKPQ",
  "dcql_query": {
    "credentials": [
      {
        "id": "eudi_pid",
        "format": "dc+sd-jwt",
        "meta": {
          "vct_values": [
            "urn:eu.europa.ec.eudi:pid:1"
          ]
        },
        "claims": [
          {
            "path": [
              "given_name"
            ]
          },
          {
            "path": [
              "family_name"
            ]
          },
          {
            "path": [
              "age_over_18"
            ]
          }
        ]
      }
    ]
  },
  "exp": 1784426236,
  "nonce": "Cg3e1kt0xbjK-DrJCyYHW0YpzYg78-BRrzTF7zAmtDc",
  "iat": 1784425936,
  "client_metadata": {
    "jwks": {
      "keys": [
        {
          "kty": "EC",
          "crv": "P-256",
          "use": "enc",
          "alg": "ECDH-ES",
          "x": "qTINZCNeZxTQXhJa19sIgU5eLfqqVfIsmbgs4TawCVs",
          "y": "M8RdqhhmC7bYme8MK6C8lCFY8amOYnNOCELxfzLR_7k",
          "kid": "kKwmV2HTcdc"
        }
      ]
    },
    "encrypted_response_enc_values_supported": [
      "A128GCM",
      "A256GCM"
    ],
    "vp_formats_supported": {
      "dc+sd-jwt": {
        "sd-jwt_alg_values": [
          "ES256"
        ],
        "kb-jwt_alg_values": [
          "ES256"
        ]
      }
    }
  },
  "response_mode": "direct_post.jwt"
}
2026-07-19 01:52:17 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
Cg3e1kt0xbjK-DrJCyYHW0YpzYg78-BRrzTF7zAmtDc
2026-07-19 01:52:17 INFO
EnsureAuthorizationRequestContainsPkceCodeChallenge
Skipped evaluation due to missing required element: effective_authorization_endpoint_request code_challenge
path
code_challenge
mapped
object
effective_authorization_endpoint_request
2026-07-19 01:52:17 SUCCESS
EnsureResponseTypeIsVpToken
Response type is expected value
expected
vp_token
2026-07-19 01:52:17 SUCCESS
ValidateResponseMode
response_mode is direct_post.jwt
2026-07-19 01:52:17 SUCCESS
CheckNoClientIdSchemeParameter
client_id_scheme parameter is not present, as expected.
2026-07-19 01:52:17 SUCCESS
CheckNoScopeParameter
scope parameter is not present, as expected.
2026-07-19 01:52:17 SUCCESS
CheckRequestUriMethodParameter
request_uri_method parameter is not present.
2026-07-19 01:52:17 INFO
WarnIfRequestUriMethodInRequestObject
Skipped evaluation due to missing required string: authorization_request_object
expected
authorization_request_object
2026-07-19 01:52:17 INFO
EnsureNoWalletNonceInRequestObject
Skipped evaluation due to missing required string: authorization_request_object
expected
authorization_request_object
2026-07-19 01:52:17 SUCCESS
