Token introspection - invalid token (9.11.2.02) (FI-3257) #572
Labels
bug
This is a bug in Inferno
g10-test-kit
This issue affects onc-certification-g10-test-kit
smart-app-launch-test-kit
This issue affects smart-app-launch-test-kit
will fix
Issue is planned to be addressed in future release
Comments
|
Hello @cheng13231 Thank you for reaching out to Inferno team. Does your server require Authorization header for token introspection endpoint? |
|
Yes, it does, and I configured it in the setting "HTTP Authorization Header for Introspection Request". I would assume that the |
|
We may have a bug in this test. I will do future investigation. Thank you for reporting this |
yunwwang
changed the title
yunwwang
added
will fix
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Test 9.11.2.02 fails for me when running g10 test suite locally, please see the screenshot below.
Given an invalid token, the test expects 200 response code, however 401 returns. I tried to POST a similar request to my authorization server, I do get 200 response, see screenshot below for the postman request
When I check the log in my authorization server, I find some differences, see screenshot below
Seems that Test 9.11.2.02 doesn't properly send the
authorizationheader provided in the test config to my authorization server. But, the strange thing to me is that Test 9.11.2.01 is passed. Could you please help me to check what I did wrong?The text was updated successfully, but these errors were encountered: