Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-02 03:12:00 INFO
TEST-RUNNER
Test instance d5GkB25Vnjn1x8f created
baseUrl
https://www.certification.openid.net/test/a/recepcao-bv
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
recepcao-bv
description
Banco Votorantim - Relying Party
planId
ceLQi6m96ulza
config
{
  "alias": "recepcao-bv",
  "description": "Banco Votorantim - Relying Party",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_BxPVObkd-0vSY6hpRLECowqCT8Fg4kLhf4_b9884tZDBj-fhULi-QPOZuhcjLVFFXkXdTDdnDSsBB6lvFNNoQBQgvdwHwJcDkSLURBT6ARNWQfdrqeiGcN8Ix0ZM6K8PWKzOgTNUrM0voYKS9OsujS4eZoLiQTcD3aIimAvwn0",
          "kty": "RSA",
          "q": "y_z_2iXatOxjuWKlSdw6tWNdeNwce4n1gTwiCBt1PrbA9NRJGzkOM4Y0pXi8FHiuOiAVIjkBQLkS1hrXsYVIh__p_GojmP2JtYJtpxoXQeQkZaLbtGG7xzwB7PSBKJnqrXCwWX0tuH_vyTzKtT2pZUl4x9X7h0O28rAcCzwfUbE",
          "d": "boZTB3J9hFY5WKJtBnQMyZ0uqbIGLEIa-NWZayTCKGzIGmzwiDIM9SBrFRevoP1qY5MyhuCgXnhXrJQvYlrQlVOp4n6OMSwVp1oIIBV35MuBU4s4zbr2UtbF8HMt4fCSNhpugRtJj8Ohad4j8K_UO3aT38MrBcWOkVaBGEIcVvo7abPj_eFNqtu9mda9uTMTvjP1VaQsscgSxdIwvNTR_k8Mp-XmJ80ffQjtpt8NIPyn6GhGE0hXRRUfAx010Wj9yT2zaM4m69uhAOMXwVKv5MMlXXKGn_0z3GqRNygPDXCcuTGQ_EGNhVQRvuve_ieNhpkQCBSjz4Ar0ueMuox_QQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "RSA-OAEP",
          "qi": "IlPPK0-J6KZNedgPE5mYcpwzWbT3hXCxxwaiFZQTOGkPInJ9SQRbNW4Z_ro_e9sekkOOb3Tclh6kbid-883riv5r58pb7R0pv0iM_ZPgG7_xDzRbxQSLQltSgI5FiLW2oVOhdxQPFVpc_i02LuYXnZ2tO1awrzYV69H49XiepIY",
          "dp": "E9KiBjn1YtyaaD03xoP4OCAXOgzjgRkod8uq7z_tSKSyNm6QO2kr8Yp0EzFX_ZRPL0YLKyLBegPGNri2LV2bb_pXWkTcYwPLey-2iJQxFMAp2MM-kfoKS95MB3LFRYMZK_Zzwy8XedYvYn-llZq6LRXyH1WWbJqeNvUJ_V9cwf0",
          "alg": "RSA-OAEP",
          "dq": "wHJm2uMdq9Tc3HhRYhZQmPIurChVAsQMBym5HZbyDQGTlydz9Sfl2vxBTN9T6ahVDudXqNrI8MvqFm5qkcMhw5TPpmBoRxzjP4fWdXDrAjH_mJeF2W7fHj7hvjCKbciQG6MV7MdpTAf_LAabY1PSLYmcVkPtshZTUjCNtJe7IHE",
          "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
        },
        {
          "kty": "RSA",
          "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
          "d": "f0PiR8W8yWnslJlucs5IwprZkIiohiCXd-u2eT-OXMgQo3e95fpE1RQPlKG2QFhtP_oOfP9kguQEkswD2T_2nlODbajtxUrpyylDMSSoxPcjdpZ93W6yWTblG3EYOn064hiqaZLXidSuQBJhZKA7_oEWLYe01jCy4qIlHptLNqArPIfnyoHxRzLHM0AbUAxzysxWlxhh-kIuA2GwPOjzDg7X_3tuDo2FBJP1JL4ivZBVjzR6a3R3jlECewHRKlDGbcUhwhw-3PgUfpv0FyDz8Kxa1aXFuD75DvUeqp1WV15D-QPBY6Tj6ImGIU2EQA2M0sa6PPH7iH5wrf2aDm7tcQ",
          "p": "zZRF4uynLVGvuR-G3P_ZRNGUWcRG6OE0KcFj4NnNt89g1eDtC7GMq-S9ZHCUavTE0tnA1loFTbCzWvUy3gywVCYFSyHz-xxDUs9uu5X9gxJAbUHUD-dAhgHnXe46Skk9mITL20vj5ErZWzIXL9-E3kSlyxC3FCSQguutIghbzhs",
          "q": "yezCWkthM28K2X2rYiQhbf_DvzHjH8NMKILYQxhI0dbcGjjpCLb7kvbhhSyeg-TgEtnp0ZqGU9KbxBSCdM-2CNhbZpIh4K1rvHQau350eLv67juK55TIRkcWiLV6G5jzJADYTefYyEk3x9kvE7h3iW6LhXuw-BPW-VJQP9wItlM",
          "dp": "Ohta1ZVGe4zHOnAq0nSOmOEUKXtM_64H7HV5IajueLHpEQsOdWut8zgoQCeCC-k7aM2br_qp3RfA2kjMI-86N863WFE0gRmv_cwb5HG0wkN6amdc5VHb7wTCvM4FM9IX0vBWHpoIxBJT9W7nFuT6zUhiBE-pL8xV_GtY-HGcYVk",
          "dq": "QyPND7bmr_JpGh32AWDgGLIlRQpyaZpHVWUEQXLuq48UikeH_JTTG2-pVt2aK2LLupjobQBDT9XEYzMqmWqDLXe7FGTcjNc87mFwjg0i7w4aBmKX8h5_ZRa4AGbPHiQCHGOHiIfhhd8KhBHL3HPGk1TFYXHaSvJV1XqwIjuoTe8",
          "qi": "MPOx2d59EB8LIUVO184i4LgKVOunNsV2oVy_T8yOsdk5bxDvjChcwpoA1jMAi_4AZBa3ji0CMUKgk9dus6PJ6Knvr8D9tSXvfww81WXkgHW1QyZgqR5rNQJjq_mAuDf6N_RitOemqMRGUJYC4t2uDNW5wozna_KozTYNo_4kIJo"
        }
      ]
    }
  },
  "client": {
    "client_id": "r3-1Pzx4eZFejFKvrCef_",
    "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
    "certificate": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
          "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
          "e": "AQAB"
        }
      ]
    }
  },
  "client2": {
    "client_id": "r3-1Pzx4eZFejFKvrCef_",
    "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "certificate": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
          "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
          "e": "AQAB"
        },
        {
          "e": "AQAB",
          "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ",
          "kty": "RSA",
          "kid": "RSA-OAEP",
          "alg": "RSA-OAEP",
          "use": "enc"
        }
      ]
    },
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
2021-12-02 03:12:00 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/recepcao-bv/
discoveryUrl
https://www.certification.openid.net/test/a/recepcao-bv/.well-known/openid-configuration
2021-12-02 03:12:00 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "p": "_BxPVObkd-0vSY6hpRLECowqCT8Fg4kLhf4_b9884tZDBj-fhULi-QPOZuhcjLVFFXkXdTDdnDSsBB6lvFNNoQBQgvdwHwJcDkSLURBT6ARNWQfdrqeiGcN8Ix0ZM6K8PWKzOgTNUrM0voYKS9OsujS4eZoLiQTcD3aIimAvwn0",
      "kty": "RSA",
      "q": "y_z_2iXatOxjuWKlSdw6tWNdeNwce4n1gTwiCBt1PrbA9NRJGzkOM4Y0pXi8FHiuOiAVIjkBQLkS1hrXsYVIh__p_GojmP2JtYJtpxoXQeQkZaLbtGG7xzwB7PSBKJnqrXCwWX0tuH_vyTzKtT2pZUl4x9X7h0O28rAcCzwfUbE",
      "d": "boZTB3J9hFY5WKJtBnQMyZ0uqbIGLEIa-NWZayTCKGzIGmzwiDIM9SBrFRevoP1qY5MyhuCgXnhXrJQvYlrQlVOp4n6OMSwVp1oIIBV35MuBU4s4zbr2UtbF8HMt4fCSNhpugRtJj8Ohad4j8K_UO3aT38MrBcWOkVaBGEIcVvo7abPj_eFNqtu9mda9uTMTvjP1VaQsscgSxdIwvNTR_k8Mp-XmJ80ffQjtpt8NIPyn6GhGE0hXRRUfAx010Wj9yT2zaM4m69uhAOMXwVKv5MMlXXKGn_0z3GqRNygPDXCcuTGQ_EGNhVQRvuve_ieNhpkQCBSjz4Ar0ueMuox_QQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "qi": "IlPPK0-J6KZNedgPE5mYcpwzWbT3hXCxxwaiFZQTOGkPInJ9SQRbNW4Z_ro_e9sekkOOb3Tclh6kbid-883riv5r58pb7R0pv0iM_ZPgG7_xDzRbxQSLQltSgI5FiLW2oVOhdxQPFVpc_i02LuYXnZ2tO1awrzYV69H49XiepIY",
      "dp": "E9KiBjn1YtyaaD03xoP4OCAXOgzjgRkod8uq7z_tSKSyNm6QO2kr8Yp0EzFX_ZRPL0YLKyLBegPGNri2LV2bb_pXWkTcYwPLey-2iJQxFMAp2MM-kfoKS95MB3LFRYMZK_Zzwy8XedYvYn-llZq6LRXyH1WWbJqeNvUJ_V9cwf0",
      "alg": "RSA-OAEP",
      "dq": "wHJm2uMdq9Tc3HhRYhZQmPIurChVAsQMBym5HZbyDQGTlydz9Sfl2vxBTN9T6ahVDudXqNrI8MvqFm5qkcMhw5TPpmBoRxzjP4fWdXDrAjH_mJeF2W7fHj7hvjCKbciQG6MV7MdpTAf_LAabY1PSLYmcVkPtshZTUjCNtJe7IHE",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    },
    {
      "p": "zZRF4uynLVGvuR-G3P_ZRNGUWcRG6OE0KcFj4NnNt89g1eDtC7GMq-S9ZHCUavTE0tnA1loFTbCzWvUy3gywVCYFSyHz-xxDUs9uu5X9gxJAbUHUD-dAhgHnXe46Skk9mITL20vj5ErZWzIXL9-E3kSlyxC3FCSQguutIghbzhs",
      "kty": "RSA",
      "q": "yezCWkthM28K2X2rYiQhbf_DvzHjH8NMKILYQxhI0dbcGjjpCLb7kvbhhSyeg-TgEtnp0ZqGU9KbxBSCdM-2CNhbZpIh4K1rvHQau350eLv67juK55TIRkcWiLV6G5jzJADYTefYyEk3x9kvE7h3iW6LhXuw-BPW-VJQP9wItlM",
      "d": "f0PiR8W8yWnslJlucs5IwprZkIiohiCXd-u2eT-OXMgQo3e95fpE1RQPlKG2QFhtP_oOfP9kguQEkswD2T_2nlODbajtxUrpyylDMSSoxPcjdpZ93W6yWTblG3EYOn064hiqaZLXidSuQBJhZKA7_oEWLYe01jCy4qIlHptLNqArPIfnyoHxRzLHM0AbUAxzysxWlxhh-kIuA2GwPOjzDg7X_3tuDo2FBJP1JL4ivZBVjzR6a3R3jlECewHRKlDGbcUhwhw-3PgUfpv0FyDz8Kxa1aXFuD75DvUeqp1WV15D-QPBY6Tj6ImGIU2EQA2M0sa6PPH7iH5wrf2aDm7tcQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "qi": "MPOx2d59EB8LIUVO184i4LgKVOunNsV2oVy_T8yOsdk5bxDvjChcwpoA1jMAi_4AZBa3ji0CMUKgk9dus6PJ6Knvr8D9tSXvfww81WXkgHW1QyZgqR5rNQJjq_mAuDf6N_RitOemqMRGUJYC4t2uDNW5wozna_KozTYNo_4kIJo",
      "dp": "Ohta1ZVGe4zHOnAq0nSOmOEUKXtM_64H7HV5IajueLHpEQsOdWut8zgoQCeCC-k7aM2br_qp3RfA2kjMI-86N863WFE0gRmv_cwb5HG0wkN6amdc5VHb7wTCvM4FM9IX0vBWHpoIxBJT9W7nFuT6zUhiBE-pL8xV_GtY-HGcYVk",
      "alg": "PS256",
      "dq": "QyPND7bmr_JpGh32AWDgGLIlRQpyaZpHVWUEQXLuq48UikeH_JTTG2-pVt2aK2LLupjobQBDT9XEYzMqmWqDLXe7FGTcjNc87mFwjg0i7w4aBmKX8h5_ZRa4AGbPHiQCHGOHiIfhhd8KhBHL3HPGk1TFYXHaSvJV1XqwIjuoTe8",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "_BxPVObkd-0vSY6hpRLECowqCT8Fg4kLhf4_b9884tZDBj-fhULi-QPOZuhcjLVFFXkXdTDdnDSsBB6lvFNNoQBQgvdwHwJcDkSLURBT6ARNWQfdrqeiGcN8Ix0ZM6K8PWKzOgTNUrM0voYKS9OsujS4eZoLiQTcD3aIimAvwn0",