CheckForUnexpectedParametersInVpAuthorizationRequest
All authorization parameters are expected
known_params
[
  "presentation_definition",
  "dcql_query",
  "client_id",
  "client_id_scheme",
  "response_uri",
  "client_metadata",
  "nonce",
  "state",
  "response_type",
  "response_mode",
  "verifier_info",
  "scope",
  "request_uri_method",
  "wallet_nonce",
  "aud",
  "iss",
  "iat",
  "nbf",
  "exp",
  "jti"
]
parameters
[
  "client_id",
  "response_uri",
  "aud",
  "iss",
  "response_type",
  "state",
  "dcql_query",
  "exp",
  "nonce",
  "iat",
  "client_metadata",
  "response_mode"
]
2026-07-19 01:52:17 SUCCESS
CheckNoTransactionDataInVpAuthorizationRequest
Authorization request does not contain transaction_data
2026-07-19 01:52:17 INFO
ExtractVerifierInfoFromAuthorizationRequest
Skipped evaluation due to missing required element: effective_authorization_endpoint_request verifier_info
path
verifier_info
mapped
object
effective_authorization_endpoint_request
2026-07-19 01:52:17 INFO
ValidateVerifierInfo
Skipped evaluation due to missing required element: effective_authorization_endpoint_request verifier_info
path
verifier_info
mapped
object
effective_authorization_endpoint_request
2026-07-19 01:52:17 INFO
CheckForUnexpectedParametersInVerifierInfo
Skipped evaluation due to missing required element: effective_authorization_endpoint_request verifier_info
path
verifier_info
mapped
object
effective_authorization_endpoint_request
2026-07-19 01:52:17 SUCCESS
EnsureValidResponseUriForAuthorizationEndpointRequest
response_uri is valid https url with no fragment
actual
https://phone.codeb.io/oidc.ashx?action=vp-response&id=8mwT-r-yZVsgWt-Rxg4F5g
2026-07-19 01:52:17 SUCCESS
CheckNoRedirectUriInVpAuthorizationRequest
Authorization request does not contain 'redirect_uri'
2026-07-19 01:52:17 SUCCESS
CheckNoPresentationDefinitionInVpAuthorizationRequest
Authorization request does not contain presentation_definition or presentation_definition_uri
2026-07-19 01:52:17 SUCCESS
VP1FinalCheckForUnexpectedParametersInVpClientMetadata
All client_metadata parameters are expected
parameters
[
  "jwks",
  "encrypted_response_enc_values_supported",
  "vp_formats_supported"
]
2026-07-19 01:52:17 SUCCESS
VP1FinalValidateVpFormatsSupportedInClientMetadata
vp_formats_supported contains valid dc+sd-jwt format
dc+sd-jwt
{
  "sd-jwt_alg_values": [
    "ES256"
  ],
  "kb-jwt_alg_values": [
    "ES256"
  ]
}
2026-07-19 01:52:17 SUCCESS
VP1FinalCheckForKeyIdInClientMetadataJWKs
All keys in client_metadata.jwks have unique kid values
jwks
{
