Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-08-13 18:32:07 INFO
TEST-RUNNER
Test instance XwBDOnK9oMQjw46 created
baseUrl
https://www.certification.openid.net/test/a/ArbiOpenBanking
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_response_mode": "jarm"
}
alias
ArbiOpenBanking
description
Authorization Server Arbi FAPI
planId
qTOWdB0BYS08j
config
{
  "alias": "ArbiOpenBanking",
  "description": "Authorization Server Arbi FAPI",
  "server": {
    "discoveryUrl": "https://auth.arbi.app-terosopenbanking.com/.well-known/openid-configuration",
    "jwks": {
      "keys": [
        {
          "p": "yu3_IngZlUmWfXXkIs6KtNd_72oQsbFS67sz1WvHuItflh-1eb7XZF_tOmwx9lrYwJWZTUPTV5C_jIMorFkEXeW3QV2y85473mJagfJRIDtlA0tt1uM_phRQLk5iZX43LHK-0l0mVSS7iBQOpGkaMxY6B0Jz4nwGws3exWwTTOU",
          "kty": "RSA",
          "q": "qTuEfVhFu4f5S817oiMgFbrUhpmjmqydPoF8mBm4jAQHMrDUG7jFEIrh8497fpddBByU30mBSxKQrKr1bzGQN62ZQZp3SnUHU6rvHjZlcUtbIUOanoswlUONJDvkV-kD-nljiwwF9zOoajoiRZq4h9M0YVqhNi5HGrvE95ig8FM",
          "d": "QU2c9MK2eofGMVqQ3HTGtwJfRhYbQJdXz5NNp6O-RjKP6l_8iO2JL3gylMJUBBRJOVJzndiE-a2oOIU6hPBcWwRzM6mXXnTPH-PjTZo4Ok7e5e2VtDodCEvzZ1nZrHdB343ac7RGMAcaAQ0k5kSLAQgqoaErbKDKlOFzp9rlR6c605fH35R62KGwU2TfqSQIqNbOYxaoJKo-jvwhxeldjcXon0cjcEEoSt89o9VLKG_cuHMDUPzxNulzBFwRPTK7Yvoq4dJjic9pvrKLOtbSULrbQpkWQhy06UcmNmn2C_Roz9TohUlAHbLZgfMBRgFa7mtyzExGjILgD2_k0P8j-Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "f_76qqYigtJJ4Ktg0xcNtUz0PorO0tOCTsiKZm_3gq0",
          "qi": "fK2ONspbz22bduZZZxacqCNXXr2Ei36_P2PGytQiP8nMwVJMwCyFD33z3NxhcWLpfTez_ZY5ID2cSaOu0DfwruoznYHsGo5znaHYDod2_0SsaXiK7cZzhAwLo_gQ-guCZtTjQmIPPZh2wQBcVJf89-f2eBcV13MpQYxoAiwhqRY",
          "dp": "ObxY-J-e98CGFo_yJo0JHcaqWZ2dvlCrPPJ4HuKZYkIVIgtHgKnxcldwkUyzMlpKjRCDG16OxL0kIoA2lEKHYYe4Cdr0zSdZ9T2abppYxojfhn5xc9AYDdJ9tY8Lo8CzRewnqoZiH5th16eNOu3ETICoZeRcQDX1XntgRF8pZpk",
          "alg": "PS256",
          "dq": "TMUlKz96EsJyQwLqTPkmOvVQJ-dWonofsxVGkjFI2KuTIFm7PwAo1YJLUhQK77h2h8D3f_t2XboES3AaeuC_DaMA3RPXfb1tH3VxmAERL74Bjyt93uJBndTRGFjbE04vcdbTY2aG5kdW5SmOFolDoMoc_vUAIPYJZ4U6qx9gEuU",
          "n": "hiZLTaH3AbYR1s8oXM5xcjgLTUsYJpoN35c2Uv-vtUjB6ENlRCrNeplD1lhSab842WRyr58WvAfxejbMZZxttBzG6Ggl4AxvMM3VXuZcZXPK6uA2c5jROsEDwf-Cvir7IsBLgV2u4GLwrsuHTzg8lIok4M7PszFiJJM8DnbZbnbvB3jJguBRcgU0rWzXZF1IYkrC6zLHkST7nhobMTkB7WLW8moJuADMF_2ShTzugSOy5ouC1m8sYd9QAgAkO9qBQWon_VGc2iUb12ojvKh0dWtdoaDQveUdQolPytVaEcighFRPpITj1gj12b8G1JKt8VaaK3dzAmgX7NX_KXiePw",
          "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8"
        },
        {
          "p": "xNr8K65vEtbG9tALc3DHl7WcGmf1JTXmbTfv4bQH7xtcC6c5CZVCp_oif8FhYXbF-z55zUAMHo-brJPG7eT3G1d46-Wz6j5_0xOuJzpa5E4dsRAJrgTLBSpYWP98RShSJnSKBKxt8emfBHuIHnYz1_IvxtxP0bYkxYaotsu9F60",
          "kty": "RSA",
          "q": "rks7cv2S2-P6Q0pf1-CPxPemugYlr_OL_XpwkNXbtzot-goR7ErX9SewhjDsKLFrolvwR84lmEtRvzplp9Yp3kQrFFUzTc-Z0JlpNQTHHZPTDNRCAYQWKsTiZN7wBbwM0xj2rJyMXgbOaATfDeFQwa0zCxI5R3PRBg_jjHPaKGk",
          "d": "b6rrz6qtdNIpDTGEYWXg-coTQE63bwH6xYn8yCUz39fLbPELL5A7UdPNe5zboNE8o2UzU5M-MosVx0j5wcMsRYInkv1WV5iyDoP-Gni52C-fWWefORvmIlYTvzdqCuaeDrBcwA0pAIeiKkGay4u4y8QWxCQ3C0awJGAH8UiWflY3G0D5qfftOOrBHw8pl_07_lCFtmAwM2z5qZIJSYpXgTEb7AL38C8hYlLyHCcGYbMqmLUswOFjdXF5-GbOpbL13RiU2KvMVC0squRZQ8e6YQRyLFPXA7-n5qKkUTnS4cEiCIFLUFduiWesOe45_LLNF8xp2MQmA0xFK3oGcS--gQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "_jqFR_hoiFUPDhoBK5ghG8a5qJypB_V0mcZb7VDaejg",
          "qi": "YLViRwo6EIm6MYCnUUUgpURXIJ6q9A0sdlal3auuZU67DaY4kGHum4UT8r1GEE09jOjVz2n-7PtDLt5slFs91f5FfEPdIZ1H5Vp4357dteRK2tNqBzkBycuGEMrpXKKSMmC3niyPzGjBRy4XTQLswXKmsMy3ChRnsQ2cZh9tFoU",
          "dp": "pX8ZC7wtY2Avi2Yiil3hXvjukQCfBzaGT4H8aPsKxIly29UtTZIvpLrU8CTqsp7BGVVP3y-eQL8o-HCQiIW6_UCPx3qoxCDhI9piylXz_gZyTd6W1Lbw25nbBo9bsWSRlATb18wC7qMi7gjQyhNDyKOyaPPlIwCHb4yjIHKuuU0",
          "alg": "RSA-OAEP",
          "dq": "ezq1zZd7Pfzx9KGhIgCjpZ9zQhMWklCfqZfn_n812VZJK3_zLB2-kpZ9OGNelWbbsu9N83bNHeAi7BFdzkydTYjk7HtQyrL9DX9p4xJ9tWvOzENGZ8v74EFTz_3Ptj4-0wHTZjdJBzHIvcKz8hxb_JN4g1tfJCW-o4qYV7WRiQ",
          "n": "hgaxRHX7TzFnm8HlkleDeidnxcydcPUJp9hBC84ZClmn2DoF5C-vJVVhTsF0Wkz9HW6xtYFsluTwzWEXGRidHhdthiop18BIy9aTuwUtZ-GBTuPRHtN-vqCX7P_DGba3izKX8L5sy5Z4N4bz90EJp87Nr6zc_EHqL4V8nweYEJFsx7OVMlNRUa4zt4Qbljwrd13kC92dk1oPvKbvc6Vud1XWWJDyeiNvZl5q9z2EfzdHzoJ8rTGkDxptEhVJ-Gv8XW3QMLRYoRhGOq7GQlNWob4fgX6UK_0gvIOS_5a2eivyQ_MRRYpBsM7kUsTri2Sdkq2r-xc96udgUY0T_JO99Q",
          "x5t#S256": "FCm3HmJVj7AL1g76la5ZgUk97WHWIYMIbzpzmPwrVF8"
        }
      ]
    }
  },
  "client": {
    "client_id": "c_uOH_ZzqmYdaneJ9Aev_",
    "client_name": "Client_1",
    "scope": "openid consents accounts",
    "jwks": {
      "keys": [
        {
          "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
          "p": "88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE",
          "kty": "RSA",
          "q": "0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU",
          "d": "bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ",
          "e": "AQAB",
          "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
          "qi": "39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g",
          "dp": "3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE",
          "alg": "PS256",
          "dq": "LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0",
          "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
        }
      ]
    },
    "redirect_uri": "https://jwt.io/",
    "certificate": "-----BEGIN CERTIFICATE-----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\nP0MHZbX4vCW+m+Xoy/OQT7PO1SCs+y6vNTwKsRWmGKlTWgrQ\n-----END CERTIFICATE-----\n",
    "hint_type": "login_hint",
    "hint_value": "123"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----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\nP0MHZbX4vCW+m+Xoy/OQT7PO1SCs+y6vNTwKsRWmGKlTWgrQ\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN RSA PRIVATE KEY-----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\nKUFuDPCET67DWCnm4az18VUi9hxPQLs3RUOsWyYqsAgRlKDrmzjngw\u003d\u003d\n-----END RSA PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----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\u003d\u003d\n-----END CERTIFICATE-----\n"
  },
  "client2": {
    "client_id": "8dxz4KPQn89ULTnsAmPnt",
    "scope": "openid consents accounts",
    "jwks": {
      "keys": [
        {
          "p": "0WSE_Wb6SGHep073z8ocYee1FTCoPlhvndwIR0CVes5ohCc9aY6UZ5a357PFWASl304LSAIIgaHLO9UZM8TZcs0WFGNgUb_6cTMjEGYp8p2z2TEbwEjSHup8tZr2n0DKHwcbzx0_F2FdQszLEdcPZGh13G1n5Lhd97nm4Og4s-E",
          "kty": "RSA",
          "q": "t5S52FJAQ03ACIatHwlpN62Q-1FzT-IkGqdgNZcdhmc1jnQyaNV8ajFs9xiTaNCffuIr_u2Cff2wafm2CINpIqRMVmY_uk5lyULLAQnJ4cHC40zKEOzXQHr7LxcjVlHHCSQsDTI6PRxkzXUYDspy-XwNnR_bLLvo9JUXdEozYUM",
          "d": "XKiH9--OSr2XdNYmOZ9DMAebT8ZAwcszjznVQO8maeQRtbcNrHM_9I5HH_17Og7SqOXDEoA8Zj_BE95BvwTI0Fm9ZqQ9oldJVUu5oX94XpaXebsa7d2HzknNY95twR2CTYMvY7BMZ7Fm484jnBSIQ1NHQhiUjm4_vGjWbGJC63Lv-c4LW5Ucmefk3hXhIt5PXbvQEY1UD6K_nz-MbO07caVQ9rJgmHJ1MOwCBfAm5XpvPVERSEoPk2r2dnl0inxjeTWpTrdnFMc2J_wwjw8bbV5idsqMtE2b7t6sEN6j4yPQcCDHU-D0QlLHyvlbnM19BzKagAEw3QRe9vg3xsvBwQ",
          "e": "AQAB",
          "kid": "II9c9PNSBOcqQMXSynaY6414KP1cXiuPFYaDu3A2n_I",
          "qi": "Nycuxqx5cYlUWUKQm4G-j4MX9eS5x4krRfeCYR9n7yvz-BP6xZGsjuFg3kUGSUoBUDP8MpdSB4tboo_a4uXiV_uwAn7pSr_EO8TR6lTAnMedG98udX6YLTttCLnlngXvrgkY8rJfeX0Z_dDlDNiBrDGMJTFfw8wzxYLft8_Sa1s",
          "dp": "9jI6K7fojzKDmDRBKw94T6UgRMnxB1zz36fWE_Db0IjgWoHIs1PxKdsMYGH-pn7QiL46hW_ekIyraK4l87h_83sveslddsFCtdZqY927dIf37mbPOkZkx_TsrJqHXrfO7qxtBhhdFiBkhyZDnbY_Ys9vxLzeaw5bbeomjEp-YQ",
          "alg": "PS256",
          "dq": "LCWHy418BrNbyrEYUK5irxD-HHGp2Tv4krBNYpXEc92981PeC3fLQ34_ReyTBlGlCU46ZkOXbdTj55g1PjbbwYjhEqXkDVltAMkfKFDCS5fc1exRa2CJIuhwHxLhXJCt3HTmYwYBG1EIrJ_L-UKWA4jhfTd77XYCv05bJYvybyE",
          "n": "liiBMJtOinDhrLee6yBFLAtW7ckE5_0_o-q7yMCjBaso9h-VeNsakRCGsiYKI1kj5ZfRNXELU-upwTzzfkWk1uoDe-ldayhDr7BibgnmTLps0X7hbMZfv-XXbxZzbBItOr9XtejEyyKcZtwZAXaSxXYusArHNJcT7OLq_22kIlpRpV0tNGYHbdbnbSMiJMd-GPzMIbHZ7nr6Q-K1k7EOr4kpWgkFZgqDJN7E64SLapvpqqaD7FeQkZ3ubKi6mem7kTUO4bW1MbTmnKkNpAkJ8s-Xpq1RISqXu1-D6qQW17w-dRYDWL_eUhYQ7UQUDcTlbUAGRrW4WFy_4QUZItJU4w"
        }
      ]
    },
    "client_name": "Client_2"
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----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\nHa65mTHP1XlOhEryVPyLeDQEmn+Hl8FLAsEUqLEUTf40hYFe\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN RSA PRIVATE KEY-----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\nqRqyxRHSunE5JaOZxGbnppeuWSWmdPIhnnkDGpdqw92YEb6Hkcks\n-----END RSA PRIVATE KEY-----\n",
    "ca": "-----BEGIN CERTIFICATE-----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\u003d\u003d\n-----END CERTIFICATE-----\n"
  },
  "resource": {
    "consentUrl": "https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents",
    "brazilCpf": "191.659.870-63",
    "resourceUrl": "https://auth.arbi.app-terosopenbanking.com/open-banking/resources"
  },
  "directory": {
    "discoveryUrl": "https://auth.staging.app-terosopenbanking.com/directory/.well-known/openid-configuration",
    "client_id": "DDir4KPQn89ULTnsAmPnt",
    "apibase": "https://auth.staging.app-terosopenbanking.com/directory/assertion"
  }
}
testName
fapi1-advanced-final-par-attempt-reuse-request_uri
2021-08-13 18:32:07 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
2021-08-13 18:32:07
GetDynamicServerConfiguration
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-13 18:32:08 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "3912",
