Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-07-02 20:02:31 INFO
TEST-RUNNER
Test instance yIXeMmJnYKpD3rw created
baseUrl
https://www.certification.openid.net/test/a/bv-openid-cert
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_profile": "openbanking_brazil",
  "fapi_response_mode": "plain_response"
}
alias
bv-openid-cert
description
Teste certificação FAPI BV
planId
Vuny2OBUd5OBK
config
{
  "alias": "bv-openid-cert",
  "description": "Teste certificação FAPI BV",
  "server": {
    "discoveryUrl": "https://api-des.bvopen.com.br/oidc/v1/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1",
    "scope": "openid accounts",
    "jwks": {
      "keys": [
        {
          "p": "97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0",
          "kty": "RSA",
          "q": "xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58",
          "d": "J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ",
          "e": "AQAB",
          "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
          "qi": "nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM",
          "dp": "7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE",
          "dq": "a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE",
          "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw",
          "alg": "PS256"
        }
      ]
    }
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----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\n0dxm\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN RSA PRIVATE KEY-----\nMIIEpAIBAAKCAQEAvvXnVCSkrJz1+ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQB\nK8I9/+ASUDv9l5uFSYM20r/K6l/pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69T\nokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K+Fqef\ngH7xavaCaIs6vX7CowNmq6/D3EUwVnW9TSG7Vnj/zilrODbrcqezFuaKGlLzsY3P\n1vgoGPXOWXy/9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5+H+4tFqy/E5T7S\njkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckwIDAQABAoIBACdmcU5pKRj8YbvR\nGzVmQHjjZamRU3fLRaH7YZcpNFIYMQB+CmfO8h/jSaQIXLB1RDEAw8UEEYf+Nhlh\ns5x6XKqDq9LnAWvxNVHyWiXscSspOswH3seyzFuUHpUp+ninqzeBHf7fTQDXcCiM\njpbWddsAhiF/jEOnkVy+pZwcdcu16PJoyB4qCcmtmS0SZQlKNf5/qBkrf5S/hR0q\naL1d8B7SPmqrW4oIr5s0zMfSVpjtLAaipCkTCanawI7O2gL7aSQoT9ySSBI1qlrX\nUBmSOu/s2dqnBG/xoJtGGYbg6RSNJTVy+r4IamvnRJJyM/OD/ibozrRHJVgJTvVV\nYx9B4VECgYEA97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl\n7/+xEOQ7oL2SmwRkaUcm4DxcSDzdSh+VTid4CrW629pDhnUMdm/G+xKJaQMMtd/s\nfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0CgYEAxVsv\nr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKE\nLxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHV\np8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58CgYEA7/HDwomK8r3CeKQLagyU\nMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe\n9IIPKnC3vVhEqO6hT+kfGv7t1Kd7nIJ5GEYag5XDnmW+LzRRHzgPjr3rD6XVi5Dt\n4dLYx0yICg1atvYD1v2W9dECgYBrfm9K2F+qvS9CmLUWUbNmDAcgP9BLyZoPUJeq\nZmufldbe0h7+lL+aRzGjqRepKK0yGFXHES7Z8a3dI/YkOL3PZpRLF1HFWwUldIHC\nA9roK2S8EY/bJ6poVBujCbrKYCUKz7v/1XQP14yzKxGj9X74gd2n6BVHlEjoG3Ef\n19jfIQKBgQCdhvaYAVrBGYeJn9DRydEu2aWWTWMuNHJXzUtLDtEDSlb4OkR10jX6\nfWV0Ah0MdHgwyOVsZ8HEp7ArTmpGY3YEeBntOpG8OTkRjBkiEddXxKyN6dhnmJL7\nL2xJ8XJAbpwR9jWaqoyA3Z4CmmdTm/+qJqmKvLpFrHAADLYN0iDRsw\u003d\u003d\n-----END RSA PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----\nMIIDbjCCAlagAwIBAgIEYJwNVDANBgkqhkiG9w0BAQsFADB5MQswCQYDVQQGEwJC\nUjELMAkGA1UECAwCU1AxEjAQBgNVBAcMCVNhbyBQYXVsbzEZMBcGA1UECgwQQmFu\nY28gVm90b3JhbnRpbTEZMBcGA1UECwwQQmFuY28gVm90b3JhbnRpbTETMBEGA1UE\nAwwKQ0EgT3BlbiBCVjAeFw0yMTA1MTIxNzE2MDRaFw0yNjA1MTIxNzE2MDRaMHkx\nCzAJBgNVBAYTAkJSMQswCQYDVQQIDAJTUDESMBAGA1UEBwwJU2FvIFBhdWxvMRkw\nFwYDVQQKDBBCYW5jbyBWb3RvcmFudGltMRkwFwYDVQQLDBBCYW5jbyBWb3RvcmFu\ndGltMRMwEQYDVQQDDApDQSBPcGVuIEJWMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A\nMIIBCgKCAQEA2W25nFRLk20snZMTbS0lizEU35NT0BEyGI4SZhQgWkc2J2+Qe03S\nMiyKhL2+RIH7jba/SFHLSyzkv9LFikFT1vh5HXfnpNMo2+SXcYGBQ93zkC99OHE8\n2YozO5CmQwazx+rz0bU6MpGg/ZFdA1rvlMPkE5VzmyJfScr+WoE0f0Pa/zIT/7f7\n//4XLfmW+wmLCkhIV91ceMOmiEovr4eVE8i14+Bgf7pQk1NHSeAlzZMo7XMRGpdV\nhDKTbiJp0AaHp9JZ3goRyxiwvNTLNpsNA2Y1HsMP5qH2K8iZP77MbiqjwqaAQXOr\nugBWJuLaA+KTtgO2I+xef491fygeSvGoIwIDAQABMA0GCSqGSIb3DQEBCwUAA4IB\nAQAVrwjdBPJ7TrkA+EQuf11BnF5fDWmXDCxL2X49nPuzIz67JBKBzoAiilXwuJk+\nY0eysjGDL0PWldQMT10d7jzawTu/jua8DfZPbsnt1yfK0kOu75vVMDr/XRRtLS3h\nDW5WRqrPg7+AlWGhEJOLglGcH/3+Wdi8qihzQ54St2iccWd5v1U3OC7CcLbi+61h\n5Wv0h0ZydJsgYNiCNoS1fmQ+ONOyb1vmw/SQ0gidwM+Rk/6Bm7/+UHPaUBC9N7Hw\nBHgP6LVnJ/DAJhgddFg53k7VT5AtzbqbFMHIZhoyGYfc/FiNwKj4BNR5KDuGsvWG\nBh/BmQh9GF+0DskF7k+fOQ3a\n-----END CERTIFICATE-----\n"
  },
  "client2": {
    "client_id": "juCvRONFJ7tUUWHn3viqeR1HQKgBAwhA",
    "scope": "openid accounts",
    "jwks": {
      "keys": [
        {
          "p": "8pHV-nDnotjMBpBxECngp2PqpRXShCdXeQa1jyKgTSE2JY88luwlOS8Lq8e033TIXhmCqGvWhuf0xbDjtPqaKwlvYrIi06CgziGmrIc_n7wZDEyaJLoC71j8xhCAfpA9dBXUHm6tAWt6vqBciqD1sPzMnGCkiyJQQhQl2Y5rV-8",
          "kty": "RSA",
          "q": "oIF02AO1zUv9QgHvglCEG4Qxksas6jctTVQMZKK25Q34ljS5l4UfRbV6rhRUlOqTud2MqQdLxyt_3rjorvgKwyR7u30bdi3BLnQU_vZWom-tXxB5k5nFLFSLoWSmrBnWNCB7fl-5btQ9ShEhwxRfj27R-oIGAwEEr8nrWLKcQQk",
          "d": "hCyozBjYFaXQckoI2QejYesnd1siB-5K4_XF8gF26I8JNuRbXg32S8GfxlaQUNFlWdr0bbOWDn3IGGHImMRjGos3dDYjS8UBEffGh908fpccFdM_RB5RfTwKpAkrljgLAhawl9tauK2g-0sDdNnzsaVwZmSksBjaq6JBvsgfbmzJhEi8bKmz0vkUxnJ0PLG0nXK4HaPXRbs32SlP8rnmbGEctLdpl03A2gdk5MFiTsfxn-bptlqcDnzeueSQ9pynSMcRuPhvCkuG43fahu-vNZuFH9dRlBT9P8XkbeKiDavmthLkKCNmtNYFVq-n_UHND6CkWGDZ2hhtyhY0NapPsQ",
          "e": "AQAB",
          "use": "sig",
          "kid": "KeyClient2",
          "qi": "7iUU-2k9_ygW-CwjPtL_MUf22UjUV9foB-zdTSO-lQCMGlOgNil-mazOCK0dzQn86CJYgLEwezXTkp9gMn_etHVpFIt1xKE4Fqp2RE8s2Kf4pbKNdSBQrxp-K6tDKGuaZfQzZ9QBe35bOoH3JvHEEemxc0_Vu7r0pfImNV4rFWM",
          "dp": "EFZeMRX1o_QyGacU1l_br6p9HU1Q9nGn5JDdHZzZaxh3iyQQkqGpCCbxBErZFcvJyvyw3iMVOdTZmY8GZyQRyiBCjkUtL0-8ROXjUe9yC5IhpcBrCVo15GT78WMfJGcWnIDz3nDZ2iShCcHHOdcJdTgxl76ylmRjP3AX9IUxGaU",
          "alg": "PS256",
          "dq": "TrGqHA8Vn-ZV8XsJdxcK7oLN22zVcrBC4dsHiH_OtFc5PkvzgrqeLotf7uHA5pJsg4CAao9NNAW71_NJAiBTBoJot_AK-tJMGP6JHMiiiVm_4xAsy5Vk-uso2qSCo3a3cy9J3RgJzrD4q8vihccDY0uuX-hIEkj5h0a0wPQxcCE",
          "n": "mBXP8B1Jqh3KbwBTAJ4xx8ih7OjYcEuFs9rrQZ-O_xQO931g6Qr_-exEOmeTseQm8CGBEOCan80K6wzPP9Ue6ebCGh7ynn2XqETS52QTBTwFCcXV5oplg3FpgvMqifAs63jCjnheVUzqNbFUXi12BbsyU1NwP1hYXcxBUgoopt2IKtBR6B9t2r74wRT0Cx_jH_LI7BkxD4lzqzGs6vkuyaIv5rJT2ZI8PItFs6riMwIKj7n6I3NKdneeXxbLL37EIApnF4jvWvINsiWbp7PVbxpufSzTCT2wVz7rA51dqWOPRFPyRYTgFcdDM_Vp-qXotJDZZsAfFtewMJ2FBr3GZw"
        }
      ]
    }
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIDYjCCAkqgAwIBAgIEYMprHjANBgkqhkiG9w0BAQsFADB5MQswCQYDVQQGEwJC\nUjELMAkGA1UECAwCU1AxEjAQBgNVBAcMCVNhbyBQYXVsbzEZMBcGA1UECgwQQmFu\nY28gVm90b3JhbnRpbTEZMBcGA1UECwwQQmFuY28gVm90b3JhbnRpbTETMBEGA1UE\nAwwKQ0EgT3BlbiBCVjAeFw0yMTA2MTYyMTIwMzBaFw0yMjA2MTYyMTIwMzBaMG0x\nCzAJBgNVBAYTAkJSMQswCQYDVQQIDAJTUDESMBAGA1UEBwwJU2FvIFBhdWxvMRMw\nEQYDVQQKDApCYW5jbzMgUE9DMRMwEQYDVQQLDApCYW5jbzMgUE9DMRMwEQYDVQQD\nDApCYW5jbzMgUE9DMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ko2\n55x50pzlTpHAtlce0US0ecBXD2D08uH2dQyPGu0jM24XRVf+9MR2VrpjU/S9ro7t\neKNyZ93q18f6f0Bbs9qRkVFMGLzwbhB//w26gLzuyvs+y+ocKtanzhLjpuSV5YKZ\nQ3jMAAs+0CMWa+hyHLawKRX7WhUAUKl/ptpcGe2uH98eyZBlwxq/y4v4mtAptSVh\n1Z0YyF5Mtupr7c3sFzSyWfMOcsJXDxL4h2I4gUaGWcLZheg9NL9OP12+314582F0\nDORpKgn/VM6S0PJYmWMEOhogz8bm/dcGRsAwANqCm7EwxMSPId7/UsKYZc02HO/l\ntTtLF6U9SQYhm6HvewIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQAknAgXuj5zxLSy\ndRBEPUa1qM0oVMlBRaTnyMywqwH2MI9RUeCfzbSjW7cDfhDrR6M6oBHTkqr3kKOZ\ntjrv0Kd6P2Qx5m0bkq/kO5XxUk9ESk9uNd4QsJ7r+CSL0+gpoDsUaQOr0eBT7Pjk\nNCM9rHPog7NHMDBmDK+KdbmfjtsJCreGltS6Vc3oHog0wyiGyQkgnZc5GETdSJOT\nu1ibnVeMRMARlgmcOTYmg58wP8tIz+UfzPhdqwneFA70Dj16OYVtxE0Plh/U5HIy\n2zVu6zpZ0Z4Ey+C6apgzadBma1UNnLHqKZQo6Mhx6kmvlUdgl6/MPosj+XPfjH4K\npwbtX5SP\n-----END CERTIFICATE-----",
    "key": "-----BEGIN RSA PRIVATE KEY-----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\nhh4O29fD0OCcIFKuMN/BpTtYztja4VQs3FKUYSmE41s4tI2bYySwKg\u003d\u003d\n-----END RSA PRIVATE KEY-----",
    "ca": "-----BEGIN CERTIFICATE-----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\nBh/BmQh9GF+0DskF7k+fOQ3a\n-----END CERTIFICATE-----"
  },
  "resource": {
    "resourceUrl": "https://mtls-api-des.bvopen.com.br/open-banking/accounts/v1/accounts",
    "consentUrl": "https://mtls-api-des.bvopen.com.br/open-banking/consents/v1/consents",
    "brazilCpf": "27997103015"
  },
  "directory": {
    "discoveryUrl": "https://auth.sandbox.directory.openbankingbrasil.org.br/.well-known/openid-configuration",
    "client_id": "BDjHkfaI83_CWcxWfTCDK",
    "apibase": "https://matls-api.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-ensure-client-id-in-token-endpoint
2021-07-02 20:02:31 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
2021-07-02 20:02:31
GetDynamicServerConfiguration
HTTP request
request_uri
https://api-des.bvopen.com.br/oidc/v1/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-07-02 20:02:32 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Fri, 02 Jul 2021 20:02:32 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3383",
  "connection": "keep-alive",
  "x-powered-by": "Express",
  "vary": "Origin",
  "x-envoy-upstream-service-time": "2",
  "access-control-allow-origin": "*",
  "access-control-allow-headers": "origin, x-requested-with, accept, content-type, Authorization,  x-v, x-min-v, x-fapi-customer-last-logged-time, x-fapi-customer-ip-address, x-fapi-interaction-id, x-fapi-correlation-id, x-fapi-auth-date,x-cds-client-headers",