  "keys": [
    {
      "kty": "EC",
      "crv": "P-256",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "qTINZCNeZxTQXhJa19sIgU5eLfqqVfIsmbgs4TawCVs",
      "y": "M8RdqhhmC7bYme8MK6C8lCFY8amOYnNOCELxfzLR_7k",
      "kid": "kKwmV2HTcdc"
    }
  ]
}
2026-07-19 01:52:17 SUCCESS
VP1FinalValidateClientMetadataJwksForEncryptedResponse
client_metadata.jwks contains valid encryption key(s) with alg
jwks
{
  "keys": [
    {
      "kty": "EC",
      "crv": "P-256",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "qTINZCNeZxTQXhJa19sIgU5eLfqqVfIsmbgs4TawCVs",
      "y": "M8RdqhhmC7bYme8MK6C8lCFY8amOYnNOCELxfzLR_7k",
      "kid": "kKwmV2HTcdc"
    }
  ]
}
Validate the JWK set in client_metadata
2026-07-19 01:52:17 SUCCESS
MapJwksToValidationLocation
Selected the JWK set in client_metadata for validation
jwks
{
  "keys": [
    {
      "kty": "EC",
      "crv": "P-256",
      "use": "enc",
      "alg": "ECDH-ES",
      "x": "qTINZCNeZxTQXhJa19sIgU5eLfqqVfIsmbgs4TawCVs",
      "y": "M8RdqhhmC7bYme8MK6C8lCFY8amOYnNOCELxfzLR_7k",
      "kid": "kKwmV2HTcdc"
    }
  ]
}
2026-07-19 01:52:17 SUCCESS
EnsureJwksHasNoPrivateOrSymmetricKeyMaterial
The JWK set in client_metadata contains only public key material
jwks_source
client_metadata
2026-07-19 01:52:17 SUCCESS
ValidateJwksStructure
The JWK set in client_metadata is structurally valid
jwks_source
client_metadata
2026-07-19 01:52:17 SUCCESS
ParseUsableJwksKeys
All usable keys in the JWK set in client_metadata parse successfully
jwks_source
client_metadata
2026-07-19 01:52:17 SUCCESS
WarnOnUnusableJwksKeys
All keys in the JWK set in client_metadata use a supported key type, curve and algorithm
jwks_source
client_metadata
2026-07-19 01:52:17 SUCCESS
ValidateVpClientMetadataEncryptionForHaip
client_metadata encryption parameters satisfy HAIP & OID4VP requirements
encrypted_response_enc_values_supported
[
  "A128GCM",
  "A256GCM"
]
2026-07-19 01:52:17 SUCCESS
VP1FinalCheckEncryptionKeyNotReused
Verifier response-encryption key(s) were not seen in a previous Authorization Request
jwk_thumbprints
[
  "1eHzBe6tzuQ7xipkU4qfjYNz7_92p2l-d2HBzjkrvMA"
]
2026-07-19 01:52:17 SUCCESS
ExtractDCQLQueryFromAuthorizationRequest
Extracted dcql_query from authorization request
dcql
{
  "credentials": [
    {
      "id": "eudi_pid",
      "format": "dc+sd-jwt",
      "meta": {
        "vct_values": [
          "urn:eu.europa.ec.eudi:pid:1"
        ]
      },
      "claims": [
        {
          "path": [
            "given_name"
          ]
        },
        {
          "path": [
            "family_name"
