Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-03 18:54:45 INFO
TEST-RUNNER
Test instance 2YJUmh5TH8LAu2V created
baseUrl
https://www.certification.openid.net/test/a/bpp-hml-1
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
bpp-hml-1
description
BPP RP Test
planId
DC46gm0bYaXEG
config
{
  "alias": "bpp-hml-1",
  "description": "BPP RP Test",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "8CnWRKHg_6C-H9O95DV5l",
    "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
    "certificate": "-----BEGIN CERTIFICATE-----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\nuMBC0xZswE/sahueFiWI\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
          "alg": "PS256",
          "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
          "e": "AQAB"
        }
      ]
    }
  },
  "client2": {
    "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "client_id": "8CnWRKHg_6C-H9O95DV5l2",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
          "alg": "PS256",
          "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
          "e": "AQAB"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "n": "uQSt09zPV0t96AiBqa47B5ZbFQxiKnlwRdsmHr8baK8i648oWzSSV6yiUyhmMKSUT8PrFu3zNatc0nB6y1WYoHUQSt2iB-zpQfDY-CMZ5l406_QlpTGYpybliYMe6zRru4zWTKB6IZVQlnOjV2Wtnz3on3HHr5z_gbXWNRXrdnYxhP4SbO55ZISaOYdSbilHKL3atnTmMSp1KwdtNRcyn-SgzmBe2pPS4zCCRNfUzkHjiMzVt8Fga4t2hgjuHi3TNSgm3XN1rngT324YW2prjJ6NtrefRoqu_mZYf6K4qAeMbM3yI-V8VWFspoYt4rYN5dKwOi63n7sPSd3l4DJYCQ",
          "e": "AQAB",
          "alg": "PS256",
          "kid": "275b520363abfb032433d81759d876e1d89d35f45864fa4a56156d565a3a939e"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw\nMTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh\ncnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l\nYzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp\nbmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD\nVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0\nMDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi\nMDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ\nAHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB\n63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g\nqCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW\nFyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb\nmQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty\nkILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5\nLuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+\nMEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv\neC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG\nOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy\nL2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t\nLWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i\ncjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE\nggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB\nJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt\nIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p\nc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy\nYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl\nIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg\nTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl\ncmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh\nbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM\nMjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y\njohDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5\nWVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe\nDAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh\nMsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0\nuMBC0xZswE/sahueFiWI\n-----END CERTIFICATE-----"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-invalid-signature
2021-12-03 18:54:45 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/bpp-hml-1/
discoveryUrl
https://www.certification.openid.net/test/a/bpp-hml-1/.well-known/openid-configuration
2021-12-03 18:54:45 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-03 18:54:45 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 18:54:45
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-03 18:54:45
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-03 18:54:45
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-03 18:54:45
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-03 18:54:45 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-03 18:54:45
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/bpp-hml-1/par
2021-12-03 18:54:45
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2021-12-03 18:54:45 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-03 18:54:45 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-03 18:54:45 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-03 18:54:45 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-03 18:54:45 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-03 18:54:45 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
8CnWRKHg_6C-H9O95DV5l
redirect_uri
https://tpp-api.openbanking.hom-bpp.com.br/callback
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    }
  ]
}
2021-12-03 18:54:45 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 18:54:45 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw"
    }
  ]
}
2021-12-03 18:54:45 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-03 18:54:45 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-03 18:54:45 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    }
  ]
}
Verify configuration of second client
2021-12-03 18:54:45 SUCCESS
GetStaticClient2Configuration
Found a static second client object
redirect_uri
https://tpp-api.openbanking.hom-bpp.com.br/callback
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
client_id
8CnWRKHg_6C-H9O95DV5l2
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "n": "uQSt09zPV0t96AiBqa47B5ZbFQxiKnlwRdsmHr8baK8i648oWzSSV6yiUyhmMKSUT8PrFu3zNatc0nB6y1WYoHUQSt2iB-zpQfDY-CMZ5l406_QlpTGYpybliYMe6zRru4zWTKB6IZVQlnOjV2Wtnz3on3HHr5z_gbXWNRXrdnYxhP4SbO55ZISaOYdSbilHKL3atnTmMSp1KwdtNRcyn-SgzmBe2pPS4zCCRNfUzkHjiMzVt8Fga4t2hgjuHi3TNSgm3XN1rngT324YW2prjJ6NtrefRoqu_mZYf6K4qAeMbM3yI-V8VWFspoYt4rYN5dKwOi63n7sPSd3l4DJYCQ",
