Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-16 22:36:32 INFO
TEST-RUNNER
Test instance Ec3QnVlacUpQWlG created
baseUrl
https://www.certification.openid.net/test/a/bocomBBMCertification
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
bocomBBMCertification
description
Bocom BBM Certification Payments
planId
yxOyrAHLRiWFf
config
{
  "alias": "bocomBBMCertification",
  "description": "Bocom BBM Certification Payments",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
          "kty": "RSA",
          "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
          "e": "AQAB"
        }
      ]
    },
    "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
    "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
    "certificate": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "141c9328-eee4-4553-8b53-771e61f19f1a",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
          "kty": "RSA",
          "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
          "e": "AQAB"
        }
      ]
    },
    "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
    "certificate": "-----BEGIN CERTIFICATE-----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\ni03NuiRfmXxJ2xs52b8\u003d\n-----END CERTIFICATE-----",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
2021-12-16 22:36:32 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bocomBBMCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/bocomBBMCertification/
discoveryUrl
https://www.certification.openid.net/test/a/bocomBBMCertification/.well-known/openid-configuration
2021-12-16 22:36:32 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-16 22:36:32 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 22:36:32
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-16 22:36:32
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bocomBBMCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-16 22:36:32
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bocomBBMCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-16 22:36:32
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bocomBBMCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-16 22:36:32 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-16 22:36:32
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/bocomBBMCertification/par
2021-12-16 22:36:32
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2021-12-16 22:36:32 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-16 22:36:32 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-16 22:36:32 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-16 22:36:32 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-16 22:36:32 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-16 22:36:32 SUCCESS
GetStaticClientConfiguration
Found a static client object
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
client_id
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
redirect_uri
https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback
certificate
-----BEGIN CERTIFICATE-----
MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5
NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV
BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE
AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV
BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv
bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk
LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N
85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm
zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8
ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr
kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf
gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud
EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY
MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF
BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu
b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku
b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm
bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/
BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ
BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp
ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM
aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp
bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy
dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl
cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp
Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG
AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls
Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK
EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK
gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1
485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G
bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr
bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0
qlNyUA==
-----END CERTIFICATE-----
2021-12-16 22:36:32 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 22:36:32 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "alg": "PS256",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw"
    }
  ]
}
2021-12-16 22:36:32 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-16 22:36:32 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-16 22:36:32 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
Verify configuration of second client
2021-12-16 22:36:32 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
141c9328-eee4-4553-8b53-771e61f19f1a
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
redirect_uri
https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
2021-12-16 22:36:32 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 22:36:32 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "alg": "PS256",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw"
    }
  ]
}
2021-12-16 22:36:32 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-16 22:36:32 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-16 22:36:32 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "kty": "RSA",
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB"
    }
  ]
}
2021-12-16 22:36:32
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Setup Done
2021-12-16 22:36:37 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bocomBBMCertification/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 22:36:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 22:36:37 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bocomBBMCertification/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bocomBBMCertification/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-16 22:36:38 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "116",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "openid payments consents accounts",
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=openid+payments+consents+accounts&client_id=57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