          ]
        },
        {
          "path": [
            "age_over_18"
          ]
        }
      ]
    }
  ]
}
2026-07-19 01:52:17 SUCCESS
ValidateDCQLQuery
DCQL query input is valid
input
{
  "credentials": [
    {
      "id": "eudi_pid",
      "format": "dc+sd-jwt",
      "meta": {
        "vct_values": [
          "urn:eu.europa.ec.eudi:pid:1"
        ]
      },
      "claims": [
        {
          "path": [
            "given_name"
          ]
        },
        {
          "path": [
            "family_name"
          ]
        },
        {
          "path": [
            "age_over_18"
          ]
        }
      ]
    }
  ]
}
schema_link
/json-schemas/oid4vp/dcql_request.json
2026-07-19 01:52:17 SUCCESS
CheckForUnexpectedParametersInDcqlQuery
DCQL query input is valid
input
{
  "credentials": [
    {
      "id": "eudi_pid",
      "format": "dc+sd-jwt",
      "meta": {
        "vct_values": [
          "urn:eu.europa.ec.eudi:pid:1"
        ]
      },
      "claims": [
        {
          "path": [
            "given_name"
          ]
        },
        {
          "path": [
            "family_name"
          ]
        },
        {
          "path": [
            "age_over_18"
          ]
        }
      ]
    }
  ]
}
schema_link
/json-schemas/oid4vp/dcql_request.json
2026-07-19 01:52:17 SUCCESS
CheckDCQLQueryCredentialFormatMatchesTestConfiguration
DCQL query credential format matches test configuration
expected_format
dc+sd-jwt
credential_count
1
2026-07-19 01:52:17 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "state": "y5qJtzyXQF_tjnABiefKPQ"
}
2026-07-19 01:52:17
CreateSdJwtKbCredentialWithInvalidSdHash
Filtered SD-JWT disclosures to DCQL requested claims
filtered_disclosures
2
requested_claims
[
  "age_over_18",
  "given_name",
  "family_name"
]
total_disclosures
7
2026-07-19 01:52:17
CreateSdJwtKbCredentialWithInvalidSdHash
Using invalid sd_hash in key binding JWT
original_sd_hash
qrfBdJe8WGskgww3sdDvhA7lvZ-BHm84wbHTnEY8kMo
invalid_sd_hash
qrfBdJe8WGskgww3sdDvhA7lvZ-BHm84wbHTnEY8kMoINVALID
2026-07-19 01:52:17
CreateSdJwtKbCredentialWithInvalidSdHash
Created an SD-JWT+KB
sdjwt
eyJ0eXAiOiJkYytzZC1qd3QiLCJhbGciOiJFUzI1NiJ9.eyJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2NvZGViLW9pZDR2cC1oYWlwLXYyIiwiX3NkIjpbIjRzTUFHOGZmS0Q1cGtHNHgtb2xmb3ZpX3FGZDZQeDZjb2NOSkJMZjFRTk0iLCJJbm4xRUF5MXN2TkFVdkM2eGlRNUJVZ2FBbE41bGh6ZThCb3l6WlF3d2RFIiwiSlJOTXl1Y2FUMHh6Y0Q3M0dmelVDYjRZN0dnZV9iQ3ROSEFJV0R6MWN1YyIsIkwzTWhYZ0hTX1NWMEhTRWFTbGRCTDROSkxLTE4xVTBnUmU2LTNhNjN1a00iLCJNb25keGFlTVpDZlFLMjFwWW9IZ3pJWnZYWDMxbE02MVRiNlB1Q29mMUc4IiwiVjlwN2lXeHltYVlVTjdqZ2w3ek9GRzl0ZUJLWnZKcnBDOTlNTjBzeGxtNCIsIlp2REVCb0FQelU4cWhGQ0ZHWnRNQjRxMDlCckJzbE9lNWc4RXNpWXZxX3MiLCJ3UFV4XzNfM3EzdmRzclNiMEgtTE1mSmRyWGpSVnV6cXgtam10elFrVFJVIl0sImNuZiI6eyJqd2siOnsia3R5IjoiRUMiLCJjcnYiOiJQLTI1NiIsIngiOiIyVTREQWszYmF3YkRaVmQtTklCX2RJbUFBdmV2QmtVdzZCU0p6WDM0Q1lFIiwieSI6IlN2WW1CbS0yT1FXcjVFTzVlRkR4cmlQR2ltdzZERUtDNTJ3VzJlOEswdVUifX0sImV4cCI6MTc4NTYzNTUzNywiaWF0IjoxNzg0NDI1OTM3LCJ2Y3QiOiJ1cm46ZXVkaTpwaWQ6MSJ9.As4K_t8NIQOtGmaCWxb4nvTmPUCMSlly_wwKfcKr1x-5z7fRUKJRTuBw3a43S45zsC86odfYoXK879tmShuvoA~WyJ1OE1xVlJPZnNNWXdIQTRVc2cwYzBBIiwiZ2l2ZW5fbmFtZSIsIkplYW4iXQ~WyJrd0JuNFU4d3ZPaGVBOXRkRmRNWklnIiwiZmFtaWx5X25hbWUiLCJEdXBvbnQiXQ~eyJ0eXAiOiJrYitqd3QiLCJhbGciOiJFUzI1NiJ9.eyJzZF9oYXNoIjoicXJmQmRKZThXR3NrZ3d3M3NkRHZoQTdsdlotQkhtODR3YkhUbkVZOGtNb0lOVkFMSUQiLCJhdWQiOiJ4NTA5X2hhc2g6ckN3Vk8yeXlrSjhySlVRcmxnYUxuZkY3VWphdEdqQWxLX1JjNFY5QmhCcyIsImlhdCI6MTc4NDQyNTkzNywibm9uY2UiOiJDZzNlMWt0MHhiakstRHJKQ3lZSFcwWXB6WWc3OC1CUnJ6VEY3ekFtdERjIn0.5YjBml2vpQUxBt6M8UL0VlMJWqkl-bHFyWmoJnR62sWZzz7MAYnYPqRa_tFSR7eKHRk5gEpsTQbAA-qVJFb-Zw
2026-07-19 01:52:17 SUCCESS
AddVP1FinalDCQLVPTokenToAuthorizationEndpointResponseParams
Added credential in DCQL 'vp_token' authorization endpoint response parameter
authorization_endpoint_response_params
{
  "state": "y5qJtzyXQF_tjnABiefKPQ",
  "vp_token": {
    "eudi_pid": [
      "eyJ0eXAiOiJkYytzZC1qd3QiLCJhbGciOiJFUzI1NiJ9.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.As4K_t8NIQOtGmaCWxb4nvTmPUCMSlly_wwKfcKr1x-5z7fRUKJRTuBw3a43S45zsC86odfYoXK879tmShuvoA~WyJ1OE1xVlJPZnNNWXdIQTRVc2cwYzBBIiwiZ2l2ZW5fbmFtZSIsIkplYW4iXQ~WyJrd0JuNFU4d3ZPaGVBOXRkRmRNWklnIiwiZmFtaWx5X25hbWUiLCJEdXBvbnQiXQ~eyJ0eXAiOiJrYitqd3QiLCJhbGciOiJFUzI1NiJ9.eyJzZF9oYXNoIjoicXJmQmRKZThXR3NrZ3d3M3NkRHZoQTdsdlotQkhtODR3YkhUbkVZOGtNb0lOVkFMSUQiLCJhdWQiOiJ4NTA5X2hhc2g6ckN3Vk8yeXlrSjhySlVRcmxnYUxuZkY3VWphdEdqQWxLX1JjNFY5QmhCcyIsImlhdCI6MTc4NDQyNTkzNywibm9uY2UiOiJDZzNlMWt0MHhiakstRHJKQ3lZSFcwWXB6WWc3OC1CUnJ6VEY3ekFtdERjIn0.5YjBml2vpQUxBt6M8UL0VlMJWqkl-bHFyWmoJnR62sWZzz7MAYnYPqRa_tFSR7eKHRk5gEpsTQbAA-qVJFb-Zw"
    ]
  }
}
2026-07-19 01:52:17
VP1FinalEncryptVPResponse
Encrypted the response
authorization_encrypted_response_alg
ECDH-ES
authorization_encrypted_response_enc
A128GCM
response