      "kty": "RSA",
      "q": "y_z_2iXatOxjuWKlSdw6tWNdeNwce4n1gTwiCBt1PrbA9NRJGzkOM4Y0pXi8FHiuOiAVIjkBQLkS1hrXsYVIh__p_GojmP2JtYJtpxoXQeQkZaLbtGG7xzwB7PSBKJnqrXCwWX0tuH_vyTzKtT2pZUl4x9X7h0O28rAcCzwfUbE",
      "d": "boZTB3J9hFY5WKJtBnQMyZ0uqbIGLEIa-NWZayTCKGzIGmzwiDIM9SBrFRevoP1qY5MyhuCgXnhXrJQvYlrQlVOp4n6OMSwVp1oIIBV35MuBU4s4zbr2UtbF8HMt4fCSNhpugRtJj8Ohad4j8K_UO3aT38MrBcWOkVaBGEIcVvo7abPj_eFNqtu9mda9uTMTvjP1VaQsscgSxdIwvNTR_k8Mp-XmJ80ffQjtpt8NIPyn6GhGE0hXRRUfAx010Wj9yT2zaM4m69uhAOMXwVKv5MMlXXKGn_0z3GqRNygPDXCcuTGQ_EGNhVQRvuve_ieNhpkQCBSjz4Ar0ueMuox_QQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "qi": "IlPPK0-J6KZNedgPE5mYcpwzWbT3hXCxxwaiFZQTOGkPInJ9SQRbNW4Z_ro_e9sekkOOb3Tclh6kbid-883riv5r58pb7R0pv0iM_ZPgG7_xDzRbxQSLQltSgI5FiLW2oVOhdxQPFVpc_i02LuYXnZ2tO1awrzYV69H49XiepIY",
      "dp": "E9KiBjn1YtyaaD03xoP4OCAXOgzjgRkod8uq7z_tSKSyNm6QO2kr8Yp0EzFX_ZRPL0YLKyLBegPGNri2LV2bb_pXWkTcYwPLey-2iJQxFMAp2MM-kfoKS95MB3LFRYMZK_Zzwy8XedYvYn-llZq6LRXyH1WWbJqeNvUJ_V9cwf0",
      "alg": "RSA-OAEP",
      "dq": "wHJm2uMdq9Tc3HhRYhZQmPIurChVAsQMBym5HZbyDQGTlydz9Sfl2vxBTN9T6ahVDudXqNrI8MvqFm5qkcMhw5TPpmBoRxzjP4fWdXDrAjH_mJeF2W7fHj7hvjCKbciQG6MV7MdpTAf_LAabY1PSLYmcVkPtshZTUjCNtJe7IHE",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "alg": "PS256",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
2021-12-02 03:12:00 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-02 03:12:00
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-02 03:12:00
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-02 03:12:00
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-02 03:12:00
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-02 03:12:00 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-02 03:12:00 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-02 03:12:00 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-02 03:12:00 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-02 03:12:00 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "p": "_BxPVObkd-0vSY6hpRLECowqCT8Fg4kLhf4_b9884tZDBj-fhULi-QPOZuhcjLVFFXkXdTDdnDSsBB6lvFNNoQBQgvdwHwJcDkSLURBT6ARNWQfdrqeiGcN8Ix0ZM6K8PWKzOgTNUrM0voYKS9OsujS4eZoLiQTcD3aIimAvwn0",
      "kty": "RSA",
      "q": "y_z_2iXatOxjuWKlSdw6tWNdeNwce4n1gTwiCBt1PrbA9NRJGzkOM4Y0pXi8FHiuOiAVIjkBQLkS1hrXsYVIh__p_GojmP2JtYJtpxoXQeQkZaLbtGG7xzwB7PSBKJnqrXCwWX0tuH_vyTzKtT2pZUl4x9X7h0O28rAcCzwfUbE",
      "d": "boZTB3J9hFY5WKJtBnQMyZ0uqbIGLEIa-NWZayTCKGzIGmzwiDIM9SBrFRevoP1qY5MyhuCgXnhXrJQvYlrQlVOp4n6OMSwVp1oIIBV35MuBU4s4zbr2UtbF8HMt4fCSNhpugRtJj8Ohad4j8K_UO3aT38MrBcWOkVaBGEIcVvo7abPj_eFNqtu9mda9uTMTvjP1VaQsscgSxdIwvNTR_k8Mp-XmJ80ffQjtpt8NIPyn6GhGE0hXRRUfAx010Wj9yT2zaM4m69uhAOMXwVKv5MMlXXKGn_0z3GqRNygPDXCcuTGQ_EGNhVQRvuve_ieNhpkQCBSjz4Ar0ueMuox_QQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "qi": "IlPPK0-J6KZNedgPE5mYcpwzWbT3hXCxxwaiFZQTOGkPInJ9SQRbNW4Z_ro_e9sekkOOb3Tclh6kbid-883riv5r58pb7R0pv0iM_ZPgG7_xDzRbxQSLQltSgI5FiLW2oVOhdxQPFVpc_i02LuYXnZ2tO1awrzYV69H49XiepIY",
      "dp": "E9KiBjn1YtyaaD03xoP4OCAXOgzjgRkod8uq7z_tSKSyNm6QO2kr8Yp0EzFX_ZRPL0YLKyLBegPGNri2LV2bb_pXWkTcYwPLey-2iJQxFMAp2MM-kfoKS95MB3LFRYMZK_Zzwy8XedYvYn-llZq6LRXyH1WWbJqeNvUJ_V9cwf0",
      "alg": "RSA-OAEP",
      "dq": "wHJm2uMdq9Tc3HhRYhZQmPIurChVAsQMBym5HZbyDQGTlydz9Sfl2vxBTN9T6ahVDudXqNrI8MvqFm5qkcMhw5TPpmBoRxzjP4fWdXDrAjH_mJeF2W7fHj7hvjCKbciQG6MV7MdpTAf_LAabY1PSLYmcVkPtshZTUjCNtJe7IHE",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    },
    {
      "p": "zZRF4uynLVGvuR-G3P_ZRNGUWcRG6OE0KcFj4NnNt89g1eDtC7GMq-S9ZHCUavTE0tnA1loFTbCzWvUy3gywVCYFSyHz-xxDUs9uu5X9gxJAbUHUD-dAhgHnXe46Skk9mITL20vj5ErZWzIXL9-E3kSlyxC3FCSQguutIghbzhs",
      "kty": "RSA",
      "q": "yezCWkthM28K2X2rYiQhbf_DvzHjH8NMKILYQxhI0dbcGjjpCLb7kvbhhSyeg-TgEtnp0ZqGU9KbxBSCdM-2CNhbZpIh4K1rvHQau350eLv67juK55TIRkcWiLV6G5jzJADYTefYyEk3x9kvE7h3iW6LhXuw-BPW-VJQP9wItlM",
      "d": "f0PiR8W8yWnslJlucs5IwprZkIiohiCXd-u2eT-OXMgQo3e95fpE1RQPlKG2QFhtP_oOfP9kguQEkswD2T_2nlODbajtxUrpyylDMSSoxPcjdpZ93W6yWTblG3EYOn064hiqaZLXidSuQBJhZKA7_oEWLYe01jCy4qIlHptLNqArPIfnyoHxRzLHM0AbUAxzysxWlxhh-kIuA2GwPOjzDg7X_3tuDo2FBJP1JL4ivZBVjzR6a3R3jlECewHRKlDGbcUhwhw-3PgUfpv0FyDz8Kxa1aXFuD75DvUeqp1WV15D-QPBY6Tj6ImGIU2EQA2M0sa6PPH7iH5wrf2aDm7tcQ",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "qi": "MPOx2d59EB8LIUVO184i4LgKVOunNsV2oVy_T8yOsdk5bxDvjChcwpoA1jMAi_4AZBa3ji0CMUKgk9dus6PJ6Knvr8D9tSXvfww81WXkgHW1QyZgqR5rNQJjq_mAuDf6N_RitOemqMRGUJYC4t2uDNW5wozna_KozTYNo_4kIJo",
      "dp": "Ohta1ZVGe4zHOnAq0nSOmOEUKXtM_64H7HV5IajueLHpEQsOdWut8zgoQCeCC-k7aM2br_qp3RfA2kjMI-86N863WFE0gRmv_cwb5HG0wkN6amdc5VHb7wTCvM4FM9IX0vBWHpoIxBJT9W7nFuT6zUhiBE-pL8xV_GtY-HGcYVk",
      "alg": "PS256",
      "dq": "QyPND7bmr_JpGh32AWDgGLIlRQpyaZpHVWUEQXLuq48UikeH_JTTG2-pVt2aK2LLupjobQBDT9XEYzMqmWqDLXe7FGTcjNc87mFwjg0i7w4aBmKX8h5_ZRa4AGbPHiQCHGOHiIfhhd8KhBHL3HPGk1TFYXHaSvJV1XqwIjuoTe8",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
2021-12-02 03:12:00 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-02 03:12:00 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
r3-1Pzx4eZFejFKvrCef_
redirect_uri
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback
certificate
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    }
  ]
}
2021-12-02 03:12:00 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-02 03:12:00 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
2021-12-02 03:12:00 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-02 03:12:00 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-02 03:12:00 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    }
  ]
}
Verify configuration of second client
2021-12-02 03:12:00 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
r3-1Pzx4eZFejFKvrCef_
redirect_uri
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback
id_token_encrypted_response_alg
RSA-OAEP
certificate
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    },
    {
      "e": "AQAB",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "use": "enc"
    }
  ]
}
id_token_encrypted_response_enc
A256GCM
2021-12-02 03:12:00 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-02 03:12:00 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    },
    {
      "e": "AQAB",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "use": "enc"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    }
  ]
}
2021-12-02 03:12:00 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-02 03:12:00 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-02 03:12:00 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ",
      "e": "AQAB"
    },
    {
      "e": "AQAB",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ",
      "kty": "RSA",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "use": "enc"
    }
  ]
}
2021-12-02 03:12:00
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Setup Done
2021-12-02 03:12:21 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:21 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:21 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-02 03:12:23 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json,application/*+json",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:23 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:23 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-02 03:12:24 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json;charset\u003dUTF-8",
  "content-type": "application/x-www-form-urlencoded",
