Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-05-19 13:14:36 INFO
TEST-RUNNER
Test instance bflCkEBiHXjIrHg created
baseUrl
https://www.certification.openid.net/test/a/fapi-rw-mtls
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_profile": "plain_fapi",
  "fapi_response_mode": "plain_response"
}
alias
fapi-rw-mtls
description
Finansystech Auth Server FAPI-RW-ID2-OB with MTLS
planId
D8flKuJBmdkwL
config
{
  "alias": "fapi-rw-mtls",
  "description": "Finansystech Auth Server FAPI-RW-ID2-OB with MTLS",
  "server": {
    "discoveryUrl": "https://identity.finansystech.com.br/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "banku",
    "scope": "openid offline_access",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I",
          "use": "sig",
          "alg": "PS256",
          "e": "AQAB",
          "n": "wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q",
          "d": "wBWlt-ZWj3GSZDOJ2e-3AsWiINIViMj_tDIzWQ2BE1GkAtRhdSRYAbYTUXR-AeOzfNVLrDktMnoNfTNaGAsby4pABSwIf5PtzcRZnSUteNOTj5j-Hko8Ls18BmCBFS5Tehpg7nc530k39obAZZCB7E6v343sPYcSk2RC9geZMoqEphlr2PbxL_eg5WMi_8OH6LD_ZtVK4_4AL18N-Wp-IeyryeDbXFY3LQg803mlpGVJfyX1MJ8Ih9u7VjAVvj1VAI7wjlpdn0wcYRTLfE9AGhCbcft19KEY5Y_J_W549z1pzrT7IzOPwQ6XomPlPtEhgbdC5NaCwpaFFc1LIoYmaQ",
          "p": "6QDZnDarDlKTCkgA3nJaxmInaqXfkaYateY-b5fExT9ItG2H8EZCczdLcR_zmtPI1pCBYj5UFQv5Ncno6tejWpSxCSZWkQqPz43jR4ohFnZwHhAJmYy-euL4CoDK3Q5A80DiY7Ke33rYMQHW3iw4WcOy_aMNdBlrK0jBTrTAOms",
          "q": "1kUGk7LFjFlckxoW-wF4dmJfTjnTPdlD98NY2JCE3IfNSy8BLQqJSwAdWL-hiFDnL-CVPkHXm_y2FJxpJkWYW_r0mEgaONixvYl34VI8OUiOQFcPDlCZTlZ0-TToPfR4KpPd0kCHbyuvsWFg65rW8RTfCibgk5YaHmDOLpjt_Ac",
          "dp": "fOs3v8iPbN5YduqjjJ9Ci5mUCFllw3CKYXtPfgSgOh_zmsgeWXNRrPO4Pq4irJ9ezaors8A21BHXSj814LI7ohSV1ZH4V0qST3SCpZgopSJaecOfYfNTLA8DbJ4gJOO_bqsatNjO1IHH5n5V9EdA7t881z7Tt6rpCgu3l7rQVIE",
          "dq": "jq6OT6I3DFuhWs9_yAvVpLejEVtOQJxCN2Wc7zFlV9kSquMVHGIsxIXCBQwuy7BcErSxjTCZG-VvdlAlcPfdGjsFz7YLyBj8WuOEscVqFxcqqsuOWhDv1Yua_yvtDvyRXID0sIKJ7UyhBTR8LsgAI6-rSn5TA9RrdhkukzcBGtc",
          "qi": "wo6ngHh8Dr83ziUpVpnKpgBT7XyUhRjbjNnGK8jtxGwwnJ_tP_PF25cAfubvW307zmeNlmi74zgKlnFYlp9C5FxrOXzJgpgsJ90qgP-YYST_zTXIqFFhkvNhCmvazH_PVkEl49uxDfBmKPWOqp5SR-yPoQacA10A0lP6CLF7wE0"
        }
      ]
    }
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIDejCCAmICFAPvOaso1OHW+df3YYVB4NMPvGaJMA0GCSqGSIb3DQEBCwUAMHYx\nCzAJBgNVBAYTAkJSMRIwEAYDVQQIDAlTYW8gUGF1bG8xEDAOBgNVBAcMB0JhcnVl\ncmkxFDASBgNVBAoMC1NtYXJ0ZnlsYWJzMQwwCgYDVQQLDANEZXYxHTAbBgNVBAMM\nFGNsaWVudC5sb2NhbGhvc3QuY29tMB4XDTIxMDUwNjExNDkyOFoXDTIyMDUwNjEx\nNDkyOFowfTELMAkGA1UEBhMCQlIxEjAQBgNVBAgMCVNhbyBQYXVsbzEQMA4GA1UE\nBwwHQmFydWVyaTEUMBIGA1UECgwLU21hcnRmeWxhYnMxDDAKBgNVBAsMA0RldjEk\nMCIGA1UEAwwbY2xpZW50LmNsaWVudC5sb2NhbGhvc3QuY29tMIIBIjANBgkqhkiG\n9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7LY20NowxdChCXOwdOEbHset4X4z6vrgb3kd\nR1Avlnb62CMO+HWV7bPZPfJOQ/kyEjHBtuPU73RRUkBDSB2/dJ1NrEVfb6uW54LJ\noLXUnPSrs6OvQSQXr1t2vqe1SLl0tO8ojMFxyzQdCuO9sMPbJCnx2WKMZOMb2pYj\n36A176Zv5S1p6atPvk7EWUtk22tdlAmQkC5a7eqmUoIWyjShwA1cASwGX2Te6tGA\nC2KyHI2+2chH07h6O4cwpS6YApArvZ7/NZfKSHj5XHVBXqmix/6QePE/1zfvyPrq\n1JdkFWVuOIzWqrkD7ZMSn+dos1RQWyd05iegGCOO0CLaiPGn4QIDAQABMA0GCSqG\nSIb3DQEBCwUAA4IBAQByhxBjf9h51if3xM0HSftv7X1axGE2Q34YwZbwXEn96VZp\n80x6/b0xzm9uuOiPUgudq1wmjMP0qakRJnsxApokQ91teLpiywfWmzICZiPxeOum\n8ZXrUfw89/VQZRL1OmjAmEdUTkHplG801mNqslk53KtYOeS3eR7lsXZ9Gziv8FIY\nVSM2oeqx4y9jKUGPyg+QRZaanmEv8wil97l2ScQcs6Ge+38nfkoDpYcT47uPyPvQ\n1AuG3gsO3yy8ZIDIx2YMWC1ucxsHWswlweqfL/bJ3IHNRfzdfBeT+kDT+GdOWTXx\nL5E+XlSCuxLTA55r8VAg+G1P32wDn1rcGc0y3ayA\n-----END CERTIFICATE-----",
    "key": "-----BEGIN PRIVATE KEY-----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\ncoYHlk8J4he8EpdgyfIzcg\u003d\u003d\n-----END PRIVATE KEY-----",
    "ca": "-----BEGIN CERTIFICATE-----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\nUt4r9/TwNTM3T8soxEOqNoKq6xdcRlw\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "smartbank",
    "scope": "openid offline_access",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "tx1nc963Ui5STkZpuxS3eRWU3DOsyxDnCMBTtlPEISE",
          "use": "sig",
          "alg": "PS256",
          "e": "AQAB",
          "n": "xh34qK8WI7TYqV8ol3HqDPkvtcAPogLJ4-P5f6op6KJYu_5k0-Osu-e5ur2oh5JOgOF0A7CkYmrVot3BhV1uargoDm3iszeXAheniEfUjoGppUYo8F19qzHtBOvk21GIs4lkA9oHlBc-B1nBw4O9qmYdKISSTM-jwTj2cqorltxACQljAmVelGdjlHJbQgQnhQJA1KdoIOF7jHPM3ivLCyHeMlzjUd1LGDRVbJqNAgb0kjZIVQ2JuxRtMa1SY0p3wwx0k6vGcPmIBbg8lbGxOaku_cHViqXcIgovHh6_vWxCxsgk5Llc30uiHUO2C-YcpUiZqMMCSPCuXy2k3DvdOw",
          "d": "gXTELzV5eguKJ-KOW6eMEL4jdtfxXyQDWG53cfx3NhQfd3hb2jlDfeWFb4jOvwfTVFP9wwuB3u2Ae9P7yHGs3P9I7WTQZdtFSZC7YEnPku8XM3ANAEOXAm61OioKeWVltitotzuZCCPH3HXCL0e-f8IJ-5flIVvs3S2jnHml0gUhv1chmDbzGiahWMkIdu0XYec9axNMytzdqmEfXISy_Hb1T_lOOq_pzVbjl6fIMla2m0NqsRfprEiYTaR3mmfPPL4IuAoF-x9GjmgOmSyAerfYqDvcrPRdrUJUu-9ajPX1wcmQ3Wpd50j2EdKx4zJXGaGH3BULxwq0zTqLrDSDgQ",
          "p": "-jQ9mGksnikO_IenvAtj-nmfrpVRoA5wgb0GEOdDXy6SHTMZqPX2rpf_a8KAAPyC7jKpTUQQuAK5-2oDYBeEmzzoibhAlMOt9iqRjdgNOrGxN2IGNhFTD1sUCdQMKymPwSXxhjtdywQJNIHC_GxKq6TcDXKdZhyZ8TC9AG-xNpM",
          "q": "yrTYOE9UtWnN-uBZXjimHb81z_lRJLepgA5GsyGXE4Y6bQZxxWgC5WaFcTSUsH-RdSs4M51h2qNYXFFR0u4vfnm483oUyd5tLgOeQnXvrgLfmtR4-aoY6uV5EyyvNj5ZgEps0WiVzJL0-DtG7pOsgC-TCW2X0FMJh1UV3htV_7k",
          "dp": "BPxphdICu5wh2lJxu0OW2HT4A6iiGchv4YX8yvVw2EK7Uq2kA0PziIMq6eDUYDCoA0srKIkEtEYJosL4EkAlulo6YBQ15UEJBHDQubzmdpb36xye9xDdUN8FxTRekbWgUb8J0xz3v4XzEQLM-e7Ghikg4Xu5O0Gyp6XK_mk7ZNU",
          "dq": "hgBfH3pyCStUm5BMA9l3FxscO8wZNCilyJ2nZyvBb4rAfOpRs6o6n-PSOzADS1pJkidsE9LqqVpqQz0O1l3Wz8kv1uTRcVG040JJEK5eL65-mx_yiTlFF6NzEpXrjfRRvll07koxHPfZMXAeSAEfe-33SbhFL9Z06h35QsbXZyE",
          "qi": "876O5OBDpW912xdDS5MmCNG9YgKjNZ80-ETWgXOpoQfvk3tZvE5aGe_FXuYoKQFtnTAnjixYY8PRURTsvlu8O5-zJFjcL1rGG4NBszvb8W2WbUSdjSuU7VEB9rVfmQV0I9ff92dmGwL9KhuMWNtbvWIH-fjgDLtkUjYqnO0pDaQ"
        }
      ]
    }
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----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\nRebwp8uI+BbQJkeiXit02tC5YgDrWFrzLFHq3hJ7yA\u003d\u003d\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----\nMIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC/EtIvjxT56djo\nOfoTDQoGs2E85QKowKt2kLHT+K3AT9AZkogWYOsyE0ETyCKGE/OM6xhSKyqrd3KK\nP/5/v4l7C/VatL0XkTONjoHO+yeG6Rq5qS33Ag7ySYA3MIUDyLSYrFlCAiaebwRd\nkxwQmQhj4YbIzyEu3lfzdz+FfiCpnnxaAhVeFnQ/we94oseGBODgsmdMwA43Cd1v\nBGXsidZaAOaI5JaM2oCwh/0ID02Fc9zyWhbolYvn37aFxtrAj7kwkjyRciM0j9tS\nvaKsZC17IY0bidP3rXmiIj6qVNse+JZ9QA1+tUiYEdbBlVLlHCLFX38DRCetXVVs\nKPR06mETAgMBAAECggEAJsO6wMtWhh1bVEHu6k6K6jEaWTBdCb+NCdDxQwAAwDNx\nFL8VvPSMwuwFF+5SksEZeE158bGwRnlFU6cICwLg8YXLkUt50X4z51QyIbvymPxR\n37jjCmnwfldLG+dMFShy+0Z8FVg6XYpIaHOgDf3+JcVrgvIC2W9iiJJ44KxmFAMp\nk+dBNAQJJx88Dk8ytziLYmoDgVSo+S/gII207+UCRNO4AqMDnC7n86sUURBG8SCr\nUkzHAGZgHYpd6fQ2Uq6N3cKMd125roJf/pCymiKnx8FgjjEjOuUTK+xM7EMrqRhJ\nwuON8gIrOAPrGcyBV2iNc0keumin6sU8PwdJQGY2AQKBgQDiKULpNy/I4MMDlIez\nGtZggIxfy/54mVCbg8hlj9lRtvebDiVZpkz05v9K45K2T1pJFJ2jeLNtRBwolTz1\nR1ZAcP8//CyaS/kPUjNyg2BwNSHKFr3lyqnw+8riLsfR+G3u/i/3XVE9kohuOjpo\nmBWLC0iot3oa7Ss10WDb8AOdUQKBgQDYSHOZTBNknCOFC6ERNub7FOCZ7BzhcOJb\nybJ/8jdoae3wK6u1rTRvtDgjRpfapmVt6tOvQWqU3D7d8+Lrz2Nbjaj4YytUTWbE\nlytISeBGeAl1tA02VsAa9dThZpnSYydnNEFcQveojbeOxb7SMleFA+XQ/bUOiH3F\nkXjDp2ovIwKBgQDXLU7eOYWbaE3jUCQ0QmqJcoUceChrceOBs0atasnnt1+qBTGA\nNHuv30AyboeeMa3DLnw1lpeQdGceLa/L5s2njlss8680NuiGrT0JzPmqiMLXVf/j\nbIl4IPkNbljr66Qc6XeVsRGktZBc38XG0jxdCKVe8QKaL+EW2VmAqMGnoQKBgCDV\nVt81wlfqsCW5bzkqyYPiVnpncrbyqRpgEz4DKlAqjJmCN6373lL62+7W/6SM0CcQ\nmBQp7SEuEkklhhRgRmgWqEkU3PYOTgSYIlT2ChsIi/8XV04he0ZcfXW+Wqmqrceo\nEigMboZjBTOiZ2aHh+vEfLXuXfcX12gPvnKNTrxbAoGBALMdfdqq8o48Schs2Ge8\nIhW1gv4efMpWL5JcbmaCLCj8ci/hyPqhPPVlhIxHtq80zXcW8DdCV6Yb8gkLQ1PY\noygW2/BhCGpqvLMtv4eRjj8fkE9CJTolqKuk4xL53wo0lSC/9PU3tU3gLHXfAZrN\nyHUXA9ByQrR1FcV+SXt/wmjL\n-----END PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----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\nUt4r9/TwNTM3T8soxEOqNoKq6xdcRlw\u003d\n-----END CERTIFICATE-----\n"