  "date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"acr_values_supported":["urn:brasil:openbanking:loa2","urn:brasil:openbanking:loa3"],"authorization_endpoint":"https://auth.arbi.app-terosopenbanking.com/auth","claims_parameter_supported":true,"claims_supported":["sub","acr","sid","auth_time","iss","cpf","cnpj"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://auth.arbi.app-terosopenbanking.com/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials","urn:openid:params:grant-type:ciba"],"id_token_signing_alg_values_supported":["PS256"],"issuer":"https://auth.arbi.app-terosopenbanking.com","jwks_uri":"https://auth.arbi.app-terosopenbanking.com/jwks","registration_endpoint":"https://auth.arbi.app-terosopenbanking.com/reg","response_modes_supported":["form_post","fragment","query","jwt","query.jwt","fragment.jwt","form_post.jwt"],"response_types_supported":["code id_token","code","id_token","none"],"scopes_supported":["accounts","consents","credit-cards-accounts","customers","invoice-financings","financings","loans","unarranged-accounts-overdraft","resources","payments","openid"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["PS256"],"token_endpoint":"https://auth.arbi.app-terosopenbanking.com/token","pushed_authorization_request_endpoint":"https://auth.arbi.app-terosopenbanking.com/request","request_object_signing_alg_values_supported":["PS256"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"require_signed_request_object":true,"userinfo_endpoint":"https://auth.arbi.app-terosopenbanking.com/me","userinfo_signing_alg_values_supported":["PS256"],"authorization_signing_alg_values_supported":["PS256"],"introspection_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/introspection","introspection_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"introspection_endpoint_auth_signing_alg_values_supported":["PS256"],"introspection_signing_alg_values_supported":["PS256"],"revocation_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/revocation","revocation_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"revocation_endpoint_auth_signing_alg_values_supported":["PS256"],"id_token_encryption_alg_values_supported":["RSA-OAEP"],"id_token_encryption_enc_values_supported":["A256GCM"],"userinfo_encryption_alg_values_supported":["RSA-OAEP"],"userinfo_encryption_enc_values_supported":["A256GCM"],"introspection_encryption_alg_values_supported":["RSA-OAEP"],"introspection_encryption_enc_values_supported":["A256GCM"],"authorization_encryption_alg_values_supported":["RSA-OAEP"],"authorization_encryption_enc_values_supported":["A256GCM"],"request_object_encryption_alg_values_supported":[],"request_object_encryption_enc_values_supported":["A256GCM"],"tls_client_certificate_bound_access_tokens":true,"backchannel_authentication_endpoint":"https://auth.arbi.app-terosopenbanking.com/backchannel","backchannel_token_delivery_modes_supported":["poll","ping"],"backchannel_user_code_parameter_supported":true,"backchannel_authentication_request_signing_alg_values_supported":["PS256"],"claim_types_supported":["normal"],"mtls_endpoint_aliases":{"token_endpoint":"https://auth.arbi.app-terosopenbanking.com/token","revocation_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/revocation","introspection_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/introspection","registration_endpoint":"https://auth.arbi.app-terosopenbanking.com/reg","userinfo_endpoint":"https://auth.arbi.app-terosopenbanking.com/me","pushed_authorization_request_endpoint":"https://auth.arbi.app-terosopenbanking.com/request","backchannel_authentication_endpoint":"https://auth.arbi.app-terosopenbanking.com/backchannel"}}
2021-08-13 18:32:08
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{"acr_values_supported":["urn:brasil:openbanking:loa2","urn:brasil:openbanking:loa3"],"authorization_endpoint":"https://auth.arbi.app-terosopenbanking.com/auth","claims_parameter_supported":true,"claims_supported":["sub","acr","sid","auth_time","iss","cpf","cnpj"],"code_challenge_methods_supported":["S256"],"end_session_endpoint":"https://auth.arbi.app-terosopenbanking.com/session/end","grant_types_supported":["implicit","authorization_code","refresh_token","client_credentials","urn:openid:params:grant-type:ciba"],"id_token_signing_alg_values_supported":["PS256"],"issuer":"https://auth.arbi.app-terosopenbanking.com","jwks_uri":"https://auth.arbi.app-terosopenbanking.com/jwks","registration_endpoint":"https://auth.arbi.app-terosopenbanking.com/reg","response_modes_supported":["form_post","fragment","query","jwt","query.jwt","fragment.jwt","form_post.jwt"],"response_types_supported":["code id_token","code","id_token","none"],"scopes_supported":["accounts","consents","credit-cards-accounts","customers","invoice-financings","financings","loans","unarranged-accounts-overdraft","resources","payments","openid"],"subject_types_supported":["public"],"token_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"token_endpoint_auth_signing_alg_values_supported":["PS256"],"token_endpoint":"https://auth.arbi.app-terosopenbanking.com/token","pushed_authorization_request_endpoint":"https://auth.arbi.app-terosopenbanking.com/request","request_object_signing_alg_values_supported":["PS256"],"request_parameter_supported":true,"request_uri_parameter_supported":true,"require_request_uri_registration":true,"require_signed_request_object":true,"userinfo_endpoint":"https://auth.arbi.app-terosopenbanking.com/me","userinfo_signing_alg_values_supported":["PS256"],"authorization_signing_alg_values_supported":["PS256"],"introspection_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/introspection","introspection_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"introspection_endpoint_auth_signing_alg_values_supported":["PS256"],"introspection_signing_alg_values_supported":["PS256"],"revocation_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/revocation","revocation_endpoint_auth_methods_supported":["private_key_jwt","tls_client_auth"],"revocation_endpoint_auth_signing_alg_values_supported":["PS256"],"id_token_encryption_alg_values_supported":["RSA-OAEP"],"id_token_encryption_enc_values_supported":["A256GCM"],"userinfo_encryption_alg_values_supported":["RSA-OAEP"],"userinfo_encryption_enc_values_supported":["A256GCM"],"introspection_encryption_alg_values_supported":["RSA-OAEP"],"introspection_encryption_enc_values_supported":["A256GCM"],"authorization_encryption_alg_values_supported":["RSA-OAEP"],"authorization_encryption_enc_values_supported":["A256GCM"],"request_object_encryption_alg_values_supported":[],"request_object_encryption_enc_values_supported":["A256GCM"],"tls_client_certificate_bound_access_tokens":true,"backchannel_authentication_endpoint":"https://auth.arbi.app-terosopenbanking.com/backchannel","backchannel_token_delivery_modes_supported":["poll","ping"],"backchannel_user_code_parameter_supported":true,"backchannel_authentication_request_signing_alg_values_supported":["PS256"],"claim_types_supported":["normal"],"mtls_endpoint_aliases":{"token_endpoint":"https://auth.arbi.app-terosopenbanking.com/token","revocation_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/revocation","introspection_endpoint":"https://auth.arbi.app-terosopenbanking.com/token/introspection","registration_endpoint":"https://auth.arbi.app-terosopenbanking.com/reg","userinfo_endpoint":"https://auth.arbi.app-terosopenbanking.com/me","pushed_authorization_request_endpoint":"https://auth.arbi.app-terosopenbanking.com/request","backchannel_authentication_endpoint":"https://auth.arbi.app-terosopenbanking.com/backchannel"}}
2021-08-13 18:32:08 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
acr_values_supported
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
authorization_endpoint
https://auth.arbi.app-terosopenbanking.com/auth
claims_parameter_supported
true
claims_supported
[
  "sub",
  "acr",
  "sid",
  "auth_time",
  "iss",
  "cpf",
  "cnpj"
]
code_challenge_methods_supported
[
  "S256"
]
end_session_endpoint
https://auth.arbi.app-terosopenbanking.com/session/end
grant_types_supported
[
  "implicit",
  "authorization_code",
  "refresh_token",
  "client_credentials",
  "urn:openid:params:grant-type:ciba"
]
id_token_signing_alg_values_supported
[
  "PS256"
]
issuer
https://auth.arbi.app-terosopenbanking.com
jwks_uri
https://auth.arbi.app-terosopenbanking.com/jwks
registration_endpoint
https://auth.arbi.app-terosopenbanking.com/reg
response_modes_supported
[
  "form_post",
  "fragment",
  "query",
  "jwt",
  "query.jwt",
  "fragment.jwt",
  "form_post.jwt"
]
response_types_supported
[
  "code id_token",
  "code",
  "id_token",
  "none"
]
scopes_supported
[
  "accounts",
  "consents",
  "credit-cards-accounts",
  "customers",
  "invoice-financings",
  "financings",
  "loans",
  "unarranged-accounts-overdraft",
  "resources",
  "payments",
  "openid"
]
subject_types_supported
[
  "public"
]
token_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
token_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
token_endpoint
https://auth.arbi.app-terosopenbanking.com/token
pushed_authorization_request_endpoint
https://auth.arbi.app-terosopenbanking.com/request
request_object_signing_alg_values_supported
[
  "PS256"
]
request_parameter_supported
true
request_uri_parameter_supported
true
require_request_uri_registration
true
require_signed_request_object
true
userinfo_endpoint
https://auth.arbi.app-terosopenbanking.com/me
userinfo_signing_alg_values_supported
[
  "PS256"
]
authorization_signing_alg_values_supported
[
  "PS256"
]
introspection_endpoint
https://auth.arbi.app-terosopenbanking.com/token/introspection
introspection_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
introspection_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
introspection_signing_alg_values_supported
[
  "PS256"
]
revocation_endpoint
https://auth.arbi.app-terosopenbanking.com/token/revocation
revocation_endpoint_auth_methods_supported
[
  "private_key_jwt",
  "tls_client_auth"
]
revocation_endpoint_auth_signing_alg_values_supported
[
  "PS256"
]
id_token_encryption_alg_values_supported
[
  "RSA-OAEP"
]
id_token_encryption_enc_values_supported
[
  "A256GCM"
]
userinfo_encryption_alg_values_supported
[
  "RSA-OAEP"
]
userinfo_encryption_enc_values_supported
[
  "A256GCM"
]
introspection_encryption_alg_values_supported
[
  "RSA-OAEP"
]
introspection_encryption_enc_values_supported
[
  "A256GCM"
]
authorization_encryption_alg_values_supported
[
  "RSA-OAEP"
]
authorization_encryption_enc_values_supported
[
  "A256GCM"
]
request_object_encryption_alg_values_supported
[]
request_object_encryption_enc_values_supported
[
  "A256GCM"
]
tls_client_certificate_bound_access_tokens
true
backchannel_authentication_endpoint
https://auth.arbi.app-terosopenbanking.com/backchannel
backchannel_token_delivery_modes_supported
[
  "poll",
  "ping"
]
backchannel_user_code_parameter_supported
true
backchannel_authentication_request_signing_alg_values_supported
[
  "PS256"
]
claim_types_supported
[
  "normal"
]
mtls_endpoint_aliases
{
  "token_endpoint": "https://auth.arbi.app-terosopenbanking.com/token",
  "revocation_endpoint": "https://auth.arbi.app-terosopenbanking.com/token/revocation",
  "introspection_endpoint": "https://auth.arbi.app-terosopenbanking.com/token/introspection",
  "registration_endpoint": "https://auth.arbi.app-terosopenbanking.com/reg",
  "userinfo_endpoint": "https://auth.arbi.app-terosopenbanking.com/me",
  "pushed_authorization_request_endpoint": "https://auth.arbi.app-terosopenbanking.com/request",
  "backchannel_authentication_endpoint": "https://auth.arbi.app-terosopenbanking.com/backchannel"
}
2021-08-13 18:32:08 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
2021-08-13 18:32:08 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-08-13 18:32:08