2021-12-16 22:36:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 22:36:38 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:38 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:38 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 22:36:38 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-16 22:36:38 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts"
]
expected
payments
2021-12-16 22:36:38 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
2021-12-16 22:36:38 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
token_type
Bearer
2021-12-16 22:36:38
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-16 22:36:38 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-16 22:36:39 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "x-customer-user-agent": "Sensedia TPP",
  "x-fapi-auth-date": "Thu, 16 Dec 2021 22:36:38 GMT",
  "x-fapi-interaction-id": "83d25982-53b8-49fd-b7bb-6a18cdb2d975",
  "authorization": "Bearer RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u",
  "accept": "application/jwt",
  "content-type": "application/jwt",
  "x-idempotency-key": "02f20774-f9d7-47c2-93b7-88300015a713",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1434",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.LtxbMnIeBPEo4T8GiflO5x-3bcirCOShylQO_lzZvaHWF_1rB3VsDZm3FzgllSjOSylrq2gQDWbGQmth_kPLZHVGCqzR6SptlyVMN9A8Hnly38EkoqhtMYoVg19xCdsr8hXsZJQ7yOYrr3wyT1_yaBg3ObrMPSUrrtiaCzQ0cQqgJplevlvBzAei7H_Oj9u95WsnCmkR7KuzJTQ2a_wTVgTqtMyXBKbjpVbjNGl_JwwfgHa7EEFPWs-wEAX2QXnr_VPxFLAWiZKxdZSpuvtUy00uT058uYhBNcK8qTIP3xgWp9AMs2A_L0CQfyEHwWdWPtlbgjuvW3Uiy-VjavAg8A
2021-12-16 22:36:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-16 22:36:39 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:39 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:39 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 22:36:39 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-16 22:36:39 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 22:36:39 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
2021-12-16 22:36:39 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
2021-12-16 22:36:39 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Thu, 16 Dec 2021 22:36:38 GMT
2021-12-16 22:36:39 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 22:36:39 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
83d25982-53b8-49fd-b7bb-6a18cdb2d975
2021-12-16 22:36:39 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2021-12-16 22:36:39 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "openid",
  "payments",
  "consents",
  "accounts"
]
2021-12-16 22:36:39 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/payments/v1/consents",
  "nbf": 1639694198,
  "data": {
    "loggedUser": {
      "document": {
        "identification": "69944992607",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "JOANNA LILLIA",
      "cpfCnpj": "95871751660",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-12-16",
      "amount": "50.75",
      "currency": "BRL",
      "details": {
        "proxy": "+5561999991111",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "111111",
          "accountType": "CACC",
          "ispb": "99999008",
          "issuer": "1111"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "1234567"
    }
  },
  "iss": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "exp": 1639694498,
  "iat": 1639694198,
  "jti": "875513b8-6dcd-4c80-8495-57e2d2a6982e",
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2"
}
2021-12-16 22:36:39 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2021-12-16 22:36:39 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
02f20774-f9d7-47c2-93b7-88300015a713
2021-12-16 22:36:39 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/payments/v1/consents
2021-12-16 22:36:39 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3135313134333636303030323430,CN=matls-auth-sandbox.hom.bocombbm.com.br,OU=4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O=BCO BOCOM BBM S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
4a7250ec-eac5-5d8f-b7eb-dc0e8e880203
brazil_software_id
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
2021-12-16 22:36:39 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
4a7250ec-eac5-5d8f-b7eb-dc0e8e880203
2021-12-16 22:36:39 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
875513b8-6dcd-4c80-8495-57e2d2a6982e
2021-12-16 22:36:39 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1639694198
2021-12-16 22:36:39
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/4a7250ec-eac5-5d8f-b7eb-dc0e8e880203/application.jwks
2021-12-16 22:36:39
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/4a7250ec-eac5-5d8f-b7eb-dc0e8e880203/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-12-16 22:36:39 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "3028",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Sat, 14 Aug 2021 19:37:45 GMT",
  "x-amz-version-id": "0A05eYDNc4pJbO6HUD0V5Xap4.VN62.1",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Thu, 16 Dec 2021 22:36:25 GMT",
  "etag": "\"e9638a398cf84e3a48b45231e4665586\"",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 6fc0aea2429e74e0c91886621936d56a.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-C4",
  "x-amz-cf-id": "o3EPNeaCrZ4nTigkvy_IPuxQFhGGCHpwMl-OCQYqT7q4KV8jQfzY0g\u003d\u003d",
  "age": "15"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["MIIG5jCCBc6gAwIBAgIUDy/1/b3EXBAbtGDnyOTV5YS8xkMwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5MzMwMFoXDTIyMDkxMzE5MzMwMFowgdIxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMU8wFQYDVQQLEw4xNTExNDM2NjAwMDI0MDAaBgNVBAsTE09wZW4gQmFua2luZyBCcmFzaWwwGgYDVQQLExNkaWdpdGFsIGNlcnRpZmljYXRlMScwJQYDVQQDEx5PcGVuIEJhbmtpbmcgQnJhc2lsIC0gU2Vuc2VkaWExNDAyBgoJkiaJk/IsZAEBEyQ0YTcyNTBlYy1lYWM1LTVkOGYtYjdlYi1kYzBlOGU4ODAyMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtge3EPyacFEtqhqq3+yvuHY+7tyXtoPB9Nv9TCOXwxYl8x6cb1DixRExsl1Q3SyxsEqHTYEbaV5t5OBhv2XqtqH7aEa7zGNfQYizuIuP5uopUBLqAvXqBwzLc6CoSXTS7zfablrmBEXE1nacnH/hAEVPT2wOirKJhTKv9oULD349Zs4p78IbiwadS31DLYt2xZhBga6BF9mcS6z55qlU5gq0ABwN1res2WPvv5D9CRqiUGmA6SzhuxDytf9OHMZY2f2NoATYKOGA0xb2prfzurKTtj7VHTgpHba2XIF3VSMeBnTfWq+HXSPlixxnvIZMoqWnP7Hpho+9XmRfkymSnAgMBAAGjggMSMIIDDjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRTKt4QNlzmI7k+qqKWXBGPv0eDuTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMG4GA1UdEQRnMGWgGAYFYEwBAwKgDwwNRnVsYW5vIGRlIFRhbKAZBgVgTAEDA6AQDA4xNTExNDM2NjAwMDI0MKAWBgVgTAEDBKANDAs1MzEzMjI2MjA3MqAWBgVgTAEDB6ANDAs4ODM1Njc0MzUxMjAOBgNVHQ8BAf8EBAMCBsAwggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQDSfvJXMrVW9r0bfcq20k+Ae/XkwfTwKai7T1fom5LrXchYk9adk3TUP87PwLpLdvxkMZQM2vqbGRdYFytlvqffnpXANh14MBuIakI/dSKECurkolCCn0ZtPG83JL7qzyN/+pWAH3qmhTSAMvIz5/D+4H0kX9fha9v4MmKOU7LNud7rHMnUoSX8W8h3hGx6Hemk3ncG3HAllK2PI+E+pXIDROQV5D00QGCOHLnu9itRVrE+AWDCjSHAyJQtKX/U+DBzfv6+Ih2SsIyOg34FLBR/BRIDlH72ckC5XTUb9Zbwsnqx0Ki0Zt2/uxy3oVkJeXylgTF5si+EHvVWk4h8ulN3"],"n":"rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw","e":"AQAB","kid":"hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/4a7250ec-eac5-5d8f-b7eb-dc0e8e880203/hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4.pem","x5t#256":"hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4"}]}