  },
  "resource": {
    "resourceUrl": "https://api.finansystech.com.br/accounts"
  }
}
testName
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
2021-05-19 13:14:36 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
2021-05-19 13:14:36
GetDynamicServerConfiguration
HTTP request
request_uri
https://identity.finansystech.com.br/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-05-19 13:14:36 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "2007",
  "date": "Wed, 19 May 2021 13:14:36 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"acr_values_supported":["urn:mace:incommon:iap:silver"],"authorization_endpoint":"https://identity.finansystech.com.br/auth","claims_parameter_supported":true,"claims_supported":["sub","acr","sid","auth_time","iss","address"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://identity.finansystech.com.br/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials"],"id_token_signing_alg_values_supported":["RS256","PS256","ES256"],"issuer":"https://identity.finansystech.com.br","jwks_uri":"https://identity.finansystech.com.br/jwks","registration_endpoint":"https://identity.finansystech.com.br/reg","response_modes_supported":["form_post","fragment","query"],"response_types_supported":["code id_token","code","id_token","none"],"scopes_supported":["openid","offline_access"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["client_secret_basic","client_secret_jwt","client_secret_post","none","private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"token_endpoint":"https://identity.finansystech.com.br/token","pushed_authorization_request_endpoint":"https://identity.finansystech.com.br/request","request_object_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"require_signed_request_object":true,"userinfo_endpoint":"https://identity.finansystech.com.br/me","introspection_endpoint":"https://identity.finansystech.com.br/token/introspection","introspection_endpoint_auth_methods_supported":["client_secret_basic","client_secret_jwt","client_secret_post","none","private_key_jwt","tls_client_auth"],"introspection_endpoint_auth_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"tls_client_certificate_bound_access_tokens":true,"claim_types_supported":["normal"]}
2021-05-19 13:14:36
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"acr_values_supported":["urn:mace:incommon:iap:silver"],"authorization_endpoint":"https://identity.finansystech.com.br/auth","claims_parameter_supported":true,"claims_supported":["sub","acr","sid","auth_time","iss","address"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://identity.finansystech.com.br/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials"],"id_token_signing_alg_values_supported":["RS256","PS256","ES256"],"issuer":"https://identity.finansystech.com.br","jwks_uri":"https://identity.finansystech.com.br/jwks","registration_endpoint":"https://identity.finansystech.com.br/reg","response_modes_supported":["form_post","fragment","query"],"response_types_supported":["code id_token","code","id_token","none"],"scopes_supported":["openid","offline_access"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["client_secret_basic","client_secret_jwt","client_secret_post","none","private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"token_endpoint":"https://identity.finansystech.com.br/token","pushed_authorization_request_endpoint":"https://identity.finansystech.com.br/request","request_object_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"require_signed_request_object":true,"userinfo_endpoint":"https://identity.finansystech.com.br/me","introspection_endpoint":"https://identity.finansystech.com.br/token/introspection","introspection_endpoint_auth_methods_supported":["client_secret_basic","client_secret_jwt","client_secret_post","none","private_key_jwt","tls_client_auth"],"introspection_endpoint_auth_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"tls_client_certificate_bound_access_tokens":true,"claim_types_supported":["normal"]}
2021-05-19 13:14:36 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
acr_values_supported
[
  "urn:mace:incommon:iap:silver"
]
authorization_endpoint
https://identity.finansystech.com.br/auth
claims_parameter_supported
true
claims_supported
[
  "sub",
  "acr",
  "sid",
  "auth_time",
  "iss",
  "address"
]
code_challenge_methods_supported
[
  "S256"
]
end_session_endpoint
https://identity.finansystech.com.br/session/end
grant_types_supported
[
  "implicit",
  "authorization_code",
  "refresh_token",
  "client_credentials"
]
id_token_signing_alg_values_supported
[
  "RS256",
  "PS256",
  "ES256"
]
issuer
https://identity.finansystech.com.br
jwks_uri
https://identity.finansystech.com.br/jwks
registration_endpoint
https://identity.finansystech.com.br/reg
response_modes_supported
[
  "form_post",
  "fragment",
  "query"
]
response_types_supported
[
  "code id_token",
  "code",
  "id_token",
  "none"
]
scopes_supported
[
  "openid",
  "offline_access"
]
subject_types_supported
[
  "public"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_jwt",
  "client_secret_post",
  "none",
  "private_key_jwt",
  "tls_client_auth"
]
token_endpoint_auth_signing_alg_values_supported
[
  "HS256",
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
token_endpoint
https://identity.finansystech.com.br/token
pushed_authorization_request_endpoint
https://identity.finansystech.com.br/request
request_object_signing_alg_values_supported
[
  "HS256",
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
require_signed_request_object
true
userinfo_endpoint
https://identity.finansystech.com.br/me
introspection_endpoint
https://identity.finansystech.com.br/token/introspection
introspection_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_jwt",
  "client_secret_post",
  "none",
  "private_key_jwt",
  "tls_client_auth"
]
introspection_endpoint_auth_signing_alg_values_supported
[
  "HS256",
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
tls_client_certificate_bound_access_tokens
true
claim_types_supported
[
  "normal"
]
2021-05-19 13:14:36 INFO
AddMTLSEndpointAliasesToEnvironment
The mtls_endpoint_aliases is not present in the server configuration
server
{
  "acr_values_supported": [
    "urn:mace:incommon:iap:silver"
  ],
  "authorization_endpoint": "https://identity.finansystech.com.br/auth",
