Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-10 19:02:55 INFO
TEST-RUNNER
Test instance OMMVzeeSDko6YcN created
baseUrl
https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "by_value",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
BMGOpenBankingRPCertification
description
BMG - FAPI1-Advanced-Final: Open Banking Brazil Relying Party (Client) Test Plan
planId
Z3meQ6IjjTLHd
config
{
  "alias": "BMGOpenBankingRPCertification",
  "description": "BMG - FAPI1-Advanced-Final: Open Banking Brazil Relying Party (Client) Test Plan",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
    "redirect_uri": "https://www.bancobmg.com.br",
    "certificate": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
          "alg": "PS256",
          "n": "whAvfCEwhwi6fbmMK_Nec0OOXkovl3lRXFk-MIBUNWuhNX0wbB-aaas0d4-cNxjTfaCyliYQJFGKfDFHRX_hcr7DKGlDKADQB_BDiT_pI1IjwuexUb9dBI3BXFaDgPy_z7AO5AKx8BL6PUBJF-m0KS1hXOwHnZ-olkVxVcjS2lBuz76glAyXxJ-ZQ34iuNPVTgo4VAInADY43PcEtiPflvDzILCehHNvwcInknt3_2f8q7Zf5iPqaN941e0JMk8hu4qExBs_9rkbK1uQxzaLRNAEEK9RcASDPcamppwpvfxLOQA7WY4LQKyEp-Z2cm4CAiZFchjbfwEIir5HL8xqUw",
          "e": "AQAB"
        }
      ]
    }
  },
  "client2": {
    "client_id": "0cd04b9e-9ab5-44d0-84f5-48af9929cae6",
    "redirect_uri": "https://www.bancobmg.com.br",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "certificate": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUc1vxEBIOTGyURxMwZ/VzJsOVr3wwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDMwMFoXDTIyMDkwOTIx MDMwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJDBjZDA0YjllLTlhYjUtNDRkMC04NGY1LTQ4YWY5 OTI5Y2FlNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMBAB3DsqfL7 NkvNzeyxQQ/ETG8PXiD0h7jux8TiYBLK9Wlg10AeZjK3II/MqgVRFE2CV718eTVO o6KXTElLbvwfjaOQC9buUQ2VHktyMBIg/rAWKtgCABijZ4rUjrxJYXVUO+rmUW2w DVz3ubVZFOSgAjEDWh7Hm18hmUzqRy957AP+uTC8k+HCDGK6lT6C5FdfmCbfJez/ V+/AU+waPqbw1a7oeiA2OmFo3w94QQNUr5cHeIg+ZaxLCasoAPOSMOINz2ef8TjW uqgwXtX/hkhAjK8NfIxwa9icTnzoumwpO+OoDWhPZjvxTOqW2aDdKD3d2daqEFqx kiVDX5ngVScCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCeq cwWyf+eof+0qoAp1ptNSiFWlMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBADRai8uYGb4m6jBYY/4rtxoE1VFr8vnfdOTCXoTBgPUEhgyBnMLeYQEHFOzX umfCe++vkrXolD4aIdlX+WnEazSlTuNFPXyjb/9us8t0qCgsauYDgsibgZ8rCeDs R94Hjg+8PDIlDUzWzXOV4CvMkUI54dTDKA0l9f7PxeDYeIbm6IrL8w9EiDaOvSRC 2OorKFGlB+XxIsOxbhLCBheF/ETSn/alq6Xwt2k9utwtEA99LS1OkOwF5JYZafux h+bTOBNW6MIyf+PJMyWwE48N5O7nZy387t56vsRBUYJK9Z9qGFLFTGbnIEqXLny9 6lDagayV5G8FX2Bf5M8yXJnTltY\u003d -----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "kid": "pev0y_dN_KacVTzIFghdlX3j9VbU-ClngC3x2L5eoGc",
          "alg": "PS256",
          "n": "xTpN0H6i2Zyn7_kp_3oMMQvRjOJxyASWtXOFar9Bru7sKkJvmXRMe0uIiGfjNOM8eZxu2ExyZpZAhEdz5VTdmJStFBy4Xip6AgO3QQcdyBD9WSaoWGK5CYYeMJz_cTYjaiB4vRURXe_5oQeNa_GUFpxGg5aXz8VnCGMmxdm0Lzcnn_UH777-Cjib-NMfytFxMbqqeXvMjp4dIQh5XC0-J491VFTLoW_gHFoxqrd9lNtG06vLXOrIdQvPIn4JLK7EDfJRvI1kyJTleE1DMt2xQuMJqB7h4fTOTmQeuKYUmomj41w2qG9Bjtnd36ZWnyQb9AiP23Se-ns7ZGtFNQpmtQ",
          "e": "AQAB"
        }
      ]
    },
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-refresh-token-test
2021-12-10 19:02:55 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/
discoveryUrl
https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/.well-known/openid-configuration
2021-12-10 19:02:55 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-10 19:02:55 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 19:02:55
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-10 19:02:55
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-10 19:02:55
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-10 19:02:55
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-10 19:02:55 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-10 19:02:55 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-10 19:02:55 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-10 19:02:55 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-10 19:02:55 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-10 19:02:55 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-10 19:02:55 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
c90f746c-bebb-4990-a6ae-09cc8b97a17d
redirect_uri
https://www.bancobmg.com.br
certificate
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
      "alg": "PS256",
      "n": "whAvfCEwhwi6fbmMK_Nec0OOXkovl3lRXFk-MIBUNWuhNX0wbB-aaas0d4-cNxjTfaCyliYQJFGKfDFHRX_hcr7DKGlDKADQB_BDiT_pI1IjwuexUb9dBI3BXFaDgPy_z7AO5AKx8BL6PUBJF-m0KS1hXOwHnZ-olkVxVcjS2lBuz76glAyXxJ-ZQ34iuNPVTgo4VAInADY43PcEtiPflvDzILCehHNvwcInknt3_2f8q7Zf5iPqaN941e0JMk8hu4qExBs_9rkbK1uQxzaLRNAEEK9RcASDPcamppwpvfxLOQA7WY4LQKyEp-Z2cm4CAiZFchjbfwEIir5HL8xqUw",
      "e": "AQAB"
    }
  ]
}
2021-12-10 19:02:55 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 19:02:55 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
      "alg": "PS256",
      "n": "whAvfCEwhwi6fbmMK_Nec0OOXkovl3lRXFk-MIBUNWuhNX0wbB-aaas0d4-cNxjTfaCyliYQJFGKfDFHRX_hcr7DKGlDKADQB_BDiT_pI1IjwuexUb9dBI3BXFaDgPy_z7AO5AKx8BL6PUBJF-m0KS1hXOwHnZ-olkVxVcjS2lBuz76glAyXxJ-ZQ34iuNPVTgo4VAInADY43PcEtiPflvDzILCehHNvwcInknt3_2f8q7Zf5iPqaN941e0JMk8hu4qExBs_9rkbK1uQxzaLRNAEEK9RcASDPcamppwpvfxLOQA7WY4LQKyEp-Z2cm4CAiZFchjbfwEIir5HL8xqUw",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
      "alg": "PS256",
      "n": "whAvfCEwhwi6fbmMK_Nec0OOXkovl3lRXFk-MIBUNWuhNX0wbB-aaas0d4-cNxjTfaCyliYQJFGKfDFHRX_hcr7DKGlDKADQB_BDiT_pI1IjwuexUb9dBI3BXFaDgPy_z7AO5AKx8BL6PUBJF-m0KS1hXOwHnZ-olkVxVcjS2lBuz76glAyXxJ-ZQ34iuNPVTgo4VAInADY43PcEtiPflvDzILCehHNvwcInknt3_2f8q7Zf5iPqaN941e0JMk8hu4qExBs_9rkbK1uQxzaLRNAEEK9RcASDPcamppwpvfxLOQA7WY4LQKyEp-Z2cm4CAiZFchjbfwEIir5HL8xqUw"
    }
  ]
}
2021-12-10 19:02:55 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-10 19:02:55 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-10 19:02:55 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
      "alg": "PS256",
      "n": "whAvfCEwhwi6fbmMK_Nec0OOXkovl3lRXFk-MIBUNWuhNX0wbB-aaas0d4-cNxjTfaCyliYQJFGKfDFHRX_hcr7DKGlDKADQB_BDiT_pI1IjwuexUb9dBI3BXFaDgPy_z7AO5AKx8BL6PUBJF-m0KS1hXOwHnZ-olkVxVcjS2lBuz76glAyXxJ-ZQ34iuNPVTgo4VAInADY43PcEtiPflvDzILCehHNvwcInknt3_2f8q7Zf5iPqaN941e0JMk8hu4qExBs_9rkbK1uQxzaLRNAEEK9RcASDPcamppwpvfxLOQA7WY4LQKyEp-Z2cm4CAiZFchjbfwEIir5HL8xqUw",
      "e": "AQAB"
    }
  ]
}
Verify configuration of second client
2021-12-10 19:02:55 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
0cd04b9e-9ab5-44d0-84f5-48af9929cae6
redirect_uri
https://www.bancobmg.com.br
id_token_encrypted_response_alg
RSA-OAEP
certificate
