Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

oidc: hybrid flow using token+code+id_token returns multiple tokens of the same type #223

Closed
aeneasr opened this issue Aug 20, 2016 · 3 comments
Closed

oidc: hybrid flow using token+code+id_token returns multiple tokens of the same type #223

aeneasr opened this issue Aug 20, 2016 · 3 comments
Assignees
@aeneasr
Labels
bug Something is not working. upstream Issue is caused by an upstream dependency.
Milestone
0.5.0

Comments

@aeneasr
Copy link
Member

aeneasr commented Aug 20, 2016

results in

http://localhost:4445/callback#
access_token=15Nxtqnbz6Lf5EdQxAIAFHtCN0-vrscT_oQg_07ximw.zNOApwlaNSMrfWjHGnEHDc343c6fBVJwbA0o8V4wiQQ

&access_token=XOxaKHQZ_zlom_M-ucKsM9LxxnMENQnwvntnIP3SZzw.GYBgO9M9U4w6zWplXzD9597-0Ql8B8mOCliCV_FnoxI

&code=Nm4Uzip7hWQgzK_jfgr7WdHlHHfv1fjvt0Icew2I9mA.IF6pb3NFkmgsexLhOoDKiWUix7LX2PsmCLui4rsqEdE

&expires_in=3600

&expires_in=3600

&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdF9oYXNoIjoiMG1wUDRWVlRqN1Iyb0xHOWxkaWdOZz09IiwiYXVkIjoiZDdmMmVlMDktOGQyOC00YmUyLWJiODktY2UzYTVlN2MzMjE3IiwiYXV0aF90aW1lIjoxNDcxNjkxNzAxLCJjX2hhc2giOiJyVmlzYklFWmZTOGh4eWVSN1UzSWRBPT0iLCJleHAiOjE0NzE2OTUzMDEsImlhdCI6MTQ3MTY5MTcwMSwiaXNzIjoiaHlkcmEubG9jYWxob3N0Iiwibm9uY2UiOiJvaXRjZXNyZmxlZ2JneWVoaXB2dmVpemciLCJzdWIiOiJqb2huLmRvZUBtZS5jb20ifQ.lstHZC2T43lwWtvJ0jpMDRj26IaZuDtQKvYteiW0HWbcrsKIdlrtfHuPlE6QJJc-1-I5AOpCJ4l9M8CPoYzvp5Slh8wmV5rELsJ5xq_lHD3nWqHORIFt13_UckqwD73N5i5K9ELfYeZ845-ecMzUg61pyZVWzwTDuLjLSp35wQb_R_CAGPygz4J1jjn3YVqtvVOiXkNTCP2MM3-2tUzbemCmw8xyDY8j5AKfjtOaKDqRRFwMr9NW0Na3GoQmAeKfenaUwg2qS3eMCHIPVUPkuoJvjEE5eo6YhJb0nzLXaQtRP-6L-wTBGCAysoUwDCTFKs4oGkk3SPUNFwDcRYUjwMmrn5sug1W6y7WHL4jP43CWvGeqIgMidK7augpjFXqsrmbNE3zzI6OVFi1g8EHJKuLrvE0pWyWipk8SnfjgK7aXSF0Iyg_uZszDRxdERJ2_jSFgiQwBUhO8HrJRrQ-4pCaaO-qGRnEE5vZP5UKi0yBn_U8LygX8ktq_vDAFrabCG1VOl2Bkx5KVC7qaJc2s0Tey1UDbrcrTRKNy_lUPOXNbkL9a-KoQUb1RApjW7OqiD7hpch1_nIVc7iXOqCY25SFbY2Q9GvZ-0FV0OkLOOZMKysxbY_q9RHUw56mED0ZmRWsrx7GtJT_L2UaqgZehkmipsDTjBXIpwPDKel2ep6g