eyJlcGsiOnsia3R5IjoiRUMiLCJjcnYiOiJQLTI1NiIsIngiOiJOX1gzb3hRMmVtOFBxNklrTkVQMGs4VUJVMS1IVktfRkJNRFFEbmh3am93IiwieSI6IlYzSV9tOHgyS3Vob0JSUjRHNXBjeGVuYlRfbmNZNkJTXzcwVUozdWQwZTQifSwiYXB2IjoiYUVsUE4wMVhkMnhWWkRRMFJGWTVjQSIsImtpZCI6ImtLd21WMkhUY2RjIiwiYXB1IjoiYTNwWk9GcHRVbU5hWlRSYU5YQk9XZyIsImN0eSI6Impzb24iLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiRUNESC1FUyJ9..VBGU4Ac5FMHM2601.xGCarbrMGrWA4WL4Ncl2WqZiMpnsjR0MG2qF_bm_Lh9Rta4nATRkGckuNUDCpFyyt-ZG4t6vZNxDkJIK78hq9m5J5WyMZpI0H11Abb8FmpYNDL_6HGqU1U5NORYEuta7rgSKySCMh5h72fKeOatDBtnsvcSpoEXJlhUODW6Bamp6NlXzjtNPUCG1x-4f4p-k3AIdDBQjwugpBUzzDIGbk3JBbr-o_3uPK7xxXCAi-PCaZ0epZ4tv01aa18KCLUAocWs6FtKBZGYOI1PExkhSQQNrxMES3pMJYC5AD7ShIsLQh3nQURY5FLi7yEG_DUMhjWpKlAU5NeC_h-fzOpK6D0uJEveAzRnYIoacE9ph-z18XVy_-vfN36vJuDS5ZmMxt0APfG2y2Kom6bmh5ReMTowYnuTZXvzLgM7FxZC5vW_0K_8nDD_AqHMYN1dhkRvrSILZRA4LMFbhoM0GLgyUjN5yfpQL2HHEvIjk4RKDgEhUxtxiQBJjmtKo3ooptIoE6xdbv9ETBeEeLN3SE_E-HOarHr1f4wot9HEfJf8-jzaYTyQZtebLDYZaje3ND7t_1f8FP0ljpyh9V2QWb0BTDiGgxH5Gi-EI1zJHI2uFpEEA2Text7HRIKX_y6CE8tc0bpFviokpAI_MdAnyFW_gz0cE9EBZEoNW3PexV1RvIVe_ZdButZFpkn7ngVo-HJkQ8M6Il76KLjtmHOUyBfOkVGg9YhFn2yPS7PTWodo8XGs50zXZ3E5AVQMb2BHn1GD1vc4eu7T_ef8-B33Slt_L2oBJtKdZ6DlyLe4QedXZvpFGsOa8rbGPFZKmgyPvkwlCDYMmbH7ZFT_WAIbYckhPTHbF1YT91TT96IWy3aFT7RoqbU-UDVQhqWPwDJalFfbXAgi_LnshEgpQCIzDFFMWH2SzngeGN0OKc-yKDD4W8whkdHK-AviV5-Z_PTPNuc8tDP9mIdu6neF7KzBW85ZiGyDF4WiVpQ8nDwnzq5t6ELX41DYv6ebQNNB7HPJyRZB4fyRdY-AO8ZUrJFvvFdPhqIP6ijIQPYcmLby4pNEQnKTnnrwQTe1Kesgit3UHo7aFChNWmTDfD9L0rsICvbAgJbVldcGHTszsU5PaqaXf1maDIi2-KlxR4RiceVTdBDpDAiz88GSIjQRysk7Qk1EhL1_2VLdHnVX_k_F7O4TMxXLUgGyTib7Sx07TClfK_mxZNei_F1kif5CKqDUvo8itt-U7LRcQgnrvAHrdkzB9dM7SZzTRXc3y76JPno84D9gL2rMbz1lSUghqNUPXXobXuJm_oO1CYQndOndqehzd8bYwYvomCXoe95MXEbDtQBlICio_6fOr_qFenFmpfQL0onKNDgomim01norGUvmIWl7zLRiEIMuELeX1nYyilWiz-Cga_HZYgbm2rU56wkbXYBdAB2CeH_Argeyg-o_VqGW5Q9gMEYi2yAHmQGjNX802TGUQr8KcObLB6qCbn3jM0HLeOID2eKQGU7DdEl8hHTIROu8034RaZUqbl__aYm8vSsrbm4UnnRjPm-TWZNXb_PW9P2fyurRkXIWKPCR5jd0xFnq90OBBC_EUno5JfYdOZQ86GJmsKKEzudeuSnDdyOuL3TLnWYpiVcRNdrnYj-2CmmfqXNUcWKBetd1b9doMr_fISu8fe8dEHbi-C6H3XmyGlKiQFjLvEm0xfFS9oMnNU7VRNV2lnYniz8CLeOsubmzCexuJFvv30EkcechV03JA0wfAwFb2NVDxw-SwCfJg_tqS9hxvTWw2fgw3nEi1V7gZVW85KBfxmg-n2MKCyhtDgTc6Htrpn83OladiEw-ea0ppzbVpYOeYrtvyj052rSSZVn1YVFdoV9PiO4HF_y9rJK-tkEPQUOfyBMgP0O0GOxyd8pTBYjHT1qBScVppdI7Tqf1lK0b76nrmpLuAJvcZCPd5UwG6MUyz03aDrjdRk5y7YuixlHHiLsQZa8R3o5vgTUtxeh5PED77MUcQe8mxXqyDgkwJA1niGXY8w8TSDmLpLwJ2niY0Y8_81PqgqbzSZqQlHg8YW1g6B2xAnQnx5vhm1MzyNIYx9cSNmx9eg_dmYffLnP6C9onh.Vgk0VcAwSHbx4xMiVCjUqQ
apv
hIO7MWwlUd44DV9p
apu
kzY8ZmRcZe4Z5pNZ
apv_b64
{
  "value": "aElPN01Xd2xVZDQ0RFY5cA"
}
apu_b64
{
  "value": "a3pZOFptUmNaZTRaNXBOWg"
}
2026-07-19 01:52:17
CallDirectPostEndpoint
HTTP request
request_uri
https://phone.codeb.io/oidc.ashx?action=vp-response&id=8mwT-r-yZVsgWt-Rxg4F5g
request_method
POST
request_headers
{