  "content-length": "76",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/token
incoming_body_form_params
{
  "client_id": "r3-1Pzx4eZFejFKvrCef_",
  "grant_type": "client_credentials",
  "scope": "consents"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
client_id=r3-1Pzx4eZFejFKvrCef_&grant_type=client_credentials&scope=consents
2021-12-02 03:12:24 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-02 03:12:24 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:24 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:24 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-02 03:12:24 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-02 03:12:24 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2021-12-02 03:12:24 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
2021-12-02 03:12:24 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
token_type
Bearer
2021-12-02 03:12:24
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-02 03:12:24 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-02 03:12:27 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json;charset\u003dUTF-8",
  "content-type": "application/json",
  "authorization": "Bearer zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG",
  "x-fapi-interaction-id": "b7155149-0837-4e38-967f-ed728aca99dd",
  "content-length": "370",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "05159823697",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_TRANSACTIONS_READ"
    ],
    "expirationDateTime": "2022-11-30T08:30:00Z",
    "transactionFromDateTime": "2021-11-30T00:00:00Z",
    "transactionToDateTime": "2021-11-30T23:59:59Z"
  }
}
incoming_query_string_params
{}
incoming_body
                {"data":{"loggedUser":{"document":{"identification":"05159823697","rel":"CPF"}},"permissions":["ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ"],"expirationDateTime":"2022-11-30T08:30:00Z","transactionFromDateTime":"2021-11-30T00:00:00Z","transactionToDateTime":"2021-11-30T23:59:59Z"}}
            
2021-12-02 03:12:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-02 03:12:27 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:27 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:27 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-02 03:12:27 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-02 03:12:27 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-02 03:12:27 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
2021-12-02 03:12:27 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
2021-12-02 03:12:27 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-02 03:12:27 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-02 03:12:27 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
b7155149-0837-4e38-967f-ed728aca99dd
2021-12-02 03:12:27 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2021-12-02 03:12:27
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-02 03:12:27 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
b7155149-0837-4e38-967f-ed728aca99dd
2021-12-02 03:12:27 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "b7155149-0837-4e38-967f-ed728aca99dd"
}
consentId
urn:conformance.oidf:r8AmLFeJ11
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:r8AmLFeJ11",
    "creationDateTime": "2021-12-02T03:12:27Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-02T03:12:27Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-02T05:12:27Z",
    "transactionFromDateTime": "2021-12-02T03:07:27Z",
    "transactionToDateTime": "2021-12-02T05:12:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/recepcao-bvconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:27Z"
  }
}
2021-12-02 03:12:27
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-02 03:12:27 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "b7155149-0837-4e38-967f-ed728aca99dd"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:r8AmLFeJ11",
    "creationDateTime": "2021-12-02T03:12:27Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-02T03:12:27Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-02T05:12:27Z",
    "transactionFromDateTime": "2021-12-02T03:07:27Z",
    "transactionToDateTime": "2021-12-02T05:12:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/recepcao-bvconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:27Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-02 03:12:29 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json,application/*+json",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:29 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:29 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-02 03:12:31 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json,application/*+json",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:31 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:31 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "alg": "PS256",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
outgoing_path
jwks
2021-12-02 03:12:31 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "got (https://github.com/sindresorhus/got)",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "request": "eyJraWQiOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJhbGciOiJSU0EtT0FFUCJ9.mW9UFIF3Mx0u9YHNj6SfuLd1ng5yir0jp6xsV4fXorw9tSs1fR70KBu-IdO3ARHbqjm9x5U_dnCV0LONPdJIw2Y21xSk739gt86z0343HveBuC66FqkMSPgy0LbEvRzBn5kMhFhiJA8_XcHJfKX9o9B3uTUfPj-3MaDm0iWCcovnNN3xa1iMqFz43VrD61A9sXWr7_5sCQP4BKfxkajPJrbaUKdc-RDMOfogYTYkaSIL_jYcA52VeYzu48eiitbBnL9yE6m6VbZmRzsCBzqHBYWYzNNAdcvbHvWTJ1CydYYcd6_rPujJAzNKsPM8pOGJNo4Nwhz4APVhM0NHPqwRVA.e9tzAqVfFTAcAeEO.bk6aKJOX32BOjrIH_wj4jSRJuKaz3SjQ4XE321_Rf8v7HZOxNFtfs2v0VnI5ZBmy_RysNIE8tW4D8OLZ4LO1gnwDWxuHWGKH-v0WC-ZqTIcu4lV4EyiJdElrL0jxDV-cH3YEHY8xg0k0ajjwMud9ZRsGs19ldKGjk5up_u5zSfFzWJP69-gRWz_4_xumCZrkBwhj7-FZqoCn9Ofn7RYUiho75cfblMJWwg07GSqq5gzR1V8SdxiJHHvYvZRTGBQFxBNbD78-gzTa_AvBlY3_2QVKOvM3FezUo6lYB2kZlXisOjB3Op-4FEVdXZPkYOb0XadOPxAcBGjkY5D8W81ryobCzhGcQNLNsKD8DbKhZX4GVnYVvCQ91tZpWyaFG2Zhlg5Bx51ktdBtBDkubqRPkE7kbY1x5UdVWE4guediVDKz576ykpEmRpyHXNc7-2o3BthftwHEG7vvbGbVnVaL-M5Yds5W2Tdl8N4MAKCTM5p_7BLwgzkgl4GrjNPWQrixROWcQgevMeEc2bQUBmTb--hGOX3MU_Vf4atI3bnuH9_0XKWO77SxljEwlKPGRw6lBnPLuFXA9chjdl9amwD4_70YRak0tSzB5aKVXhopaF6xqYa8ClUANsBJVMRjhkMc8y0NT_LZ-Yfc9T7IcfJmgNy8VIoKNrbDb4QzwVooJgVgJ6GkRUG8SQjzR9oI6a5LKHNnOLTojKqJcpHYPT9YvUlvQvT7IkweqtWOIXwN8H6SoI3o7Cd00NJQ9K0u_S5fhNvLf8VLWpqycEHAmiExpwhZlIaAGVin-uu1xipeuJ_HoOA_ajJbe1jcSMXtCN_95FUuJtzRVKXMBQYV1SriUa9tLkfjWCiaz6WYCUrk-4t23uokjEft50yNITjh_o3iXftTW7maFyBUzVb2gmPHWwz21IAIoD3hYXGnOMhQDUS5NGRxK4fJGwvk-jmnYVSE9hmpSCeCdjUW-9cLZ_aXhAQGe3NeBA3FqOvRmuSVbSnfy-_ss4rbdTI2-ueE0bjLj1DP4DruiGYsXx5QpVuV1p5QTkU_bvJnN4yCJh_2VhEJ_itRTJrfiypsWchf1JN99bLMotcvsq4xdQdpIHgQm1bOBGzWhaZS_sz32DU-xFJKx-E73sLfmzV0iEktvPKHX-d0t5pOAhpx_z3-f3dpXqgvMCdIpSzy75NeS9ogw8lIC-9NFS5nE3R-RQHAo3cq3BTK9NufRYl2CNyEr6D7e2d_aVW6e_Y7ZtXKVhvZD4RtgNHaWIoOPCf4igKkyt7VUrJY8ssHa6TuF1jdy4At_zHOSV-gMPayKsyWSZ6SHoXm05dfDG6Hr9psDAWVKcM-yVyw0F5kGWcdJ3xYT_bxUO6MrpseOU4VQUFQ3CgyrbGTM08dI0hBkORhqGeqXz-fpAJzh6bId3jjzZ-xF44zy0ALdn_Fb8M081Ja69Oc2DlxDJE4jxmN-UXyRW9L646BqSglcrmsFWQ9cIwdKDi2c7XGdAQ-QOogDpf-r-lpuTNFXTSrcI6zHGgiOGn4OvvFbO4NMj3nSkS0WGUAKQHlDhyo4Swr4XQXZQ-A8E-xdh3remGezek-Q5xDVBeNLs92_xEr-emmUYzOZV-OWGQWiH3StAMY-2YRoc2y9WhzvEmEGmUj_RzQeA.poyIX2tSbIJZB1PskIJv3A",
  "client_id": "r3-1Pzx4eZFejFKvrCef_",
  "scope": "accounts openid consent:urn:conformance.oidf:r8AmLFeJ11",
  "response_type": "code id_token",
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback"
