Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-06-12 07:49:00 INFO
TEST-RUNNER
Test instance fVyeskNra9bh6S1 created
baseUrl
https://www.certification.openid.net/test/a/obbsb
variant
{
  "client_auth_type": "mtls",
  "ciba_mode": "ping",
  "fapi_profile": "plain_fapi",
  "client_registration": "static_client"
}
alias
obbsb
description
Trust Platform (Directory) Open Banking Brasil Initial Structure
planId
EZ6mGXDdYOc4R
config
{
  "alias": "obbsb",
  "description": "Trust Platform (Directory) Open Banking Brasil Initial Structure",
  "server": {
    "discoveryUrl": "https://auth.sandbox.directory.openbankingbrasil.org.br/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "yQx5B3YzgvrVhdnXqeJuV",
    "scope": "openid profile",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "kty": "RSA",
          "n": "3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ",
          "e": "AQAB",
          "d": "BZ4JH4zgxwmox-cqGi1fpNO_73kEeB0psK5ZqpPUNnHs-gJrpYDcmB6vJyyayB7HA2hYC-9vbvGhz_6qnyzb8Ge2cjTnKfpk321ju_fDgVOmLOzIg4860G-dB2ndkr9bA2Q4GGkxrYjHrag46vB1FJzHv0KPv6JJzUQw56TCZm3Zq_9v4Db27ZPZsx8hh5VuyFmYOktgxX2BnsZXoiMSCwFmnnz_RSIA1KivD2fJd4H1-HgKB1CaXlxGxORvf0RQEpzkrl44tjHLfMtl1uPT4E80wOxakl3slKZXW0jfFEZZ4d4r4hDVSv6nmFdJCAh2a00BkcXEnv1I8ru99IzzoQ",
          "p": "7uUPvoK3dn-zvDv67MC4MCQMN3WpryBwxrakXsXfNY76skuCigwDkRb4mJg86_XKwuuV0ZYgU33jDNitXENY37SLw9CxowZNKANBNkpoRBt5HRw56NIaTYmT2KPuMQc-m_wveuJ-AFQOTyIAXrZe3DpI1M5HgLCy3FtjBfwUBP0",
          "q": "7YJIu-OoFWRP-u_4pcYZrPYt5Z_2VOkGG-lnGQvD0f4gi8KtSZt1Swzqj9olAvrfL6H1qbHKcC1fDlt-BxyHcStgx8fXlWirpFqv5Pck91zQOnGRFO0ylz2m2PIJ0BMLFW3cjAksJCYUcbWn3ldReP1dsDHdK0K-z5visXOZePk",
          "dp": "RILmuAEu8kn_Vs1w0fMXH59G7aTN7A6GqUZ570AaGncNyJJFNqfpYfPPiZunZRhRdQMxLTE7xhYFRorhdONPmqBhsN-qAhHtkLsWOaavLlEes82DghS3PGNnRisFRYRJXVy-lSRddGSm0eTzbDYrEEea2YTrFqoWMYH37SB08VU",
          "dq": "ENg0oF69BQdgRMPQNrGeEI5FIwv9RHhiXohnL3eOI86KMF9WOuozn2cDG8C070krmw05hxd87AfLvhDvF0IGuRgCfSjHOWl7AuULpImCrah_fCWhzIImHGPa-XfxCjjPiG2KPsRHxSiOOqJPjY1T0ejmRCDFNtQ9BCxiH4O7VsE",
          "qi": "Il2L8OFsHdPXr7vTbIabKYfGg8nBWNbFHCyUYW__e4eTqBF742BXDLsiSNrIA3JbtSwNVxitC_9djPIn2RHMWcZX9rCDDVQ1K9nZqoPgZhmldHpwVU9ANxvwEaJwB2Zi13i5aF8EEj4zH6ByfTrr_6uAAuI5hYC9Co_MXQNblro",
          "kid": "LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0"
        }
      ]
    },
    "hint_type": "login_hint",
    "hint_value": "ralph.bragg@raidiam.com"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----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\nSygM9VodUSiX80yAp76LO2nIuHf4XP8WPg\u003d\u003d\n-----END CERTIFICATE-----",
    "key": "-----BEGIN PRIVATE KEY-----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\nShnpqmnevrwFQRxdApfFgQV6\n-----END PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----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\np02yfwRaqP8WJ4CnwUHil3ZRt8U9I+psU8b4WV/3\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----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\n1DXIta0LpqM4pMoRMXvp9SLU0atVZLEu6Sc\u003d\n-----END CERTIFICATE-----\n"
  },
  "client2": {
    "client_id": "woozwftxhY2G20myEgi_s",
    "scope": "openid profile",
    "jwks": {
      "keys": [
        {
          "kid": "jQfLvdbMU2XNXhy0TRKH8ajumuBUH4S_ebcbBzW1l34",
          "kty": "RSA",
          "alg": "PS256",
          "p": "_VYnj0d03k1KCL8a6rF6Plz1lE5qv0oQ20gwLrtzZq6M-tYL04BSg2y9r50l8UFCK93jAdk4eN7h8ECs-aYTgXXWOc3thTbDjFMWNcPB232Y-5Sa8UZuOoa319UONKv3c6yGVrGlFhmcMSXH1ZeF6kFKYl5cBBqFSDlUmCsRecU",
          "q": "0d-d-d48wwD5hSsVA9xqwsN2zVIrLszrBmMZkUW8e8jAcf9GgzCnhC70TX5VcHEZSFoqPcDfxhukQsR1zXjBAD7DJGEeLGY69WW5RHILHEHVlxXj-vBZ7mrdVc5wUCkurOQr7lr1U8if1n_feXWJolcteIUeVvz7iXR23EORmU8",
          "d": "Ddh3jboksYLaLyZvuMbJVVUwdnwPONd9bum4vNL04Od7vT2tDQAubrcCnaGWCpEd2amyuMxQdPVXERXUCJMDYhBWQGrV17H7-CbOGORdXGXaOHAj8BIDq4geGGzXKhnJtFuxbA9mFNXhBM1TWKLKikplAhGNNFKfOA5w4ucbf_-YjI5koSldUZxMTkhorzDkcT2_J7VRdxtzoQIFmpyBZi6oLCX12sT75ypwiwQAFNNNQtjfJ0V6aqMOYQT4iDaX_hVR5VsGlw_fRpIbcE0up4QBwSQR0DEj4rEYL3eAkfodY_IvaCMS3cRYePtcv1C80m5oAmtA9nURa-aRxtFROQ",
          "e": "AQAB",
          "qi": "B_zwYgp2BlSsbyWrhB3xiKPE27HUhLOb-b4rfiA9yXNo-aVOKDcNYkJRqdRJz5CCxu-7QZna2lQ8NVJD8W-38OhXBv3bMzzZvbg-NjbA6iiU1XnoZA2jUD9lt-vgf6ZdqDIxmYYSBdU1bd9lqgGjG4PnYOYUxI0y3ZcTMiu0D84",
          "dp": "nCsQF_MkyCU9DkdAgI0HnooPmWz9wQ4XdhX6HdTQPuw7XCW3BJqGQx41kJx_V0mzUPdniSwu89Px0_kKqJsISzYo6VlYolYwFcDiYCJczsGOHQhuu21_ZfTGP_bG2xFnaZdg-PBppEYFUwbHOZQ-qTm2cQ1aC-2NXAh7bZKfI0E",
          "dq": "urA4_YCj-i7OxpepLPMQAMoQztlt0ka0Nc1HfANVg6LzFTSny6EnEh0WciyT4d6pR8P02VPNepMyDbZmt-zXedlaiuzdA0-42HuxTuJHYc5qKehuENVmmf9zfZWSMKxBecfKEE_W9L18-ThsWMWmNcNojlGTyHtnYUE5TfvI818",
          "n": "z7CgrYoh2PMIYRGwJeHFh49efnpUE9jB-M1Lj3r5BOJyiU_Dr-oraZ0NkqyZwuUhJtJgl9IipTmZmfsGwxB2bJ45WYmnb5zWlOAym6eJcvmmQAGppNLs7h2-heKPuq4DwjS46QU5JLyMjMO2_SMMx0bMwb8m10Q8ZGlKjXJ1fQ28d_rtJGeJOMu5MRHt8eQLn3e2nb4E2XRlLrIGlvYcZdgysiwxlceAf2oEdVbiAj6DZ1hs52sFnwbuwwDEQpSIisfkDbNjdAFHzDpLxL_XCMXHDuqs8nUxyBi3T3OBWFLqQGWXCsGdFgtpDPI8SCcNv4FuiW7zxcP2H3fDQ8BQyw"
        }
      ]
    },
    "acr_value": "urn:mace:incommon:iap:silver"
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIGRTCCBS2gAwIBAgIUXchY+mn/JR3gbk+cT7DUlB4tEVkwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDMyOTE5MzcwMFoXDTIyMDQyOTA1\nMzcwMFowgYIxCzAJBgNVBAYTAkJSMRUwEwYDVQQKEwxPcGVuIEJhbmtpbmcxLTAr\nBgNVBAsTJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzEtMCsG\nA1UEAxMkYmVjNzYwNzgtYWZhNi00ZmVlLTg4YzMtNDQ3ODlmZmI4MTdjMIIBIjAN\nBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyUGeONs7i8I8GKMEQmI82dGiALX\nmAd6lO/eKmhRkk0lTDhj4BCoi4/OQUU/+p7D00GXsLFWt7pbgUL64sLUSvLBJ/wE\npMHbsgkRZP9iI8ymtVAtjeQMVTg55TQwUEtmnmuLdr7ZA4nxC4LMBTahpNTwZ7qJ\nDsd0nYqthVZlOxBvjEI5NyortRZh3JIKzPv/7KESA6Z7BvxO3THVlm06wMIXYRfr\n1J5qNe1HJ/tUV8Vj38aE5iMNf3yfCxcXtPMDXXMk7Qq1eH8bIrhFER6wVAV7mDvJ\n46LBR/VshwQk1GplXLC3U6646rUfBibaGf7WenmuXeeaEb7wsnLV/tDPbwIDAQAB\no4ICwTCCAr0wDgYDVR0PAQH/BAQDAgOoMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr\nBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQzeZf9sI7GcbJ65qtYzxe0\nSSzRBTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF\nBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp\ndGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0\naW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk\ncyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz\naW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt\nIFNlcnZpY2VzIEx0ZCBDZXJ0aWZpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j\ndW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu\ncGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B\nAQsFAAOCAQEAHKDTsK7MdJDfGy2+iqtiiYcL2V6dU6iVGdV8BVQYsOIctOPQIQiL\n4d/TzZG7XqaCbRQqxqWeS9FvQ5rEKoPReCCUd2F/Yq/+zBBgWCpectvvw3UbfX+c\nXNMvqCs+v3erxYzo9KLcJ1PVz4oiB0Kt+qq2yBgoWItyzuxEFEkYkOltywbKAzWF\nHAGyec7T8zLPUZy/q38yjsVJBsIj0otqDe4vXYqDslHLoI7hf5c1TIJPHsIzdnTI\n11rp/jIUS9F1Veg91qB5ZKCKMsSloEnRt9z3L4Sl3eU7RRPL2bnxcAUcfxMRNpkZ\nK+iDWhIwW0eKgUKCHeBU+xmbXObyNHAu7Q\u003d\u003d\n-----END CERTIFICATE-----",
    "key": "-----BEGIN PRIVATE KEY-----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\nsz7tmEUpY3rJI+f79Z+rwkc\u003d\n-----END PRIVATE KEY-----",
    "ca": "-----BEGIN CERTIFICATE-----\nMIIEajCCA1KgAwIBAgIUdIYzEFdw7QJcrySyq6IiEwZfTfAwDQYJKoZIhvcNAQEL\nBQAwazELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEnMCUGA1UEAxMeT3BlbiBCYW5raW5nIFJv\nb3QgU0FOREJPWCAtIEcxMB4XDTIwMTIxMTEwMDAwMFoXDTIzMTIxMTEwMDAwMFow\ncTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTAT\nBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRC\nT1ggSXNzdWluZyBDQSAtIEcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC\nAQEA6fX+272mHX5QAcDaWkVHFWjnDIcORNUJU3OuNyeuOYhlvXJWydrXe3O+cV+P\nS39faMj/nfem3GfJBE7Xn0bWA/8ksxSfrg1BUBJDge4YBBw+VflI3A0g1fk9wJ3H\nGInsvV4serRJ/ISJTfs0uRNugX+RrbkT/T0tup4vGd3Kl2sbwUdDjokuJNJHANeO\nDRkQ+ra+9Wht71FBlc07yPf7qtpaWHm6aS3s47OJD35ixkG4xiZuHsScxcVtlo1V\nW98P2cQfH9H2lll4wWlPTVHpPThB2EYrPhwcxDh8kHkkOHNkyHO/fYM47u7H4VeQ\nV75LXWKa7iWmZg+WhFb8TXSr/wIDAQABo4H/MIH8MA4GA1UdDwEB/wQEAwIBBjAP\nBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSGf1itF/WCtk60BbP7sM4RQ99MvjAf\nBgNVHSMEGDAWgBSHE+yWPmLsIRwMSlY68iUM45TpyzBMBggrBgEFBQcBAQRAMD4w\nPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5n\nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRi\nb3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA0GCSqG\nSIb3DQEBCwUAA4IBAQBy4928pVPeiHItbneeOAsDoc4Obv5Q4tn0QpqTlSeCSBbH\nIURfEr/WaS8sv0JTbIPQEfiO/UtaN8Qxh7j5iVqTwTwgVaE/vDkHxGOen5YxAuyV\n1Fpm4W4oQyybiA6puHEBcteuiYZHppGSMus3bmFYTPE+9B0+W914VZeHDujJ2Y3Y\nMc32Q+PC+Zmv8RfaXp7+QCNYSXR5Ts3q3IesWGmlvAM5tLQi75JmzdWXJ1uKU4u3\nNrw5jY4UaOlvB5Re2BSmcjxdLT/5pApzkS+tO6lICnPAtk/Y6dOJ0YxQBMImtliY\np02yfwRaqP8WJ4CnwUHil3ZRt8U9I+psU8b4WV/3\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----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\n1DXIta0LpqM4pMoRMXvp9SLU0atVZLEu6Sc\u003d\n-----END CERTIFICATE-----\n"
  },
  "resource": {
    "resourceUrl": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
    "resourceUrlAccountRequests": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
    "resourceUrlAccountsResource": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
    "institution_id": "1234567890"
  }
}
testName
fapi-ciba-id1-ping-with-mtls-ciba-notification-endpoint-response-401-and-require-server-does-not-retry
2021-06-12 07:49:00 SUCCESS
CreateCIBANotificationEndpointUri
Created ciba notification endpoint URI
notification_uri
https://www.certification.openid.net/test/a/obbsb/ciba-notification-endpoint
2021-06-12 07:49:00
GetDynamicServerConfiguration
HTTP request
request_uri
https://auth.sandbox.directory.openbankingbrasil.org.br/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-06-12 07:49:00 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/json",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "date": "Sat, 12 Jun 2021 06:43:01 GMT",
  "last-modified": "Thu, 03 Jun 2021 09:25:03 GMT",
  "etag": "W/\"51155da68e7454341b2f8b000ccecc63\"",
  "server": "AmazonS3",
  "vary": "Accept-Encoding",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 ca1d5a4b52d08cd5e7ea6f85005bf085.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-C2",
  "x-amz-cf-id": "UCFzoSoswBm6ZoHil-1eg6r6aR-U7aVg3XF9bX1Yqr-mWGg6VtCuRg\u003d\u003d",