  "Accept": "application/json",
  "Content-Type": "application/x-www-form-urlencoded",
  "Content-Length": "2507"
}
request_body
response=eyJlcGsiOnsia3R5IjoiRUMiLCJjcnYiOiJQLTI1NiIsIngiOiJOX1gzb3hRMmVtOFBxNklrTkVQMGs4VUJVMS1IVktfRkJNRFFEbmh3am93IiwieSI6IlYzSV9tOHgyS3Vob0JSUjRHNXBjeGVuYlRfbmNZNkJTXzcwVUozdWQwZTQifSwiYXB2IjoiYUVsUE4wMVhkMnhWWkRRMFJGWTVjQSIsImtpZCI6ImtLd21WMkhUY2RjIiwiYXB1IjoiYTNwWk9GcHRVbU5hWlRSYU5YQk9XZyIsImN0eSI6Impzb24iLCJlbmMiOiJBMTI4R0NNIiwiYWxnIjoiRUNESC1FUyJ9..VBGU4Ac5FMHM2601.xGCarbrMGrWA4WL4Ncl2WqZiMpnsjR0MG2qF_bm_Lh9Rta4nATRkGckuNUDCpFyyt-ZG4t6vZNxDkJIK78hq9m5J5WyMZpI0H11Abb8FmpYNDL_6HGqU1U5NORYEuta7rgSKySCMh5h72fKeOatDBtnsvcSpoEXJlhUODW6Bamp6NlXzjtNPUCG1x-4f4p-k3AIdDBQjwugpBUzzDIGbk3JBbr-o_3uPK7xxXCAi-PCaZ0epZ4tv01aa18KCLUAocWs6FtKBZGYOI1PExkhSQQNrxMES3pMJYC5AD7ShIsLQh3nQURY5FLi7yEG_DUMhjWpKlAU5NeC_h-fzOpK6D0uJEveAzRnYIoacE9ph-z18XVy_-vfN36vJuDS5ZmMxt0APfG2y2Kom6bmh5ReMTowYnuTZXvzLgM7FxZC5vW_0K_8nDD_AqHMYN1dhkRvrSILZRA4LMFbhoM0GLgyUjN5yfpQL2HHEvIjk4RKDgEhUxtxiQBJjmtKo3ooptIoE6xdbv9ETBeEeLN3SE_E-HOarHr1f4wot9HEfJf8-jzaYTyQZtebLDYZaje3ND7t_1f8FP0ljpyh9V2QWb0BTDiGgxH5Gi-EI1zJHI2uFpEEA2Text7HRIKX_y6CE8tc0bpFviokpAI_MdAnyFW_gz0cE9EBZEoNW3PexV1RvIVe_ZdButZFpkn7ngVo-HJkQ8M6Il76KLjtmHOUyBfOkVGg9YhFn2yPS7PTWodo8XGs50zXZ3E5AVQMb2BHn1GD1vc4eu7T_ef8-B33Slt_L2oBJtKdZ6DlyLe4QedXZvpFGsOa8rbGPFZKmgyPvkwlCDYMmbH7ZFT_WAIbYckhPTHbF1YT91TT96IWy3aFT7RoqbU-UDVQhqWPwDJalFfbXAgi_LnshEgpQCIzDFFMWH2SzngeGN0OKc-yKDD4W8whkdHK-AviV5-Z_PTPNuc8tDP9mIdu6neF7KzBW85ZiGyDF4WiVpQ8nDwnzq5t6ELX41DYv6ebQNNB7HPJyRZB4fyRdY-AO8ZUrJFvvFdPhqIP6ijIQPYcmLby4pNEQnKTnnrwQTe1Kesgit3UHo7aFChNWmTDfD9L0rsICvbAgJbVldcGHTszsU5PaqaXf1maDIi2-KlxR4RiceVTdBDpDAiz88GSIjQRysk7Qk1EhL1_2VLdHnVX_k_F7O4TMxXLUgGyTib7Sx07TClfK_mxZNei_F1kif5CKqDUvo8itt-U7LRcQgnrvAHrdkzB9dM7SZzTRXc3y76JPno84D9gL2rMbz1lSUghqNUPXXobXuJm_oO1CYQndOndqehzd8bYwYvomCXoe95MXEbDtQBlICio_6fOr_qFenFmpfQL0onKNDgomim01norGUvmIWl7zLRiEIMuELeX1nYyilWiz-Cga_HZYgbm2rU56wkbXYBdAB2CeH_Argeyg-o_VqGW5Q9gMEYi2yAHmQGjNX802TGUQr8KcObLB6qCbn3jM0HLeOID2eKQGU7DdEl8hHTIROu8034RaZUqbl__aYm8vSsrbm4UnnRjPm-TWZNXb_PW9P2fyurRkXIWKPCR5jd0xFnq90OBBC_EUno5JfYdOZQ86GJmsKKEzudeuSnDdyOuL3TLnWYpiVcRNdrnYj-2CmmfqXNUcWKBetd1b9doMr_fISu8fe8dEHbi-C6H3XmyGlKiQFjLvEm0xfFS9oMnNU7VRNV2lnYniz8CLeOsubmzCexuJFvv30EkcechV03JA0wfAwFb2NVDxw-SwCfJg_tqS9hxvTWw2fgw3nEi1V7gZVW85KBfxmg-n2MKCyhtDgTc6Htrpn83OladiEw-ea0ppzbVpYOeYrtvyj052rSSZVn1YVFdoV9PiO4HF_y9rJK-tkEPQUOfyBMgP0O0GOxyd8pTBYjHT1qBScVppdI7Tqf1lK0b76nrmpLuAJvcZCPd5UwG6MUyz03aDrjdRk5y7YuixlHHiLsQZa8R3o5vgTUtxeh5PED77MUcQe8mxXqyDgkwJA1niGXY8w8TSDmLpLwJ2niY0Y8_81PqgqbzSZqQlHg8YW1g6B2xAnQnx5vhm1MzyNIYx9cSNmx9eg_dmYffLnP6C9onh.Vgk0VcAwSHbx4xMiVCjUqQ