FetchServerKeys
Fetching server key
jwks_uri
https://auth.arbi.app-terosopenbanking.com/jwks
2021-08-13 18:32:08
FetchServerKeys
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-08-13 18:32:08 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "content-type": "application/jwk-set+json; charset\u003dutf-8",
  "content-length": "451",
  "date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","kid":"25f331d84959416bc1aee9d91b84d0fb","alg":"PS256","e":"AQAB","n":"09D2GUXwjlc3SLSbj5YfVn5XBHu2rqpBSqvCXLjhDeZAa_9S7DP3woDhsg5ZL7yvHx8HPJeoDNI-E3TDUFdRLk7kuDgeENGHweSjrL8IN8HpcJxNtPjTDILOxE3PaPAPpqt00GFBduGsWsLmFGpd_crtVxXVsBRTzGbra5c4B_-DswWSBzn2aMnhpAhHUaAFT31pmcOC4ulghUcigs9Ugx7lfb3dNM6J-3MJciW387pZ5-W9U3sp7_Fzc8ho0SYiQiOQa-Yija_8ZGKgeZH6rlkgOPaXk_K8PAtcw4huh-sXB4U2Z0wdqivCG1Xnow_p60bho3br4mXI3GDf8YJpQQ"}]}
2021-08-13 18:32:08
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","kid":"25f331d84959416bc1aee9d91b84d0fb","alg":"PS256","e":"AQAB","n":"09D2GUXwjlc3SLSbj5YfVn5XBHu2rqpBSqvCXLjhDeZAa_9S7DP3woDhsg5ZL7yvHx8HPJeoDNI-E3TDUFdRLk7kuDgeENGHweSjrL8IN8HpcJxNtPjTDILOxE3PaPAPpqt00GFBduGsWsLmFGpd_crtVxXVsBRTzGbra5c4B_-DswWSBzn2aMnhpAhHUaAFT31pmcOC4ulghUcigs9Ugx7lfb3dNM6J-3MJciW387pZ5-W9U3sp7_Fzc8ho0SYiQiOQa-Yija_8ZGKgeZH6rlkgOPaXk_K8PAtcw4huh-sXB4U2Z0wdqivCG1Xnow_p60bho3br4mXI3GDf8YJpQQ"}]}
2021-08-13 18:32:08 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "25f331d84959416bc1aee9d91b84d0fb",
      "alg": "PS256",
      "e": "AQAB",
      "n": "09D2GUXwjlc3SLSbj5YfVn5XBHu2rqpBSqvCXLjhDeZAa_9S7DP3woDhsg5ZL7yvHx8HPJeoDNI-E3TDUFdRLk7kuDgeENGHweSjrL8IN8HpcJxNtPjTDILOxE3PaPAPpqt00GFBduGsWsLmFGpd_crtVxXVsBRTzGbra5c4B_-DswWSBzn2aMnhpAhHUaAFT31pmcOC4ulghUcigs9Ugx7lfb3dNM6J-3MJciW387pZ5-W9U3sp7_Fzc8ho0SYiQiOQa-Yija_8ZGKgeZH6rlkgOPaXk_K8PAtcw4huh-sXB4U2Z0wdqivCG1Xnow_p60bho3br4mXI3GDf8YJpQQ"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "25f331d84959416bc1aee9d91b84d0fb",
      "alg": "PS256",
      "e": "AQAB",
      "n": "09D2GUXwjlc3SLSbj5YfVn5XBHu2rqpBSqvCXLjhDeZAa_9S7DP3woDhsg5ZL7yvHx8HPJeoDNI-E3TDUFdRLk7kuDgeENGHweSjrL8IN8HpcJxNtPjTDILOxE3PaPAPpqt00GFBduGsWsLmFGpd_crtVxXVsBRTzGbra5c4B_-DswWSBzn2aMnhpAhHUaAFT31pmcOC4ulghUcigs9Ugx7lfb3dNM6J-3MJciW387pZ5-W9U3sp7_Fzc8ho0SYiQiOQa-Yija_8ZGKgeZH6rlkgOPaXk_K8PAtcw4huh-sXB4U2Z0wdqivCG1Xnow_p60bho3br4mXI3GDf8YJpQQ"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-08-13 18:32:08 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-08-13 18:32:08 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-08-13 18:32:08 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "25f331d84959416bc1aee9d91b84d0fb",
      "alg": "PS256",
      "e": "AQAB",
      "n": "09D2GUXwjlc3SLSbj5YfVn5XBHu2rqpBSqvCXLjhDeZAa_9S7DP3woDhsg5ZL7yvHx8HPJeoDNI-E3TDUFdRLk7kuDgeENGHweSjrL8IN8HpcJxNtPjTDILOxE3PaPAPpqt00GFBduGsWsLmFGpd_crtVxXVsBRTzGbra5c4B_-DswWSBzn2aMnhpAhHUaAFT31pmcOC4ulghUcigs9Ugx7lfb3dNM6J-3MJciW387pZ5-W9U3sp7_Fzc8ho0SYiQiOQa-Yija_8ZGKgeZH6rlkgOPaXk_K8PAtcw4huh-sXB4U2Z0wdqivCG1Xnow_p60bho3br4mXI3GDf8YJpQQ"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
c_uOH_ZzqmYdaneJ9Aev_
client_name
Client_1
scope
openid consents accounts
jwks
{
  "keys": [
    {
      "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
      "p": "88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE",
      "kty": "RSA",
      "q": "0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU",
      "d": "bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ",
      "e": "AQAB",
      "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
      "qi": "39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g",
      "dp": "3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE",
      "alg": "PS256",
      "dq": "LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0",
      "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
    }
  ]
}
redirect_uri
https://jwt.io/
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
hint_type
login_hint
hint_value
123
2021-08-13 18:32:08 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2021-08-13 18:32:08 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
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
2021-08-13 18:32:08 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-08-13 18:32:08 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
      "p": "88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE",
      "kty": "RSA",
      "q": "0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU",
      "d": "bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ",
      "e": "AQAB",
      "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
      "qi": "39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g",
      "dp": "3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE",
      "alg": "PS256",
      "dq": "LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0",
      "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
      "e": "AQAB",
      "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
      "alg": "PS256",
      "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-08-13 18:32:08 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-08-13 18:32:08 SUCCESS
FAPIBrazilCheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256"
]
2021-08-13 18:32:08 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
      "p": "88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE",
      "kty": "RSA",
      "q": "0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU",
      "d": "bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ",
      "e": "AQAB",
      "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
      "qi": "39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g",
      "dp": "3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE",
      "alg": "PS256",
      "dq": "LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0",
      "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
Verify configuration of second client
2021-08-13 18:32:08 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
8dxz4KPQn89ULTnsAmPnt
scope
openid consents accounts
jwks
{
  "keys": [
    {
      "p": "0WSE_Wb6SGHep073z8ocYee1FTCoPlhvndwIR0CVes5ohCc9aY6UZ5a357PFWASl304LSAIIgaHLO9UZM8TZcs0WFGNgUb_6cTMjEGYp8p2z2TEbwEjSHup8tZr2n0DKHwcbzx0_F2FdQszLEdcPZGh13G1n5Lhd97nm4Og4s-E",
      "kty": "RSA",
      "q": "t5S52FJAQ03ACIatHwlpN62Q-1FzT-IkGqdgNZcdhmc1jnQyaNV8ajFs9xiTaNCffuIr_u2Cff2wafm2CINpIqRMVmY_uk5lyULLAQnJ4cHC40zKEOzXQHr7LxcjVlHHCSQsDTI6PRxkzXUYDspy-XwNnR_bLLvo9JUXdEozYUM",
      "d": "XKiH9--OSr2XdNYmOZ9DMAebT8ZAwcszjznVQO8maeQRtbcNrHM_9I5HH_17Og7SqOXDEoA8Zj_BE95BvwTI0Fm9ZqQ9oldJVUu5oX94XpaXebsa7d2HzknNY95twR2CTYMvY7BMZ7Fm484jnBSIQ1NHQhiUjm4_vGjWbGJC63Lv-c4LW5Ucmefk3hXhIt5PXbvQEY1UD6K_nz-MbO07caVQ9rJgmHJ1MOwCBfAm5XpvPVERSEoPk2r2dnl0inxjeTWpTrdnFMc2J_wwjw8bbV5idsqMtE2b7t6sEN6j4yPQcCDHU-D0QlLHyvlbnM19BzKagAEw3QRe9vg3xsvBwQ",
      "e": "AQAB",
      "kid": "II9c9PNSBOcqQMXSynaY6414KP1cXiuPFYaDu3A2n_I",
      "qi": "Nycuxqx5cYlUWUKQm4G-j4MX9eS5x4krRfeCYR9n7yvz-BP6xZGsjuFg3kUGSUoBUDP8MpdSB4tboo_a4uXiV_uwAn7pSr_EO8TR6lTAnMedG98udX6YLTttCLnlngXvrgkY8rJfeX0Z_dDlDNiBrDGMJTFfw8wzxYLft8_Sa1s",
      "dp": "9jI6K7fojzKDmDRBKw94T6UgRMnxB1zz36fWE_Db0IjgWoHIs1PxKdsMYGH-pn7QiL46hW_ekIyraK4l87h_83sveslddsFCtdZqY927dIf37mbPOkZkx_TsrJqHXrfO7qxtBhhdFiBkhyZDnbY_Ys9vxLzeaw5bbeomjEp-YQ",
      "alg": "PS256",
      "dq": "LCWHy418BrNbyrEYUK5irxD-HHGp2Tv4krBNYpXEc92981PeC3fLQ34_ReyTBlGlCU46ZkOXbdTj55g1PjbbwYjhEqXkDVltAMkfKFDCS5fc1exRa2CJIuhwHxLhXJCt3HTmYwYBG1EIrJ_L-UKWA4jhfTd77XYCv05bJYvybyE",
      "n": "liiBMJtOinDhrLee6yBFLAtW7ckE5_0_o-q7yMCjBaso9h-VeNsakRCGsiYKI1kj5ZfRNXELU-upwTzzfkWk1uoDe-ldayhDr7BibgnmTLps0X7hbMZfv-XXbxZzbBItOr9XtejEyyKcZtwZAXaSxXYusArHNJcT7OLq_22kIlpRpV0tNGYHbdbnbSMiJMd-GPzMIbHZ7nr6Q-K1k7EOr4kpWgkFZgqDJN7E64SLapvpqqaD7FeQkZ3ubKi6mem7kTUO4bW1MbTmnKkNpAkJ8s-Xpq1RISqXu1-D6qQW17w-dRYDWL_eUhYQ7UQUDcTlbUAGRrW4WFy_4QUZItJU4w"
    }
  ]
}
client_name
Client_2
2021-08-13 18:32:08 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2021-08-13 18:32:08 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
ca
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
2021-08-13 18:32:08 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-08-13 18:32:08 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "p": "0WSE_Wb6SGHep073z8ocYee1FTCoPlhvndwIR0CVes5ohCc9aY6UZ5a357PFWASl304LSAIIgaHLO9UZM8TZcs0WFGNgUb_6cTMjEGYp8p2z2TEbwEjSHup8tZr2n0DKHwcbzx0_F2FdQszLEdcPZGh13G1n5Lhd97nm4Og4s-E",
      "kty": "RSA",
      "q": "t5S52FJAQ03ACIatHwlpN62Q-1FzT-IkGqdgNZcdhmc1jnQyaNV8ajFs9xiTaNCffuIr_u2Cff2wafm2CINpIqRMVmY_uk5lyULLAQnJ4cHC40zKEOzXQHr7LxcjVlHHCSQsDTI6PRxkzXUYDspy-XwNnR_bLLvo9JUXdEozYUM",
      "d": "XKiH9--OSr2XdNYmOZ9DMAebT8ZAwcszjznVQO8maeQRtbcNrHM_9I5HH_17Og7SqOXDEoA8Zj_BE95BvwTI0Fm9ZqQ9oldJVUu5oX94XpaXebsa7d2HzknNY95twR2CTYMvY7BMZ7Fm484jnBSIQ1NHQhiUjm4_vGjWbGJC63Lv-c4LW5Ucmefk3hXhIt5PXbvQEY1UD6K_nz-MbO07caVQ9rJgmHJ1MOwCBfAm5XpvPVERSEoPk2r2dnl0inxjeTWpTrdnFMc2J_wwjw8bbV5idsqMtE2b7t6sEN6j4yPQcCDHU-D0QlLHyvlbnM19BzKagAEw3QRe9vg3xsvBwQ",
      "e": "AQAB",
      "kid": "II9c9PNSBOcqQMXSynaY6414KP1cXiuPFYaDu3A2n_I",
      "qi": "Nycuxqx5cYlUWUKQm4G-j4MX9eS5x4krRfeCYR9n7yvz-BP6xZGsjuFg3kUGSUoBUDP8MpdSB4tboo_a4uXiV_uwAn7pSr_EO8TR6lTAnMedG98udX6YLTttCLnlngXvrgkY8rJfeX0Z_dDlDNiBrDGMJTFfw8wzxYLft8_Sa1s",
      "dp": "9jI6K7fojzKDmDRBKw94T6UgRMnxB1zz36fWE_Db0IjgWoHIs1PxKdsMYGH-pn7QiL46hW_ekIyraK4l87h_83sveslddsFCtdZqY927dIf37mbPOkZkx_TsrJqHXrfO7qxtBhhdFiBkhyZDnbY_Ys9vxLzeaw5bbeomjEp-YQ",
      "alg": "PS256",
      "dq": "LCWHy418BrNbyrEYUK5irxD-HHGp2Tv4krBNYpXEc92981PeC3fLQ34_ReyTBlGlCU46ZkOXbdTj55g1PjbbwYjhEqXkDVltAMkfKFDCS5fc1exRa2CJIuhwHxLhXJCt3HTmYwYBG1EIrJ_L-UKWA4jhfTd77XYCv05bJYvybyE",
      "n": "liiBMJtOinDhrLee6yBFLAtW7ckE5_0_o-q7yMCjBaso9h-VeNsakRCGsiYKI1kj5ZfRNXELU-upwTzzfkWk1uoDe-ldayhDr7BibgnmTLps0X7hbMZfv-XXbxZzbBItOr9XtejEyyKcZtwZAXaSxXYusArHNJcT7OLq_22kIlpRpV0tNGYHbdbnbSMiJMd-GPzMIbHZ7nr6Q-K1k7EOr4kpWgkFZgqDJN7E64SLapvpqqaD7FeQkZ3ubKi6mem7kTUO4bW1MbTmnKkNpAkJ8s-Xpq1RISqXu1-D6qQW17w-dRYDWL_eUhYQ7UQUDcTlbUAGRrW4WFy_4QUZItJU4w"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "II9c9PNSBOcqQMXSynaY6414KP1cXiuPFYaDu3A2n_I",
      "alg": "PS256",
      "n": "liiBMJtOinDhrLee6yBFLAtW7ckE5_0_o-q7yMCjBaso9h-VeNsakRCGsiYKI1kj5ZfRNXELU-upwTzzfkWk1uoDe-ldayhDr7BibgnmTLps0X7hbMZfv-XXbxZzbBItOr9XtejEyyKcZtwZAXaSxXYusArHNJcT7OLq_22kIlpRpV0tNGYHbdbnbSMiJMd-GPzMIbHZ7nr6Q-K1k7EOr4kpWgkFZgqDJN7E64SLapvpqqaD7FeQkZ3ubKi6mem7kTUO4bW1MbTmnKkNpAkJ8s-Xpq1RISqXu1-D6qQW17w-dRYDWL_eUhYQ7UQUDcTlbUAGRrW4WFy_4QUZItJU4w"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-08-13 18:32:08 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-08-13 18:32:08 SUCCESS
FAPIBrazilCheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256"
]
2021-08-13 18:32:08 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "p": "0WSE_Wb6SGHep073z8ocYee1FTCoPlhvndwIR0CVes5ohCc9aY6UZ5a357PFWASl304LSAIIgaHLO9UZM8TZcs0WFGNgUb_6cTMjEGYp8p2z2TEbwEjSHup8tZr2n0DKHwcbzx0_F2FdQszLEdcPZGh13G1n5Lhd97nm4Og4s-E",
      "kty": "RSA",
      "q": "t5S52FJAQ03ACIatHwlpN62Q-1FzT-IkGqdgNZcdhmc1jnQyaNV8ajFs9xiTaNCffuIr_u2Cff2wafm2CINpIqRMVmY_uk5lyULLAQnJ4cHC40zKEOzXQHr7LxcjVlHHCSQsDTI6PRxkzXUYDspy-XwNnR_bLLvo9JUXdEozYUM",
      "d": "XKiH9--OSr2XdNYmOZ9DMAebT8ZAwcszjznVQO8maeQRtbcNrHM_9I5HH_17Og7SqOXDEoA8Zj_BE95BvwTI0Fm9ZqQ9oldJVUu5oX94XpaXebsa7d2HzknNY95twR2CTYMvY7BMZ7Fm484jnBSIQ1NHQhiUjm4_vGjWbGJC63Lv-c4LW5Ucmefk3hXhIt5PXbvQEY1UD6K_nz-MbO07caVQ9rJgmHJ1MOwCBfAm5XpvPVERSEoPk2r2dnl0inxjeTWpTrdnFMc2J_wwjw8bbV5idsqMtE2b7t6sEN6j4yPQcCDHU-D0QlLHyvlbnM19BzKagAEw3QRe9vg3xsvBwQ",
      "e": "AQAB",
      "kid": "II9c9PNSBOcqQMXSynaY6414KP1cXiuPFYaDu3A2n_I",
      "qi": "Nycuxqx5cYlUWUKQm4G-j4MX9eS5x4krRfeCYR9n7yvz-BP6xZGsjuFg3kUGSUoBUDP8MpdSB4tboo_a4uXiV_uwAn7pSr_EO8TR6lTAnMedG98udX6YLTttCLnlngXvrgkY8rJfeX0Z_dDlDNiBrDGMJTFfw8wzxYLft8_Sa1s",
      "dp": "9jI6K7fojzKDmDRBKw94T6UgRMnxB1zz36fWE_Db0IjgWoHIs1PxKdsMYGH-pn7QiL46hW_ekIyraK4l87h_83sveslddsFCtdZqY927dIf37mbPOkZkx_TsrJqHXrfO7qxtBhhdFiBkhyZDnbY_Ys9vxLzeaw5bbeomjEp-YQ",
      "alg": "PS256",
      "dq": "LCWHy418BrNbyrEYUK5irxD-HHGp2Tv4krBNYpXEc92981PeC3fLQ34_ReyTBlGlCU46ZkOXbdTj55g1PjbbwYjhEqXkDVltAMkfKFDCS5fc1exRa2CJIuhwHxLhXJCt3HTmYwYBG1EIrJ_L-UKWA4jhfTd77XYCv05bJYvybyE",
      "n": "liiBMJtOinDhrLee6yBFLAtW7ckE5_0_o-q7yMCjBaso9h-VeNsakRCGsiYKI1kj5ZfRNXELU-upwTzzfkWk1uoDe-ldayhDr7BibgnmTLps0X7hbMZfv-XXbxZzbBItOr9XtejEyyKcZtwZAXaSxXYusArHNJcT7OLq_22kIlpRpV0tNGYHbdbnbSMiJMd-GPzMIbHZ7nr6Q-K1k7EOr4kpWgkFZgqDJN7E64SLapvpqqaD7FeQkZ3ubKi6mem7kTUO4bW1MbTmnKkNpAkJ8s-Xpq1RISqXu1-D6qQW17w-dRYDWL_eUhYQ7UQUDcTlbUAGRrW4WFy_4QUZItJU4w"
    }
  ]
}
2021-08-13 18:32:08 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2021-08-13 18:32:08 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
consentUrl
https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents
brazilCpf
191.659.870-63
resourceUrl
https://auth.arbi.app-terosopenbanking.com/open-banking/resources
2021-08-13 18:32:08 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://auth.arbi.app-terosopenbanking.com/open-banking/resources
2021-08-13 18:32:08 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "auth.arbi.app-terosopenbanking.com",
  "testPort": 443
}
2021-08-13 18:32:08 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "auth.arbi.app-terosopenbanking.com",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "auth.arbi.app-terosopenbanking.com",
  "testPort": 443
}
2021-08-13 18:32:08
fapi1-advanced-final-par-attempt-reuse-request_uri
Setup Done
Use client_credentials grant to obtain Brazil consent
2021-08-13 18:32:08 SUCCESS
CreateTokenEndpointRequestForClientCredentialsGrant
grant_type
client_credentials
scope
openid consents accounts
2021-08-13 18:32:08 SUCCESS
SetConsentsScopeOnTokenEndpointRequest
Set scope parameter to 'consents'
grant_type
client_credentials
scope
consents
2021-08-13 18:32:08
AddClientIdToTokenEndpointRequest
grant_type
client_credentials
scope
consents
client_id
c_uOH_ZzqmYdaneJ9Aev_
2021-08-13 18:32:08
CallTokenEndpoint
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "76"
}
request_body
grant_type=client_credentials&scope=consents&client_id=c_uOH_ZzqmYdaneJ9Aev_
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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\u003d\u003d"
}
2021-08-13 18:32:08 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "pragma": "no-cache",
  "cache-control": "no-cache, no-store",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "248",
  "date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"access_token":"z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ","expires_in":600,"token_type":"Bearer","scope":"consents"}
2021-08-13 18:32:08
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"access_token":"z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ","expires_in":600,"token_type":"Bearer","scope":"consents"}
2021-08-13 18:32:08 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ
expires_in
600
token_type
Bearer
scope
consents
2021-08-13 18:32:08 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-13 18:32:08 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ
2021-08-13 18:32:08 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ
type
Bearer
2021-08-13 18:32:08 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
600
2021-08-13 18:32:08 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
600
2021-08-13 18:32:08
CreateEmptyResourceEndpointRequestHeaders
Created empty headers
resource_endpoint_request_headers
{}
2021-08-13 18:32:08 SUCCESS
AddFAPIAuthDateToResourceEndpointRequest
Added x-fapi-auth-date to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:08 GMT"
}
2021-08-13 18:32:08 SUCCESS
FAPIBrazilCreateConsentRequest
consent_endpoint_request
{
  "data": {
    "permissions": [
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "RESOURCES_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ",
      "CUSTOMERS_BUSINESS_ADITTIONALINFO_READ",
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "LOANS_READ",
      "LOANS_WARRANTIES_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_PAYMENTS_READ",
      "FINANCINGS_READ",
      "FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "FINANCINGS_PAYMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ"
    ],
    "loggedUser": {
      "document": {
        "identification": "191.659.870-63",
        "rel": "CPF"
      }
    }
  }
}
2021-08-13 18:32:08 SUCCESS
FAPIBrazilAddExpirationToConsentRequest
Added expiration time to consent request
consent_endpoint_request
{
  "data": {
    "permissions": [
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "RESOURCES_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ",
      "CUSTOMERS_BUSINESS_ADITTIONALINFO_READ",
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "LOANS_READ",
      "LOANS_WARRANTIES_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_PAYMENTS_READ",
      "FINANCINGS_READ",
      "FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "FINANCINGS_PAYMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ"
    ],
    "loggedUser": {
      "document": {
        "identification": "191.659.870-63",
        "rel": "CPF"
      }
    },
    "expirationDateTime": "2021-08-13T20:32:08Z"
  }
}
2021-08-13 18:32:08
CallConsentEndpointWithBearerToken
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "accept-charset": "utf-8",
  "content-type": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer z9O6covciGETE0Yj8CPrmKfKls23ZS4FS3opXueDSioolhvtXJMrM1bomNDLPU01TEDebF4MWg-5Kl7oqhaYpmROClD9hmnCQ6wSpdohyWD25yCESaFcPPgho5PKZTNkXkhhDXm4J8PIMzpbc2H1J6i9PMJi89WMfxmjOJc70NZ",
  "content-length": "1164"
}
request_body
{"data":{"permissions":["CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","RESOURCES_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ","CUSTOMERS_BUSINESS_ADITTIONALINFO_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ"],"loggedUser":{"document":{"identification":"191.659.870-63","rel":"CPF"}},"expirationDateTime":"2021-08-13T20:32:08Z"}}
request_mutual_tls
{
  "cert": "MIID4DCCAsigAwIBAgIRALIqyZjyBDTaWMkNbt5mYAgwDQYJKoZIhvcNAQELBQAwdzELMAkGA1UEBhMCQlIxDjAMBgNVBAoMBVRlcm9zMRUwEwYDVQQLDAxPcGVuIEJhbmtpbmcxCzAJBgNVBAgMAlJKMRswGQYDVQQDDBJUZXJvcyBPcGVuIEJhbmtpbmcxFzAVBgNVBAcMDlJpbyBkZSBKYW5laXJvMB4XDTIxMDYyMjE3NTg0NloXDTIyMDcyMjE4NTg0NlowLzEtMCsGA1UEAwwkYXBpLnN0YWdpbmcuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVbGBkKjlOaG7+MtwzxDFQQ4SYx2u6pV/Tw3xQWDcm8PWJj1h3BWtY7N2i6/xYd2J3fCS4mnUym9Dgu2K4qlpGzRqkSaFWpZ0xHB7hv4wxWheYYs4C+4Kd7Iv/k754PjCALhPdnNPeXowZdNWB304dxtpl89aqrHwPu+DOs2MtkjhiLAynwNBy6EqxJrw0bU8ob8z3Iq4Y5FwO5zVrK8fMH+Hrs8ktDG8MSR2TJIZLJZCpxKUoa12UVAuiBCMKnILFRMNYcBs6DBT7R6YQY1ctHan0BinXUTpdqcEtrMghln0vpHh1RMTKhXE2cNl4JtMEBgk74dRAAaJiOqjZ6BqwIDAQABo4GuMIGrMC8GA1UdEQQoMCaCJGFwaS5zdGFnaW5nLmFwcC10ZXJvc29wZW5iYW5raW5nLmNvbTAJBgNVHRMEAjAAMB8GA1UdIwQYMBaAFCboVpKsRrIvsxWHAvRN1Zgs63kbMB0GA1UdDgQWBBR2mLn2TTea+U6xR9KIzl5mIura4TAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA0GCSqGSIb3DQEBCwUAA4IBAQCc56Po2ol+Nq0Thq3SF8mL/gOO7rU8G7S5cDEsvOu5RObHD/0bSP+x4UCJPb3clMUgUQpdRKMnyymCuNNPhMVHaprKr1/6nbXvu3r3GlvYMxn2vkmWI6AotffGTyie6BVEtlU01AbT+4RRuu5J9R5pWgdWzpkKprMdlsX7L2NVhjN/jpDozZ6cVObgJfLATF7n/kiziIv100aaUPDD2WYF80P5g2pRO04MUPcQmjGGAqlPWb2WUEROK8YlPbx5VbPiXsf4czy6fwIkDv+Xry49SamzG0kcHtCetxjyP0MHZbX4vCW+m+Xoy/OQT7PO1SCs+y6vNTwKsRWmGKlTWgrQ",
  "key": "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\u003d\u003d",
  "ca": "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\u003d\u003d"
}
2021-08-13 18:32:08 RESPONSE
CallConsentEndpointWithBearerToken
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "content-security-policy": "default-src \u0027none\u0027; upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "DENY",
  "strict-transport-security": "max-age\u003d63072000; includeSubdomains; preload",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "1; mode\u003dblock",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1523",
  "connection": "close",
  "date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "x-amzn-requestid": "eea26cd6-6591-43b3-9bc2-26919d892422",
  "x-v": "1.0",
  "access-control-allow-origin": "*",
  "x-amz-apigw-id": "EBIaYFFPIAMFudQ\u003d",
  "x-fapi-interaction-id": "00000000-0000-0000-0000-000000000000",
  "x-amzn-trace-id": "Root\u003d1-6116baa8-494c77df0edc6fab3f6c1f82",
  "access-control-allow-credentials": "true",
  "x-cache": "Miss from cloudfront",
  "via": "1.1 65515d7b1028cd133489fb761d35fa07.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "IAD50-C2",
  "x-amz-cf-id": "GNdz_P_ehCMMCuPIwW1_3Iokb4fVfdd1Tie-2Po4gyzM3aj1w8I00Q\u003d\u003d",
  "etag": "W/\"5f3-dOZRgD1bY3vcTJmump/sJAyu5us\""
}
response_body
{"data":{"consentId":"urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","creationDateTime":"2021-08-13T18:32:08.6757544Z","status":"AWAITING_AUTHORISATION","statusUpdateDateTime":"2021-08-13T18:32:08.6757545Z","permissions":["CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","RESOURCES_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ","CUSTOMERS_BUSINESS_ADITTIONALINFO_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ"],"expirationDateTime":"2021-08-13T20:32:08Z"},"meta":{"protocol":"d54fa484-ab02-4598-a677-2770e2eefa36"},"links":{"self":"https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents/urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954"}}