2021-12-16 22:36:39
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw","e":"AQAB","kid":"hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/4a7250ec-eac5-5d8f-b7eb-dc0e8e880203/hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4.pem","x5t#256":"hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4"}]}
2021-12-16 22:36:39 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "rYHtxD8mnBRLaoaqt_sr7h2Pu7cl7aDwfTb_Uwjl8MWJfMenG9Q4sURMbJdUN0ssbBKh02BG2lebeTgYb9l6rah-2hGu8xjX0GIs7iLj-bqKVAS6gL16gcMy3OgqEl00u832m5a5gRFxNZ2nJx_4QBFT09sDoqyiYUyr_aFCw9-PWbOKe_CG4sGnUt9Qy2LdsWYQYGugRfZnEus-eapVOYKtAAcDda3rNlj77-Q_QkaolBpgOks4bsQ8rX_ThzGWNn9jaAE2CjhgNMW9qa387qyk7Y-1R04KR22tlyBd1UjHgZ031qvh10j5YscZ7yGTKKlpz-x6YaPvV5kX5Mpkpw",
      "e": "AQAB",
      "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/4a7250ec-eac5-5d8f-b7eb-dc0e8e880203/hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4.pem",
      "x5t#256": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4"
    }
  ]
}
2021-12-16 22:36:39 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.eyJkYXRhIjp7ImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI2OTk0NDk5MjYwNyIsInJlbCI6IkNQRiJ9fSwiY3JlZGl0b3IiOnsicGVyc29uVHlwZSI6IlBFU1NPQV9OQVRVUkFMIiwiY3BmQ25waiI6Ijk1ODcxNzUxNjYwIiwibmFtZSI6IkpPQU5OQSBMSUxMSUEifSwicGF5bWVudCI6eyJ0eXBlIjoiUElYIiwiZGF0ZSI6IjIwMjEtMTItMTYiLCJjdXJyZW5jeSI6IkJSTCIsImFtb3VudCI6IjUwLjc1IiwiaWJnZVRvd25Db2RlIjoiMTIzNDU2NyIsImRldGFpbHMiOnsibG9jYWxJbnN0cnVtZW50IjoiRElDVCIsInByb3h5IjoiKzU1NjE5OTk5OTExMTEiLCJjcmVkaXRvckFjY291bnQiOnsiaXNwYiI6Ijk5OTk5MDA4IiwiaXNzdWVyIjoiMTExMSIsIm51bWJlciI6IjExMTExMSIsImFjY291bnRUeXBlIjoiQ0FDQyJ9fX19LCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvYm9jb21CQk1DZXJ0aWZpY2F0aW9uL3BheW1lbnRzL3YxL2NvbnNlbnRzIiwiaXNzIjoiNGE3MjUwZWMtZWFjNS01ZDhmLWI3ZWItZGMwZThlODgwMjAzIiwianRpIjoiODc1NTEzYjgtNmRjZC00YzgwLTg0OTUtNTdlMmQyYTY5ODJlIiwiY2xpZW50X2lkIjoiNTdlODllMWQtOWJkMy00ZmZhLWI4NDQtNzNkNGJkZTZmY2UyIiwiaWF0IjoxNjM5Njk0MTk4LCJleHAiOjE2Mzk2OTQ0OTgsIm5iZiI6MTYzOTY5NDE5OH0.LtxbMnIeBPEo4T8GiflO5x-3bcirCOShylQO_lzZvaHWF_1rB3VsDZm3FzgllSjOSylrq2gQDWbGQmth_kPLZHVGCqzR6SptlyVMN9A8Hnly38EkoqhtMYoVg19xCdsr8hXsZJQ7yOYrr3wyT1_yaBg3ObrMPSUrrtiaCzQ0cQqgJplevlvBzAei7H_Oj9u95WsnCmkR7KuzJTQ2a_wTVgTqtMyXBKbjpVbjNGl_JwwfgHa7EEFPWs-wEAX2QXnr_VPxFLAWiZKxdZSpuvtUy00uT058uYhBNcK8qTIP3xgWp9AMs2A_L0CQfyEHwWdWPtlbgjuvW3Uiy-VjavAg8A
2021-12-16 22:36:39 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
83d25982-53b8-49fd-b7bb-6a18cdb2d975
2021-12-16 22:36:39 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "83d25982-53b8-49fd-b7bb-6a18cdb2d975"
}
consentId
urn:conformance:oidf:bStXtErR80
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:bStXtErR80",
    "creationDateTime": "2021-12-16T22:36:39Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-16T22:36:39Z",
    "expirationDateTime": "2021-12-17T00:36:39Z",
    "transactionFromDateTime": "2021-12-16T22:31:39Z",
    "transactionToDateTime": "2021-12-17T00:36:39Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bocomBBMCertificationpayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2021-12-16T22:36:39Z"
    },
    "creditor": {
      "name": "JOANNA LILLIA",
      "cpfCnpj": "95871751660",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "69944992607",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-12-16",
      "amount": "50.75",
      "currency": "BRL",
      "details": {
        "proxy": "+5561999991111",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "111111",
          "accountType": "CACC",
          "ispb": "99999008",
          "issuer": "1111"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "1234567"
    }
  },
  "aud": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "iat": 1639694199,
  "jti": "ecccdce0-ef99-4b91-a105-99fbb9093281",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2021-12-16 22:36:39 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.LdnQp6kBQrNBbvzMxK4Coxh7ngAynlO_zhLW1_CNqK-kcVO0QDAXOS_82h-1g13f9o8NdFrR9In1TmwZdYk5Hw99x54wwWVwvvU6_rc2my9GN75kIDhR33KlbZ2hXVce8gyRZ-C5J-Hv8hCjKGmotRtsIn4B7kemyftfjqWooZAJ9GetjvZN7-MUnK72IQfH5DL46wDY8u0rW__3CofFc-40nCSA3noP3r071b-dCq2y_Khz11Dm7tGCs9-YnIdLTOAVYOa9Pxeraa52ZGLfU9Q3NOt2GQ2_85-nlMTCpzzoCHeNBXtHd74KlqDjIHc_xvpxt_xVB-0zWjlVA7t9Wg
2021-12-16 22:36:39
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 22:36:39 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "83d25982-53b8-49fd-b7bb-6a18cdb2d975"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJhdWQiOiI0YTcyNTBlYy1lYWM1LTVkOGYtYjdlYi1kYzBlOGU4ODAyMDMiLCJkYXRhIjp7ImNvbnNlbnRJZCI6InVybjpjb25mb3JtYW5jZTpvaWRmOmJTdFh0RXJSODAiLCJleHBpcmF0aW9uRGF0ZVRpbWUiOiIyMDIxLTEyLTE3VDAwOjM2OjM5WiIsInRyYW5zYWN0aW9uRnJvbURhdGVUaW1lIjoiMjAyMS0xMi0xNlQyMjozMTozOVoiLCJ0cmFuc2FjdGlvblRvRGF0ZVRpbWUiOiIyMDIxLTEyLTE3VDAwOjM2OjM5WiIsIm1ldGEiOnsidG90YWxSZWNvcmRzIjoxLCJyZXF1ZXN0RGF0ZVRpbWUiOiIyMDIxLTEyLTE2VDIyOjM2OjM5WiIsInRvdGFsUGFnZXMiOjF9LCJzdGF0dXNVcGRhdGVEYXRlVGltZSI6IjIwMjEtMTItMTZUMjI6MzY6MzlaIiwibG9nZ2VkVXNlciI6eyJkb2N1bWVudCI6eyJpZGVudGlmaWNhdGlvbiI6IjY5OTQ0OTkyNjA3IiwicmVsIjoiQ1BGIn19LCJsaW5rcyI6eyJzZWxmIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvbnBheW1lbnRzXC92MVwvY29uc2VudHMifSwiY3JlZGl0b3IiOnsibmFtZSI6IkpPQU5OQSBMSUxMSUEiLCJjcGZDbnBqIjoiOTU4NzE3NTE2NjAiLCJwZXJzb25UeXBlIjoiUEVTU09BX05BVFVSQUwifSwicGF5bWVudCI6eyJkYXRlIjoiMjAyMS0xMi0xNiIsImFtb3VudCI6IjUwLjc1IiwiY3VycmVuY3kiOiJCUkwiLCJkZXRhaWxzIjp7InByb3h5IjoiKzU1NjE5OTk5OTExMTEiLCJsb2NhbEluc3RydW1lbnQiOiJESUNUIiwiY3JlZGl0b3JBY2NvdW50Ijp7Im51bWJlciI6IjExMTExMSIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiI5OTk5OTAwOCIsImlzc3VlciI6IjExMTEifX0sInR5cGUiOiJQSVgiLCJpYmdlVG93bkNvZGUiOiIxMjM0NTY3In0sImNyZWF0aW9uRGF0ZVRpbWUiOiIyMDIxLTEyLTE2VDIyOjM2OjM5WiIsInN0YXR1cyI6IkFXQUlUSU5HX0FVVEhPUklTQVRJT04ifSwiaXNzIjoiNzRlOTI5ZDktMzNiNi00ZDg1LThiYTctYzE0NmM4NjdhODE3IiwiaWF0IjoxNjM5Njk0MTk5LCJqdGkiOiJlY2NjZGNlMC1lZjk5LTRiOTEtYTEwNS05OWZiYjkwOTMyODEifQ.LdnQp6kBQrNBbvzMxK4Coxh7ngAynlO_zhLW1_CNqK-kcVO0QDAXOS_82h-1g13f9o8NdFrR9In1TmwZdYk5Hw99x54wwWVwvvU6_rc2my9GN75kIDhR33KlbZ2hXVce8gyRZ-C5J-Hv8hCjKGmotRtsIn4B7kemyftfjqWooZAJ9GetjvZN7-MUnK72IQfH5DL46wDY8u0rW__3CofFc-40nCSA3noP3r071b-dCq2y_Khz11Dm7tGCs9-YnIdLTOAVYOa9Pxeraa52ZGLfU9Q3NOt2GQ2_85-nlMTCpzzoCHeNBXtHd74KlqDjIHc_xvpxt_xVB-0zWjlVA7t9Wg
outgoing_path
payments/v1/consents
2021-12-16 22:36:39 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1932",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/par
incoming_body_form_params
{
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.TCaxbJAwWxGLjFK8cuMpuIWQPamD5czYmxWbY4ZwXcZiTOhfNzdNl6CGGhMF13sMeijj7EKKBpw0JD9vWCfuw1p1af0UPYh2uULVm86UqkTWb7qYl5XV9ArNDP3xzUq6aU7kVeoMFrs1UtduXmJQ8Q-zw1P2nRq6ma2177y3gixEJ-HJNsN8-SGGUTKpbgfpep7YTeqdFE9vDYFLr9_rx_rx4VknOtwzgbzSRAG5DOk2qqul98WazpgfwLtt6RnImLLB08DvKmtLeIrPJICp33RsPAKDjv77_Jfd2749yPEmBBfKGn74yKMBdCzzfsWkuixQCIbGhklc5UV7kJYiUg"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
client_id=57e89e1d-9bd3-4ffa-b844-73d4bde6fce2&request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.TCaxbJAwWxGLjFK8cuMpuIWQPamD5czYmxWbY4ZwXcZiTOhfNzdNl6CGGhMF13sMeijj7EKKBpw0JD9vWCfuw1p1af0UPYh2uULVm86UqkTWb7qYl5XV9ArNDP3xzUq6aU7kVeoMFrs1UtduXmJQ8Q-zw1P2nRq6ma2177y3gixEJ-HJNsN8-SGGUTKpbgfpep7YTeqdFE9vDYFLr9_rx_rx4VknOtwzgbzSRAG5DOk2qqul98WazpgfwLtt6RnImLLB08DvKmtLeIrPJICp33RsPAKDjv77_Jfd2749yPEmBBfKGn74yKMBdCzzfsWkuixQCIbGhklc5UV7kJYiUg
2021-12-16 22:36:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2021-12-16 22:36:39 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:39 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:39 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5
NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV
BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE
AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV
BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv
bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk
LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N
85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm
zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8
ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr
kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf
gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud
EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY
MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF
BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu
b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku
b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm
bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/
BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ
BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp
ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM
aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp
bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy
dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl
cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp
Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG
AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls
Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK
EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK
gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1
485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G
bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr
bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0
qlNyUA==
-----END CERTIFICATE-----
2021-12-16 22:36:39 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-16 22:36:39 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.TCaxbJAwWxGLjFK8cuMpuIWQPamD5czYmxWbY4ZwXcZiTOhfNzdNl6CGGhMF13sMeijj7EKKBpw0JD9vWCfuw1p1af0UPYh2uULVm86UqkTWb7qYl5XV9ArNDP3xzUq6aU7kVeoMFrs1UtduXmJQ8Q-zw1P2nRq6ma2177y3gixEJ-HJNsN8-SGGUTKpbgfpep7YTeqdFE9vDYFLr9_rx_rx4VknOtwzgbzSRAG5DOk2qqul98WazpgfwLtt6RnImLLB08DvKmtLeIrPJICp33RsPAKDjv77_Jfd2749yPEmBBfKGn74yKMBdCzzfsWkuixQCIbGhklc5UV7kJYiUg",
  "header": {
    "kid": "hBQ-6JI-It5fCyWg-TsvuV1go6ljwq2rNGpYJ3XI0d4",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
    "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
    "aud": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
    "nbf": 1639694199,
    "scope": "openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80",
    "claims": {
      "user_info": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        },
        "cpf": {
          "values": [
            "69944992607"
          ],
          "essential": true
        },
        "cnpj": {
          "values": [
            "37986886000102"
          ],
          "essential": true
        }
      },
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        },
        "cpf": {
          "values": [
            "69944992607"
          ],
          "essential": true
        },
        "cnpj": {
          "values": [
            "37986886000102"
          ],
          "essential": true
        }
      }
    },
    "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
    "state": "a4c97b79-6579-4995-8f9b-a9df09db0c84",
    "exp": 1639694499,
    "iat": 1639694199,
    "code_challenge": "JwFPMGhdxX1miupPxa5mka8WjPy0MBHbDCEIyFPRzyM",
    "jti": "tix0QvgxZIADaYNyXKwjGoraKEOsqfcAhahPlKpHhv4"
  }
}
2021-12-16 22:36:39 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2021-12-16 22:36:39 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-16 22:36:39 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-16 22:36:39 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2021-12-16 22:36:39 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 16, 2021, 10:41:39 PM"
2021-12-16 22:36:39 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 16, 2021, 10:36:39 PM"
now
"Dec 16, 2021, 10:36:39 PM"
2021-12-16 22:36:39
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-16 22:36:39 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-16 22:36:39 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-16 22:36:39 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-16 22:36:39 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-16 22:36:39 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.TCaxbJAwWxGLjFK8cuMpuIWQPamD5czYmxWbY4ZwXcZiTOhfNzdNl6CGGhMF13sMeijj7EKKBpw0JD9vWCfuw1p1af0UPYh2uULVm86UqkTWb7qYl5XV9ArNDP3xzUq6aU7kVeoMFrs1UtduXmJQ8Q-zw1P2nRq6ma2177y3gixEJ-HJNsN8-SGGUTKpbgfpep7YTeqdFE9vDYFLr9_rx_rx4VknOtwzgbzSRAG5DOk2qqul98WazpgfwLtt6RnImLLB08DvKmtLeIrPJICp33RsPAKDjv77_Jfd2749yPEmBBfKGn74yKMBdCzzfsWkuixQCIbGhklc5UV7kJYiUg
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 21903297026375489381919206760638974053792285301032548320106194636539738511125018752577703930962774125202228967116978082410710298377167524550181250362468662146039152358572018075650313356679787833248572751377169815207089313405589587719761878169490486493237416612117223320914612442964016254346126671249867157085660320204900604725612052596918276175983206521598265106792049227407987583618628229151652028925258936131728843695936879818240970716566015696101353479592264708294516762087114348271115235665215085569973323033557836976149800166828769143379983254202316382700699865111437610156515325819505272035485392143849402033319
  public exponent: 65537
2021-12-16 22:36:39 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback
2021-12-16 22:36:39 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
JwFPMGhdxX1miupPxa5mka8WjPy0MBHbDCEIyFPRzyM
2021-12-16 22:36:39 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:95f32fe0-38a0-41ff-a473-4b1398eb19e2
expires_in
600
2021-12-16 22:36:39 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:95f32fe0-38a0-41ff-a473-4b1398eb19e2",
  "expires_in": 600
}
outgoing_path
par
2021-12-16 22:36:40 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "x-customer-user-agent": "Sensedia TPP",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bocomBBMCertification/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "request_uri": "urn:ietf:params:oauth:request_uri:95f32fe0-38a0-41ff-a473-4b1398eb19e2",
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2"
}
incoming_body