      "e": "AQAB",
      "alg": "PS256",
      "kid": "275b520363abfb032433d81759d876e1d89d35f45864fa4a56156d565a3a939e"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 18:54:45 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 18:54:45 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "n": "uQSt09zPV0t96AiBqa47B5ZbFQxiKnlwRdsmHr8baK8i648oWzSSV6yiUyhmMKSUT8PrFu3zNatc0nB6y1WYoHUQSt2iB-zpQfDY-CMZ5l406_QlpTGYpybliYMe6zRru4zWTKB6IZVQlnOjV2Wtnz3on3HHr5z_gbXWNRXrdnYxhP4SbO55ZISaOYdSbilHKL3atnTmMSp1KwdtNRcyn-SgzmBe2pPS4zCCRNfUzkHjiMzVt8Fga4t2hgjuHi3TNSgm3XN1rngT324YW2prjJ6NtrefRoqu_mZYf6K4qAeMbM3yI-V8VWFspoYt4rYN5dKwOi63n7sPSd3l4DJYCQ",
      "e": "AQAB",
      "alg": "PS256",
      "kid": "275b520363abfb032433d81759d876e1d89d35f45864fa4a56156d565a3a939e"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "275b520363abfb032433d81759d876e1d89d35f45864fa4a56156d565a3a939e",
      "alg": "PS256",
      "n": "uQSt09zPV0t96AiBqa47B5ZbFQxiKnlwRdsmHr8baK8i648oWzSSV6yiUyhmMKSUT8PrFu3zNatc0nB6y1WYoHUQSt2iB-zpQfDY-CMZ5l406_QlpTGYpybliYMe6zRru4zWTKB6IZVQlnOjV2Wtnz3on3HHr5z_gbXWNRXrdnYxhP4SbO55ZISaOYdSbilHKL3atnTmMSp1KwdtNRcyn-SgzmBe2pPS4zCCRNfUzkHjiMzVt8Fga4t2hgjuHi3TNSgm3XN1rngT324YW2prjJ6NtrefRoqu_mZYf6K4qAeMbM3yI-V8VWFspoYt4rYN5dKwOi63n7sPSd3l4DJYCQ"
    }
  ]
}
2021-12-03 18:54:45 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-03 18:54:45 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-03 18:54:45 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "alg": "PS256",
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "n": "uQSt09zPV0t96AiBqa47B5ZbFQxiKnlwRdsmHr8baK8i648oWzSSV6yiUyhmMKSUT8PrFu3zNatc0nB6y1WYoHUQSt2iB-zpQfDY-CMZ5l406_QlpTGYpybliYMe6zRru4zWTKB6IZVQlnOjV2Wtnz3on3HHr5z_gbXWNRXrdnYxhP4SbO55ZISaOYdSbilHKL3atnTmMSp1KwdtNRcyn-SgzmBe2pPS4zCCRNfUzkHjiMzVt8Fga4t2hgjuHi3TNSgm3XN1rngT324YW2prjJ6NtrefRoqu_mZYf6K4qAeMbM3yI-V8VWFspoYt4rYN5dKwOi63n7sPSd3l4DJYCQ",
      "e": "AQAB",
      "alg": "PS256",
      "kid": "275b520363abfb032433d81759d876e1d89d35f45864fa4a56156d565a3a939e"
    }
  ]
}
2021-12-03 18:54:45
fapi1-advanced-final-client-test-invalid-signature
Setup Done
2021-12-03 18:54:51 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 18:54:51 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 18:54:51 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-03 18:54:51 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "149",
  "connection": "close"
}
incoming_path
/test-mtls/a/bpp-hml-1/token
incoming_body_form_params
{
  "scope": "payments",
  "grant_type": "client_credentials",
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "client_id": "8CnWRKHg_6C-H9O95DV5l"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
scope=payments&grant_type=client_credentials&redirect_uri=https%3A%2F%2Ftpp-api.openbanking.hom-bpp.com.br%2Fcallback&client_id=8CnWRKHg_6C-H9O95DV5l
2021-12-03 18:54:51 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-03 18:54:51 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nuMBC0xZswE/sahueFiWI\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dcc925e9a-f8df-409f-a0f3-dbd0d4bb07a5,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3133333730383335303030313835,CN\u003d*.openbanking.hom-bpp.com.br,OU\u003db20c07c6-ec63-5add-bdef-e1023017f166,O\u003dBPP IP S.A.,L\u003dBarueri,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mtls-api.openbanking.hom-bpp.com.br",
    "mtls-auth.openbanking.hom-bpp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 18:54:51 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 18:54:51 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 18:54:51 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-03 18:54:51 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "payments"
]
expected
payments
2021-12-03 18:54:51 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq
2021-12-03 18:54:51 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq
token_type
Bearer
2021-12-03 18:54:51
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-03 18:54:51 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-03 18:54:51 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/jwt",
  "authorization": "Bearer 59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq",
  "x-idempotency-key": "a961fed9-1d65-4ede-a964-c68acb272f16",
  "user-agent": "axios/0.21.4",
  "content-length": "1973",
  "connection": "close"
}
incoming_path
/test-mtls/a/bpp-hml-1/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsImtpZCI6Ikw5ekNvblk1UzFnU29VN19HTW8zUXBPTlY4c0NLdnB3d0xHQmpvVmxxV1kiLCJ0eXAiOiJKV1QifQ.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.ybf0G--GSqmKU9SGOoYPoX4dGPDCRTVq9219a9q52eLpgmuExfS80EXzpxo1htE4-EjO58D5fcQXobU7bd_H8PVbTu6178kMLdpcMp1c5Vn-kHbRlUvp5IUJzOqrSu3ucL5rxYiuMGngiFG_9QAmNoMr9MbuvRVtiQaohhwE3IW8cOvLwKG--GD7ksN7muTzp3DfqVrfi20xzQ5bcnATBb_UpW4DDjOM_mMapJuOVwG_OGPuukQyutHRd5M_M681kbGNU-57Epi1NMs7uNI3jd3tecrKBZy6VrZh8sx9aROhg26C4SAQv9nEjNgLP_Tk3oHM9WleMRR2gwU_LPDvjQ
2021-12-03 18:54:51 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-03 18:54:51 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nuMBC0xZswE/sahueFiWI\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dcc925e9a-f8df-409f-a0f3-dbd0d4bb07a5,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3133333730383335303030313835,CN\u003d*.openbanking.hom-bpp.com.br,OU\u003db20c07c6-ec63-5add-bdef-e1023017f166,O\u003dBPP IP S.A.,L\u003dBarueri,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mtls-api.openbanking.hom-bpp.com.br",
    "mtls-auth.openbanking.hom-bpp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 18:54:51 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 18:54:51 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 18:54:51 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-03 18:54:51 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-03 18:54:51 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq
2021-12-03 18:54:51 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