2021-08-13 18:32:08
CallConsentEndpointWithBearerToken
Consent endpoint response
consent_endpoint_response
{"data":{"consentId":"urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","creationDateTime":"2021-08-13T18:32:08.6757544Z","status":"AWAITING_AUTHORISATION","statusUpdateDateTime":"2021-08-13T18:32:08.6757545Z","permissions":["CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","RESOURCES_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ","CUSTOMERS_BUSINESS_ADITTIONALINFO_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ"],"expirationDateTime":"2021-08-13T20:32:08Z"},"meta":{"protocol":"d54fa484-ab02-4598-a677-2770e2eefa36"},"links":{"self":"https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents/urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954"}}
2021-08-13 18:32:08 SUCCESS
CallConsentEndpointWithBearerToken
Parsed consent endpoint response
headers
{
  "content-security-policy": "default-src \u0027none\u0027; upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "DENY",
  "strict-transport-security": "max-age\u003d63072000; includeSubdomains; preload",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "1; mode\u003dblock",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1523",
  "connection": "close",
  "date": "Fri, 13 Aug 2021 18:32:08 GMT",
  "x-amzn-requestid": "eea26cd6-6591-43b3-9bc2-26919d892422",
  "x-v": "1.0",
  "access-control-allow-origin": "*",
  "x-amz-apigw-id": "EBIaYFFPIAMFudQ\u003d",
  "x-fapi-interaction-id": "00000000-0000-0000-0000-000000000000",
  "x-amzn-trace-id": "Root\u003d1-6116baa8-494c77df0edc6fab3f6c1f82",
  "access-control-allow-credentials": "true",
  "x-cache": "Miss from cloudfront",
  "via": "1.1 65515d7b1028cd133489fb761d35fa07.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "IAD50-C2",
  "x-amz-cf-id": "GNdz_P_ehCMMCuPIwW1_3Iokb4fVfdd1Tie-2Po4gyzM3aj1w8I00Q\u003d\u003d",
  "etag": "W/\"5f3-dOZRgD1bY3vcTJmump/sJAyu5us\""
}
body
{"data":{"consentId":"urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","creationDateTime":"2021-08-13T18:32:08.6757544Z","status":"AWAITING_AUTHORISATION","statusUpdateDateTime":"2021-08-13T18:32:08.6757545Z","permissions":["CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","RESOURCES_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ","CUSTOMERS_BUSINESS_ADITTIONALINFO_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ"],"expirationDateTime":"2021-08-13T20:32:08Z"},"meta":{"protocol":"d54fa484-ab02-4598-a677-2770e2eefa36"},"links":{"self":"https://auth.arbi.app-terosopenbanking.com/open-banking/consents/v1/consents/urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954"}}
2021-08-13 18:32:08 SUCCESS
CheckForFAPIInteractionIdInResourceResponse
Found x-fapi-interaction-id
interaction_id
00000000-0000-0000-0000-000000000000
2021-08-13 18:32:08 SUCCESS
ExtractConsentIdFromConsentEndpointResponse
Extracted the consent id
consent_id
urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
2021-08-13 18:32:08 SUCCESS
FAPIBrazilConsentEndpointResponseValidatePermissions
Consent endpoint response contains expected permissions
requested
[
  "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
  "RESOURCES_READ",
  "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
  "CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ",
  "CUSTOMERS_BUSINESS_ADITTIONALINFO_READ",
  "ACCOUNTS_READ",
  "ACCOUNTS_BALANCES_READ",
  "ACCOUNTS_OVERDRAFT_LIMITS_READ",
  "ACCOUNTS_TRANSACTIONS_READ",
  "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
  "CREDIT_CARDS_ACCOUNTS_READ",
  "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
  "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
  "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
  "LOANS_READ",
  "LOANS_WARRANTIES_READ",
  "LOANS_SCHEDULED_INSTALMENTS_READ",
  "LOANS_PAYMENTS_READ",
  "FINANCINGS_READ",
  "FINANCINGS_WARRANTIES_READ",
  "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
  "FINANCINGS_PAYMENTS_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
  "INVOICE_FINANCINGS_READ",
  "INVOICE_FINANCINGS_WARRANTIES_READ",
  "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
  "INVOICE_FINANCINGS_PAYMENTS_READ"
]
granted
[
  "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
  "RESOURCES_READ",
  "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
  "CUSTOMERS_BUSINESS_IDENTIFICATIONS_READ",
  "CUSTOMERS_BUSINESS_ADITTIONALINFO_READ",
  "ACCOUNTS_READ",
  "ACCOUNTS_BALANCES_READ",
  "ACCOUNTS_OVERDRAFT_LIMITS_READ",
  "ACCOUNTS_TRANSACTIONS_READ",
  "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
  "CREDIT_CARDS_ACCOUNTS_READ",
  "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
  "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
  "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
  "LOANS_READ",
  "LOANS_WARRANTIES_READ",
  "LOANS_SCHEDULED_INSTALMENTS_READ",
  "LOANS_PAYMENTS_READ",
  "FINANCINGS_READ",
  "FINANCINGS_WARRANTIES_READ",
  "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
  "FINANCINGS_PAYMENTS_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
  "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
  "INVOICE_FINANCINGS_READ",
  "INVOICE_FINANCINGS_WARRANTIES_READ",
  "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
  "INVOICE_FINANCINGS_PAYMENTS_READ"
]
2021-08-13 18:32:08 SUCCESS
FAPIBrazilAddConsentIdToClientScope
Added scope of 'openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954' to client's scope
client_id
c_uOH_ZzqmYdaneJ9Aev_
client_name
Client_1
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
jwks
{
  "keys": [
    {
      "x5t#S256": "9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8",
      "p": "88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE",
      "kty": "RSA",
      "q": "0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU",
      "d": "bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ",
      "e": "AQAB",
      "kid": "98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI",
      "qi": "39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g",
      "dp": "3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE",
      "alg": "PS256",
      "dq": "LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0",
      "n": "x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"
    }
  ]
}
redirect_uri
https://jwt.io/
certificate
-----BEGIN CERTIFICATE-----
MIID4DCCAsigAwIBAgIRALIqyZjyBDTaWMkNbt5mYAgwDQYJKoZIhvcNAQELBQAw
dzELMAkGA1UEBhMCQlIxDjAMBgNVBAoMBVRlcm9zMRUwEwYDVQQLDAxPcGVuIEJh
bmtpbmcxCzAJBgNVBAgMAlJKMRswGQYDVQQDDBJUZXJvcyBPcGVuIEJhbmtpbmcx
FzAVBgNVBAcMDlJpbyBkZSBKYW5laXJvMB4XDTIxMDYyMjE3NTg0NloXDTIyMDcy
MjE4NTg0NlowLzEtMCsGA1UEAwwkYXBpLnN0YWdpbmcuYXBwLXRlcm9zb3BlbmJh
bmtpbmcuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVbGBkKj
lOaG7+MtwzxDFQQ4SYx2u6pV/Tw3xQWDcm8PWJj1h3BWtY7N2i6/xYd2J3fCS4mn
Uym9Dgu2K4qlpGzRqkSaFWpZ0xHB7hv4wxWheYYs4C+4Kd7Iv/k754PjCALhPdnN
PeXowZdNWB304dxtpl89aqrHwPu+DOs2MtkjhiLAynwNBy6EqxJrw0bU8ob8z3Iq
4Y5FwO5zVrK8fMH+Hrs8ktDG8MSR2TJIZLJZCpxKUoa12UVAuiBCMKnILFRMNYcB
s6DBT7R6YQY1ctHan0BinXUTpdqcEtrMghln0vpHh1RMTKhXE2cNl4JtMEBgk74d
RAAaJiOqjZ6BqwIDAQABo4GuMIGrMC8GA1UdEQQoMCaCJGFwaS5zdGFnaW5nLmFw
cC10ZXJvc29wZW5iYW5raW5nLmNvbTAJBgNVHRMEAjAAMB8GA1UdIwQYMBaAFCbo
VpKsRrIvsxWHAvRN1Zgs63kbMB0GA1UdDgQWBBR2mLn2TTea+U6xR9KIzl5mIura
4TAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC
MA0GCSqGSIb3DQEBCwUAA4IBAQCc56Po2ol+Nq0Thq3SF8mL/gOO7rU8G7S5cDEs
vOu5RObHD/0bSP+x4UCJPb3clMUgUQpdRKMnyymCuNNPhMVHaprKr1/6nbXvu3r3
GlvYMxn2vkmWI6AotffGTyie6BVEtlU01AbT+4RRuu5J9R5pWgdWzpkKprMdlsX7
L2NVhjN/jpDozZ6cVObgJfLATF7n/kiziIv100aaUPDD2WYF80P5g2pRO04MUPcQ
mjGGAqlPWb2WUEROK8YlPbx5VbPiXsf4czy6fwIkDv+Xry49SamzG0kcHtCetxjy
P0MHZbX4vCW+m+Xoy/OQT7PO1SCs+y6vNTwKsRWmGKlTWgrQ
-----END CERTIFICATE-----
hint_type
login_hint
hint_value
123
Make request to authorization endpoint
2021-08-13 18:32:08 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
2021-08-13 18:32:08
CreateRandomStateValue
Created state value
requested_state_length
10
state
h1CedrC8sH
2021-08-13 18:32:08 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
state
h1CedrC8sH
2021-08-13 18:32:08
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
YIWuqcNID1
2021-08-13 18:32:08 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
state
h1CedrC8sH
nonce
YIWuqcNID1
2021-08-13 18:32:08 SUCCESS
SetAuthorizationEndpointRequestResponseTypeToCode
Added response_type parameter to request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
state
h1CedrC8sH
nonce
YIWuqcNID1
response_type
code
2021-08-13 18:32:08 SUCCESS
SetAuthorizationEndpointRequestResponseModeToJWT
Added response_mode parameter to request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
state
h1CedrC8sH
nonce
YIWuqcNID1
response_type
code
response_mode
jwt
2021-08-13 18:32:08
CreateRandomCodeVerifier
Created code_verifier value
code_verifier
dODvhkFZQoTZfiS46W~VxbUztr_a8CAyFm~TD76PK9vhVt-jsOLxq7DQLWduT0hi0jm-Ue-B_XOY0GM9pidusHpGZdD08p_jVMoV2nAqvlOtJEsfr2vdEadxmSsRS7.H
2021-08-13 18:32:08
CreateS256CodeChallenge
Created code_challenge value
code_challenge
qem4gkYHH-Ws9MFCPXX3SVBbFhi_QBRX4ifjNuVKBKo
2021-08-13 18:32:08 SUCCESS
AddCodeChallengeToAuthorizationEndpointRequest
Added code_challenge and code_challenge_method parameters to request
client_id
c_uOH_ZzqmYdaneJ9Aev_
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
state
h1CedrC8sH
nonce
YIWuqcNID1
response_type
code
response_mode
jwt
code_challenge
qem4gkYHH-Ws9MFCPXX3SVBbFhi_QBRX4ifjNuVKBKo
code_challenge_method
S256
2021-08-13 18:32:08 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "c_uOH_ZzqmYdaneJ9Aev_",
  "redirect_uri": "https://www.certification.openid.net/test/a/ArbiOpenBanking/callback",
  "scope": "openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954",
  "state": "h1CedrC8sH",
  "nonce": "YIWuqcNID1",
  "response_type": "code",
  "response_mode": "jwt",
  "code_challenge": "qem4gkYHH-Ws9MFCPXX3SVBbFhi_QBRX4ifjNuVKBKo",
  "code_challenge_method": "S256"
}
2021-08-13 18:32:08 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.628879528E9
2021-08-13 18:32:08 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.628879828E9
2021-08-13 18:32:08 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://auth.arbi.app-terosopenbanking.com
2021-08-13 18:32:08 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
c_uOH_ZzqmYdaneJ9Aev_
2021-08-13 18:32:08 SUCCESS
AddClientIdToRequestObject
Added client_id to request object claims
client_id
c_uOH_ZzqmYdaneJ9Aev_
2021-08-13 18:32:08 SUCCESS
SignRequestObject
Signed the request object
claims