  "access-control-max-age": "3628800",
  "access-control-allow-methods": "GET, PUT, POST, DELETE, OPTIONS",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
response_body
{"acr_values_supported":["urn:cds.au:cdr:2","urn:cds.au:cdr:3","urn:mace:incommon:iap:silver","urn:brasil:openbanking:loa2","urn:brasil:openbanking:loa3"],"authorization_endpoint":"https://api-des.bvopen.com.br/oidc/v1/authorize","claims_parameter_supported":true,"claims_supported":["sub","name","updated_at","acr","sid","auth_time","iss","cpf","cnpj","given_name","family_name","refresh_token_expires_at","sharing_expires_at"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://api-des.bvopen.com.br/oidc/v1/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials"],"id_token_signing_alg_values_supported":["HS256","PS256"],"issuer":"https://api-des.bvopen.com.br/oidc/v1","jwks_uri":"https://api-des.bvopen.com.br/oidc/v1/jwks","registration_endpoint":"https://mtls-api-des.bvopen.com.br/v1/client-registration","response_modes_supported":["form_post","fragment","query"],"response_types_supported":["code id_token"],"scopes_supported":["openid","consents","resources"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"token_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token","request_object_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"userinfo_endpoint":"https://api-des.bvopen.com.br/oidc/v1/me","userinfo_signing_alg_values_supported":["HS256","PS256"],"introspection_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token/introspection","introspection_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt"],"introspection_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"revocation_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token/revocation","revocation_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt"],"revocation_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"id_token_encryption_alg_values_supported":["A128KW","A256KW","ECDH-ES","ECDH-ES+A128KW","ECDH-ES+A256KW","RSA-OAEP"],"id_token_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"userinfo_encryption_alg_values_supported":["A128KW","A256KW","ECDH-ES","ECDH-ES+A128KW","ECDH-ES+A256KW","RSA-OAEP"],"userinfo_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"request_object_encryption_alg_values_supported":["RSA-OAEP"],"request_object_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"claim_types_supported":["normal"],"tls_client_certificate_bound_access_tokens":true,"cdr_arrangement_revocation_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/arrangements/revoke","mtls_endpoint_aliases":{"registration_endpoint":"https://mtls-api-des.bvopen.com.br/v1/client-registration","token_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token","userinfo_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/me","introspection_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token/introspection","revocation_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token/revocation"}}
2021-07-02 20:02:32
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"acr_values_supported":["urn:cds.au:cdr:2","urn:cds.au:cdr:3","urn:mace:incommon:iap:silver","urn:brasil:openbanking:loa2","urn:brasil:openbanking:loa3"],"authorization_endpoint":"https://api-des.bvopen.com.br/oidc/v1/authorize","claims_parameter_supported":true,"claims_supported":["sub","name","updated_at","acr","sid","auth_time","iss","cpf","cnpj","given_name","family_name","refresh_token_expires_at","sharing_expires_at"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://api-des.bvopen.com.br/oidc/v1/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials"],"id_token_signing_alg_values_supported":["HS256","PS256"],"issuer":"https://api-des.bvopen.com.br/oidc/v1","jwks_uri":"https://api-des.bvopen.com.br/oidc/v1/jwks","registration_endpoint":"https://mtls-api-des.bvopen.com.br/v1/client-registration","response_modes_supported":["form_post","fragment","query"],"response_types_supported":["code id_token"],"scopes_supported":["openid","consents","resources"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"token_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token","request_object_signing_alg_values_supported":["HS256","RS256","PS256","ES256","EdDSA"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"userinfo_endpoint":"https://api-des.bvopen.com.br/oidc/v1/me","userinfo_signing_alg_values_supported":["HS256","PS256"],"introspection_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token/introspection","introspection_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt"],"introspection_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"revocation_endpoint":"https://api-des.bvopen.com.br/oidc/v1/token/revocation","revocation_endpoint_auth_methods_supported":["client_secret_basic","private_key_jwt"],"revocation_endpoint_auth_signing_alg_values_supported":["RS256","PS256","ES256","EdDSA"],"id_token_encryption_alg_values_supported":["A128KW","A256KW","ECDH-ES","ECDH-ES+A128KW","ECDH-ES+A256KW","RSA-OAEP"],"id_token_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"userinfo_encryption_alg_values_supported":["A128KW","A256KW","ECDH-ES","ECDH-ES+A128KW","ECDH-ES+A256KW","RSA-OAEP"],"userinfo_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"request_object_encryption_alg_values_supported":["RSA-OAEP"],"request_object_encryption_enc_values_supported":["A128CBC-HS256","A128GCM","A256CBC-HS512","A256GCM"],"claim_types_supported":["normal"],"tls_client_certificate_bound_access_tokens":true,"cdr_arrangement_revocation_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/arrangements/revoke","mtls_endpoint_aliases":{"registration_endpoint":"https://mtls-api-des.bvopen.com.br/v1/client-registration","token_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token","userinfo_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/me","introspection_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token/introspection","revocation_endpoint":"https://mtls-api-des.bvopen.com.br/oidc/v1/token/revocation"}}
2021-07-02 20:02:32 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
acr_values_supported
[
  "urn:cds.au:cdr:2",
  "urn:cds.au:cdr:3",
  "urn:mace:incommon:iap:silver",
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
authorization_endpoint
https://api-des.bvopen.com.br/oidc/v1/authorize
claims_parameter_supported
true
claims_supported
[
  "sub",
  "name",
  "updated_at",
  "acr",
  "sid",
  "auth_time",
  "iss",
  "cpf",
  "cnpj",
  "given_name",
  "family_name",
  "refresh_token_expires_at",
  "sharing_expires_at"
]
code_challenge_methods_supported
[
  "S256"
]
end_session_endpoint
https://api-des.bvopen.com.br/oidc/v1/session/end
grant_types_supported
[
  "implicit",
  "authorization_code",
  "refresh_token",
  "client_credentials"
]
id_token_signing_alg_values_supported
[
  "HS256",
  "PS256"
]
issuer
https://api-des.bvopen.com.br/oidc/v1
jwks_uri
https://api-des.bvopen.com.br/oidc/v1/jwks
registration_endpoint
https://mtls-api-des.bvopen.com.br/v1/client-registration
response_modes_supported
[
  "form_post",
  "fragment",
  "query"
]
response_types_supported
[
  "code id_token"
]
scopes_supported
[
  "openid",
  "consents",
  "resources"
]
subject_types_supported
[
  "public"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "private_key_jwt",
  "tls_client_auth"
]
token_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
token_endpoint
https://api-des.bvopen.com.br/oidc/v1/token
request_object_signing_alg_values_supported
[
  "HS256",
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
userinfo_endpoint
https://api-des.bvopen.com.br/oidc/v1/me
userinfo_signing_alg_values_supported
[
  "HS256",
  "PS256"
]
introspection_endpoint
https://api-des.bvopen.com.br/oidc/v1/token/introspection
introspection_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "private_key_jwt"
]
introspection_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
revocation_endpoint
https://api-des.bvopen.com.br/oidc/v1/token/revocation
revocation_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "private_key_jwt"
]
revocation_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "PS256",
  "ES256",
  "EdDSA"
]
id_token_encryption_alg_values_supported
[
  "A128KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A256KW",
  "RSA-OAEP"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
userinfo_encryption_alg_values_supported
[
  "A128KW",
  "A256KW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A256KW",
  "RSA-OAEP"
]
userinfo_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
request_object_encryption_alg_values_supported
[
  "RSA-OAEP"
]
request_object_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A128GCM",
  "A256CBC-HS512",
  "A256GCM"
]
claim_types_supported
[
  "normal"
]
tls_client_certificate_bound_access_tokens
true
cdr_arrangement_revocation_endpoint
https://mtls-api-des.bvopen.com.br/oidc/v1/arrangements/revoke
mtls_endpoint_aliases
{
  "registration_endpoint": "https://mtls-api-des.bvopen.com.br/v1/client-registration",
  "token_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token",
  "userinfo_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/me",
  "introspection_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token/introspection",
  "revocation_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token/revocation"
