The API Documentation states:
user - the name of the user who needs to be authenticated
password - the password of the user who needs to be authenticated
identityContext - the identityContext (usually realm) of the user
It should be the users realm in OID.
But weren't you already testing the context?