  "age": "3960"
}
response_body
{
   "acr_values_supported":[
      "urn:brasil:openbanking:loa2", "urn:brasil:openbanking:loa3", "urn:mace:incommon:iap:silver"
   ],
   "authorization_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/auth",
   "device_authorization_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
   "claims_parameter_supported":true,
   "claims_supported":[
      "sub",
      "email",
      "email_verified",
      "phone_number",
      "phone_number_verified",
      "address",
      "birthdate",
      "family_name",
      "gender",
      "given_name",
      "locale",
      "middle_name",
      "name",
      "nickname",
      "picture",
      "preferred_username",
      "profile",
      "updated_at",
      "website",
      "zoneinfo",
      "trust_framework_profile",
      "acr",
      "sid",
      "auth_time",
      "iss"
   ],
   "code_challenge_methods_supported":[
      "S256"
   ],
   "end_session_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/session/end",
   "grant_types_supported":[
      "implicit",
      "authorization_code",
      "refresh_token",
      "client_credentials",
      "urn:openid:params:grant-type:ciba"
   ],
   "id_token_signing_alg_values_supported":[
      "PS256"
   ],
   "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel",
    "backchannel_token_delivery_modes_supported": [
        "poll", "ping"
    ],
    "backchannel_user_code_parameter_supported": true,
    "backchannel_authentication_request_signing_alg_values_supported": [
        "PS256"
    ],
   "issuer":"https://auth.sandbox.directory.openbankingbrasil.org.br",
   "jwks_uri":"https://auth.sandbox.directory.openbankingbrasil.org.br/jwks",
   "registration_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/reg",
   "response_modes_supported":[
      "form_post",
      "fragment",
      "query",
      "jwt",
      "query.jwt",
      "fragment.jwt",
      "form_post.jwt"
   ],
   "response_types_supported":[
      "code id_token",
      "code",
      "id_token",
      "none"
   ],
   "scopes_supported":[
      "openid",
      "offline_access",
      "profile",
      "email",
      "address",
      "phone",
      "trust_framework_profile",
      "directory:software"
   ],
   "subject_types_supported":[
      "public",
      "pairwise"
   ],
   "token_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "token_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "token_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token",
   "pushed_authorization_request_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/request",
   "request_object_signing_alg_values_supported":[
      "PS256"
   ],
   "request_parameter_supported":true,
   "request_uri_parameter_supported":false,
   "userinfo_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/me",
   "authorization_signing_alg_values_supported":[
      "PS256"
   ],
   "introspection_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
   "introspection_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "introspection_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "revocation_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
   "revocation_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "revocation_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "id_token_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "ECDH-ES",
      "RSA-OAEP",
      "dir"
   ],
   "id_token_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "authorization_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "ECDH-ES",
      "RSA-OAEP",
      "dir"
   ],
   "authorization_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "request_object_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "dir",
      "ECDH-ES",
      "RSA-OAEP"
   ],
   "request_object_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "tls_client_certificate_bound_access_tokens":true,
   "claim_types_supported":[
      "normal"
   ],
   "mtls_endpoint_aliases":{
      "token_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token",
      "revocation_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
      "introspection_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
      "device_authorization_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
      "registration_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/reg",
      "userinfo_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
      "pushed_authorization_request_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/request",
      "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel"
   }
}
2021-06-12 07:49:00
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{
   "acr_values_supported":[
      "urn:brasil:openbanking:loa2", "urn:brasil:openbanking:loa3", "urn:mace:incommon:iap:silver"
   ],
   "authorization_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/auth",
   "device_authorization_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
   "claims_parameter_supported":true,
   "claims_supported":[
      "sub",
      "email",
      "email_verified",
      "phone_number",
      "phone_number_verified",
      "address",
      "birthdate",
      "family_name",
      "gender",
      "given_name",
      "locale",
      "middle_name",
      "name",
      "nickname",
      "picture",
      "preferred_username",
      "profile",
      "updated_at",
      "website",
      "zoneinfo",
      "trust_framework_profile",
      "acr",
      "sid",
      "auth_time",
      "iss"
   ],
   "code_challenge_methods_supported":[
      "S256"
   ],
   "end_session_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/session/end",
   "grant_types_supported":[
      "implicit",
      "authorization_code",
      "refresh_token",
      "client_credentials",
      "urn:openid:params:grant-type:ciba"
   ],
   "id_token_signing_alg_values_supported":[
      "PS256"
   ],
   "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel",
    "backchannel_token_delivery_modes_supported": [
        "poll", "ping"
    ],
    "backchannel_user_code_parameter_supported": true,
    "backchannel_authentication_request_signing_alg_values_supported": [
        "PS256"
    ],
   "issuer":"https://auth.sandbox.directory.openbankingbrasil.org.br",
   "jwks_uri":"https://auth.sandbox.directory.openbankingbrasil.org.br/jwks",
   "registration_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/reg",
   "response_modes_supported":[
      "form_post",
      "fragment",
      "query",
      "jwt",
      "query.jwt",
      "fragment.jwt",
      "form_post.jwt"
   ],
   "response_types_supported":[
      "code id_token",
      "code",
      "id_token",
      "none"
   ],
   "scopes_supported":[
      "openid",
      "offline_access",
      "profile",
      "email",
      "address",
      "phone",
      "trust_framework_profile",
      "directory:software"
   ],
   "subject_types_supported":[
      "public",
      "pairwise"
   ],
   "token_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "token_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "token_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token",
   "pushed_authorization_request_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/request",
   "request_object_signing_alg_values_supported":[
      "PS256"
   ],
   "request_parameter_supported":true,
   "request_uri_parameter_supported":false,
   "userinfo_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/me",
   "authorization_signing_alg_values_supported":[
      "PS256"
   ],
   "introspection_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
   "introspection_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "introspection_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "revocation_endpoint":"https://auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
   "revocation_endpoint_auth_methods_supported":[
      "private_key_jwt",
      "tls_client_auth"
   ],
   "revocation_endpoint_auth_signing_alg_values_supported":[
      "PS256"
   ],
   "id_token_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "ECDH-ES",
      "RSA-OAEP",
      "dir"
   ],
   "id_token_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "authorization_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "ECDH-ES",
      "RSA-OAEP",
      "dir"
   ],
   "authorization_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "request_object_encryption_alg_values_supported":[
      "A128KW",
      "A256KW",
      "dir",
      "ECDH-ES",
      "RSA-OAEP"
   ],
   "request_object_encryption_enc_values_supported":[
      "A128CBC-HS256",
      "A128GCM",
      "A256CBC-HS512",
      "A256GCM"
   ],
   "tls_client_certificate_bound_access_tokens":true,
   "claim_types_supported":[
      "normal"
   ],
   "mtls_endpoint_aliases":{
      "token_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token",
      "revocation_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
      "introspection_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
      "device_authorization_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
      "registration_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/reg",
      "userinfo_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
      "pushed_authorization_request_endpoint":"https://matls-auth.sandbox.directory.openbankingbrasil.org.br/request",
      "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel"
   }
}
2021-06-12 07:49:00 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
acr_values_supported
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3",
  "urn:mace:incommon:iap:silver"
]
authorization_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/auth
device_authorization_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/device/auth
claims_parameter_supported
true
claims_supported
[
  "sub",
  "email",
  "email_verified",
  "phone_number",
  "phone_number_verified",
  "address",
  "birthdate",
  "family_name",
  "gender",
  "given_name",
  "locale",
  "middle_name",
  "name",
  "nickname",
  "picture",
  "preferred_username",
  "profile",
  "updated_at",
  "website",
  "zoneinfo",
  "trust_framework_profile",
  "acr",
  "sid",
  "auth_time",
  "iss"
]
code_challenge_methods_supported
