Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-16 21:21:16 INFO
TEST-RUNNER
Test instance uY2U45e3A7DglPR created
baseUrl
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "by_value",
  "fapi_jarm_type": "oidc",
  "fapi_profile": "openbanking_brazil",
  "fapi_response_mode": "plain_response"
}
alias
RP-Accounts-Caixa-Economica-Federal
description
Teste usando client da caixa do diretorio 1
planId
wx0ANfeck1ORT
config
{
  "alias": "RP-Accounts-Caixa-Economica-Federal",
  "description": "Teste usando client da caixa do diretorio 1",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
    "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
    "certificate": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "x5c": [
            "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"
          ],
          "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
          "e": "AQAB",
          "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
          "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/8fd58932-2a72-4c67-bf12-a3f60c395f87/VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM.pem",
          "x5t#256": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM"
        },
        {
          "kty": "RSA",
          "use": "sig",
          "x5c": [
            "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"
          ],
          "n": "s3UqP3OIfaUWUDYPCGbq66PJP137WjSKeVXXY8iZAst6QASV-tWzQoUN4vloUMyQLSZewbOcYDm09EEhLSjoZDHjq9gBkNvzSFJQNn9ix6VBjvhUwupOIssw_O9Qom88Rg69PnFHJ5uErpRKB7QDz3teGeAbeNnoXRReiqNyl0DDOjliqpzy4d1e606eZfySbWVbWPGw-qrD6JL4Iu9QmR18KkIre4mZnOqh8S-MlM0GoGmFnf8xwn7oF_tCD-aS5rp_XzY8RB0G0gyfUd0OcP6VT6PTMuhJG8ez2wXhObGgIzd54pbMF7UfrFD4NtNZqAJUqMyIi3ZUWHNcvF27eQ",
          "e": "AQAB",
          "kid": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek",
          "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek.pem",
          "x5t#256": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek"
        }
      ]
    }
  },
  "client2": {
    "client_id": "lvfVldjz2Q6pSMOMoXh1l",
    "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "certificate": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "alg": "PS256",
          "use": "sig",
          "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
          "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
          "e": "AQAB"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "ckMEVIUx88uSB8WYwA6IefEItU2SF1qgxjSqwa1ALzw",
          "alg": "RSA-OAEP-256",
          "n": "tgh8qlCJzONn0ujGVgyukidBcGdxZyYorwWfGM5XUDIS1daOnAKhuEKkDiyq_Ib352GLwKaTYKxWkyoH1wkCCBIXdY-Zl-QO_wCvcGzsez0dTxFwUknuUpzDNNq5bm5GUlB97mq6_ClT860C3f7vlFpWMRO7uMMdG0rQLIYtxy2qgNJ3KJLpjs56E2v0J4W8eS-8pPflsfjA-z50hexJZLqqwlNfFAdje4IauHTPwGTuv6TwqXJQkCmhuavAOziu8TxIGz_IOrps6W0nBg2FbBb-9JI_2nGRtkXW0TJuFTadMfNCMwOM4ppSPhI8BopMW-zMc80vHVaxcqDMWymTPw"
        }
      ]
    },
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-refresh-token-test
2021-12-16 21:21:16 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/
discoveryUrl
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/.well-known/openid-configuration
2021-12-16 21:21:16 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-16 21:21:16 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 21:21:16
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-16 21:21:16
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-16 21:21:16