}
incoming_body
2021-12-02 03:12:31 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-02 03:12:31 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.PzeBjUOXTUCzRayG5z7kHuR51Va3t-_VYgeW2o5regoIsmbF2NFxtcKBU8SFRYg3myHyuX9ZB2yZTh_EJSTZfszBEZ1hIIRbR4zkN6Ktb5zyEHcxmpsiOn8a3g7UJ7T4abuvxEhwLF3g-GWlJgBIVHkTjGjllh7sZUF0Ghgehkqo80i3vsy16CcjFl9jE9Wy0cz31YD38QZe-s8ZzVVmey3clVFyNROSMP7lJKf6xG2BOlZJGUEr7y0U2MGiDvkZ-An8zrWy-34kgVMLRX3-zt6LQz6uiui5QPvDRFbf8PL9powRU4dcwM_15muSlKm2_7N7sOumVLw9LMwOeu2VMA",
  "header": {
    "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "iss": "r3-1Pzx4eZFejFKvrCef_",
    "response_type": "code id_token",
    "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
    "client_id": "r3-1Pzx4eZFejFKvrCef_",
    "aud": "https://www.certification.openid.net/test/a/recepcao-bv/",
    "nbf": 1638414752,
    "scope": "accounts openid consent:urn:conformance.oidf:r8AmLFeJ11",
    "claims": "{\"id_token\":{\"cpf\":{\"essential\":true}}}",
    "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
    "state": "1455e7d1-27ec-4c10-b490-d14c55cc5360",
    "exp": 1638418351,
    "iat": 1638414751,
    "jti": "2abc17d2-753c-46ba-b1d4-e53d1740cf61"
  },
  "jwe_header": {
    "kid": "RSA-OAEP",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2021-12-02 03:12:31 SUCCESS
EnsureRequestObjectWasEncrypted
Request object was encrypted
jwe_header
{
  "kid": "RSA-OAEP",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2021-12-02 03:12:31 SUCCESS
FAPIBrazilEnsureRequestObjectEncryptedUsingRSAOAEPA256GCM
Request object was encrypted using RSA-OAEP and A256GCM
jwe_header
{
  "kid": "RSA-OAEP",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2021-12-02 03:12:31 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
RSA-OAEP
2021-12-02 03:12:31 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "request": "eyJraWQiOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJhbGciOiJSU0EtT0FFUCJ9.mW9UFIF3Mx0u9YHNj6SfuLd1ng5yir0jp6xsV4fXorw9tSs1fR70KBu-IdO3ARHbqjm9x5U_dnCV0LONPdJIw2Y21xSk739gt86z0343HveBuC66FqkMSPgy0LbEvRzBn5kMhFhiJA8_XcHJfKX9o9B3uTUfPj-3MaDm0iWCcovnNN3xa1iMqFz43VrD61A9sXWr7_5sCQP4BKfxkajPJrbaUKdc-RDMOfogYTYkaSIL_jYcA52VeYzu48eiitbBnL9yE6m6VbZmRzsCBzqHBYWYzNNAdcvbHvWTJ1CydYYcd6_rPujJAzNKsPM8pOGJNo4Nwhz4APVhM0NHPqwRVA.e9tzAqVfFTAcAeEO.bk6aKJOX32BOjrIH_wj4jSRJuKaz3SjQ4XE321_Rf8v7HZOxNFtfs2v0VnI5ZBmy_RysNIE8tW4D8OLZ4LO1gnwDWxuHWGKH-v0WC-ZqTIcu4lV4EyiJdElrL0jxDV-cH3YEHY8xg0k0ajjwMud9ZRsGs19ldKGjk5up_u5zSfFzWJP69-gRWz_4_xumCZrkBwhj7-FZqoCn9Ofn7RYUiho75cfblMJWwg07GSqq5gzR1V8SdxiJHHvYvZRTGBQFxBNbD78-gzTa_AvBlY3_2QVKOvM3FezUo6lYB2kZlXisOjB3Op-4FEVdXZPkYOb0XadOPxAcBGjkY5D8W81ryobCzhGcQNLNsKD8DbKhZX4GVnYVvCQ91tZpWyaFG2Zhlg5Bx51ktdBtBDkubqRPkE7kbY1x5UdVWE4guediVDKz576ykpEmRpyHXNc7-2o3BthftwHEG7vvbGbVnVaL-M5Yds5W2Tdl8N4MAKCTM5p_7BLwgzkgl4GrjNPWQrixROWcQgevMeEc2bQUBmTb--hGOX3MU_Vf4atI3bnuH9_0XKWO77SxljEwlKPGRw6lBnPLuFXA9chjdl9amwD4_70YRak0tSzB5aKVXhopaF6xqYa8ClUANsBJVMRjhkMc8y0NT_LZ-Yfc9T7IcfJmgNy8VIoKNrbDb4QzwVooJgVgJ6GkRUG8SQjzR9oI6a5LKHNnOLTojKqJcpHYPT9YvUlvQvT7IkweqtWOIXwN8H6SoI3o7Cd00NJQ9K0u_S5fhNvLf8VLWpqycEHAmiExpwhZlIaAGVin-uu1xipeuJ_HoOA_ajJbe1jcSMXtCN_95FUuJtzRVKXMBQYV1SriUa9tLkfjWCiaz6WYCUrk-4t23uokjEft50yNITjh_o3iXftTW7maFyBUzVb2gmPHWwz21IAIoD3hYXGnOMhQDUS5NGRxK4fJGwvk-jmnYVSE9hmpSCeCdjUW-9cLZ_aXhAQGe3NeBA3FqOvRmuSVbSnfy-_ss4rbdTI2-ueE0bjLj1DP4DruiGYsXx5QpVuV1p5QTkU_bvJnN4yCJh_2VhEJ_itRTJrfiypsWchf1JN99bLMotcvsq4xdQdpIHgQm1bOBGzWhaZS_sz32DU-xFJKx-E73sLfmzV0iEktvPKHX-d0t5pOAhpx_z3-f3dpXqgvMCdIpSzy75NeS9ogw8lIC-9NFS5nE3R-RQHAo3cq3BTK9NufRYl2CNyEr6D7e2d_aVW6e_Y7ZtXKVhvZD4RtgNHaWIoOPCf4igKkyt7VUrJY8ssHa6TuF1jdy4At_zHOSV-gMPayKsyWSZ6SHoXm05dfDG6Hr9psDAWVKcM-yVyw0F5kGWcdJ3xYT_bxUO6MrpseOU4VQUFQ3CgyrbGTM08dI0hBkORhqGeqXz-fpAJzh6bId3jjzZ-xF44zy0ALdn_Fb8M081Ja69Oc2DlxDJE4jxmN-UXyRW9L646BqSglcrmsFWQ9cIwdKDi2c7XGdAQ-QOogDpf-r-lpuTNFXTSrcI6zHGgiOGn4OvvFbO4NMj3nSkS0WGUAKQHlDhyo4Swr4XQXZQ-A8E-xdh3remGezek-Q5xDVBeNLs92_xEr-emmUYzOZV-OWGQWiH3StAMY-2YRoc2y9WhzvEmEGmUj_RzQeA.poyIX2tSbIJZB1PskIJv3A",
  "client_id": "r3-1Pzx4eZFejFKvrCef_",
  "scope": "accounts openid consent:urn:conformance.oidf:r8AmLFeJ11",
  "response_type": "code id_token",
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
  "iss": "r3-1Pzx4eZFejFKvrCef_",
  "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
  "aud": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "nbf": 1638414752,
  "claims": "{\"id_token\":{\"cpf\":{\"essential\":true}}}",
  "state": "1455e7d1-27ec-4c10-b490-d14c55cc5360",
  "exp": 1638418351,
  "iat": 1638414751,
  "jti": "2abc17d2-753c-46ba-b1d4-e53d1740cf61"
}
2021-12-02 03:12:31 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-02 03:12:31
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2021-12-02 03:12:31 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 2, 2021, 4:12:31 AM"
2021-12-02 03:12:31 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 2, 2021, 3:12:32 AM"
now
"Dec 2, 2021, 3:12:31 AM"
2021-12-02 03:12:31
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-02 03:12:31 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-02 03:12:31 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-02 03:12:31 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-02 03:12:31 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-02 03:12:31 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.PzeBjUOXTUCzRayG5z7kHuR51Va3t-_VYgeW2o5regoIsmbF2NFxtcKBU8SFRYg3myHyuX9ZB2yZTh_EJSTZfszBEZ1hIIRbR4zkN6Ktb5zyEHcxmpsiOn8a3g7UJ7T4abuvxEhwLF3g-GWlJgBIVHkTjGjllh7sZUF0Ghgehkqo80i3vsy16CcjFl9jE9Wy0cz31YD38QZe-s8ZzVVmey3clVFyNROSMP7lJKf6xG2BOlZJGUEr7y0U2MGiDvkZ-An8zrWy-34kgVMLRX3-zt6LQz6uiui5QPvDRFbf8PL9powRU4dcwM_15muSlKm2_7N7sOumVLw9LMwOeu2VMA
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 20470105991639945101333275222632884736574483865528906726892528525563191082183695260204312736582372939211055359067203803085750810655850954661951144951323156016175226041830645945715513868126850067392212624376671953805748628313454513795689104315557781181477191907644208938174263279538822216580366877482634997324327056726074955380834197509531619477599127660288830507703834432824311448281762320165839347904106371594443864070803621659794095259323351600661287063154929280227814731229282446194900829223861656310231284465453525094881675730459265540745017449257927239533034759013077714190534660553709869627625978272751475164353
  public exponent: 65537
2021-12-02 03:12:31 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback
2021-12-02 03:12:31 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
r3-1Pzx4eZFejFKvrCef_
2021-12-02 03:12:31 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2021-12-02 03:12:31 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "accounts",
  "openid",
  "consent:urn:conformance.oidf:r8AmLFeJ11"
]
expected
openid
2021-12-02 03:12:31 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
accounts openid consent:urn:conformance.oidf:r8AmLFeJ11
2021-12-02 03:12:31 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "accounts",
  "openid",
  "consent:urn:conformance.oidf:r8AmLFeJ11"
]
expected
consent:urn:conformance.oidf:r8AmLFeJ11
2021-12-02 03:12:31 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "accounts",
  "openid",
  "consent:urn:conformance.oidf:r8AmLFeJ11"
]
2021-12-02 03:12:31 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-02 03:12:31 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "accounts",
  "openid",
  "consent:urn:conformance.oidf:r8AmLFeJ11"
]
expected
openid