59EKZlhimaF4iSC77Lw0IKUuR5IxUtJkrGmab7EuwH6T12Vvpq
2021-12-03 18:54:51 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-03 18:54:51 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-03 18:54:51 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2021-12-03 18:54:51 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2021-12-03 18:54:51 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "payments"
]
2021-12-03 18:54:51 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/payments/v1/consents",
  "data": {
    "debtorAccount": {
      "number": "1234567890",
      "accountType": "SLRY",
      "ispb": "123456789",
      "issuer": "17745"
    },
    "permissions": [
      "PAYMENTS"
    ],
    "loggedUser": {
      "document": {
        "identification": "49043513040",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "Marco Antonio de Brito",
      "cpfCnpj": "49043513040",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-10-30",
      "amount": "100.00",
      "currency": "BRL",
      "details": {
        "proxy": "12345678901",
        "localInstrument": "DICT",
        "qrCode": "00020104141234567890123426660014BR.GOV.BCB.PIX014466756C616E6F32303139406578616D706C652E636F6D27300012 \nBR.COM.OUTRO011001234567895204000053039865406123.455802BR5915NOMEDORECEBEDOR6008BRASILIA61087007490062 \n530515RP12345678-201950300017BR.GOV.BCB.BRCODE01051.0.080450014BR.GOV.BCB.PIX0123PADRAO.URL.PIX/0123AB \nCD81390012BR.COM.OUTRO01190123.ABCD.3456.WXYZ6304EB76\n",
        "creditorAccount": {
          "number": "1234567890",
          "accountType": "CACC",
          "ispb": "12345678",
          "issuer": "1774"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "5300108"
    }
  },
  "iss": "b20c07c6-ec63-5add-bdef-e1023017f166",
  "iat": 1638557691,
  "jti": "88102b42-67e3-4082-a6eb-ef828493b91c"
}
2021-12-03 18:54:51 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2021-12-03 18:54:51 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
a961fed9-1d65-4ede-a964-c68acb272f16
2021-12-03 18:54:51 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/bpp-hml-1/payments/v1/consents
2021-12-03 18:54:51 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=cc925e9a-f8df-409f-a0f3-dbd0d4bb07a5,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3133333730383335303030313835,CN=*.openbanking.hom-bpp.com.br,OU=b20c07c6-ec63-5add-bdef-e1023017f166,O=BPP IP S.A.,L=Barueri,ST=SP,C=BR
ou
b20c07c6-ec63-5add-bdef-e1023017f166
brazil_software_id
cc925e9a-f8df-409f-a0f3-dbd0d4bb07a5
2021-12-03 18:54:51 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
b20c07c6-ec63-5add-bdef-e1023017f166
2021-12-03 18:54:51 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
88102b42-67e3-4082-a6eb-ef828493b91c
2021-12-03 18:54:51 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1638557691
2021-12-03 18:54:51
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/b20c07c6-ec63-5add-bdef-e1023017f166/application.jwks
2021-12-03 18:54:51
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/b20c07c6-ec63-5add-bdef-e1023017f166/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-12-03 18:54:51 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "2984",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Mon, 25 Oct 2021 20:25:54 GMT",
  "x-amz-version-id": "WqjEXKISYt7Onyb.71GsvOHFWXOiPBh1",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Fri, 03 Dec 2021 18:54:16 GMT",
  "etag": "\"09e591a4a86ee5a96685c1a762a0ae3a\"",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 cdeea0974caa37faf8c113492b4e9845.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-C4",
  "x-amz-cf-id": "xGND-zaGfx22ZOFEMjLM8EVGL22G3B4imWLV65tNz4L1FmQYFWl_4g\u003d\u003d",
  "age": "36"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw","e":"AQAB","kid":"L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/b20c07c6-ec63-5add-bdef-e1023017f166/L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY.pem","x5t#256":"L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY"}]}
2021-12-03 18:54:51
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw","e":"AQAB","kid":"L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/b20c07c6-ec63-5add-bdef-e1023017f166/L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY.pem","x5t#256":"L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY"}]}
2021-12-03 18:54:51 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "3Wf1cIwBHt0wW68Bl-zcrEPbXuW7A38dvGZb1gXuwM0PlL1tZzekRHTOwnPs3ko5PtGa1zksXuj7SwE9u95fHME83-WnRN_hfbaVo3j4vy8S_SNmKX2NKdZto4fDhSFMOQJOj4VrSy8gD7y-czznIMW-FRUrI4e01zJlnRHuvKlYjnyztUI3d4I3RapA3qBeLmyFh_9xKS5Fcc7HWvmUov1Gk9tY-WYCzmawgMqBTbsGkrO5D85r5N1vcDRSgv5ZZNn1i32t4kzAiCaO5eoEFFjrBWYhGFLnO9hmig8DNnlvU2zBiHdPi_4_lMk-nUtGcn-6NnjRQGD9qp8BU4qsJw",
      "e": "AQAB",
      "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/b20c07c6-ec63-5add-bdef-e1023017f166/L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY.pem",
      "x5t#256": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY"
    }
  ]
}
2021-12-03 18:54:51 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsImtpZCI6Ikw5ekNvblk1UzFnU29VN19HTW8zUXBPTlY4c0NLdnB3d0xHQmpvVmxxV1kiLCJ0eXAiOiJKV1QifQ.eyJkYXRhIjp7ImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI0OTA0MzUxMzA0MCIsInJlbCI6IkNQRiJ9fSwicGVybWlzc2lvbnMiOlsiUEFZTUVOVFMiXSwiY3JlZGl0b3IiOnsicGVyc29uVHlwZSI6IlBFU1NPQV9OQVRVUkFMIiwiY3BmQ25waiI6IjQ5MDQzNTEzMDQwIiwibmFtZSI6Ik1hcmNvIEFudG9uaW8gZGUgQnJpdG8ifSwicGF5bWVudCI6eyJ0eXBlIjoiUElYIiwiZGF0ZSI6IjIwMjEtMTAtMzAiLCJjdXJyZW5jeSI6IkJSTCIsImFtb3VudCI6IjEwMC4wMCIsImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJkZXRhaWxzIjp7ImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJxckNvZGUiOiIwMDAyMDEwNDE0MTIzNDU2Nzg5MDEyMzQyNjY2MDAxNEJSLkdPVi5CQ0IuUElYMDE0NDY2NzU2QzYxNkU2RjMyMzAzMTM5NDA2NTc4NjE2RDcwNkM2NTJFNjM2RjZEMjczMDAwMTIgXG5CUi5DT00uT1VUUk8wMTEwMDEyMzQ1Njc4OTUyMDQwMDAwNTMwMzk4NjU0MDYxMjMuNDU1ODAyQlI1OTE1Tk9NRURPUkVDRUJFRE9SNjAwOEJSQVNJTElBNjEwODcwMDc0OTAwNjIgXG41MzA1MTVSUDEyMzQ1Njc4LTIwMTk1MDMwMDAxN0JSLkdPVi5CQ0IuQlJDT0RFMDEwNTEuMC4wODA0NTAwMTRCUi5HT1YuQkNCLlBJWDAxMjNQQURSQU8uVVJMLlBJWC8wMTIzQUIgXG5DRDgxMzkwMDEyQlIuQ09NLk9VVFJPMDExOTAxMjMuQUJDRC4zNDU2LldYWVo2MzA0RUI3NlxuIiwicHJveHkiOiIxMjM0NTY3ODkwMSIsImNyZWRpdG9yQWNjb3VudCI6eyJpc3BiIjoiMTIzNDU2NzgiLCJpc3N1ZXIiOiIxNzc0IiwibnVtYmVyIjoiMTIzNDU2Nzg5MCIsImFjY291bnRUeXBlIjoiQ0FDQyJ9fX0sImRlYnRvckFjY291bnQiOnsiaXNwYiI6IjEyMzQ1Njc4OSIsImlzc3VlciI6IjE3NzQ1IiwibnVtYmVyIjoiMTIzNDU2Nzg5MCIsImFjY291bnRUeXBlIjoiU0xSWSJ9fSwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL2JwcC1obWwtMS9wYXltZW50cy92MS9jb25zZW50cyIsImlzcyI6ImIyMGMwN2M2LWVjNjMtNWFkZC1iZGVmLWUxMDIzMDE3ZjE2NiIsImp0aSI6Ijg4MTAyYjQyLTY3ZTMtNDA4Mi1hNmViLWVmODI4NDkzYjkxYyIsImlhdCI6MTYzODU1NzY5MX0.ybf0G--GSqmKU9SGOoYPoX4dGPDCRTVq9219a9q52eLpgmuExfS80EXzpxo1htE4-EjO58D5fcQXobU7bd_H8PVbTu6178kMLdpcMp1c5Vn-kHbRlUvp5IUJzOqrSu3ucL5rxYiuMGngiFG_9QAmNoMr9MbuvRVtiQaohhwE3IW8cOvLwKG--GD7ksN7muTzp3DfqVrfi20xzQ5bcnATBb_UpW4DDjOM_mMapJuOVwG_OGPuukQyutHRd5M_M681kbGNU-57Epi1NMs7uNI3jd3tecrKBZy6VrZh8sx9aROhg26C4SAQv9nEjNgLP_Tk3oHM9WleMRR2gwU_LPDvjQ
2021-12-03 18:54:51 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
245ab2df-a898-4d43-a285-216a46d1108f
2021-12-03 18:54:51 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "245ab2df-a898-4d43-a285-216a46d1108f"
}
consentId
urn:conformance:oidf:PROQHWAi32
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:PROQHWAi32",
    "creationDateTime": "2021-12-03T18:54:51Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-03T18:54:51Z",
    "expirationDateTime": "2021-12-03T20:54:51Z",
    "transactionFromDateTime": "2021-12-03T18:49:51Z",
    "transactionToDateTime": "2021-12-03T20:54:51Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bpp-hml-1payments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2021-12-03T18:54:51Z"
    },
    "creditor": {
      "name": "Marco Antonio de Brito",
      "cpfCnpj": "49043513040",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "49043513040",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-10-30",
      "amount": "100.00",
      "currency": "BRL",
      "details": {
        "proxy": "12345678901",
        "localInstrument": "DICT",
        "qrCode": "00020104141234567890123426660014BR.GOV.BCB.PIX014466756C616E6F32303139406578616D706C652E636F6D27300012 \nBR.COM.OUTRO011001234567895204000053039865406123.455802BR5915NOMEDORECEBEDOR6008BRASILIA61087007490062 \n530515RP12345678-201950300017BR.GOV.BCB.BRCODE01051.0.080450014BR.GOV.BCB.PIX0123PADRAO.URL.PIX/0123AB \nCD81390012BR.COM.OUTRO01190123.ABCD.3456.WXYZ6304EB76\n",
        "creditorAccount": {
          "number": "1234567890",
          "accountType": "CACC",
          "ispb": "12345678",
          "issuer": "1774"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "5300108"
    },
    "debtorAccount": {
      "number": "1234567890",
      "accountType": "SLRY",
      "ispb": "123456789",
      "issuer": "17745"
    }
  },
  "aud": "b20c07c6-ec63-5add-bdef-e1023017f166",
  "iat": 1638557691,
  "jti": "4d4488c0-edd0-4487-9ecd-2697fc731906",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2021-12-03 18:54:51 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJhdWQiOiJiMjBjMDdjNi1lYzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYiLCJkYXRhIjp7ImRlYnRvckFjY291bnQiOnsibnVtYmVyIjoiMTIzNDU2Nzg5MCIsImFjY291bnRUeXBlIjoiU0xSWSIsImlzcGIiOiIxMjM0NTY3ODkiLCJpc3N1ZXIiOiIxNzc0NSJ9LCJleHBpcmF0aW9uRGF0ZVRpbWUiOiIyMDIxLTEyLTAzVDIwOjU0OjUxWiIsInRyYW5zYWN0aW9uVG9EYXRlVGltZSI6IjIwMjEtMTItMDNUMjA6NTQ6NTFaIiwibG9nZ2VkVXNlciI6eyJkb2N1bWVudCI6eyJpZGVudGlmaWNhdGlvbiI6IjQ5MDQzNTEzMDQwIiwicmVsIjoiQ1BGIn19LCJjb25zZW50SWQiOiJ1cm46Y29uZm9ybWFuY2U6b2lkZjpQUk9RSFdBaTMyIiwidHJhbnNhY3Rpb25Gcm9tRGF0ZVRpbWUiOiIyMDIxLTEyLTAzVDE4OjQ5OjUxWiIsIm1ldGEiOnsidG90YWxSZWNvcmRzIjoxLCJyZXF1ZXN0RGF0ZVRpbWUiOiIyMDIxLTEyLTAzVDE4OjU0OjUxWiIsInRvdGFsUGFnZXMiOjF9LCJzdGF0dXNVcGRhdGVEYXRlVGltZSI6IjIwMjEtMTItMDNUMTg6NTQ6NTFaIiwibGlua3MiOnsic2VsZiI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9icHAtaG1sLTFwYXltZW50c1wvdjFcL2NvbnNlbnRzIn0sImNyZWRpdG9yIjp7Im5hbWUiOiJNYXJjbyBBbnRvbmlvIGRlIEJyaXRvIiwiY3BmQ25waiI6IjQ5MDQzNTEzMDQwIiwicGVyc29uVHlwZSI6IlBFU1NPQV9OQVRVUkFMIn0sInBheW1lbnQiOnsiZGF0ZSI6IjIwMjEtMTAtMzAiLCJhbW91bnQiOiIxMDAuMDAiLCJjdXJyZW5jeSI6IkJSTCIsImRldGFpbHMiOnsicHJveHkiOiIxMjM0NTY3ODkwMSIsImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJxckNvZGUiOiIwMDAyMDEwNDE0MTIzNDU2Nzg5MDEyMzQyNjY2MDAxNEJSLkdPVi5CQ0IuUElYMDE0NDY2NzU2QzYxNkU2RjMyMzAzMTM5NDA2NTc4NjE2RDcwNkM2NTJFNjM2RjZEMjczMDAwMTIgXG5CUi5DT00uT1VUUk8wMTEwMDEyMzQ1Njc4OTUyMDQwMDAwNTMwMzk4NjU0MDYxMjMuNDU1ODAyQlI1OTE1Tk9NRURPUkVDRUJFRE9SNjAwOEJSQVNJTElBNjEwODcwMDc0OTAwNjIgXG41MzA1MTVSUDEyMzQ1Njc4LTIwMTk1MDMwMDAxN0JSLkdPVi5CQ0IuQlJDT0RFMDEwNTEuMC4wODA0NTAwMTRCUi5HT1YuQkNCLlBJWDAxMjNQQURSQU8uVVJMLlBJWFwvMDEyM0FCIFxuQ0Q4MTM5MDAxMkJSLkNPTS5PVVRSTzAxMTkwMTIzLkFCQ0QuMzQ1Ni5XWFlaNjMwNEVCNzZcbiIsImNyZWRpdG9yQWNjb3VudCI6eyJudW1iZXIiOiIxMjM0NTY3ODkwIiwiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjEyMzQ1Njc4IiwiaXNzdWVyIjoiMTc3NCJ9fSwidHlwZSI6IlBJWCIsImliZ2VUb3duQ29kZSI6IjUzMDAxMDgifSwiY3JlYXRpb25EYXRlVGltZSI6IjIwMjEtMTItMDNUMTg6NTQ6NTFaIiwic3RhdHVzIjoiQVdBSVRJTkdfQVVUSE9SSVNBVElPTiJ9LCJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJpYXQiOjE2Mzg1NTc2OTEsImp0aSI6IjRkNDQ4OGMwLWVkZDAtNDQ4Ny05ZWNkLTI2OTdmYzczMTkwNiJ9.LwhBxR3LeCwaecHjYc2Vi4vUuGqPAhUg1GB5py-HeDjHQkgiI7qX9XvLoRjGO1TV-gbxty7wLKi5ienuOuOsx1QyKMLhjhaWTb68ZtOxZPG3zYiiiMeeC_YApc4YwL-5d37Rd1uQKU6DF5RvcK7V4mlNgxSAAdjKkY9_NMxw3fH1Zahuob467tz8C3kSqZDaMWLhMnVSHdDKuACIroPB-MeyRthmXiub5m05iDIO5kaV4JKFnI6-je4600ozrLq7pm6HMVMwHOSbEVnKg5MKuNd0IN8PPHvwDQK7sfNxzcQDYQ6IemiDs2a45Vbt_IFaIMBowO-La05-Ok_lTIs7eQ
2021-12-03 18:54:51
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-03 18:54:51 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "245ab2df-a898-4d43-a285-216a46d1108f"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.LwhBxR3LeCwaecHjYc2Vi4vUuGqPAhUg1GB5py-HeDjHQkgiI7qX9XvLoRjGO1TV-gbxty7wLKi5ienuOuOsx1QyKMLhjhaWTb68ZtOxZPG3zYiiiMeeC_YApc4YwL-5d37Rd1uQKU6DF5RvcK7V4mlNgxSAAdjKkY9_NMxw3fH1Zahuob467tz8C3kSqZDaMWLhMnVSHdDKuACIroPB-MeyRthmXiub5m05iDIO5kaV4JKFnI6-je4600ozrLq7pm6HMVMwHOSbEVnKg5MKuNd0IN8PPHvwDQK7sfNxzcQDYQ6IemiDs2a45Vbt_IFaIMBowO-La05-Ok_lTIs7eQ