}
2021-07-02 20:02:32 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
mtls_endpoint_aliases
{
  "registration_endpoint": "https://mtls-api-des.bvopen.com.br/v1/client-registration",
  "token_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token",
  "userinfo_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/me",
  "introspection_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token/introspection",
  "revocation_endpoint": "https://mtls-api-des.bvopen.com.br/oidc/v1/token/revocation"
}
2021-07-02 20:02:32 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-07-02 20:02:32
FetchServerKeys
Fetching server key
jwks_uri
https://api-des.bvopen.com.br/oidc/v1/jwks
2021-07-02 20:02:32
FetchServerKeys
HTTP request
request_uri
https://api-des.bvopen.com.br/oidc/v1/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-07-02 20:02:32 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Fri, 02 Jul 2021 20:02:32 GMT",
  "content-type": "application/json",
  "content-length": "1267",
  "connection": "keep-alive",
  "x-powered-by": "Express",
  "vary": "Origin",
  "x-envoy-upstream-service-time": "3",
  "access-control-allow-origin": "*",
  "access-control-allow-headers": "origin, x-requested-with, accept, content-type, Authorization,  x-v, x-min-v, x-fapi-customer-last-logged-time, x-fapi-customer-ip-address, x-fapi-interaction-id, x-fapi-correlation-id, x-fapi-auth-date,x-cds-client-headers",
  "access-control-max-age": "3628800",
  "access-control-allow-methods": "GET, PUT, POST, DELETE, OPTIONS",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
response_body
{"keys":[{"e":"AQAB","n":"zUNZ6v30_8tZGfRiZMY9UUO86rmnNKMVDk4xm4WvVsZO4xS4APgpeReZYu9IfNcEZZ3RGcpvQ5yyL_-OglXQJ6EdLI0FsuyK9PGvYv7DgjonCJBkM9b70zft6-a-Gwy8_GxdzHYiAb0v7089Zruzkk5bN_9tTlzXjUxBpJIaZlFLK1SLH1O88bxCUkiV6YZ6CEoQ_HYkQBJiM88Jz0PkTu_cDnCAlo4o_4geauOqnw5TNFZuTEl8wZ2Smu9rIKvRgLGO643XPl-Lo3_YBm0LwuOQfqqzAtnvU7pOOPNK967fTxGMxumrDhi5VOKIPtFbx3caz81mnKO0RdsQUce0ow","kty":"RSA","kid":"CDSRefImpl","alg":"PS256","use":"sig"},{"e":"AQAB","n":"nSw0NQGE-7gunKlR0tuMNNbXShNo2GSL-wlPEj6fLSuss3Iv734bU4-F_NmNjiOpTztNIyn-mKsM13RXIKZwy8sPc9r3DoC4NMS5W0rBUvYhu0EWdCZbsOGgWm5EqDdHdTOdufcnehNp84QiD6H5NAh5pTDFkRI_YcPOSGMwu8u5mN7UxRyTkYng5zN2vXUafj-oKWDgYnfC2TTmYCFTsJtoxS5dtgRwpqGiGAoGZX_WUB8f9aag7r64gqYwFYk7OPdaMcGgJPeSZRAy2rP9It7Bn-R0CXOStl9wKKk9N9SzTirOXW0PED-bfVmf8vfohOW1fsfaQ4jaqqqN7y8B9Q","kty":"RSA","kid":"RSA-OAEP","alg":"RSA-OAEP-256","use":"enc"},{"e":"AQAB","n":"hqYPNXu57aMFVs7vVAwx-Pemr6qDEBLoJmAGrxpC22WB0yXHL3nMwppYjXF1lNQNQV0yN_tG1_r5h-EPY8bMXTUVMHortalMq6gi0nzNB_d4rPDo154mKXay69JwguqaFilGPNJ7fq1zk3oRqDkmG2IYtQkAOkd6awIi1tHjIcOdyn8sdkkhxccZCrRLpfMKp7_xPNxjNLhEBrWd1SmHL2JbuqqN4ZD_zZK8oumJHwtauQ_v5cGY7S8xSKXWDyO9ld0vTzMpciOcwbUVSGsVb-0XsyP5PLRCug43rLoT-Af3CCRMPiU2JOuS8_cRPiZkmcZ80WY9AbJcNpMkrsDBPQ","kty":"RSA","kid":"PS256","alg":"PS256","use":"sig"}]}
2021-07-02 20:02:32
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"e":"AQAB","n":"zUNZ6v30_8tZGfRiZMY9UUO86rmnNKMVDk4xm4WvVsZO4xS4APgpeReZYu9IfNcEZZ3RGcpvQ5yyL_-OglXQJ6EdLI0FsuyK9PGvYv7DgjonCJBkM9b70zft6-a-Gwy8_GxdzHYiAb0v7089Zruzkk5bN_9tTlzXjUxBpJIaZlFLK1SLH1O88bxCUkiV6YZ6CEoQ_HYkQBJiM88Jz0PkTu_cDnCAlo4o_4geauOqnw5TNFZuTEl8wZ2Smu9rIKvRgLGO643XPl-Lo3_YBm0LwuOQfqqzAtnvU7pOOPNK967fTxGMxumrDhi5VOKIPtFbx3caz81mnKO0RdsQUce0ow","kty":"RSA","kid":"CDSRefImpl","alg":"PS256","use":"sig"},{"e":"AQAB","n":"nSw0NQGE-7gunKlR0tuMNNbXShNo2GSL-wlPEj6fLSuss3Iv734bU4-F_NmNjiOpTztNIyn-mKsM13RXIKZwy8sPc9r3DoC4NMS5W0rBUvYhu0EWdCZbsOGgWm5EqDdHdTOdufcnehNp84QiD6H5NAh5pTDFkRI_YcPOSGMwu8u5mN7UxRyTkYng5zN2vXUafj-oKWDgYnfC2TTmYCFTsJtoxS5dtgRwpqGiGAoGZX_WUB8f9aag7r64gqYwFYk7OPdaMcGgJPeSZRAy2rP9It7Bn-R0CXOStl9wKKk9N9SzTirOXW0PED-bfVmf8vfohOW1fsfaQ4jaqqqN7y8B9Q","kty":"RSA","kid":"RSA-OAEP","alg":"RSA-OAEP-256","use":"enc"},{"e":"AQAB","n":"hqYPNXu57aMFVs7vVAwx-Pemr6qDEBLoJmAGrxpC22WB0yXHL3nMwppYjXF1lNQNQV0yN_tG1_r5h-EPY8bMXTUVMHortalMq6gi0nzNB_d4rPDo154mKXay69JwguqaFilGPNJ7fq1zk3oRqDkmG2IYtQkAOkd6awIi1tHjIcOdyn8sdkkhxccZCrRLpfMKp7_xPNxjNLhEBrWd1SmHL2JbuqqN4ZD_zZK8oumJHwtauQ_v5cGY7S8xSKXWDyO9ld0vTzMpciOcwbUVSGsVb-0XsyP5PLRCug43rLoT-Af3CCRMPiU2JOuS8_cRPiZkmcZ80WY9AbJcNpMkrsDBPQ","kty":"RSA","kid":"PS256","alg":"PS256","use":"sig"}]}
2021-07-02 20:02:32 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "e": "AQAB",
      "n": "zUNZ6v30_8tZGfRiZMY9UUO86rmnNKMVDk4xm4WvVsZO4xS4APgpeReZYu9IfNcEZZ3RGcpvQ5yyL_-OglXQJ6EdLI0FsuyK9PGvYv7DgjonCJBkM9b70zft6-a-Gwy8_GxdzHYiAb0v7089Zruzkk5bN_9tTlzXjUxBpJIaZlFLK1SLH1O88bxCUkiV6YZ6CEoQ_HYkQBJiM88Jz0PkTu_cDnCAlo4o_4geauOqnw5TNFZuTEl8wZ2Smu9rIKvRgLGO643XPl-Lo3_YBm0LwuOQfqqzAtnvU7pOOPNK967fTxGMxumrDhi5VOKIPtFbx3caz81mnKO0RdsQUce0ow",
      "kty": "RSA",
      "kid": "CDSRefImpl",
      "alg": "PS256",
      "use": "sig"
    },
    {
      "e": "AQAB",
      "n": "nSw0NQGE-7gunKlR0tuMNNbXShNo2GSL-wlPEj6fLSuss3Iv734bU4-F_NmNjiOpTztNIyn-mKsM13RXIKZwy8sPc9r3DoC4NMS5W0rBUvYhu0EWdCZbsOGgWm5EqDdHdTOdufcnehNp84QiD6H5NAh5pTDFkRI_YcPOSGMwu8u5mN7UxRyTkYng5zN2vXUafj-oKWDgYnfC2TTmYCFTsJtoxS5dtgRwpqGiGAoGZX_WUB8f9aag7r64gqYwFYk7OPdaMcGgJPeSZRAy2rP9It7Bn-R0CXOStl9wKKk9N9SzTirOXW0PED-bfVmf8vfohOW1fsfaQ4jaqqqN7y8B9Q",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP-256",
      "use": "enc"
    },
    {
      "e": "AQAB",
      "n": "hqYPNXu57aMFVs7vVAwx-Pemr6qDEBLoJmAGrxpC22WB0yXHL3nMwppYjXF1lNQNQV0yN_tG1_r5h-EPY8bMXTUVMHortalMq6gi0nzNB_d4rPDo154mKXay69JwguqaFilGPNJ7fq1zk3oRqDkmG2IYtQkAOkd6awIi1tHjIcOdyn8sdkkhxccZCrRLpfMKp7_xPNxjNLhEBrWd1SmHL2JbuqqN4ZD_zZK8oumJHwtauQ_v5cGY7S8xSKXWDyO9ld0vTzMpciOcwbUVSGsVb-0XsyP5PLRCug43rLoT-Af3CCRMPiU2JOuS8_cRPiZkmcZ80WY9AbJcNpMkrsDBPQ",
      "kty": "RSA",
      "kid": "PS256",
      "alg": "PS256",
      "use": "sig"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "e": "AQAB",
      "n": "zUNZ6v30_8tZGfRiZMY9UUO86rmnNKMVDk4xm4WvVsZO4xS4APgpeReZYu9IfNcEZZ3RGcpvQ5yyL_-OglXQJ6EdLI0FsuyK9PGvYv7DgjonCJBkM9b70zft6-a-Gwy8_GxdzHYiAb0v7089Zruzkk5bN_9tTlzXjUxBpJIaZlFLK1SLH1O88bxCUkiV6YZ6CEoQ_HYkQBJiM88Jz0PkTu_cDnCAlo4o_4geauOqnw5TNFZuTEl8wZ2Smu9rIKvRgLGO643XPl-Lo3_YBm0LwuOQfqqzAtnvU7pOOPNK967fTxGMxumrDhi5VOKIPtFbx3caz81mnKO0RdsQUce0ow",
      "kty": "RSA",
      "kid": "CDSRefImpl",
      "alg": "PS256",
      "use": "sig"
    },
    {
      "e": "AQAB",
      "n": "nSw0NQGE-7gunKlR0tuMNNbXShNo2GSL-wlPEj6fLSuss3Iv734bU4-F_NmNjiOpTztNIyn-mKsM13RXIKZwy8sPc9r3DoC4NMS5W0rBUvYhu0EWdCZbsOGgWm5EqDdHdTOdufcnehNp84QiD6H5NAh5pTDFkRI_YcPOSGMwu8u5mN7UxRyTkYng5zN2vXUafj-oKWDgYnfC2TTmYCFTsJtoxS5dtgRwpqGiGAoGZX_WUB8f9aag7r64gqYwFYk7OPdaMcGgJPeSZRAy2rP9It7Bn-R0CXOStl9wKKk9N9SzTirOXW0PED-bfVmf8vfohOW1fsfaQ4jaqqqN7y8B9Q",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP-256",
      "use": "enc"
    },
    {
      "e": "AQAB",
      "n": "hqYPNXu57aMFVs7vVAwx-Pemr6qDEBLoJmAGrxpC22WB0yXHL3nMwppYjXF1lNQNQV0yN_tG1_r5h-EPY8bMXTUVMHortalMq6gi0nzNB_d4rPDo154mKXay69JwguqaFilGPNJ7fq1zk3oRqDkmG2IYtQkAOkd6awIi1tHjIcOdyn8sdkkhxccZCrRLpfMKp7_xPNxjNLhEBrWd1SmHL2JbuqqN4ZD_zZK8oumJHwtauQ_v5cGY7S8xSKXWDyO9ld0vTzMpciOcwbUVSGsVb-0XsyP5PLRCug43rLoT-Af3CCRMPiU2JOuS8_cRPiZkmcZ80WY9AbJcNpMkrsDBPQ",
      "kty": "RSA",
      "kid": "PS256",
      "alg": "PS256",
      "use": "sig"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-07-02 20:02:32 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-07-02 20:02:32 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-07-02 20:02:32 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "e": "AQAB",
      "n": "zUNZ6v30_8tZGfRiZMY9UUO86rmnNKMVDk4xm4WvVsZO4xS4APgpeReZYu9IfNcEZZ3RGcpvQ5yyL_-OglXQJ6EdLI0FsuyK9PGvYv7DgjonCJBkM9b70zft6-a-Gwy8_GxdzHYiAb0v7089Zruzkk5bN_9tTlzXjUxBpJIaZlFLK1SLH1O88bxCUkiV6YZ6CEoQ_HYkQBJiM88Jz0PkTu_cDnCAlo4o_4geauOqnw5TNFZuTEl8wZ2Smu9rIKvRgLGO643XPl-Lo3_YBm0LwuOQfqqzAtnvU7pOOPNK967fTxGMxumrDhi5VOKIPtFbx3caz81mnKO0RdsQUce0ow",
      "kty": "RSA",
      "kid": "CDSRefImpl",
      "alg": "PS256",
      "use": "sig"
    },
    {
      "e": "AQAB",
      "n": "nSw0NQGE-7gunKlR0tuMNNbXShNo2GSL-wlPEj6fLSuss3Iv734bU4-F_NmNjiOpTztNIyn-mKsM13RXIKZwy8sPc9r3DoC4NMS5W0rBUvYhu0EWdCZbsOGgWm5EqDdHdTOdufcnehNp84QiD6H5NAh5pTDFkRI_YcPOSGMwu8u5mN7UxRyTkYng5zN2vXUafj-oKWDgYnfC2TTmYCFTsJtoxS5dtgRwpqGiGAoGZX_WUB8f9aag7r64gqYwFYk7OPdaMcGgJPeSZRAy2rP9It7Bn-R0CXOStl9wKKk9N9SzTirOXW0PED-bfVmf8vfohOW1fsfaQ4jaqqqN7y8B9Q",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP-256",
      "use": "enc"
    },
    {
      "e": "AQAB",
      "n": "hqYPNXu57aMFVs7vVAwx-Pemr6qDEBLoJmAGrxpC22WB0yXHL3nMwppYjXF1lNQNQV0yN_tG1_r5h-EPY8bMXTUVMHortalMq6gi0nzNB_d4rPDo154mKXay69JwguqaFilGPNJ7fq1zk3oRqDkmG2IYtQkAOkd6awIi1tHjIcOdyn8sdkkhxccZCrRLpfMKp7_xPNxjNLhEBrWd1SmHL2JbuqqN4ZD_zZK8oumJHwtauQ_v5cGY7S8xSKXWDyO9ld0vTzMpciOcwbUVSGsVb-0XsyP5PLRCug43rLoT-Af3CCRMPiU2JOuS8_cRPiZkmcZ80WY9AbJcNpMkrsDBPQ",
      "kty": "RSA",
      "kid": "PS256",
      "alg": "PS256",
      "use": "sig"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
scope
openid accounts
jwks
{
  "keys": [
    {
      "p": "97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0",
      "kty": "RSA",
      "q": "xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58",
      "d": "J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ",
      "e": "AQAB",
      "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
      "qi": "nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM",
      "dp": "7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE",
      "dq": "a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE",
      "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw",