&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdF9oYXNoIjoiMG1wUDRWVlRqN1Iyb0xHOWxkaWdOZz09IiwiYXVkIjoiZDdmMmVlMDktOGQyOC00YmUyLWJiODktY2UzYTVlN2MzMjE3IiwiYXV0aF90aW1lIjoxNDcxNjkxNzAxLCJjX2hhc2giOiJyVmlzYklFWmZTOGh4eWVSN1UzSWRBPT0iLCJleHAiOjE0NzE2OTUzMDEsImlhdCI6MTQ3MTY5MTcwMiwiaXNzIjoiaHlkcmEubG9jYWxob3N0Iiwibm9uY2UiOiJvaXRjZXNyZmxlZ2JneWVoaXB2dmVpemciLCJzdWIiOiJqb2huLmRvZUBtZS5jb20ifQ.LaVAwHAN2bPB_3eEvCE6V8ikmqi1SCu3YUFgRKKnWBA77uLxCXs2HWEQRSCwf_UFHhBAeAmBgQn1exj1yWLbw4XNviUQG_itXbb0ZRPPdyxHBjUGn6_nd__hsEU_U4hlEA9Nipc2vGlft1cXXIWlE6xi4Nko1Pp6vYnY2Zskvo4iruP4zyCdXxp0zu6HvxIhzPAmBdG6hAAx3KnlRYszN3TxxPEJlQVhowMb0OsYX2f073jjG_Q3n3vSoDx1bAtRM4HUH3XPqMYY1sNIIenIWK905XcRP4G6_NN5sxwZGqbqPi_SJuBiWEZs-q4co_Kh7RI0Khepb-2RdxY9wfj8lp4vhiTjE3P7WmlmAVO3tSrK9f5PB79X_1wOLaRB4_P4IZGrS7z7bKc619QH43VOFPXa6fx0rlIQ5RDaDlaL1NyaZ9x5qlny1ZxVbSEPnsTQZka11vyExSSdzcS42JcR9wpIN7tIDw0YFJbArP0YnCFjzkUSxpIA47AhHM1YFrM-uJ-67-pgwKZzcfA2Z3HdEmpJtMcAgwkiUZWkuBRwoVIowzRN2WpzJ4kqL22eZO3bi0UpSMSFcdHa7kS3s9RPma85RUd2pZySesW0ynSewU5gbLEqH_FP2f2xehXuyxgiJ_WdAFNAGMEA0Y14i_ZhTR49aCQAmC7mq3siVtkIYqQ

&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdF9oYXNoIjoiMG1wUDRWVlRqN1Iyb0xHOWxkaWdOZz09IiwiYXVkIjoiZDdmMmVlMDktOGQyOC00YmUyLWJiODktY2UzYTVlN2MzMjE3IiwiYXV0aF90aW1lIjoxNDcxNjkxNzAxLCJjX2hhc2giOiJyVmlzYklFWmZTOGh4eWVSN1UzSWRBPT0iLCJleHAiOjE0NzE2OTUzMDEsImlhdCI6MTQ3MTY5MTcwMiwiaXNzIjoiaHlkcmEubG9jYWxob3N0Iiwibm9uY2UiOiJvaXRjZXNyZmxlZ2JneWVoaXB2dmVpemciLCJzdWIiOiJqb2huLmRvZUBtZS5jb20ifQ.LaVAwHAN2bPB_3eEvCE6V8ikmqi1SCu3YUFgRKKnWBA77uLxCXs2HWEQRSCwf_UFHhBAeAmBgQn1exj1yWLbw4XNviUQG_itXbb0ZRPPdyxHBjUGn6_nd__hsEU_U4hlEA9Nipc2vGlft1cXXIWlE6xi4Nko1Pp6vYnY2Zskvo4iruP4zyCdXxp0zu6HvxIhzPAmBdG6hAAx3KnlRYszN3TxxPEJlQVhowMb0OsYX2f073jjG_Q3n3vSoDx1bAtRM4HUH3XPqMYY1sNIIenIWK905XcRP4G6_NN5sxwZGqbqPi_SJuBiWEZs-q4co_Kh7RI0Khepb-2RdxY9wfj8lp4vhiTjE3P7WmlmAVO3tSrK9f5PB79X_1wOLaRB4_P4IZGrS7z7bKc619QH43VOFPXa6fx0rlIQ5RDaDlaL1NyaZ9x5qlny1ZxVbSEPnsTQZka11vyExSSdzcS42JcR9wpIN7tIDw0YFJbArP0YnCFjzkUSxpIA47AhHM1YFrM-uJ-67-pgwKZzcfA2Z3HdEmpJtMcAgwkiUZWkuBRwoVIowzRN2WpzJ4kqL22eZO3bi0UpSMSFcdHa7kS3s9RPma85RUd2pZySesW0ynSewU5gbLEqH_FP2f2xehXuyxgiJ_WdAFNAGMEA0Y14i_ZhTR49aCQAmC7mq3siVtkIYqQ