outgoing_path
payments/v1/consents
2021-12-03 18:54:51 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 18:54:51 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 18:54:51 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-03 18:54:52 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 18:54:52 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 18:54:52 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-03 18:54:52 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "2389",
  "connection": "close"
}
incoming_path
/test-mtls/a/bpp-hml-1/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.Qh9nGFLiIUcLjjo2uvIejl2rbvzCvEofBhz3wNy8mhQyDLGRyvjGkljyi-eIP34ZKPc_I1IWPZk-TVa6jB9W0X7Z8tvE3-gqBkTaP2dVzY7w9WlFvpL2iSYwwfDvAIbNhu8k7pi579j-3dnYeK9yOdJPd8fWLF5okZXJsMi9d-mQQ38R6bdI7rqHLKnE5HKHre1iw8-4MIYdyRkG89dJLtXtkcEz0t114hnc8KZ4Dq1OmIevuUXilcmIZFF44Z6bYDLvfafEduiZUx-vDJa5GJZTEpR0zCKPDEDCNBN7utLF348y6hmiQ_c7dNRPtjv6O7FO8Miv1_MgOZ0660ttfg.w82C9qVLZHYj86i3.hfxCoXhl-w5TSTziTWrEdteRq6nqYxrYihunyAdfT0xqmr1vM_6eMRY_LyMCHuXRoiIVYJrx0gEDm7uqdtXh4o3SL9AUjNTT9E9ym0T3Cu8L8Onxe9tbnAuzeTDrkZdCgQB7HuP9OlY2j82LxJTWjpNSbXJYqYhDUSfQC-EfF7_mz2Xh99Pvbyz-ZOvQzlg4PF49xHiA7tMN3idHv5zw189In3LJOwJnckWdDNqcE0DSnxtJVA1WhxmGfS6luemBAenHBEh0SrNujXg15_T9HuyP3PH9FTZAdT72A_IBziaOz1VyEN-B8FrbfSXztMeIa6T__wKQpOsKH7_iPWpzt57aDs-qBi7Ltwv9pC4sC1zd970ywSBhhZ1lUlaeadtRQn6fU31rYjtspAROrN2V0BWfU1zrHQ0wk1jbX5U4_hLpKCQhs6IwLWzf_IkyuLfzLILfXM7luEJTbFSUfQRRlK-iORZzGcLzCubJaMSzkPK2AVe7HTgDSVgaBZkwXC2t1jtCWyghLfZun6X0X_97EIvxJ_KYnXURfxJ3qIpfIkz4GIEfMaMSiFXn0S4I4c80ClgaiC3H6Sa3vVA0pkVbPExjNSFKWIYzUSqxR9KAECUh8AlKQBfANva09BeI8cesNPdNgt-9Bjk6qGud2TwKeY8ggSAGWN3_tV48dKopA-yEMEnNUeZ7-qFMSXu9Rg9eT0gpXYQE2gcMvLqveXrmjSxc8MHNIxTIn6rlEIG6hJC1XRMqNggzj4hI_oNL6tBHdeirY9sViFwcoC8mcRAI8KNCA7IQQcEfjyJJQSL9Qa6hS_OLWOjskGoaGf4eL4mRsejIS6w_8ek5KoA9tnEihtlg3YavA62jCHseqJXyE3qns9gqcrJUp8HRhJ6Co7nfgVnjIBUFAeOK4hhTD2xeEUlN4OlYdXwkYzH0PBzzIHl9p8i8ilam_tEoQ9AcsLXsakaikdus8tCwQbjmPNdARco3Sp2HK2mhp_dRxg_yW_pyo_1i5iIF-gS54MDsCF2DfX5MOrU6xO834X-mKg7AR7UU8Ws_odkF0Q9W7TvVeTfihjOlL_FAYSeVduQrjDyB0_OhQ1C1e18XPz7uOEhzaWU7ftA3WXVwulojzRVCK-7WLtM37mUqTXdu9whzzoG3Wa1gejzHDedBBBZwRf1OvblIy9fZpnBSxXTLMDEsc9LsZzajZwmohSCGB41QVvolH3xULNHwk41LfTPcpqU0__OKsE-d54wWMVUAd0SB7xbgl_vq2CaD_tBuOE0Ix3wVKx3gqTY1_aOBnIksjDMzP4KdljJVs9y50wD5SIzKGXt535CYT8GxvRssKywbXHBV9KAjZbY_jCKAwMKlGhBIDBD8gQGbrGX3mS-qZiNLtJU2FRaeqqha2eDbtk9pwUOeEjAexr7P34NLthd0mtNLSk73UsxoMDGHfuwCW8dkvu_fH1sG2incZ9inXyKkJ2ztKdH1zs888yXNj9ccn1_c2j0IwbYVlikndA2vSr_KxUZM-7EuDOSpR1H7BCOtJkIGrHTyR1xzlzX4PdJ2kKx-fH5yO3IAZp3ihm7jxE1VImOOPQxVaDJL13ZA8zkLbjfMWaL_s9HhxuaxmO8W-zMiwqpAzlzHuRTYZ4qTI2hXEjiWkwj3n-ixg7y3RBmU1MoLbmx1O7AXXRgnBSskje0Am9Eco9e51x-lkFrGcnoNpvrjss2l6aICNl4uCJUzicFUF3dRnSp8uMRKyDiXTcuPklsg7ydvkG9rV5qCetwVZn8kmPxbl-idbvi-hmNHQS5pTI5QpPAdocdbsIDkOH_Lbdjp-xKzsg.EvvGKChle3o_zEBIFZfnXw",
  "client_id": "8CnWRKHg_6C-H9O95DV5l"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.Qh9nGFLiIUcLjjo2uvIejl2rbvzCvEofBhz3wNy8mhQyDLGRyvjGkljyi-eIP34ZKPc_I1IWPZk-TVa6jB9W0X7Z8tvE3-gqBkTaP2dVzY7w9WlFvpL2iSYwwfDvAIbNhu8k7pi579j-3dnYeK9yOdJPd8fWLF5okZXJsMi9d-mQQ38R6bdI7rqHLKnE5HKHre1iw8-4MIYdyRkG89dJLtXtkcEz0t114hnc8KZ4Dq1OmIevuUXilcmIZFF44Z6bYDLvfafEduiZUx-vDJa5GJZTEpR0zCKPDEDCNBN7utLF348y6hmiQ_c7dNRPtjv6O7FO8Miv1_MgOZ0660ttfg.w82C9qVLZHYj86i3.hfxCoXhl-w5TSTziTWrEdteRq6nqYxrYihunyAdfT0xqmr1vM_6eMRY_LyMCHuXRoiIVYJrx0gEDm7uqdtXh4o3SL9AUjNTT9E9ym0T3Cu8L8Onxe9tbnAuzeTDrkZdCgQB7HuP9OlY2j82LxJTWjpNSbXJYqYhDUSfQC-EfF7_mz2Xh99Pvbyz-ZOvQzlg4PF49xHiA7tMN3idHv5zw189In3LJOwJnckWdDNqcE0DSnxtJVA1WhxmGfS6luemBAenHBEh0SrNujXg15_T9HuyP3PH9FTZAdT72A_IBziaOz1VyEN-B8FrbfSXztMeIa6T__wKQpOsKH7_iPWpzt57aDs-qBi7Ltwv9pC4sC1zd970ywSBhhZ1lUlaeadtRQn6fU31rYjtspAROrN2V0BWfU1zrHQ0wk1jbX5U4_hLpKCQhs6IwLWzf_IkyuLfzLILfXM7luEJTbFSUfQRRlK-iORZzGcLzCubJaMSzkPK2AVe7HTgDSVgaBZkwXC2t1jtCWyghLfZun6X0X_97EIvxJ_KYnXURfxJ3qIpfIkz4GIEfMaMSiFXn0S4I4c80ClgaiC3H6Sa3vVA0pkVbPExjNSFKWIYzUSqxR9KAECUh8AlKQBfANva09BeI8cesNPdNgt-9Bjk6qGud2TwKeY8ggSAGWN3_tV48dKopA-yEMEnNUeZ7-qFMSXu9Rg9eT0gpXYQE2gcMvLqveXrmjSxc8MHNIxTIn6rlEIG6hJC1XRMqNggzj4hI_oNL6tBHdeirY9sViFwcoC8mcRAI8KNCA7IQQcEfjyJJQSL9Qa6hS_OLWOjskGoaGf4eL4mRsejIS6w_8ek5KoA9tnEihtlg3YavA62jCHseqJXyE3qns9gqcrJUp8HRhJ6Co7nfgVnjIBUFAeOK4hhTD2xeEUlN4OlYdXwkYzH0PBzzIHl9p8i8ilam_tEoQ9AcsLXsakaikdus8tCwQbjmPNdARco3Sp2HK2mhp_dRxg_yW_pyo_1i5iIF-gS54MDsCF2DfX5MOrU6xO834X-mKg7AR7UU8Ws_odkF0Q9W7TvVeTfihjOlL_FAYSeVduQrjDyB0_OhQ1C1e18XPz7uOEhzaWU7ftA3WXVwulojzRVCK-7WLtM37mUqTXdu9whzzoG3Wa1gejzHDedBBBZwRf1OvblIy9fZpnBSxXTLMDEsc9LsZzajZwmohSCGB41QVvolH3xULNHwk41LfTPcpqU0__OKsE-d54wWMVUAd0SB7xbgl_vq2CaD_tBuOE0Ix3wVKx3gqTY1_aOBnIksjDMzP4KdljJVs9y50wD5SIzKGXt535CYT8GxvRssKywbXHBV9KAjZbY_jCKAwMKlGhBIDBD8gQGbrGX3mS-qZiNLtJU2FRaeqqha2eDbtk9pwUOeEjAexr7P34NLthd0mtNLSk73UsxoMDGHfuwCW8dkvu_fH1sG2incZ9inXyKkJ2ztKdH1zs888yXNj9ccn1_c2j0IwbYVlikndA2vSr_KxUZM-7EuDOSpR1H7BCOtJkIGrHTyR1xzlzX4PdJ2kKx-fH5yO3IAZp3ihm7jxE1VImOOPQxVaDJL13ZA8zkLbjfMWaL_s9HhxuaxmO8W-zMiwqpAzlzHuRTYZ4qTI2hXEjiWkwj3n-ixg7y3RBmU1MoLbmx1O7AXXRgnBSskje0Am9Eco9e51x-lkFrGcnoNpvrjss2l6aICNl4uCJUzicFUF3dRnSp8uMRKyDiXTcuPklsg7ydvkG9rV5qCetwVZn8kmPxbl-idbvi-hmNHQS5pTI5QpPAdocdbsIDkOH_Lbdjp-xKzsg.EvvGKChle3o_zEBIFZfnXw&client_id=8CnWRKHg_6C-H9O95DV5l