      "alg": "PS256"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2021-07-02 20:02:32 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
MIIDbjCCAlagAwIBAgIEYJwNVDANBgkqhkiG9w0BAQsFADB5MQswCQYDVQQGEwJCUjELMAkGA1UECAwCU1AxEjAQBgNVBAcMCVNhbyBQYXVsbzEZMBcGA1UECgwQQmFuY28gVm90b3JhbnRpbTEZMBcGA1UECwwQQmFuY28gVm90b3JhbnRpbTETMBEGA1UEAwwKQ0EgT3BlbiBCVjAeFw0yMTA1MTIxNzE2MDRaFw0yNjA1MTIxNzE2MDRaMHkxCzAJBgNVBAYTAkJSMQswCQYDVQQIDAJTUDESMBAGA1UEBwwJU2FvIFBhdWxvMRkwFwYDVQQKDBBCYW5jbyBWb3RvcmFudGltMRkwFwYDVQQLDBBCYW5jbyBWb3RvcmFudGltMRMwEQYDVQQDDApDQSBPcGVuIEJWMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2W25nFRLk20snZMTbS0lizEU35NT0BEyGI4SZhQgWkc2J2+Qe03SMiyKhL2+RIH7jba/SFHLSyzkv9LFikFT1vh5HXfnpNMo2+SXcYGBQ93zkC99OHE82YozO5CmQwazx+rz0bU6MpGg/ZFdA1rvlMPkE5VzmyJfScr+WoE0f0Pa/zIT/7f7//4XLfmW+wmLCkhIV91ceMOmiEovr4eVE8i14+Bgf7pQk1NHSeAlzZMo7XMRGpdVhDKTbiJp0AaHp9JZ3goRyxiwvNTLNpsNA2Y1HsMP5qH2K8iZP77MbiqjwqaAQXOrugBWJuLaA+KTtgO2I+xef491fygeSvGoIwIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQAVrwjdBPJ7TrkA+EQuf11BnF5fDWmXDCxL2X49nPuzIz67JBKBzoAiilXwuJk+Y0eysjGDL0PWldQMT10d7jzawTu/jua8DfZPbsnt1yfK0kOu75vVMDr/XRRtLS3hDW5WRqrPg7+AlWGhEJOLglGcH/3+Wdi8qihzQ54St2iccWd5v1U3OC7CcLbi+61h5Wv0h0ZydJsgYNiCNoS1fmQ+ONOyb1vmw/SQ0gidwM+Rk/6Bm7/+UHPaUBC9N7HwBHgP6LVnJ/DAJhgddFg53k7VT5AtzbqbFMHIZhoyGYfc/FiNwKj4BNR5KDuGsvWGBh/BmQh9GF+0DskF7k+fOQ3a
2021-07-02 20:02:32 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-07-02 20:02:32 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "p": "97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0",
      "kty": "RSA",
      "q": "xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58",
      "d": "J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ",
      "e": "AQAB",
      "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
      "qi": "nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM",
      "dp": "7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE",
      "dq": "a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE",
      "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw",
      "alg": "PS256"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
      "alg": "PS256",
      "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-07-02 20:02:32 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-07-02 20:02:32 SUCCESS
FAPIBrazilCheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256"
]
2021-07-02 20:02:32 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "p": "97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0",
      "kty": "RSA",
      "q": "xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58",
      "d": "J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ",
      "e": "AQAB",
      "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
      "qi": "nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM",
      "dp": "7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE",
      "dq": "a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE",
      "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw",
      "alg": "PS256"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
Verify configuration of second client
2021-07-02 20:02:32 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
juCvRONFJ7tUUWHn3viqeR1HQKgBAwhA
scope
openid accounts
jwks
{
  "keys": [
    {
      "p": "8pHV-nDnotjMBpBxECngp2PqpRXShCdXeQa1jyKgTSE2JY88luwlOS8Lq8e033TIXhmCqGvWhuf0xbDjtPqaKwlvYrIi06CgziGmrIc_n7wZDEyaJLoC71j8xhCAfpA9dBXUHm6tAWt6vqBciqD1sPzMnGCkiyJQQhQl2Y5rV-8",
      "kty": "RSA",
      "q": "oIF02AO1zUv9QgHvglCEG4Qxksas6jctTVQMZKK25Q34ljS5l4UfRbV6rhRUlOqTud2MqQdLxyt_3rjorvgKwyR7u30bdi3BLnQU_vZWom-tXxB5k5nFLFSLoWSmrBnWNCB7fl-5btQ9ShEhwxRfj27R-oIGAwEEr8nrWLKcQQk",
      "d": "hCyozBjYFaXQckoI2QejYesnd1siB-5K4_XF8gF26I8JNuRbXg32S8GfxlaQUNFlWdr0bbOWDn3IGGHImMRjGos3dDYjS8UBEffGh908fpccFdM_RB5RfTwKpAkrljgLAhawl9tauK2g-0sDdNnzsaVwZmSksBjaq6JBvsgfbmzJhEi8bKmz0vkUxnJ0PLG0nXK4HaPXRbs32SlP8rnmbGEctLdpl03A2gdk5MFiTsfxn-bptlqcDnzeueSQ9pynSMcRuPhvCkuG43fahu-vNZuFH9dRlBT9P8XkbeKiDavmthLkKCNmtNYFVq-n_UHND6CkWGDZ2hhtyhY0NapPsQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "KeyClient2",
      "qi": "7iUU-2k9_ygW-CwjPtL_MUf22UjUV9foB-zdTSO-lQCMGlOgNil-mazOCK0dzQn86CJYgLEwezXTkp9gMn_etHVpFIt1xKE4Fqp2RE8s2Kf4pbKNdSBQrxp-K6tDKGuaZfQzZ9QBe35bOoH3JvHEEemxc0_Vu7r0pfImNV4rFWM",
      "dp": "EFZeMRX1o_QyGacU1l_br6p9HU1Q9nGn5JDdHZzZaxh3iyQQkqGpCCbxBErZFcvJyvyw3iMVOdTZmY8GZyQRyiBCjkUtL0-8ROXjUe9yC5IhpcBrCVo15GT78WMfJGcWnIDz3nDZ2iShCcHHOdcJdTgxl76ylmRjP3AX9IUxGaU",
      "alg": "PS256",
      "dq": "TrGqHA8Vn-ZV8XsJdxcK7oLN22zVcrBC4dsHiH_OtFc5PkvzgrqeLotf7uHA5pJsg4CAao9NNAW71_NJAiBTBoJot_AK-tJMGP6JHMiiiVm_4xAsy5Vk-uso2qSCo3a3cy9J3RgJzrD4q8vihccDY0uuX-hIEkj5h0a0wPQxcCE",
      "n": "mBXP8B1Jqh3KbwBTAJ4xx8ih7OjYcEuFs9rrQZ-O_xQO931g6Qr_-exEOmeTseQm8CGBEOCan80K6wzPP9Ue6ebCGh7ynn2XqETS52QTBTwFCcXV5oplg3FpgvMqifAs63jCjnheVUzqNbFUXi12BbsyU1NwP1hYXcxBUgoopt2IKtBR6B9t2r74wRT0Cx_jH_LI7BkxD4lzqzGs6vkuyaIv5rJT2ZI8PItFs6riMwIKj7n6I3NKdneeXxbLL37EIApnF4jvWvINsiWbp7PVbxpufSzTCT2wVz7rA51dqWOPRFPyRYTgFcdDM_Vp-qXotJDZZsAfFtewMJ2FBr3GZw"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2021-07-02 20:02:32 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
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
2021-07-02 20:02:32 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-07-02 20:02:32 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "p": "8pHV-nDnotjMBpBxECngp2PqpRXShCdXeQa1jyKgTSE2JY88luwlOS8Lq8e033TIXhmCqGvWhuf0xbDjtPqaKwlvYrIi06CgziGmrIc_n7wZDEyaJLoC71j8xhCAfpA9dBXUHm6tAWt6vqBciqD1sPzMnGCkiyJQQhQl2Y5rV-8",
      "kty": "RSA",
      "q": "oIF02AO1zUv9QgHvglCEG4Qxksas6jctTVQMZKK25Q34ljS5l4UfRbV6rhRUlOqTud2MqQdLxyt_3rjorvgKwyR7u30bdi3BLnQU_vZWom-tXxB5k5nFLFSLoWSmrBnWNCB7fl-5btQ9ShEhwxRfj27R-oIGAwEEr8nrWLKcQQk",
      "d": "hCyozBjYFaXQckoI2QejYesnd1siB-5K4_XF8gF26I8JNuRbXg32S8GfxlaQUNFlWdr0bbOWDn3IGGHImMRjGos3dDYjS8UBEffGh908fpccFdM_RB5RfTwKpAkrljgLAhawl9tauK2g-0sDdNnzsaVwZmSksBjaq6JBvsgfbmzJhEi8bKmz0vkUxnJ0PLG0nXK4HaPXRbs32SlP8rnmbGEctLdpl03A2gdk5MFiTsfxn-bptlqcDnzeueSQ9pynSMcRuPhvCkuG43fahu-vNZuFH9dRlBT9P8XkbeKiDavmthLkKCNmtNYFVq-n_UHND6CkWGDZ2hhtyhY0NapPsQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "KeyClient2",
      "qi": "7iUU-2k9_ygW-CwjPtL_MUf22UjUV9foB-zdTSO-lQCMGlOgNil-mazOCK0dzQn86CJYgLEwezXTkp9gMn_etHVpFIt1xKE4Fqp2RE8s2Kf4pbKNdSBQrxp-K6tDKGuaZfQzZ9QBe35bOoH3JvHEEemxc0_Vu7r0pfImNV4rFWM",
      "dp": "EFZeMRX1o_QyGacU1l_br6p9HU1Q9nGn5JDdHZzZaxh3iyQQkqGpCCbxBErZFcvJyvyw3iMVOdTZmY8GZyQRyiBCjkUtL0-8ROXjUe9yC5IhpcBrCVo15GT78WMfJGcWnIDz3nDZ2iShCcHHOdcJdTgxl76ylmRjP3AX9IUxGaU",
      "alg": "PS256",
      "dq": "TrGqHA8Vn-ZV8XsJdxcK7oLN22zVcrBC4dsHiH_OtFc5PkvzgrqeLotf7uHA5pJsg4CAao9NNAW71_NJAiBTBoJot_AK-tJMGP6JHMiiiVm_4xAsy5Vk-uso2qSCo3a3cy9J3RgJzrD4q8vihccDY0uuX-hIEkj5h0a0wPQxcCE",
      "n": "mBXP8B1Jqh3KbwBTAJ4xx8ih7OjYcEuFs9rrQZ-O_xQO931g6Qr_-exEOmeTseQm8CGBEOCan80K6wzPP9Ue6ebCGh7ynn2XqETS52QTBTwFCcXV5oplg3FpgvMqifAs63jCjnheVUzqNbFUXi12BbsyU1NwP1hYXcxBUgoopt2IKtBR6B9t2r74wRT0Cx_jH_LI7BkxD4lzqzGs6vkuyaIv5rJT2ZI8PItFs6riMwIKj7n6I3NKdneeXxbLL37EIApnF4jvWvINsiWbp7PVbxpufSzTCT2wVz7rA51dqWOPRFPyRYTgFcdDM_Vp-qXotJDZZsAfFtewMJ2FBr3GZw"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "KeyClient2",
      "alg": "PS256",
      "n": "mBXP8B1Jqh3KbwBTAJ4xx8ih7OjYcEuFs9rrQZ-O_xQO931g6Qr_-exEOmeTseQm8CGBEOCan80K6wzPP9Ue6ebCGh7ynn2XqETS52QTBTwFCcXV5oplg3FpgvMqifAs63jCjnheVUzqNbFUXi12BbsyU1NwP1hYXcxBUgoopt2IKtBR6B9t2r74wRT0Cx_jH_LI7BkxD4lzqzGs6vkuyaIv5rJT2ZI8PItFs6riMwIKj7n6I3NKdneeXxbLL37EIApnF4jvWvINsiWbp7PVbxpufSzTCT2wVz7rA51dqWOPRFPyRYTgFcdDM_Vp-qXotJDZZsAfFtewMJ2FBr3GZw"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-07-02 20:02:32 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-07-02 20:02:32 SUCCESS
FAPIBrazilCheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256"
]
2021-07-02 20:02:32 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "p": "8pHV-nDnotjMBpBxECngp2PqpRXShCdXeQa1jyKgTSE2JY88luwlOS8Lq8e033TIXhmCqGvWhuf0xbDjtPqaKwlvYrIi06CgziGmrIc_n7wZDEyaJLoC71j8xhCAfpA9dBXUHm6tAWt6vqBciqD1sPzMnGCkiyJQQhQl2Y5rV-8",
      "kty": "RSA",
      "q": "oIF02AO1zUv9QgHvglCEG4Qxksas6jctTVQMZKK25Q34ljS5l4UfRbV6rhRUlOqTud2MqQdLxyt_3rjorvgKwyR7u30bdi3BLnQU_vZWom-tXxB5k5nFLFSLoWSmrBnWNCB7fl-5btQ9ShEhwxRfj27R-oIGAwEEr8nrWLKcQQk",
      "d": "hCyozBjYFaXQckoI2QejYesnd1siB-5K4_XF8gF26I8JNuRbXg32S8GfxlaQUNFlWdr0bbOWDn3IGGHImMRjGos3dDYjS8UBEffGh908fpccFdM_RB5RfTwKpAkrljgLAhawl9tauK2g-0sDdNnzsaVwZmSksBjaq6JBvsgfbmzJhEi8bKmz0vkUxnJ0PLG0nXK4HaPXRbs32SlP8rnmbGEctLdpl03A2gdk5MFiTsfxn-bptlqcDnzeueSQ9pynSMcRuPhvCkuG43fahu-vNZuFH9dRlBT9P8XkbeKiDavmthLkKCNmtNYFVq-n_UHND6CkWGDZ2hhtyhY0NapPsQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "KeyClient2",
      "qi": "7iUU-2k9_ygW-CwjPtL_MUf22UjUV9foB-zdTSO-lQCMGlOgNil-mazOCK0dzQn86CJYgLEwezXTkp9gMn_etHVpFIt1xKE4Fqp2RE8s2Kf4pbKNdSBQrxp-K6tDKGuaZfQzZ9QBe35bOoH3JvHEEemxc0_Vu7r0pfImNV4rFWM",
      "dp": "EFZeMRX1o_QyGacU1l_br6p9HU1Q9nGn5JDdHZzZaxh3iyQQkqGpCCbxBErZFcvJyvyw3iMVOdTZmY8GZyQRyiBCjkUtL0-8ROXjUe9yC5IhpcBrCVo15GT78WMfJGcWnIDz3nDZ2iShCcHHOdcJdTgxl76ylmRjP3AX9IUxGaU",
      "alg": "PS256",
      "dq": "TrGqHA8Vn-ZV8XsJdxcK7oLN22zVcrBC4dsHiH_OtFc5PkvzgrqeLotf7uHA5pJsg4CAao9NNAW71_NJAiBTBoJot_AK-tJMGP6JHMiiiVm_4xAsy5Vk-uso2qSCo3a3cy9J3RgJzrD4q8vihccDY0uuX-hIEkj5h0a0wPQxcCE",
      "n": "mBXP8B1Jqh3KbwBTAJ4xx8ih7OjYcEuFs9rrQZ-O_xQO931g6Qr_-exEOmeTseQm8CGBEOCan80K6wzPP9Ue6ebCGh7ynn2XqETS52QTBTwFCcXV5oplg3FpgvMqifAs63jCjnheVUzqNbFUXi12BbsyU1NwP1hYXcxBUgoopt2IKtBR6B9t2r74wRT0Cx_jH_LI7BkxD4lzqzGs6vkuyaIv5rJT2ZI8PItFs6riMwIKj7n6I3NKdneeXxbLL37EIApnF4jvWvINsiWbp7PVbxpufSzTCT2wVz7rA51dqWOPRFPyRYTgFcdDM_Vp-qXotJDZZsAfFtewMJ2FBr3GZw"