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-16 21:21:16
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-16 21:21:16
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2021-12-16 21:21:16 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-16 21:21:16 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-16 21:21:16 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-16 21:21:16 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-16 21:21:16 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-16 21:21:16 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
ZbMFOJkpxMgSyK5e-8BLr
redirect_uri
https://stgopenbankingdes.z15.web.core.windows.net/
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/8fd58932-2a72-4c67-bf12-a3f60c395f87/VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM.pem",
      "x5t#256": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "s3UqP3OIfaUWUDYPCGbq66PJP137WjSKeVXXY8iZAst6QASV-tWzQoUN4vloUMyQLSZewbOcYDm09EEhLSjoZDHjq9gBkNvzSFJQNn9ix6VBjvhUwupOIssw_O9Qom88Rg69PnFHJ5uErpRKB7QDz3teGeAbeNnoXRReiqNyl0DDOjliqpzy4d1e606eZfySbWVbWPGw-qrD6JL4Iu9QmR18KkIre4mZnOqh8S-MlM0GoGmFnf8xwn7oF_tCD-aS5rp_XzY8RB0G0gyfUd0OcP6VT6PTMuhJG8ez2wXhObGgIzd54pbMF7UfrFD4NtNZqAJUqMyIi3ZUWHNcvF27eQ",
      "e": "AQAB",
      "kid": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek.pem",
      "x5t#256": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek"
    }
  ]
}
2021-12-16 21:21:16 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 21:21:16 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "MIIGJjCCBQ6gAwIBAgIUL7WkFahF71sS+U56G6hq+5qVBwIwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0NDkwMFoXDTIyMDcyOTE0NDkwMFowgYIxCzAJBgNVBAYTAkJSMRUwEwYDVQQKEwxPcGVuIEJhbmtpbmcxLTArBgNVBAsTJGMxNjBhNmY1LWU1ZGYtNTA2Ny05ZTk3LWVjNmZiYTYyZmQ4NzEtMCsGA1UEAxMkOGZkNTg5MzItMmE3Mi00YzY3LWJmMTItYTNmNjBjMzk1Zjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfrkziFNJ++oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR+IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV+hbhR6zjGPzu+y2opFvZhNzPRscLYJgZY9U1z+VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj/LAv/qd/qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP+JXBDiRDg0ATsgKCzIkBY9zWn+drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7//Sr8b3Pmk7AAiTP1mIxSRwjSzyYQIDAQABo4ICojCCAp4wDgYDVR0PAQH/BAQDAgO4MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKHVpPC+SLix0993mrJFdPBcjv81MB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQCOs/qhe3T9/SnfRalBEwdNO7NkC+VQQrDOAh3BiUPmLoSzKb5pRzimNtCXFzN0yQm+UZzUFFokae+bBAUu7BNdKANzkp7JKsmPvOxatUFA5K1VRlVWRGOygCG03jfOblRQAShwTjPjvemcKGmN05pvJaN7OUlmzE7F0SAFYG2KhCeDjzJQznghClQOBjjAgHOn9Q7OF3KJK6mGa3iNbYqSzhJkiKaeA/Dla6uzHkVauut+6+s4kpUXfh44SX6b9GCq3Cpb00vZYFVVYyg53km1OqGStFS4NSQdmtzlEXkstFRBi/UvleWWVkQwNU+btpqktjuqp+jhbImMljimsgFa"
      ],
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/8fd58932-2a72-4c67-bf12-a3f60c395f87/VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM.pem",
      "x5t#256": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "s3UqP3OIfaUWUDYPCGbq66PJP137WjSKeVXXY8iZAst6QASV-tWzQoUN4vloUMyQLSZewbOcYDm09EEhLSjoZDHjq9gBkNvzSFJQNn9ix6VBjvhUwupOIssw_O9Qom88Rg69PnFHJ5uErpRKB7QDz3teGeAbeNnoXRReiqNyl0DDOjliqpzy4d1e606eZfySbWVbWPGw-qrD6JL4Iu9QmR18KkIre4mZnOqh8S-MlM0GoGmFnf8xwn7oF_tCD-aS5rp_XzY8RB0G0gyfUd0OcP6VT6PTMuhJG8ez2wXhObGgIzd54pbMF7UfrFD4NtNZqAJUqMyIi3ZUWHNcvF27eQ",