2021-12-03 18:54:52 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2021-12-03 18:54:52 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHKzCCBhOgAwIBAgIUV7bJkq6BSVjpXwZdFD4q/qZlu6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNTIwMTMwMFoXDTIyMTEyNDIw MTMwMFowggEbMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEDAOBgNVBAcTB0Jh cnVlcmkxFDASBgNVBAoTC0JQUCBJUCBTLkEuMS0wKwYDVQQLEyRiMjBjMDdjNi1l YzYzLTVhZGQtYmRlZi1lMTAyMzAxN2YxNjYxJTAjBgNVBAMMHCoub3BlbmJhbmtp bmcuaG9tLWJwcC5jb20uYnIxFzAVBgNVBAUTDjEzMzcwODM1MDAwMTg1MR0wGwYD VQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJCUjE0 MDIGCgmSJomT8ixkAQETJGNjOTI1ZTlhLWY4ZGYtNDA5Zi1hMGYzLWRiZDBkNGJi MDdhNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALK5oHu8659gqjiJ AHI8bEO5zRYeuHdOZnGtuVAw6EvZAB9i4OIekY9i9PizXGgUS2Ke6r10KutFeGPB 63VFgdKmBg94DrSxzXUf0E1qAbaXRtfzkyvBxaMBL0ASNKm2VMEtIRtKf6Br34/g qCbwjeuOUsbzIx9uIimW5VQQwmvjLh8ymaQN3lqsfwAjT+p7En3gXyq+VsYztsYW FyoTb+xLU9jJruh8dth6KfprfP3Pa3Zhv6ClbCWLAUiOpZg5ss/Yls9yXt7tJHxb mQv+xrcRHpzjW6Rfxi9ykTGbDAp6+m9QGkJ0ZrOvnavo74hrv4ivsZfrar2xpMty kILM+8sCAwEAAaOCAw0wggMJMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJlWvl/5 LuRjnU+7B3CijnITMCDHMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+ MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJv eC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyG Omh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJy L2lzc3Vlci5jcmwwVAYDVR0RBE0wS4IjbXRscy1hcGkub3BlbmJhbmtpbmcuaG9t LWJwcC5jb20uYnKCJG10bHMtYXV0aC5vcGVuYmFua2luZy5ob20tYnBwLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBM MjrfMYcofXtJj/SZ+RCtv6z7mFYerSc5ppAoXFEyyPCMAlpmZ4QBZ3YxcXBC3s7Y johDBX0NAanaHY629Uafy+qg/53ZdbRNEaTK9+WSGzSclQkaaPiPlDnfrAj7tyt5 WVuRwKV4wbCMj3r7tTsqDdK6tjBdg6qRJzNMX8zbpFNvM+/lyC+6v1xVHEWpSTUe DAZMs5h13bHa4EfUmMXmqJ75CTp+V3s97X8CcM9DawKvVDJYYnWBTR7fsA+jHKTh MsZtx+aVLZcv0pJdvGiFSkTiT8KBT81ZdqKz1WE+4KZ+XVOTecncVxOXH8yTrQn0 uMBC0xZswE/sahueFiWI -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nuMBC0xZswE/sahueFiWI\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dcc925e9a-f8df-409f-a0f3-dbd0d4bb07a5,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3133333730383335303030313835,CN\u003d*.openbanking.hom-bpp.com.br,OU\u003db20c07c6-ec63-5add-bdef-e1023017f166,O\u003dBPP IP S.A.,L\u003dBarueri,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mtls-api.openbanking.hom-bpp.com.br",
    "mtls-auth.openbanking.hom-bpp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 18:54:52 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 18:54:52 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 18:54:52 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-03 18:54:52 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJMOXpDb25ZNVMxZ1NvVTdfR01vM1FwT05WOHNDS3Zwd3dMR0Jqb1ZscVdZIn0.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.v--9562Nt642mBcdR3qkpoTTLh4lrX8YZoVFkeZ121A7hp1YRB37dC_H86mJfZtsSfM6sqcTTRiKyiqJiRPa-tCOw_IJ47O8M-kBS7GG3a7llwI0C_wjP1mxxHKu0BIHx6VE1sZFyAkCRAoMH3FQxckyhjKC7XiH-nyGD1_L6CgHxHM2Tt9GCaU2qQH9TREo93UxH1v_K1D5AUaMVQsgEbl3mSWmkS2eBmMqJiOpG4Z9n0eN_gnav4NdXaRtPHpEGowaGJxS9HlYpCw2EPiAHqTWJOxBsY6f8rmYbiOWneOsuQuKpveLTnOwDsm4XqIJdr3xSCZ62etu2axh9n3W1g",
  "header": {
    "kid": "L9zConY5S1gSoU7_GMo3QpONV8sCKvpwwLGBjoVlqWY",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "8CnWRKHg_6C-H9O95DV5l",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471",
    "client_id": "8CnWRKHg_6C-H9O95DV5l",
    "response_mode": "fragment",
    "aud": "https://www.certification.openid.net/test/a/bpp-hml-1/",
    "nbf": 1638557691,
    "scope": "openid payments consent:urn:conformance:oidf:PROQHWAi32",
    "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
    "state": "222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f",
    "exp": 1638557991,
    "iat": 1638557691,
    "code_challenge": "Ug741Is7ftcFeGaeHMnfz08jyBJ3C6phj-B3XKdT8YE",
    "jti": "LdfssPh0zRW1d2SZ7WX6frxybTYhfdgNP1HoPF_PCgA"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "oauth-authz-req+jwt",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2021-12-03 18:54:52 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2021-12-03 18:54:52 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-03 18:54:52 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-03 18:54:52
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2021-12-03 18:54:52 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 3, 2021, 6:59:51 PM"
2021-12-03 18:54:52 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 3, 2021, 6:54:51 PM"
now
"Dec 3, 2021, 6:54:52 PM"
2021-12-03 18:54:52
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-03 18:54:52 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-03 18:54:52 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-03 18:54:52 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-03 18:54:52 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-03 18:54:52 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJMOXpDb25ZNVMxZ1NvVTdfR01vM1FwT05WOHNDS3Zwd3dMR0Jqb1ZscVdZIn0.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.v--9562Nt642mBcdR3qkpoTTLh4lrX8YZoVFkeZ121A7hp1YRB37dC_H86mJfZtsSfM6sqcTTRiKyiqJiRPa-tCOw_IJ47O8M-kBS7GG3a7llwI0C_wjP1mxxHKu0BIHx6VE1sZFyAkCRAoMH3FQxckyhjKC7XiH-nyGD1_L6CgHxHM2Tt9GCaU2qQH9TREo93UxH1v_K1D5AUaMVQsgEbl3mSWmkS2eBmMqJiOpG4Z9n0eN_gnav4NdXaRtPHpEGowaGJxS9HlYpCw2EPiAHqTWJOxBsY6f8rmYbiOWneOsuQuKpveLTnOwDsm4XqIJdr3xSCZ62etu2axh9n3W1g
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 27949929367057712322254109518789548348432721086682331708282194530970808213965840040701314828489450965782970799955533108690152065811686029843529802188298954146357067691660815434421113956335024483718382853622680756972123767513669565205384852530349056604921068790511574449934079286125500740990732152687672534899550741264842682362380519780127287944482219353789929175687008756379315894194251157076756380052116142065518925942314070445333536923491795799804426409377381980671790943222502503378206601811690880798695532058334499575622001357995232008197434957263723312162754699679757698801675419134159017885725636650107725851687
  public exponent: 65537
2021-12-03 18:54:52 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://tpp-api.openbanking.hom-bpp.com.br/callback
2021-12-03 18:54:52 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
Ug741Is7ftcFeGaeHMnfz08jyBJ3C6phj-B3XKdT8YE
2021-12-03 18:54:52 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:4250ccee-a426-4a71-8e03-8dc7932cb959
expires_in
600
2021-12-03 18:54:52 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:4250ccee-a426-4a71-8e03-8dc7932cb959",
  "expires_in": 600
}
outgoing_path
par
2021-12-03 18:54:52 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/json",
  "x-idempotency-key": "a961fed9-1d65-4ede-a964-c68acb272f16",
  "test-name": "34-fapi1-advanced-final-client-test-invalid-signature.pushed",