{"iss":"c_uOH_ZzqmYdaneJ9Aev_","response_type":"code","code_challenge_method":"S256","nonce":"YIWuqcNID1","client_id":"c_uOH_ZzqmYdaneJ9Aev_","response_mode":"jwt","aud":"https:\/\/auth.arbi.app-terosopenbanking.com","nbf":1628879528,"scope":"openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","redirect_uri":"https:\/\/www.certification.openid.net\/test\/a\/ArbiOpenBanking\/callback","state":"h1CedrC8sH","exp":1628879828,"code_challenge":"qem4gkYHH-Ws9MFCPXX3SVBbFhi_QBRX4ifjNuVKBKo"}
header
{"kid":"98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI","alg":"PS256"}
request_object
eyJraWQiOiI5OERRb08tb2dFTnBhcFlydDZLNThpZFBCemRtaHQ1amYwS2p5WkdMMW5JIiwiYWxnIjoiUFMyNTYifQ.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.Csfiho1N9EIa3pfD8Qw_ViRo55dTseox41X8egUYX4z3BXblLp88Av6Rf34yaPY7H19gFSypB8Cl5YAZaRTPk66t6wMNrtefJ0xGoT9XoSMXULEW_6dUJYd_IFx0dtUyKdLqSLzlJ8srNVIK8sT7xEvvujoe6jMN_0U9bh9uS1a2-WcNgU4iKFtWSzK7VN18cxArwujtCIDWCq2R30cX6DUaQ_AVZydsTyteSAKLb8uAMhMcAEh0zEPz6r3_fTL4JXwvMqTB3zPwyj2NhZ4DOm2Nux6ZOuklFogqxfXfi4jxslkIjVBEIcjHFVn4bTgDDeEVnI0ulE5JURsLMjL9CA
key
{"p":"88Je7CESLBjWf2sLu-nFio6h3prZqd3e6QzCCx0kFehrBRpH4HJwOx8jr91elw0uuLYfP1W1ygm38qRQQfPS8D5A0Fe2PuNtLgJSsyBZTm4iKYXwsmMEfev0jYsTYnYLibp3eT89lTXRY5Y_5vU8F4eWwJ0r-Jzio6L7U39ytXE","kty":"RSA","x5t#S256":"9xYPCFforFj6e-PyP0P9y0jmTJ67XMsUNc8rU6q3Fl8","q":"0ZH6QXJnVjxyjgfnWCZnMubcssLlg0CyQ5qh5l3q5CfLikOLKazk3Bd47YgxT-FUzyY0PdTe0gV0J0q35TkuuQgf6Yg8dDn2q1aRpKD3ipaYUVKhOtsiylhcOjc7OyhArgpJgVlcf7QAyeAe9YpLMbyJuBF3jBnYAxWmBWOsbYU","d":"bdPKNDIc01cUB9mwrl9itDjv7KI-mL4628IS3vT_FBTCLeIZUyZNNXiSnLHhBnuhE2vO6t1JjGaC2nx35NJYnJtazcvAOpE-d9s2uttUxOAbsCjOk8-A8VGpNlKF7vYWlO6-mWnxG5JbFdVLz4jDv5e0J28l-1vQq0y6sl5TkD2j1ip165UYJx48hXgWM_KjpQOkhfpzxdzYqCiFhawM6cF_oXTL2sxewZqb4a6tY9RNjmJgR710UzlbL6aPNy9R1Lv2qODv9dRaK1hgKZtXVbRWyqSyWV2HRYCNSgDAIdF1rVkiQBfTwglfwk0W0evmgijB2SInzBjz97f3Ap96gQ","e":"AQAB","kid":"98DQoO-ogENpapYrt6K58idPBzdmht5jf0KjyZGL1nI","qi":"39zaGmuQAQzG0Og2763ZscqlZfQqEHuwFpmi_zr5aLLUJR4PZqBMcSPUGV9qsYRHyvotzaYmONNc4aEX-XYcafU4HVIixnhFTRaJopCk3OzX2Td9JD2cjdxdeTUA8zEkw92xwD60-Ze9Qz9vdj5W3KNc7S1WxEG0pBD4NZowQ7g","dp":"3yhM-mP0XQaIKLJ5VZlYzdZyfnbJWmfS0QxrAP22sY_LmipLL0HVWWrSowhItoTNBzFEPhlbihGHo82l5BsyO9riP1ptb_mJVJuv1mmBGPpesCD9EHLyA83mX0a5gmSLf5WEFy48VMOmZEODUQ-l6eypqMC7JqmKG0D0UabV_yE","alg":"PS256","dq":"LO5yTEPd-fQ9z0vMgu7A433xxXXZxVlCnxHxMjXinYYWso8msAm8i5-QssSnZev2xe739mXEXB0FOUNgyAmJhexDA0vNQlIHG9cUpMpKKHF_OLhRjw_alq15IJYk4dsQewADoHLrTQnnvWCK4rQCySgWEtvT2LrVwFuM28zx9A0","n":"x4yu4Ky6NyGYHbxaKiiTbCy2zzp9ljpAfG_Jf_3xKPqNFbvjeki1F-b2FkK6GBQnOilhNaSW7d-3VKNBSkvdwVD54-msCoO0fg9nw2ANZrRN2F9D7Pcww61ZNoxNLCjc8k_FPEKP8bdmMDxsibhlsVuf3i73Qnx1aWBo65TJnDouSHvXh1EqhtdvrHhvPEiPAv7bBPdim2KBlmEhZzJ7UXRb6vNI6qEdKSL2mQko_z9ADhBIOKGcwnZXkuvQATvsVKf6kM9nUir4naeSdsa9oVl91XUwjdr5_adJtvdDUPLGIdVuNK-921YZ19Y7WpIep3-IaLdP9ESjO-4WqMVgtQ"}
2021-08-13 18:32:08 SUCCESS
BuildRequestObjectPostToPAREndpoint
request
eyJraWQiOiI5OERRb08tb2dFTnBhcFlydDZLNThpZFBCemRtaHQ1amYwS2p5WkdMMW5JIiwiYWxnIjoiUFMyNTYifQ.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.Csfiho1N9EIa3pfD8Qw_ViRo55dTseox41X8egUYX4z3BXblLp88Av6Rf34yaPY7H19gFSypB8Cl5YAZaRTPk66t6wMNrtefJ0xGoT9XoSMXULEW_6dUJYd_IFx0dtUyKdLqSLzlJ8srNVIK8sT7xEvvujoe6jMN_0U9bh9uS1a2-WcNgU4iKFtWSzK7VN18cxArwujtCIDWCq2R30cX6DUaQ_AVZydsTyteSAKLb8uAMhMcAEh0zEPz6r3_fTL4JXwvMqTB3zPwyj2NhZ4DOm2Nux6ZOuklFogqxfXfi4jxslkIjVBEIcjHFVn4bTgDDeEVnI0ulE5JURsLMjL9CA
2021-08-13 18:32:08 SUCCESS
AddClientIdToPAREndpointRequest
request
eyJraWQiOiI5OERRb08tb2dFTnBhcFlydDZLNThpZFBCemRtaHQ1amYwS2p5WkdMMW5JIiwiYWxnIjoiUFMyNTYifQ.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.Csfiho1N9EIa3pfD8Qw_ViRo55dTseox41X8egUYX4z3BXblLp88Av6Rf34yaPY7H19gFSypB8Cl5YAZaRTPk66t6wMNrtefJ0xGoT9XoSMXULEW_6dUJYd_IFx0dtUyKdLqSLzlJ8srNVIK8sT7xEvvujoe6jMN_0U9bh9uS1a2-WcNgU4iKFtWSzK7VN18cxArwujtCIDWCq2R30cX6DUaQ_AVZydsTyteSAKLb8uAMhMcAEh0zEPz6r3_fTL4JXwvMqTB3zPwyj2NhZ4DOm2Nux6ZOuklFogqxfXfi4jxslkIjVBEIcjHFVn4bTgDDeEVnI0ulE5JURsLMjL9CA
client_id
c_uOH_ZzqmYdaneJ9Aev_
2021-08-13 18:32:08
CallPAREndpoint
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/request
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-length": "1185"
}
request_body
request=eyJraWQiOiI5OERRb08tb2dFTnBhcFlydDZLNThpZFBCemRtaHQ1amYwS2p5WkdMMW5JIiwiYWxnIjoiUFMyNTYifQ.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.Csfiho1N9EIa3pfD8Qw_ViRo55dTseox41X8egUYX4z3BXblLp88Av6Rf34yaPY7H19gFSypB8Cl5YAZaRTPk66t6wMNrtefJ0xGoT9XoSMXULEW_6dUJYd_IFx0dtUyKdLqSLzlJ8srNVIK8sT7xEvvujoe6jMN_0U9bh9uS1a2-WcNgU4iKFtWSzK7VN18cxArwujtCIDWCq2R30cX6DUaQ_AVZydsTyteSAKLb8uAMhMcAEh0zEPz6r3_fTL4JXwvMqTB3zPwyj2NhZ4DOm2Nux6ZOuklFogqxfXfi4jxslkIjVBEIcjHFVn4bTgDDeEVnI0ulE5JURsLMjL9CA&client_id=c_uOH_ZzqmYdaneJ9Aev_
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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\u003d\u003d"
}
2021-08-13 18:32:09 RESPONSE
CallPAREndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "pragma": "no-cache",
  "cache-control": "no-cache, no-store",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "89",
  "date": "Fri, 13 Aug 2021 18:32:09 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"expires_in":60,"request_uri":"urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL"}
2021-08-13 18:32:09 SUCCESS
CallPAREndpoint
Storing pushed_authorization_endpoint_response_http_status 201
2021-08-13 18:32:09 SUCCESS
CallPAREndpoint
Parsed pushed authorization request endpoint response
expires_in
60
request_uri
urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL
2021-08-13 18:32:09 SUCCESS
CheckIfPAREndpointResponseError
pushed authorization request endpoint correct response.
2021-08-13 18:32:09 SUCCESS
CheckForRequestUriValue
Found valid request_uri
request_uri
urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL
2021-08-13 18:32:09 SUCCESS
CheckForPARResponseExpiresIn
Found expires_in
expires_in
60
2021-08-13 18:32:09 SUCCESS
ExtractRequestUriFromPARResponse
Extracted the request_uri: urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL
2021-08-13 18:32:09 SUCCESS
EnsureMinimumRequestUriEntropy
Calculated shannon entropy seems sufficient
actual
252.85536876509244
expected
128.0
2021-08-13 18:32:09 SUCCESS
BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://auth.arbi.app-terosopenbanking.com/auth?request_uri=urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL&client_id=c_uOH_ZzqmYdaneJ9Aev_&redirect_uri=https://www.certification.openid.net/test/a/ArbiOpenBanking/callback&scope=openid%20consents%20accounts%20consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954&response_type=code
2021-08-13 18:32:09 REDIRECT
fapi1-advanced-final-par-attempt-reuse-request_uri
Redirecting to authorization endpoint
redirect_to
https://auth.arbi.app-terosopenbanking.com/auth?request_uri=urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL&client_id=c_uOH_ZzqmYdaneJ9Aev_&redirect_uri=https://www.certification.openid.net/test/a/ArbiOpenBanking/callback&scope=openid%20consents%20accounts%20consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954&response_type=code
2021-08-13 18:32:35 INCOMING
fapi1-advanced-final-par-attempt-reuse-request_uri
Incoming HTTP request to test instance XwBDOnK9oMQjw46
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "response": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJjb2RlIjoidm1ZR1hmTDRPYmNULXJ3Q2RYUDN2QWRkTHdLM2RBV01TS04tN3RfMGljaTZ6MGhyNFZ3WEJ0MklabTdLenExOGEySkhKUkZ5eXktbUQzcGdLQlA3LXVwM2hEQ2NqaG5iSWZ2YTNwTFZLU3VxWGhfVHZJc25rYXhfX2R4alB2Nnp3VWg0TkgxdnRRalhRQXdwZWN1OU00YWpsM0xyM3R1cl9ZcWMxTG16ZFItIiwic3RhdGUiOiJoMUNlZHJDOHNIIiwiYXVkIjoiY191T0hfWnpxbVlkYW5lSjlBZXZfIiwiZXhwIjoxNjI4ODc5NjY3LCJpc3MiOiJodHRwczovL2F1dGguYXJiaS5hcHAtdGVyb3NvcGVuYmFua2luZy5jb20ifQ.krobdxMUNOOLDOJR7EA6o8JYaifuhHSgvgXWhhouWQLHYAmuCXOMhPZWHByoHF0u6_LKLb4egmgyLr2yqnD_tOL29Od_3yq90dGHOEu3Ijy3YSMsbVZ1DrXDUdQEq2khHoOiBdVQhk-cX3VpRin465U33xXJ8isH2tj_KVkKMgRg8aOCQ54W5s3YlG3poYSRaiDcm31LzVx47nn5y_IQsLnWy-6L3A5_D9zPB1YuxAP_HYggktEH19JX2N74yaf_DuU_mKV8kGSI3D_-EsCh0ySFqGY7668CTcpbmu7zhLjCMF3PoR996DI6RHFZ_40nFCGDyW_dqlzuclFef-n3Nw"
}
incoming_body
2021-08-13 18:32:35 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/JXVLLd4gK9OlOyEMfJm8",
  "fullUrl": "https://www.certification.openid.net/test/a/ArbiOpenBanking/implicit/JXVLLd4gK9OlOyEMfJm8"
}
2021-08-13 18:32:35 OUTGOING
fapi1-advanced-final-par-attempt-reuse-request_uri
Response to HTTP request to test instance XwBDOnK9oMQjw46
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/ArbiOpenBanking/implicit/JXVLLd4gK9OlOyEMfJm8, returnUrl=/log-detail.html?log=XwBDOnK9oMQjw46}]
outgoing_path
callback
2021-08-13 18:32:36 INCOMING
fapi1-advanced-final-par-attempt-reuse-request_uri
Incoming HTTP request to test instance XwBDOnK9oMQjw46
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/ArbiOpenBanking/callback?response\u003deyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJjb2RlIjoidm1ZR1hmTDRPYmNULXJ3Q2RYUDN2QWRkTHdLM2RBV01TS04tN3RfMGljaTZ6MGhyNFZ3WEJ0MklabTdLenExOGEySkhKUkZ5eXktbUQzcGdLQlA3LXVwM2hEQ2NqaG5iSWZ2YTNwTFZLU3VxWGhfVHZJc25rYXhfX2R4alB2Nnp3VWg0TkgxdnRRalhRQXdwZWN1OU00YWpsM0xyM3R1cl9ZcWMxTG16ZFItIiwic3RhdGUiOiJoMUNlZHJDOHNIIiwiYXVkIjoiY191T0hfWnpxbVlkYW5lSjlBZXZfIiwiZXhwIjoxNjI4ODc5NjY3LCJpc3MiOiJodHRwczovL2F1dGguYXJiaS5hcHAtdGVyb3NvcGVuYmFua2luZy5jb20ifQ.krobdxMUNOOLDOJR7EA6o8JYaifuhHSgvgXWhhouWQLHYAmuCXOMhPZWHByoHF0u6_LKLb4egmgyLr2yqnD_tOL29Od_3yq90dGHOEu3Ijy3YSMsbVZ1DrXDUdQEq2khHoOiBdVQhk-cX3VpRin465U33xXJ8isH2tj_KVkKMgRg8aOCQ54W5s3YlG3poYSRaiDcm31LzVx47nn5y_IQsLnWy-6L3A5_D9zPB1YuxAP_HYggktEH19JX2N74yaf_DuU_mKV8kGSI3D_-EsCh0ySFqGY7668CTcpbmu7zhLjCMF3PoR996DI6RHFZ_40nFCGDyW_dqlzuclFef-n3Nw",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/JXVLLd4gK9OlOyEMfJm8
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-13 18:32:36 OUTGOING
fapi1-advanced-final-par-attempt-reuse-request_uri
Response to HTTP request to test instance XwBDOnK9oMQjw46
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/JXVLLd4gK9OlOyEMfJm8
2021-08-13 18:32:36 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-08-13 18:32:36 REDIRECT-IN
fapi1-advanced-final-par-attempt-reuse-request_uri
Authorization endpoint response captured
url_query
{
  "response": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJjb2RlIjoidm1ZR1hmTDRPYmNULXJ3Q2RYUDN2QWRkTHdLM2RBV01TS04tN3RfMGljaTZ6MGhyNFZ3WEJ0MklabTdLenExOGEySkhKUkZ5eXktbUQzcGdLQlA3LXVwM2hEQ2NqaG5iSWZ2YTNwTFZLU3VxWGhfVHZJc25rYXhfX2R4alB2Nnp3VWg0TkgxdnRRalhRQXdwZWN1OU00YWpsM0xyM3R1cl9ZcWMxTG16ZFItIiwic3RhdGUiOiJoMUNlZHJDOHNIIiwiYXVkIjoiY191T0hfWnpxbVlkYW5lSjlBZXZfIiwiZXhwIjoxNjI4ODc5NjY3LCJpc3MiOiJodHRwczovL2F1dGguYXJiaS5hcHAtdGVyb3NvcGVuYmFua2luZy5jb20ifQ.krobdxMUNOOLDOJR7EA6o8JYaifuhHSgvgXWhhouWQLHYAmuCXOMhPZWHByoHF0u6_LKLb4egmgyLr2yqnD_tOL29Od_3yq90dGHOEu3Ijy3YSMsbVZ1DrXDUdQEq2khHoOiBdVQhk-cX3VpRin465U33xXJ8isH2tj_KVkKMgRg8aOCQ54W5s3YlG3poYSRaiDcm31LzVx47nn5y_IQsLnWy-6L3A5_D9zPB1YuxAP_HYggktEH19JX2N74yaf_DuU_mKV8kGSI3D_-EsCh0ySFqGY7668CTcpbmu7zhLjCMF3PoR996DI6RHFZ_40nFCGDyW_dqlzuclFef-n3Nw"