      "e": "AQAB",
      "kid": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek.pem",
      "x5t#256": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "x5c": [
        "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"
      ],
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/8fd58932-2a72-4c67-bf12-a3f60c395f87/VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM.pem",
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek",
      "x5c": [
        "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"
      ],
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek.pem",
      "n": "s3UqP3OIfaUWUDYPCGbq66PJP137WjSKeVXXY8iZAst6QASV-tWzQoUN4vloUMyQLSZewbOcYDm09EEhLSjoZDHjq9gBkNvzSFJQNn9ix6VBjvhUwupOIssw_O9Qom88Rg69PnFHJ5uErpRKB7QDz3teGeAbeNnoXRReiqNyl0DDOjliqpzy4d1e606eZfySbWVbWPGw-qrD6JL4Iu9QmR18KkIre4mZnOqh8S-MlM0GoGmFnf8xwn7oF_tCD-aS5rp_XzY8RB0G0gyfUd0OcP6VT6PTMuhJG8ez2wXhObGgIzd54pbMF7UfrFD4NtNZqAJUqMyIi3ZUWHNcvF27eQ"
    }
  ]
}
2021-12-16 21:21:16 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-16 21:21:16 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-16 21:21:16 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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"
      ],
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/8fd58932-2a72-4c67-bf12-a3f60c395f87/VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM.pem",
      "x5t#256": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "MIIG+DCCBeCgAwIBAgIUMv0T93EZ4E+Rm6lseCr9rdAZh2kwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkxNjE3MTAwMFoXDTIyMTAxNjE3MTAwMFowgcsxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMU8wFQYDVQQLEw4wMDM2MDMwNTAwMDEwNDAaBgNVBAsTE0NlcnRpZmljYWRvIGRpZ2l0YWwwGgYDVQQLExNPcGVuIEJhbmtpbmcgQnJhc2lsMSAwHgYDVQQDExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDE0MDIGCgmSJomT8ixkAQETJGMxNjBhNmY1LWU1ZGYtNTA2Ny05ZTk3LWVjNmZiYTYyZmQ4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALN1Kj9ziH2lFlA2Dwhm6uujyT9d+1o0inlV12PImQLLekAElfrVs0KFDeL5aFDMkC0mXsGznGA5tPRBIS0o6GQx46vYAZDb80hSUDZ/YselQY74VMLqTiLLMPzvUKJvPEYOvT5xRyebhK6USge0A897XhngG3jZ6F0UXoqjcpdAwzo5Yqqc8uHdXutOnmX8km1lW1jxsPqqw+iS+CLvUJkdfCpCK3uJmZzqofEvjJTNBqBphZ3/McJ+6Bf7Qg/mkua6f182PEQdBtIMn1HdDnD+lU+j0zLoSRvHs9sF4TmxoCM3eeKWzBe1H6xQ+DbTWagCVKjMiIt2VFhzXLxdu3kCAwEAAaOCAyswggMnMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMbpv8L5qJa18ltpo9zQZcD8BQdxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwgYYGA1UdEQR/MH2gFwYFYEwBAwKgDgwMRUxMSU8gU09BUkVToBkGBWBMAQMDoBAMDjAwMzYwMzA1MDAwMTA0oC0GBWBMAQMEoCQMIjxDUEYvUElTL1JGIG9mIHJlc3BvbnNpYmxlIHBlcnNvbj6gGAYFYEwBAwegDwwNPElOU1MgTnVtYmVyPjAOBgNVHQ8BAf8EBAMCBsAwggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUHAgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRpbmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRzIFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Npb24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0gU2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEBCwUAA4IBAQBEN+6f5fCewsBv8240iNbqGk6iRjByJLC00eQLfTuqiTarcPJKxhpNe49MCLB/9vG6SDFj7onIizyVErp/9PGVlOfGh6QnyScaaefG0qvj9R4y6/yeLuRPQWeLrqxujXVAdffdbDH37auFwtXqUtOYPGALoCJtQoye2xOxUmHdKVON5yn+t7pTHrYsrFa8Zdt3Wmxrsz/GKMmbxZm/677/FdtndmsZ0vC2neRzuq00InG1atglaQqq35OO5qCBjtJYRG61pdJxQoejzksQHwlyhBpRKnF66AMzFTL3W9A2mFlGkehinMxElXnUFehbFk3FTNIya2oxyhh8owdxeztv"
      ],