&scope=hydra%252Boffline%252Bopenid
&scope=hydra%252Boffline%252Bopenid

&state=odkregpyganvrdhypavspffx
&state=odkregpyganvrdhypavspffx
&state=odkregpyganvrdhypavspffx

&token_type=bearer
&token_type=bearer
@aeneasr aeneasr added the bug Something is not working. label Aug 20, 2016
@aeneasr aeneasr self-assigned this Aug 20, 2016
@aeneasr
Copy link
Member Author

aeneasr commented Aug 20, 2016

id token variation comes from different iat values

@aeneasr
Copy link
Member Author

aeneasr commented Aug 20, 2016

Requesting token id_token works fine. It's likely that the implicit flow is executed as well as the hybrid flow, duplicating the keys.

#access_token=jVXhCjomYFNdz8D067Kzrf0i3V6B3arLAha3PBySuck.Kzg6pg5mZk9bgtnd29uv1BtM-7RMwvphGjhUOe-QQNU

&expires_in=3600
&id_token=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdF9oYXNoIjoiRnJBS04ra0g4MXo2b1VDbDJuUzVRUT09IiwiYXVkIjoiZDdmMmVlMDktOGQyOC00YmUyLWJiODktY2UzYTVlN2MzMjE3IiwiYXV0aF90aW1lIjoxNDcxNjkyMDE1LCJleHAiOjE0NzE2OTU2MTUsImlhdCI6MTQ3MTY5MjAxNSwiaXNzIjoiaHlkcmEubG9jYWxob3N0Iiwibm9uY2UiOiJtY3hzbG5hcmRpYnFqYmFoaWRpZXd3bXEiLCJzdWIiOiJqb2huLmRvZUBtZS5jb20ifQ.uP_Fq7pCyyHh3_eXZW07w49qYCZlJcXrda4zDNP4TLS3b-Sjcit2sC_mznmv-Mv2-l8YFcyBW4VgxxRVWtyaweUDfn3aqW82NXiNRHwLyDi5CJDjzitaeyGRIUgQr8Kp2arXUl9gUNdfZiv5GKGNTA3hXynvwD-Gq9_5FCeXTeBT3VWaumH3v0kNc5bIWgU0cfM2a7leBQmbfpdJR8_atP5Rr0ox0CMFgr1AOn3tcS356bvSGeEHhT9DWxdXW9cJ37nIkinbkhx6Tb9k_EjV3XdwdzdeVg4kieBQWJBReRGiRtGXzyXrbfUOM2mv9yz8-p_QJ5v9gRQ-hV0oe3tgSsF1sG5LSAIZwMCwyn07Xc3wT8py6AwVExuLHztETsVJZYsr_LzbGC-2BAsaA8HQJwbETY_KWC_PqsfSwX1kRrKX9bSgPa9HXl4rEVZNfO9ce89XGg9aBygy_hvd5Y0rVsdb1u7XpL3o59hgKjd05AMQb1zOs62P37siO1TtoXCvgjokhVZwQqHAsuUdxbt9B4BgIk36R94dLGK_gRDkBa_k0uGy5xWeTHfJHDEkZOsdYZAGFozwPQn8RMEvjU3d4LHOnGPaPrY56AazXnxtJsESHqtQWo-H2wp-lZF3UgOJD6ISKP3-3S_e-oNDGIOPsYyUA0OpiRtbhJhIxxvUn6k

&scope=hydra%252Boffline%252Bopenid
&state=pmatbmvqdabnypfgehfuiuew
&token_type=bearer

@aeneasr aeneasr mentioned this issue Aug 24, 2016
Closed
@aeneasr aeneasr added the upstream Issue is caused by an upstream dependency. label Sep 7, 2016
@aeneasr aeneasr mentioned this issue Sep 22, 2016
Closed
@aeneasr
Copy link
Member Author

aeneasr commented Sep 22, 2016

resolved by ory/fosite@d681fc8

@aeneasr aeneasr closed this as completed Sep 22, 2016
@aeneasr aeneasr mentioned this issue Sep 23, 2016
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aeneasr aeneasr

Labels
bug Something is not working. upstream Issue is caused by an upstream dependency.
Projects
None yet
Milestone
0.5.0
Development

No branches or pull requests
1 participant
@aeneasr