}
headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2021-08-13 18:32:36 SUCCESS
ExtractJARMFromURLQuery
Found and parsed the jarm_response from callback_query_params
value
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJjb2RlIjoidm1ZR1hmTDRPYmNULXJ3Q2RYUDN2QWRkTHdLM2RBV01TS04tN3RfMGljaTZ6MGhyNFZ3WEJ0MklabTdLenExOGEySkhKUkZ5eXktbUQzcGdLQlA3LXVwM2hEQ2NqaG5iSWZ2YTNwTFZLU3VxWGhfVHZJc25rYXhfX2R4alB2Nnp3VWg0TkgxdnRRalhRQXdwZWN1OU00YWpsM0xyM3R1cl9ZcWMxTG16ZFItIiwic3RhdGUiOiJoMUNlZHJDOHNIIiwiYXVkIjoiY191T0hfWnpxbVlkYW5lSjlBZXZfIiwiZXhwIjoxNjI4ODc5NjY3LCJpc3MiOiJodHRwczovL2F1dGguYXJiaS5hcHAtdGVyb3NvcGVuYmFua2luZy5jb20ifQ.krobdxMUNOOLDOJR7EA6o8JYaifuhHSgvgXWhhouWQLHYAmuCXOMhPZWHByoHF0u6_LKLb4egmgyLr2yqnD_tOL29Od_3yq90dGHOEu3Ijy3YSMsbVZ1DrXDUdQEq2khHoOiBdVQhk-cX3VpRin465U33xXJ8isH2tj_KVkKMgRg8aOCQ54W5s3YlG3poYSRaiDcm31LzVx47nn5y_IQsLnWy-6L3A5_D9zPB1YuxAP_HYggktEH19JX2N74yaf_DuU_mKV8kGSI3D_-EsCh0ySFqGY7668CTcpbmu7zhLjCMF3PoR996DI6RHFZ_40nFCGDyW_dqlzuclFef-n3Nw
header
{
  "kid": "25f331d84959416bc1aee9d91b84d0fb",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "aud": "c_uOH_ZzqmYdaneJ9Aev_",
  "code": "vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-",
  "iss": "https://auth.arbi.app-terosopenbanking.com",
  "state": "h1CedrC8sH",
  "exp": 1628879667
}
2021-08-13 18:32:36 SUCCESS
RejectNonJarmResponsesInUrlQuery
Authorization endpoint response only includes the JARM JWT.
2021-08-13 18:32:36 SUCCESS
ExtractAuthorizationEndpointResponseFromJARMResponse
Extracted the authorization response
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
state
h1CedrC8sH
2021-08-13 18:32:36 SUCCESS
ValidateJARMResponse
JARM response standard JWT claims are valid
2021-08-13 18:32:36 SUCCESS
ValidateJARMExpRecommendations
JARM response 'exp' is less than 10 minutes
now
"Aug 13, 2021, 6:32:36 PM"
expiration
"Aug 13, 2021, 6:34:27 PM"
2021-08-13 18:32:36 SUCCESS
ValidateJARMSignatureUsingKid
jarm_response signature validated
jarm_response
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJjb2RlIjoidm1ZR1hmTDRPYmNULXJ3Q2RYUDN2QWRkTHdLM2RBV01TS04tN3RfMGljaTZ6MGhyNFZ3WEJ0MklabTdLenExOGEySkhKUkZ5eXktbUQzcGdLQlA3LXVwM2hEQ2NqaG5iSWZ2YTNwTFZLU3VxWGhfVHZJc25rYXhfX2R4alB2Nnp3VWg0TkgxdnRRalhRQXdwZWN1OU00YWpsM0xyM3R1cl9ZcWMxTG16ZFItIiwic3RhdGUiOiJoMUNlZHJDOHNIIiwiYXVkIjoiY191T0hfWnpxbVlkYW5lSjlBZXZfIiwiZXhwIjoxNjI4ODc5NjY3LCJpc3MiOiJodHRwczovL2F1dGguYXJiaS5hcHAtdGVyb3NvcGVuYmFua2luZy5jb20ifQ.krobdxMUNOOLDOJR7EA6o8JYaifuhHSgvgXWhhouWQLHYAmuCXOMhPZWHByoHF0u6_LKLb4egmgyLr2yqnD_tOL29Od_3yq90dGHOEu3Ijy3YSMsbVZ1DrXDUdQEq2khHoOiBdVQhk-cX3VpRin465U33xXJ8isH2tj_KVkKMgRg8aOCQ54W5s3YlG3poYSRaiDcm31LzVx47nn5y_IQsLnWy-6L3A5_D9zPB1YuxAP_HYggktEH19JX2N74yaf_DuU_mKV8kGSI3D_-EsCh0ySFqGY7668CTcpbmu7zhLjCMF3PoR996DI6RHFZ_40nFCGDyW_dqlzuclFef-n3Nw
2021-08-13 18:32:36 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-08-13 18:32:36 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2021-08-13 18:32:36 SUCCESS
RejectStateInUrlQueryForHybridFlow
state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)
2021-08-13 18:32:36 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2021-08-13 18:32:36 SUCCESS
ValidateSuccessfulJARMResponseFromAuthorizationEndpoint
authorization endpoint response does not include unexpected parameters
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
state
h1CedrC8sH
2021-08-13 18:32:36 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
h1CedrC8sH
2021-08-13 18:32:36
ValidateIssInAuthorizationResponse
No 'iss' value in authorization response.
2021-08-13 18:32:36 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
2021-08-13 18:32:36 SUCCESS
EnsureMinimumAuthorizationCodeLength
Authorization code is of sufficient length
actual
1368
required
128
2021-08-13 18:32:36 SUCCESS
EnsureMinimumAuthorizationCodeEntropy
Calculated shannon entropy seems sufficient
actual
977.6204092717936
expected
96.0
Call token endpoint
2021-08-13 18:32:36 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
grant_type
authorization_code
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
2021-08-13 18:32:36
AddClientIdToTokenEndpointRequest
grant_type
authorization_code
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
client_id
c_uOH_ZzqmYdaneJ9Aev_
2021-08-13 18:32:36
AddCodeVerifierToTokenEndpointRequest
grant_type
authorization_code
code
vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-
redirect_uri
https://www.certification.openid.net/test/a/ArbiOpenBanking/callback
client_id
c_uOH_ZzqmYdaneJ9Aev_
code_verifier
dODvhkFZQoTZfiS46W~VxbUztr_a8CAyFm~TD76PK9vhVt-jsOLxq7DQLWduT0hi0jm-Ue-B_XOY0GM9pidusHpGZdD08p_jVMoV2nAqvlOtJEsfr2vdEadxmSsRS7.H
2021-08-13 18:32:36
CallTokenEndpoint
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/token
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "481"
}
request_body
grant_type=authorization_code&code=vmYGXfL4ObcT-rwCdXP3vAddLwK3dAWMSKN-7t_0ici6z0hr4VwXBt2IZm7Kzq18a2JHJRFyyy-mD3pgKBP7-up3hDCcjhnbIfva3pLVKSuqXh_TvIsnkax__dxjPv6zwUh4NH1vtQjXQAwpecu9M4ajl3Lr3tur_Yqc1LmzdR-&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2FArbiOpenBanking%2Fcallback&client_id=c_uOH_ZzqmYdaneJ9Aev_&code_verifier=dODvhkFZQoTZfiS46W%7EVxbUztr_a8CAyFm%7ETD76PK9vhVt-jsOLxq7DQLWduT0hi0jm-Ue-B_XOY0GM9pidusHpGZdD08p_jVMoV2nAqvlOtJEsfr2vdEadxmSsRS7.H
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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\u003d\u003d"
}
2021-08-13 18:32:37 RESPONSE
CallTokenEndpoint
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "vary": "Origin",
  "pragma": "no-cache",
  "cache-control": "no-cache, no-store",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "1233",
  "date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "connection": "keep-alive",
  "keep-alive": "timeout\u003d5"
}
response_body
{"access_token":"k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl","expires_in":600,"id_token":"eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ","refresh_token":"gocXgoMNVCZwdz95b4JsQpnh3VJEk3U8b955beyJ4vCtnOdUtySOAICGBGrKTlNlLb63nJc6rXSRsIw8YiF5G1diCjDQF4H5gBNDfd2WnTNNTOt7mweh5C94GB4L_NkYZ0zQ-yXRmorXROwbYPjTUet9L9g9BVqaxcbbvmPxNiD","scope":"openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","token_type":"Bearer"}
2021-08-13 18:32:37
CallTokenEndpoint
Token endpoint response
token_endpoint_response
{"access_token":"k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl","expires_in":600,"id_token":"eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ","refresh_token":"gocXgoMNVCZwdz95b4JsQpnh3VJEk3U8b955beyJ4vCtnOdUtySOAICGBGrKTlNlLb63nJc6rXSRsIw8YiF5G1diCjDQF4H5gBNDfd2WnTNNTOt7mweh5C94GB4L_NkYZ0zQ-yXRmorXROwbYPjTUet9L9g9BVqaxcbbvmPxNiD","scope":"openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954","token_type":"Bearer"}
2021-08-13 18:32:37 SUCCESS
CallTokenEndpoint
Parsed token endpoint response
access_token
k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl
expires_in
600
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ
refresh_token
gocXgoMNVCZwdz95b4JsQpnh3VJEk3U8b955beyJ4vCtnOdUtySOAICGBGrKTlNlLb63nJc6rXSRsIw8YiF5G1diCjDQF4H5gBNDfd2WnTNNTOt7mweh5C94GB4L_NkYZ0zQ-yXRmorXROwbYPjTUet9L9g9BVqaxcbbvmPxNiD
scope
openid consents accounts consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954
token_type
Bearer
Verify token endpoint response
2021-08-13 18:32:37 SUCCESS
CheckIfTokenEndpointResponseError
No error from token endpoint
2021-08-13 18:32:37 SUCCESS
CheckForAccessTokenValue
Found an access token
access_token
k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl
2021-08-13 18:32:37 SUCCESS
ExtractAccessTokenFromTokenResponse
Extracted the access token
value
k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl
type
Bearer
2021-08-13 18:32:37 SUCCESS
ExtractExpiresInFromTokenEndpointResponse
Extracted 'expires_in'
expires_in
600
2021-08-13 18:32:37 SUCCESS
ValidateExpiresIn
expires_in passed all validation checks
expires_in
600
2021-08-13 18:32:37 SUCCESS
FAPIBrazilValidateExpiresIn
expires_in no greater than 900 seconds and no less than 300 seconds
expires_in
600
2021-08-13 18:32:37 SUCCESS
CheckForRefreshTokenValue
Found a refresh token
refresh_token
gocXgoMNVCZwdz95b4JsQpnh3VJEk3U8b955beyJ4vCtnOdUtySOAICGBGrKTlNlLb63nJc6rXSRsIw8YiF5G1diCjDQF4H5gBNDfd2WnTNNTOt7mweh5C94GB4L_NkYZ0zQ-yXRmorXROwbYPjTUet9L9g9BVqaxcbbvmPxNiD
2021-08-13 18:32:37 SUCCESS
EnsureMinimumRefreshTokenLength
Refresh token is of sufficient length
actual
1368
required
128
2021-08-13 18:32:37 SUCCESS
EnsureMinimumRefreshTokenEntropy
Calculated shannon entropy seems sufficient
actual
985.5876676467027
expected
96.0
2021-08-13 18:32:37 SUCCESS
EnsureMinimumAccessTokenLength
Access token is of sufficient length
actual
1368
required
128
2021-08-13 18:32:37 SUCCESS
EnsureMinimumAccessTokenEntropy
Calculated shannon entropy seems sufficient
actual
963.9109033272462
expected
96.0
2021-08-13 18:32:37 SUCCESS
ExtractIdTokenFromTokenResponse
Found and parsed the id_token from token_endpoint_response
value
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ
header
{
  "kid": "25f331d84959416bc1aee9d91b84d0fb",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "at_hash": "UeSZZvDCFqdILlmmW_B-Sg",
  "sub": "accountId1234",
  "aud": "c_uOH_ZzqmYdaneJ9Aev_",
  "iss": "https://auth.arbi.app-terosopenbanking.com",
  "exp": 1628883157,
  "nonce": "YIWuqcNID1",
  "iat": 1628879557
}
2021-08-13 18:32:37 SUCCESS
ValidateIdToken
ID token iss, aud, exp, iat, auth_time, acr & nbf claims passed validation checks
2021-08-13 18:32:37 SUCCESS
EnsureIdTokenContainsKid
kid was found in the ID token header
kid
25f331d84959416bc1aee9d91b84d0fb
2021-08-13 18:32:37 SUCCESS
ValidateIdTokenNonce
Nonce values match
nonce
YIWuqcNID1
2021-08-13 18:32:37 SUCCESS
ValidateIdTokenACRClaimAgainstRequest
Nothing to check; the conformance suite did not request an acr claim in request object
2021-08-13 18:32:37 SUCCESS
ValidateIdTokenSignature
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ
2021-08-13 18:32:37 SUCCESS
ValidateIdTokenSignatureUsingKid
id_token signature validated
id_token
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjI1ZjMzMWQ4NDk1OTQxNmJjMWFlZTlkOTFiODRkMGZiIn0.eyJzdWIiOiJhY2NvdW50SWQxMjM0Iiwibm9uY2UiOiJZSVd1cWNOSUQxIiwiYXRfaGFzaCI6IlVlU1padkRDRnFkSUxsbW1XX0ItU2ciLCJhdWQiOiJjX3VPSF9aenFtWWRhbmVKOUFldl8iLCJleHAiOjE2Mjg4ODMxNTcsImlhdCI6MTYyODg3OTU1NywiaXNzIjoiaHR0cHM6Ly9hdXRoLmFyYmkuYXBwLXRlcm9zb3BlbmJhbmtpbmcuY29tIn0.tFSXbOeFNmfLSJRU0TghEeHNwZmuva6MddHVdARG1RcPUnAq_5P938s1lM0QNkYjucE9nqTuNjewjjLVWMy67xngeQFnDyb-iFPv_tYqSEV_NIssRw4wHIzDyHD6h02fBmpx0uZtcow26E-A_JVLV2j1jG_db9HQ-3doXDYK2RW4COv8VPRdN3RpgE5vq4A0RCALkL_v-0wLvjFFQ2Ed10avy0JEJljrlZYZR8LCg186JFuav_akZyx7azzhk7U-geW8ROQkcI5xcCnP79Ko45jRHX8KmbMpsgrfrA-p9j30YlAGSW4dHDF9xTlg7NdKbhSpMghPNXSG0ndRopEkFQ