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUc1vxEBIOTGyURxMwZ/VzJsOVr3wwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDMwMFoXDTIyMDkwOTIx MDMwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJDBjZDA0YjllLTlhYjUtNDRkMC04NGY1LTQ4YWY5 OTI5Y2FlNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMBAB3DsqfL7 NkvNzeyxQQ/ETG8PXiD0h7jux8TiYBLK9Wlg10AeZjK3II/MqgVRFE2CV718eTVO o6KXTElLbvwfjaOQC9buUQ2VHktyMBIg/rAWKtgCABijZ4rUjrxJYXVUO+rmUW2w DVz3ubVZFOSgAjEDWh7Hm18hmUzqRy957AP+uTC8k+HCDGK6lT6C5FdfmCbfJez/ V+/AU+waPqbw1a7oeiA2OmFo3w94QQNUr5cHeIg+ZaxLCasoAPOSMOINz2ef8TjW uqgwXtX/hkhAjK8NfIxwa9icTnzoumwpO+OoDWhPZjvxTOqW2aDdKD3d2daqEFqx kiVDX5ngVScCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCeq cwWyf+eof+0qoAp1ptNSiFWlMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBADRai8uYGb4m6jBYY/4rtxoE1VFr8vnfdOTCXoTBgPUEhgyBnMLeYQEHFOzX umfCe++vkrXolD4aIdlX+WnEazSlTuNFPXyjb/9us8t0qCgsauYDgsibgZ8rCeDs R94Hjg+8PDIlDUzWzXOV4CvMkUI54dTDKA0l9f7PxeDYeIbm6IrL8w9EiDaOvSRC 2OorKFGlB+XxIsOxbhLCBheF/ETSn/alq6Xwt2k9utwtEA99LS1OkOwF5JYZafux h+bTOBNW6MIyf+PJMyWwE48N5O7nZy387t56vsRBUYJK9Z9qGFLFTGbnIEqXLny9 6lDagayV5G8FX2Bf5M8yXJnTltY= -----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "pev0y_dN_KacVTzIFghdlX3j9VbU-ClngC3x2L5eoGc",
      "alg": "PS256",
      "n": "xTpN0H6i2Zyn7_kp_3oMMQvRjOJxyASWtXOFar9Bru7sKkJvmXRMe0uIiGfjNOM8eZxu2ExyZpZAhEdz5VTdmJStFBy4Xip6AgO3QQcdyBD9WSaoWGK5CYYeMJz_cTYjaiB4vRURXe_5oQeNa_GUFpxGg5aXz8VnCGMmxdm0Lzcnn_UH777-Cjib-NMfytFxMbqqeXvMjp4dIQh5XC0-J491VFTLoW_gHFoxqrd9lNtG06vLXOrIdQvPIn4JLK7EDfJRvI1kyJTleE1DMt2xQuMJqB7h4fTOTmQeuKYUmomj41w2qG9Bjtnd36ZWnyQb9AiP23Se-ns7ZGtFNQpmtQ",
      "e": "AQAB"
    }
  ]
}
id_token_encrypted_response_enc
A256GCM
2021-12-10 19:02:55 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 19:02:55 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "pev0y_dN_KacVTzIFghdlX3j9VbU-ClngC3x2L5eoGc",
      "alg": "PS256",
      "n": "xTpN0H6i2Zyn7_kp_3oMMQvRjOJxyASWtXOFar9Bru7sKkJvmXRMe0uIiGfjNOM8eZxu2ExyZpZAhEdz5VTdmJStFBy4Xip6AgO3QQcdyBD9WSaoWGK5CYYeMJz_cTYjaiB4vRURXe_5oQeNa_GUFpxGg5aXz8VnCGMmxdm0Lzcnn_UH777-Cjib-NMfytFxMbqqeXvMjp4dIQh5XC0-J491VFTLoW_gHFoxqrd9lNtG06vLXOrIdQvPIn4JLK7EDfJRvI1kyJTleE1DMt2xQuMJqB7h4fTOTmQeuKYUmomj41w2qG9Bjtnd36ZWnyQb9AiP23Se-ns7ZGtFNQpmtQ",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "pev0y_dN_KacVTzIFghdlX3j9VbU-ClngC3x2L5eoGc",
      "alg": "PS256",
      "n": "xTpN0H6i2Zyn7_kp_3oMMQvRjOJxyASWtXOFar9Bru7sKkJvmXRMe0uIiGfjNOM8eZxu2ExyZpZAhEdz5VTdmJStFBy4Xip6AgO3QQcdyBD9WSaoWGK5CYYeMJz_cTYjaiB4vRURXe_5oQeNa_GUFpxGg5aXz8VnCGMmxdm0Lzcnn_UH777-Cjib-NMfytFxMbqqeXvMjp4dIQh5XC0-J491VFTLoW_gHFoxqrd9lNtG06vLXOrIdQvPIn4JLK7EDfJRvI1kyJTleE1DMt2xQuMJqB7h4fTOTmQeuKYUmomj41w2qG9Bjtnd36ZWnyQb9AiP23Se-ns7ZGtFNQpmtQ"
    }
  ]
}
2021-12-10 19:02:55 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-10 19:02:55 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-10 19:02:55 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "kid": "pev0y_dN_KacVTzIFghdlX3j9VbU-ClngC3x2L5eoGc",
      "alg": "PS256",
      "n": "xTpN0H6i2Zyn7_kp_3oMMQvRjOJxyASWtXOFar9Bru7sKkJvmXRMe0uIiGfjNOM8eZxu2ExyZpZAhEdz5VTdmJStFBy4Xip6AgO3QQcdyBD9WSaoWGK5CYYeMJz_cTYjaiB4vRURXe_5oQeNa_GUFpxGg5aXz8VnCGMmxdm0Lzcnn_UH777-Cjib-NMfytFxMbqqeXvMjp4dIQh5XC0-J491VFTLoW_gHFoxqrd9lNtG06vLXOrIdQvPIn4JLK7EDfJRvI1kyJTleE1DMt2xQuMJqB7h4fTOTmQeuKYUmomj41w2qG9Bjtnd36ZWnyQb9AiP23Se-ns7ZGtFNQpmtQ",
      "e": "AQAB"
    }
  ]
}
2021-12-10 19:02:55
fapi1-advanced-final-client-refresh-token-test
Setup Done
2021-12-10 19:03:32 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/BMGOpenBankingRPCertification/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 19:03:32 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 19:03:32 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/BMGOpenBankingRPCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-10 19:03:33 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "116",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "openid payments consents accounts",
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=openid+payments+consents+accounts&client_id=c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:33 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 19:03:33 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:33 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:33 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:33 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 19:03:33 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts"
]
expected
payments
2021-12-10 19:03:33 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
2021-12-10 19:03:33 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
token_type
Bearer
2021-12-10 19:03:33
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-10 19:03:33 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-10 19:03:34 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "x-customer-user-agent": "BMG TPP",
  "x-fapi-auth-date": "Fri, 10 Dec 2021 19:03:13 GMT",
  "x-fapi-interaction-id": "d8b7b52a-eeaf-40e8-bd43-ce8e908a3473",
  "authorization": "Bearer Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd",
  "accept": "application/json",
  "content-type": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "192",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "69944992607",
        "rel": "CPF"
      }
    },
    "businessEntity": {
      "document": {
        "identification": "37986886000102",
        "rel": "CNPJ"
      }
    },
    "permissions": [
      "ACCOUNTS_READ"
    ]
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"69944992607","rel":"CPF"}},"businessEntity":{"document":{"identification":"37986886000102","rel":"CNPJ"}},"permissions":["ACCOUNTS_READ"]}}
2021-12-10 19:03:34 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-10 19:03:34 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:34 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:34 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:34 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-10 19:03:34 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-10 19:03:34 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
2021-12-10 19:03:34 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
2021-12-10 19:03:34 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Fri, 10 Dec 2021 19:03:13 GMT
2021-12-10 19:03:34 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-10 19:03:34 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
d8b7b52a-eeaf-40e8-bd43-ce8e908a3473
2021-12-10 19:03:34 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "openid",
  "payments",
  "consents",