2021-12-02 03:12:31 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
r3-1Pzx4eZFejFKvrCef_
2021-12-02 03:12:31 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79
2021-12-02 03:12:31 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
b6ef39ac-b783-4420-b9b2-47e0965ee1b9
2021-12-02 03:12:31 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
8SFIPzx8Tuuju2i3yDRlqg
2021-12-02 03:12:31 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
1GAk3QdTJxD1rceIgYvtRg
2021-12-02 03:12:31 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/recepcao-bv/
sub
user-subject-1234531
aud
r3-1Pzx4eZFejFKvrCef_
nonce
b6ef39ac-b783-4420-b9b2-47e0965ee1b9
iat
1638414751
exp
1638415051
2021-12-02 03:12:31
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-02 03:12:31 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
8SFIPzx8Tuuju2i3yDRlqg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "sub": "user-subject-1234531",
  "aud": "r3-1Pzx4eZFejFKvrCef_",
  "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
  "iat": 1638414751,
  "exp": 1638415051,
  "c_hash": "8SFIPzx8Tuuju2i3yDRlqg"
}
2021-12-02 03:12:31 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
1GAk3QdTJxD1rceIgYvtRg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "sub": "user-subject-1234531",
  "aud": "r3-1Pzx4eZFejFKvrCef_",
  "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
  "iat": 1638414751,
  "exp": 1638415051,
  "c_hash": "8SFIPzx8Tuuju2i3yDRlqg",
  "s_hash": "1GAk3QdTJxD1rceIgYvtRg"
}
2021-12-02 03:12:31 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-02 03:12:31 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-02 03:12:31 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InIzLTFQeng0ZVpGZWpGS3ZyQ2VmXyIsImNfaGFzaCI6IjhTRklQeng4VHV1anUyaTN5RFJscWciLCJzX2hhc2giOiIxR0FrM1FkVEp4RDFyY2VJZ1l2dFJnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTEsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUxfQ.OyyXHM5FtYSM8ArZFMuc65Q5kxY83Kyp_I6GBrD5Trk3p_D-lPyd0AiFvp0JWI6uFokMgB0GdpwXcdb6tu3Z2rNso5qrPWgpnrAY3aW72JqmQme2MgD1GeyZNLyl2AjD0a8EJeWqfwBavNVfJQ7omogzJo2h2KOjCLRwMNVU7ZjlqxclxdUFhRZ4wasskX0mHKkbEzXuR5QIIIVrgVXfH43-B1TygCgVb9NghfZDBVfM2gtpynC_JV9B2tX1cCv3hOMyWmyNYj-9RFkVRL4oHz-EPc3Jtl6gLve3bolwrAOmk5haElXDhIxkFLZ-rprTNJP6TOUhOQUn4KT0R_uUow
2021-12-02 03:12:31 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:r8AmLFeJ11",
    "creationDateTime": "2021-12-02T03:12:27Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-02T03:12:31Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-02T05:12:27Z",
    "transactionFromDateTime": "2021-12-02T03:07:27Z",
    "transactionToDateTime": "2021-12-02T05:12:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/recepcao-bvconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:27Z"
  }
}
2021-12-02 03:12:31 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
  "state": "1455e7d1-27ec-4c10-b490-d14c55cc5360"
}
2021-12-02 03:12:31 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
  "state": "1455e7d1-27ec-4c10-b490-d14c55cc5360",
  "code": "CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79"
}
2021-12-02 03:12:31 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
  "state": "1455e7d1-27ec-4c10-b490-d14c55cc5360",
  "code": "CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79",
  "id_token": "eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InIzLTFQeng0ZVpGZWpGS3ZyQ2VmXyIsImNfaGFzaCI6IjhTRklQeng4VHV1anUyaTN5RFJscWciLCJzX2hhc2giOiIxR0FrM1FkVEp4RDFyY2VJZ1l2dFJnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTEsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUxfQ.OyyXHM5FtYSM8ArZFMuc65Q5kxY83Kyp_I6GBrD5Trk3p_D-lPyd0AiFvp0JWI6uFokMgB0GdpwXcdb6tu3Z2rNso5qrPWgpnrAY3aW72JqmQme2MgD1GeyZNLyl2AjD0a8EJeWqfwBavNVfJQ7omogzJo2h2KOjCLRwMNVU7ZjlqxclxdUFhRZ4wasskX0mHKkbEzXuR5QIIIVrgVXfH43-B1TygCgVb9NghfZDBVfM2gtpynC_JV9B2tX1cCv3hOMyWmyNYj-9RFkVRL4oHz-EPc3Jtl6gLve3bolwrAOmk5haElXDhIxkFLZ-rprTNJP6TOUhOQUn4KT0R_uUow"
}
2021-12-02 03:12:31
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback#state=1455e7d1-27ec-4c10-b490-d14c55cc5360&code=CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79&id_token=eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InIzLTFQeng0ZVpGZWpGS3ZyQ2VmXyIsImNfaGFzaCI6IjhTRklQeng4VHV1anUyaTN5RFJscWciLCJzX2hhc2giOiIxR0FrM1FkVEp4RDFyY2VJZ1l2dFJnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTEsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUxfQ.OyyXHM5FtYSM8ArZFMuc65Q5kxY83Kyp_I6GBrD5Trk3p_D-lPyd0AiFvp0JWI6uFokMgB0GdpwXcdb6tu3Z2rNso5qrPWgpnrAY3aW72JqmQme2MgD1GeyZNLyl2AjD0a8EJeWqfwBavNVfJQ7omogzJo2h2KOjCLRwMNVU7ZjlqxclxdUFhRZ4wasskX0mHKkbEzXuR5QIIIVrgVXfH43-B1TygCgVb9NghfZDBVfM2gtpynC_JV9B2tX1cCv3hOMyWmyNYj-9RFkVRL4oHz-EPc3Jtl6gLve3bolwrAOmk5haElXDhIxkFLZ-rprTNJP6TOUhOQUn4KT0R_uUow
2021-12-02 03:12:31 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback#state=1455e7d1-27ec-4c10-b490-d14c55cc5360&code=CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79&id_token=eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InIzLTFQeng0ZVpGZWpGS3ZyQ2VmXyIsImNfaGFzaCI6IjhTRklQeng4VHV1anUyaTN5RFJscWciLCJzX2hhc2giOiIxR0FrM1FkVEp4RDFyY2VJZ1l2dFJnIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTEsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUxfQ.OyyXHM5FtYSM8ArZFMuc65Q5kxY83Kyp_I6GBrD5Trk3p_D-lPyd0AiFvp0JWI6uFokMgB0GdpwXcdb6tu3Z2rNso5qrPWgpnrAY3aW72JqmQme2MgD1GeyZNLyl2AjD0a8EJeWqfwBavNVfJQ7omogzJo2h2KOjCLRwMNVU7ZjlqxclxdUFhRZ4wasskX0mHKkbEzXuR5QIIIVrgVXfH43-B1TygCgVb9NghfZDBVfM2gtpynC_JV9B2tX1cCv3hOMyWmyNYj-9RFkVRL4oHz-EPc3Jtl6gLve3bolwrAOmk5haElXDhIxkFLZ-rprTNJP6TOUhOQUn4KT0R_uUow]
outgoing_path
authorize
2021-12-02 03:12:32 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:32 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:32 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "RSA-OAEP",
      "alg": "RSA-OAEP",
      "n": "yOOavXMTDgjbvz9gzHvfhdbkytzDLWt6vft8fL73oz1h0s9EJUADdXoj-one0ewSx3JUdeibkOC9hCm_OYDVc5SdsHEl_U3T2ViYdqLMwxmjdBup3wMo6kZsClEjwXtVOXpe3XxuEdRCS4Z2i5iTXCBmK2bcg7FHcCoMan4OKjZv4ezl62TIljE6bp0PCexq38XI9bhYebkpAiu6A-wqBZtthvzBYgBKqjvsVg3GHtGvaVnK64KRkQuYeW7Wn4t7vME6tSzEyVpmgomenjTYGXDYET0IfQ7QTbNWa15aiyj1rEcg1_Tvr9spKY6t6griKIIdB85n52tkuA7YdrIFbQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "FJlF6TOBoI38u2RN5PtFHdjXCujfClGyDFEQD7CxJ64",
      "alg": "PS256",
      "n": "oieLonigdMZ5ocjKK1gINOTs9vPrxGZ5wuXF2lLlXU1UpcIDNrqDq3ldJ3HUaUSmyw-AOWehP4eh1AF3anfjAU39Qi0_o0VV-V2o-SGD3D6Nxm9jinHVjiGOkxK2TDIyC8N2KqE48N7uzZNZH80ygDv8pgYu7uL1kJQn5lw5WGVNMKiKtrerPDhJBf1iFIya7JRJeaIQ26DA0yJ_KIDOxAzUdb_t9Jq895OnLwsIygL1lhfXRtxGNSwMAXe_lJm67vJXKDM_eXLI5s6AHRcyiprlAYFD9ktWelC6Ltz-4cFi6VcgxyYgNmfj7dkstQBPu2mZq3bhuoOuZKScnyMEwQ"
    }
  ]
}
outgoing_path
jwks
2021-12-02 03:12:32 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.9.1 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "212",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79",
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback",
  "client_id": "r3-1Pzx4eZFejFKvrCef_"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79&redirect_uri=https%3A%2F%2Fapi-qa.bvopen.com.br%2Freceptor-redirect%2Fv1%2Finternet-banking%2Fauthorize-callback&client_id=r3-1Pzx4eZFejFKvrCef_
2021-12-02 03:12:32 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-02 03:12:32 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:32 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:32 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-02 03:12:32 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-02 03:12:32 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79