[
  "S256"
]
end_session_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/session/end
grant_types_supported
[
  "implicit",
  "authorization_code",
  "refresh_token",
  "client_credentials",
  "urn:openid:params:grant-type:ciba"
]
id_token_signing_alg_values_supported
[
  "PS256"
]
backchannel_authentication_endpoint
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel
backchannel_token_delivery_modes_supported
[
  "poll",
  "ping"
]
backchannel_user_code_parameter_supported
true
backchannel_authentication_request_signing_alg_values_supported
[
  "PS256"
]
issuer
https://auth.sandbox.directory.openbankingbrasil.org.br
jwks_uri
https://auth.sandbox.directory.openbankingbrasil.org.br/jwks
registration_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/reg
response_modes_supported
[
  "form_post",
  "fragment",
  "query",
  "jwt",
  "query.jwt",
  "fragment.jwt",
  "form_post.jwt"
]
response_types_supported
[
  "code id_token",
  "code",
  "id_token",
  "none"
]
scopes_supported
[
  "openid",
  "offline_access",
  "profile",
  "email",
  "address",
  "phone",
  "trust_framework_profile",
  "directory:software"
]
subject_types_supported
[
  "public",
  "pairwise"
]
token_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
token_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
token_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/token
pushed_authorization_request_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/request
request_object_signing_alg_values_supported
[
  "PS256"
]
request_parameter_supported
true
request_uri_parameter_supported
false
userinfo_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/me
authorization_signing_alg_values_supported
[
  "PS256"
]
introspection_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/token/introspection
introspection_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
introspection_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
revocation_endpoint
https://auth.sandbox.directory.openbankingbrasil.org.br/token/revocation
revocation_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
revocation_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
id_token_encryption_alg_values_supported
[
  "A128KW",
  "A256KW",
  "ECDH-ES",
  "RSA-OAEP",
  "dir"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
authorization_encryption_alg_values_supported
[
  "A128KW",
  "A256KW",
  "ECDH-ES",
  "RSA-OAEP",
  "dir"
]
authorization_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
request_object_encryption_alg_values_supported
[
  "A128KW",
  "A256KW",
  "dir",
  "ECDH-ES",
  "RSA-OAEP"
]
request_object_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
tls_client_certificate_bound_access_tokens
true
claim_types_supported
[
  "normal"
]
mtls_endpoint_aliases
{
  "token_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token",
  "revocation_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
  "introspection_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
  "device_authorization_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
  "registration_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/reg",
  "userinfo_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
  "pushed_authorization_request_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/request",
  "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel"
}
2021-06-12 07:49:00 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
mtls_endpoint_aliases
{
  "token_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token",
  "revocation_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/revocation",
  "introspection_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token/introspection",
  "device_authorization_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/device/auth",
  "registration_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/reg",
  "userinfo_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me",
  "pushed_authorization_request_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/request",
  "backchannel_authentication_endpoint": "https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel"
}
2021-06-12 07:49:00 SUCCESS
CheckCIBAServerConfiguration
Found required server configuration keys
required
[
  "backchannel_authentication_endpoint",
  "token_endpoint",
  "issuer"
]
2021-06-12 07:49:00 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
authorization_endpoint
{
  "testHost": "auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
token_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
userinfo_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
2021-06-12 07:49:00
FetchServerKeys
Fetching server key
jwks_uri
https://auth.sandbox.directory.openbankingbrasil.org.br/jwks
2021-06-12 07:49:00
FetchServerKeys
HTTP request
request_uri
https://auth.sandbox.directory.openbankingbrasil.org.br/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-06-12 07:49:00 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json; charset\u003dutf-8",
  "content-length": "1345",
  "connection": "keep-alive",
  "server": "awselb/2.0",
  "date": "Sat, 12 Jun 2021 07:49:00 GMT",
  "vary": "Origin",
  "x-xss-protection": "1; mode\u003dblock",
  "x-content-type-options": "nosniff",
  "x-download-options": "noopen",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-dns-prefetch-control": "off",
  "x-cache": "Miss from cloudfront",
  "via": "1.1 e8082db8b3cd380fb1a7e784ec7460b9.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-C2",
  "x-amz-cf-id": "pyJ1i_X6J7dIIN2qBwNlyV-u482YEEAS2Zv1VeCobSoIOUxzJTZeRw\u003d\u003d"
}
response_body
{"keys":[{"kty":"OKP","use":"sig","kid":"1620843930500-59258c55ef","alg":"EdDSA","crv":"Ed25519","x":"SauHzclnDwnbdItQPNM1Djs40qqwIwsUKvlGd_N-8tU"},{"kty":"EC","use":"enc","kid":"1620843930500-f23fd5be4d","crv":"P-256","x":"OO9hfx_WZHaWmHbZ2MvbvZalksW5-4j79_A1XOoypik","y":"iyx3qakClo_EtI3KVX6UXyLbs--0Gk-s2CzFXzSvvO8"},{"kty":"EC","use":"sig","kid":"1620843930480-9122aa4d3e","alg":"ES256","crv":"P-256","x":"Bkc2WA_-NfSPAGD5qnA8VFwvpiPciAktDaV5inXuJ1o","y":"DaTMdKJ3OQZJ1xtYf_Rk_tnE7wSiy6y16qJ4Q8TBvEQ"},{"kty":"RSA","use":"enc","kid":"1620843930400-947cec131c","e":"AQAB","n":"4U-XmysT5n0LJGhCBpv0WM6DoyyW1hEoiHSizFgbEuxSBBIbWcSSWAUM35o7eALXu1F6sa9XdtlCnHkR5AqfQMfkIGJzOvXoaFqfcPsP3KimWb8ibsnTKDD98rwO-Xd9Xm8ij8YhgdGXZqQ3KTK6iuVPSWphXH0KXOhoJoResG5O4R3gh_eYxpuALL1aciNNoXk--jFE-CknajjdvXSimKKN_mLc77mGmvDoIcnh4dndH7S8hHtgh45JV5HWSzMxv-g0aC_zp66dnUgBLlUU2db6456A1ECChYl5hjgQ_lKi9IAQ1G61ERkv4PY8esVvdJbsTJIyzDrPuQKTaeRfFw"},{"kty":"RSA","use":"sig","kid":"1620843929805-d19591259b","e":"AQAB","n":"s8zrUBJFHoNBB-bICFA3dnsl3vCFuT-E1b3v9aTBfhfCDihdz0V2wfco9K1o67I8swbpYajrSHWKsIm4b1ZUe06J_bFRchwkuJCb6qaWhlJj0TzPRTEBVwq6gN24p5wuDpRH343NOoZX3P7Sp9aCKmSfTLtWlSO3iysa3sYuArHIOJ0rLdg0pYkSPAN8roqGU2STt4jphASYbFa4IQYG6XIC-y1-u_LBVf0kYeYE5EqnF9f_1wqvf7ObAKo1WAgU5ZujXAdoGMRi-AQCCCo-h8k4HeMEfzc9yygzxP2Wd1rSq46g8jENDgoEAAB_09ifssQ2NqYS6pta5GEFNtJdBw"}]}
2021-06-12 07:49:00
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"OKP","use":"sig","kid":"1620843930500-59258c55ef","alg":"EdDSA","crv":"Ed25519","x":"SauHzclnDwnbdItQPNM1Djs40qqwIwsUKvlGd_N-8tU"},{"kty":"EC","use":"enc","kid":"1620843930500-f23fd5be4d","crv":"P-256","x":"OO9hfx_WZHaWmHbZ2MvbvZalksW5-4j79_A1XOoypik","y":"iyx3qakClo_EtI3KVX6UXyLbs--0Gk-s2CzFXzSvvO8"},{"kty":"EC","use":"sig","kid":"1620843930480-9122aa4d3e","alg":"ES256","crv":"P-256","x":"Bkc2WA_-NfSPAGD5qnA8VFwvpiPciAktDaV5inXuJ1o","y":"DaTMdKJ3OQZJ1xtYf_Rk_tnE7wSiy6y16qJ4Q8TBvEQ"},{"kty":"RSA","use":"enc","kid":"1620843930400-947cec131c","e":"AQAB","n":"4U-XmysT5n0LJGhCBpv0WM6DoyyW1hEoiHSizFgbEuxSBBIbWcSSWAUM35o7eALXu1F6sa9XdtlCnHkR5AqfQMfkIGJzOvXoaFqfcPsP3KimWb8ibsnTKDD98rwO-Xd9Xm8ij8YhgdGXZqQ3KTK6iuVPSWphXH0KXOhoJoResG5O4R3gh_eYxpuALL1aciNNoXk--jFE-CknajjdvXSimKKN_mLc77mGmvDoIcnh4dndH7S8hHtgh45JV5HWSzMxv-g0aC_zp66dnUgBLlUU2db6456A1ECChYl5hjgQ_lKi9IAQ1G61ERkv4PY8esVvdJbsTJIyzDrPuQKTaeRfFw"},{"kty":"RSA","use":"sig","kid":"1620843929805-d19591259b","e":"AQAB","n":"s8zrUBJFHoNBB-bICFA3dnsl3vCFuT-E1b3v9aTBfhfCDihdz0V2wfco9K1o67I8swbpYajrSHWKsIm4b1ZUe06J_bFRchwkuJCb6qaWhlJj0TzPRTEBVwq6gN24p5wuDpRH343NOoZX3P7Sp9aCKmSfTLtWlSO3iysa3sYuArHIOJ0rLdg0pYkSPAN8roqGU2STt4jphASYbFa4IQYG6XIC-y1-u_LBVf0kYeYE5EqnF9f_1wqvf7ObAKo1WAgU5ZujXAdoGMRi-AQCCCo-h8k4HeMEfzc9yygzxP2Wd1rSq46g8jENDgoEAAB_09ifssQ2NqYS6pta5GEFNtJdBw"}]}
2021-06-12 07:49:00 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "OKP",
      "use": "sig",
      "kid": "1620843930500-59258c55ef",
      "alg": "EdDSA",
      "crv": "Ed25519",
      "x": "SauHzclnDwnbdItQPNM1Djs40qqwIwsUKvlGd_N-8tU"
    },
    {
      "kty": "EC",
      "use": "enc",
      "kid": "1620843930500-f23fd5be4d",
      "crv": "P-256",
      "x": "OO9hfx_WZHaWmHbZ2MvbvZalksW5-4j79_A1XOoypik",
      "y": "iyx3qakClo_EtI3KVX6UXyLbs--0Gk-s2CzFXzSvvO8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "1620843930480-9122aa4d3e",
      "alg": "ES256",
      "crv": "P-256",
      "x": "Bkc2WA_-NfSPAGD5qnA8VFwvpiPciAktDaV5inXuJ1o",
      "y": "DaTMdKJ3OQZJ1xtYf_Rk_tnE7wSiy6y16qJ4Q8TBvEQ"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "kid": "1620843930400-947cec131c",
      "e": "AQAB",
      "n": "4U-XmysT5n0LJGhCBpv0WM6DoyyW1hEoiHSizFgbEuxSBBIbWcSSWAUM35o7eALXu1F6sa9XdtlCnHkR5AqfQMfkIGJzOvXoaFqfcPsP3KimWb8ibsnTKDD98rwO-Xd9Xm8ij8YhgdGXZqQ3KTK6iuVPSWphXH0KXOhoJoResG5O4R3gh_eYxpuALL1aciNNoXk--jFE-CknajjdvXSimKKN_mLc77mGmvDoIcnh4dndH7S8hHtgh45JV5HWSzMxv-g0aC_zp66dnUgBLlUU2db6456A1ECChYl5hjgQ_lKi9IAQ1G61ERkv4PY8esVvdJbsTJIyzDrPuQKTaeRfFw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "1620843929805-d19591259b",
      "e": "AQAB",
      "n": "s8zrUBJFHoNBB-bICFA3dnsl3vCFuT-E1b3v9aTBfhfCDihdz0V2wfco9K1o67I8swbpYajrSHWKsIm4b1ZUe06J_bFRchwkuJCb6qaWhlJj0TzPRTEBVwq6gN24p5wuDpRH343NOoZX3P7Sp9aCKmSfTLtWlSO3iysa3sYuArHIOJ0rLdg0pYkSPAN8roqGU2STt4jphASYbFa4IQYG6XIC-y1-u_LBVf0kYeYE5EqnF9f_1wqvf7ObAKo1WAgU5ZujXAdoGMRi-AQCCCo-h8k4HeMEfzc9yygzxP2Wd1rSq46g8jENDgoEAAB_09ifssQ2NqYS6pta5GEFNtJdBw"
    }
  ]
}
2021-06-12 07:49:00 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "OKP",
      "use": "sig",
      "kid": "1620843930500-59258c55ef",
      "alg": "EdDSA",
      "crv": "Ed25519",
      "x": "SauHzclnDwnbdItQPNM1Djs40qqwIwsUKvlGd_N-8tU"