  "accounts"
]
2021-12-10 19:03:34
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-10 19:03:34 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
d8b7b52a-eeaf-40e8-bd43-ce8e908a3473
2021-12-10 19:03:34 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "d8b7b52a-eeaf-40e8-bd43-ce8e908a3473"
}
consentId
urn:conformance.oidf:3T8WRSg6jf
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:3T8WRSg6jf",
    "creationDateTime": "2021-12-10T19:03:34Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-10T19:03:34Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T21:03:34Z",
    "transactionFromDateTime": "2021-12-10T18:58:34Z",
    "transactionToDateTime": "2021-12-10T21:03:34Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertificationconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:34Z"
  }
}
2021-12-10 19:03:34
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-10 19:03:34 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d8b7b52a-eeaf-40e8-bd43-ce8e908a3473"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:3T8WRSg6jf",
    "creationDateTime": "2021-12-10T19:03:34Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-10T19:03:34Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T21:03:34Z",
    "transactionFromDateTime": "2021-12-10T18:58:34Z",
    "transactionToDateTime": "2021-12-10T21:03:34Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertificationconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:34Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-10 19:03:34 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/BMGOpenBankingRPCertification/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 19:03:34 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 19:03:34 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-10 19:03:34 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "x-customer-user-agent": "BMG TPP",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/BMGOpenBankingRPCertification/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf",
  "response_type": "code id_token",
  "redirect_uri": "https://www.bancobmg.com.br",
  "state": "20444563-1fce-4cb8-8c25-a5dd95a07171",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.LZXyFhDvk7woTfNgc8mP1u9Px5DI1Pf1CIjtXhLhoWilzK9VXRNKCwn6tC8cXtW3r9WKaY1XdlmOwdnnPcNv3UD1i8Qh5gha6XCHRaxsXrDL94oAUofXDNRZ1fVijPzDRBzaSBc_je0hgJSQuBN76NkjSSw36s6po19kkXsT1dhmb6ZGVDi6ugSwVwXeuKhH8tbhkBHMB9tCmtMoVAihp-WNb992x5oyy7ItQ2z4WVCjM00Sdlyjhns5yE_-hx-McMJUeJxM9SJYaeM68AU2CPwsM4nPv56k0n3xvxO2vumR6Mj95goUtimbzsOKBbogl4cAJ0KuL1bRFL-AoVkCag.B7IewG2CjilJDiLE.nG2JSrvq9tvbInszK8kcoaypgXuHih7exavjJ9BjN_o2I9-J9Kqv5Sj6eT3ui4X8CBsPJFbazQ4hm_okzfJLI08LRCg5fxCnBW2_Y44UbxFtXLR5DWMycvJl6wWwC6ajF_NA_ld8P6j08V-jhyUvzPevbJR_BRZi8egVFzeyIpj_gfM9OnerlP_DkkNev6eFczWPHraqSk2wv5DE9iBn8BRUea27N8UKGHff4qEhjdTefzRiuXwop5Xl0XPoS375l2h4rtnodXG0iUiJ8cO88SYM7A7IBbsnmn5Kft2ysYlnqxuIYe2tsqVTbJ6DqAiaPDZzwkTpt41Q8v71sOscsmyctwm7P6PAca5lNNrpiGoVkgnL9FC_lJkvKef_Ruo5KjwCFNkOkJ_iKuoLTKO5mueAPDhCbAODpZ-v-6FXdsL09dRU5ICy6zuEl6LXNujKrLrkZnXcS1v-qjHL9-4O-ZF-XK0ZUoHK8_OPuqoOcICMoPi14COUcFIfUSeYMENpyy0soH4dpxbjnR51NjgKzK2o5UryvNFB4nLEADmLnHcv-QT65DtP_6xFyCEuBoDRy-qu5ixbKH9bVbgNr6kEaImv67sfIL6y3XF0PkbmYPsErac1Vx1Wzdpr_L4vNVRCaCE3MNVxg2Plzlsov0FPgVZjseidvy5me1jxledFgj8ugJUluEysK8YOETSqRl0WKFTXEX4yDPlAvUDc6D7He9PdWJS8cGfxGMBs7DNVBCdOpQjTaLZUVeVdtvNn98wS3SoJCiNnRvObnYuuDadM4L-4MuM4azm4jB1yVxnfbagCAndcjcYVY0JswLOoSbkTi4Xe3Jz0ROAvLO1vJrBZjscQmT2RvLKc1W-sWJncDpAfXMK_v9OyF0v2QvRaPhyfrRjhjyM2IgAnpICkhlZuqY-TdhUOKLw2JKRaRENJpBsGmv5YCWrsunV45290e23bQUINIQGAv3iyzoqPsW8Ml947rJcl8QDB3oHMDDBkZqQHdCT3ClfQlpukqur37zjkC1W6avZA02nvnJ0OBzvNpsQ2JvyUb6q6ZUkVqpUhBEFhnZZpDAoSgBbzVaDBBPJds0sHQfaB06v9aR8p6632ULkQXHFbR5rC7q03GH0_ae7CJp7NeDHpWdOZHPvKAagxSOf0sX4D-8rOgl_BNBkJsvNPnbF9glivzQLWyWRPFlkiuHwzwRgw1IGM_LpECSJOpEwX_MkctTn2i5W01FQkw2ajROCWbhEcV4peu8Jutl1vXI0_42rCX-4FfgJtMVTnfLujCieNxNBv7ovatNb5zWihcd3niyjHbUOCWIyr-q1-SUIFgKGwCViPG1itm6d-Vntl3yBncm6DZnbfJKF2djNvKBJRld5zlXlHOzrDWIxqXKbye1Nx6qYwmZQZsk00ntdmiKL_ssw8YcQJaNUEe9swXJRHTvrwlR0OkXutw3tiCdqYk5tXb0oXsaxNpNt_WGtPvz0sjJ6BrmWiZQpaxNxPv5mfZK-GjmUsrfSF28oH9uqQOOCHCiRrlcZ-rguRPAx7bbMRC6vet2gt5JqvuQQCUmLw7iCyUdsew9MDujKtae6dj2KgPnu49q_S7s708ByzFfH8rlfpUWSkL9lYrZM8tV6P84Nnjh8rgVWmrATGMCVWVqtjFoNeGI1wFFqAC7g3R2uDWg710lFnnJNK6kkHQ6AD1crC0cW__WmlIi-XRiNews7KMf3Mq7jhJ5QUXa1-gfnemIpB9L5MYWrzBQIGbEMc6RJtOOqlxL-328t--R9iwrEB_7T2KDGNQSlEn_opZhfVBVb-OpmBMAjPhBvJOG866cP5efCD_PGskdQttSqrCJ6mEo4S3iRmOjjHc-mQF3syucqsC1lzfqTF8lWKiUw1oTw05yHchDMWV6A5UptbNF1h_s8xblnvyqncHYM0UG3_UqKxjbIs9oTcOMjgDeKo0PHIS6V5ARdlQiEBMYCze13BkW37mMHfLpLqH9aFaYcqpbDbJPvrpIciFUddRpCX6upax_MHCAtpjQKR7uO6MZpHWEjlnZSC7bHHUwPLKj8cPcTbhFYim3YflaAyCq9BzwBoIMqF0f7MP5b--iVPvpfbCtrGZVJvY7DM-XiXrFGl0dL8yaJU2fvXmk1ZAR7C-p8smW-0m8PA1gwAPPDPa3JZaqyLhesiS6X2LseaE7zAPTAXj0qz7PkDu9Gf3tSkzPAQRPxqhMbGYzqV3iPt1O-lw9UEYxDCJcfoLmjjX6cey7V-Pvrf4Q.BwhCXRTpEIICQb1_I_tDZg"
}
incoming_body
2021-12-10 19:03:34 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-10 19:03:34 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJ5cGVLdXZWajdYS3REeUx3ekpzNXQ0UEFwVDM3azFTR1Y5bWRtS25USGlBIn0.eyJjbGllbnRfaWQiOiJjOTBmNzQ2Yy1iZWJiLTQ5OTAtYTZhZS0wOWNjOGI5N2ExN2QiLCJyZWRpcmVjdF91cmkiOiJodHRwczovL3d3dy5iYW5jb2JtZy5jb20uYnIiLCJzdGF0ZSI6IjIwNDQ0NTYzLTFmY2UtNGNiOC04YzI1LWE1ZGQ5NWEwNzE3MSIsIm5vbmNlIjoiNmRkM2NlYTYtNTk4YS00MTI5LWIwMGQtNWJlODg4MmVmNjRlIiwic2NvcGUiOiJvcGVuaWQgcGF5bWVudHMgY29uc2VudHMgYWNjb3VudHMgY29uc2VudDp1cm46Y29uZm9ybWFuY2Uub2lkZjozVDhXUlNnNmpmIiwicmVzcG9uc2VfdHlwZSI6ImNvZGUgaWRfdG9rZW4iLCJjbGFpbXMiOnsiaWRfdG9rZW4iOnsiY3BmIjp7ImVzc2VudGlhbCI6dHJ1ZSwidmFsdWVzIjpbIjY5OTQ0OTkyNjA3Il19LCJjbnBqIjp7ImVzc2VudGlhbCI6dHJ1ZSwidmFsdWVzIjpbIjM3OTg2ODg2MDAwMTAyIl19LCJhY3IiOnsidmFsdWVzIjpbInVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyJdLCJlc3NlbnRpYWwiOnRydWV9fSwidXNlcl9pbmZvIjp7ImNwZiI6eyJlc3NlbnRpYWwiOnRydWUsInZhbHVlcyI6WyI2OTk0NDk5MjYwNyJdfSwiY25waiI6eyJlc3NlbnRpYWwiOnRydWUsInZhbHVlcyI6WyIzNzk4Njg4NjAwMDEwMiJdfSwiYWNyIjp7InZhbHVlcyI6WyJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiXSwiZXNzZW50aWFsIjp0cnVlfX19LCJleHAiOjE2MzkxNjMyOTQsImlzcyI6ImM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4Yjk3YTE3ZCIsImF1ZCI6Imh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvQk1HT3BlbkJhbmtpbmdSUENlcnRpZmljYXRpb24vIiwianRpIjoieWE1eWM0MkJUUjREeXNJc05yMHh1UlhaSHcza2hvTnd4dFo0ZlVDZ3d2ayIsImlhdCI6MTYzOTE2Mjk5NCwibmJmIjoxNjM5MTYyOTk0fQ.HjTFmdB2BT32d4KGkQqRmr8R_EEGM-JWVNnhC4H939eep0eKPI8kkrpPaVAvNLeeFtix4WbzsPhCplnJE5COhkgk9JpV6JarGgkQZS0N6w0niGq6TYOwqCBUWEI9sJGaOYbB-6dY-OIea-UqV3h_BIGKVVvuWdWPvRQM55JcrJuw2C_rKnTkAi6wKf3SBaPb8FO7HP2ExgnvnfH7KEdH5CmxPA3yHio7YiyMkav28HX2NnVPi2Q2k6bYj3vTaaJVsqq71IrnmITtN4LYlJRXNQdWwp4bxEogj4Ruk6EuciQfFA64Zs76tULpI0RF89UD96cx4WlneaC74JtfztDmZg",