    }
  ]
}
2021-07-02 20:02:32 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2021-07-02 20:02:32 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://mtls-api-des.bvopen.com.br/open-banking/accounts/v1/accounts
consentUrl
https://mtls-api-des.bvopen.com.br/open-banking/consents/v1/consents
brazilCpf
27997103015
2021-07-02 20:02:32 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://mtls-api-des.bvopen.com.br/open-banking/accounts/v1/accounts
2021-07-02 20:02:32 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "mtls-api-des.bvopen.com.br",
  "testPort": 443
}
2021-07-02 20:02:32 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "mtls-api-des.bvopen.com.br",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "mtls-api-des.bvopen.com.br",
  "testPort": 443
}
2021-07-02 20:02:32
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Setup Done
Use client_credentials grant to obtain Brazil consent
2021-07-02 20:02:32 SUCCESS
CreateTokenEndpointRequestForClientCredentialsGrant
grant_type
client_credentials
scope
openid accounts
2021-07-02 20:02:32 SUCCESS
SetConsentsScopeOnTokenEndpointRequest
Set scope parameter to 'consents'
grant_type
client_credentials
scope
consents
2021-07-02 20:02:32 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
client_credentials
scope
consents
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
2021-07-02 20:02:32
CallTokenEndpoint
HTTP request
request_uri
https://mtls-api-des.bvopen.com.br/oidc/v1/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "87"
}
request_body
grant_type=client_credentials&scope=consents&client_id=AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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"
}
2021-07-02 20:02:33 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Fri, 02 Jul 2021 20:02:33 GMT",
  "content-type": "application/json",
  "content-length": "122",
  "connection": "keep-alive",
  "host": "mtls-api-des.bvopen.com.br",
  "x-forwarded-for": "35.196.44.185",
  "x-forwarded-port": "443",
  "x-forwarded-proto": "https",
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "user-agent": "Apache-HttpClient/4.5.13 (Java/11.0.11)",
  "accept-encoding": "gzip,deflate",
  "trilhaauditoria.siglasistema": "_apim",
  "trilhaauditoria.ticket": "3a9a1789-7876-46f1-8cac-8fc3e7be0b90",
  "trilhaauditoria.loginusuariofinal": "usuario.anonimo",
  "trilhaauditoria.enderecoipcliente": "35.196.44.185",
  "trilhaauditoria.fase": "1",
  "siglasistema": "_apim",
  "ticket": "3a9a1789-7876-46f1-8cac-8fc3e7be0b90",
  "loginusuariofinal": "usuario.anonimo",
  "enderecoipcliente": "35.196.44.185",
  "fase": "1",
  "authorization": "Basic QVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzE6Zkptczg0ZmpwY2NGUHhWYg\u003d\u003d",
  "access-control-allow-origin": "*",
  "access-control-allow-headers": "origin, x-requested-with, accept, content-type, Authorization,  x-v, x-min-v, x-fapi-customer-last-logged-time, x-fapi-customer-ip-address, x-fapi-interaction-id, x-fapi-correlation-id, x-fapi-auth-date,x-cds-client-headers",
  "access-control-max-age": "3628800",
  "access-control-allow-methods": "GET, PUT, POST, DELETE, OPTIONS",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
response_body
{
  "access_token": "UiFxQ6UB8tbRwkoZCirz7z0irWvU",
  "expires_in": 599,
  "scope": "consents",
  "token_type": "bearer"
}
2021-07-02 20:02:33
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{
  "access_token": "UiFxQ6UB8tbRwkoZCirz7z0irWvU",
  "expires_in": 599,
  "scope": "consents",
  "token_type": "bearer"
}
2021-07-02 20:02:33 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
UiFxQ6UB8tbRwkoZCirz7z0irWvU
expires_in
599
scope
consents
token_type
bearer
2021-07-02 20:02:33 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-07-02 20:02:33 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
UiFxQ6UB8tbRwkoZCirz7z0irWvU
2021-07-02 20:02:33 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
UiFxQ6UB8tbRwkoZCirz7z0irWvU
type
bearer
2021-07-02 20:02:33 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
599
2021-07-02 20:02:33 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
599
2021-07-02 20:02:33
CreateEmptyResourceEndpointRequestHeaders
Created empty headers
resource_endpoint_request_headers
{}
2021-07-02 20:02:33 SUCCESS
AddFAPIAuthDateToResourceEndpointRequest
Added x-fapi-auth-date to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Fri, 02 Jul 2021 20:02:33 GMT"
}
2021-07-02 20:02:33 SUCCESS
FAPIBrazilCreateConsentRequest
consent_endpoint_request
{
  "data": {
    "permissions": [
      "ACCOUNTS_READ"
    ],
    "loggedUser": {
      "document": {
        "identification": "27997103015",
        "rel": "CPF"
      }
    }
  }
}
2021-07-02 20:02:33 SUCCESS
FAPIBrazilAddExpirationToConsentRequest
Added expiration time to consent request
consent_endpoint_request
{
  "data": {
    "permissions": [
      "ACCOUNTS_READ"
    ],
    "loggedUser": {
      "document": {
        "identification": "27997103015",
        "rel": "CPF"
      }
    },
    "expirationDateTime": "2021-07-02T22:02:33Z"
  }
}
2021-07-02 20:02:33
CallConsentEndpointWithBearerToken
HTTP request
request_uri
https://mtls-api-des.bvopen.com.br/open-banking/consents/v1/consents
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 02 Jul 2021 20:02:33 GMT",
  "accept-charset": "utf-8",
  "content-type": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer UiFxQ6UB8tbRwkoZCirz7z0irWvU",
  "content-length": "157"
}
request_body
{"data":{"permissions":["ACCOUNTS_READ"],"loggedUser":{"document":{"identification":"27997103015","rel":"CPF"}},"expirationDateTime":"2021-07-02T22:02:33Z"}}
request_mutual_tls
{
  "cert": "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",
  "key": "MIIEpAIBAAKCAQEAvvXnVCSkrJz1+ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9/+ASUDv9l5uFSYM20r/K6l/pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K+FqefgH7xavaCaIs6vX7CowNmq6/D3EUwVnW9TSG7Vnj/zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy/9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5+H+4tFqy/E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckwIDAQABAoIBACdmcU5pKRj8YbvRGzVmQHjjZamRU3fLRaH7YZcpNFIYMQB+CmfO8h/jSaQIXLB1RDEAw8UEEYf+Nhlhs5x6XKqDq9LnAWvxNVHyWiXscSspOswH3seyzFuUHpUp+ninqzeBHf7fTQDXcCiMjpbWddsAhiF/jEOnkVy+pZwcdcu16PJoyB4qCcmtmS0SZQlKNf5/qBkrf5S/hR0qaL1d8B7SPmqrW4oIr5s0zMfSVpjtLAaipCkTCanawI7O2gL7aSQoT9ySSBI1qlrXUBmSOu/s2dqnBG/xoJtGGYbg6RSNJTVy+r4IamvnRJJyM/OD/ibozrRHJVgJTvVVYx9B4VECgYEA97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7/+xEOQ7oL2SmwRkaUcm4DxcSDzdSh+VTid4CrW629pDhnUMdm/G+xKJaQMMtd/sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0CgYEAxVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58CgYEA7/HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT+kfGv7t1Kd7nIJ5GEYag5XDnmW+LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dECgYBrfm9K2F+qvS9CmLUWUbNmDAcgP9BLyZoPUJeqZmufldbe0h7+lL+aRzGjqRepKK0yGFXHES7Z8a3dI/YkOL3PZpRLF1HFWwUldIHCA9roK2S8EY/bJ6poVBujCbrKYCUKz7v/1XQP14yzKxGj9X74gd2n6BVHlEjoG3Ef19jfIQKBgQCdhvaYAVrBGYeJn9DRydEu2aWWTWMuNHJXzUtLDtEDSlb4OkR10jX6fWV0Ah0MdHgwyOVsZ8HEp7ArTmpGY3YEeBntOpG8OTkRjBkiEddXxKyN6dhnmJL7L2xJ8XJAbpwR9jWaqoyA3Z4CmmdTm/+qJqmKvLpFrHAADLYN0iDRsw\u003d\u003d",
  "ca": "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"
}
2021-07-02 20:02:34 RESPONSE
CallConsentEndpointWithBearerToken
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "date": "Fri, 02 Jul 2021 20:02:34 GMT",
  "content-type": "application/json",
  "content-length": "811",
  "connection": "keep-alive",
  "host": "mtls-api-des.bvopen.com.br",
  "x-forwarded-for": "35.196.44.185",
  "x-forwarded-port": "443",
  "x-forwarded-proto": "https",
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 02 Jul 2021 20:02:33 GMT",
  "accept-charset": "utf-8",
  "authorization": "Bearer eyJraWQiOiJkZWZhdWx0X3NzbF9rZXkiLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJBUWgxbmttTGhRM2hjeGdNdHpJS2pSNkF0QmdaeHdXMSIsImlzcyI6Imh0dHBzOlwvXC9hcGktZGVzLmJhbmNvdm90b3JhbnRpbS5jb20uYnI6NDQzIiwidG9rZW5fZGV0YWlscyI6eyJzY29wZSI6Im9vYiIsImV4cGlyZXNfaW4iOjM2MDAuMCwidG9rZW5fdHlwZSI6IkJlYXJlciIsInVzZXJuYW1lIjoiIiwicm9sZXMiOiIifSwiZXhwIjoxNjI1MzQyNTUzLCJpYXQiOjE2MjUyNTYxNTMsImp0aSI6ImJkZTU3OTc4LWFiMGUtNDk3MC05NjkzLWVhMzhhOTlmMWEyZSJ9.PAmGYLAr6JWq3ysIqG-u1Om-I7YmbwBnvYP-9uuNQl75erC4EO_rQSIADyMwnSTJC04zHwNJAQ6UfTpg5PpKxmlyCHrlKD0OFabEdLzjXCOzoJUbyOXfe7Ex3opLUozMeHdVGaKib6i37B5xc_cZyIoJGjneE-o80iWxCC_GWWBaAGr678gB_9labTPiDU0ZbDgrsQxJmyrU2rvq4rTBhhOqT-ZnddIKo5Pe950evwkHZDh5FOKXPd4b8E7XVt68iZBVhFT3iBIIXoUtt4DZMeno_YmEc-BKKTuQ9wyIIvfgdcFoLsyCUGTcuEpAHT7GXFhu81IBEQ7T8tfkf35IXw",
  "user-agent": "Apache-HttpClient/4.5.13 (Java/11.0.11)",
  "accept-encoding": "gzip,deflate",
  "trilhaauditoria.siglasistema": "_apim",
  "trilhaauditoria.ticket": "f56f2099-f7b1-40e4-9ca7-d9c6e477b239",
  "trilhaauditoria.loginusuariofinal": "usuario.anonimo",
  "trilhaauditoria.enderecoipcliente": "35.196.44.185",
  "trilhaauditoria.fase": "1",
  "siglasistema": "_apim",
  "ticket": "f56f2099-f7b1-40e4-9ca7-d9c6e477b239",
  "loginusuariofinal": "usuario.anonimo",
  "enderecoipcliente": "35.196.44.185",
  "fase": "1",
  "x-v": "1",
  "x-fapi-interaction-id": "4b6b314e-cd41-11eb-b8bc-0242ac130003",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
response_body