2026-07-19 01:52:17 RESPONSE
CallDirectPostEndpoint
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "cache-control": "private, no-store,no-store, no-cache, must-revalidate, max-age\u003d0",
  "pragma": "no-cache",
  "content-type": "application/json; charset\u003dutf-8",
  "expires": "0",
  "x-aspnet-version": "4.0.30319",
  "referrer-policy": "no-referrer",
  "x-content-type-options": "nosniff",
  "permissions-policy": "camera\u003d(self), microphone\u003d(self), display-capture\u003d(self)",
  "strict-transport-security": "max-age\u003d63072000; includeSubDomains",
  "date": "Sun, 19 Jul 2026 01:52:17 GMT",
  "content-length": "122"
}
response_body
{"error":"sd_hash_mismatch","error_description":"KB-JWT sd_hash does not match SHA-256 of presented SD-JWT + disclosures"}
2026-07-19 01:52:17 SUCCESS
CallDirectPostEndpoint
Parsed response uri endpoint response
status
400
endpoint_name
https://phone.codeb.io/oidc.ashx?action=vp-response&id=8mwT-r-yZVsgWt-Rxg4F5g
headers
{
  "cache-control": "private, no-store,no-store, no-cache, must-revalidate, max-age\u003d0",
  "pragma": "no-cache",
  "content-type": "application/json; charset\u003dutf-8",
  "expires": "0",
  "x-aspnet-version": "4.0.30319",
  "referrer-policy": "no-referrer",
  "x-content-type-options": "nosniff",
  "permissions-policy": "camera\u003d(self), microphone\u003d(self), display-capture\u003d(self)",
  "strict-transport-security": "max-age\u003d63072000; includeSubDomains",
  "date": "Sun, 19 Jul 2026 01:52:17 GMT",
  "content-length": "122"
}
body
{"error":"sd_hash_mismatch","error_description":"KB-JWT sd_hash does not match SHA-256 of presented SD-JWT + disclosures"}
body_json
{
  "error": "sd_hash_mismatch",
  "error_description": "KB-JWT sd_hash does not match SHA-256 of presented SD-JWT + disclosures"
}
2026-07-19 01:52:17 SUCCESS
EnsureHttpStatusCodeIs4xx
https://phone.codeb.io/oidc.ashx?action=vp-response&id=8mwT-r-yZVsgWt-Rxg4F5g endpoint http status code was 400
2026-07-19 01:52:17 OUTGOING
oid4vp-1final-verifier-invalid-sd-hash
Response to HTTP request to test instance fydnoLZUDJsEWDW
outgoing
ModelAndView [view="resultCaptured"; model={returnUrl=/log-detail.html?log=fydnoLZUDJsEWDW}]
outgoing_path
authorize
2026-07-19 01:52:17 FINISHED
oid4vp-1final-verifier-invalid-sd-hash
Test has run to completion
testmodule_result
PASSED
2026-07-19 01:52:28
TEST-RUNNER
Alias has now been claimed by another test
alias
codeb-oid4vp-haip-v2
new_test_id
l53Rh1DSc5FepuR
Test Results