    },
    {
      "kty": "EC",
      "use": "enc",
      "kid": "1620843930500-f23fd5be4d",
      "crv": "P-256",
      "x": "OO9hfx_WZHaWmHbZ2MvbvZalksW5-4j79_A1XOoypik",
      "y": "iyx3qakClo_EtI3KVX6UXyLbs--0Gk-s2CzFXzSvvO8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "1620843930480-9122aa4d3e",
      "alg": "ES256",
      "crv": "P-256",
      "x": "Bkc2WA_-NfSPAGD5qnA8VFwvpiPciAktDaV5inXuJ1o",
      "y": "DaTMdKJ3OQZJ1xtYf_Rk_tnE7wSiy6y16qJ4Q8TBvEQ"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "kid": "1620843930400-947cec131c",
      "e": "AQAB",
      "n": "4U-XmysT5n0LJGhCBpv0WM6DoyyW1hEoiHSizFgbEuxSBBIbWcSSWAUM35o7eALXu1F6sa9XdtlCnHkR5AqfQMfkIGJzOvXoaFqfcPsP3KimWb8ibsnTKDD98rwO-Xd9Xm8ij8YhgdGXZqQ3KTK6iuVPSWphXH0KXOhoJoResG5O4R3gh_eYxpuALL1aciNNoXk--jFE-CknajjdvXSimKKN_mLc77mGmvDoIcnh4dndH7S8hHtgh45JV5HWSzMxv-g0aC_zp66dnUgBLlUU2db6456A1ECChYl5hjgQ_lKi9IAQ1G61ERkv4PY8esVvdJbsTJIyzDrPuQKTaeRfFw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "1620843929805-d19591259b",
      "e": "AQAB",
      "n": "s8zrUBJFHoNBB-bICFA3dnsl3vCFuT-E1b3v9aTBfhfCDihdz0V2wfco9K1o67I8swbpYajrSHWKsIm4b1ZUe06J_bFRchwkuJCb6qaWhlJj0TzPRTEBVwq6gN24p5wuDpRH343NOoZX3P7Sp9aCKmSfTLtWlSO3iysa3sYuArHIOJ0rLdg0pYkSPAN8roqGU2STt4jphASYbFa4IQYG6XIC-y1-u_LBVf0kYeYE5EqnF9f_1wqvf7ObAKo1WAgU5ZujXAdoGMRi-AQCCCo-h8k4HeMEfzc9yygzxP2Wd1rSq46g8jENDgoEAAB_09ifssQ2NqYS6pta5GEFNtJdBw"
    }
  ]
}
2021-06-12 07:49:00 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-06-12 07:49:00 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-06-12 07:49:00 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-06-12 07:49:00 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "OKP",
      "use": "sig",
      "kid": "1620843930500-59258c55ef",
      "alg": "EdDSA",
      "crv": "Ed25519",
      "x": "SauHzclnDwnbdItQPNM1Djs40qqwIwsUKvlGd_N-8tU"
    },
    {
      "kty": "EC",
      "use": "enc",
      "kid": "1620843930500-f23fd5be4d",
      "crv": "P-256",
      "x": "OO9hfx_WZHaWmHbZ2MvbvZalksW5-4j79_A1XOoypik",
      "y": "iyx3qakClo_EtI3KVX6UXyLbs--0Gk-s2CzFXzSvvO8"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "1620843930480-9122aa4d3e",
      "alg": "ES256",
      "crv": "P-256",
      "x": "Bkc2WA_-NfSPAGD5qnA8VFwvpiPciAktDaV5inXuJ1o",
      "y": "DaTMdKJ3OQZJ1xtYf_Rk_tnE7wSiy6y16qJ4Q8TBvEQ"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "kid": "1620843930400-947cec131c",
      "e": "AQAB",
      "n": "4U-XmysT5n0LJGhCBpv0WM6DoyyW1hEoiHSizFgbEuxSBBIbWcSSWAUM35o7eALXu1F6sa9XdtlCnHkR5AqfQMfkIGJzOvXoaFqfcPsP3KimWb8ibsnTKDD98rwO-Xd9Xm8ij8YhgdGXZqQ3KTK6iuVPSWphXH0KXOhoJoResG5O4R3gh_eYxpuALL1aciNNoXk--jFE-CknajjdvXSimKKN_mLc77mGmvDoIcnh4dndH7S8hHtgh45JV5HWSzMxv-g0aC_zp66dnUgBLlUU2db6456A1ECChYl5hjgQ_lKi9IAQ1G61ERkv4PY8esVvdJbsTJIyzDrPuQKTaeRfFw"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "1620843929805-d19591259b",
      "e": "AQAB",
      "n": "s8zrUBJFHoNBB-bICFA3dnsl3vCFuT-E1b3v9aTBfhfCDihdz0V2wfco9K1o67I8swbpYajrSHWKsIm4b1ZUe06J_bFRchwkuJCb6qaWhlJj0TzPRTEBVwq6gN24p5wuDpRH343NOoZX3P7Sp9aCKmSfTLtWlSO3iysa3sYuArHIOJ0rLdg0pYkSPAN8roqGU2STt4jphASYbFa4IQYG6XIC-y1-u_LBVf0kYeYE5EqnF9f_1wqvf7ObAKo1WAgU5ZujXAdoGMRi-AQCCCo-h8k4HeMEfzc9yygzxP2Wd1rSq46g8jENDgoEAAB_09ifssQ2NqYS6pta5GEFNtJdBw"
    }
  ]
}
Verify First client: static client configuration
2021-06-12 07:49:00 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
yQx5B3YzgvrVhdnXqeJuV
scope
openid profile
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kty": "RSA",
      "n": "3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ",
      "e": "AQAB",
      "d": "BZ4JH4zgxwmox-cqGi1fpNO_73kEeB0psK5ZqpPUNnHs-gJrpYDcmB6vJyyayB7HA2hYC-9vbvGhz_6qnyzb8Ge2cjTnKfpk321ju_fDgVOmLOzIg4860G-dB2ndkr9bA2Q4GGkxrYjHrag46vB1FJzHv0KPv6JJzUQw56TCZm3Zq_9v4Db27ZPZsx8hh5VuyFmYOktgxX2BnsZXoiMSCwFmnnz_RSIA1KivD2fJd4H1-HgKB1CaXlxGxORvf0RQEpzkrl44tjHLfMtl1uPT4E80wOxakl3slKZXW0jfFEZZ4d4r4hDVSv6nmFdJCAh2a00BkcXEnv1I8ru99IzzoQ",
      "p": "7uUPvoK3dn-zvDv67MC4MCQMN3WpryBwxrakXsXfNY76skuCigwDkRb4mJg86_XKwuuV0ZYgU33jDNitXENY37SLw9CxowZNKANBNkpoRBt5HRw56NIaTYmT2KPuMQc-m_wveuJ-AFQOTyIAXrZe3DpI1M5HgLCy3FtjBfwUBP0",
      "q": "7YJIu-OoFWRP-u_4pcYZrPYt5Z_2VOkGG-lnGQvD0f4gi8KtSZt1Swzqj9olAvrfL6H1qbHKcC1fDlt-BxyHcStgx8fXlWirpFqv5Pck91zQOnGRFO0ylz2m2PIJ0BMLFW3cjAksJCYUcbWn3ldReP1dsDHdK0K-z5visXOZePk",
      "dp": "RILmuAEu8kn_Vs1w0fMXH59G7aTN7A6GqUZ570AaGncNyJJFNqfpYfPPiZunZRhRdQMxLTE7xhYFRorhdONPmqBhsN-qAhHtkLsWOaavLlEes82DghS3PGNnRisFRYRJXVy-lSRddGSm0eTzbDYrEEea2YTrFqoWMYH37SB08VU",
      "dq": "ENg0oF69BQdgRMPQNrGeEI5FIwv9RHhiXohnL3eOI86KMF9WOuozn2cDG8C070krmw05hxd87AfLvhDvF0IGuRgCfSjHOWl7AuULpImCrah_fCWhzIImHGPa-XfxCjjPiG2KPsRHxSiOOqJPjY1T0ejmRCDFNtQ9BCxiH4O7VsE",
      "qi": "Il2L8OFsHdPXr7vTbIabKYfGg8nBWNbFHCyUYW__e4eTqBF742BXDLsiSNrIA3JbtSwNVxitC_9djPIn2RHMWcZX9rCDDVQ1K9nZqoPgZhmldHpwVU9ANxvwEaJwB2Zi13i5aF8EEj4zH6ByfTrr_6uAAuI5hYC9Co_MXQNblro",
      "kid": "LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0"
    }
  ]
}
hint_type
login_hint
hint_value
ralph.bragg@raidiam.com
2021-06-12 07:49:00 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-06-12 07:49:00 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kty": "RSA",
      "n": "3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ",
      "e": "AQAB",
      "d": "BZ4JH4zgxwmox-cqGi1fpNO_73kEeB0psK5ZqpPUNnHs-gJrpYDcmB6vJyyayB7HA2hYC-9vbvGhz_6qnyzb8Ge2cjTnKfpk321ju_fDgVOmLOzIg4860G-dB2ndkr9bA2Q4GGkxrYjHrag46vB1FJzHv0KPv6JJzUQw56TCZm3Zq_9v4Db27ZPZsx8hh5VuyFmYOktgxX2BnsZXoiMSCwFmnnz_RSIA1KivD2fJd4H1-HgKB1CaXlxGxORvf0RQEpzkrl44tjHLfMtl1uPT4E80wOxakl3slKZXW0jfFEZZ4d4r4hDVSv6nmFdJCAh2a00BkcXEnv1I8ru99IzzoQ",
      "p": "7uUPvoK3dn-zvDv67MC4MCQMN3WpryBwxrakXsXfNY76skuCigwDkRb4mJg86_XKwuuV0ZYgU33jDNitXENY37SLw9CxowZNKANBNkpoRBt5HRw56NIaTYmT2KPuMQc-m_wveuJ-AFQOTyIAXrZe3DpI1M5HgLCy3FtjBfwUBP0",
      "q": "7YJIu-OoFWRP-u_4pcYZrPYt5Z_2VOkGG-lnGQvD0f4gi8KtSZt1Swzqj9olAvrfL6H1qbHKcC1fDlt-BxyHcStgx8fXlWirpFqv5Pck91zQOnGRFO0ylz2m2PIJ0BMLFW3cjAksJCYUcbWn3ldReP1dsDHdK0K-z5visXOZePk",
      "dp": "RILmuAEu8kn_Vs1w0fMXH59G7aTN7A6GqUZ570AaGncNyJJFNqfpYfPPiZunZRhRdQMxLTE7xhYFRorhdONPmqBhsN-qAhHtkLsWOaavLlEes82DghS3PGNnRisFRYRJXVy-lSRddGSm0eTzbDYrEEea2YTrFqoWMYH37SB08VU",
      "dq": "ENg0oF69BQdgRMPQNrGeEI5FIwv9RHhiXohnL3eOI86KMF9WOuozn2cDG8C070krmw05hxd87AfLvhDvF0IGuRgCfSjHOWl7AuULpImCrah_fCWhzIImHGPa-XfxCjjPiG2KPsRHxSiOOqJPjY1T0ejmRCDFNtQ9BCxiH4O7VsE",
      "qi": "Il2L8OFsHdPXr7vTbIabKYfGg8nBWNbFHCyUYW__e4eTqBF742BXDLsiSNrIA3JbtSwNVxitC_9djPIn2RHMWcZX9rCDDVQ1K9nZqoPgZhmldHpwVU9ANxvwEaJwB2Zi13i5aF8EEj4zH6ByfTrr_6uAAuI5hYC9Co_MXQNblro",
      "kid": "LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0",
      "alg": "PS256",
      "n": "3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ"
    }
  ]
}
2021-06-12 07:49:00 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2021-06-12 07:49:00 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
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
2021-06-12 07:49:00 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-06-12 07:49:00 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-06-12 07:49:00 SUCCESS
FAPICheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256",
  "ES256"
]
2021-06-12 07:49:00 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kty": "RSA",
      "n": "3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ",
      "e": "AQAB",
      "d": "BZ4JH4zgxwmox-cqGi1fpNO_73kEeB0psK5ZqpPUNnHs-gJrpYDcmB6vJyyayB7HA2hYC-9vbvGhz_6qnyzb8Ge2cjTnKfpk321ju_fDgVOmLOzIg4860G-dB2ndkr9bA2Q4GGkxrYjHrag46vB1FJzHv0KPv6JJzUQw56TCZm3Zq_9v4Db27ZPZsx8hh5VuyFmYOktgxX2BnsZXoiMSCwFmnnz_RSIA1KivD2fJd4H1-HgKB1CaXlxGxORvf0RQEpzkrl44tjHLfMtl1uPT4E80wOxakl3slKZXW0jfFEZZ4d4r4hDVSv6nmFdJCAh2a00BkcXEnv1I8ru99IzzoQ",
      "p": "7uUPvoK3dn-zvDv67MC4MCQMN3WpryBwxrakXsXfNY76skuCigwDkRb4mJg86_XKwuuV0ZYgU33jDNitXENY37SLw9CxowZNKANBNkpoRBt5HRw56NIaTYmT2KPuMQc-m_wveuJ-AFQOTyIAXrZe3DpI1M5HgLCy3FtjBfwUBP0",
      "q": "7YJIu-OoFWRP-u_4pcYZrPYt5Z_2VOkGG-lnGQvD0f4gi8KtSZt1Swzqj9olAvrfL6H1qbHKcC1fDlt-BxyHcStgx8fXlWirpFqv5Pck91zQOnGRFO0ylz2m2PIJ0BMLFW3cjAksJCYUcbWn3ldReP1dsDHdK0K-z5visXOZePk",
      "dp": "RILmuAEu8kn_Vs1w0fMXH59G7aTN7A6GqUZ570AaGncNyJJFNqfpYfPPiZunZRhRdQMxLTE7xhYFRorhdONPmqBhsN-qAhHtkLsWOaavLlEes82DghS3PGNnRisFRYRJXVy-lSRddGSm0eTzbDYrEEea2YTrFqoWMYH37SB08VU",
      "dq": "ENg0oF69BQdgRMPQNrGeEI5FIwv9RHhiXohnL3eOI86KMF9WOuozn2cDG8C070krmw05hxd87AfLvhDvF0IGuRgCfSjHOWl7AuULpImCrah_fCWhzIImHGPa-XfxCjjPiG2KPsRHxSiOOqJPjY1T0ejmRCDFNtQ9BCxiH4O7VsE",
      "qi": "Il2L8OFsHdPXr7vTbIabKYfGg8nBWNbFHCyUYW__e4eTqBF742BXDLsiSNrIA3JbtSwNVxitC_9djPIn2RHMWcZX9rCDDVQ1K9nZqoPgZhmldHpwVU9ANxvwEaJwB2Zi13i5aF8EEj4zH6ByfTrr_6uAAuI5hYC9Co_MXQNblro",
      "kid": "LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0"
    }
  ]
}
2021-06-12 07:49:00 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2021-06-12 07:49:00 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me
resourceUrlAccountRequests
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me
resourceUrlAccountsResource
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me
institution_id
1234567890
2021-06-12 07:49:00 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me
2021-06-12 07:49:00 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
2021-06-12 07:49:00 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "matls-auth.sandbox.directory.openbankingbrasil.org.br",
  "testPort": 443
}
2021-06-12 07:49:00
fapi-ciba-id1-ping-with-mtls-ciba-notification-endpoint-response-401-and-require-server-does-not-retry
Setup Done
Call backchannel authentication endpoint
2021-06-12 07:49:00 SUCCESS
CreateEmptyAuthorizationEndpointRequest
Created empty authorization endpoint request
2021-06-12 07:49:00 SUCCESS
AddScopeToAuthorizationEndpointRequest
Added scope of 'openid profile' to authorization endpoint request
scope
openid profile
2021-06-12 07:49:00 SUCCESS
AddHintToAuthorizationEndpointRequest
Added hint to authorization endpoint request
login_hint
ralph.bragg@raidiam.com
2021-06-12 07:49:00 SUCCESS
AddBindingMessageToAuthorizationEndpointRequest
Added binding message to authorization endpoint request
binding_message
1234
2021-06-12 07:49:00
CreateRandomClientNotificationToken
Created token value
client_notification_token
VrdbsEAO/pt3SHIyImE+=
requested_notification_token_length