  "claims_parameter_supported": true,
  "claims_supported": [
    "sub",
    "acr",
    "sid",
    "auth_time",
    "iss",
    "address"
  ],
  "code_challenge_methods_supported": [
    "S256"
  ],
  "end_session_endpoint": "https://identity.finansystech.com.br/session/end",
  "grant_types_supported": [
    "implicit",
    "authorization_code",
    "refresh_token",
    "client_credentials"
  ],
  "id_token_signing_alg_values_supported": [
    "RS256",
    "PS256",
    "ES256"
  ],
  "issuer": "https://identity.finansystech.com.br",
  "jwks_uri": "https://identity.finansystech.com.br/jwks",
  "registration_endpoint": "https://identity.finansystech.com.br/reg",
  "response_modes_supported": [
    "form_post",
    "fragment",
    "query"
  ],
  "response_types_supported": [
    "code id_token",
    "code",
    "id_token",
    "none"
  ],
  "scopes_supported": [
    "openid",
    "offline_access"
  ],
  "subject_types_supported": [
    "public"
  ],
  "token_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_jwt",
    "client_secret_post",
    "none",
    "private_key_jwt",
    "tls_client_auth"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "RS256",
    "PS256",
    "ES256",
    "EdDSA"
  ],
  "token_endpoint": "https://identity.finansystech.com.br/token",
  "pushed_authorization_request_endpoint": "https://identity.finansystech.com.br/request",
  "request_object_signing_alg_values_supported": [
    "HS256",
    "RS256",
    "PS256",
    "ES256",
    "EdDSA"
  ],
  "request_parameter_supported": true,
  "request_uri_parameter_supported": true,
  "require_request_uri_registration": true,
  "require_signed_request_object": true,
  "userinfo_endpoint": "https://identity.finansystech.com.br/me",
  "introspection_endpoint": "https://identity.finansystech.com.br/token/introspection",
  "introspection_endpoint_auth_methods_supported": [
    "client_secret_basic",
    "client_secret_jwt",
    "client_secret_post",
    "none",
    "private_key_jwt",
    "tls_client_auth"
  ],
  "introspection_endpoint_auth_signing_alg_values_supported": [
    "HS256",
    "RS256",
    "PS256",
    "ES256",
    "EdDSA"
  ],
  "tls_client_certificate_bound_access_tokens": true,
  "claim_types_supported": [
    "normal"
  ]
}
2021-05-19 13:14:36 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-05-19 13:14:36 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "identity.finansystech.com.br",
  "testPort": 443
}
authorization_endpoint
{
  "testHost": "identity.finansystech.com.br",
  "testPort": 443
}
token_endpoint
{
  "testHost": "identity.finansystech.com.br",
  "testPort": 443
}
userinfo_endpoint
{
  "testHost": "identity.finansystech.com.br",
  "testPort": 443
}
2021-05-19 13:14:36
FetchServerKeys
Fetching server key
jwks_uri
https://identity.finansystech.com.br/jwks
2021-05-19 13:14:36
FetchServerKeys
HTTP request
request_uri
https://identity.finansystech.com.br/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-05-19 13:14:36 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "content-type": "application/jwk-set+json; charset\u003dutf-8",
  "content-length": "1119",
  "date": "Wed, 19 May 2021 13:14:36 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","kid":"BEjWzI7tnR7OYLFqZ8IYGvBsv-XOcoqbB2Sk8bwEdj4","alg":"RS256","e":"AQAB","n":"wuBDnII0QRSSkZOQN6efOE-V8i0aI86pVbNIkfpdsjVmgCX9zzZUH2eYVfKNgOJWmGZI7DRi-Xg8Alzib8cA_AJVI46vdY2z_aebA3TsOMarqNeY6Rb9t6cWQijRaJZ-TyD8aFJTprmEiwYLuBn-gkhRM_jgCOVQ-eOPv2P8XfsYOOXZ6T9Njuxo4AfgyVfGYEhDMBZlPLzVInvzSl_VDG1FCsA7WYa36p8QoykC0gsqmLdQVI1WPfCYeMKonHCrGlenz8XDhEHKzrTdSwyvISGIokcIkCu5xlhoG_zYIwkjnwfF6cQi00aa0wFZK0poQx1Dul06VztIxOxOIX-Jdw"},{"kty":"RSA","use":"sig","kid":"6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k","alg":"PS256","e":"AQAB","n":"tP7jKiIcfXFmdpPAFLH5pewp40fLyWUwcot0EGDHso0neTU4MiLhsSg-MW0ZkAG-AY89uP4NtSC0eS5z3wn93OsQl98csAvSFNSaNP1mBtFNhIT02sfvHZ-cy-JZWooL533qSuVwyb3Bv8XcatvADdhD3rCRo7DmHiVyNCXbs-lDDznStzfCmIrMP94JbbSEANFZxdodlhhAirZQdXqmbYtUVjmId2RoOMRaclNLvb_x4qFzpFiywfq_OOx6f6DSr_pliEOIFDQl_GZmL8CrUL1qt0EGMvFggXAOc8EG-cqTogCDzFfa_Gax_7GERLIiQBakmSOuGKayKC9ztfkSxw"},{"kty":"EC","use":"sig","kid":"lGk872Up_vWyNfYCsIDXLfm4kHSF3B4GLrRWKVAwZiU","alg":"ES256","crv":"P-256","x":"J-IScol5naHZ3n3NONAWt1bwjnq2tjA2csfRWBOATmc","y":"BzXAD4328gri5RieEC8HpLQt-WI3Z6atWwSgi86hZjQ"}]}
2021-05-19 13:14:36
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","kid":"BEjWzI7tnR7OYLFqZ8IYGvBsv-XOcoqbB2Sk8bwEdj4","alg":"RS256","e":"AQAB","n":"wuBDnII0QRSSkZOQN6efOE-V8i0aI86pVbNIkfpdsjVmgCX9zzZUH2eYVfKNgOJWmGZI7DRi-Xg8Alzib8cA_AJVI46vdY2z_aebA3TsOMarqNeY6Rb9t6cWQijRaJZ-TyD8aFJTprmEiwYLuBn-gkhRM_jgCOVQ-eOPv2P8XfsYOOXZ6T9Njuxo4AfgyVfGYEhDMBZlPLzVInvzSl_VDG1FCsA7WYa36p8QoykC0gsqmLdQVI1WPfCYeMKonHCrGlenz8XDhEHKzrTdSwyvISGIokcIkCu5xlhoG_zYIwkjnwfF6cQi00aa0wFZK0poQx1Dul06VztIxOxOIX-Jdw"},{"kty":"RSA","use":"sig","kid":"6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k","alg":"PS256","e":"AQAB","n":"tP7jKiIcfXFmdpPAFLH5pewp40fLyWUwcot0EGDHso0neTU4MiLhsSg-MW0ZkAG-AY89uP4NtSC0eS5z3wn93OsQl98csAvSFNSaNP1mBtFNhIT02sfvHZ-cy-JZWooL533qSuVwyb3Bv8XcatvADdhD3rCRo7DmHiVyNCXbs-lDDznStzfCmIrMP94JbbSEANFZxdodlhhAirZQdXqmbYtUVjmId2RoOMRaclNLvb_x4qFzpFiywfq_OOx6f6DSr_pliEOIFDQl_GZmL8CrUL1qt0EGMvFggXAOc8EG-cqTogCDzFfa_Gax_7GERLIiQBakmSOuGKayKC9ztfkSxw"},{"kty":"EC","use":"sig","kid":"lGk872Up_vWyNfYCsIDXLfm4kHSF3B4GLrRWKVAwZiU","alg":"ES256","crv":"P-256","x":"J-IScol5naHZ3n3NONAWt1bwjnq2tjA2csfRWBOATmc","y":"BzXAD4328gri5RieEC8HpLQt-WI3Z6atWwSgi86hZjQ"}]}
2021-05-19 13:14:36 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "BEjWzI7tnR7OYLFqZ8IYGvBsv-XOcoqbB2Sk8bwEdj4",
      "alg": "RS256",
      "e": "AQAB",
      "n": "wuBDnII0QRSSkZOQN6efOE-V8i0aI86pVbNIkfpdsjVmgCX9zzZUH2eYVfKNgOJWmGZI7DRi-Xg8Alzib8cA_AJVI46vdY2z_aebA3TsOMarqNeY6Rb9t6cWQijRaJZ-TyD8aFJTprmEiwYLuBn-gkhRM_jgCOVQ-eOPv2P8XfsYOOXZ6T9Njuxo4AfgyVfGYEhDMBZlPLzVInvzSl_VDG1FCsA7WYa36p8QoykC0gsqmLdQVI1WPfCYeMKonHCrGlenz8XDhEHKzrTdSwyvISGIokcIkCu5xlhoG_zYIwkjnwfF6cQi00aa0wFZK0poQx1Dul06VztIxOxOIX-Jdw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k",
      "alg": "PS256",
      "e": "AQAB",
      "n": "tP7jKiIcfXFmdpPAFLH5pewp40fLyWUwcot0EGDHso0neTU4MiLhsSg-MW0ZkAG-AY89uP4NtSC0eS5z3wn93OsQl98csAvSFNSaNP1mBtFNhIT02sfvHZ-cy-JZWooL533qSuVwyb3Bv8XcatvADdhD3rCRo7DmHiVyNCXbs-lDDznStzfCmIrMP94JbbSEANFZxdodlhhAirZQdXqmbYtUVjmId2RoOMRaclNLvb_x4qFzpFiywfq_OOx6f6DSr_pliEOIFDQl_GZmL8CrUL1qt0EGMvFggXAOc8EG-cqTogCDzFfa_Gax_7GERLIiQBakmSOuGKayKC9ztfkSxw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "lGk872Up_vWyNfYCsIDXLfm4kHSF3B4GLrRWKVAwZiU",
      "alg": "ES256",
      "crv": "P-256",
      "x": "J-IScol5naHZ3n3NONAWt1bwjnq2tjA2csfRWBOATmc",
      "y": "BzXAD4328gri5RieEC8HpLQt-WI3Z6atWwSgi86hZjQ"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "BEjWzI7tnR7OYLFqZ8IYGvBsv-XOcoqbB2Sk8bwEdj4",
      "alg": "RS256",
      "e": "AQAB",
      "n": "wuBDnII0QRSSkZOQN6efOE-V8i0aI86pVbNIkfpdsjVmgCX9zzZUH2eYVfKNgOJWmGZI7DRi-Xg8Alzib8cA_AJVI46vdY2z_aebA3TsOMarqNeY6Rb9t6cWQijRaJZ-TyD8aFJTprmEiwYLuBn-gkhRM_jgCOVQ-eOPv2P8XfsYOOXZ6T9Njuxo4AfgyVfGYEhDMBZlPLzVInvzSl_VDG1FCsA7WYa36p8QoykC0gsqmLdQVI1WPfCYeMKonHCrGlenz8XDhEHKzrTdSwyvISGIokcIkCu5xlhoG_zYIwkjnwfF6cQi00aa0wFZK0poQx1Dul06VztIxOxOIX-Jdw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k",