  "header": {
    "kid": "ypeKuvVj7XKtDyLwzJs5t4PApT37k1SGV9mdmKnTHiA",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
    "response_type": "code id_token",
    "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
    "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
    "aud": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
    "nbf": 1639162994,
    "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf",
    "claims": {
      "user_info": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        },
        "cpf": {
          "values": [
            "69944992607"
          ],
          "essential": true
        },
        "cnpj": {
          "values": [
            "37986886000102"
          ],
          "essential": true
        }
      },
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        },
        "cpf": {
          "values": [
            "69944992607"
          ],
          "essential": true
        },
        "cnpj": {
          "values": [
            "37986886000102"
          ],
          "essential": true
        }
      }
    },
    "redirect_uri": "https://www.bancobmg.com.br",
    "state": "20444563-1fce-4cb8-8c25-a5dd95a07171",
    "exp": 1639163294,
    "iat": 1639162994,
    "jti": "ya5yc42BTR4DysIsNr0xuRXZHw3khoNwxtZ4fUCgwvk"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "oauth-authz-req+jwt",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2021-12-10 19:03:34 SUCCESS
EnsureRequestObjectWasEncrypted
Request object was encrypted
jwe_header
{
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "cty": "oauth-authz-req+jwt",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2021-12-10 19:03:34 SUCCESS
FAPIBrazilEnsureRequestObjectEncryptedUsingRSAOAEPA256GCM
Request object was encrypted using RSA-OAEP and A256GCM
jwe_header
{
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "cty": "oauth-authz-req+jwt",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2021-12-10 19:03:34 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-10 19:03:34 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf",
  "response_type": "code id_token",
  "redirect_uri": "https://www.bancobmg.com.br",
  "state": "20444563-1fce-4cb8-8c25-a5dd95a07171",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.LZXyFhDvk7woTfNgc8mP1u9Px5DI1Pf1CIjtXhLhoWilzK9VXRNKCwn6tC8cXtW3r9WKaY1XdlmOwdnnPcNv3UD1i8Qh5gha6XCHRaxsXrDL94oAUofXDNRZ1fVijPzDRBzaSBc_je0hgJSQuBN76NkjSSw36s6po19kkXsT1dhmb6ZGVDi6ugSwVwXeuKhH8tbhkBHMB9tCmtMoVAihp-WNb992x5oyy7ItQ2z4WVCjM00Sdlyjhns5yE_-hx-McMJUeJxM9SJYaeM68AU2CPwsM4nPv56k0n3xvxO2vumR6Mj95goUtimbzsOKBbogl4cAJ0KuL1bRFL-AoVkCag.B7IewG2CjilJDiLE.nG2JSrvq9tvbInszK8kcoaypgXuHih7exavjJ9BjN_o2I9-J9Kqv5Sj6eT3ui4X8CBsPJFbazQ4hm_okzfJLI08LRCg5fxCnBW2_Y44UbxFtXLR5DWMycvJl6wWwC6ajF_NA_ld8P6j08V-jhyUvzPevbJR_BRZi8egVFzeyIpj_gfM9OnerlP_DkkNev6eFczWPHraqSk2wv5DE9iBn8BRUea27N8UKGHff4qEhjdTefzRiuXwop5Xl0XPoS375l2h4rtnodXG0iUiJ8cO88SYM7A7IBbsnmn5Kft2ysYlnqxuIYe2tsqVTbJ6DqAiaPDZzwkTpt41Q8v71sOscsmyctwm7P6PAca5lNNrpiGoVkgnL9FC_lJkvKef_Ruo5KjwCFNkOkJ_iKuoLTKO5mueAPDhCbAODpZ-v-6FXdsL09dRU5ICy6zuEl6LXNujKrLrkZnXcS1v-qjHL9-4O-ZF-XK0ZUoHK8_OPuqoOcICMoPi14COUcFIfUSeYMENpyy0soH4dpxbjnR51NjgKzK2o5UryvNFB4nLEADmLnHcv-QT65DtP_6xFyCEuBoDRy-qu5ixbKH9bVbgNr6kEaImv67sfIL6y3XF0PkbmYPsErac1Vx1Wzdpr_L4vNVRCaCE3MNVxg2Plzlsov0FPgVZjseidvy5me1jxledFgj8ugJUluEysK8YOETSqRl0WKFTXEX4yDPlAvUDc6D7He9PdWJS8cGfxGMBs7DNVBCdOpQjTaLZUVeVdtvNn98wS3SoJCiNnRvObnYuuDadM4L-4MuM4azm4jB1yVxnfbagCAndcjcYVY0JswLOoSbkTi4Xe3Jz0ROAvLO1vJrBZjscQmT2RvLKc1W-sWJncDpAfXMK_v9OyF0v2QvRaPhyfrRjhjyM2IgAnpICkhlZuqY-TdhUOKLw2JKRaRENJpBsGmv5YCWrsunV45290e23bQUINIQGAv3iyzoqPsW8Ml947rJcl8QDB3oHMDDBkZqQHdCT3ClfQlpukqur37zjkC1W6avZA02nvnJ0OBzvNpsQ2JvyUb6q6ZUkVqpUhBEFhnZZpDAoSgBbzVaDBBPJds0sHQfaB06v9aR8p6632ULkQXHFbR5rC7q03GH0_ae7CJp7NeDHpWdOZHPvKAagxSOf0sX4D-8rOgl_BNBkJsvNPnbF9glivzQLWyWRPFlkiuHwzwRgw1IGM_LpECSJOpEwX_MkctTn2i5W01FQkw2ajROCWbhEcV4peu8Jutl1vXI0_42rCX-4FfgJtMVTnfLujCieNxNBv7ovatNb5zWihcd3niyjHbUOCWIyr-q1-SUIFgKGwCViPG1itm6d-Vntl3yBncm6DZnbfJKF2djNvKBJRld5zlXlHOzrDWIxqXKbye1Nx6qYwmZQZsk00ntdmiKL_ssw8YcQJaNUEe9swXJRHTvrwlR0OkXutw3tiCdqYk5tXb0oXsaxNpNt_WGtPvz0sjJ6BrmWiZQpaxNxPv5mfZK-GjmUsrfSF28oH9uqQOOCHCiRrlcZ-rguRPAx7bbMRC6vet2gt5JqvuQQCUmLw7iCyUdsew9MDujKtae6dj2KgPnu49q_S7s708ByzFfH8rlfpUWSkL9lYrZM8tV6P84Nnjh8rgVWmrATGMCVWVqtjFoNeGI1wFFqAC7g3R2uDWg710lFnnJNK6kkHQ6AD1crC0cW__WmlIi-XRiNews7KMf3Mq7jhJ5QUXa1-gfnemIpB9L5MYWrzBQIGbEMc6RJtOOqlxL-328t--R9iwrEB_7T2KDGNQSlEn_opZhfVBVb-OpmBMAjPhBvJOG866cP5efCD_PGskdQttSqrCJ6mEo4S3iRmOjjHc-mQF3syucqsC1lzfqTF8lWKiUw1oTw05yHchDMWV6A5UptbNF1h_s8xblnvyqncHYM0UG3_UqKxjbIs9oTcOMjgDeKo0PHIS6V5ARdlQiEBMYCze13BkW37mMHfLpLqH9aFaYcqpbDbJPvrpIciFUddRpCX6upax_MHCAtpjQKR7uO6MZpHWEjlnZSC7bHHUwPLKj8cPcTbhFYim3YflaAyCq9BzwBoIMqF0f7MP5b--iVPvpfbCtrGZVJvY7DM-XiXrFGl0dL8yaJU2fvXmk1ZAR7C-p8smW-0m8PA1gwAPPDPa3JZaqyLhesiS6X2LseaE7zAPTAXj0qz7PkDu9Gf3tSkzPAQRPxqhMbGYzqV3iPt1O-lw9UEYxDCJcfoLmjjX6cey7V-Pvrf4Q.BwhCXRTpEIICQb1_I_tDZg",
  "iss": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "aud": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "nbf": 1639162994,
  "claims": {
    "user_info": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      },
      "cpf": {
        "values": [
          "69944992607"
        ],
        "essential": true
      },
      "cnpj": {
        "values": [
          "37986886000102"
        ],
        "essential": true
      }
    },
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      },
      "cpf": {
        "values": [
          "69944992607"
        ],
        "essential": true
      },
      "cnpj": {
        "values": [
          "37986886000102"
        ],
        "essential": true
      }
    }
  },
  "exp": 1639163294,
  "iat": 1639162994,
  "jti": "ya5yc42BTR4DysIsNr0xuRXZHw3khoNwxtZ4fUCgwvk"
}
2021-12-10 19:03:34 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-10 19:03:34 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2021-12-10 19:03:34 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 10, 2021, 7:08:14 PM"
2021-12-10 19:03:34 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 10, 2021, 7:03:14 PM"
now
"Dec 10, 2021, 7:03:34 PM"
2021-12-10 19:03:34