21
2021-06-12 07:49:00 SUCCESS
AddClientNotificationTokenToAuthorizationEndpointRequest
Added client_notification_token 'VrdbsEAO/pt3SHIyImE+=' to authorization endpoint request
scope
openid profile
login_hint
ralph.bragg@raidiam.com
binding_message
1234
client_notification_token
VrdbsEAO/pt3SHIyImE+=
2021-06-12 07:49:00 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "scope": "openid profile",
  "login_hint": "ralph.bragg@raidiam.com",
  "binding_message": "1234",
  "client_notification_token": "VrdbsEAO/pt3SHIyImE+\u003d"
}
2021-06-12 07:49:00 SUCCESS
AddIatToRequestObject
Added iat to request object claims
iat
1.62348414E9
2021-06-12 07:49:00 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.62348444E9
2021-06-12 07:49:00 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.62348414E9
2021-06-12 07:49:00 SUCCESS
AddJtiToRequestObject
Added jti to request object claims
jti
K4JJIY2frwzKP41xJYx0
2021-06-12 07:49:00 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://auth.sandbox.directory.openbankingbrasil.org.br
2021-06-12 07:49:00 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
yQx5B3YzgvrVhdnXqeJuV
2021-06-12 07:49:00 SUCCESS
SignRequestObject
Signed the request object
claims
{"client_notification_token":"VrdbsEAO\/pt3SHIyImE+=","aud":"https:\/\/auth.sandbox.directory.openbankingbrasil.org.br","login_hint":"ralph.bragg@raidiam.com","nbf":1623484140,"scope":"openid profile","iss":"yQx5B3YzgvrVhdnXqeJuV","binding_message":"1234","exp":1623484440,"iat":1623484140,"jti":"K4JJIY2frwzKP41xJYx0"}
header
{"kid":"LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0","alg":"PS256"}
request_object
eyJraWQiOiJMR3hGTnQxNl9FSjdLWS1JUGxXcTBJWko0NkJaYWZpQUN2SFhyc2dGOEowIiwiYWxnIjoiUFMyNTYifQ.eyJjbGllbnRfbm90aWZpY2F0aW9uX3Rva2VuIjoiVnJkYnNFQU9cL3B0M1NISXlJbUUrPSIsImF1ZCI6Imh0dHBzOlwvXC9hdXRoLnNhbmRib3guZGlyZWN0b3J5Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5iciIsImxvZ2luX2hpbnQiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsIm5iZiI6MTYyMzQ4NDE0MCwic2NvcGUiOiJvcGVuaWQgcHJvZmlsZSIsImlzcyI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImJpbmRpbmdfbWVzc2FnZSI6IjEyMzQiLCJleHAiOjE2MjM0ODQ0NDAsImlhdCI6MTYyMzQ4NDE0MCwianRpIjoiSzRKSklZMmZyd3pLUDQxeEpZeDAifQ.0uYCz5fN5hLuaRPQWt85VTKp4mgYx_mDDPQ2e-JWr0W835HeSOGRnonsn2cMstCmUUoDY9ZN9U84Iacj1yMyC64luSxJG0M3RKlbY3K1Ypxh2VzPagsmYMD0Dqdycj3qQnsWPq0E_lKB4CL9ZgJ_6PBemRFMGcsy50GLspZOcJ1qDnQJI5wJyu23O2ytfoFWArnFIFyqX0lFVHEvgxvXQQ8oKHmEP4dQIsph33VIPl9OWxB4sikq9ycIWXYRdYGfKVbfhRd-hj1ggbAlwmSUV36FWxBwe_V44zrhER0e6MGiB82lkQ7ZokK_gBDy7UV9j4jGmhK9YP-makbnATfrpA
key
{"p":"7uUPvoK3dn-zvDv67MC4MCQMN3WpryBwxrakXsXfNY76skuCigwDkRb4mJg86_XKwuuV0ZYgU33jDNitXENY37SLw9CxowZNKANBNkpoRBt5HRw56NIaTYmT2KPuMQc-m_wveuJ-AFQOTyIAXrZe3DpI1M5HgLCy3FtjBfwUBP0","kty":"RSA","q":"7YJIu-OoFWRP-u_4pcYZrPYt5Z_2VOkGG-lnGQvD0f4gi8KtSZt1Swzqj9olAvrfL6H1qbHKcC1fDlt-BxyHcStgx8fXlWirpFqv5Pck91zQOnGRFO0ylz2m2PIJ0BMLFW3cjAksJCYUcbWn3ldReP1dsDHdK0K-z5visXOZePk","d":"BZ4JH4zgxwmox-cqGi1fpNO_73kEeB0psK5ZqpPUNnHs-gJrpYDcmB6vJyyayB7HA2hYC-9vbvGhz_6qnyzb8Ge2cjTnKfpk321ju_fDgVOmLOzIg4860G-dB2ndkr9bA2Q4GGkxrYjHrag46vB1FJzHv0KPv6JJzUQw56TCZm3Zq_9v4Db27ZPZsx8hh5VuyFmYOktgxX2BnsZXoiMSCwFmnnz_RSIA1KivD2fJd4H1-HgKB1CaXlxGxORvf0RQEpzkrl44tjHLfMtl1uPT4E80wOxakl3slKZXW0jfFEZZ4d4r4hDVSv6nmFdJCAh2a00BkcXEnv1I8ru99IzzoQ","e":"AQAB","kid":"LGxFNt16_EJ7KY-IPlWq0IZJ46BZafiACvHXrsgF8J0","qi":"Il2L8OFsHdPXr7vTbIabKYfGg8nBWNbFHCyUYW__e4eTqBF742BXDLsiSNrIA3JbtSwNVxitC_9djPIn2RHMWcZX9rCDDVQ1K9nZqoPgZhmldHpwVU9ANxvwEaJwB2Zi13i5aF8EEj4zH6ByfTrr_6uAAuI5hYC9Co_MXQNblro","dp":"RILmuAEu8kn_Vs1w0fMXH59G7aTN7A6GqUZ570AaGncNyJJFNqfpYfPPiZunZRhRdQMxLTE7xhYFRorhdONPmqBhsN-qAhHtkLsWOaavLlEes82DghS3PGNnRisFRYRJXVy-lSRddGSm0eTzbDYrEEea2YTrFqoWMYH37SB08VU","alg":"PS256","dq":"ENg0oF69BQdgRMPQNrGeEI5FIwv9RHhiXohnL3eOI86KMF9WOuozn2cDG8C070krmw05hxd87AfLvhDvF0IGuRgCfSjHOWl7AuULpImCrah_fCWhzIImHGPa-XfxCjjPiG2KPsRHxSiOOqJPjY1T0ejmRCDFNtQ9BCxiH4O7VsE","n":"3aOjxR_0Rgok7BwNJziJM4nAEqRJiZN3bAwTQR3eIouMFreprcauT7mbfUP2P25fld0Vd13DpE5pXQK3Ey984ZV6NToB_DuffabJfsRF1QXvIoR1zbdPoW8KfA23CilEs0g0f9A8OHren1lTj2SlYsWkdN-ioYcUbgsfkedYzfSfMWtDBAR7LLoWQwtA83iurXk9R4AfS-9F7KN_SmymxeR4c4qRjhVxvhc1aC_Sx-MMDLLcIBik_h9LUQWwFRjHE4zhLMnPigWKpZeBBbND0E3SQawWrBx9moVx3_vCZZETn_-oohqN3xQz0XlJvZ7VGpYpkiaU8veYjJIdNARyFQ"}
2021-06-12 07:49:00 SUCCESS
CreateBackchannelAuthenticationEndpointRequest
Created backchannel authentication endpoint request
2021-06-12 07:49:00
AddRequestToBackchannelAuthenticationEndpointRequest
request
eyJraWQiOiJMR3hGTnQxNl9FSjdLWS1JUGxXcTBJWko0NkJaYWZpQUN2SFhyc2dGOEowIiwiYWxnIjoiUFMyNTYifQ.eyJjbGllbnRfbm90aWZpY2F0aW9uX3Rva2VuIjoiVnJkYnNFQU9cL3B0M1NISXlJbUUrPSIsImF1ZCI6Imh0dHBzOlwvXC9hdXRoLnNhbmRib3guZGlyZWN0b3J5Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5iciIsImxvZ2luX2hpbnQiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsIm5iZiI6MTYyMzQ4NDE0MCwic2NvcGUiOiJvcGVuaWQgcHJvZmlsZSIsImlzcyI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImJpbmRpbmdfbWVzc2FnZSI6IjEyMzQiLCJleHAiOjE2MjM0ODQ0NDAsImlhdCI6MTYyMzQ4NDE0MCwianRpIjoiSzRKSklZMmZyd3pLUDQxeEpZeDAifQ.0uYCz5fN5hLuaRPQWt85VTKp4mgYx_mDDPQ2e-JWr0W835HeSOGRnonsn2cMstCmUUoDY9ZN9U84Iacj1yMyC64luSxJG0M3RKlbY3K1Ypxh2VzPagsmYMD0Dqdycj3qQnsWPq0E_lKB4CL9ZgJ_6PBemRFMGcsy50GLspZOcJ1qDnQJI5wJyu23O2ytfoFWArnFIFyqX0lFVHEvgxvXQQ8oKHmEP4dQIsph33VIPl9OWxB4sikq9ycIWXYRdYGfKVbfhRd-hj1ggbAlwmSUV36FWxBwe_V44zrhER0e6MGiB82lkQ7ZokK_gBDy7UV9j4jGmhK9YP-makbnATfrpA
2021-06-12 07:49:00 SUCCESS
EnsureServerConfigurationSupportsMTLS
Found supported MTLS method
method
tls_client_auth
2021-06-12 07:49:00
AddClientIdToBackchannelAuthenticationEndpointRequest
request
eyJraWQiOiJMR3hGTnQxNl9FSjdLWS1JUGxXcTBJWko0NkJaYWZpQUN2SFhyc2dGOEowIiwiYWxnIjoiUFMyNTYifQ.eyJjbGllbnRfbm90aWZpY2F0aW9uX3Rva2VuIjoiVnJkYnNFQU9cL3B0M1NISXlJbUUrPSIsImF1ZCI6Imh0dHBzOlwvXC9hdXRoLnNhbmRib3guZGlyZWN0b3J5Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5iciIsImxvZ2luX2hpbnQiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsIm5iZiI6MTYyMzQ4NDE0MCwic2NvcGUiOiJvcGVuaWQgcHJvZmlsZSIsImlzcyI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImJpbmRpbmdfbWVzc2FnZSI6IjEyMzQiLCJleHAiOjE2MjM0ODQ0NDAsImlhdCI6MTYyMzQ4NDE0MCwianRpIjoiSzRKSklZMmZyd3pLUDQxeEpZeDAifQ.0uYCz5fN5hLuaRPQWt85VTKp4mgYx_mDDPQ2e-JWr0W835HeSOGRnonsn2cMstCmUUoDY9ZN9U84Iacj1yMyC64luSxJG0M3RKlbY3K1Ypxh2VzPagsmYMD0Dqdycj3qQnsWPq0E_lKB4CL9ZgJ_6PBemRFMGcsy50GLspZOcJ1qDnQJI5wJyu23O2ytfoFWArnFIFyqX0lFVHEvgxvXQQ8oKHmEP4dQIsph33VIPl9OWxB4sikq9ycIWXYRdYGfKVbfhRd-hj1ggbAlwmSUV36FWxBwe_V44zrhER0e6MGiB82lkQ7ZokK_gBDy7UV9j4jGmhK9YP-makbnATfrpA
client_id
yQx5B3YzgvrVhdnXqeJuV
2021-06-12 07:49:00
CallBackchannelAuthenticationEndpoint
HTTP request
request_uri
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/backchannel
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "900"
}
request_body
request=eyJraWQiOiJMR3hGTnQxNl9FSjdLWS1JUGxXcTBJWko0NkJaYWZpQUN2SFhyc2dGOEowIiwiYWxnIjoiUFMyNTYifQ.eyJjbGllbnRfbm90aWZpY2F0aW9uX3Rva2VuIjoiVnJkYnNFQU9cL3B0M1NISXlJbUUrPSIsImF1ZCI6Imh0dHBzOlwvXC9hdXRoLnNhbmRib3guZGlyZWN0b3J5Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5iciIsImxvZ2luX2hpbnQiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsIm5iZiI6MTYyMzQ4NDE0MCwic2NvcGUiOiJvcGVuaWQgcHJvZmlsZSIsImlzcyI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImJpbmRpbmdfbWVzc2FnZSI6IjEyMzQiLCJleHAiOjE2MjM0ODQ0NDAsImlhdCI6MTYyMzQ4NDE0MCwianRpIjoiSzRKSklZMmZyd3pLUDQxeEpZeDAifQ.0uYCz5fN5hLuaRPQWt85VTKp4mgYx_mDDPQ2e-JWr0W835HeSOGRnonsn2cMstCmUUoDY9ZN9U84Iacj1yMyC64luSxJG0M3RKlbY3K1Ypxh2VzPagsmYMD0Dqdycj3qQnsWPq0E_lKB4CL9ZgJ_6PBemRFMGcsy50GLspZOcJ1qDnQJI5wJyu23O2ytfoFWArnFIFyqX0lFVHEvgxvXQQ8oKHmEP4dQIsph33VIPl9OWxB4sikq9ycIWXYRdYGfKVbfhRd-hj1ggbAlwmSUV36FWxBwe_V44zrhER0e6MGiB82lkQ7ZokK_gBDy7UV9j4jGmhK9YP-makbnATfrpA&client_id=yQx5B3YzgvrVhdnXqeJuV
request_mutual_tls
{
  "cert": "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\u003d\u003d",
  "key": "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",
  "ca": "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\u003d"
}
2021-06-12 07:49:01 RESPONSE
CallBackchannelAuthenticationEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Sat, 12 Jun 2021 07:49:01 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "78",
  "x-amzn-requestid": "be1adb6c-3011-459e-abd0-2e782bd9b08f",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "78",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUFEEuGvHcF38g\u003d",
  "cache-control": "no-cache, no-store",
  "x-content-type-options": "nosniff",
  "x-amzn-trace-id": "Root\u003d1-60c466ed-5c46b524ebe1a0b967b4f81a;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:01 GMT"
}
response_body
{"expires_in":600,"auth_req_id":"mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"}
2021-06-12 07:49:01
CallBackchannelAuthenticationEndpoint
Backchannel Authentication endpoint response
backchannel_authentication_endpoint_response
{"expires_in":600,"auth_req_id":"mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"}
2021-06-12 07:49:01 SUCCESS
CallBackchannelAuthenticationEndpoint
Parsed backchannel authentication endpoint response
expires_in
600
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
2021-06-12 07:49:01 SUCCESS
CheckBackchannelAuthenticationEndpointHttpStatus200
Backchannel authentication endpoint http status code was 200
2021-06-12 07:49:01 SUCCESS
CheckBackchannelAuthenticationEndpointContentType
Backchannel authentication endpoint Content-Type: header is application/json
2021-06-12 07:49:01 SUCCESS
CheckIfBackchannelAuthenticationEndpointResponseError
No error from Backchannel authentication endpoint
2021-06-12 07:49:01 SUCCESS
ValidateAuthenticationRequestId
auth_req_id passed all validation checks
2021-06-12 07:49:01 SUCCESS
EnsureMinimumAuthenticationRequestIdLength
auth_req_id is of sufficient length
actual
344
required
128
2021-06-12 07:49:01 SUCCESS
EnsureMinimumAuthenticationRequestIdEntropy
Calculated shannon entropy seems sufficient
actual
207.81960944786323
expected
96.0
2021-06-12 07:49:01 SUCCESS
EnsureRecommendedAuthenticationRequestIdEntropy
Calculated entropy
actual
207.81960944786323
recommended
160.0
2021-06-12 07:49:01 SUCCESS
ValidateAuthenticationRequestIdExpiresIn
expires_in passed all validation checks
expires_in
600
2021-06-12 07:49:01
ValidateAuthenticationRequestIdInterval
interval is empty.