      "n": "s3UqP3OIfaUWUDYPCGbq66PJP137WjSKeVXXY8iZAst6QASV-tWzQoUN4vloUMyQLSZewbOcYDm09EEhLSjoZDHjq9gBkNvzSFJQNn9ix6VBjvhUwupOIssw_O9Qom88Rg69PnFHJ5uErpRKB7QDz3teGeAbeNnoXRReiqNyl0DDOjliqpzy4d1e606eZfySbWVbWPGw-qrD6JL4Iu9QmR18KkIre4mZnOqh8S-MlM0GoGmFnf8xwn7oF_tCD-aS5rp_XzY8RB0G0gyfUd0OcP6VT6PTMuhJG8ez2wXhObGgIzd54pbMF7UfrFD4NtNZqAJUqMyIi3ZUWHNcvF27eQ",
      "e": "AQAB",
      "kid": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/c160a6f5-e5df-5067-9e97-ec6fba62fd87/eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek.pem",
      "x5t#256": "eQiv3_kjDaycW5o2jWnoRZ-5S3kX8xpT_Mgnz_jR7ek"
    }
  ]
}
Verify configuration of second client
2021-12-16 21:21:16 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
lvfVldjz2Q6pSMOMoXh1l
redirect_uri
https://stgopenbankingdes.z15.web.core.windows.net/
id_token_encrypted_response_alg
RSA-OAEP
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "ckMEVIUx88uSB8WYwA6IefEItU2SF1qgxjSqwa1ALzw",
      "alg": "RSA-OAEP-256",
      "n": "tgh8qlCJzONn0ujGVgyukidBcGdxZyYorwWfGM5XUDIS1daOnAKhuEKkDiyq_Ib352GLwKaTYKxWkyoH1wkCCBIXdY-Zl-QO_wCvcGzsez0dTxFwUknuUpzDNNq5bm5GUlB97mq6_ClT860C3f7vlFpWMRO7uMMdG0rQLIYtxy2qgNJ3KJLpjs56E2v0J4W8eS-8pPflsfjA-z50hexJZLqqwlNfFAdje4IauHTPwGTuv6TwqXJQkCmhuavAOziu8TxIGz_IOrps6W0nBg2FbBb-9JI_2nGRtkXW0TJuFTadMfNCMwOM4ppSPhI8BopMW-zMc80vHVaxcqDMWymTPw"
    }
  ]
}
id_token_encrypted_response_enc
A256GCM
2021-12-16 21:21:16 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-16 21:21:16 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "ckMEVIUx88uSB8WYwA6IefEItU2SF1qgxjSqwa1ALzw",
      "alg": "RSA-OAEP-256",
      "n": "tgh8qlCJzONn0ujGVgyukidBcGdxZyYorwWfGM5XUDIS1daOnAKhuEKkDiyq_Ib352GLwKaTYKxWkyoH1wkCCBIXdY-Zl-QO_wCvcGzsez0dTxFwUknuUpzDNNq5bm5GUlB97mq6_ClT860C3f7vlFpWMRO7uMMdG0rQLIYtxy2qgNJ3KJLpjs56E2v0J4W8eS-8pPflsfjA-z50hexJZLqqwlNfFAdje4IauHTPwGTuv6TwqXJQkCmhuavAOziu8TxIGz_IOrps6W0nBg2FbBb-9JI_2nGRtkXW0TJuFTadMfNCMwOM4ppSPhI8BopMW-zMc80vHVaxcqDMWymTPw"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "alg": "PS256",
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "ckMEVIUx88uSB8WYwA6IefEItU2SF1qgxjSqwa1ALzw",
      "alg": "RSA-OAEP-256",
      "n": "tgh8qlCJzONn0ujGVgyukidBcGdxZyYorwWfGM5XUDIS1daOnAKhuEKkDiyq_Ib352GLwKaTYKxWkyoH1wkCCBIXdY-Zl-QO_wCvcGzsez0dTxFwUknuUpzDNNq5bm5GUlB97mq6_ClT860C3f7vlFpWMRO7uMMdG0rQLIYtxy2qgNJ3KJLpjs56E2v0J4W8eS-8pPflsfjA-z50hexJZLqqwlNfFAdje4IauHTPwGTuv6TwqXJQkCmhuavAOziu8TxIGz_IOrps6W0nBg2FbBb-9JI_2nGRtkXW0TJuFTadMfNCMwOM4ppSPhI8BopMW-zMc80vHVaxcqDMWymTPw"
    }
  ]
}
2021-12-16 21:21:16 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-16 21:21:16 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-16 21:21:16 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
      "n": "wfrkziFNJ--oSYWAsEHcYMXNuJQhS91pQARbe8Wmd1hBDbRKnKPier9DElSFVR-IE8QuCZxUuOr9ZNWgmn1Hn5sqdVV-hbhR6zjGPzu-y2opFvZhNzPRscLYJgZY9U1z-VqIS32n2Okad5wawYSWE31mxnwIKDmJQNepNEIR34Pj_LAv_qd_qWUsaexo7Bc95QwVJLf6iGI3kty0wTxVZ82mPTaijP-JXBDiRDg0ATsgKCzIkBY9zWn-drKoqQwMbSHd6WKsLxlI4iTY5FUXrdpxQUy3MDPwcSRw5W0aHeF6Ry0xRcw3EM0y7__Sr8b3Pmk7AAiTP1mIxSRwjSzyYQ",
      "e": "AQAB"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "ckMEVIUx88uSB8WYwA6IefEItU2SF1qgxjSqwa1ALzw",
      "alg": "RSA-OAEP-256",
      "n": "tgh8qlCJzONn0ujGVgyukidBcGdxZyYorwWfGM5XUDIS1daOnAKhuEKkDiyq_Ib352GLwKaTYKxWkyoH1wkCCBIXdY-Zl-QO_wCvcGzsez0dTxFwUknuUpzDNNq5bm5GUlB97mq6_ClT860C3f7vlFpWMRO7uMMdG0rQLIYtxy2qgNJ3KJLpjs56E2v0J4W8eS-8pPflsfjA-z50hexJZLqqwlNfFAdje4IauHTPwGTuv6TwqXJQkCmhuavAOziu8TxIGz_IOrps6W0nBg2FbBb-9JI_2nGRtkXW0TJuFTadMfNCMwOM4ppSPhI8BopMW-zMc80vHVaxcqDMWymTPw"