2021-12-02 03:12:32 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback
2021-12-02 03:12:32 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
wvXCETrabbwP0aqaBcZ0G7gZDYRoHFGHvzxWqKgkI7J35XorEa
2021-12-02 03:12:32 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
bavvjH6gUnW3WXtCvjqCgQ
2021-12-02 03:12:32
CreateRefreshToken
Created refresh token
refresh_token
anNsMtodSwjRFoewRpZqwgIhJzZrDNiYpHcUoUrWsYXtrJgjFL8355984365&^{>:
2021-12-02 03:12:32 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/recepcao-bv/
sub
user-subject-1234531
aud
r3-1Pzx4eZFejFKvrCef_
nonce
b6ef39ac-b783-4420-b9b2-47e0965ee1b9
iat
1638414752
exp
1638415052
2021-12-02 03:12:32
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-02 03:12:32 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
bavvjH6gUnW3WXtCvjqCgQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "sub": "user-subject-1234531",
  "aud": "r3-1Pzx4eZFejFKvrCef_",
  "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
  "iat": 1638414752,
  "exp": 1638415052,
  "at_hash": "bavvjH6gUnW3WXtCvjqCgQ"
}
2021-12-02 03:12:32 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-02 03:12:32 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYmF2dmpINmdVblczV1h0Q3ZqcUNnUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTIsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUyfQ.C0TzE-VrrNl4SqhvSrZe7UeZfMLZ-YQIlaoJ_tjCaQBfo-a-etezgl3Zt2Th4eXwLSbED-EOKAU0Ytt-TMH4ge1AH8tLwzRTF7YIW4n0FNhiC5FcCq5zlkNgVVYq2xLSEn-SWu8bRRF4dsBw_YaJ_TntdKN8t2pmVJpwoGYqwrQaverFWZSZhJyF63gl2QQD0GOPYKTshvTA68hSwgObc4le50ZoMY62DW32zB_o0vmifljkriHlLRrr3Ut1cggHCwmNd56vU71F9y59s9AydWtkMd9Pr8sj06AFDPV-XsXZYNfKasMLbUEOAA9csr2vqpidt3HGd3hTzwHPyRTMjw
2021-12-02 03:12:32 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
wvXCETrabbwP0aqaBcZ0G7gZDYRoHFGHvzxWqKgkI7J35XorEa
token_type
Bearer
id_token
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYmF2dmpINmdVblczV1h0Q3ZqcUNnUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTIsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUyfQ.C0TzE-VrrNl4SqhvSrZe7UeZfMLZ-YQIlaoJ_tjCaQBfo-a-etezgl3Zt2Th4eXwLSbED-EOKAU0Ytt-TMH4ge1AH8tLwzRTF7YIW4n0FNhiC5FcCq5zlkNgVVYq2xLSEn-SWu8bRRF4dsBw_YaJ_TntdKN8t2pmVJpwoGYqwrQaverFWZSZhJyF63gl2QQD0GOPYKTshvTA68hSwgObc4le50ZoMY62DW32zB_o0vmifljkriHlLRrr3Ut1cggHCwmNd56vU71F9y59s9AydWtkMd9Pr8sj06AFDPV-XsXZYNfKasMLbUEOAA9csr2vqpidt3HGd3hTzwHPyRTMjw
refresh_token
anNsMtodSwjRFoewRpZqwgIhJzZrDNiYpHcUoUrWsYXtrJgjFL8355984365&^{>:
2021-12-02 03:12:32 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "wvXCETrabbwP0aqaBcZ0G7gZDYRoHFGHvzxWqKgkI7J35XorEa",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYmF2dmpINmdVblczV1h0Q3ZqcUNnUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTIsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzUyfQ.C0TzE-VrrNl4SqhvSrZe7UeZfMLZ-YQIlaoJ_tjCaQBfo-a-etezgl3Zt2Th4eXwLSbED-EOKAU0Ytt-TMH4ge1AH8tLwzRTF7YIW4n0FNhiC5FcCq5zlkNgVVYq2xLSEn-SWu8bRRF4dsBw_YaJ_TntdKN8t2pmVJpwoGYqwrQaverFWZSZhJyF63gl2QQD0GOPYKTshvTA68hSwgObc4le50ZoMY62DW32zB_o0vmifljkriHlLRrr3Ut1cggHCwmNd56vU71F9y59s9AydWtkMd9Pr8sj06AFDPV-XsXZYNfKasMLbUEOAA9csr2vqpidt3HGd3hTzwHPyRTMjw",
  "refresh_token": "anNsMtodSwjRFoewRpZqwgIhJzZrDNiYpHcUoUrWsYXtrJgjFL8355984365\u0026^{\u003e:"
}
outgoing_path
token
2021-12-02 03:12:36 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json,application/*+json",
  "connection": "close"
}
incoming_path
/test/a/recepcao-bv/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-02 03:12:36 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/recepcao-bv/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/recepcao-bv/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/recepcao-bv/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-02 03:12:37 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json;charset\u003dUTF-8",
  "content-type": "application/x-www-form-urlencoded",
  "content-length": "212",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/token
incoming_body_form_params
{
  "code": "CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79",
  "grant_type": "authorization_code",
  "client_id": "r3-1Pzx4eZFejFKvrCef_",
  "redirect_uri": "https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
code=CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79&grant_type=authorization_code&client_id=r3-1Pzx4eZFejFKvrCef_&redirect_uri=https%3A%2F%2Fapi-qa.bvopen.com.br%2Freceptor-redirect%2Fv1%2Finternet-banking%2Fauthorize-callback
2021-12-02 03:12:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-02 03:12:37 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:37 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:37 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0
MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD
o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT
JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV
YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET
MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp
b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1
YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI
LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB
WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3
sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK
BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ
aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805
I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9
yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R
Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh
bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg
PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y
Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i
cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE
ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB
JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt
IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p
c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy
YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl
IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg
THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl
cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh
bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL
z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd
PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh
Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH
efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS
7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF
GSsQgkeJ1pXRIYgQEKHQ
-----END CERTIFICATE-----
2021-12-02 03:12:37 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-02 03:12:37 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
CoHd9LJPubMgMZ5nDoI7kyd6m1CKHy79
2021-12-02 03:12:37 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://api-qa.bvopen.com.br/receptor-redirect/v1/internet-banking/authorize-callback
2021-12-02 03:12:37 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC
2021-12-02 03:12:37 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
T3O1CN765rFI8WE6wWFNrg
2021-12-02 03:12:37
CreateRefreshToken
Created refresh token
refresh_token
cRCVGLKSFuKOpPqraCGFeABJgOuhQSJnbMiHakJxzpEjVmJhem6526392040`~^,{
2021-12-02 03:12:37 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/recepcao-bv/
sub
user-subject-1234531
aud