      "alg": "PS256",
      "e": "AQAB",
      "n": "tP7jKiIcfXFmdpPAFLH5pewp40fLyWUwcot0EGDHso0neTU4MiLhsSg-MW0ZkAG-AY89uP4NtSC0eS5z3wn93OsQl98csAvSFNSaNP1mBtFNhIT02sfvHZ-cy-JZWooL533qSuVwyb3Bv8XcatvADdhD3rCRo7DmHiVyNCXbs-lDDznStzfCmIrMP94JbbSEANFZxdodlhhAirZQdXqmbYtUVjmId2RoOMRaclNLvb_x4qFzpFiywfq_OOx6f6DSr_pliEOIFDQl_GZmL8CrUL1qt0EGMvFggXAOc8EG-cqTogCDzFfa_Gax_7GERLIiQBakmSOuGKayKC9ztfkSxw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "lGk872Up_vWyNfYCsIDXLfm4kHSF3B4GLrRWKVAwZiU",
      "alg": "ES256",
      "crv": "P-256",
      "x": "J-IScol5naHZ3n3NONAWt1bwjnq2tjA2csfRWBOATmc",
      "y": "BzXAD4328gri5RieEC8HpLQt-WI3Z6atWwSgi86hZjQ"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-05-19 13:14:36 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-05-19 13:14:36 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-05-19 13:14:36 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "BEjWzI7tnR7OYLFqZ8IYGvBsv-XOcoqbB2Sk8bwEdj4",
      "alg": "RS256",
      "e": "AQAB",
      "n": "wuBDnII0QRSSkZOQN6efOE-V8i0aI86pVbNIkfpdsjVmgCX9zzZUH2eYVfKNgOJWmGZI7DRi-Xg8Alzib8cA_AJVI46vdY2z_aebA3TsOMarqNeY6Rb9t6cWQijRaJZ-TyD8aFJTprmEiwYLuBn-gkhRM_jgCOVQ-eOPv2P8XfsYOOXZ6T9Njuxo4AfgyVfGYEhDMBZlPLzVInvzSl_VDG1FCsA7WYa36p8QoykC0gsqmLdQVI1WPfCYeMKonHCrGlenz8XDhEHKzrTdSwyvISGIokcIkCu5xlhoG_zYIwkjnwfF6cQi00aa0wFZK0poQx1Dul06VztIxOxOIX-Jdw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k",
      "alg": "PS256",
      "e": "AQAB",
      "n": "tP7jKiIcfXFmdpPAFLH5pewp40fLyWUwcot0EGDHso0neTU4MiLhsSg-MW0ZkAG-AY89uP4NtSC0eS5z3wn93OsQl98csAvSFNSaNP1mBtFNhIT02sfvHZ-cy-JZWooL533qSuVwyb3Bv8XcatvADdhD3rCRo7DmHiVyNCXbs-lDDznStzfCmIrMP94JbbSEANFZxdodlhhAirZQdXqmbYtUVjmId2RoOMRaclNLvb_x4qFzpFiywfq_OOx6f6DSr_pliEOIFDQl_GZmL8CrUL1qt0EGMvFggXAOc8EG-cqTogCDzFfa_Gax_7GERLIiQBakmSOuGKayKC9ztfkSxw"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "lGk872Up_vWyNfYCsIDXLfm4kHSF3B4GLrRWKVAwZiU",
      "alg": "ES256",
      "crv": "P-256",
      "x": "J-IScol5naHZ3n3NONAWt1bwjnq2tjA2csfRWBOATmc",
      "y": "BzXAD4328gri5RieEC8HpLQt-WI3Z6atWwSgi86hZjQ"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
banku
scope
openid offline_access
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q",
      "d": "wBWlt-ZWj3GSZDOJ2e-3AsWiINIViMj_tDIzWQ2BE1GkAtRhdSRYAbYTUXR-AeOzfNVLrDktMnoNfTNaGAsby4pABSwIf5PtzcRZnSUteNOTj5j-Hko8Ls18BmCBFS5Tehpg7nc530k39obAZZCB7E6v343sPYcSk2RC9geZMoqEphlr2PbxL_eg5WMi_8OH6LD_ZtVK4_4AL18N-Wp-IeyryeDbXFY3LQg803mlpGVJfyX1MJ8Ih9u7VjAVvj1VAI7wjlpdn0wcYRTLfE9AGhCbcft19KEY5Y_J_W549z1pzrT7IzOPwQ6XomPlPtEhgbdC5NaCwpaFFc1LIoYmaQ",
      "p": "6QDZnDarDlKTCkgA3nJaxmInaqXfkaYateY-b5fExT9ItG2H8EZCczdLcR_zmtPI1pCBYj5UFQv5Ncno6tejWpSxCSZWkQqPz43jR4ohFnZwHhAJmYy-euL4CoDK3Q5A80DiY7Ke33rYMQHW3iw4WcOy_aMNdBlrK0jBTrTAOms",
      "q": "1kUGk7LFjFlckxoW-wF4dmJfTjnTPdlD98NY2JCE3IfNSy8BLQqJSwAdWL-hiFDnL-CVPkHXm_y2FJxpJkWYW_r0mEgaONixvYl34VI8OUiOQFcPDlCZTlZ0-TToPfR4KpPd0kCHbyuvsWFg65rW8RTfCibgk5YaHmDOLpjt_Ac",
      "dp": "fOs3v8iPbN5YduqjjJ9Ci5mUCFllw3CKYXtPfgSgOh_zmsgeWXNRrPO4Pq4irJ9ezaors8A21BHXSj814LI7ohSV1ZH4V0qST3SCpZgopSJaecOfYfNTLA8DbJ4gJOO_bqsatNjO1IHH5n5V9EdA7t881z7Tt6rpCgu3l7rQVIE",
      "dq": "jq6OT6I3DFuhWs9_yAvVpLejEVtOQJxCN2Wc7zFlV9kSquMVHGIsxIXCBQwuy7BcErSxjTCZG-VvdlAlcPfdGjsFz7YLyBj8WuOEscVqFxcqqsuOWhDv1Yua_yvtDvyRXID0sIKJ7UyhBTR8LsgAI6-rSn5TA9RrdhkukzcBGtc",
      "qi": "wo6ngHh8Dr83ziUpVpnKpgBT7XyUhRjbjNnGK8jtxGwwnJ_tP_PF25cAfubvW307zmeNlmi74zgKlnFYlp9C5FxrOXzJgpgsJ90qgP-YYST_zTXIqFFhkvNhCmvazH_PVkEl49uxDfBmKPWOqp5SR-yPoQacA10A0lP6CLF7wE0"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2021-05-19 13:14:36 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
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
2021-05-19 13:14:36 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-05-19 13:14:36 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q",
      "d": "wBWlt-ZWj3GSZDOJ2e-3AsWiINIViMj_tDIzWQ2BE1GkAtRhdSRYAbYTUXR-AeOzfNVLrDktMnoNfTNaGAsby4pABSwIf5PtzcRZnSUteNOTj5j-Hko8Ls18BmCBFS5Tehpg7nc530k39obAZZCB7E6v343sPYcSk2RC9geZMoqEphlr2PbxL_eg5WMi_8OH6LD_ZtVK4_4AL18N-Wp-IeyryeDbXFY3LQg803mlpGVJfyX1MJ8Ih9u7VjAVvj1VAI7wjlpdn0wcYRTLfE9AGhCbcft19KEY5Y_J_W549z1pzrT7IzOPwQ6XomPlPtEhgbdC5NaCwpaFFc1LIoYmaQ",
      "p": "6QDZnDarDlKTCkgA3nJaxmInaqXfkaYateY-b5fExT9ItG2H8EZCczdLcR_zmtPI1pCBYj5UFQv5Ncno6tejWpSxCSZWkQqPz43jR4ohFnZwHhAJmYy-euL4CoDK3Q5A80DiY7Ke33rYMQHW3iw4WcOy_aMNdBlrK0jBTrTAOms",
      "q": "1kUGk7LFjFlckxoW-wF4dmJfTjnTPdlD98NY2JCE3IfNSy8BLQqJSwAdWL-hiFDnL-CVPkHXm_y2FJxpJkWYW_r0mEgaONixvYl34VI8OUiOQFcPDlCZTlZ0-TToPfR4KpPd0kCHbyuvsWFg65rW8RTfCibgk5YaHmDOLpjt_Ac",
      "dp": "fOs3v8iPbN5YduqjjJ9Ci5mUCFllw3CKYXtPfgSgOh_zmsgeWXNRrPO4Pq4irJ9ezaors8A21BHXSj814LI7ohSV1ZH4V0qST3SCpZgopSJaecOfYfNTLA8DbJ4gJOO_bqsatNjO1IHH5n5V9EdA7t881z7Tt6rpCgu3l7rQVIE",
      "dq": "jq6OT6I3DFuhWs9_yAvVpLejEVtOQJxCN2Wc7zFlV9kSquMVHGIsxIXCBQwuy7BcErSxjTCZG-VvdlAlcPfdGjsFz7YLyBj8WuOEscVqFxcqqsuOWhDv1Yua_yvtDvyRXID0sIKJ7UyhBTR8LsgAI6-rSn5TA9RrdhkukzcBGtc",
      "qi": "wo6ngHh8Dr83ziUpVpnKpgBT7XyUhRjbjNnGK8jtxGwwnJ_tP_PF25cAfubvW307zmeNlmi74zgKlnFYlp9C5FxrOXzJgpgsJ90qgP-YYST_zTXIqFFhkvNhCmvazH_PVkEl49uxDfBmKPWOqp5SR-yPoQacA10A0lP6CLF7wE0"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I",
      "alg": "PS256",
      "n": "wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-05-19 13:14:36 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-05-19 13:14:36 SUCCESS
FAPICheckKeyAlgInClientJWKs
Found a key with alg PS256 or ES256
2021-05-19 13:14:36 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q",
      "d": "wBWlt-ZWj3GSZDOJ2e-3AsWiINIViMj_tDIzWQ2BE1GkAtRhdSRYAbYTUXR-AeOzfNVLrDktMnoNfTNaGAsby4pABSwIf5PtzcRZnSUteNOTj5j-Hko8Ls18BmCBFS5Tehpg7nc530k39obAZZCB7E6v343sPYcSk2RC9geZMoqEphlr2PbxL_eg5WMi_8OH6LD_ZtVK4_4AL18N-Wp-IeyryeDbXFY3LQg803mlpGVJfyX1MJ8Ih9u7VjAVvj1VAI7wjlpdn0wcYRTLfE9AGhCbcft19KEY5Y_J_W549z1pzrT7IzOPwQ6XomPlPtEhgbdC5NaCwpaFFc1LIoYmaQ",
      "p": "6QDZnDarDlKTCkgA3nJaxmInaqXfkaYateY-b5fExT9ItG2H8EZCczdLcR_zmtPI1pCBYj5UFQv5Ncno6tejWpSxCSZWkQqPz43jR4ohFnZwHhAJmYy-euL4CoDK3Q5A80DiY7Ke33rYMQHW3iw4WcOy_aMNdBlrK0jBTrTAOms",
      "q": "1kUGk7LFjFlckxoW-wF4dmJfTjnTPdlD98NY2JCE3IfNSy8BLQqJSwAdWL-hiFDnL-CVPkHXm_y2FJxpJkWYW_r0mEgaONixvYl34VI8OUiOQFcPDlCZTlZ0-TToPfR4KpPd0kCHbyuvsWFg65rW8RTfCibgk5YaHmDOLpjt_Ac",
      "dp": "fOs3v8iPbN5YduqjjJ9Ci5mUCFllw3CKYXtPfgSgOh_zmsgeWXNRrPO4Pq4irJ9ezaors8A21BHXSj814LI7ohSV1ZH4V0qST3SCpZgopSJaecOfYfNTLA8DbJ4gJOO_bqsatNjO1IHH5n5V9EdA7t881z7Tt6rpCgu3l7rQVIE",
      "dq": "jq6OT6I3DFuhWs9_yAvVpLejEVtOQJxCN2Wc7zFlV9kSquMVHGIsxIXCBQwuy7BcErSxjTCZG-VvdlAlcPfdGjsFz7YLyBj8WuOEscVqFxcqqsuOWhDv1Yua_yvtDvyRXID0sIKJ7UyhBTR8LsgAI6-rSn5TA9RrdhkukzcBGtc",
      "qi": "wo6ngHh8Dr83ziUpVpnKpgBT7XyUhRjbjNnGK8jtxGwwnJ_tP_PF25cAfubvW307zmeNlmi74zgKlnFYlp9C5FxrOXzJgpgsJ90qgP-YYST_zTXIqFFhkvNhCmvazH_PVkEl49uxDfBmKPWOqp5SR-yPoQacA10A0lP6CLF7wE0"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
Verify configuration of second client
2021-05-19 13:14:36 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