    }
  ]
}
2021-12-16 21:21:16
fapi1-advanced-final-client-refresh-token-test
Setup Done
2021-12-16 21:21:27 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "5ff7ce58-b1b7-4e06-9d28-b81dedf6bcc9",
  "request-id": "|e5eb3755ffb0a4c0e8692370cd2cd584.4d3918ff08346bbc.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-e5eb3755ffb0a4c0e8692370cd2cd584-4d3918ff08346bbc-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:21:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:21:27 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-16 21:21:29 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "3df474d1-b8a5-4ff5-ae74-cb180f2fd3f6",
  "request-id": "|e5eb3755ffb0a4c0e8692370cd2cd584.68d7fc61bbd1fe45.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-e5eb3755ffb0a4c0e8692370cd2cd584-68d7fc61bbd1fe45-01",
  "content-length": "947",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
  "scope": "openid consents accounts",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA1ODcsImlhdCI6MTYzOTY4OTY4NywianRpIjoiZm1EVXc5dWN1cFdPS2VMa0FjU2pfdyJ9.JLLm91GfMDKHue0jri5jECwGXrmRK9x9bPRFW47VsKpjcBhyZ1YRrdCG7ZgTUrypDM_kBXXJ3lMf4OTo57I8ubK8VgPtV9fIoOCf-LquoZkad72BlDgBBbP7OgunRJE6VH6Vo2rHSLNcWRqixBO55VDoWVywYKnGwgMIeWJ5ergIauAHDbM4N2KT_irvZ0WO5o67adKYXm8r5hhjvXSBHd57LX3V6r5DERCAx-0CmNAXDepIGcZ6KWnY_YpcoLWS6t8y5lgeYLQ-xGaxIqvaBOAKdEl5i4imwi9jMU3JYQfy6aLrd5I62MFhCVuTg9fc0F5VT4b-bCA_9-n2ZoGjlg"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&client_id=ZbMFOJkpxMgSyK5e-8BLr&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&scope=openid+consents+accounts&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA1ODcsImlhdCI6MTYzOTY4OTY4NywianRpIjoiZm1EVXc5dWN1cFdPS2VMa0FjU2pfdyJ9.JLLm91GfMDKHue0jri5jECwGXrmRK9x9bPRFW47VsKpjcBhyZ1YRrdCG7ZgTUrypDM_kBXXJ3lMf4OTo57I8ubK8VgPtV9fIoOCf-LquoZkad72BlDgBBbP7OgunRJE6VH6Vo2rHSLNcWRqixBO55VDoWVywYKnGwgMIeWJ5ergIauAHDbM4N2KT_irvZ0WO5o67adKYXm8r5hhjvXSBHd57LX3V6r5DERCAx-0CmNAXDepIGcZ6KWnY_YpcoLWS6t8y5lgeYLQ-xGaxIqvaBOAKdEl5i4imwi9jMU3JYQfy6aLrd5I62MFhCVuTg9fc0F5VT4b-bCA_9-n2ZoGjlg
2021-12-16 21:21:29 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:21:29 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:21:29 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:21:29 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 21:21:29 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA1ODcsImlhdCI6MTYzOTY4OTY4NywianRpIjoiZm1EVXc5dWN1cFdPS2VMa0FjU2pfdyJ9.JLLm91GfMDKHue0jri5jECwGXrmRK9x9bPRFW47VsKpjcBhyZ1YRrdCG7ZgTUrypDM_kBXXJ3lMf4OTo57I8ubK8VgPtV9fIoOCf-LquoZkad72BlDgBBbP7OgunRJE6VH6Vo2rHSLNcWRqixBO55VDoWVywYKnGwgMIeWJ5ergIauAHDbM4N2KT_irvZ0WO5o67adKYXm8r5hhjvXSBHd57LX3V6r5DERCAx-0CmNAXDepIGcZ6KWnY_YpcoLWS6t8y5lgeYLQ-xGaxIqvaBOAKdEl5i4imwi9jMU3JYQfy6aLrd5I62MFhCVuTg9fc0F5VT4b-bCA_9-n2ZoGjlg",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690587,
    "iat": 1639689687,
    "jti": "fmDUw9ucupWOKeLkAcSj_w"
  }
}
2021-12-16 21:21:29
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:21:29 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA1ODcsImlhdCI6MTYzOTY4OTY4NywianRpIjoiZm1EVXc5dWN1cFdPS2VMa0FjU2pfdyJ9.JLLm91GfMDKHue0jri5jECwGXrmRK9x9bPRFW47VsKpjcBhyZ1YRrdCG7ZgTUrypDM_kBXXJ3lMf4OTo57I8ubK8VgPtV9fIoOCf-LquoZkad72BlDgBBbP7OgunRJE6VH6Vo2rHSLNcWRqixBO55VDoWVywYKnGwgMIeWJ5ergIauAHDbM4N2KT_irvZ0WO5o67adKYXm8r5hhjvXSBHd57LX3V6r5DERCAx-0CmNAXDepIGcZ6KWnY_YpcoLWS6t8y5lgeYLQ-xGaxIqvaBOAKdEl5i4imwi9jMU3JYQfy6aLrd5I62MFhCVuTg9fc0F5VT4b-bCA_9-n2ZoGjlg