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-10 19:03:34 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-10 19:03:34 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-10 19:03:34 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-10 19:03:34 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-10 19:03:34 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJ5cGVLdXZWajdYS3REeUx3ekpzNXQ0UEFwVDM3azFTR1Y5bWRtS25USGlBIn0.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.HjTFmdB2BT32d4KGkQqRmr8R_EEGM-JWVNnhC4H939eep0eKPI8kkrpPaVAvNLeeFtix4WbzsPhCplnJE5COhkgk9JpV6JarGgkQZS0N6w0niGq6TYOwqCBUWEI9sJGaOYbB-6dY-OIea-UqV3h_BIGKVVvuWdWPvRQM55JcrJuw2C_rKnTkAi6wKf3SBaPb8FO7HP2ExgnvnfH7KEdH5CmxPA3yHio7YiyMkav28HX2NnVPi2Q2k6bYj3vTaaJVsqq71IrnmITtN4LYlJRXNQdWwp4bxEogj4Ruk6EuciQfFA64Zs76tULpI0RF89UD96cx4WlneaC74JtfztDmZg
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 24498212524927893005868602285528911022569568932518490702834128227197770212780385510187617851287532594536021243460800883340487034781499077469173083062300248645103718770374525002044390992366144550512338492028888755261532944555005999213781120361632027451981868912015496477036443379102972993680681287002866012192748634242592981279782349792617199639723054648527528568098642658127617194584460720882160467833139859090003538698492708580201536281450290877478961354223294804598067253093337111251805388361634665679868485725933652728344419131378077721232921879948577348772264316207050423629189338425193391246602238499910056700499
  public exponent: 65537
2021-12-10 19:03:34 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://www.bancobmg.com.br
2021-12-10 19:03:34 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:34 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2021-12-10 19:03:34 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:3T8WRSg6jf"
]
expected
openid
2021-12-10 19:03:34 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:34 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:3T8WRSg6jf"
]
expected
consent:urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:34 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:3T8WRSg6jf"
]
2021-12-10 19:03:34 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-10 19:03:34 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:3T8WRSg6jf"
]
expected
openid
2021-12-10 19:03:34 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:34 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse
2021-12-10 19:03:34 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
6dd3cea6-598a-4129-b00d-5be8882ef64e
2021-12-10 19:03:34 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
JaH1r1tuyO42sfb68uunzA
2021-12-10 19:03:34 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
BE3tJTp7AHIxA9-y9_EF3g
2021-12-10 19:03:34 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/
sub
user-subject-1234531
aud
c90f746c-bebb-4990-a6ae-09cc8b97a17d
nonce
6dd3cea6-598a-4129-b00d-5be8882ef64e
iat
1639163014
exp
1639163314
2021-12-10 19:03:34 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163014,
  "exp": 1639163314,
  "cpf": "69944992607",
  "cnpj": "37986886000102"
}
2021-12-10 19:03:34 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
JaH1r1tuyO42sfb68uunzA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163014,
  "exp": 1639163314,
  "cpf": "69944992607",
  "cnpj": "37986886000102",
  "c_hash": "JaH1r1tuyO42sfb68uunzA"
}
2021-12-10 19:03:34 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
BE3tJTp7AHIxA9-y9_EF3g
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163014,
  "exp": 1639163314,
  "cpf": "69944992607",
  "cnpj": "37986886000102",
  "c_hash": "JaH1r1tuyO42sfb68uunzA",
  "s_hash": "BE3tJTp7AHIxA9-y9_EF3g"
}
2021-12-10 19:03:34 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-10 19:03:34 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163014,
  "exp": 1639163314,
  "cpf": "69944992607",
  "cnpj": "37986886000102",
  "c_hash": "JaH1r1tuyO42sfb68uunzA",
  "s_hash": "BE3tJTp7AHIxA9-y9_EF3g",
  "acr": "urn:brasil:openbanking:loa3"
}
2021-12-10 19:03:34 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.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.ekJCdEieAXf275uK4Hx63nnoPjOGrN63Un6SUyaDTN8uYplJc6ss4rqg4u8ae0rzdigqDwoCoKv6pcUpNHB-JlPJ4G8-bLQAjeDFPbpqRqcHqED1yAVTQlKR5Jk4BlvT5dWPmPf4VNj5qDmZXhNEbAsuC5nlLDyhVNhC-rmD9F0i85lOTd9rZcfY7WKVKe2pbkT-gS50yGE5M_ypYzMQaP9XLwslJ9KxuxAmhe8RXuQ0NYZtQfuRz6Lsez_gxVhPZAvmsYIliv6rlNfZ7n9fOu-7AHSqP8pCaAsCRm5ZO7cv20raQwW3zhjlb49NoWFT3puQ2PsbOd58RfibQJ8Fcg
2021-12-10 19:03:34 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:3T8WRSg6jf",
    "creationDateTime": "2021-12-10T19:03:34Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-10T19:03:34Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T21:03:34Z",
    "transactionFromDateTime": "2021-12-10T18:58:34Z",
    "transactionToDateTime": "2021-12-10T21:03:34Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertificationconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:34Z"
  }
}
2021-12-10 19:03:34 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.bancobmg.com.br",
  "state": "20444563-1fce-4cb8-8c25-a5dd95a07171"
}
2021-12-10 19:03:34 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.bancobmg.com.br",
  "state": "20444563-1fce-4cb8-8c25-a5dd95a07171",
  "code": "VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse"
}
2021-12-10 19:03:34 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.bancobmg.com.br",
  "state": "20444563-1fce-4cb8-8c25-a5dd95a07171",
  "code": "VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.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.ekJCdEieAXf275uK4Hx63nnoPjOGrN63Un6SUyaDTN8uYplJc6ss4rqg4u8ae0rzdigqDwoCoKv6pcUpNHB-JlPJ4G8-bLQAjeDFPbpqRqcHqED1yAVTQlKR5Jk4BlvT5dWPmPf4VNj5qDmZXhNEbAsuC5nlLDyhVNhC-rmD9F0i85lOTd9rZcfY7WKVKe2pbkT-gS50yGE5M_ypYzMQaP9XLwslJ9KxuxAmhe8RXuQ0NYZtQfuRz6Lsez_gxVhPZAvmsYIliv6rlNfZ7n9fOu-7AHSqP8pCaAsCRm5ZO7cv20raQwW3zhjlb49NoWFT3puQ2PsbOd58RfibQJ8Fcg"
}
2021-12-10 19:03:34
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://www.bancobmg.com.br#state=20444563-1fce-4cb8-8c25-a5dd95a07171&code=VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.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.ekJCdEieAXf275uK4Hx63nnoPjOGrN63Un6SUyaDTN8uYplJc6ss4rqg4u8ae0rzdigqDwoCoKv6pcUpNHB-JlPJ4G8-bLQAjeDFPbpqRqcHqED1yAVTQlKR5Jk4BlvT5dWPmPf4VNj5qDmZXhNEbAsuC5nlLDyhVNhC-rmD9F0i85lOTd9rZcfY7WKVKe2pbkT-gS50yGE5M_ypYzMQaP9XLwslJ9KxuxAmhe8RXuQ0NYZtQfuRz6Lsez_gxVhPZAvmsYIliv6rlNfZ7n9fOu-7AHSqP8pCaAsCRm5ZO7cv20raQwW3zhjlb49NoWFT3puQ2PsbOd58RfibQJ8Fcg
2021-12-10 19:03:34 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.bancobmg.com.br#state=20444563-1fce-4cb8-8c25-a5dd95a07171&code=VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.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.ekJCdEieAXf275uK4Hx63nnoPjOGrN63Un6SUyaDTN8uYplJc6ss4rqg4u8ae0rzdigqDwoCoKv6pcUpNHB-JlPJ4G8-bLQAjeDFPbpqRqcHqED1yAVTQlKR5Jk4BlvT5dWPmPf4VNj5qDmZXhNEbAsuC5nlLDyhVNhC-rmD9F0i85lOTd9rZcfY7WKVKe2pbkT-gS50yGE5M_ypYzMQaP9XLwslJ9KxuxAmhe8RXuQ0NYZtQfuRz6Lsez_gxVhPZAvmsYIliv6rlNfZ7n9fOu-7AHSqP8pCaAsCRm5ZO7cv20raQwW3zhjlb49NoWFT3puQ2PsbOd58RfibQJ8Fcg]