2021-12-16 22:36:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-16 22:36:40 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2021-12-16 22:36:40 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-16 22:36:40 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "iss": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "response_type": "code id_token",
  "code_challenge_method": "S256",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "aud": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "nbf": 1639694199,
  "scope": "openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80",
  "claims": {
    "user_info": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      },
      "cpf": {
        "values": [
          "69944992607"
        ],
        "essential": true
      },
      "cnpj": {
        "values": [
          "37986886000102"
        ],
        "essential": true
      }
    },
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      },
      "cpf": {
        "values": [
          "69944992607"
        ],
        "essential": true
      },
      "cnpj": {
        "values": [
          "37986886000102"
        ],
        "essential": true
      }
    }
  },
  "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
  "state": "a4c97b79-6579-4995-8f9b-a9df09db0c84",
  "exp": 1639694499,
  "iat": 1639694199,
  "code_challenge": "JwFPMGhdxX1miupPxa5mka8WjPy0MBHbDCEIyFPRzyM",
  "jti": "tix0QvgxZIADaYNyXKwjGoraKEOsqfcAhahPlKpHhv4"
}
2021-12-16 22:36:40 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2021-12-16 22:36:40 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80
2021-12-16 22:36:40 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance:oidf:bStXtErR80"
]
expected
consent:urn:conformance:oidf:bStXtErR80
2021-12-16 22:36:40 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance:oidf:bStXtErR80"
]
2021-12-16 22:36:40 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-16 22:36:40 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "payments",
  "consents",
  "accounts",
  "consent:urn:conformance:oidf:bStXtErR80"
]
expected
openid
2021-12-16 22:36:40 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
2021-12-16 22:36:40 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb
2021-12-16 22:36:40 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
e99e102d-a75b-4d2a-b26c-5ef3a8e70931
2021-12-16 22:36:40 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
F9VQI3eQU6aLFrnSrpZCnA
2021-12-16 22:36:40 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
gmZOgQXjxBI3VvWX5uBuow
2021-12-16 22:36:40 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/bocomBBMCertification/
sub
user-subject-1234531
aud
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
nonce
e99e102d-a75b-4d2a-b26c-5ef3a8e70931
iat
1639694200
exp
1639694500
2021-12-16 22:36:40 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694200,
  "exp": 1639694500,
  "cpf": "69944992607"
}
2021-12-16 22:36:40 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
F9VQI3eQU6aLFrnSrpZCnA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694200,
  "exp": 1639694500,
  "cpf": "69944992607",
  "c_hash": "F9VQI3eQU6aLFrnSrpZCnA"
}
2021-12-16 22:36:40 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
gmZOgQXjxBI3VvWX5uBuow
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694200,
  "exp": 1639694500,
  "cpf": "69944992607",
  "c_hash": "F9VQI3eQU6aLFrnSrpZCnA",
  "s_hash": "gmZOgQXjxBI3VvWX5uBuow"
}
2021-12-16 22:36:40 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-16 22:36:40 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694200,
  "exp": 1639694500,
  "cpf": "69944992607",
  "c_hash": "F9VQI3eQU6aLFrnSrpZCnA",
  "s_hash": "gmZOgQXjxBI3VvWX5uBuow",
  "acr": "urn:brasil:openbanking:loa3"
}
2021-12-16 22:36:40 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjU3ZTg5ZTFkLTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMiIsImNfaGFzaCI6IkY5VlFJM2VRVTZhTEZyblNycFpDbkEiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiLCJzX2hhc2giOiJnbVpPZ1FYanhCSTNWdldYNXVCdW93IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDAsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAwfQ.kdRwAf6V4dnlNoOpNxHD4a9s7_cjrF42ndFQBgclotNG4XOI8nUIJ-h8JzEfE3R2ImmvC_lNTX15vak9vdYkvQuIfIbC8Yf2T5sKCgVvFlBr-HTztLdFpcOZcIJnW8E9C7ZfY2BsK-RRqipKmDyW8NRazJc6yUpigGVCIp39Pe4FyDgHAqDcz86YAK8ZziaFoxvM-JEn7mmjwuFbZ6K7ooN4ARf1hnyHeGsQXRYUcM2B_eiGIPhtCgC5eZRnQzeGT5aHCSAKEL3404h8nqQAwR-p5j4NNJ05K_-91fiCEdNzdyNsGnhSCxpYe69pD3ns45UqdBQADKcI9pUEcXYKEA
2021-12-16 22:36:40 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:bStXtErR80",
    "creationDateTime": "2021-12-16T22:36:39Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-16T22:36:40Z",
    "expirationDateTime": "2021-12-17T00:36:39Z",
    "transactionFromDateTime": "2021-12-16T22:31:39Z",
    "transactionToDateTime": "2021-12-17T00:36:39Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bocomBBMCertificationpayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2021-12-16T22:36:39Z"
    },
    "creditor": {
      "name": "JOANNA LILLIA",
      "cpfCnpj": "95871751660",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "69944992607",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-12-16",
      "amount": "50.75",
      "currency": "BRL",
      "details": {
        "proxy": "+5561999991111",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "111111",
          "accountType": "CACC",
          "ispb": "99999008",
          "issuer": "1111"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "1234567"
    }
  },
  "aud": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "iat": 1639694199,
  "jti": "ecccdce0-ef99-4b91-a105-99fbb9093281",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2021-12-16 22:36:40 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
  "state": "a4c97b79-6579-4995-8f9b-a9df09db0c84"
}
2021-12-16 22:36:40 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
  "state": "a4c97b79-6579-4995-8f9b-a9df09db0c84",
  "code": "LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb"
}
2021-12-16 22:36:40 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
  "state": "a4c97b79-6579-4995-8f9b-a9df09db0c84",
  "code": "LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjU3ZTg5ZTFkLTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMiIsImNfaGFzaCI6IkY5VlFJM2VRVTZhTEZyblNycFpDbkEiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiLCJzX2hhc2giOiJnbVpPZ1FYanhCSTNWdldYNXVCdW93IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDAsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAwfQ.kdRwAf6V4dnlNoOpNxHD4a9s7_cjrF42ndFQBgclotNG4XOI8nUIJ-h8JzEfE3R2ImmvC_lNTX15vak9vdYkvQuIfIbC8Yf2T5sKCgVvFlBr-HTztLdFpcOZcIJnW8E9C7ZfY2BsK-RRqipKmDyW8NRazJc6yUpigGVCIp39Pe4FyDgHAqDcz86YAK8ZziaFoxvM-JEn7mmjwuFbZ6K7ooN4ARf1hnyHeGsQXRYUcM2B_eiGIPhtCgC5eZRnQzeGT5aHCSAKEL3404h8nqQAwR-p5j4NNJ05K_-91fiCEdNzdyNsGnhSCxpYe69pD3ns45UqdBQADKcI9pUEcXYKEA"
}
2021-12-16 22:36:40