  "authorization": "Bearer eyJraWQiOiJkZWZhdWx0IiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.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.ETccLOH8cW0IY0mGUd_RQAarligTjxBLDSJfuoEvSRjQ5N-tuhqUcx0WdT-bOvznamcnmB1sa3eEGz0zLMIbKRcBZ8oAbph4wAPXUe7NsYLCgLf-IHybqPl8lCSuzyiIPjfFXog0NZOVwRb6X_UDo6gz40q13RjTP93p6HKjfuMXG034M3Jv5Gg8rosJw6AxlUaLFLecqIyY9Qe9qscVMpeCD89A2zUmfN4oTCVYBQe3RqJVROAv6eAgt5saceM44MXGx3ppsY0AWD-nhs9CXf2stnW5DNHtva9-1f__obcDfHW4i1N6ZAy9rY-IJqcSG0lOMCzl9rF0jqLynKMYCw",
  "user-agent": "axios/0.24.0",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
DHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "8CnWRKHg_6C-H9O95DV5l",
  "scope": "openid payments consent:urn:conformance:oidf:PROQHWAi32",
  "response_type": "code",
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "request_uri": "urn:ietf:params:oauth:request_uri:4250ccee-a426-4a71-8e03-8dc7932cb959"
}
incoming_body
2021-12-03 18:54:52 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
DHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-03 18:54:52 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2021-12-03 18:54:52 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-03 18:54:52 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "8CnWRKHg_6C-H9O95DV5l",
  "scope": "openid payments consent:urn:conformance:oidf:PROQHWAi32",
  "response_type": "code id_token",
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "iss": "8CnWRKHg_6C-H9O95DV5l",
  "code_challenge_method": "S256",
  "nonce": "7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471",
  "response_mode": "fragment",
  "aud": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "nbf": 1638557691,
  "state": "222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f",
  "exp": 1638557991,
  "iat": 1638557691,
  "code_challenge": "Ug741Is7ftcFeGaeHMnfz08jyBJ3C6phj-B3XKdT8YE",
  "jti": "LdfssPh0zRW1d2SZ7WX6frxybTYhfdgNP1HoPF_PCgA"
}
2021-12-03 18:54:52 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2021-12-03 18:54:52 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid payments consent:urn:conformance:oidf:PROQHWAi32
2021-12-03 18:54:52 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "payments",
  "consent:urn:conformance:oidf:PROQHWAi32"
]
expected
consent:urn:conformance:oidf:PROQHWAi32
2021-12-03 18:54:52 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "payments",
  "consent:urn:conformance:oidf:PROQHWAi32"
]
2021-12-03 18:54:52 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-03 18:54:52 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "payments",
  "consent:urn:conformance:oidf:PROQHWAi32"
]
expected
openid
2021-12-03 18:54:52 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
8CnWRKHg_6C-H9O95DV5l
2021-12-03 18:54:52 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
HJsNVj1CGhVvKdaKI167ogMx0DkgOcvd
2021-12-03 18:54:52 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471
2021-12-03 18:54:52 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
thG6_ZwfKaVmyL131f9SIQ
2021-12-03 18:54:52 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
BRlxAPfwKmidDyMgcYl9Gg
2021-12-03 18:54:52 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/bpp-hml-1/
sub
user-subject-1234531
aud
8CnWRKHg_6C-H9O95DV5l
nonce
7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471
iat
1638557692
exp
1638557992
2021-12-03 18:54:52
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-03 18:54:52 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
thG6_ZwfKaVmyL131f9SIQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "sub": "user-subject-1234531",
  "aud": "8CnWRKHg_6C-H9O95DV5l",
  "nonce": "7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471",
  "iat": 1638557692,
  "exp": 1638557992,
  "c_hash": "thG6_ZwfKaVmyL131f9SIQ"
}
2021-12-03 18:54:52 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
BRlxAPfwKmidDyMgcYl9Gg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "sub": "user-subject-1234531",
  "aud": "8CnWRKHg_6C-H9O95DV5l",
  "nonce": "7fa04a13e0486dee55a357bd66445a0e5a4714fbe5d85c5366db075bb27ce471",
  "iat": 1638557692,
  "exp": 1638557992,
  "c_hash": "thG6_ZwfKaVmyL131f9SIQ",
  "s_hash": "BRlxAPfwKmidDyMgcYl9Gg"
}
2021-12-03 18:54:52 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-03 18:54:52 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-03 18:54:52 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjhDbldSS0hnXzZDLUg5Tzk1RFY1bCIsImNfaGFzaCI6InRoRzZfWndmS2FWbXlMMTMxZjlTSVEiLCJzX2hhc2giOiJCUmx4QVBmd0ttaWREeU1nY1lsOUdnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JwcC1obWwtMVwvIiwiZXhwIjoxNjM4NTU3OTkyLCJub25jZSI6IjdmYTA0YTEzZTA0ODZkZWU1NWEzNTdiZDY2NDQ1YTBlNWE0NzE0ZmJlNWQ4NWM1MzY2ZGIwNzViYjI3Y2U0NzEiLCJpYXQiOjE2Mzg1NTc2OTJ9.RtYaSXXFQst7oU-kDGm77i9q-95ouE66ky6ANIo9u64l7-E3L4-aX99VQmwdhUD5LSmpjMmFSy8OySNuID977D2p1IP3flyTxlHAdnrhmJtGfSzsEHz2sTeWmeOM0jpOAxW6RHJ6liY0YHW4IkDjrWhJwhwTp9SZ27iu6HOq8eM0VgSna9Qu5d7a5fRSt8NsAkeaqkqie4LD2ZWuLN8zLb9VXRmaFy1WgcSwfAfvq_El8losf1Vb5mMAjWE91VfOdQLwg1tW5-6Qvr93seW4DxROGRx65NXso6HEoyOoy0bwk3NQIt93BPM_o9-kN5a24jx0p1pSn0k5yF7FoD0j7A
2021-12-03 18:54:52
InvalidateIdTokenSignature
Made the id_token signature invalid
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjhDbldSS0hnXzZDLUg5Tzk1RFY1bCIsImNfaGFzaCI6InRoRzZfWndmS2FWbXlMMTMxZjlTSVEiLCJzX2hhc2giOiJCUmx4QVBmd0ttaWREeU1nY1lsOUdnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JwcC1obWwtMVwvIiwiZXhwIjoxNjM4NTU3OTkyLCJub25jZSI6IjdmYTA0YTEzZTA0ODZkZWU1NWEzNTdiZDY2NDQ1YTBlNWE0NzE0ZmJlNWQ4NWM1MzY2ZGIwNzViYjI3Y2U0NzEiLCJpYXQiOjE2Mzg1NTc2OTJ9.HIxAEy-fGJEh-xX-VjPhtHUwoYQy4hTgyXTabtBn4fR_tbttddXABYUPGDZH3xqjd3Pz1pPfEXVUk3k0emUhtmfzjtmtJAbJnAuaLCC7wsEcJ3a2Sias623Mw7nWiGAUWU_gHiggzHxuOi_ieBq59zITmEZJ_Y7DgeL0sinwq7luDF79MY50v4SAv64I7Zk2WB3A8BD4IdiZg8_0doVpd-UPB0PATXcM257qJl218at_qAB2JQ8BvDla1ztnjw2UL1iq2QEMvbTK5OUt67_iVU4UQ0Ygvo-2-fue-XnykRyqySkKeIUtXqll-YX-bczsuGYu_QAIxRNjkgSf-md5tg
2021-12-03 18:54:52 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:PROQHWAi32",
    "creationDateTime": "2021-12-03T18:54:51Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-03T18:54:52Z",