{"data":{"brandID":"29698749425984912674","brandName":"Organização A","consentId":"urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d","creationDateTime":"2021-05-21T08:30Z","status":"AUTHORISED","statusUpdateDateTime":"2021-05-21T08:30Z","permissions":["ACCOUNTS_READ"],"expirationDateTime":"2021-05-21T08:30Z","transactionFromDateTime":"2021-01-01T00:00Z","transactionToDateTime":"2021-02-01T23:59:59Z"},"links":{"self":"https://api.banco.com.br/open-banking/api/v1/accounts","first":"https://api.banco.com.br/open-banking/api/v1/accounts","prev":"https://api.banco.com.br/open-banking/api/v1/accounts","next":"https://api.banco.com.br/open-banking/api/v1/accounts","last":"https://api.banco.com.br/open-banking/api/v1/accounts"},"meta":{"totalRecords":1,"totalPages":1,"requestDateTime":"2021-05-21T08:30Z"}}
2021-07-02 20:02:34
CallConsentEndpointWithBearerToken
Consent endpoint response
consent_endpoint_response
{"data":{"brandID":"29698749425984912674","brandName":"Organização A","consentId":"urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d","creationDateTime":"2021-05-21T08:30Z","status":"AUTHORISED","statusUpdateDateTime":"2021-05-21T08:30Z","permissions":["ACCOUNTS_READ"],"expirationDateTime":"2021-05-21T08:30Z","transactionFromDateTime":"2021-01-01T00:00Z","transactionToDateTime":"2021-02-01T23:59:59Z"},"links":{"self":"https://api.banco.com.br/open-banking/api/v1/accounts","first":"https://api.banco.com.br/open-banking/api/v1/accounts","prev":"https://api.banco.com.br/open-banking/api/v1/accounts","next":"https://api.banco.com.br/open-banking/api/v1/accounts","last":"https://api.banco.com.br/open-banking/api/v1/accounts"},"meta":{"totalRecords":1,"totalPages":1,"requestDateTime":"2021-05-21T08:30Z"}}
2021-07-02 20:02:34 SUCCESS
CallConsentEndpointWithBearerToken
Parsed consent endpoint response
headers
{
  "date": "Fri, 02 Jul 2021 20:02:34 GMT",
  "content-type": "application/json",
  "content-length": "811",
  "connection": "keep-alive",
  "host": "mtls-api-des.bvopen.com.br",
  "x-forwarded-for": "35.196.44.185",
  "x-forwarded-port": "443",
  "x-forwarded-proto": "https",
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 02 Jul 2021 20:02:33 GMT",
  "accept-charset": "utf-8",
  "authorization": "Bearer eyJraWQiOiJkZWZhdWx0X3NzbF9rZXkiLCJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJhdWQiOiJBUWgxbmttTGhRM2hjeGdNdHpJS2pSNkF0QmdaeHdXMSIsImlzcyI6Imh0dHBzOlwvXC9hcGktZGVzLmJhbmNvdm90b3JhbnRpbS5jb20uYnI6NDQzIiwidG9rZW5fZGV0YWlscyI6eyJzY29wZSI6Im9vYiIsImV4cGlyZXNfaW4iOjM2MDAuMCwidG9rZW5fdHlwZSI6IkJlYXJlciIsInVzZXJuYW1lIjoiIiwicm9sZXMiOiIifSwiZXhwIjoxNjI1MzQyNTUzLCJpYXQiOjE2MjUyNTYxNTMsImp0aSI6ImJkZTU3OTc4LWFiMGUtNDk3MC05NjkzLWVhMzhhOTlmMWEyZSJ9.PAmGYLAr6JWq3ysIqG-u1Om-I7YmbwBnvYP-9uuNQl75erC4EO_rQSIADyMwnSTJC04zHwNJAQ6UfTpg5PpKxmlyCHrlKD0OFabEdLzjXCOzoJUbyOXfe7Ex3opLUozMeHdVGaKib6i37B5xc_cZyIoJGjneE-o80iWxCC_GWWBaAGr678gB_9labTPiDU0ZbDgrsQxJmyrU2rvq4rTBhhOqT-ZnddIKo5Pe950evwkHZDh5FOKXPd4b8E7XVt68iZBVhFT3iBIIXoUtt4DZMeno_YmEc-BKKTuQ9wyIIvfgdcFoLsyCUGTcuEpAHT7GXFhu81IBEQ7T8tfkf35IXw",
  "user-agent": "Apache-HttpClient/4.5.13 (Java/11.0.11)",
  "accept-encoding": "gzip,deflate",
  "trilhaauditoria.siglasistema": "_apim",
  "trilhaauditoria.ticket": "f56f2099-f7b1-40e4-9ca7-d9c6e477b239",
  "trilhaauditoria.loginusuariofinal": "usuario.anonimo",
  "trilhaauditoria.enderecoipcliente": "35.196.44.185",
  "trilhaauditoria.fase": "1",
  "siglasistema": "_apim",
  "ticket": "f56f2099-f7b1-40e4-9ca7-d9c6e477b239",
  "loginusuariofinal": "usuario.anonimo",
  "enderecoipcliente": "35.196.44.185",
  "fase": "1",
  "x-v": "1",
  "x-fapi-interaction-id": "4b6b314e-cd41-11eb-b8bc-0242ac130003",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
body
{"data":{"brandID":"29698749425984912674","brandName":"Organização A","consentId":"urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d","creationDateTime":"2021-05-21T08:30Z","status":"AUTHORISED","statusUpdateDateTime":"2021-05-21T08:30Z","permissions":["ACCOUNTS_READ"],"expirationDateTime":"2021-05-21T08:30Z","transactionFromDateTime":"2021-01-01T00:00Z","transactionToDateTime":"2021-02-01T23:59:59Z"},"links":{"self":"https://api.banco.com.br/open-banking/api/v1/accounts","first":"https://api.banco.com.br/open-banking/api/v1/accounts","prev":"https://api.banco.com.br/open-banking/api/v1/accounts","next":"https://api.banco.com.br/open-banking/api/v1/accounts","last":"https://api.banco.com.br/open-banking/api/v1/accounts"},"meta":{"totalRecords":1,"totalPages":1,"requestDateTime":"2021-05-21T08:30Z"}}
2021-07-02 20:02:34 SUCCESS
CheckForFAPIInteractionIdInResourceResponse
Found x-fapi-interaction-id
interaction_id
4b6b314e-cd41-11eb-b8bc-0242ac130003
2021-07-02 20:02:34 SUCCESS
ExtractConsentIdFromConsentEndpointResponse
Extracted the consent id
consent_id
urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
2021-07-02 20:02:34 SUCCESS
FAPIBrazilAddConsentIdToClientScope
Added scope of 'openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d' to client's scope
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
scope
openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
jwks
{
  "keys": [
    {
      "p": "97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0",
      "kty": "RSA",
      "q": "xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58",
      "d": "J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ",
      "e": "AQAB",
      "kid": "2b5915d0-4388-4c79-b461-897b0c16b33f",
      "qi": "nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM",
      "dp": "7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE",
      "dq": "a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE",
      "n": "vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw",
      "alg": "PS256"
    }
  ]
}
Make request to authorization endpoint
2021-07-02 20:02:34 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
scope
openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
2021-07-02 20:02:34
CreateRandomStateValue
Created state value
requested_state_length
10
state
SkRgqw9AgS
2021-07-02 20:02:34 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
scope
openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
state
SkRgqw9AgS
2021-07-02 20:02:34
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
2GsXg5mvUn
2021-07-02 20:02:34 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
scope
openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
state
SkRgqw9AgS
nonce
2GsXg5mvUn
2021-07-02 20:02:34 SUCCESS
SetAuthorizationEndpointRequestResponseTypeToCodeIdtoken
Added response_type parameter to request
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
scope
openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d
state
SkRgqw9AgS
nonce
2GsXg5mvUn
response_type
code id_token
2021-07-02 20:02:34 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1",
  "redirect_uri": "https://www.certification.openid.net/test/a/bv-openid-cert/callback",
  "scope": "openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d",
  "state": "SkRgqw9AgS",
  "nonce": "2GsXg5mvUn",
  "response_type": "code id_token"
}
2021-07-02 20:02:34 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.625256154E9
2021-07-02 20:02:34 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.625256454E9
2021-07-02 20:02:34 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://api-des.bvopen.com.br/oidc/v1
2021-07-02 20:02:34 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
2021-07-02 20:02:34 SUCCESS
AddClientIdToRequestObject
Added client_id to request object claims
client_id
AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1
2021-07-02 20:02:34 SUCCESS
SignRequestObject
Signed the request object
claims
{"aud":"https:\/\/api-des.bvopen.com.br\/oidc\/v1","nbf":1625256154,"scope":"openid accounts consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d","iss":"AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1","response_type":"code id_token","redirect_uri":"https:\/\/www.certification.openid.net\/test\/a\/bv-openid-cert\/callback","state":"SkRgqw9AgS","exp":1625256454,"nonce":"2GsXg5mvUn","client_id":"AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1"}
header
{"kid":"2b5915d0-4388-4c79-b461-897b0c16b33f","alg":"PS256"}
request_object
eyJraWQiOiIyYjU5MTVkMC00Mzg4LTRjNzktYjQ2MS04OTdiMGMxNmIzM2YiLCJhbGciOiJQUzI1NiJ9.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.qVTjOnVNr2MtQCkIcFHIAp6Q5zYyIGrTWUU3iPg70sLpjlbijLag3TfuNTBYNgeEn9U3AuytCK9SU12xVoC5t_B5Y6twRDPhDUVk8TNbh1mdhO6NtFJI2ydnNj5_A40upfk8sF3K9O47m7PHXqt0G654DXFf9HkA5etOpYoaptvb1ARk2bOJWFqvQSt8Uqa0C7d_rP_llcimWxd7ilyPcZyMEx3mjzEFzNfuPg8jP4P3-5SezPP4XqzW3IjDGQoVQ-JQuegvskyrh5Sqq6GaLpeOLAjc9GtW5R7YM9FED4hUNvLPKxUtOMJkCr9IpZVs0s2Uq_54nT3QMQ0ydvKfdQ
key