smartbank
scope
openid offline_access
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "tx1nc963Ui5STkZpuxS3eRWU3DOsyxDnCMBTtlPEISE",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "xh34qK8WI7TYqV8ol3HqDPkvtcAPogLJ4-P5f6op6KJYu_5k0-Osu-e5ur2oh5JOgOF0A7CkYmrVot3BhV1uargoDm3iszeXAheniEfUjoGppUYo8F19qzHtBOvk21GIs4lkA9oHlBc-B1nBw4O9qmYdKISSTM-jwTj2cqorltxACQljAmVelGdjlHJbQgQnhQJA1KdoIOF7jHPM3ivLCyHeMlzjUd1LGDRVbJqNAgb0kjZIVQ2JuxRtMa1SY0p3wwx0k6vGcPmIBbg8lbGxOaku_cHViqXcIgovHh6_vWxCxsgk5Llc30uiHUO2C-YcpUiZqMMCSPCuXy2k3DvdOw",
      "d": "gXTELzV5eguKJ-KOW6eMEL4jdtfxXyQDWG53cfx3NhQfd3hb2jlDfeWFb4jOvwfTVFP9wwuB3u2Ae9P7yHGs3P9I7WTQZdtFSZC7YEnPku8XM3ANAEOXAm61OioKeWVltitotzuZCCPH3HXCL0e-f8IJ-5flIVvs3S2jnHml0gUhv1chmDbzGiahWMkIdu0XYec9axNMytzdqmEfXISy_Hb1T_lOOq_pzVbjl6fIMla2m0NqsRfprEiYTaR3mmfPPL4IuAoF-x9GjmgOmSyAerfYqDvcrPRdrUJUu-9ajPX1wcmQ3Wpd50j2EdKx4zJXGaGH3BULxwq0zTqLrDSDgQ",
      "p": "-jQ9mGksnikO_IenvAtj-nmfrpVRoA5wgb0GEOdDXy6SHTMZqPX2rpf_a8KAAPyC7jKpTUQQuAK5-2oDYBeEmzzoibhAlMOt9iqRjdgNOrGxN2IGNhFTD1sUCdQMKymPwSXxhjtdywQJNIHC_GxKq6TcDXKdZhyZ8TC9AG-xNpM",
      "q": "yrTYOE9UtWnN-uBZXjimHb81z_lRJLepgA5GsyGXE4Y6bQZxxWgC5WaFcTSUsH-RdSs4M51h2qNYXFFR0u4vfnm483oUyd5tLgOeQnXvrgLfmtR4-aoY6uV5EyyvNj5ZgEps0WiVzJL0-DtG7pOsgC-TCW2X0FMJh1UV3htV_7k",
      "dp": "BPxphdICu5wh2lJxu0OW2HT4A6iiGchv4YX8yvVw2EK7Uq2kA0PziIMq6eDUYDCoA0srKIkEtEYJosL4EkAlulo6YBQ15UEJBHDQubzmdpb36xye9xDdUN8FxTRekbWgUb8J0xz3v4XzEQLM-e7Ghikg4Xu5O0Gyp6XK_mk7ZNU",
      "dq": "hgBfH3pyCStUm5BMA9l3FxscO8wZNCilyJ2nZyvBb4rAfOpRs6o6n-PSOzADS1pJkidsE9LqqVpqQz0O1l3Wz8kv1uTRcVG040JJEK5eL65-mx_yiTlFF6NzEpXrjfRRvll07koxHPfZMXAeSAEfe-33SbhFL9Z06h35QsbXZyE",
      "qi": "876O5OBDpW912xdDS5MmCNG9YgKjNZ80-ETWgXOpoQfvk3tZvE5aGe_FXuYoKQFtnTAnjixYY8PRURTsvlu8O5-zJFjcL1rGG4NBszvb8W2WbUSdjSuU7VEB9rVfmQV0I9ff92dmGwL9KhuMWNtbvWIH-fjgDLtkUjYqnO0pDaQ"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2021-05-19 13:14:36 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
MIIDezCCAmMCFAPvOaso1OHW+df3YYVB4NMPvGaLMA0GCSqGSIb3DQEBCwUAMHYxCzAJBgNVBAYTAkJSMRIwEAYDVQQIDAlTYW8gUGF1bG8xEDAOBgNVBAcMB0JhcnVlcmkxFDASBgNVBAoMC1NtYXJ0ZnlsYWJzMQwwCgYDVQQLDANEZXYxHTAbBgNVBAMMFGNsaWVudC5sb2NhbGhvc3QuY29tMB4XDTIxMDUwNjE5NTE0NVoXDTIyMDUwNjE5NTE0NVowfjELMAkGA1UEBhMCQlIxEjAQBgNVBAgMCVNhbyBQYXVsbzEQMA4GA1UEBwwHQmFydWVyaTEUMBIGA1UECgwLU21hcnRmeWxhYnMxDDAKBgNVBAsMA0RldjElMCMGA1UEAwwcY2xpZW50Mi5jbGllbnQubG9jYWxob3N0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL8S0i+PFPnp2Og5+hMNCgazYTzlAqjAq3aQsdP4rcBP0BmSiBZg6zITQRPIIoYT84zrGFIrKqt3coo//n+/iXsL9Vq0vReRM42Ogc77J4bpGrmpLfcCDvJJgDcwhQPItJisWUICJp5vBF2THBCZCGPhhsjPIS7eV/N3P4V+IKmefFoCFV4WdD/B73iix4YE4OCyZ0zADjcJ3W8EZeyJ1loA5ojklozagLCH/QgPTYVz3PJaFuiVi+fftoXG2sCPuTCSPJFyIzSP21K9oqxkLXshjRuJ0/eteaIiPqpU2x74ln1ADX61SJgR1sGVUuUcIsVffwNEJ61dVWwo9HTqYRMCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAO9HZczxwXvrEh6k88PU1XanWTF1R5DVqXMPCbgHxQW5OQMpUhhEc3djRa+Gbds8KjlUbgp9wRR3VDhiKeIJllI0W2uYvk/E7nNqtXG82KQFLS0LDOwi9ws7L8EPcEDXMYCKIwF5C0HlaLcVlo0dIfTEIlPITr3etVg3gSbEcfQ9y3QnFSDuZJrCFrUPuNXeide8udyVKIoKVeXp47tKonsmgpfByE8miGgVHZfnqSCn4Jt+uunmzhyzsaIMA3aVqFY2GuDyNsXon9w+tQvMV8Z8X6axKi/e4K1q4wGDvqig1Rebwp8uI+BbQJkeiXit02tC5YgDrWFrzLFHq3hJ7yA==
key
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
ca
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
2021-05-19 13:14:36 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-05-19 13:14:36 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "tx1nc963Ui5STkZpuxS3eRWU3DOsyxDnCMBTtlPEISE",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "xh34qK8WI7TYqV8ol3HqDPkvtcAPogLJ4-P5f6op6KJYu_5k0-Osu-e5ur2oh5JOgOF0A7CkYmrVot3BhV1uargoDm3iszeXAheniEfUjoGppUYo8F19qzHtBOvk21GIs4lkA9oHlBc-B1nBw4O9qmYdKISSTM-jwTj2cqorltxACQljAmVelGdjlHJbQgQnhQJA1KdoIOF7jHPM3ivLCyHeMlzjUd1LGDRVbJqNAgb0kjZIVQ2JuxRtMa1SY0p3wwx0k6vGcPmIBbg8lbGxOaku_cHViqXcIgovHh6_vWxCxsgk5Llc30uiHUO2C-YcpUiZqMMCSPCuXy2k3DvdOw",
      "d": "gXTELzV5eguKJ-KOW6eMEL4jdtfxXyQDWG53cfx3NhQfd3hb2jlDfeWFb4jOvwfTVFP9wwuB3u2Ae9P7yHGs3P9I7WTQZdtFSZC7YEnPku8XM3ANAEOXAm61OioKeWVltitotzuZCCPH3HXCL0e-f8IJ-5flIVvs3S2jnHml0gUhv1chmDbzGiahWMkIdu0XYec9axNMytzdqmEfXISy_Hb1T_lOOq_pzVbjl6fIMla2m0NqsRfprEiYTaR3mmfPPL4IuAoF-x9GjmgOmSyAerfYqDvcrPRdrUJUu-9ajPX1wcmQ3Wpd50j2EdKx4zJXGaGH3BULxwq0zTqLrDSDgQ",
      "p": "-jQ9mGksnikO_IenvAtj-nmfrpVRoA5wgb0GEOdDXy6SHTMZqPX2rpf_a8KAAPyC7jKpTUQQuAK5-2oDYBeEmzzoibhAlMOt9iqRjdgNOrGxN2IGNhFTD1sUCdQMKymPwSXxhjtdywQJNIHC_GxKq6TcDXKdZhyZ8TC9AG-xNpM",
      "q": "yrTYOE9UtWnN-uBZXjimHb81z_lRJLepgA5GsyGXE4Y6bQZxxWgC5WaFcTSUsH-RdSs4M51h2qNYXFFR0u4vfnm483oUyd5tLgOeQnXvrgLfmtR4-aoY6uV5EyyvNj5ZgEps0WiVzJL0-DtG7pOsgC-TCW2X0FMJh1UV3htV_7k",
      "dp": "BPxphdICu5wh2lJxu0OW2HT4A6iiGchv4YX8yvVw2EK7Uq2kA0PziIMq6eDUYDCoA0srKIkEtEYJosL4EkAlulo6YBQ15UEJBHDQubzmdpb36xye9xDdUN8FxTRekbWgUb8J0xz3v4XzEQLM-e7Ghikg4Xu5O0Gyp6XK_mk7ZNU",
      "dq": "hgBfH3pyCStUm5BMA9l3FxscO8wZNCilyJ2nZyvBb4rAfOpRs6o6n-PSOzADS1pJkidsE9LqqVpqQz0O1l3Wz8kv1uTRcVG040JJEK5eL65-mx_yiTlFF6NzEpXrjfRRvll07koxHPfZMXAeSAEfe-33SbhFL9Z06h35QsbXZyE",
      "qi": "876O5OBDpW912xdDS5MmCNG9YgKjNZ80-ETWgXOpoQfvk3tZvE5aGe_FXuYoKQFtnTAnjixYY8PRURTsvlu8O5-zJFjcL1rGG4NBszvb8W2WbUSdjSuU7VEB9rVfmQV0I9ff92dmGwL9KhuMWNtbvWIH-fjgDLtkUjYqnO0pDaQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "tx1nc963Ui5STkZpuxS3eRWU3DOsyxDnCMBTtlPEISE",
      "alg": "PS256",
      "n": "xh34qK8WI7TYqV8ol3HqDPkvtcAPogLJ4-P5f6op6KJYu_5k0-Osu-e5ur2oh5JOgOF0A7CkYmrVot3BhV1uargoDm3iszeXAheniEfUjoGppUYo8F19qzHtBOvk21GIs4lkA9oHlBc-B1nBw4O9qmYdKISSTM-jwTj2cqorltxACQljAmVelGdjlHJbQgQnhQJA1KdoIOF7jHPM3ivLCyHeMlzjUd1LGDRVbJqNAgb0kjZIVQ2JuxRtMa1SY0p3wwx0k6vGcPmIBbg8lbGxOaku_cHViqXcIgovHh6_vWxCxsgk5Llc30uiHUO2C-YcpUiZqMMCSPCuXy2k3DvdOw"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-05-19 13:14:36 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-05-19 13:14:36 SUCCESS
FAPICheckKeyAlgInClientJWKs
Found a key with alg PS256 or ES256
2021-05-19 13:14:36 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "tx1nc963Ui5STkZpuxS3eRWU3DOsyxDnCMBTtlPEISE",
      "use": "sig",
      "alg": "PS256",
      "e": "AQAB",
      "n": "xh34qK8WI7TYqV8ol3HqDPkvtcAPogLJ4-P5f6op6KJYu_5k0-Osu-e5ur2oh5JOgOF0A7CkYmrVot3BhV1uargoDm3iszeXAheniEfUjoGppUYo8F19qzHtBOvk21GIs4lkA9oHlBc-B1nBw4O9qmYdKISSTM-jwTj2cqorltxACQljAmVelGdjlHJbQgQnhQJA1KdoIOF7jHPM3ivLCyHeMlzjUd1LGDRVbJqNAgb0kjZIVQ2JuxRtMa1SY0p3wwx0k6vGcPmIBbg8lbGxOaku_cHViqXcIgovHh6_vWxCxsgk5Llc30uiHUO2C-YcpUiZqMMCSPCuXy2k3DvdOw",
      "d": "gXTELzV5eguKJ-KOW6eMEL4jdtfxXyQDWG53cfx3NhQfd3hb2jlDfeWFb4jOvwfTVFP9wwuB3u2Ae9P7yHGs3P9I7WTQZdtFSZC7YEnPku8XM3ANAEOXAm61OioKeWVltitotzuZCCPH3HXCL0e-f8IJ-5flIVvs3S2jnHml0gUhv1chmDbzGiahWMkIdu0XYec9axNMytzdqmEfXISy_Hb1T_lOOq_pzVbjl6fIMla2m0NqsRfprEiYTaR3mmfPPL4IuAoF-x9GjmgOmSyAerfYqDvcrPRdrUJUu-9ajPX1wcmQ3Wpd50j2EdKx4zJXGaGH3BULxwq0zTqLrDSDgQ",
      "p": "-jQ9mGksnikO_IenvAtj-nmfrpVRoA5wgb0GEOdDXy6SHTMZqPX2rpf_a8KAAPyC7jKpTUQQuAK5-2oDYBeEmzzoibhAlMOt9iqRjdgNOrGxN2IGNhFTD1sUCdQMKymPwSXxhjtdywQJNIHC_GxKq6TcDXKdZhyZ8TC9AG-xNpM",
      "q": "yrTYOE9UtWnN-uBZXjimHb81z_lRJLepgA5GsyGXE4Y6bQZxxWgC5WaFcTSUsH-RdSs4M51h2qNYXFFR0u4vfnm483oUyd5tLgOeQnXvrgLfmtR4-aoY6uV5EyyvNj5ZgEps0WiVzJL0-DtG7pOsgC-TCW2X0FMJh1UV3htV_7k",