2021-12-16 21:21:29 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:21:29 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:21:29 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "openid",
  "consents",
  "accounts"
]
expected
consents
2021-12-16 21:21:29 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq
2021-12-16 21:21:29 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq
token_type
Bearer
2021-12-16 21:21:29
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-16 21:21:29 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-16 21:21:30 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "authorization": "Bearer fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq",
  "content-type": "application/json",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "f4187cff-313d-4905-afe3-e292c8c5e8fe",
  "request-id": "|e5eb3755ffb0a4c0e8692370cd2cd584.e98eb06416c4e421.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-e5eb3755ffb0a4c0e8692370cd2cd584-e98eb06416c4e421-01",
  "content-length": "356",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "02086630964",
        "rel": "CPF"
      }
    },
    "permissions": [
      "RESOURCES_READ",
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_TRANSACTIONS_READ"
    ],
    "expirationDateTime": "2022-11-24T01:44:40Z",
    "scopes": "openid consents accounts"
  },
  "finalidade": "001",
  "company": "fake77",
  "companyChild": "777"
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"02086630964","rel":"CPF"}},"permissions":["RESOURCES_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ"],"expirationDateTime":"2022-11-24T01:44:40Z","scopes":"openid consents accounts"},"finalidade":"001","company":"fake77","companyChild":"777"}
2021-12-16 21:21:30 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-16 21:21:30 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:21:30 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:21:30 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 21:21:30 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-16 21:21:30 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 21:21:30 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq
2021-12-16 21:21:30 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
fAhOFXdo6iCaDuR5CiV1IJ9Wb9WbP54Flm2CSodCgL7ygWjJmq
2021-12-16 21:21:30 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-16 21:21:30 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 21:21:30 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
f4187cff-313d-4905-afe3-e292c8c5e8fe
2021-12-16 21:21:30 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "openid",
  "consents",
  "accounts"
]
2021-12-16 21:21:30
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-16 21:21:30 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
f4187cff-313d-4905-afe3-e292c8c5e8fe
2021-12-16 21:21:30 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "f4187cff-313d-4905-afe3-e292c8c5e8fe"
}
consentId
urn:conformance.oidf:wfRA0LK409
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:wfRA0LK409",
    "creationDateTime": "2021-12-16T21:21:30Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-16T21:21:30Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:21:30Z",