{"p":"97Q0JlBqDmQPQKjNGh1RPSLNEWSGhunrAAVLK2cpcd60g3IgbCrl7_-xEOQ7oL2SmwRkaUcm4DxcSDzdSh-VTid4CrW629pDhnUMdm_G-xKJaQMMtd_sfmRO0XdHS6OoZspu9OxlpZCUtZA9XUYfh3qt9IEqsMZas1Y59ZXz6o0","kty":"RSA","q":"xVsvr7t08wLTXKhjenvERcMMmG72yekXs6ex77E2UXsOCFOFHHvp2M4rrn31WD4fofKELxiZJucn7GQyjBkHhFWgqE1RGiOllT1w9SOqBrNTtDKS95AMDGHK7Gqy62yL1xHVp8UpsOhzvdjKhWMMJhoXennXQzIIdyNogB8oq58","d":"J2ZxTmkpGPxhu9EbNWZAeONlqZFTd8tFofthlyk0UhgxAH4KZ87yH-NJpAhcsHVEMQDDxQQRh_42GWGznHpcqoOr0ucBa_E1UfJaJexxKyk6zAfex7LMW5QelSn6eKerN4Ed_t9NANdwKIyOltZ12wCGIX-MQ6eRXL6lnBx1y7Xo8mjIHioJya2ZLRJlCUo1_n-oGSt_lL-FHSpovV3wHtI-aqtbigivmzTMx9JWmO0sBqKkKRMJqdrAjs7aAvtpJChP3JJIEjWqWtdQGZI67-zZ2qcEb_Ggm0YZhuDpFI0lNXL6vghqa-dEknIz84P-JujOtEclWAlO9VVjH0HhUQ","e":"AQAB","kid":"2b5915d0-4388-4c79-b461-897b0c16b33f","qi":"nYb2mAFawRmHiZ_Q0cnRLtmllk1jLjRyV81LSw7RA0pW-DpEddI1-n1ldAIdDHR4MMjlbGfBxKewK05qRmN2BHgZ7TqRvDk5EYwZIhHXV8SsjenYZ5iS-y9sSfFyQG6cEfY1mqqMgN2eAppnU5v_qiapiry6RaxwAAy2DdIg0bM","dp":"7_HDwomK8r3CeKQLagyUMWCQvRRfrDjTx4VZN4YLA57zxZC8D4vOiRlqcC5mBGMerMMocULXSceurNsokTDe9IIPKnC3vVhEqO6hT-kfGv7t1Kd7nIJ5GEYag5XDnmW-LzRRHzgPjr3rD6XVi5Dt4dLYx0yICg1atvYD1v2W9dE","alg":"PS256","dq":"a35vSthfqr0vQpi1FlGzZgwHID_QS8maD1CXqmZrn5XW3tIe_pS_mkcxo6kXqSitMhhVxxEu2fGt3SP2JDi9z2aUSxdRxVsFJXSBwgPa6CtkvBGP2yeqaFQbowm6ymAlCs-7_9V0D9eMsysRo_V--IHdp-gVR5RI6BtxH9fY3yE","n":"vvXnVCSkrJz1-ED04KNhthYpNuv9S4PoeOG9B0j0XMbr6DQBK8I9_-ASUDv9l5uFSYM20r_K6l_pbNsZ5wwGTVM7Ycf3kwA2lY62SJjNhPyXZ69TokcvkIlpjUgzPgY1EeqFglC5YsvN3hZS1eCClWGsW70qR3wGSpe6iJPbp1K-FqefgH7xavaCaIs6vX7CowNmq6_D3EUwVnW9TSG7Vnj_zilrODbrcqezFuaKGlLzsY3P1vgoGPXOWXy_9C5WNcmtT6YUmG3yUjuXl0WfyIKdS3M1KTQwS5-H-4tFqy_E5T7SjkEoIg2STVQwd2p9DmjFv3tzvxx0UpC1yTLckw"}
2021-07-02 20:02:34
FAPIBrazilEncryptRequestObject
Encrypted the request object
request_object
eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.aPBytv-nDrdfNoqhHpEm2C-o3mm0RdRfCscLM7hfpxZugVJjwxIiFkl3iSqRPB8ddlnOc_A4tI0EFKUYHpCce7ajQoFmrS60N9DgjLoehvm2m6irrLB8CaJRI7qQDa3B_kMHab8rk6hbkI942NPBxbTSfZqoD_we4I3rbCkQnjqt-FQ-LfuEsBApUUIuvQ10vT8Gb88qrtjm-KNJ490b1ovDZ4PmZFnJHUYoTrQf7A-BoXpC-vXTdqHtyb9sPLOt8ICEDy4PdZu2d7TkCH_orvVJlJHpjtPAskOk5yMV3d9qYjUfSIT0DEHIaJnwwq4OJwf2VTNg4gVgzMioVrYw9g.xCI00Jn0Y7QsRMCg.VheAVnL81Q3pzmaEjzeRXAm7_ps_mkSucLTZSuvl61Z1Z2e0VEe8zmLaqobjBXp8uscD3meKTxGI94sgwAKOv2jURwmVFcXrFr5WQQOyRgAkJlV0zyMaA6EDSyueRAXM9XJWIw-dWwdt4h91YFN-yuRNjGAFrPXqXmcVE7J6LvFTuDhAtP4Yy0iIBA9f9fnRXtRlL-66p_wAOx4gs2N_beoyaskcMD-oNcdBd4aD8JPOm_5mjvF8BoMCwKbb66z-wreheZFnRHgsOCmS0hd4mai7jBCnGkMqcDgnWCDFD8IA25RZENjngVQgutxETQInjGm_TlVmBI3oyNHYu_Iq3PpvMY87mxzMvxp9YefGY6LOMHR8axpzA8R_x5ABGC9DyzwmvWEzAiuLp9Q90YFp7UTSSLlw4ELxmzERB1OKwEwCoYfvLCdm5vMtlvWwxJB9mBvH_3-cWjTc3Fz16Wu0W8mBcAeI5bxs2-w6sw-G2uJ2RtHrEObxpvwtf_qHnp78B1RYEYaNsRicfhzgSwmkMi7jRQhrHQGIimp0pltdxzlMcmtdbHgUnnQipQBK6wT2bnhsY17fF1mcRop0t5qmPYZmKgVCOMhwrbyziWFeIy2jEydDaCAbEd3_o1wTVNiP5cB3gEa2n3sRwQ4QHKA9Sjw86Tdl5_O-3qrP5h9zZc0DT6Vyfr8zYNFVLjz21dIA37FY3RfniJrfVNSEilHFxHnTW4Jmx_KjCwjoK7VEkatQOhpTYJlAPXqz7qB6aqJJAu4smcL4Eljdnd8OPyz5sPCEbk2yif7TBF7x_F4HBpaMKYNBHrzYFCM7l0bWSiEQHLK4yCzDZYGelyExYnC4WlXEfM8kp-rK-cTSYGyHL7SFRyONB2a1FlFLIQFXpZG4S9EDDso8f7pzfFoNCkrvnhb1p3TNrSDBeduVtvt0gNIxL9V_zXK99CCvGimMviPmaHIsP2XKI73WjkaycW2poXcrUIjb4HLhQRvssQ4aM4rSkjbX0ydn8d5FaU9-tZDpkZoQSGbSahIzc8TWCzO5Qm-elsrp5HYqnA19Gg920gitQsPuzTY2jJbbJpYer0nANCyWqQS5mJeUog52wwZe7hykbMIOLf-j2ij4III1VelX3zkLlsMIi076sUwIIFpAWTh0zyB_gCriU6OaCU_LhorLaxSEa6UFc_vTs5XjOx_O-ObrBpWUQKCgfabkOnu3x7JSolQzW8eNnCOqm-jWrIUwjMRNhYD5rrCKkz_vrHJYE8B943rDQCgtRdwjBzcGAd5vDjSGAu-JPDZ_kzPE34oGEYXo2406wgw.mBVllXUtTkRTJvV6lKtRyA
enc
A256GCM
alg
RSA-OAEP
2021-07-02 20:02:34 SUCCESS
BuildRequestObjectByValueRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://api-des.bvopen.com.br/oidc/v1/authorize?request=eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.aPBytv-nDrdfNoqhHpEm2C-o3mm0RdRfCscLM7hfpxZugVJjwxIiFkl3iSqRPB8ddlnOc_A4tI0EFKUYHpCce7ajQoFmrS60N9DgjLoehvm2m6irrLB8CaJRI7qQDa3B_kMHab8rk6hbkI942NPBxbTSfZqoD_we4I3rbCkQnjqt-FQ-LfuEsBApUUIuvQ10vT8Gb88qrtjm-KNJ490b1ovDZ4PmZFnJHUYoTrQf7A-BoXpC-vXTdqHtyb9sPLOt8ICEDy4PdZu2d7TkCH_orvVJlJHpjtPAskOk5yMV3d9qYjUfSIT0DEHIaJnwwq4OJwf2VTNg4gVgzMioVrYw9g.xCI00Jn0Y7QsRMCg.VheAVnL81Q3pzmaEjzeRXAm7_ps_mkSucLTZSuvl61Z1Z2e0VEe8zmLaqobjBXp8uscD3meKTxGI94sgwAKOv2jURwmVFcXrFr5WQQOyRgAkJlV0zyMaA6EDSyueRAXM9XJWIw-dWwdt4h91YFN-yuRNjGAFrPXqXmcVE7J6LvFTuDhAtP4Yy0iIBA9f9fnRXtRlL-66p_wAOx4gs2N_beoyaskcMD-oNcdBd4aD8JPOm_5mjvF8BoMCwKbb66z-wreheZFnRHgsOCmS0hd4mai7jBCnGkMqcDgnWCDFD8IA25RZENjngVQgutxETQInjGm_TlVmBI3oyNHYu_Iq3PpvMY87mxzMvxp9YefGY6LOMHR8axpzA8R_x5ABGC9DyzwmvWEzAiuLp9Q90YFp7UTSSLlw4ELxmzERB1OKwEwCoYfvLCdm5vMtlvWwxJB9mBvH_3-cWjTc3Fz16Wu0W8mBcAeI5bxs2-w6sw-G2uJ2RtHrEObxpvwtf_qHnp78B1RYEYaNsRicfhzgSwmkMi7jRQhrHQGIimp0pltdxzlMcmtdbHgUnnQipQBK6wT2bnhsY17fF1mcRop0t5qmPYZmKgVCOMhwrbyziWFeIy2jEydDaCAbEd3_o1wTVNiP5cB3gEa2n3sRwQ4QHKA9Sjw86Tdl5_O-3qrP5h9zZc0DT6Vyfr8zYNFVLjz21dIA37FY3RfniJrfVNSEilHFxHnTW4Jmx_KjCwjoK7VEkatQOhpTYJlAPXqz7qB6aqJJAu4smcL4Eljdnd8OPyz5sPCEbk2yif7TBF7x_F4HBpaMKYNBHrzYFCM7l0bWSiEQHLK4yCzDZYGelyExYnC4WlXEfM8kp-rK-cTSYGyHL7SFRyONB2a1FlFLIQFXpZG4S9EDDso8f7pzfFoNCkrvnhb1p3TNrSDBeduVtvt0gNIxL9V_zXK99CCvGimMviPmaHIsP2XKI73WjkaycW2poXcrUIjb4HLhQRvssQ4aM4rSkjbX0ydn8d5FaU9-tZDpkZoQSGbSahIzc8TWCzO5Qm-elsrp5HYqnA19Gg920gitQsPuzTY2jJbbJpYer0nANCyWqQS5mJeUog52wwZe7hykbMIOLf-j2ij4III1VelX3zkLlsMIi076sUwIIFpAWTh0zyB_gCriU6OaCU_LhorLaxSEa6UFc_vTs5XjOx_O-ObrBpWUQKCgfabkOnu3x7JSolQzW8eNnCOqm-jWrIUwjMRNhYD5rrCKkz_vrHJYE8B943rDQCgtRdwjBzcGAd5vDjSGAu-JPDZ_kzPE34oGEYXo2406wgw.mBVllXUtTkRTJvV6lKtRyA&client_id=AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1&redirect_uri=https://www.certification.openid.net/test/a/bv-openid-cert/callback&scope=openid%20accounts%20consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d&response_type=code%20id_token
2021-07-02 20:02:34 REDIRECT
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Redirecting to authorization endpoint
redirect_to
https://api-des.bvopen.com.br/oidc/v1/authorize?request=eyJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.aPBytv-nDrdfNoqhHpEm2C-o3mm0RdRfCscLM7hfpxZugVJjwxIiFkl3iSqRPB8ddlnOc_A4tI0EFKUYHpCce7ajQoFmrS60N9DgjLoehvm2m6irrLB8CaJRI7qQDa3B_kMHab8rk6hbkI942NPBxbTSfZqoD_we4I3rbCkQnjqt-FQ-LfuEsBApUUIuvQ10vT8Gb88qrtjm-KNJ490b1ovDZ4PmZFnJHUYoTrQf7A-BoXpC-vXTdqHtyb9sPLOt8ICEDy4PdZu2d7TkCH_orvVJlJHpjtPAskOk5yMV3d9qYjUfSIT0DEHIaJnwwq4OJwf2VTNg4gVgzMioVrYw9g.xCI00Jn0Y7QsRMCg.VheAVnL81Q3pzmaEjzeRXAm7_ps_mkSucLTZSuvl61Z1Z2e0VEe8zmLaqobjBXp8uscD3meKTxGI94sgwAKOv2jURwmVFcXrFr5WQQOyRgAkJlV0zyMaA6EDSyueRAXM9XJWIw-dWwdt4h91YFN-yuRNjGAFrPXqXmcVE7J6LvFTuDhAtP4Yy0iIBA9f9fnRXtRlL-66p_wAOx4gs2N_beoyaskcMD-oNcdBd4aD8JPOm_5mjvF8BoMCwKbb66z-wreheZFnRHgsOCmS0hd4mai7jBCnGkMqcDgnWCDFD8IA25RZENjngVQgutxETQInjGm_TlVmBI3oyNHYu_Iq3PpvMY87mxzMvxp9YefGY6LOMHR8axpzA8R_x5ABGC9DyzwmvWEzAiuLp9Q90YFp7UTSSLlw4ELxmzERB1OKwEwCoYfvLCdm5vMtlvWwxJB9mBvH_3-cWjTc3Fz16Wu0W8mBcAeI5bxs2-w6sw-G2uJ2RtHrEObxpvwtf_qHnp78B1RYEYaNsRicfhzgSwmkMi7jRQhrHQGIimp0pltdxzlMcmtdbHgUnnQipQBK6wT2bnhsY17fF1mcRop0t5qmPYZmKgVCOMhwrbyziWFeIy2jEydDaCAbEd3_o1wTVNiP5cB3gEa2n3sRwQ4QHKA9Sjw86Tdl5_O-3qrP5h9zZc0DT6Vyfr8zYNFVLjz21dIA37FY3RfniJrfVNSEilHFxHnTW4Jmx_KjCwjoK7VEkatQOhpTYJlAPXqz7qB6aqJJAu4smcL4Eljdnd8OPyz5sPCEbk2yif7TBF7x_F4HBpaMKYNBHrzYFCM7l0bWSiEQHLK4yCzDZYGelyExYnC4WlXEfM8kp-rK-cTSYGyHL7SFRyONB2a1FlFLIQFXpZG4S9EDDso8f7pzfFoNCkrvnhb1p3TNrSDBeduVtvt0gNIxL9V_zXK99CCvGimMviPmaHIsP2XKI73WjkaycW2poXcrUIjb4HLhQRvssQ4aM4rSkjbX0ydn8d5FaU9-tZDpkZoQSGbSahIzc8TWCzO5Qm-elsrp5HYqnA19Gg920gitQsPuzTY2jJbbJpYer0nANCyWqQS5mJeUog52wwZe7hykbMIOLf-j2ij4III1VelX3zkLlsMIi076sUwIIFpAWTh0zyB_gCriU6OaCU_LhorLaxSEa6UFc_vTs5XjOx_O-ObrBpWUQKCgfabkOnu3x7JSolQzW8eNnCOqm-jWrIUwjMRNhYD5rrCKkz_vrHJYE8B943rDQCgtRdwjBzcGAd5vDjSGAu-JPDZ_kzPE34oGEYXo2406wgw.mBVllXUtTkRTJvV6lKtRyA&client_id=AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1&redirect_uri=https://www.certification.openid.net/test/a/bv-openid-cert/callback&scope=openid%20accounts%20consent:urn:bancobv:d76af606-25cc-4dd0-b6eb-00e76fc5011d&response_type=code%20id_token
2021-07-02 20:02:51 INCOMING
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Incoming HTTP request to test instance yIXeMmJnYKpD3rw
incoming_headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.106 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not;A Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"91\", \"Chromium\";v\u003d\"91\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://openfinance-redirect.bv.com.br/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; BCSI-CS-1b62f45530cd9ac2\u003d1; BCSI-CS-eb0e871c4dc2d74b\u003d1; BCSI-CS-5861cf26cd1ccdb0\u003d1; JSESSIONID\u003d774BBEF3C12641455DF140B8D5A55BC2; __utma\u003d201319536.1761908058.1623876742.1625229215.1625253016.13; __utmz\u003d201319536.1625253016.13.9.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/",
  "x-bluecoat-via": "05e1c3243cc07d0f",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-07-02 20:02:51 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/9aIE7wmC9k9MeYYSEA82",
  "fullUrl": "https://www.certification.openid.net/test/a/bv-openid-cert/implicit/9aIE7wmC9k9MeYYSEA82"
}
2021-07-02 20:02:51 OUTGOING
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Response to HTTP request to test instance yIXeMmJnYKpD3rw
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/bv-openid-cert/implicit/9aIE7wmC9k9MeYYSEA82, returnUrl=/log-detail.html?log=yIXeMmJnYKpD3rw}]
outgoing_path
callback
2021-07-02 20:02:52 INCOMING
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Incoming HTTP request to test instance yIXeMmJnYKpD3rw
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\" Not;A Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"91\", \"Chromium\";v\u003d\"91\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.106 Safari/537.36",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/bv-openid-cert/callback",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; BCSI-CS-1b62f45530cd9ac2\u003d1; BCSI-CS-eb0e871c4dc2d74b\u003d1; BCSI-CS-5861cf26cd1ccdb0\u003d1; JSESSIONID\u003d774BBEF3C12641455DF140B8D5A55BC2; __utma\u003d201319536.1761908058.1623876742.1625229215.1625253016.13; __utmz\u003d201319536.1625253016.13.9.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/",