r3-1Pzx4eZFejFKvrCef_
nonce
b6ef39ac-b783-4420-b9b2-47e0965ee1b9
iat
1638414757
exp
1638415057
2021-12-02 03:12:37
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-02 03:12:37 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
T3O1CN765rFI8WE6wWFNrg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/recepcao-bv/",
  "sub": "user-subject-1234531",
  "aud": "r3-1Pzx4eZFejFKvrCef_",
  "nonce": "b6ef39ac-b783-4420-b9b2-47e0965ee1b9",
  "iat": 1638414757,
  "exp": 1638415057,
  "at_hash": "T3O1CN765rFI8WE6wWFNrg"
}
2021-12-02 03:12:37 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-02 03:12:37 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiVDNPMUNONzY1ckZJOFdFNndXRk5yZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTcsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzU3fQ.h_IsaMt7tnmpoWIZXmr3QbiPwXAqq6YLrZxtS-Gbq7iTQoLSA11wrrH6c9grTIiCme6r4VxbPDN-OYrJuXibB8yIWw4ysOZac29pMVBC9ztKcZAEnVX3eQnJ3rRJM7jU_lRGidiGoJASpKTzmYQhqNccpOgAjRM4qKvUPTSdgnMvp4fe3PdDb_vsdObsLRa6F4OY9PldBUH82smoS7lLaoawbiq_Dbp3fHhmrUFXa0BzFLFMh2WA-QILp58gwAYFQuYfTm4n9ne8r6wQ6PMWNd9V9Fa22hPBsQJT6O4_qKZA0nGXnREWuK85RcoJhiHUIuPNXNWSJrJdYv4CBaQiQQ
2021-12-02 03:12:37 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC
token_type
Bearer
id_token
eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiVDNPMUNONzY1ckZJOFdFNndXRk5yZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTcsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzU3fQ.h_IsaMt7tnmpoWIZXmr3QbiPwXAqq6YLrZxtS-Gbq7iTQoLSA11wrrH6c9grTIiCme6r4VxbPDN-OYrJuXibB8yIWw4ysOZac29pMVBC9ztKcZAEnVX3eQnJ3rRJM7jU_lRGidiGoJASpKTzmYQhqNccpOgAjRM4qKvUPTSdgnMvp4fe3PdDb_vsdObsLRa6F4OY9PldBUH82smoS7lLaoawbiq_Dbp3fHhmrUFXa0BzFLFMh2WA-QILp58gwAYFQuYfTm4n9ne8r6wQ6PMWNd9V9Fa22hPBsQJT6O4_qKZA0nGXnREWuK85RcoJhiHUIuPNXNWSJrJdYv4CBaQiQQ
refresh_token
cRCVGLKSFuKOpPqraCGFeABJgOuhQSJnbMiHakJxzpEjVmJhem6526392040`~^,{
2021-12-02 03:12:37 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJGSmxGNlRPQm9JMzh1MlJONVB0RkhkalhDdWpmQ2xHeURGRVFEN0N4SjY0IiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiVDNPMUNONzY1ckZJOFdFNndXRk5yZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoicjMtMVB6eDRlWkZlakZLdnJDZWZfIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3JlY2VwY2FvLWJ2XC8iLCJleHAiOjE2Mzg0MTUwNTcsIm5vbmNlIjoiYjZlZjM5YWMtYjc4My00NDIwLWI5YjItNDdlMDk2NWVlMWI5IiwiaWF0IjoxNjM4NDE0NzU3fQ.h_IsaMt7tnmpoWIZXmr3QbiPwXAqq6YLrZxtS-Gbq7iTQoLSA11wrrH6c9grTIiCme6r4VxbPDN-OYrJuXibB8yIWw4ysOZac29pMVBC9ztKcZAEnVX3eQnJ3rRJM7jU_lRGidiGoJASpKTzmYQhqNccpOgAjRM4qKvUPTSdgnMvp4fe3PdDb_vsdObsLRa6F4OY9PldBUH82smoS7lLaoawbiq_Dbp3fHhmrUFXa0BzFLFMh2WA-QILp58gwAYFQuYfTm4n9ne8r6wQ6PMWNd9V9Fa22hPBsQJT6O4_qKZA0nGXnREWuK85RcoJhiHUIuPNXNWSJrJdYv4CBaQiQQ",
  "refresh_token": "cRCVGLKSFuKOpPqraCGFeABJgOuhQSJnbMiHakJxzpEjVmJhem6526392040`~^,{"
}
outgoing_path
token
2021-12-02 03:12:40 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG",
  "x-fapi-interaction-id": "0189bc63-2a92-4d98-910d-777b0f6396b3",
  "x-fapi-customer-ip-address": "1.1.1.1",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/consents/v1/consents/urn:conformance.oidf:r8AmLFeJ11
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Get consent endpoint
2021-12-02 03:12:40 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0\nMjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT\nJDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV\nYXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET\nMBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp\nb24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1\nYjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI\nLFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB\nWsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3\nsbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK\nBsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ\naktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805\nI1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9\nyQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R\nQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh\nbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg\nPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y\nZy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i\ncjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE\nggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB\nJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt\nIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p\nc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy\nYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl\nIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg\nTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl\ncmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh\nbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL\nz7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd\nPdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh\nQkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH\nefqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS\n7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:40 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:40 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-02 03:12:40 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-02 03:12:40 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
2021-12-02 03:12:40 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
zIHq2oIU358EIWmPMu8cAsI3rLX4lpFValPfcJbEvZVXRfmZQG
2021-12-02 03:12:40 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-02 03:12:40 SUCCESS
ExtractFapiIpAddressHeader
Found a FAPI ip address header
fapi_customer_ip_address
1.1.1.1
addr
1.1.1.1
2021-12-02 03:12:40 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
0189bc63-2a92-4d98-910d-777b0f6396b3
2021-12-02 03:12:40 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
0189bc63-2a92-4d98-910d-777b0f6396b3
2021-12-02 03:12:40 SUCCESS
FAPIBrazilGenerateGetConsentResponse
Created consent response
response
{
  "data": {
    "consentId": "urn:conformance.oidf:r8AmLFeJ11",
    "creationDateTime": "2021-12-02T03:12:27Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-02T03:12:31Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-02T05:12:27Z",
    "transactionFromDateTime": "2021-12-02T03:07:27Z",
    "transactionToDateTime": "2021-12-02T05:12:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/recepcao-bvconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:40Z"
  }
}
2021-12-02 03:12:40
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-02 03:12:40 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "b7155149-0837-4e38-967f-ed728aca99dd"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:r8AmLFeJ11",
    "creationDateTime": "2021-12-02T03:12:27Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-02T03:12:31Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-02T05:12:27Z",
    "transactionFromDateTime": "2021-12-02T03:07:27Z",
    "transactionToDateTime": "2021-12-02T05:12:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/recepcao-bvconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:27Z"
  }
}
outgoing_path
consents/v1/consents/urn:conformance.oidf:r8AmLFeJ11
2021-12-02 03:12:42 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to test instance d5GkB25Vnjn1x8f
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json;charset\u003dUTF-8",
  "authorization": "Bearer tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC",