    "transactionFromDateTime": "2021-12-16T21:16:30Z",
    "transactionToDateTime": "2021-12-16T23:21:30Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:21:30Z"
  }
}
2021-12-16 21:21:30
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 21:21:30 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "f4187cff-313d-4905-afe3-e292c8c5e8fe"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:wfRA0LK409",
    "creationDateTime": "2021-12-16T21:21:30Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-16T21:21:30Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:21:30Z",
    "transactionFromDateTime": "2021-12-16T21:16:30Z",
    "transactionToDateTime": "2021-12-16T23:21:30Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:21:30Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-16 21:21:30 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "d0084d12-fddd-44c4-9985-24679ab2f8c5",
  "request-id": "|e5eb3755ffb0a4c0e8692370cd2cd584.9fd7a07ed2599052.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-e5eb3755ffb0a4c0e8692370cd2cd584-9fd7a07ed2599052-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:21:30 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:21:30 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-16 21:21:40 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7,lb;q\u003d0.6",
  "cookie": "_ga\u003dGA1.2.1521956178.1623789646; __utmz\u003d201319536.1634310691.9.5.utmcsr\u003dweb.conformance.directory.openbankingbrasil.org.br|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html; __utma\u003d201319536.1521956178.1623789646.1637679552.1638021473.12; JSESSIONID\u003dBE5B5711B7755AC5CB6840220978DC79",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJKV1QiLCJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0NhaXhhT3BlbkJhbmtpbmdSUC8ifQ.dZcScfaFlOyhexaXOTz2NQE7cFqF4wxW7sR6nlasL1JS0g8j_6X9LpD5lXHovbFlioCOOVJbiNUqudCJTtWt8Bp8mei6lh1kz0seZIZGptSY60l61_nwKHR-xtAijDbmkVMcREo4t968qCBF6kQlo8dXZ7eA_Xf6Dy8R98HV0CNgaxgzxMhe4opCF-kcHPXO_4IaW_kt_xeF4WqkN2kKnPhtAvsGGk44C4ThFP_kUg3bQR2HV7DnM82yqzniymlNxiMLfZ48-OMXJGILBjJI7wtq9LazMxkNiOM8iScQUf8WSyO_kxKvoPyFvr-P_KZsh02SH49A6z1m0bovBaWGuw.RQkMjS2AzGgpzX8g.qyJHivzYHRmYquXsucbTpRVZRi2I_A3j4aiepdapLnTXo8xyPORRcBfPoIDm1FvHsMUgmdRcF9euA4i9V3n0e21Y0QXgnP-Kxslr1VzuPWTZSuJUShQc5jNQHEFLrcZ7O5w3Exxf_f3JXc6JVlvY2TZYBGYd8JR6XVKGSA_bvLRRRlhEX5pS9NrNL86-ZgHe-ke7FNaJ7nm3ympqEEF85neMRQhb6Rn2llXl3Vkti2vYBB8712CWzbZPyf-OIOERFEviyt-FsP8gtFly0JodxI3VGaGiawI2bd1k-OKG4-y2Z_ZowHyanmssDTdZ2c7kknXZmgb7kxJxjbnYuDSCjw-fbbjaimxqZjD09lLBpRuBFXdQ3K746jDXNKSYgUwG56xosHin-HCKgbRhlZznOS2jex_hx6v9nmFg9PQi0OBR7HLZkHnjb-4rHUrHSdlte-Gk-g9pbgJZsXAshpZVf6KlQxyG3iGVX8mFLSFdKZcqMoncbF82vt0P5TTKNgEzcXZ7-Bxbt-i-j1iSLhvGje0hbfUYRYL1GGl5Ht1dyKQ2JmQ01AH8gl-MV-HV0Kz2K2fpMXdCJjFnGkiG9Z3pS5HoRe011a9qw6ImjUL3BQDeoeqaY0B3zBVx6i9W4G9kgRg8VOabFjpazMJyYdDoV9YoSAQZWKg-oLgrGceE65XU5JHEmChb5wW8r6RJf-ZkHrFOAc-uKZePcDXLRCauZEgCTCuLCDfc__kfuyOUg2M0L3jub0Nq_1AuOoUJOHGw7m2kkK83dlekz81l-Smbj7kJTYmRL2eHcp78myEM1M1E5e4EORQHrToANMfAK8tJwKL1HCQwuDnaprLyvCzYICm2zAvwAnU5ORuUmBYFAQg2ypaqT_aah9_YVZyeLYN72_eIT1NpLbjMIifaJ1N4GJPinZ2TI6M4pS99G7fBzOK7IPmbVhd5Teh02D_ZycAx4r9A5klBjyKaAJg9tNZne_xkOMblfGPGPHnc682G2RAH2M2XeNij7kTwsEW-BMABiBnXqieC262wt4XhxbwIdYWmzk2AM3aWJi9l2BpBg7HAzFju1ohmrV12WCBscVIiuOBzmHagkkaFWsH_QUz_Ys1Q2jaefP30zTvyoMLYWWTpeDtIlRNl_QaE_yFnHlRdmluoKIjj4SEzjgj7y1wP2puCtGCUb7KGOtpd8xOkAoAUk36tR08nKDiHkL3La5WgeN0yDM_sjlw