Call token endpoint expecting pending
2021-06-12 07:49:01 SUCCESS
CreateTokenEndpointRequestForCIBAGrant
grant_type
urn:openid:params:grant-type:ciba
2021-06-12 07:49:01
AddAuthReqIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
2021-06-12 07:49:01 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
client_id
yQx5B3YzgvrVhdnXqeJuV
2021-06-12 07:49:01
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "140"
}
request_body
grant_type=urn%3Aopenid%3Aparams%3Agrant-type%3Aciba&auth_req_id=mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL&client_id=yQx5B3YzgvrVhdnXqeJuV
request_mutual_tls
{
  "cert": "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\u003d\u003d",
  "key": "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",
  "ca": "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\u003d"
}
2021-06-12 07:49:02 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Sat, 12 Jun 2021 07:49:02 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "158",
  "x-amzn-requestid": "3dee1180-4596-4a5b-abca-45ba98f23b15",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "158",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUFNHHUPHcFrJQ\u003d",
  "cache-control": "no-cache, no-store",
  "vary": "Origin",
  "x-content-type-options": "nosniff",
  "x-amzn-trace-id": "Root\u003d1-60c466ee-1d04ef757e7f2504b7709eea;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:02 GMT",
  "connection": "close"
}
response_body
{"error":"authorization_pending","error_description":"authorization request is still pending as the end-user hasn't yet completed the user interaction steps"}
2021-06-12 07:49:02 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
authorization_pending
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:02 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
Verify token endpoint response is pending or slow_down
2021-06-12 07:49:02 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2021-06-12 07:49:02 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
authorization_pending
2021-06-12 07:49:02 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:02 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response error returned valid 'error_description' field
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:02 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2021-06-12 07:49:02 SUCCESS
EnsureErrorTokenEndpointSlowdownOrAuthorizationPending
error met 'slow_down' or 'authorization_pending'
error
authorization_pending
Call token endpoint expecting pending (second time)
2021-06-12 07:49:07 SUCCESS
CreateTokenEndpointRequestForCIBAGrant
grant_type
urn:openid:params:grant-type:ciba
2021-06-12 07:49:07
AddAuthReqIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
2021-06-12 07:49:07 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
client_id
yQx5B3YzgvrVhdnXqeJuV
2021-06-12 07:49:07
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "140"
}
request_body
grant_type=urn%3Aopenid%3Aparams%3Agrant-type%3Aciba&auth_req_id=mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL&client_id=yQx5B3YzgvrVhdnXqeJuV
request_mutual_tls
{
  "cert": "MIIGRTCCBS2gAwIBAgIUUls0BztW2mZLlJuWjGMYMk/WGgswDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDMyOTE5MzMwMFoXDTIyMDQyOTA1MzMwMFowgYIxCzAJBgNVBAYTAkJSMRUwEwYDVQQKEwxPcGVuIEJhbmtpbmcxLTArBgNVBAsTJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzEtMCsGA1UEAxMkMDExMTQ4YzgtNzJmNi00NDkxLTgxYTUtOTU0Y2FiNzU3YjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYIr88lua2GcMdXbKcQQqfrmIhBspyaJLKadZ9EvNH4aDrs3KNSjRLyYIX/pjOWwpx1hCiysQokAwIer/nolDXSbcT6nL4ROZwi212wLkqVXKzc+9ivQN+QGO07QgqDaBRJztp72gK3sZQOYFvD3K0V8tAMd8KJR+dhGDu0yBpevHMTKvm/vEBPxpXlnQo91z69AWUQRYZh/C7uo4iVF1ItnF2MWtyt63dt006uigc5IX3VkIpVLxm/hRO5hfkYGZ62QaJZrjLtPOmkpWhNfYKRNmffCp74rYVe8QOP+KGrauWwehIGoKDRDNSaO9qP7vTiH/60oqbxrhFOAmbEvTwIDAQABo4ICwTCCAr0wDgYDVR0PAQH/BAQDAgOoMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSPkqh540cUBTSvBSQKkTRKuSvisDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWZpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAsuQYJD3yl/t/DtYLf5OCNLVcInO7VbdqKvnseXHImm0R+V6kYNChyV7yBJz1ZaP1iMrFX3BygSKfqLUZL3k2qvfP/FqHDAkpPVk3Pa9y8UR3FbL2X1GKsZf9pEEUhe1zMErppzfR9WVNqXV3G0JaVV1abKapx5S25Yl+0d3C+Ki+La0QKftCuWDChYgSXqgXKsdt2WBAyuazeUt5lQ2fMJk3kOXzMdEGCV46DbIVu6IuuA2REiyjbtpeynaOH0vO5SZxPWXtdlB7OCDNHnCKsoVmy/L+41uRVhvAVLoMk69U6EtsA2PASygM9VodUSiX80yAp76LO2nIuHf4XP8WPg\u003d\u003d",
  "key": "MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQC5givzyW5rYZwx1dspxBCp+uYiEGynJokspp1n0S80fhoOuzco1KNEvJghf+mM5bCnHWEKLKxCiQDAh6v+eiUNdJtxPqcvhE5nCLbXbAuSpVcrNz72K9A35AY7TtCCoNoFEnO2nvaArexlA5gW8PcrRXy0Ax3wolH52EYO7TIGl68cxMq+b+8QE/GleWdCj3XPr0BZRBFhmH8Lu6jiJUXUi2cXYxa3K3rd23TTq6KBzkhfdWQilUvGb+FE7mF+RgZnrZBolmuMu086aSlaE19gpE2Z98KnvithV7xA4/4oatq5bB6EgagoNEM1Jo72o/u9OIf/rSipvGuEU4CZsS9PAgMBAAECggEAH74EY0yeVkV3gpeDTtw7tbo20rFYxikz464G1RLYLvU85DRotdXcshBLP8AxaGiNF6tRRXprZ18l/8u3RG4GFQ1U48XCucC74al+D9JvEIK2LbDgVyMcF9QutMtBpnh7lc6YejEtIMuh3Y8F4TcONBtJwUufPeOof0XghwFTRAk5mgSkUzU2gCIcLZdzyQrfTEzqYUqiXyvfB5kVnh2g/sO/0PgJJ09RvwFNzBk9p/rhC239txwFggEwJD7YRN5HqGJ2Y9Pa7e8AqP20SjApAgeyps/dnQGVdVUdr4rEPhTvGpdcFTdEtb0bVX8sipb2Xr8ZHu7vHhLPOIOceheXoQKBgQDsuuuGPrSJLuF8tVSJD5RUFc9vXgv7YjNqsu1pXz7L0kZJyk3zs287cngW/AB3vGfAz78TMvR08xuYiz+jACo58R/+owgfRTEk1DSB//ReoQiAI7IHzjTXEqb9WeutO5iuxaIfiIsSi3Oe8XOLYYJI87o+XeZelMaZrs696vtfFwKBgQDIm9+bKOcNjEK/0py7fQWgCGZaRJErvCLfNsnWVdqUkoefroS4X9CtlTtaP8n9xVe2lM1Yz0NpEKGIYmi9Z0R3negiugttVxCRIMxjmWRIhGu1wRe+TL932nrNIduC5n5RZu0Lnj5nqH2XpjdINfKamGyHreuK0tmqT3M0mp6UiQKBgQC7ukM58xHx09aGsbl2837Z623TUA5KbIZ/r6KrtBc1ROvualrEzl+AEfd/qpmoWiUg9t38mKTY9UzF/G8bkO7rgfawVJMFUTZ2kT2Ode5Q+HyoOSZeID0w7R61vJAzkRY0So+VWA+JRkMLIUhSmKHbvkPMX2RnTq3rg395hhWPQwKBgDERX0o2YP2BVzpQK6H4XI3eQBrINrH53JW4cvoIGeTJSn8WUsQ+O26Z1+ClRaTaxi+Uif21BIoIVVpkp7XcMnUHnKYR14WxDA5TdWrPNCZArY/RYRtc7mBEglD2fRixhCgpAsYauKzmG4IiV9dDyslhivpM4hYcqLztngI555vxAoGBAIGrfv1RyTe5+SCXyKDcWNlWW51xuV1AoO2mOA+A0aavFlwT4JAxywVHYqiqP7V4iUFC8BgVpR4HGZps+aZBKPzbF3Hh834b5BQmJeifjjm05uApey1PWPD4K+YeFnZYPLI2GvcZOSw/mxDP40axShnpqmnevrwFQRxdApfFgQV6",
  "ca": "MIIEajCCA1KgAwIBAgIUdIYzEFdw7QJcrySyq6IiEwZfTfAwDQYJKoZIhvcNAQELBQAwazELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEnMCUGA1UEAxMeT3BlbiBCYW5raW5nIFJvb3QgU0FOREJPWCAtIEcxMB4XDTIwMTIxMTEwMDAwMFoXDTIzMTIxMTEwMDAwMFowcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fX+272mHX5QAcDaWkVHFWjnDIcORNUJU3OuNyeuOYhlvXJWydrXe3O+cV+PS39faMj/nfem3GfJBE7Xn0bWA/8ksxSfrg1BUBJDge4YBBw+VflI3A0g1fk9wJ3HGInsvV4serRJ/ISJTfs0uRNugX+RrbkT/T0tup4vGd3Kl2sbwUdDjokuJNJHANeODRkQ+ra+9Wht71FBlc07yPf7qtpaWHm6aS3s47OJD35ixkG4xiZuHsScxcVtlo1VW98P2cQfH9H2lll4wWlPTVHpPThB2EYrPhwcxDh8kHkkOHNkyHO/fYM47u7H4VeQV75LXWKa7iWmZg+WhFb8TXSr/wIDAQABo4H/MIH8MA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSGf1itF/WCtk60BbP7sM4RQ99MvjAfBgNVHSMEGDAWgBSHE+yWPmLsIRwMSlY68iUM45TpyzBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA0GCSqGSIb3DQEBCwUAA4IBAQBy4928pVPeiHItbneeOAsDoc4Obv5Q4tn0QpqTlSeCSBbHIURfEr/WaS8sv0JTbIPQEfiO/UtaN8Qxh7j5iVqTwTwgVaE/vDkHxGOen5YxAuyV1Fpm4W4oQyybiA6puHEBcteuiYZHppGSMus3bmFYTPE+9B0+W914VZeHDujJ2Y3YMc32Q+PC+Zmv8RfaXp7+QCNYSXR5Ts3q3IesWGmlvAM5tLQi75JmzdWXJ1uKU4u3Nrw5jY4UaOlvB5Re2BSmcjxdLT/5pApzkS+tO6lICnPAtk/Y6dOJ0YxQBMImtliYp02yfwRaqP8WJ4CnwUHil3ZRt8U9I+psU8b4WV/3MIIDpjCCAo6gAwIBAgIUS3mWeRx1uG/SMl/ql55VwRtNz7wwDQYJKoZIhvcNAQELBQAwazELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEnMCUGA1UEAxMeT3BlbiBCYW5raW5nIFJvb3QgU0FOREJPWCAtIEcxMB4XDTIwMTIxMTEwMDAwMFoXDTI1MTIxMDEwMDAwMFowazELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEnMCUGA1UEAxMeT3BlbiBCYW5raW5nIFJvb3QgU0FOREJPWCAtIEcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp50jjNh0wu8ioziC1HuWqOfgXwxeiePiRGw5tKDqKIbC7XV1ghEcDiymTHHWWJSQ1LEsmYpZVwaos5Mrz2xJwytg8K5eqFqa7QvfOOul29bnzEFk+1gX/0nOYws3Lba9E7S+uPaUmfElF4r2lcCNL2f3F87RozqZf+DQBdGUzAt9n+ipY1JpqfI3KF/5qgRkPoIfJD+aj2Y1D6eYjs5uMRLU8FMYt0CCfv/Ak6mq4Y9/7CaMKp5qjlrrDux00IDpxoXGKx5cK0KgACb2UBZ98oDQxcGrbRIyp8VGmv68BkEQcm7NljP863uBVxtnVTpRwQ1xwYEbmSSyoonXy575wQIDAQABo0IwQDAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUhxPslj5i7CEcDEpWOvIlDOOU6cswDQYJKoZIhvcNAQELBQADggEBAFoYqwoH7zvr4v0SQ/hWx/bWFRIcV/Rf6rEWGyT/moVAEjPbGH6tyHhbxh3RdGcPY7Pzn797lXDGRu0pHv+GAHUA1v1PewCp0IHYukmN5D8+Qumem6byHyONyUASMlY0lUOzx9mHVBMuj6u6kvn9xjL6xsPS+Cglv/3SUXUR0mMCYf963xnFBIRLTRlbykgJomUptVl/F5U/+8cD+lB/fcZPoQVI0kK0VV51jAODSIhS6vqzQzH4cpUmcPh4dy+7RzdTTktxOTXTqAy9/Yx+fk18O9qSQw1MKa9dDZ4YLnAQS2fJJqIE1DXIta0LpqM4pMoRMXvp9SLU0atVZLEu6Sc\u003d"
}
2021-06-12 07:49:08 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Sat, 12 Jun 2021 07:49:08 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "158",
  "x-amzn-requestid": "49c2428c-e3a1-4e35-b20a-30aa3a8dc984",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "158",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUGJFTrvHcFrNA\u003d",
  "cache-control": "no-cache, no-store",
  "vary": "Origin",
  "x-content-type-options": "nosniff",
  "x-amzn-trace-id": "Root\u003d1-60c466f3-72fa8fe16137aa0d65f92615;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:08 GMT",
  "connection": "close"
}
response_body
{"error":"authorization_pending","error_description":"authorization request is still pending as the end-user hasn't yet completed the user interaction steps"}
2021-06-12 07:49:08 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
authorization_pending
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:08 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
Verify token endpoint response is pending or slow_down
2021-06-12 07:49:08 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2021-06-12 07:49:08 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
authorization_pending
2021-06-12 07:49:08 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:08 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response error returned valid 'error_description' field
error_description
authorization request is still pending as the end-user hasn't yet completed the user interaction steps
2021-06-12 07:49:08 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2021-06-12 07:49:08 SUCCESS
EnsureErrorTokenEndpointSlowdownOrAuthorizationPending
error met 'slow_down' or 'authorization_pending'
error
authorization_pending
2021-06-12 07:49:08
CallAutomatedCibaApprovalEndpoint
If your server supports automated testing, you can set 'automated_ciba_approval_url' in your configuration to a url like https://cibasim.example.com/action?token={auth_req_id}&type={action} (auth_req_id will be automatically substituted for the current auth_req_id by the conformance suite, action will be allow or deny depending on the test)
2021-06-12 07:49:08
TellUserToDoCIBAAuthentication
Please authenticate and authorize the request
2021-06-12 07:49:16 INCOMING
fapi-ciba-id1-ping-with-mtls-ciba-notification-endpoint-response-401-and-require-server-does-not-retry
Incoming HTTP request to test instance fVyeskNra9bh6S1
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer VrdbsEAO/pt3SHIyImE+\u003d",
  "content-type": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "61",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
ciba-notification-endpoint
incoming_body_form_params
incoming_method
POST
incoming_body_json
{
  "auth_req_id": "mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"
}
incoming_query_string_params
{}
incoming_body
{"auth_req_id":"mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"}
2021-06-12 07:49:16 SUCCESS
ExpectServerDoesNotCallNotificationEndpointTwice
Server called notification endpoint once
2021-06-12 07:49:16 OUTGOING
fapi-ciba-id1-ping-with-mtls-ciba-notification-endpoint-response-401-and-require-server-does-not-retry
Response to HTTP request to test instance fVyeskNra9bh6S1
outgoing_status_code
401
outgoing_headers
{}
outgoing_body
CIBA Notification Endpoint returns a HTTP 401 Unauthorized response, even though the token is valid.
outgoing_path
ciba-notification-endpoint
Verify notification callback
2021-06-12 07:49:21 SUCCESS
EnsureIncomingTls12
Found TLS 1.2 connection
2021-06-12 07:49:21 SUCCESS
EnsureIncomingTlsSecureCipher
TLS cipher is allowed
actual
ECDHE-RSA-AES128-GCM-SHA256
expected
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-06-12 07:49:21 SUCCESS
CheckIncomingContentTypeIsApplicationJson
Incoming request Content-Type: header has the expected value
content_type
application/json
expected
application/json
2021-06-12 07:49:21 SUCCESS
VerifyBearerTokenHeaderCallback
'Authorization' header in notification callback contained client_notification_token.
2021-06-12 07:49:21
CheckAuthReqIdInCallback
notification_callback contents
headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer VrdbsEAO/pt3SHIyImE+\u003d",
  "content-type": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "61",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
query_string_params
{}
method
POST
body
{"auth_req_id":"mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"}
body_json
{
  "auth_req_id": "mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"
}
2021-06-12 07:49:21 SUCCESS
CheckAuthReqIdInCallback
auth_req_id valued received in callback is correct
2021-06-12 07:49:21 SUCCESS
CheckNotificationCallbackOnlyAuthReqId
body received in notification callback contained only auth_req_id
body
{
  "auth_req_id": "mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL"
}
Calling token endpoint after ping notification
2021-06-12 07:49:21 SUCCESS
CreateTokenEndpointRequestForCIBAGrant
grant_type
urn:openid:params:grant-type:ciba
2021-06-12 07:49:21
AddAuthReqIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
2021-06-12 07:49:21 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
urn:openid:params:grant-type:ciba
auth_req_id
mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL
client_id
yQx5B3YzgvrVhdnXqeJuV
2021-06-12 07:49:21
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "140"
}
request_body
grant_type=urn%3Aopenid%3Aparams%3Agrant-type%3Aciba&auth_req_id=mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL&client_id=yQx5B3YzgvrVhdnXqeJuV
request_mutual_tls
{
  "cert": "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\u003d\u003d",
  "key": "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",
  "ca": "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\u003d"
}
2021-06-12 07:49:22 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Sat, 12 Jun 2021 07:49:22 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1090",
  "x-amzn-requestid": "be4b7151-d185-4546-9e3b-52c4d06bdc89",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "1090",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUIUFsvPHcFqlA\u003d",
  "cache-control": "no-cache, no-store",
  "vary": "Origin",
  "x-content-type-options": "nosniff",
  "x-amzn-trace-id": "Root\u003d1-60c46701-5c1183e593261908b27c4595;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:22 GMT"
}
response_body
{"access_token":"lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O","expires_in":3600,"id_token":"eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE2MjA4NDM5Mjk4MDUtZDE5NTkxMjU5YiJ9.eyJzdWIiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsImF0X2hhc2giOiJNMU9LSGZrZVpNdWloakRPX2VldXF3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOnJ0X2hhc2giOiJ0cW1GZlN5WkQ3U0ZESEhacUtTNEN3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOmF1dGhfcmVxX2lkIjoibW1reFJlamNWbkdWdXJGV2dQa0NDNEZuWEJxWkhEZGp1dnVqOHRJYVd0TCIsImF1ZCI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImV4cCI6MTYyMzQ4Nzc2MiwiaWF0IjoxNjIzNDg0MTYyLCJpc3MiOiJodHRwczovL2F1dGguc2FuZGJveC5kaXJlY3Rvcnkub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyIn0.ObZT7-DEV9RcsVmXeMl3hszTZHKPIpzkbj2MSq9i3Bud_3dkDpOCPm9dwrtWGhjmi34nTFCrtagRXFSX5bG0vxTtbwfCpznhyS6Gb4CZno8k-Q9QumIM0vfWzFpoGcwleWsWTUU5JKLAy8kMXMfANqsknK2jXnQLwWR6jRxq-4Fgv8YdvzkOnm2S9tYTTALpYlyiYP5h7qt6av_zYnn1ECAvnjImeCAQq4lhWKzkSXb5I_1dyTklUzC-OxYcs-jnECFjAt_rEHj-Bga6XKtKyzGJ9MD_F1yCmb1CeyOn1uZGNLloae-IiC54WBFq8nY-AN51XVxSSbYN9VJ-mwetyw","refresh_token":"UXakHfSKV-XDDvNF1Y-NHwWh9Z31oHcgrhI9dLuDcB2","scope":"openid profile","token_type":"Bearer"}
2021-06-12 07:49:22 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
access_token
lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O
expires_in
3600
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE2MjA4NDM5Mjk4MDUtZDE5NTkxMjU5YiJ9.eyJzdWIiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsImF0X2hhc2giOiJNMU9LSGZrZVpNdWloakRPX2VldXF3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOnJ0X2hhc2giOiJ0cW1GZlN5WkQ3U0ZESEhacUtTNEN3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOmF1dGhfcmVxX2lkIjoibW1reFJlamNWbkdWdXJGV2dQa0NDNEZuWEJxWkhEZGp1dnVqOHRJYVd0TCIsImF1ZCI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImV4cCI6MTYyMzQ4Nzc2MiwiaWF0IjoxNjIzNDg0MTYyLCJpc3MiOiJodHRwczovL2F1dGguc2FuZGJveC5kaXJlY3Rvcnkub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyIn0.ObZT7-DEV9RcsVmXeMl3hszTZHKPIpzkbj2MSq9i3Bud_3dkDpOCPm9dwrtWGhjmi34nTFCrtagRXFSX5bG0vxTtbwfCpznhyS6Gb4CZno8k-Q9QumIM0vfWzFpoGcwleWsWTUU5JKLAy8kMXMfANqsknK2jXnQLwWR6jRxq-4Fgv8YdvzkOnm2S9tYTTALpYlyiYP5h7qt6av_zYnn1ECAvnjImeCAQq4lhWKzkSXb5I_1dyTklUzC-OxYcs-jnECFjAt_rEHj-Bga6XKtKyzGJ9MD_F1yCmb1CeyOn1uZGNLloae-IiC54WBFq8nY-AN51XVxSSbYN9VJ-mwetyw
refresh_token
UXakHfSKV-XDDvNF1Y-NHwWh9Z31oHcgrhI9dLuDcB2
scope
openid profile
token_type
Bearer
2021-06-12 07:49:22 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
Verify token endpoint response
2021-06-12 07:49:22 SUCCESS
CheckTokenEndpointHttpStatus200
Token endpoint http status code was 200
2021-06-12 07:49:22 SUCCESS
CheckTokenEndpointCacheHeaders
'pragma' and 'cache-control' headers in token endpoint response contain expected values.