  "x-fapi-interaction-id": "dda83af3-f9ea-4745-b519-519a2e949a9f",
  "x-fapi-auth-date": "Thu, 02 Dec 2021 02:42:41 GMT",
  "x-fapi-customer-ip-address": "1.1.1.1",
  "x-customer-user-agent": "",
  "connection": "close"
}
incoming_path
/test-mtls/a/recepcao-bv/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-02 03:12:42 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2021-12-02 03:12:42 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0 MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1 YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3 sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805 I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9 yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS 7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF GSsQgkeJ1pXRIYgQEKHQ -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0\nMjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT\nJDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV\nYXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET\nMBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp\nb24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1\nYjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI\nLFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB\nWsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3\nsbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK\nBsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ\naktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805\nI1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9\nyQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R\nQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh\nbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg\nPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y\nZy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i\ncjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE\nggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB\nJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt\nIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p\nc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy\nYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl\nIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg\nTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl\ncmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh\nbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL\nz7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd\nPdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh\nQkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH\nefqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS\n7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF\nGSsQgkeJ1pXRIYgQEKHQ\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d1baaea05-bece-46ac-9d08-66a5b72d7ac7,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.5\u003d#130e3539353838313131303030313033,CN\u003dapi-des.bvopen.com.br,OU\u003d062c5edb-4e83-5002-9981-e2a96c5ad41e,O\u003dBCO VOTORANTIM S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "api-des.bvopen.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-02 03:12:42 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-02 03:12:42 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG+zCCBeOgAwIBAgIUZNln5Grr0Id5Br+KwxknnS4zyMAwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDczMDE0MjEwMFoXDTIyMDgyOTE0
MjEwMFowggEfMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD
o28gUGF1bG8xHDAaBgNVBAoTE0JDTyBWT1RPUkFOVElNIFMuQS4xLTArBgNVBAsT
JDA2MmM1ZWRiLTRlODMtNTAwMi05OTgxLWUyYTk2YzVhZDQxZTEeMBwGA1UEAxMV
YXBpLWRlcy5idm9wZW4uY29tLmJyMRcwFQYDVQQFEw41OTU4ODExMTAwMDEwMzET
MBEGCysGAQQBgjc8AgEDEwJCUjEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRp
b24xNDAyBgoJkiaJk/IsZAEBEyQxYmFhZWEwNS1iZWNlLTQ2YWMtOWQwOC02NmE1
YjcyZDdhYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9xZm3fPhI
LFRvp5mGMuLGh6+doc9LIbDJVUR51vJEtt7KXf68LzWSZXqzLbVKXvbFnZ5kQTGB
WsUbhvNaU91mV46TgjrXCLo8ZJP/e7EeZuEo1n+z9YR2pBd5pi9E3WWMLZ6LNti3
sbm4+UUyqxPEGxUVxuw8p/r1fTIuUYE4tzW07kC6kj6zoNnsPwmMfxBTcuNaRkRK
BsYvtZRAJAftcqRq3C3Bl8K52gp2xl67vkd32gLHcwfBESgwYxWvgm+b70KVhJNZ
aktaC7Pfzwc11YhOAjNhcuTR86gKdFg7ii7Bwjj0smyc3SDaLAffYdKK1gMri805
I1xYQBMOEq7PAgMBAAGjggLZMIIC1TAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT9
yQj7ptSYvsmTMd+1iDpNXVf63jAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4R
Q99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNh
bmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECg
PqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9y
Zy5ici9pc3N1ZXIuY3JsMCAGA1UdEQQZMBeCFWFwaS1kZXMuYnZvcGVuLmNvbS5i
cjAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwggGhBgNVHSAE
ggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIB
JFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFt
IFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5p
c2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZy
YW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNl
IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMg
THRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhl
cmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJh
bmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDL
z7aLcSk/kp5N0NCr4fIRrfKJK0QI5m5pDVJfc5BBnH/NKgnKhrTpT5XbwPc5vDOd
PdsCWy5mv4f8x8v2ba8Ni08yiI28qUlGGrSVikP89COc4DDsiWumDbnkaebXDnuh
Qkh9IvdLyl4tfby0DPT3/Vv7FZu6c+CTDqEHx9fjniR8Qvtdm0K1UHK0O9X488MH
efqoXMIjndUMwyN9V1m7eemIwcTgXVIeRB9UQeTtzV26AGRc1gGo5WzeOc22BLZS
7/kZrcuJvxBSHGHHtOtgouBVnLRH4m48FIwTw62pLItL4zG1isjbBkm2gMp/hLjF
GSsQgkeJ1pXRIYgQEKHQ
-----END CERTIFICATE-----
2021-12-02 03:12:42 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-02 03:12:42 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC
2021-12-02 03:12:42 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
tOiIPfsagZnJYxmhCIHqXKR1z5eLZoRnSJFGsnW2ZinieyhAjC
2021-12-02 03:12:42 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Thu, 02 Dec 2021 02:42:41 GMT
2021-12-02 03:12:42 SUCCESS
ExtractFapiIpAddressHeader
Found a FAPI ip address header
fapi_customer_ip_address
1.1.1.1
addr
1.1.1.1
2021-12-02 03:12:42 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
dda83af3-f9ea-4745-b519-519a2e949a9f
2021-12-02 03:12:42 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
accounts openid consent:urn:conformance.oidf:r8AmLFeJ11
expected
accounts
2021-12-02 03:12:42 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
dda83af3-f9ea-4745-b519-519a2e949a9f
2021-12-02 03:12:42 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "dda83af3-f9ea-4745-b519-519a2e949a9f",
  "content-type": "application/json; charset\u003dUTF-8"
}
2021-12-02 03:12:42 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:42Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "dda83af3-f9ea-4745-b519-519a2e949a9f",
  "content-type": "application/json"
}
2021-12-02 03:12:42
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-02 03:12:42 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance d5GkB25Vnjn1x8f
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "dda83af3-f9ea-4745-b519-519a2e949a9f"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-02T03:12:42Z"
  }
}
outgoing_path
accounts/v1/accounts
2021-12-02 03:12:42 FINISHED
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Test has run to completion
testmodule_result
PASSED
2021-12-02 03:12:48
TEST-RUNNER
Alias has now been claimed by another test
alias
recepcao-bv
new_test_id
h4kKMyk6adHIG4G
Test Results