    "expirationDateTime": "2021-12-03T20:54:51Z",
    "transactionFromDateTime": "2021-12-03T18:49:51Z",
    "transactionToDateTime": "2021-12-03T20:54:51Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bpp-hml-1payments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2021-12-03T18:54:51Z"
    },
    "creditor": {
      "name": "Marco Antonio de Brito",
      "cpfCnpj": "49043513040",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "49043513040",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-10-30",
      "amount": "100.00",
      "currency": "BRL",
      "details": {
        "proxy": "12345678901",
        "localInstrument": "DICT",
        "qrCode": "00020104141234567890123426660014BR.GOV.BCB.PIX014466756C616E6F32303139406578616D706C652E636F6D27300012 \nBR.COM.OUTRO011001234567895204000053039865406123.455802BR5915NOMEDORECEBEDOR6008BRASILIA61087007490062 \n530515RP12345678-201950300017BR.GOV.BCB.BRCODE01051.0.080450014BR.GOV.BCB.PIX0123PADRAO.URL.PIX/0123AB \nCD81390012BR.COM.OUTRO01190123.ABCD.3456.WXYZ6304EB76\n",
        "creditorAccount": {
          "number": "1234567890",
          "accountType": "CACC",
          "ispb": "12345678",
          "issuer": "1774"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "5300108"
    },
    "debtorAccount": {
      "number": "1234567890",
      "accountType": "SLRY",
      "ispb": "123456789",
      "issuer": "17745"
    }
  },
  "aud": "b20c07c6-ec63-5add-bdef-e1023017f166",
  "iat": 1638557691,
  "jti": "4d4488c0-edd0-4487-9ecd-2697fc731906",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2021-12-03 18:54:52 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "state": "222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f"
}
2021-12-03 18:54:52 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "state": "222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f",
  "code": "HJsNVj1CGhVvKdaKI167ogMx0DkgOcvd"
}
2021-12-03 18:54:52 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://tpp-api.openbanking.hom-bpp.com.br/callback",
  "state": "222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f",
  "code": "HJsNVj1CGhVvKdaKI167ogMx0DkgOcvd",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjhDbldSS0hnXzZDLUg5Tzk1RFY1bCIsImNfaGFzaCI6InRoRzZfWndmS2FWbXlMMTMxZjlTSVEiLCJzX2hhc2giOiJCUmx4QVBmd0ttaWREeU1nY1lsOUdnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JwcC1obWwtMVwvIiwiZXhwIjoxNjM4NTU3OTkyLCJub25jZSI6IjdmYTA0YTEzZTA0ODZkZWU1NWEzNTdiZDY2NDQ1YTBlNWE0NzE0ZmJlNWQ4NWM1MzY2ZGIwNzViYjI3Y2U0NzEiLCJpYXQiOjE2Mzg1NTc2OTJ9.HIxAEy-fGJEh-xX-VjPhtHUwoYQy4hTgyXTabtBn4fR_tbttddXABYUPGDZH3xqjd3Pz1pPfEXVUk3k0emUhtmfzjtmtJAbJnAuaLCC7wsEcJ3a2Sias623Mw7nWiGAUWU_gHiggzHxuOi_ieBq59zITmEZJ_Y7DgeL0sinwq7luDF79MY50v4SAv64I7Zk2WB3A8BD4IdiZg8_0doVpd-UPB0PATXcM257qJl218at_qAB2JQ8BvDla1ztnjw2UL1iq2QEMvbTK5OUt67_iVU4UQ0Ygvo-2-fue-XnykRyqySkKeIUtXqll-YX-bczsuGYu_QAIxRNjkgSf-md5tg"
}
2021-12-03 18:54:52
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://tpp-api.openbanking.hom-bpp.com.br/callback#state=222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f&code=HJsNVj1CGhVvKdaKI167ogMx0DkgOcvd&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjhDbldSS0hnXzZDLUg5Tzk1RFY1bCIsImNfaGFzaCI6InRoRzZfWndmS2FWbXlMMTMxZjlTSVEiLCJzX2hhc2giOiJCUmx4QVBmd0ttaWREeU1nY1lsOUdnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JwcC1obWwtMVwvIiwiZXhwIjoxNjM4NTU3OTkyLCJub25jZSI6IjdmYTA0YTEzZTA0ODZkZWU1NWEzNTdiZDY2NDQ1YTBlNWE0NzE0ZmJlNWQ4NWM1MzY2ZGIwNzViYjI3Y2U0NzEiLCJpYXQiOjE2Mzg1NTc2OTJ9.HIxAEy-fGJEh-xX-VjPhtHUwoYQy4hTgyXTabtBn4fR_tbttddXABYUPGDZH3xqjd3Pz1pPfEXVUk3k0emUhtmfzjtmtJAbJnAuaLCC7wsEcJ3a2Sias623Mw7nWiGAUWU_gHiggzHxuOi_ieBq59zITmEZJ_Y7DgeL0sinwq7luDF79MY50v4SAv64I7Zk2WB3A8BD4IdiZg8_0doVpd-UPB0PATXcM257qJl218at_qAB2JQ8BvDla1ztnjw2UL1iq2QEMvbTK5OUt67_iVU4UQ0Ygvo-2-fue-XnykRyqySkKeIUtXqll-YX-bczsuGYu_QAIxRNjkgSf-md5tg
2021-12-03 18:54:52 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://tpp-api.openbanking.hom-bpp.com.br/callback#state=222267a611698dd32e65f41244a76c9548ea02389c15fbd935ceded367fb9f3f&code=HJsNVj1CGhVvKdaKI167ogMx0DkgOcvd&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjhDbldSS0hnXzZDLUg5Tzk1RFY1bCIsImNfaGFzaCI6InRoRzZfWndmS2FWbXlMMTMxZjlTSVEiLCJzX2hhc2giOiJCUmx4QVBmd0ttaWREeU1nY1lsOUdnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JwcC1obWwtMVwvIiwiZXhwIjoxNjM4NTU3OTkyLCJub25jZSI6IjdmYTA0YTEzZTA0ODZkZWU1NWEzNTdiZDY2NDQ1YTBlNWE0NzE0ZmJlNWQ4NWM1MzY2ZGIwNzViYjI3Y2U0NzEiLCJpYXQiOjE2Mzg1NTc2OTJ9.HIxAEy-fGJEh-xX-VjPhtHUwoYQy4hTgyXTabtBn4fR_tbttddXABYUPGDZH3xqjd3Pz1pPfEXVUk3k0emUhtmfzjtmtJAbJnAuaLCC7wsEcJ3a2Sias623Mw7nWiGAUWU_gHiggzHxuOi_ieBq59zITmEZJ_Y7DgeL0sinwq7luDF79MY50v4SAv64I7Zk2WB3A8BD4IdiZg8_0doVpd-UPB0PATXcM257qJl218at_qAB2JQ8BvDla1ztnjw2UL1iq2QEMvbTK5OUt67_iVU4UQ0Ygvo-2-fue-XnykRyqySkKeIUtXqll-YX-bczsuGYu_QAIxRNjkgSf-md5tg]
outgoing_path
authorize
2021-12-03 18:54:53 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 18:54:53 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 18:54:53 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bpp-hml-1/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bpp-hml-1/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bpp-hml-1/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bpp-hml-1/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-03 18:54:53 INCOMING
fapi1-advanced-final-client-test-invalid-signature
Incoming HTTP request to test instance 2YJUmh5TH8LAu2V
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bpp-hml-1/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 18:54:53 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 18:54:53 OUTGOING
fapi1-advanced-final-client-test-invalid-signature
Response to HTTP request to test instance 2YJUmh5TH8LAu2V
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-03 18:54:57 FINISHED
fapi1-advanced-final-client-test-invalid-signature
Test has run to completion
testmodule_result
PASSED
2021-12-03 18:55:03
TEST-RUNNER
Alias has now been claimed by another test
alias
bpp-hml-1
new_test_id
1JleRyDCcarb0tM
Test Results