outgoing_path
authorize
2021-12-10 19:03:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "x-customer-user-agent": "BMG TPP",
  "x-fapi-auth-date": "Fri, 10 Dec 2021 19:03:14 GMT",
  "x-fapi-interaction-id": "a0decbf2-0e7d-46ef-9139-5427dd580042",
  "authorization": "Bearer Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/consents/v1/consents/urn:conformance.oidf:3T8WRSg6jf
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 19:03:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Get consent endpoint
2021-12-10 19:03:35 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:35 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:35 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:35 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-10 19:03:35 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
2021-12-10 19:03:35 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
Bk4zpbXwcEj2SkueZFm7JJDaCbGLCwt1K7vcBd0UMFsSLQdBWd
2021-12-10 19:03:35 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Fri, 10 Dec 2021 19:03:14 GMT
2021-12-10 19:03:35 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-10 19:03:35 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
a0decbf2-0e7d-46ef-9139-5427dd580042
2021-12-10 19:03:35 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
a0decbf2-0e7d-46ef-9139-5427dd580042
2021-12-10 19:03:35 SUCCESS
FAPIBrazilGenerateGetConsentResponse
Created consent response
response
{
  "data": {
    "consentId": "urn:conformance.oidf:3T8WRSg6jf",
    "creationDateTime": "2021-12-10T19:03:34Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-10T19:03:34Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T21:03:34Z",
    "transactionFromDateTime": "2021-12-10T18:58:34Z",
    "transactionToDateTime": "2021-12-10T21:03:34Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertificationconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:35Z"
  }
}
2021-12-10 19:03:35
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-10 19:03:35 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d8b7b52a-eeaf-40e8-bd43-ce8e908a3473"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:3T8WRSg6jf",
    "creationDateTime": "2021-12-10T19:03:34Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-10T19:03:34Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T21:03:34Z",
    "transactionFromDateTime": "2021-12-10T18:58:34Z",
    "transactionToDateTime": "2021-12-10T21:03:34Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertificationconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:34Z"
  }
}
outgoing_path
consents/v1/consents/urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:36 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "161",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse",
  "redirect_uri": "https://www.bancobmg.com.br",
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse&redirect_uri=https%3A%2F%2Fwww.bancobmg.com.br&client_id=c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 19:03:36 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:36 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:36 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:36 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 19:03:36 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
VE7pShsZcb5RX1qQbm4rJhw9eVSWqRse
2021-12-10 19:03:36 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://www.bancobmg.com.br
2021-12-10 19:03:36 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
yQsykGD8yzCxk8g6HEfsEQa2xYOUaNhRa280wDfxI3zjXZOIqk
2021-12-10 19:03:36 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
0FJZChMw6Py7P8ZipzHz3w
2021-12-10 19:03:36
CreateRefreshToken
Created refresh token
refresh_token
YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702!?\*&
2021-12-10 19:03:36 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/
sub
user-subject-1234531
aud
c90f746c-bebb-4990-a6ae-09cc8b97a17d
nonce
6dd3cea6-598a-4129-b00d-5be8882ef64e
iat
1639163016
exp
1639163316
2021-12-10 19:03:36 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163016,
  "exp": 1639163316,
  "cpf": "69944992607",
  "cnpj": "37986886000102"
}
2021-12-10 19:03:36 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
0FJZChMw6Py7P8ZipzHz3w
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163016,
  "exp": 1639163316,
  "cpf": "69944992607",
  "cnpj": "37986886000102",
  "at_hash": "0FJZChMw6Py7P8ZipzHz3w"
}
2021-12-10 19:03:36 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/BMGOpenBankingRPCertification/",
  "sub": "user-subject-1234531",
  "aud": "c90f746c-bebb-4990-a6ae-09cc8b97a17d",
  "nonce": "6dd3cea6-598a-4129-b00d-5be8882ef64e",
  "iat": 1639163016,
  "exp": 1639163316,
  "cpf": "69944992607",
  "cnpj": "37986886000102",
  "at_hash": "0FJZChMw6Py7P8ZipzHz3w",
  "acr": "urn:brasil:openbanking:loa3"
}
2021-12-10 19:03:36 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiMEZKWkNoTXc2UHk3UDhaaXB6SHozdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiYzkwZjc0NmMtYmViYi00OTkwLWE2YWUtMDljYzhiOTdhMTdkIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0JNR09wZW5CYW5raW5nUlBDZXJ0aWZpY2F0aW9uXC8iLCJjcGYiOiI2OTk0NDk5MjYwNyIsImNucGoiOiIzNzk4Njg4NjAwMDEwMiIsImV4cCI6MTYzOTE2MzMxNiwibm9uY2UiOiI2ZGQzY2VhNi01OThhLTQxMjktYjAwZC01YmU4ODgyZWY2NGUiLCJpYXQiOjE2MzkxNjMwMTZ9.lyWHgmfUGuhqe6nu5TXLdRkpmcWjQ8qexh2P6ugtrJQnhPJo4Uv8mnRXOY-xwoaqzDXRECc_SgF9tOmCfZHfTsDmI1cySdHyzuh2fnrUgu7yW_95bO-tIptHzDazh1gyeeQeQPUNCkFg8aM8RrxZxYx_h8rkMH4ZF-oTGne5Sb5pWa1Ulr_HPiI7mZoTEzmCtd243FTU3y7LuCwuHgopkT_ICKlxeFbShB68KpqHfINAR2m7eeuojDxDlvD0rK_KFQLaqKm5mGw0TL2V3ISFgnNVzK7p18V5zQHJudz4CkHu63Ely0WpRzuG1y6R-G34ZnuZFOUDFxAIM3b4x6gRaw
2021-12-10 19:03:36 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
yQsykGD8yzCxk8g6HEfsEQa2xYOUaNhRa280wDfxI3zjXZOIqk
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiMEZKWkNoTXc2UHk3UDhaaXB6SHozdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiYzkwZjc0NmMtYmViYi00OTkwLWE2YWUtMDljYzhiOTdhMTdkIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0JNR09wZW5CYW5raW5nUlBDZXJ0aWZpY2F0aW9uXC8iLCJjcGYiOiI2OTk0NDk5MjYwNyIsImNucGoiOiIzNzk4Njg4NjAwMDEwMiIsImV4cCI6MTYzOTE2MzMxNiwibm9uY2UiOiI2ZGQzY2VhNi01OThhLTQxMjktYjAwZC01YmU4ODgyZWY2NGUiLCJpYXQiOjE2MzkxNjMwMTZ9.lyWHgmfUGuhqe6nu5TXLdRkpmcWjQ8qexh2P6ugtrJQnhPJo4Uv8mnRXOY-xwoaqzDXRECc_SgF9tOmCfZHfTsDmI1cySdHyzuh2fnrUgu7yW_95bO-tIptHzDazh1gyeeQeQPUNCkFg8aM8RrxZxYx_h8rkMH4ZF-oTGne5Sb5pWa1Ulr_HPiI7mZoTEzmCtd243FTU3y7LuCwuHgopkT_ICKlxeFbShB68KpqHfINAR2m7eeuojDxDlvD0rK_KFQLaqKm5mGw0TL2V3ISFgnNVzK7p18V5zQHJudz4CkHu63Ely0WpRzuG1y6R-G34ZnuZFOUDFxAIM3b4x6gRaw