      "dp": "BPxphdICu5wh2lJxu0OW2HT4A6iiGchv4YX8yvVw2EK7Uq2kA0PziIMq6eDUYDCoA0srKIkEtEYJosL4EkAlulo6YBQ15UEJBHDQubzmdpb36xye9xDdUN8FxTRekbWgUb8J0xz3v4XzEQLM-e7Ghikg4Xu5O0Gyp6XK_mk7ZNU",
      "dq": "hgBfH3pyCStUm5BMA9l3FxscO8wZNCilyJ2nZyvBb4rAfOpRs6o6n-PSOzADS1pJkidsE9LqqVpqQz0O1l3Wz8kv1uTRcVG040JJEK5eL65-mx_yiTlFF6NzEpXrjfRRvll07koxHPfZMXAeSAEfe-33SbhFL9Z06h35QsbXZyE",
      "qi": "876O5OBDpW912xdDS5MmCNG9YgKjNZ80-ETWgXOpoQfvk3tZvE5aGe_FXuYoKQFtnTAnjixYY8PRURTsvlu8O5-zJFjcL1rGG4NBszvb8W2WbUSdjSuU7VEB9rVfmQV0I9ff92dmGwL9KhuMWNtbvWIH-fjgDLtkUjYqnO0pDaQ"
    }
  ]
}
2021-05-19 13:14:36 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2021-05-19 13:14:36 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://api.finansystech.com.br/accounts
2021-05-19 13:14:36 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://api.finansystech.com.br/accounts
2021-05-19 13:14:36 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "api.finansystech.com.br",
  "testPort": 443
}
2021-05-19 13:14:36 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "api.finansystech.com.br",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "api.finansystech.com.br",
  "testPort": 443
}
2021-05-19 13:14:36
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Setup Done
Make request to authorization endpoint
2021-05-19 13:14:36 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
banku
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
scope
openid offline_access
2021-05-19 13:14:36 SUCCESS
AddAcrClaimToAuthorizationEndpointRequest
Added acr claim to authorization_endpoint_request
authorization_endpoint_request
{
  "client_id": "banku",
  "redirect_uri": "https://www.certification.openid.net/test/a/fapi-rw-mtls/callback",
  "scope": "openid offline_access",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:mace:incommon:iap:silver",
        "essential": true
      }
    }
  }
}
2021-05-19 13:14:36
CreateRandomStateValue
Created state value
requested_state_length
10
state
FE66WwndrS
2021-05-19 13:14:36 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
banku
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
scope
openid offline_access
claims
{
  "id_token": {
    "acr": {
      "value": "urn:mace:incommon:iap:silver",
      "essential": true
    }
  }
}
state
FE66WwndrS
2021-05-19 13:14:36
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
fltEyEPxZL
2021-05-19 13:14:36 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
banku
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
scope
openid offline_access
claims
{
  "id_token": {
    "acr": {
      "value": "urn:mace:incommon:iap:silver",
      "essential": true
    }
  }
}
state
FE66WwndrS
nonce
fltEyEPxZL
2021-05-19 13:14:36 SUCCESS
SetAuthorizationEndpointRequestResponseTypeToCodeIdtoken
Added response_type parameter to request
client_id
banku
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
scope
openid offline_access
claims
{
  "id_token": {
    "acr": {
      "value": "urn:mace:incommon:iap:silver",
      "essential": true
    }
  }
}
state
FE66WwndrS
nonce
fltEyEPxZL
response_type
code id_token
2021-05-19 13:14:36 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "banku",
  "redirect_uri": "https://www.certification.openid.net/test/a/fapi-rw-mtls/callback",
  "scope": "openid offline_access",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:mace:incommon:iap:silver",
        "essential": true
      }
    }
  },
  "state": "FE66WwndrS",
  "nonce": "fltEyEPxZL",
  "response_type": "code id_token"
}
2021-05-19 13:14:36 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.621430376E9
2021-05-19 13:14:36 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://identity.finansystech.com.br
2021-05-19 13:14:36 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
banku
2021-05-19 13:14:36 SUCCESS
AddClientIdToRequestObject
Added client_id to request object claims
client_id
banku
2021-05-19 13:14:36 SUCCESS
SignRequestObject
Signed the request object
claims
{"aud":"https:\/\/identity.finansystech.com.br","scope":"openid offline_access","claims":{"id_token":{"acr":{"value":"urn:mace:incommon:iap:silver","essential":true}}},"iss":"banku","response_type":"code id_token","redirect_uri":"https:\/\/www.certification.openid.net\/test\/a\/fapi-rw-mtls\/callback","state":"FE66WwndrS","exp":1621430376,"nonce":"fltEyEPxZL","client_id":"banku"}
header
{"kid":"W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I","alg":"PS256"}
request_object
eyJraWQiOiJXNV9mUGw1dHBrVVVuakJsNFVpbGpGV2JaTi1uM2NNNEJYTlRxNHYwdDhJIiwiYWxnIjoiUFMyNTYifQ.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.ewwUfWiRuAZroGnBCj24bcWwE-s96eOUvYmC-0hx-9UADggHHnopZEYgjc3bHqs0CtOGGRGHnGBDEuel3SnWYF1KkDnqjOZKGmtoAxJltgrGY7pguJyhg_F5iDO5L3ee-9XQqEui_OMqerporzoyuI6B3QlTDrFOP9dJnViIV4CMUkqCAG7DUzzFiHQUAusmBXBfNhyB3p4k86xi45WkEkOMQsE4L5Uuyzy-oI6G-exsztYGl5SuO3IhGa6aY72MBNlVj0hbzfpHpKBDFUC5qq9l4XgCmAQgbzkjOEgeya5wrF6akH78CfsG8x4Fhm0SuRIV9e_LwNdh8Cseu3rwNA
key
{"p":"6QDZnDarDlKTCkgA3nJaxmInaqXfkaYateY-b5fExT9ItG2H8EZCczdLcR_zmtPI1pCBYj5UFQv5Ncno6tejWpSxCSZWkQqPz43jR4ohFnZwHhAJmYy-euL4CoDK3Q5A80DiY7Ke33rYMQHW3iw4WcOy_aMNdBlrK0jBTrTAOms","kty":"RSA","q":"1kUGk7LFjFlckxoW-wF4dmJfTjnTPdlD98NY2JCE3IfNSy8BLQqJSwAdWL-hiFDnL-CVPkHXm_y2FJxpJkWYW_r0mEgaONixvYl34VI8OUiOQFcPDlCZTlZ0-TToPfR4KpPd0kCHbyuvsWFg65rW8RTfCibgk5YaHmDOLpjt_Ac","d":"wBWlt-ZWj3GSZDOJ2e-3AsWiINIViMj_tDIzWQ2BE1GkAtRhdSRYAbYTUXR-AeOzfNVLrDktMnoNfTNaGAsby4pABSwIf5PtzcRZnSUteNOTj5j-Hko8Ls18BmCBFS5Tehpg7nc530k39obAZZCB7E6v343sPYcSk2RC9geZMoqEphlr2PbxL_eg5WMi_8OH6LD_ZtVK4_4AL18N-Wp-IeyryeDbXFY3LQg803mlpGVJfyX1MJ8Ih9u7VjAVvj1VAI7wjlpdn0wcYRTLfE9AGhCbcft19KEY5Y_J_W549z1pzrT7IzOPwQ6XomPlPtEhgbdC5NaCwpaFFc1LIoYmaQ","e":"AQAB","use":"sig","kid":"W5_fPl5tpkUUnjBl4UiljFWbZN-n3cM4BXNTq4v0t8I","qi":"wo6ngHh8Dr83ziUpVpnKpgBT7XyUhRjbjNnGK8jtxGwwnJ_tP_PF25cAfubvW307zmeNlmi74zgKlnFYlp9C5FxrOXzJgpgsJ90qgP-YYST_zTXIqFFhkvNhCmvazH_PVkEl49uxDfBmKPWOqp5SR-yPoQacA10A0lP6CLF7wE0","dp":"fOs3v8iPbN5YduqjjJ9Ci5mUCFllw3CKYXtPfgSgOh_zmsgeWXNRrPO4Pq4irJ9ezaors8A21BHXSj814LI7ohSV1ZH4V0qST3SCpZgopSJaecOfYfNTLA8DbJ4gJOO_bqsatNjO1IHH5n5V9EdA7t881z7Tt6rpCgu3l7rQVIE","alg":"PS256","dq":"jq6OT6I3DFuhWs9_yAvVpLejEVtOQJxCN2Wc7zFlV9kSquMVHGIsxIXCBQwuy7BcErSxjTCZG-VvdlAlcPfdGjsFz7YLyBj8WuOEscVqFxcqqsuOWhDv1Yua_yvtDvyRXID0sIKJ7UyhBTR8LsgAI6-rSn5TA9RrdhkukzcBGtc","n":"wwWJH7AavMMpg6sO5Nb03ZoopweJYgIEQZaFSJp9JtpcXDOCrttFsHfCSdg6RtaLtqZE5uYr8OUSP4mPHJlafSwnoAp19fGySmSvLC73g1DRqrgWvuOS_SzJU0dIAQNPaEV2k4xzSpBG8PrdJA3Eg7Pe9wEmOKmNJBPKlIqtWdFgKCXBz8SEA5P9WLfFywGM0Q_pXEdVQ95lwgSakCYgk-GVci6iD0LotE07mVD5uzrGvi8EyQBtjavB_Nc56rYzkwidy7sFx5jAoQyrHSWPbZWGGJEZs-MrmPm3LimJjjS49FapQ3hdqPWVmG5FQVqxlRz7lQOgdw8aItTzx9Hs7Q"}
2021-05-19 13:14:36 SUCCESS
BuildRequestObjectByValueRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://identity.finansystech.com.br/auth?request=eyJraWQiOiJXNV9mUGw1dHBrVVVuakJsNFVpbGpGV2JaTi1uM2NNNEJYTlRxNHYwdDhJIiwiYWxnIjoiUFMyNTYifQ.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.ewwUfWiRuAZroGnBCj24bcWwE-s96eOUvYmC-0hx-9UADggHHnopZEYgjc3bHqs0CtOGGRGHnGBDEuel3SnWYF1KkDnqjOZKGmtoAxJltgrGY7pguJyhg_F5iDO5L3ee-9XQqEui_OMqerporzoyuI6B3QlTDrFOP9dJnViIV4CMUkqCAG7DUzzFiHQUAusmBXBfNhyB3p4k86xi45WkEkOMQsE4L5Uuyzy-oI6G-exsztYGl5SuO3IhGa6aY72MBNlVj0hbzfpHpKBDFUC5qq9l4XgCmAQgbzkjOEgeya5wrF6akH78CfsG8x4Fhm0SuRIV9e_LwNdh8Cseu3rwNA&client_id=banku&redirect_uri=https://www.certification.openid.net/test/a/fapi-rw-mtls/callback&scope=openid%20offline_access&response_type=code%20id_token