2021-08-13 18:32:37 SUCCESS
CheckForSubjectInIdToken
Found 'sub' in id_token
sub
accountId1234
2021-08-13 18:32:37 SUCCESS
FAPIBrazilValidateIdTokenSigningAlg
id_token was signed with a permitted algorithm
permitted
[
  "PS256"
]
alg
PS256
2021-08-13 18:32:37 INFO
FAPIValidateIdTokenEncryptionAlg
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-08-13 18:32:37 INFO
FAPIValidateEncryptedIdTokenHasKid
Skipped evaluation due to missing required element: id_token jwe_header
path
jwe_header
mapped
object
id_token
2021-08-13 18:32:37 INFO
ExtractCHash
Couldn't find c_hash in ID token
2021-08-13 18:32:37 INFO
ExtractSHash
Couldn't find s_hash in ID token
2021-08-13 18:32:37 SUCCESS
ExtractAtHash
Extracted at_hash from ID Token
at_hash
UeSZZvDCFqdILlmmW_B-Sg
alg
PS256
2021-08-13 18:32:37 INFO
ValidateCHash
Skipped evaluation due to missing required object: c_hash
expected
c_hash
mapped
2021-08-13 18:32:37 INFO
ValidateSHash
Skipped evaluation due to missing required object: s_hash
expected
s_hash
mapped
2021-08-13 18:32:37 SUCCESS
ValidateAtHash
at_hash validated successfully
expected_hash
UeSZZvDCFqdILlmmW_B-Sg
unhashed_value
k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl
id_token_hash
UeSZZvDCFqdILlmmW_B-Sg
Resource server endpoint tests
2021-08-13 18:32:37
CreateEmptyResourceEndpointRequestHeaders
Created empty headers
resource_endpoint_request_headers
{}
2021-08-13 18:32:37 SUCCESS
AddFAPIAuthDateToResourceEndpointRequest
Added x-fapi-auth-date to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT"
}
2021-08-13 18:32:37
AddIpV4FapiCustomerIpAddressToResourceEndpointRequest
Added x-fapi-customer-ip-address containing IPv4 address to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119"
}
2021-08-13 18:32:37
CreateRandomFAPIInteractionId
Created interaction ID
fapi_interaction_id
2329a1d9-cdc5-4483-b6b1-38c1eb442598
2021-08-13 18:32:37 SUCCESS
AddFAPIInteractionIdToResourceEndpointRequest
Added x-fapi-interaction-id to resource endpoint request headers
resource_endpoint_request_headers
{
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119",
  "x-fapi-interaction-id": "2329a1d9-cdc5-4483-b6b1-38c1eb442598"
}
2021-08-13 18:32:37
CallProtectedResourceWithBearerTokenAndCustomHeaders
HTTP request
request_uri
https://auth.arbi.app-terosopenbanking.com/open-banking/resources
request_method
GET
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119",
  "x-fapi-interaction-id": "2329a1d9-cdc5-4483-b6b1-38c1eb442598",
  "authorization": "Bearer k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl",
  "accept-charset": "utf-8",
  "content-length": "0"
}
request_body

                                
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d\u003d",
  "ca": "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\u003d\u003d"
}
2021-08-13 18:32:37 RESPONSE
CallProtectedResourceWithBearerTokenAndCustomHeaders
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119",
  "x-fapi-interaction-id": "2329a1d9-cdc5-4483-b6b1-38c1eb442598",
  "authorization": "Bearer k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl",
  "accept-charset": "utf-8",
  "host": "auth.arbi.app-terosopenbanking.com",
  "connection": "Keep-Alive",
  "user-agent": "Apache-HttpClient/4.5.13 (Java/11.0.12)",
  "accept-encoding": "gzip,deflate",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "26",
  "etag": "W/\"1a-3UOAHhtK1Dk1E0Air7JvynIEXIo\"",
  "date": "Fri, 13 Aug 2021 18:32:37 GMT"
}
response_body
{"acounts":{"mock":"123"}}
2021-08-13 18:32:37 SUCCESS
CallProtectedResourceWithBearerTokenAndCustomHeaders
Got a response from the resource endpoint
headers
{
  "content-security-policy": "default-src \u0027self\u0027;base-uri \u0027self\u0027;block-all-mixed-content;font-src \u0027self\u0027 https: data:;frame-ancestors \u0027self\u0027;img-src \u0027self\u0027 data:;object-src \u0027none\u0027;script-src \u0027self\u0027;script-src-attr \u0027none\u0027;style-src \u0027self\u0027 https: \u0027unsafe-inline\u0027;upgrade-insecure-requests",
  "x-dns-prefetch-control": "off",
  "expect-ct": "max-age\u003d0",
  "x-frame-options": "SAMEORIGIN",
  "strict-transport-security": "max-age\u003d15552000; includeSubDomains",
  "x-download-options": "noopen",
  "x-content-type-options": "nosniff",
  "x-permitted-cross-domain-policies": "none",
  "referrer-policy": "no-referrer",
  "x-xss-protection": "0",
  "accept": "application/json;charset\u003dUTF-8",
  "x-fapi-auth-date": "Fri, 13 Aug 2021 18:32:37 GMT",
  "x-fapi-customer-ip-address": "198.51.100.119",
  "x-fapi-interaction-id": "2329a1d9-cdc5-4483-b6b1-38c1eb442598",
  "authorization": "Bearer k43oGkoqCx1kLkfa2Kr0uHgQ7dwusGGjKvIxIYk0uCQSyd7AoyWAbaY_rv437iLhfTmrbZMO0f19j33CMXkWYArjPEWh3ha0xAIthUPR6gi5nAkFIGAIm30U3knS7WxTTn_zSSvFipjC1Zikg7fcoewGfkDWqv0xYn5Dv9sV8rl",
  "accept-charset": "utf-8",
  "host": "auth.arbi.app-terosopenbanking.com",
  "connection": "Keep-Alive",
  "user-agent": "Apache-HttpClient/4.5.13 (Java/11.0.12)",
  "accept-encoding": "gzip,deflate",
  "content-type": "application/json; charset\u003dutf-8",
  "content-length": "26",
  "etag": "W/\"1a-3UOAHhtK1Dk1E0Air7JvynIEXIo\"",
  "date": "Fri, 13 Aug 2021 18:32:37 GMT"
}
status_code
{
  "code": 200
}
body
{"acounts":{"mock":"123"}}
2021-08-13 18:32:37 SUCCESS
CheckForDateHeaderInResourceResponse
Date header present and validated
date
Fri, 13 Aug 2021 18:32:37 GMT
skew
212
2021-08-13 18:32:37 SUCCESS
CheckForFAPIInteractionIdInResourceResponse
Found x-fapi-interaction-id
interaction_id
2329a1d9-cdc5-4483-b6b1-38c1eb442598
2021-08-13 18:32:37 SUCCESS
EnsureMatchingFAPIInteractionId
Interaction ID matched
fapi_interaction_id
2329a1d9-cdc5-4483-b6b1-38c1eb442598
2021-08-13 18:32:37 SUCCESS
EnsureResourceResponseReturnedJsonContentType
Response content type is JSON
content_type
application/json; charset=utf-8
Attempting reuse of request_uri and testing if Authorization server returns error in callback
2021-08-13 18:32:37 SUCCESS
BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://auth.arbi.app-terosopenbanking.com/auth?request_uri=urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL&client_id=c_uOH_ZzqmYdaneJ9Aev_&redirect_uri=https://www.certification.openid.net/test/a/ArbiOpenBanking/callback&scope=openid%20consents%20accounts%20consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954&response_type=code
2021-08-13 18:32:37 REDIRECT
fapi1-advanced-final-par-attempt-reuse-request_uri
Redirecting to authorization endpoint
redirect_to
https://auth.arbi.app-terosopenbanking.com/auth?request_uri=urn:ietf:params:oauth:request_uri:iFpBeEN-CPCx85GHbstsL&client_id=c_uOH_ZzqmYdaneJ9Aev_&redirect_uri=https://www.certification.openid.net/test/a/ArbiOpenBanking/callback&scope=openid%20consents%20accounts%20consent:urn:c_uOH_ZzqmYdaneJ9Aev_:da5da1ef-c53d-4826-8de7-1c15979b6954&response_type=code
2021-08-13 18:32:37 REVIEW
ExpectInvalidRequestUriErrorPage
If the server does not return an error back to the client, It must show an error page that the request_uri is invalid - upload a screenshot of the error page.
image_no_longer_required
true
2021-08-13 18:32:56 INCOMING
fapi1-advanced-final-par-attempt-reuse-request_uri
Incoming HTTP request to test instance XwBDOnK9oMQjw46
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
incoming_path
callback
incoming_body_form_params
incoming_method
GET
incoming_body_json
incoming_query_string_params
{
  "error": "invalid_request_uri",
  "error_description": "request_uri is invalid or expired"
}
incoming_body
2021-08-13 18:32:56 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/ddbbJw7w0j48hvwPihuZ",
  "fullUrl": "https://www.certification.openid.net/test/a/ArbiOpenBanking/implicit/ddbbJw7w0j48hvwPihuZ"
}
2021-08-13 18:32:56 OUTGOING
fapi1-advanced-final-par-attempt-reuse-request_uri
Response to HTTP request to test instance XwBDOnK9oMQjw46
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/ArbiOpenBanking/implicit/ddbbJw7w0j48hvwPihuZ, returnUrl=/log-detail.html?log=XwBDOnK9oMQjw46}]
outgoing_path
callback
2021-08-13 18:32:57 INCOMING
fapi1-advanced-final-par-attempt-reuse-request_uri
Incoming HTTP request to test instance XwBDOnK9oMQjw46
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "accept": "*/*",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "content-type": "text/plain",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/ArbiOpenBanking/callback?error\u003dinvalid_request_uri\u0026error_description\u003drequest_uri%20is%20invalid%20or%20expired",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "content-length": "0",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net",
  "connection": "close"
}
incoming_path
implicit/ddbbJw7w0j48hvwPihuZ
incoming_body_form_params
incoming_method
POST
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-08-13 18:32:57 OUTGOING
fapi1-advanced-final-par-attempt-reuse-request_uri
Response to HTTP request to test instance XwBDOnK9oMQjw46
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/ddbbJw7w0j48hvwPihuZ
2021-08-13 18:32:57 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2021-08-13 18:32:57 REDIRECT-IN
fapi1-advanced-final-par-attempt-reuse-request_uri
Authorization endpoint response captured
url_query
{
  "error": "invalid_request_uri",
  "error_description": "request_uri is invalid or expired"
}
headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"92\", \" Not A;Brand\";v\u003d\"99\", \"Microsoft Edge\";v\u003d\"92\"",
  "sec-ch-ua-mobile": "?0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36 Edg/92.0.902.55",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "JSESSIONID\u003d10F06BAC1F73FFB04C2C32F3E076587F",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2021-08-13 18:32:57 SUCCESS
AddPlainErrorResponseAsAuthorizationEndpointResponseForJARM
The server returned a plain error response instead of a JARM response
error
invalid_request_uri
error_description
request_uri is invalid or expired
2021-08-13 18:32:57 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2021-08-13 18:32:57 SUCCESS
EnsureInvalidRequestUriError
Authorization endpoint returned expected 'error' of 'invalid_request_uri'
error
invalid_request_uri
2021-08-13 18:32:57 FINISHED
fapi1-advanced-final-par-attempt-reuse-request_uri
Test has run to completion
testmodule_result
PASSED
Test Results