refresh_token
YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702!?\*&
scope
openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:36
RemoveIssuedAccessTokenFromEnvironment
Removed access_token and token_type from environment
2021-12-10 19:03:36 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "yQsykGD8yzCxk8g6HEfsEQa2xYOUaNhRa280wDfxI3zjXZOIqk",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiMEZKWkNoTXc2UHk3UDhaaXB6SHozdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiYzkwZjc0NmMtYmViYi00OTkwLWE2YWUtMDljYzhiOTdhMTdkIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL0JNR09wZW5CYW5raW5nUlBDZXJ0aWZpY2F0aW9uXC8iLCJjcGYiOiI2OTk0NDk5MjYwNyIsImNucGoiOiIzNzk4Njg4NjAwMDEwMiIsImV4cCI6MTYzOTE2MzMxNiwibm9uY2UiOiI2ZGQzY2VhNi01OThhLTQxMjktYjAwZC01YmU4ODgyZWY2NGUiLCJpYXQiOjE2MzkxNjMwMTZ9.lyWHgmfUGuhqe6nu5TXLdRkpmcWjQ8qexh2P6ugtrJQnhPJo4Uv8mnRXOY-xwoaqzDXRECc_SgF9tOmCfZHfTsDmI1cySdHyzuh2fnrUgu7yW_95bO-tIptHzDazh1gyeeQeQPUNCkFg8aM8RrxZxYx_h8rkMH4ZF-oTGne5Sb5pWa1Ulr_HPiI7mZoTEzmCtd243FTU3y7LuCwuHgopkT_ICKlxeFbShB68KpqHfINAR2m7eeuojDxDlvD0rK_KFQLaqKm5mGw0TL2V3ISFgnNVzK7p18V5zQHJudz4CkHu63Ely0WpRzuG1y6R-G34ZnuZFOUDFxAIM3b4x6gRaw",
  "refresh_token": "YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702!?\\*\u0026",
  "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf"
}
outgoing_path
token
2021-12-10 19:03:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "x-customer-user-agent": "BMG TPP",
  "x-fapi-auth-date": "Fri, 10 Dec 2021 19:03:16 GMT",
  "x-fapi-interaction-id": "09e33c18-b27a-4fb9-9879-d723dd743f71",
  "authorization": "Bearer yQsykGD8yzCxk8g6HEfsEQa2xYOUaNhRa280wDfxI3zjXZOIqk",
  "accept": "application/json",
  "content-type": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/accounts/v1/accounts
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 19:03:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2021-12-10 19:03:37 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2021-12-10 19:03:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2021-12-10 19:03:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "159",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/token
incoming_body_form_params
{
  "refresh_token": "YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702!?\\*\u0026",
  "grant_type": "refresh_token",
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
refresh_token=YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702%21%3F%5C*%26&grant_type=refresh_token&client_id=c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 19:03:37 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:37 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:37 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx
MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD
o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl
ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h
dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w
GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC
UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4
Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL
GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO
nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd
e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j
zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG
mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke
OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ
2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD
30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu
ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+
oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn
LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk
aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG
A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC
ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh
aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv
cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1
c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv
ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2
aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50
cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v
cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD
ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3
zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5
Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM
w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r
gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv
7ncRIte0KqHykV1gS71AsCltZNU=
-----END CERTIFICATE-----
2021-12-10 19:03:37 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 19:03:37 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
YrsvaIivTQMGtZRTpCgtsbUbgIUiXbRLrOPDmuVjdKoFNLlSFI4583756702!?\*&
2021-12-10 19:03:37 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
0eYGgTAFDUxVboZI2ckixQoPrdz5Ieog6nIvhXBRebC8qQTh8k
2021-12-10 19:03:37 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
xvlY3vtLjTYGt_nNnnkz6w
2021-12-10 19:03:37
CreateRefreshToken
Created refresh token
refresh_token
ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591'==\$
2021-12-10 19:03:37 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
0eYGgTAFDUxVboZI2ckixQoPrdz5Ieog6nIvhXBRebC8qQTh8k
token_type
Bearer
refresh_token
ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591'==\$
scope
openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "0eYGgTAFDUxVboZI2ckixQoPrdz5Ieog6nIvhXBRebC8qQTh8k",
  "token_type": "Bearer",
  "refresh_token": "ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591\u0027\u003d\u003d\\$",
  "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf"
}
outgoing_path
token
2021-12-10 19:03:38 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "161",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/token
incoming_body_form_params
{
  "refresh_token": "ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591\u0027\u003d\u003d\\$",
  "grant_type": "refresh_token",
  "client_id": "c90f746c-bebb-4990-a6ae-09cc8b97a17d"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
refresh_token=ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591%27%3D%3D%5C%24&grant_type=refresh_token&client_id=c90f746c-bebb-4990-a6ae-09cc8b97a17d