  "x-bluecoat-via": "05e1c3243cc07d0f",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "971",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/9aIE7wmC9k9MeYYSEA82
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
#code=HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178&state=SkRgqw9AgS&id_token=eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
2021-07-02 20:02:52 OUTGOING
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Response to HTTP request to test instance yIXeMmJnYKpD3rw
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/9aIE7wmC9k9MeYYSEA82
2021-07-02 20:02:52
ExtractImplicitHashToCallbackResponse
Extracted response from URL fragment
parameters
[
  {
    "name": "code",
    "value": "HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178"
  },
  {
    "name": "state",
    "value": "SkRgqw9AgS"
  },
  {
    "name": "id_token",
    "value": "eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ"
  }
]
2021-07-02 20:02:52 SUCCESS
ExtractImplicitHashToCallbackResponse
Extracted the hash values
code
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
state
SkRgqw9AgS
id_token
eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
2021-07-02 20:02:52 REDIRECT-IN
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Authorization endpoint response captured
url_query
{}
headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.106 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not;A Brand\";v\u003d\"99\", \"Google Chrome\";v\u003d\"91\", \"Chromium\";v\u003d\"91\"",
  "sec-ch-ua-mobile": "?0",
  "referer": "https://openfinance-redirect.bv.com.br/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "__utmc\u003d201319536; BCSI-CS-1b62f45530cd9ac2\u003d1; BCSI-CS-eb0e871c4dc2d74b\u003d1; BCSI-CS-5861cf26cd1ccdb0\u003d1; JSESSIONID\u003d774BBEF3C12641455DF140B8D5A55BC2; __utma\u003d201319536.1761908058.1623876742.1625229215.1625253016.13; __utmz\u003d201319536.1625253016.13.9.utmcsr\u003dcertification.openid.net|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/",
  "x-bluecoat-via": "05e1c3243cc07d0f",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{
  "code": "HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178",
  "state": "SkRgqw9AgS",
  "id_token": "eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ"
}
post_body
Verify authorization endpoint response
2021-07-02 20:02:52 SUCCESS
RejectErrorInUrlQuery
'error' is not present in URL query returned from authorization endpoint
2021-07-02 20:02:52 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-07-02 20:02:52 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-07-02 20:02:52 SUCCESS
RejectStateInUrlQueryForHybridFlow
state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)
2021-07-02 20:02:52 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-07-02 20:02:52 SUCCESS
ValidateSuccessfulHybridResponseFromAuthorizationEndpoint
authorization endpoint response does not include unexpected parameters
code
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
state
SkRgqw9AgS
id_token
eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
2021-07-02 20:02:52 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
SkRgqw9AgS
2021-07-02 20:02:52
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-07-02 20:02:52 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
2021-07-02 20:02:52 SUCCESS
EnsureMinimumAuthorizationCodeLength
Authorization code is of sufficient length
actual
584
required
128
2021-07-02 20:02:52 SUCCESS
EnsureMinimumAuthorizationCodeEntropy
Calculated shannon entropy seems sufficient
actual
355.4535648043332
expected
96.0
2021-07-02 20:02:52 SUCCESS
ExtractIdTokenFromAuthorizationResponse
Found and parsed the id_token from authorization_endpoint_response
value
eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
header
{
  "kid": "PS256",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "c_hash": "d28DeFQ7vBHB3-WRhokY7Q",
  "sub": "a58777bc-fade-4bd8-a932-c74fdb503674",
  "aud": "AQh1nkmLhQ3hcxgMtzIKjR6AtBgZxwW1",
  "s_hash": "YFmUolt6XtjYKzVT2S8UGA",
  "updated_at": 1564617600,
  "name": "Mary Smith",
  "iss": "https://api-des.bvopen.com.br/oidc/v1",
  "exp": 1625256769,
  "nonce": "2GsXg5mvUn",
  "iat": 1625256170,
  "jti": "a7b23a62-0311-4e29-bf5e-a631af60c138"
}
2021-07-02 20:02:52 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-07-02 20:02:52 SUCCESS
EnsureIdTokenContainsKid
kid was found in the ID token header
kid
PS256
2021-07-02 20:02:52 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
2GsXg5mvUn
2021-07-02 20:02:52 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-07-02 20:02:52 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
2021-07-02 20:02:52 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJraWQiOiJQUzI1NiIsInR5cCI6IkpXVCIsImFsZyI6IlBTMjU2In0.eyJjX2hhc2giOiJkMjhEZUZRN3ZCSEIzLVdSaG9rWTdRIiwic3ViIjoiYTU4Nzc3YmMtZmFkZS00YmQ4LWE5MzItYzc0ZmRiNTAzNjc0IiwiYXVkIjoiQVFoMW5rbUxoUTNoY3hnTXR6SUtqUjZBdEJnWnh3VzEiLCJzX2hhc2giOiJZRm1Vb2x0Nlh0allLelZUMlM4VUdBIiwidXBkYXRlZF9hdCI6MTU2NDYxNzYwMCwibmFtZSI6Ik1hcnkgU21pdGgiLCJpc3MiOiJodHRwczpcL1wvYXBpLWRlcy5idm9wZW4uY29tLmJyXC9vaWRjXC92MSIsImV4cCI6MTYyNTI1Njc2OSwibm9uY2UiOiIyR3NYZzVtdlVuIiwiaWF0IjoxNjI1MjU2MTcwLCJqdGkiOiJhN2IyM2E2Mi0wMzExLTRlMjktYmY1ZS1hNjMxYWY2MGMxMzgifQ.g0zrA_2BEPLn11VzisUubPzJ1-yjPU1gJawK1Gf_BmjFfqYQaN0-Ptxi9R54zDzKzU6BRi1JawZqvHJ6FAX18Ed0g2a2vIQeYoXPYQEr6fyv_BpxU047uPluzab4-iitMn0JsoW3KgVyjej9NWfmaFhhMJ6KHNr9tzM6jQ_c9ajEwaB9EksrZwPqyr0prmOlQDfKuDlRbEt0FmddfZQZDyloPyaiiwGWsQfsyFEfo-WYCAga33XXcsvA4YwaDsqKQfUQq9KkAYEbMmRhyn4Y5ol9yIR-Oq1-8o-zogR9OcxFFAlOzFEVRrRSiNOFOig1vZpvPUt_eRXODK6EI5lENQ
2021-07-02 20:02:52 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
a58777bc-fade-4bd8-a932-c74fdb503674
2021-07-02 20:02:52 SUCCESS
FAPIValidateIdTokenSigningAlg
id_token was signed with a permitted algorithm
permitted
[
  "ES256",
  "PS256"
]
alg
PS256
2021-07-02 20:02:52 INFO
FAPIValidateIdTokenEncryptionAlg
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-07-02 20:02:52 INFO
FAPIValidateEncryptedIdTokenHasKid
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-07-02 20:02:52 SUCCESS
ExtractSHash
Extracted s_hash from ID Token
s_hash
YFmUolt6XtjYKzVT2S8UGA
alg
PS256
2021-07-02 20:02:52 SUCCESS
ValidateSHash
s_hash validated successfully
expected_hash
YFmUolt6XtjYKzVT2S8UGA
unhashed_value
SkRgqw9AgS
id_token_hash
YFmUolt6XtjYKzVT2S8UGA
2021-07-02 20:02:52 SUCCESS
ExtractCHash
Extracted c_hash from ID Token
c_hash
d28DeFQ7vBHB3-WRhokY7Q
alg
PS256
2021-07-02 20:02:52 SUCCESS
ValidateCHash
c_hash validated successfully
expected_hash
d28DeFQ7vBHB3-WRhokY7Q
unhashed_value
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
id_token_hash
d28DeFQ7vBHB3-WRhokY7Q
2021-07-02 20:02:52 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
Swapping to Client2
2021-07-02 20:02:52 SUCCESS
AddClientIdToTokenEndpointRequest
grant_type
authorization_code
code
HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178
redirect_uri
https://www.certification.openid.net/test/a/bv-openid-cert/callback
client_id
juCvRONFJ7tUUWHn3viqeR1HQKgBAwhA
2021-07-02 20:02:52
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://mtls-api-des.bvopen.com.br/oidc/v1/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "246"
}
request_body
grant_type=authorization_code&code=HdQCzdlPwK7dZuhxBbWMbk9MS4RUklaY.88d7a057105e6afba2cc248fd7f9d72e4c44e178&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fbv-openid-cert%2Fcallback&client_id=juCvRONFJ7tUUWHn3viqeR1HQKgBAwhA
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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"
}
2021-07-02 20:02:53 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Fri, 02 Jul 2021 20:02:52 GMT",
  "content-type": "application/json",
  "content-length": "47",
  "connection": "keep-alive",
  "access-control-allow-origin": "*",
  "access-control-allow-headers": "origin, x-requested-with, accept, content-type, Authorization,  x-v, x-min-v, x-fapi-customer-last-logged-time, x-fapi-customer-ip-address, x-fapi-interaction-id, x-fapi-correlation-id, x-fapi-auth-date,x-cds-client-headers",
  "access-control-max-age": "3628800",
  "access-control-allow-methods": "GET, PUT, POST, DELETE, OPTIONS",
  "strict-transport-security": "max-age\u003d31536000; includeSubDomains",
  "cache-control": "no-cache",
  "pragma": "no-cache"
}
response_body
     {
       "error":"invalid_client"
     }
2021-07-02 20:02:53 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
invalid_client
2021-07-02 20:02:53 SUCCESS
CheckTokenEndpointHttpStatusForInvalidRequestOrInvalidClientError
Token endpoint http status code was 400 for error 'invalid_client'
2021-07-02 20:02:53 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2021-07-02 20:02:53 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidClient
Token Endpoint response error returned expected 'error' of 'invalid_client'
error
invalid_client
2021-07-02 20:02:53 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_client
2021-07-02 20:02:53 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response did not include optional 'error_description' field
2021-07-02 20:02:53 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_description' field
2021-07-02 20:02:53 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2021-07-02 20:02:53 FINISHED
fapi1-advanced-final-ensure-client-id-in-token-endpoint
Test has run to completion
testmodule_result
PASSED
2021-07-02 20:02:57
TEST-RUNNER
Alias has now been claimed by another test
alias
bv-openid-cert
new_test_id
6OnaTpSfuLI82VE
Test Results