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback#state=a4c97b79-6579-4995-8f9b-a9df09db0c84&code=LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjU3ZTg5ZTFkLTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMiIsImNfaGFzaCI6IkY5VlFJM2VRVTZhTEZyblNycFpDbkEiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiLCJzX2hhc2giOiJnbVpPZ1FYanhCSTNWdldYNXVCdW93IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDAsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAwfQ.kdRwAf6V4dnlNoOpNxHD4a9s7_cjrF42ndFQBgclotNG4XOI8nUIJ-h8JzEfE3R2ImmvC_lNTX15vak9vdYkvQuIfIbC8Yf2T5sKCgVvFlBr-HTztLdFpcOZcIJnW8E9C7ZfY2BsK-RRqipKmDyW8NRazJc6yUpigGVCIp39Pe4FyDgHAqDcz86YAK8ZziaFoxvM-JEn7mmjwuFbZ6K7ooN4ARf1hnyHeGsQXRYUcM2B_eiGIPhtCgC5eZRnQzeGT5aHCSAKEL3404h8nqQAwR-p5j4NNJ05K_-91fiCEdNzdyNsGnhSCxpYe69pD3ns45UqdBQADKcI9pUEcXYKEA
2021-12-16 22:36:40 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback#state=a4c97b79-6579-4995-8f9b-a9df09db0c84&code=LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IjU3ZTg5ZTFkLTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMiIsImNfaGFzaCI6IkY5VlFJM2VRVTZhTEZyblNycFpDbkEiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiLCJzX2hhc2giOiJnbVpPZ1FYanhCSTNWdldYNXVCdW93IiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDAsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAwfQ.kdRwAf6V4dnlNoOpNxHD4a9s7_cjrF42ndFQBgclotNG4XOI8nUIJ-h8JzEfE3R2ImmvC_lNTX15vak9vdYkvQuIfIbC8Yf2T5sKCgVvFlBr-HTztLdFpcOZcIJnW8E9C7ZfY2BsK-RRqipKmDyW8NRazJc6yUpigGVCIp39Pe4FyDgHAqDcz86YAK8ZziaFoxvM-JEn7mmjwuFbZ6K7ooN4ARf1hnyHeGsQXRYUcM2B_eiGIPhtCgC5eZRnQzeGT5aHCSAKEL3404h8nqQAwR-p5j4NNJ05K_-91fiCEdNzdyNsGnhSCxpYe69pD3ns45UqdBQADKcI9pUEcXYKEA]
outgoing_path
authorize
2021-12-16 22:36:40 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "x-customer-user-agent": "Sensedia TPP",
  "x-fapi-auth-date": "Thu, 16 Dec 2021 22:36:40 GMT",
  "x-fapi-interaction-id": "dadd8491-0d2d-4de3-b1de-99fa2c83f910",
  "authorization": "Bearer RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u",
  "accept": "application/jwt",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/payments/v1/consents/urn:conformance:oidf:bStXtErR80
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 22:36:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Get consent endpoint
2021-12-16 22:36:40 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:40 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:40 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 22:36:40 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 22:36:40 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
2021-12-16 22:36:40 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
RAXILj6lWsuIuyrKEDA0qBKLZKFQo1BvbcXOvaaj0G92EjfO8u
2021-12-16 22:36:40 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Thu, 16 Dec 2021 22:36:40 GMT
2021-12-16 22:36:40 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 22:36:40 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
dadd8491-0d2d-4de3-b1de-99fa2c83f910
2021-12-16 22:36:40 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
dadd8491-0d2d-4de3-b1de-99fa2c83f910
2021-12-16 22:36:40 SUCCESS
FAPIBrazilGenerateGetPaymentConsentResponse
Created consent response
response
{
  "data": {
    "consentId": "urn:conformance:oidf:bStXtErR80",
    "creationDateTime": "2021-12-16T22:36:39Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-16T22:36:40Z",
    "expirationDateTime": "2021-12-17T00:36:39Z",
    "transactionFromDateTime": "2021-12-16T22:31:39Z",
    "transactionToDateTime": "2021-12-17T00:36:39Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bocomBBMCertificationpayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2021-12-16T22:36:39Z"
    },
    "creditor": {
      "name": "JOANNA LILLIA",
      "cpfCnpj": "95871751660",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "69944992607",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-12-16",
      "amount": "50.75",
      "currency": "BRL",
      "details": {
        "proxy": "+5561999991111",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "111111",
          "accountType": "CACC",
          "ispb": "99999008",
          "issuer": "1111"
        }
      },
      "type": "PIX",
      "ibgeTownCode": "1234567"
    }
  },
  "aud": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817",
  "iat": 1639694200,
  "jti": "575a8f58-59a0-4ecf-8b69-645c477407d0",
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T22:36:40Z"
  }
}
2021-12-16 22:36:40 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.g4gFUpaX3vK21t1ZvBJq5SaMmGFDxIi830gSze8fZUsJYpQsVHmsBqTOSIjrOTJCuvbdd1tjeZKaVXu73grTM_D9Ao4LfCCf_yoW5M8x4jlfkffQtx4DFwAX9TP91ve7ngA8rZGeh-q-hY29j8iydvnJ926wl-L1a1KL0bs3zn0e5aaqaBqZ0TGd0-xoOJOw39y9w6CaBBfM117iIyFPy6G2ctYpwuYy2F2eklsoTNF7CSteBbUXUU5igCUO8PAPlpVTRffzK7PoVTwInjs9Mlg42ZPzENKnnP1UgeefE-fQGz4Bn-BN4-z3cp_xu-W5XBncEWzeMGznSJk-SyO0QQ
2021-12-16 22:36:40
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 22:36:40 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "83d25982-53b8-49fd-b7bb-6a18cdb2d975"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.g4gFUpaX3vK21t1ZvBJq5SaMmGFDxIi830gSze8fZUsJYpQsVHmsBqTOSIjrOTJCuvbdd1tjeZKaVXu73grTM_D9Ao4LfCCf_yoW5M8x4jlfkffQtx4DFwAX9TP91ve7ngA8rZGeh-q-hY29j8iydvnJ926wl-L1a1KL0bs3zn0e5aaqaBqZ0TGd0-xoOJOw39y9w6CaBBfM117iIyFPy6G2ctYpwuYy2F2eklsoTNF7CSteBbUXUU5igCUO8PAPlpVTRffzK7PoVTwInjs9Mlg42ZPzENKnnP1UgeefE-fQGz4Bn-BN4-z3cp_xu-W5XBncEWzeMGznSJk-SyO0QQ
outgoing_path
payments/v1/consents/urn:conformance:oidf:bStXtErR80
2021-12-16 22:36:41 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/bocomBBMCertification/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 22:36:41 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 22:36:41 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-16 22:36:42 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "279",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb",
  "redirect_uri": "https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback",
  "code_verifier": "g9-L5-bggz4oKjr4gZsjK18x8F-KS1b5VQiN_4XRahQ",
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb&redirect_uri=https%3A%2F%2Fauth-sandbox.hom.bocombbm.com.br%2Fopen-banking%2Fredirect%2Fv1%2Fbank-callback&code_verifier=g9-L5-bggz4oKjr4gZsjK18x8F-KS1b5VQiN_4XRahQ&client_id=57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
2021-12-16 22:36:42 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 22:36:42 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:42 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:42 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 22:36:42 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-16 22:36:42 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
LWHc1GvSKgP6SihYtW0aQi7dnE9BgdPb
2021-12-16 22:36:42 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://auth-sandbox.hom.bocombbm.com.br/open-banking/redirect/v1/bank-callback
2021-12-16 22:36:42 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
g9-L5-bggz4oKjr4gZsjK18x8F-KS1b5VQiN_4XRahQ
code_challenge
JwFPMGhdxX1miupPxa5mka8WjPy0MBHbDCEIyFPRzyM
2021-12-16 22:36:42 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl
2021-12-16 22:36:42 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
iq7X49nDm0OoR33OjjJIdQ
2021-12-16 22:36:42
CreateRefreshToken
Created refresh token
refresh_token
oOxAxWZvyRrOBqKBClCnfRJtpSSpjIodEXyUeXoRbviotGiisf8563676190$|^|;
2021-12-16 22:36:42 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/bocomBBMCertification/
sub
user-subject-1234531
aud
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
nonce
e99e102d-a75b-4d2a-b26c-5ef3a8e70931
iat
1639694202
exp
1639694502
2021-12-16 22:36:42 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694202,
  "exp": 1639694502,
  "cpf": "69944992607"
}
2021-12-16 22:36:42 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
iq7X49nDm0OoR33OjjJIdQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694202,
  "exp": 1639694502,
  "cpf": "69944992607",
  "at_hash": "iq7X49nDm0OoR33OjjJIdQ"
}
2021-12-16 22:36:42 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/bocomBBMCertification/",
  "sub": "user-subject-1234531",
  "aud": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2",
  "nonce": "e99e102d-a75b-4d2a-b26c-5ef3a8e70931",
  "iat": 1639694202,
  "exp": 1639694502,
  "cpf": "69944992607",
  "at_hash": "iq7X49nDm0OoR33OjjJIdQ",
  "acr": "urn:brasil:openbanking:loa3"
}
2021-12-16 22:36:42 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiaXE3WDQ5bkRtME9vUjMzT2pqSklkUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiNTdlODllMWQtOWJkMy00ZmZhLWI4NDQtNzNkNGJkZTZmY2UyIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDIsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAyfQ.Xkn5n8MT0Dfrp4XjyyuoFJ8yMvXijOWBCLCebfw2ICcwnpJnaSXf1LS0z6K7ZNJyCyFnOQo3xG66-1_68N-NekjBDQ58OzdS1cZwHu8ce63F1aBOEKZqQRjsTz1bBRFCcbHz3ukj28ZC9EDqSH3xz70ivNCKtWP9x9yaQa4iUHtcmXVDxG3QpQndZTGViUkDY_kP51Kn0ID7ZPHv06fEWvXUm0kcgBhsgAWTD5N88-5qOhM9mTrT257YKF59wU7A04rIKqnY9CcLwAHEgzfFO-WnWCogay23kwUpvDfSx5Owj0pcc7aNCeoKhDu3ACd9hyMDM1TLNX7LV2MfcX5xpw
2021-12-16 22:36:42 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiaXE3WDQ5bkRtME9vUjMzT2pqSklkUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiNTdlODllMWQtOWJkMy00ZmZhLWI4NDQtNzNkNGJkZTZmY2UyIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDIsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAyfQ.Xkn5n8MT0Dfrp4XjyyuoFJ8yMvXijOWBCLCebfw2ICcwnpJnaSXf1LS0z6K7ZNJyCyFnOQo3xG66-1_68N-NekjBDQ58OzdS1cZwHu8ce63F1aBOEKZqQRjsTz1bBRFCcbHz3ukj28ZC9EDqSH3xz70ivNCKtWP9x9yaQa4iUHtcmXVDxG3QpQndZTGViUkDY_kP51Kn0ID7ZPHv06fEWvXUm0kcgBhsgAWTD5N88-5qOhM9mTrT257YKF59wU7A04rIKqnY9CcLwAHEgzfFO-WnWCogay23kwUpvDfSx5Owj0pcc7aNCeoKhDu3ACd9hyMDM1TLNX7LV2MfcX5xpw
refresh_token
oOxAxWZvyRrOBqKBClCnfRJtpSSpjIodEXyUeXoRbviotGiisf8563676190$|^|;
scope
openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80 cb73795a-f29d-444e-9e49-a5312704de62
2021-12-16 22:36:42 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiaXE3WDQ5bkRtME9vUjMzT2pqSklkUSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiNTdlODllMWQtOWJkMy00ZmZhLWI4NDQtNzNkNGJkZTZmY2UyIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JvY29tQkJNQ2VydGlmaWNhdGlvblwvIiwiY3BmIjoiNjk5NDQ5OTI2MDciLCJleHAiOjE2Mzk2OTQ1MDIsIm5vbmNlIjoiZTk5ZTEwMmQtYTc1Yi00ZDJhLWIyNmMtNWVmM2E4ZTcwOTMxIiwiaWF0IjoxNjM5Njk0MjAyfQ.Xkn5n8MT0Dfrp4XjyyuoFJ8yMvXijOWBCLCebfw2ICcwnpJnaSXf1LS0z6K7ZNJyCyFnOQo3xG66-1_68N-NekjBDQ58OzdS1cZwHu8ce63F1aBOEKZqQRjsTz1bBRFCcbHz3ukj28ZC9EDqSH3xz70ivNCKtWP9x9yaQa4iUHtcmXVDxG3QpQndZTGViUkDY_kP51Kn0ID7ZPHv06fEWvXUm0kcgBhsgAWTD5N88-5qOhM9mTrT257YKF59wU7A04rIKqnY9CcLwAHEgzfFO-WnWCogay23kwUpvDfSx5Owj0pcc7aNCeoKhDu3ACd9hyMDM1TLNX7LV2MfcX5xpw",
  "refresh_token": "oOxAxWZvyRrOBqKBClCnfRJtpSSpjIodEXyUeXoRbviotGiisf8563676190$|^|;",
  "scope": "openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80 cb73795a-f29d-444e-9e49-a5312704de62"
}
outgoing_path
token
2021-12-16 22:36:42 INCOMING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Incoming HTTP request to test instance Ec3QnVlacUpQWlG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Sensedia TPP",
  "x-customer-user-agent": "Sensedia TPP",
  "x-fapi-auth-date": "Thu, 16 Dec 2021 22:36:42 GMT",
  "x-fapi-interaction-id": "64de791e-d35e-4128-b473-58e117d41e40",
  "authorization": "Bearer AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl",
  "accept": "application/jwt",
  "content-type": "application/jwt",
  "x-idempotency-key": "02f20774-f9d7-47c2-93b7-88300015a713",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1261",
  "connection": "close"
}
incoming_path
/test-mtls/a/bocomBBMCertification/payments/v1/pix/payments
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.NWp7bEBhE6l7E_23MTup9Xx-cCRc0-DlSGHwgmW942tIf2kxNvVmrAjSl_JEjrspMMtVm6uAOEx4g1RPUaVf8sFTT4W00YG2MiTYEy-e8H7CKbGr5TyVBsxD8KFsTpYr-vcrYLj4an-6JIN_jQch5UA5vB3g_rnP-0RaHsVp3Os7Bh7Kjsg9XbS4Xivl5ljSvVgtxftbAgvPcXVlLCb5O8p1h3qfbTlIKZUeGAg2lXdc4aop-dEcCFppDlfz0svGHLrPSgoCW40z2WHl3Pv-5ot6KuBSCBZ2J31llWiZZUzavZxVw2qYUZfBCxSh_AnKdyCO4Pb11uIX5h-lsfgmNQ
2021-12-16 22:36:42 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 22:36:42 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHIDCCBgigAwIBAgIUU4W9AbvcrMVwKWkLZF+F4TlrKFYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNDE5NDIwMFoXDTIyMDkxMzE5 NDIwMFowggEzMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRswGQYDVQQKExJCQ08gQk9DT00gQkJNIFMuQS4xLTArBgNV BAsTJDRhNzI1MGVjLWVhYzUtNWQ4Zi1iN2ViLWRjMGU4ZTg4MDIwMzEvMC0GA1UE AxMmbWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIxFzAVBgNV BAUTDjE1MTE0MzY2MDAwMjQwMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjETMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDU3ZTg5ZTFk LTliZDMtNGZmYS1iODQ0LTczZDRiZGU2ZmNlMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMNxTavaUC2/8hzAHpvj1POvklJBJ33AFdb0CXdEEpHyxg9N 85xgqhNhd9q4Ifhk/F9F3gSoJx7IvMTCrg4DBl/2uyYacWgNx5ANuvbOG5YXGBLm zaTTAWH/DkmZsoJ/vbPbUY+oHY8n1dCOXQLptzXv881uNvk7jFenJ53dMri/LqY8 ZIcDcphtYAF6Y+M1Ts/LRUdz+XjZy81QuFxUyWcsqGuikL3IPm/q8B8gYtFdlCLr kjW3Gu0v44YO5X5RfW70ICtmPvp9aBA4eo/WxmIhT2IQvPaZgddxyUsR8c8mlQsf gOvnd+GsJGnUU0h+eCPn0BtM9z83264dq4ydcdECAwEAAaOCAuowggLmMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFODKK1f/bb1bQceVMCpjF46hWpL/MB8GA1UdIwQY MBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEF BQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwu b3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2ku b3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwMQYDVR0RBCowKIIm bWF0bHMtYXV0aC1zYW5kYm94LmhvbS5ib2NvbWJibS5jb20uYnIwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQ BgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRp ZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBM aW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNp bmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2Vy dmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRl cyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNp Y2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsG AQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAM5Yy6R9XXuT897KK EkwZ+0Fn/R4Z7+dEIbLwtuf2TUAADU/EScwTtsbABkRUgRNv0bJtN/J99Fakf+SK gS9TutjyVBCl1aiZBBMf/HP+oZKbQBPQd5r6waaN5K4RRwEKDfA/tqLfsd7f5Rv1 485XPT9nH8+EVaMB1ckrSPj66vjUg7WY+VimLuDuD5WfG/Quzqn7/h/3s4GXwt1G bCY3aS41AZsd59k1au0baQXUUGoTHxQHCjMI1+F/XRIYpvAuEFXyQUQgpOPodHwr bn6Iq5EIaLN+rF3arG/F4oQsvp1AtIfFbNRk2uQlLjC/mvh9fEMcjutN2n/0aZn0 qlNyUA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nqlNyUA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3135313134333636303030323430,CN\u003dmatls-auth-sandbox.hom.bocombbm.com.br,OU\u003d4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O\u003dBCO BOCOM BBM S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "matls-auth-sandbox.hom.bocombbm.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 22:36:42 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 22:36:42 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Payment initiation endpoint