2021-05-19 13:14:36 REDIRECT
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Redirecting to authorization endpoint
redirect_to
https://identity.finansystech.com.br/auth?request=eyJraWQiOiJXNV9mUGw1dHBrVVVuakJsNFVpbGpGV2JaTi1uM2NNNEJYTlRxNHYwdDhJIiwiYWxnIjoiUFMyNTYifQ.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.ewwUfWiRuAZroGnBCj24bcWwE-s96eOUvYmC-0hx-9UADggHHnopZEYgjc3bHqs0CtOGGRGHnGBDEuel3SnWYF1KkDnqjOZKGmtoAxJltgrGY7pguJyhg_F5iDO5L3ee-9XQqEui_OMqerporzoyuI6B3QlTDrFOP9dJnViIV4CMUkqCAG7DUzzFiHQUAusmBXBfNhyB3p4k86xi45WkEkOMQsE4L5Uuyzy-oI6G-exsztYGl5SuO3IhGa6aY72MBNlVj0hbzfpHpKBDFUC5qq9l4XgCmAQgbzkjOEgeya5wrF6akH78CfsG8x4Fhm0SuRIV9e_LwNdh8Cseu3rwNA&client_id=banku&redirect_uri=https://www.certification.openid.net/test/a/fapi-rw-mtls/callback&scope=openid%20offline_access&response_type=code%20id_token
2021-05-19 13:14:42 INCOMING
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Incoming HTTP request to test instance bflCkEBiHXjIrHg
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"90\", \"Google Chrome\";v\u003d\"90\"",
  "sec-ch-ua-mobile": "?0",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "JSESSIONID\u003dA28720A4A1325CD458E417F7003ACA04",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-05-19 13:14:42 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/ej2TFo5IBtZSBit0xRtP",
  "fullUrl": "https://www.certification.openid.net/test/a/fapi-rw-mtls/implicit/ej2TFo5IBtZSBit0xRtP"
}
2021-05-19 13:14:42 OUTGOING
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Response to HTTP request to test instance bflCkEBiHXjIrHg
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/fapi-rw-mtls/implicit/ej2TFo5IBtZSBit0xRtP, returnUrl=/log-detail.html?log=bflCkEBiHXjIrHg}]
outgoing_path
callback
2021-05-19 13:14:43 INCOMING
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Incoming HTTP request to test instance bflCkEBiHXjIrHg
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"90\", \"Google Chrome\";v\u003d\"90\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/fapi-rw-mtls/callback",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "JSESSIONID\u003dA28720A4A1325CD458E417F7003ACA04",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "833",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/ej2TFo5IBtZSBit0xRtP
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#code=Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX&id_token=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw&state=FE66WwndrS
2021-05-19 13:14:43 OUTGOING
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Response to HTTP request to test instance bflCkEBiHXjIrHg
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/ej2TFo5IBtZSBit0xRtP
2021-05-19 13:14:43
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "code",
    "value": "Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX"
  },
  {
    "name": "id_token",
    "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw"
  },
  {
    "name": "state",
    "value": "FE66WwndrS"
  }
]
2021-05-19 13:14:43 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw
state
FE66WwndrS
2021-05-19 13:14:43 REDIRECT-IN
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"90\", \"Google Chrome\";v\u003d\"90\"",
  "sec-ch-ua-mobile": "?0",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "JSESSIONID\u003dA28720A4A1325CD458E417F7003ACA04",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "code": "Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX",
  "id_token": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw",
  "state": "FE66WwndrS"
}
post_body
Verify authorization endpoint response
2021-05-19 13:14:43 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-05-19 13:14:43 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-05-19 13:14:43 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-05-19 13:14:43 SUCCESS
RejectStateInUrlQueryForHybridFlow
state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)
2021-05-19 13:14:43 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-05-19 13:14:43 SUCCESS
ValidateSuccessfulHybridResponseFromAuthorizationEndpoint
authorization endpoint response does not include unexpected parameters
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw
state
FE66WwndrS
2021-05-19 13:14:43 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
FE66WwndrS
2021-05-19 13:14:43
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-05-19 13:14:43 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
2021-05-19 13:14:43 SUCCESS
EnsureMinimumAuthorizationCodeLength
Authorization code is of sufficient length
actual
344
required
128
2021-05-19 13:14:43 SUCCESS
EnsureMinimumAuthorizationCodeEntropy
Calculated shannon entropy seems sufficient
actual
216.5744969500267
expected
96.0
2021-05-19 13:14:43 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw
header
{
  "kid": "6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "sub": "1",
  "acr": "urn:mace:incommon:iap:silver",
  "c_hash": "BBaBhxaKVfilPx9HP_PBog",
  "aud": "banku",
  "s_hash": "je8LtZsYL4kebfe2M5T_1Q",
  "iss": "https://identity.finansystech.com.br",
  "exp": 1621433682,
  "nonce": "fltEyEPxZL",
  "iat": 1621430082
}
2021-05-19 13:14:43 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-05-19 13:14:43 SUCCESS
EnsureIdTokenContainsKid
kid was found in the ID token header
kid
6JER4hsgHA-lhB2PolJwFVBnz6omMNXv8-ugDUcCl0k
2021-05-19 13:14:43 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
fltEyEPxZL
2021-05-19 13:14:43 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw
2021-05-19 13:14:43 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZKRVI0aHNnSEEtbGhCMlBvbEp3RlZCbno2b21NTlh2OC11Z0RVY0NsMGsifQ.eyJzdWIiOiIxIiwiYWNyIjoidXJuOm1hY2U6aW5jb21tb246aWFwOnNpbHZlciIsIm5vbmNlIjoiZmx0RXlFUHhaTCIsImNfaGFzaCI6IkJCYUJoeGFLVmZpbFB4OUhQX1BCb2ciLCJzX2hhc2giOiJqZThMdFpzWUw0a2ViZmUyTTVUXzFRIiwiYXVkIjoiYmFua3UiLCJleHAiOjE2MjE0MzM2ODIsImlhdCI6MTYyMTQzMDA4MiwiaXNzIjoiaHR0cHM6Ly9pZGVudGl0eS5maW5hbnN5c3RlY2guY29tLmJyIn0.ZrqcyXeeTyEqzxRs_o-6xx9X0uNBUdi-1BSXRDH0osDpPovdHNzPE36e4m3FvQLSIQ1Mf8Ue0d0E5ni_Oktgv4K11p2LxNlXdkxEcGRT0jm-BYlUOtnI6jnAZt_nzBWoZ5qi_lLEohJyLILZ1N61ny6_qVpXoOvNV_YGc65ZCbzAJHAXH1tiVdt58GPe1rX3RMEvsyxQ2r8xhKIYqqD5ud4Bl6RrvGxnRgfCQjPS7BC0_nECeLZRDuiDvfWVCaU4rSgf-yl_pfOVBlCLRJj1cV2Wgq4JY1RT8vZpoixXk9Kf6e8mpbToT4Ob0jYIIOFtGrTWKIxAqN4mi8gMIbZhvw
2021-05-19 13:14:43 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
1
2021-05-19 13:14:43 SUCCESS
ExtractSHash
Extracted s_hash from ID Token
s_hash
je8LtZsYL4kebfe2M5T_1Q
alg
PS256
2021-05-19 13:14:43 SUCCESS
ValidateSHash
s_hash validated successfully
expected_hash
je8LtZsYL4kebfe2M5T_1Q
unhashed_value
FE66WwndrS
id_token_hash
je8LtZsYL4kebfe2M5T_1Q
2021-05-19 13:14:43 SUCCESS
ExtractCHash
Extracted c_hash from ID Token