2021-12-10 19:03:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 19:03:38 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:38 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:38 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:38 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 19:03:38 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
ZKjVPNunOTOecasrrAihXIAqhcWYuaDLmGZjmOlnkQIeoOvlue2147370591'==\$
2021-12-10 19:03:38 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar
2021-12-10 19:03:38 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
ciswO65IV0qAxADcYcSnkw
2021-12-10 19:03:38
CreateRefreshToken
Created refresh token
refresh_token
qGAmGranEsAuewcQBhEzHLLXTSvtIngyTKQFiBcPCfPRCQftQq0904135504]}<!^
2021-12-10 19:03:38 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar
token_type
Bearer
refresh_token
qGAmGranEsAuewcQBhEzHLLXTSvtIngyTKQFiBcPCfPRCQftQq0904135504]}<!^
scope
openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf
2021-12-10 19:03:38 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar",
  "token_type": "Bearer",
  "refresh_token": "qGAmGranEsAuewcQBhEzHLLXTSvtIngyTKQFiBcPCfPRCQftQq0904135504]}\u003c!^",
  "scope": "openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf"
}
outgoing_path
token
2021-12-10 19:03:39 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance OMMVzeeSDko6YcN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "BMG TPP",
  "x-customer-user-agent": "BMG TPP",
  "x-fapi-auth-date": "Fri, 10 Dec 2021 19:03:18 GMT",
  "x-fapi-interaction-id": "792d4696-6454-45d2-b001-e0b90a6366c9",
  "authorization": "Bearer zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar",
  "accept": "application/json",
  "content-type": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test-mtls/a/BMGOpenBankingRPCertification/accounts/v1/accounts
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 19:03:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2021-12-10 19:03:39 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHADCCBeigAwIBAgIUM0135j7xqHmtKfNbLecTBllABZYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxMDIxMDAwMFoXDTIyMDkwOTIx MDAwMFowggEeMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFTATBgNVBAoTDEJDTyBCTUcgUy5BLjEtMCsGA1UECxMkNGFlMmNl ZmItZTNjMS01NjI0LTk0NDgtYjNhYTQ3NzdjNTM5MSQwIgYDVQQDExttYXRscy1h dXRoLWJtZy5zZW5zZWRpYS5jb20xFzAVBgNVBAUTDjYxMTg2NjgwMDAwMTc0MR0w GwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjETMBEGCysGAQQBgjc8AgEDEwJC UjE0MDIGCgmSJomT8ixkAQETJGM5MGY3NDZjLWJlYmItNDk5MC1hNmFlLTA5Y2M4 Yjk3YTE3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANEarzZA56sL GW+Dh0LrjM+tYMdxwM1jnliqkOBsTkIYYilqUhMX0or1V8uD0xkeNx6bm+TMaIWO nRXzwS4OBuALtEpnefHYTcc8n38mLXSc7fkAsEQ3ct4P6U7Gm615XgIhQNm10oXd e1TlMGQsuG1gmEQprDja9fIp6gxOUOr5qDH0OuPDkARFu61EU91+Tl/tYk0qWu6j zzAZt1nqcOf+0hZhuXnpBAUMrfOjBWo3gNp5oDTs795K52EYUdLv4LzjeVpGmRLG mAa2bEon/KI6m/ud55jnfcrWF717yLH4eTD5aiJOiDqQJhkYmSfTr5Dm6Ydw0Cke OPnAtnUtsTcCAwEAAaOCAt8wggLbMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIYZ 2jRdqmy2TlAwbCMvIhquYbnuMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD 30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2Fu ZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+ oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyL2lzc3Vlci5jcmwwJgYDVR0RBB8wHYIbbWF0bHMtYXV0aC1ibWcuc2Vuc2Vk aWEuY29tMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjCCAaEG A1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCC ASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJh aWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBv cmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1 c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBv ciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2 aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50 cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQAD ggEBAMyNOL0EGZLmlS+0h/m0/fpBareO6zsVxCAZkRwXZ+DZTGSGcesuJy3RWEO3 zSUsR0PcDacWQ0f7F5XtewpzGqkn7Zbkd7dtiJ3GFHkbZSxgyPFu9LB0Tb5Cq1R5 Afps7HmztybAnvsImZERai1cbvPVBD0PBzUP9JigwNPtJwPgLz3QYwx2ewLtFjNM w+srUJpHFc17LHbkL0szwooLzmuH+s67NwoJNov1ldVxE5IUT6R8Pflf4/l4fx2r gCwFBvAOMMN08X9ulVB0C0ZFOcvsSk5p+FydSzYvAJCuBpNKRMSPjzQ/yKOvcCKv 7ncRIte0KqHykV1gS71AsCltZNU\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n7ncRIte0KqHykV1gS71AsCltZNU\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dc90f746c-bebb-4990-a6ae-09cc8b97a17d,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3631313836363830303030313734,CN\u003dmatls-auth-bmg.sensedia.com,OU\u003d4ae2cefb-e3c1-5624-9448-b3aa4777c539,O\u003dBCO BMG S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-bmg.sensedia.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 19:03:39 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 19:03:39 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 19:03:39 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-10 19:03:39 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar
2021-12-10 19:03:39 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
zPA1Kr6q5Vpyn1YN0ThHtYUrGlCLte74M7YqWHfGhJBJHs3Zar
2021-12-10 19:03:39 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Fri, 10 Dec 2021 19:03:18 GMT
2021-12-10 19:03:39 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-10 19:03:39 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
792d4696-6454-45d2-b001-e0b90a6366c9
2021-12-10 19:03:39 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid payments consents accounts consent:urn:conformance.oidf:3T8WRSg6jf
expected
accounts
2021-12-10 19:03:39 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
792d4696-6454-45d2-b001-e0b90a6366c9
2021-12-10 19:03:39 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "792d4696-6454-45d2-b001-e0b90a6366c9",
  "content-type": "application/json; charset\u003dUTF-8"
}
2021-12-10 19:03:39 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:39Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "792d4696-6454-45d2-b001-e0b90a6366c9",
  "content-type": "application/json"
}
2021-12-10 19:03:39
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-10 19:03:39 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance OMMVzeeSDko6YcN
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "792d4696-6454-45d2-b001-e0b90a6366c9"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T19:03:39Z"
  }
}
outgoing_path
accounts/v1/accounts
2021-12-10 19:03:39 FINISHED
fapi1-advanced-final-client-refresh-token-test
Test has run to completion
testmodule_result
PASSED
2021-12-10 19:03:45
TEST-RUNNER
Alias has now been claimed by another test
alias
BMGOpenBankingRPCertification
new_test_id
NL1AP0eKlapNHDf
Test Results