2021-12-16 22:36:42 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-16 22:36:42 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 22:36:42 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl
2021-12-16 22:36:42 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
AKdQD4g8a2eYCSKlpWpVRZvfLfuZXuMI3oAUxik7jOYv74FnDl
2021-12-16 22:36:42 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Thu, 16 Dec 2021 22:36:42 GMT
2021-12-16 22:36:42 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 22:36:42 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
64de791e-d35e-4128-b473-58e117d41e40
2021-12-16 22:36:42 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainPayments
'payments' was included in authorization request scopes
actual
openid payments consents accounts consent:urn:conformance:oidf:bStXtErR80
expected
payments
2021-12-16 22:36:42 SUCCESS
FAPIBrazilExtractPaymentInitiationRequest
Parsed payment initiation request
payment_initiation_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/payments/v1/pix/payments",
  "nbf": 1639694202,
  "data": {
    "proxy": "+5561999991111",
    "localInstrument": "DICT",
    "remittanceInformation": "qualquer uma",
    "creditorAccount": {
      "number": "111111",
      "accountType": "CACC",
      "ispb": "99999008",
      "issuer": "1111"
    },
    "cnpjInitiator": "37986886000102",
    "payment": {
      "amount": "50.75",
      "currency": "BRL"
    },
    "ibgeTownCode": "1234567"
  },
  "iss": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "exp": 1639694502,
  "iat": 1639694202,
  "jti": "45be52de-7825-42ed-b11b-4ab32f4a0e91",
  "client_id": "57e89e1d-9bd3-4ffa-b844-73d4bde6fce2"
}
2021-12-16 22:36:42 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJoQlEtNkpJLUl0NWZDeVdnLVRzdnVWMWdvNmxqd3Eyck5HcFlKM1hJMGQ0In0.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.NWp7bEBhE6l7E_23MTup9Xx-cCRc0-DlSGHwgmW942tIf2kxNvVmrAjSl_JEjrspMMtVm6uAOEx4g1RPUaVf8sFTT4W00YG2MiTYEy-e8H7CKbGr5TyVBsxD8KFsTpYr-vcrYLj4an-6JIN_jQch5UA5vB3g_rnP-0RaHsVp3Os7Bh7Kjsg9XbS4Xivl5ljSvVgtxftbAgvPcXVlLCb5O8p1h3qfbTlIKZUeGAg2lXdc4aop-dEcCFppDlfz0svGHLrPSgoCW40z2WHl3Pv-5ot6KuBSCBZ2J31llWiZZUzavZxVw2qYUZfBCxSh_AnKdyCO4Pb11uIX5h-lsfgmNQ
2021-12-16 22:36:42 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2021-12-16 22:36:42 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
02f20774-f9d7-47c2-93b7-88300015a713
2021-12-16 22:36:42 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/bocomBBMCertification/payments/v1/pix/payments
2021-12-16 22:36:42 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=57e89e1d-9bd3-4ffa-b844-73d4bde6fce2,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3135313134333636303030323430,CN=matls-auth-sandbox.hom.bocombbm.com.br,OU=4a7250ec-eac5-5d8f-b7eb-dc0e8e880203,O=BCO BOCOM BBM S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
4a7250ec-eac5-5d8f-b7eb-dc0e8e880203
brazil_software_id
57e89e1d-9bd3-4ffa-b844-73d4bde6fce2
2021-12-16 22:36:42 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestIssEqualsOrganizationId
iss claim in payment initiation request matches organizationId in client certificate
iss
4a7250ec-eac5-5d8f-b7eb-dc0e8e880203
2021-12-16 22:36:42 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestJtiIsUUIDv4
jti claim in payment initiation request is a UUIDv4
jti
45be52de-7825-42ed-b11b-4ab32f4a0e91
2021-12-16 22:36:42 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestIat
iat claim in payment initiation request is valid
iat
1639694202
2021-12-16 22:36:42 SUCCESS
FAPIBrazilGenerateNewPaymentInitiationResponse
Created payment initiation response
payment_initiation_response_headers
{
  "x-fapi-interaction-id": "64de791e-d35e-4128-b473-58e117d41e40"
}
payment_initiation_response
{
  "data": {
    "proxy": "+5561999991111",
    "localInstrument": "DICT",
    "remittanceInformation": "qualquer uma",
    "creditorAccount": {
      "number": "111111",
      "accountType": "CACC",
      "ispb": "99999008",
      "issuer": "1111"
    },
    "cnpjInitiator": "37986886000102",
    "payment": {
      "amount": "50.75",
      "currency": "BRL"
    },
    "ibgeTownCode": "1234567",
    "paymentId": "4548a694-5ff7-4e34-b0d9-60713373d015",
    "consentId": "urn:conformance:oidf:bStXtErR80",
    "creationDateTime": "2021-12-16T22:36:42Z",
    "statusUpdateDateTime": "2021-12-16T22:36:42Z",
    "status": "ACSP"
  },
  "links": {
    "self": "https://www.certification.openid.net/test/a/bocomBBMCertificationpayments/v1/pix/payments"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T22:36:42Z"
  },
  "aud": "4a7250ec-eac5-5d8f-b7eb-dc0e8e880203",
  "iat": 1639694202,
  "jti": "0aea9330-458a-4bc2-b067-427511f21e18",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2021-12-16 22:36:42 SUCCESS
FAPIBrazilSignPaymentInitiationResponse
Signed the payment initiation response
signed_payment_initiation_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.D5gb3EZjPBE38HqupozJtDUc5F4DI0y7543a04AG6MSyQI0Gi41IEqsF1d1tw79HsUw7EbEBJ9kAKSSd_i4doi2HoqdONEubpqNj4OLUGhfzpihGq4FGEfHVKuQnWJI6dmJwUL4C8xOs7Fi_xv8lkBRECmzENLZCDhM-O1ImHYRs5IQ6VsQTz531ZoSLpFoFTp8sWKEoR2ZWhTMcqTaERUNO17idFXMQ9pQC7UGemVI_9YwS6Cap9xk2J_9qE5tlrMcP3SqoESvzOd9fM5wyw36pOAQ0_30YfIXjmlMa3fi-0rEhgqXmgXq7AttrxRym_RvF84vwoN4ddD8R15AQmg
2021-12-16 22:36:42
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 22:36:42 OUTGOING
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Response to HTTP request to test instance Ec3QnVlacUpQWlG
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "64de791e-d35e-4128-b473-58e117d41e40"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.D5gb3EZjPBE38HqupozJtDUc5F4DI0y7543a04AG6MSyQI0Gi41IEqsF1d1tw79HsUw7EbEBJ9kAKSSd_i4doi2HoqdONEubpqNj4OLUGhfzpihGq4FGEfHVKuQnWJI6dmJwUL4C8xOs7Fi_xv8lkBRECmzENLZCDhM-O1ImHYRs5IQ6VsQTz531ZoSLpFoFTp8sWKEoR2ZWhTMcqTaERUNO17idFXMQ9pQC7UGemVI_9YwS6Cap9xk2J_9qE5tlrMcP3SqoESvzOd9fM5wyw36pOAQ0_30YfIXjmlMa3fi-0rEhgqXmgXq7AttrxRym_RvF84vwoN4ddD8R15AQmg
outgoing_path
payments/v1/pix/payments
2021-12-16 22:36:42 FINISHED
fapi1-advanced-final-client-test-invalid-scope-in-token-endpoint-response
Test has run to completion
testmodule_result
PASSED
2021-12-16 22:36:44
TEST-RUNNER
Alias has now been claimed by another test
alias
bocomBBMCertification
new_test_id
9PE3tBQMUgowyQY
Test Results