c_hash
BBaBhxaKVfilPx9HP_PBog
alg
PS256
2021-05-19 13:14:43 SUCCESS
ValidateCHash
c_hash validated successfully
expected_hash
BBaBhxaKVfilPx9HP_PBog
unhashed_value
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
id_token_hash
BBaBhxaKVfilPx9HP_PBog
2021-05-19 13:14:43 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
2021-05-19 13:14:43 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
authorization_code
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
client_id
banku
2021-05-19 13:14:43 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2021-05-19 13:14:43 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
MIIDezCCAmMCFAPvOaso1OHW+df3YYVB4NMPvGaLMA0GCSqGSIb3DQEBCwUAMHYxCzAJBgNVBAYTAkJSMRIwEAYDVQQIDAlTYW8gUGF1bG8xEDAOBgNVBAcMB0JhcnVlcmkxFDASBgNVBAoMC1NtYXJ0ZnlsYWJzMQwwCgYDVQQLDANEZXYxHTAbBgNVBAMMFGNsaWVudC5sb2NhbGhvc3QuY29tMB4XDTIxMDUwNjE5NTE0NVoXDTIyMDUwNjE5NTE0NVowfjELMAkGA1UEBhMCQlIxEjAQBgNVBAgMCVNhbyBQYXVsbzEQMA4GA1UEBwwHQmFydWVyaTEUMBIGA1UECgwLU21hcnRmeWxhYnMxDDAKBgNVBAsMA0RldjElMCMGA1UEAwwcY2xpZW50Mi5jbGllbnQubG9jYWxob3N0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL8S0i+PFPnp2Og5+hMNCgazYTzlAqjAq3aQsdP4rcBP0BmSiBZg6zITQRPIIoYT84zrGFIrKqt3coo//n+/iXsL9Vq0vReRM42Ogc77J4bpGrmpLfcCDvJJgDcwhQPItJisWUICJp5vBF2THBCZCGPhhsjPIS7eV/N3P4V+IKmefFoCFV4WdD/B73iix4YE4OCyZ0zADjcJ3W8EZeyJ1loA5ojklozagLCH/QgPTYVz3PJaFuiVi+fftoXG2sCPuTCSPJFyIzSP21K9oqxkLXshjRuJ0/eteaIiPqpU2x74ln1ADX61SJgR1sGVUuUcIsVffwNEJ61dVWwo9HTqYRMCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAO9HZczxwXvrEh6k88PU1XanWTF1R5DVqXMPCbgHxQW5OQMpUhhEc3djRa+Gbds8KjlUbgp9wRR3VDhiKeIJllI0W2uYvk/E7nNqtXG82KQFLS0LDOwi9ws7L8EPcEDXMYCKIwF5C0HlaLcVlo0dIfTEIlPITr3etVg3gSbEcfQ9y3QnFSDuZJrCFrUPuNXeide8udyVKIoKVeXp47tKonsmgpfByE8miGgVHZfnqSCn4Jt+uunmzhyzsaIMA3aVqFY2GuDyNsXon9w+tQvMV8Z8X6axKi/e4K1q4wGDvqig1Rebwp8uI+BbQJkeiXit02tC5YgDrWFrzLFHq3hJ7yA==
key
MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC/EtIvjxT56djoOfoTDQoGs2E85QKowKt2kLHT+K3AT9AZkogWYOsyE0ETyCKGE/OM6xhSKyqrd3KKP/5/v4l7C/VatL0XkTONjoHO+yeG6Rq5qS33Ag7ySYA3MIUDyLSYrFlCAiaebwRdkxwQmQhj4YbIzyEu3lfzdz+FfiCpnnxaAhVeFnQ/we94oseGBODgsmdMwA43Cd1vBGXsidZaAOaI5JaM2oCwh/0ID02Fc9zyWhbolYvn37aFxtrAj7kwkjyRciM0j9tSvaKsZC17IY0bidP3rXmiIj6qVNse+JZ9QA1+tUiYEdbBlVLlHCLFX38DRCetXVVsKPR06mETAgMBAAECggEAJsO6wMtWhh1bVEHu6k6K6jEaWTBdCb+NCdDxQwAAwDNxFL8VvPSMwuwFF+5SksEZeE158bGwRnlFU6cICwLg8YXLkUt50X4z51QyIbvymPxR37jjCmnwfldLG+dMFShy+0Z8FVg6XYpIaHOgDf3+JcVrgvIC2W9iiJJ44KxmFAMpk+dBNAQJJx88Dk8ytziLYmoDgVSo+S/gII207+UCRNO4AqMDnC7n86sUURBG8SCrUkzHAGZgHYpd6fQ2Uq6N3cKMd125roJf/pCymiKnx8FgjjEjOuUTK+xM7EMrqRhJwuON8gIrOAPrGcyBV2iNc0keumin6sU8PwdJQGY2AQKBgQDiKULpNy/I4MMDlIezGtZggIxfy/54mVCbg8hlj9lRtvebDiVZpkz05v9K45K2T1pJFJ2jeLNtRBwolTz1R1ZAcP8//CyaS/kPUjNyg2BwNSHKFr3lyqnw+8riLsfR+G3u/i/3XVE9kohuOjpomBWLC0iot3oa7Ss10WDb8AOdUQKBgQDYSHOZTBNknCOFC6ERNub7FOCZ7BzhcOJbybJ/8jdoae3wK6u1rTRvtDgjRpfapmVt6tOvQWqU3D7d8+Lrz2Nbjaj4YytUTWbElytISeBGeAl1tA02VsAa9dThZpnSYydnNEFcQveojbeOxb7SMleFA+XQ/bUOiH3FkXjDp2ovIwKBgQDXLU7eOYWbaE3jUCQ0QmqJcoUceChrceOBs0atasnnt1+qBTGANHuv30AyboeeMa3DLnw1lpeQdGceLa/L5s2njlss8680NuiGrT0JzPmqiMLXVf/jbIl4IPkNbljr66Qc6XeVsRGktZBc38XG0jxdCKVe8QKaL+EW2VmAqMGnoQKBgCDVVt81wlfqsCW5bzkqyYPiVnpncrbyqRpgEz4DKlAqjJmCN6373lL62+7W/6SM0CcQmBQp7SEuEkklhhRgRmgWqEkU3PYOTgSYIlT2ChsIi/8XV04he0ZcfXW+WqmqrceoEigMboZjBTOiZ2aHh+vEfLXuXfcX12gPvnKNTrxbAoGBALMdfdqq8o48Schs2Ge8IhW1gv4efMpWL5JcbmaCLCj8ci/hyPqhPPVlhIxHtq80zXcW8DdCV6Yb8gkLQ1PYoygW2/BhCGpqvLMtv4eRjj8fkE9CJTolqKuk4xL53wo0lSC/9PU3tU3gLHXfAZrNyHUXA9ByQrR1FcV+SXt/wmjL
ca
MIIDczCCAlsCFAuvpzAny58RUzKtTv4dSAYt7961MA0GCSqGSIb3DQEBCwUAMHYxCzAJBgNVBAYTAkJSMRIwEAYDVQQIDAlTYW8gUGF1bG8xEDAOBgNVBAcMB0JhcnVlcmkxFDASBgNVBAoMC1NtYXJ0ZnlsYWJzMQwwCgYDVQQLDANEZXYxHTAbBgNVBAMMFGNsaWVudC5sb2NhbGhvc3QuY29tMB4XDTIxMDUwNjExNDQyMVoXDTIyMDUwNjExNDQyMVowdjELMAkGA1UEBhMCQlIxEjAQBgNVBAgMCVNhbyBQYXVsbzEQMA4GA1UEBwwHQmFydWVyaTEUMBIGA1UECgwLU21hcnRmeWxhYnMxDDAKBgNVBAsMA0RldjEdMBsGA1UEAwwUY2xpZW50LmxvY2FsaG9zdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkF4cCJqrevNvmM9AzZiGvl1kTSzTWCvxliIhfeNneFG4C2YW4xuBVxl5+jT3CQOysRPMgQdqzMycPfEZiikBs6eN2OBz8cJu/BrKBRayKfX836JjiWZd7bohxCMdSBbfTOeSjL++BZFDVIPZtVoDZw8SDkMe0nIDPVzZlCdKYhVlhBag4ds48HRdpaTIQH/0eVKmnljcRN3xUEV3Y8bxwEHRSwOm+7J15W8eL59L7LO0bdTr8y4WpbxHxSHP8JfmW8QXoGuwUtX14t35EZiaKkhp85UrQvA0TcoXTOCP0EIbp9kBpX1KfFeq1vmg2Qe0oAFfS/MBjx6ANv3lUglV5AgMBAAEwDQYJKoZIhvcNAQELBQADggEBAGN1OX4YNC8jA6wR6EyHOLVnd4XMFVOLmV/XhOn3MkHOtD9klB7SAXGyI0dmCgPWNu6++zX5iNGrZxoQQHGA1+iDqy9KopoieWrfm4XAGPrtdS1UpmS390JcEdwcUlAULekwgkLlHCGWhnTRwTlBpGKvV8xUgMQpQ8kULHx2RqQUno9RQH7MCibY19iqhelH9eb3Z/u/u9pDAVU+uzQ2a3Nx2KN5O2oZ2a0WtQrkl+sRgX73G0cjk33COv7bGY3PNTPN0enTc+1Ys6W6f2M/w8qxI+vVw+1Ln2muNUylUrU73mDDoYuf5/FiUt4r9/TwNTM3T8soxEOqNoKq6xdcRlw=
2021-05-19 13:14:43 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
2021-05-19 13:14:43 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
authorization_code
code
Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX
redirect_uri
https://www.certification.openid.net/test/a/fapi-rw-mtls/callback
client_id
smartbank
2021-05-19 13:14:43
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://identity.finansystech.com.br/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "191"
}
request_body
grant_type=authorization_code&code=Z3ztJ3T3c4s7qStC68IYg7hDG0EBzY6RfPp_-iSMQxX&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Ffapi-rw-mtls%2Fcallback&client_id=smartbank
request_mutual_tls
{
  "cert": "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\u003d\u003d",
  "key": "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",
  "ca": "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\u003d"
}
2021-05-19 13:14:43 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "pragma": "no-cache",
  "cache-control": "no-cache, no-store",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "72",
  "date": "Wed, 19 May 2021 13:14:43 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"error":"invalid_grant","error_description":"grant request is invalid"}
2021-05-19 13:14:43 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
invalid_grant
error_description
grant request is invalid
2021-05-19 13:14:43 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2021-05-19 13:14:43 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-05-19 13:14:43 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidGrant
Token Endpoint response error returned expected 'error' of 'invalid_grant'
error
invalid_grant
2021-05-19 13:14:43 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_grant
2021-05-19 13:14:43 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
grant request is invalid
2021-05-19 13:14:43 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response error returned valid 'error_description' field
error_description
grant request is invalid
2021-05-19 13:14:43 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2021-05-19 13:14:43 FINISHED
fapi-rw-id2-ensure-authorization-code-is-bound-to-client
Test has run to completion
testmodule_result
PASSED
2021-05-19 13:14:44
TEST-RUNNER
Alias has now been claimed by another test
alias
fapi-rw-mtls
new_test_id
CAJdAOzAtS537zq
Test Results