cache_control_header
no-cache, no-store
pragma_header
no-cache
2021-06-12 07:49:22 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-06-12 07:49:22 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O
2021-06-12 07:49:22 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O
type
Bearer
2021-06-12 07:49:22 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
3600
2021-06-12 07:49:22 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
3600
2021-06-12 07:49:22 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
UXakHfSKV-XDDvNF1Y-NHwWh9Z31oHcgrhI9dLuDcB2
2021-06-12 07:49:22 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
344
required
128
2021-06-12 07:49:22 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
209.81960944786323
expected
96.0
2021-06-12 07:49:22 SUCCESS
EnsureMinimumAccessTokenLength
Access token is of sufficient length
actual
344
required
128
2021-06-12 07:49:22 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
207.81960944786323
expected
96.0
2021-06-12 07:49:22 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE2MjA4NDM5Mjk4MDUtZDE5NTkxMjU5YiJ9.eyJzdWIiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsImF0X2hhc2giOiJNMU9LSGZrZVpNdWloakRPX2VldXF3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOnJ0X2hhc2giOiJ0cW1GZlN5WkQ3U0ZESEhacUtTNEN3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOmF1dGhfcmVxX2lkIjoibW1reFJlamNWbkdWdXJGV2dQa0NDNEZuWEJxWkhEZGp1dnVqOHRJYVd0TCIsImF1ZCI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImV4cCI6MTYyMzQ4Nzc2MiwiaWF0IjoxNjIzNDg0MTYyLCJpc3MiOiJodHRwczovL2F1dGguc2FuZGJveC5kaXJlY3Rvcnkub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyIn0.ObZT7-DEV9RcsVmXeMl3hszTZHKPIpzkbj2MSq9i3Bud_3dkDpOCPm9dwrtWGhjmi34nTFCrtagRXFSX5bG0vxTtbwfCpznhyS6Gb4CZno8k-Q9QumIM0vfWzFpoGcwleWsWTUU5JKLAy8kMXMfANqsknK2jXnQLwWR6jRxq-4Fgv8YdvzkOnm2S9tYTTALpYlyiYP5h7qt6av_zYnn1ECAvnjImeCAQq4lhWKzkSXb5I_1dyTklUzC-OxYcs-jnECFjAt_rEHj-Bga6XKtKyzGJ9MD_F1yCmb1CeyOn1uZGNLloae-IiC54WBFq8nY-AN51XVxSSbYN9VJ-mwetyw
header
{
  "kid": "1620843929805-d19591259b",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "at_hash": "M1OKHfkeZMuihjDO_eeuqw",
  "sub": "ralph.bragg@raidiam.com",
  "aud": "yQx5B3YzgvrVhdnXqeJuV",
  "urn:openid:params:jwt:claim:auth_req_id": "mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL",
  "urn:openid:params:jwt:claim:rt_hash": "tqmFfSyZD7SFDHHZqKS4Cw",
  "iss": "https://auth.sandbox.directory.openbankingbrasil.org.br",
  "exp": 1623487762,
  "iat": 1623484162
}
2021-06-12 07:49:22 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-06-12 07:49:22 SUCCESS
EnsureIdTokenContainsKid
kid was found in the ID token header
kid
1620843929805-d19591259b
2021-06-12 07:49:22 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE2MjA4NDM5Mjk4MDUtZDE5NTkxMjU5YiJ9.eyJzdWIiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsImF0X2hhc2giOiJNMU9LSGZrZVpNdWloakRPX2VldXF3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOnJ0X2hhc2giOiJ0cW1GZlN5WkQ3U0ZESEhacUtTNEN3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOmF1dGhfcmVxX2lkIjoibW1reFJlamNWbkdWdXJGV2dQa0NDNEZuWEJxWkhEZGp1dnVqOHRJYVd0TCIsImF1ZCI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImV4cCI6MTYyMzQ4Nzc2MiwiaWF0IjoxNjIzNDg0MTYyLCJpc3MiOiJodHRwczovL2F1dGguc2FuZGJveC5kaXJlY3Rvcnkub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyIn0.ObZT7-DEV9RcsVmXeMl3hszTZHKPIpzkbj2MSq9i3Bud_3dkDpOCPm9dwrtWGhjmi34nTFCrtagRXFSX5bG0vxTtbwfCpznhyS6Gb4CZno8k-Q9QumIM0vfWzFpoGcwleWsWTUU5JKLAy8kMXMfANqsknK2jXnQLwWR6jRxq-4Fgv8YdvzkOnm2S9tYTTALpYlyiYP5h7qt6av_zYnn1ECAvnjImeCAQq4lhWKzkSXb5I_1dyTklUzC-OxYcs-jnECFjAt_rEHj-Bga6XKtKyzGJ9MD_F1yCmb1CeyOn1uZGNLloae-IiC54WBFq8nY-AN51XVxSSbYN9VJ-mwetyw
2021-06-12 07:49:22 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE2MjA4NDM5Mjk4MDUtZDE5NTkxMjU5YiJ9.eyJzdWIiOiJyYWxwaC5icmFnZ0ByYWlkaWFtLmNvbSIsImF0X2hhc2giOiJNMU9LSGZrZVpNdWloakRPX2VldXF3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOnJ0X2hhc2giOiJ0cW1GZlN5WkQ3U0ZESEhacUtTNEN3IiwidXJuOm9wZW5pZDpwYXJhbXM6and0OmNsYWltOmF1dGhfcmVxX2lkIjoibW1reFJlamNWbkdWdXJGV2dQa0NDNEZuWEJxWkhEZGp1dnVqOHRJYVd0TCIsImF1ZCI6InlReDVCM1l6Z3ZyVmhkblhxZUp1ViIsImV4cCI6MTYyMzQ4Nzc2MiwiaWF0IjoxNjIzNDg0MTYyLCJpc3MiOiJodHRwczovL2F1dGguc2FuZGJveC5kaXJlY3Rvcnkub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyIn0.ObZT7-DEV9RcsVmXeMl3hszTZHKPIpzkbj2MSq9i3Bud_3dkDpOCPm9dwrtWGhjmi34nTFCrtagRXFSX5bG0vxTtbwfCpznhyS6Gb4CZno8k-Q9QumIM0vfWzFpoGcwleWsWTUU5JKLAy8kMXMfANqsknK2jXnQLwWR6jRxq-4Fgv8YdvzkOnm2S9tYTTALpYlyiYP5h7qt6av_zYnn1ECAvnjImeCAQq4lhWKzkSXb5I_1dyTklUzC-OxYcs-jnECFjAt_rEHj-Bga6XKtKyzGJ9MD_F1yCmb1CeyOn1uZGNLloae-IiC54WBFq8nY-AN51XVxSSbYN9VJ-mwetyw
2021-06-12 07:49:22 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
ralph.bragg@raidiam.com
2021-06-12 07:49:22 SUCCESS
FAPIValidateIdTokenSigningAlg
id_token was signed with a permitted algorithm
permitted
[
  "PS256",
  "ES256"
]
alg
PS256
2021-06-12 07:49:22 INFO
FAPIValidateIdTokenEncryptionAlg
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-06-12 07:49:22 INFO
FAPIValidateEncryptedIdTokenHasKid
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-06-12 07:49:22 SUCCESS
FAPICIBAValidateIdTokenAuthRequestIdClaims
urn:openid:params:jwt:claim:auth_req_id claim in the ID Token matched the auth_req_id in the request.
2021-06-12 07:49:22 SUCCESS
ValidateIdTokenNotIncludeCHashAndSHash
id_token claims correctly does not contain 'c_hash' and 's_hash'
claims
{
  "at_hash": "M1OKHfkeZMuihjDO_eeuqw",
  "sub": "ralph.bragg@raidiam.com",
  "aud": "yQx5B3YzgvrVhdnXqeJuV",
  "urn:openid:params:jwt:claim:auth_req_id": "mmkxRejcVnGVurFWgPkCC4FnXBqZHDdjuvuj8tIaWtL",
  "urn:openid:params:jwt:claim:rt_hash": "tqmFfSyZD7SFDHHZqKS4Cw",
  "iss": "https://auth.sandbox.directory.openbankingbrasil.org.br",
  "exp": 1623487762,
  "iat": 1623484162
}
2021-06-12 07:49:22 SUCCESS
ExtractAtHash
Extracted at_hash from ID Token
at_hash
M1OKHfkeZMuihjDO_eeuqw
alg
PS256
2021-06-12 07:49:22 SUCCESS
ExtractRtHash
Extracted rt_hash from ID Token
rt_hash
tqmFfSyZD7SFDHHZqKS4Cw
alg
PS256
2021-06-12 07:49:22 SUCCESS
FAPICIBAValidateRtHash
rt_hash validated successfully
expected_hash
tqmFfSyZD7SFDHHZqKS4Cw
unhashed_value
UXakHfSKV-XDDvNF1Y-NHwWh9Z31oHcgrhI9dLuDcB2
id_token_hash
tqmFfSyZD7SFDHHZqKS4Cw
2021-06-12 07:49:22 SUCCESS
ValidateAtHash
at_hash validated successfully
expected_hash
M1OKHfkeZMuihjDO_eeuqw
unhashed_value
lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O
id_token_hash
M1OKHfkeZMuihjDO_eeuqw
Resource server endpoint tests
2021-06-12 07:49:22
CreateEmptyResourceEndpointRequestHeaders
Created empty headers
resource_endpoint_request_headers
{}
2021-06-12 07:49:22 SUCCESS
AddFAPIAuthDateToResourceEndpointRequest
Added x-fapi-auth-date to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Sat, 12 Jun 2021 07:49:22 GMT"
}
2021-06-12 07:49:22
CreateRandomFAPIInteractionId
Created interaction ID
fapi_interaction_id
683868c2-523b-4147-a680-c828c7343c1d
2021-06-12 07:49:22 SUCCESS
AddFAPIInteractionIdToResourceEndpointRequest
Added x-fapi-interaction-id to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Sat, 12 Jun 2021 07:49:22 GMT",
  "x-fapi-interaction-id": "683868c2-523b-4147-a680-c828c7343c1d"
}
2021-06-12 07:49:22
CallProtectedResourceWithBearerTokenAndCustomHeaders
HTTP request
request_uri
https://matls-auth.sandbox.directory.openbankingbrasil.org.br/me
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Sat, 12 Jun 2021 07:49:22 GMT",
  "x-fapi-interaction-id": "683868c2-523b-4147-a680-c828c7343c1d",
  "authorization": "Bearer lJgiW9CYQqLkFy8aHFQ19LVePIiv2kW4WdvOkGmYp3O",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
request_mutual_tls
{
  "cert": "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\u003d\u003d",
  "key": "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",
  "ca": "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\u003d"
}
2021-06-12 07:49:23 RESPONSE
CallProtectedResourceWithBearerTokenAndCustomHeaders
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Sat, 12 Jun 2021 07:49:23 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "226",
  "x-amzn-requestid": "80f06f2d-320e-40fb-908b-0a1addd49483",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "226",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUIiFnrvHcFv8A\u003d",
  "cache-control": "no-cache, no-store",
  "vary": "Origin",
  "x-content-type-options": "nosniff",
  "x-fapi-interaction-id": "683868c2-523b-4147-a680-c828c7343c1d",
  "x-amzn-trace-id": "Root\u003d1-60c46703-354615e1a06e09da4b9ca4af;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:23 GMT"
}
response_body
{"sub":"ralph.bragg@raidiam.com","email":"ralph.bragg@raidiam.com","email_verified":true,"phone_number":"+447890130559","phone_number_verified":true,"address":{},"family_name":"Bragg","given_name":"Ralph","name":"Ralph Bragg"}
2021-06-12 07:49:23 SUCCESS
CallProtectedResourceWithBearerTokenAndCustomHeaders
Got a response from the resource endpoint
headers
{
  "date": "Sat, 12 Jun 2021 07:49:23 GMT",
  "server": "Server",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "226",
  "x-amzn-requestid": "80f06f2d-320e-40fb-908b-0a1addd49483",
  "x-dns-prefetch-control": "off",
  "x-xss-protection": "1; mode\u003dblock",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-frame-options": "SAMEORIGIN",
  "x-amzn-remapped-content-length": "226",
  "x-amzn-remapped-connection": "close",
  "x-download-options": "noopen",
  "x-amz-apigw-id": "AzUIiFnrvHcFv8A\u003d",
  "cache-control": "no-cache, no-store",
  "vary": "Origin",
  "x-content-type-options": "nosniff",
  "x-fapi-interaction-id": "683868c2-523b-4147-a680-c828c7343c1d",
  "x-amzn-trace-id": "Root\u003d1-60c46703-354615e1a06e09da4b9ca4af;Sampled\u003d1",
  "pragma": "no-cache",
  "x-amzn-remapped-date": "Sat, 12 Jun 2021 07:49:23 GMT"
}
status_code
{
  "code": 200
}
body
{"sub":"ralph.bragg@raidiam.com","email":"ralph.bragg@raidiam.com","email_verified":true,"phone_number":"+447890130559","phone_number_verified":true,"address":{},"family_name":"Bragg","given_name":"Ralph","name":"Ralph Bragg"}
2021-06-12 07:49:23 SUCCESS
CheckForDateHeaderInResourceResponse
Date header present and validated
date
Sat, 12 Jun 2021 07:49:23 GMT
skew
774
2021-06-12 07:49:23 SUCCESS
CheckForFAPIInteractionIdInResourceResponse
Found x-fapi-interaction-id
interaction_id
683868c2-523b-4147-a680-c828c7343c1d
2021-06-12 07:49:23 SUCCESS
EnsureMatchingFAPIInteractionId
Interaction ID matched
fapi_interaction_id
683868c2-523b-4147-a680-c828c7343c1d
2021-06-12 07:49:23 SUCCESS
EnsureResourceResponseReturnedJsonContentType
Response content type is JSON
content_type
application/json; charset=utf-8
2021-06-12 07:49:23 FINISHED
fapi-ciba-id1-ping-with-mtls-ciba-notification-endpoint-response-401-and-require-server-does-not-retry
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2021-06-12 07:49:23 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2021-06-12 07:49:25
TEST-RUNNER
Alias has now been claimed by another test
alias
obbsb
new_test_id
6uMwTYoerCuTqUU
Test Results