2fdetcgSOM8hZMMXiIHxBs_CftGMw3PjcPO2EnL2xseuRPyR9RltaSDiZCj42kGCK5l96vAqlrDTkg3JA4MdbVpHKcynwY0Bs8Wgeng7xOFY9kbDMXjylddT-PUWTeevhAFHvPwTQ86Poh9OOG6QkZpR8kQ6ZaEmP_edu0Z0xmOXEo5Tk3gk33QgvMCDS1k45SqSTSfhah2-E0kQMkXTGNcrc662EVMjXtskYnkGqw6_6xDVFKJyZOiwNBCVzUtxlFmj-T-Hw8rcOIx5K6jHX6INIaIsKhq1s7v_uFz9GOkxVes_lI5nYCN_NvIcAT6YbPU-9pf2lupv9oE3CmLN71thyNV3VINEQLGb0RwgYuAtdkP5tuC4sxWPjp0AUj7Uk0UP2bP97Y4Rl9Zrgov7mIPSIpYgC5JGoDg6UHBeVT-8TH4cxmpFGQDAwvtYvaqSzEroZXYy23-4phovViCm3T1wzD7MkULWzANqoaGMb-NOmCBD-W_n_c-wp3zO0SidNtCThsTjzgNoskjb3pRCDEmaipJco4NUePqlJMvC5VX3nIeLw1Opjyol22EyiVQq3.1WphEoX2TJ0vxxZs-ERopA",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "scope": "openid consents accounts consent:urn:conformance.oidf:wfRA0LK409",
  "response_type": "code id_token"
}
incoming_body
2021-12-16 21:21:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-16 21:21:40 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJleHAiOjE2Mzk2OTA1OTAsImlhdCI6MTYzOTY4OTY5MCwianRpIjoiYmIyN09NXzhDLTNvTkR4YjNtV3g3dyIsIm5iZiI6MTYzOTY4OTY5MCwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS9SUC1BY2NvdW50cy1DYWl4YS1FY29ub21pY2EtRmVkZXJhbC8iLCJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhenAiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJzY29wZSI6Im9wZW5pZCBjb25zZW50cyBhY2NvdW50cyBjb25zZW50OnVybjpjb25mb3JtYW5jZS5vaWRmOndmUkEwTEs0MDkiLCJyZXNwb25zZV90eXBlIjoiY29kZSBpZF90b2tlbiIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOi8vc3Rnb3BlbmJhbmtpbmdkZXMuejE1LndlYi5jb3JlLndpbmRvd3MubmV0LyIsInN0YXRlIjoiMjJiYTc0NjktYTNlMC00Yjk5LTk5NzItY2MwZWExMThlOWMxIiwibm9uY2UiOiI2ODc5ZTlmNy04ZGIyLTRiN2ItODAxOC1hYzlmZDFlMTNmN2IiLCJjbGllbnRfaWQiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJjb2RlX2NoYWxsZW5nZSI6Imk4SXI0SUdnM3dVR1ZUaUlJYnhMaEJ0d0VZZW9JVDBUSjNnNUhYMnA1UUUiLCJjb2RlX2NoYWxsZW5nZV9tZXRob2QiOiJTMjU2In0.sMm1Ly9GQDAmNt8UZz077sfRaXqbijW8FUuLO2VU-f2SenroDjJ-GvmGL82xP61b9pSZn8yH61z9icCIhaE3eu9HPrrS5bNExNU4M5e7mEpTYutnmcIDkQPYk19YhPRoIiCrsf-CTS0jncWVSYZ6u7XYGIXY83zYjMkYbiQ8Ht0mJqe5rneTviGOA8Is82nxQqgjCmm6-PIsX6xACK6jzaWn7Q7-1EokN8Booe2bZrpS3ZFQGNifvEMqi9ZRj5VeB5QOC1cbeEEsXm8EmFSQTFi4Ydu3itF4H02sJnxy4FgD2ERcufYMCVE2QpeRqjSfP0zgCHG4yZZa3sMwuyZiUQ",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b",
    "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
    "nbf": 1639689690,
    "azp": "ZbMFOJkpxMgSyK5e-8BLr",
    "scope": "openid consents accounts consent:urn:conformance.oidf:wfRA0LK409",
    "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
    "state": "22ba7469-a3e0-4b99-9972-cc0ea118e9c1",
    "exp": 1639690590,
    "iat": 1639689690,
    "jti": "bb27OM_8C-3oNDxb3mWx7w",
    "code_challenge": "i8Ir4IGg3wUGVTiIIbxLhBtwEYeoIT0TJ3g5HX2p5QE"
  },
  "jwe_header": {
    "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
    "cty": "JWT",
    "enc": "A256GCM",
    "alg": "RSA-OAEP",
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
  }
}
2021-12-16 21:21:40 SUCCESS
EnsureRequestObjectWasEncrypted
Request object was encrypted
jwe_header
{
  "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
  "cty": "JWT",
  "enc": "A256GCM",
  "alg": "RSA-OAEP",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
}
2021-12-16 21:21:40 SUCCESS
FAPIBrazilEnsureRequestObjectEncryptedUsingRSAOAEPA256GCM
Request object was encrypted using RSA-OAEP and A256GCM
jwe_header
{
  "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
  "cty": "JWT",
  "enc": "A256GCM",
  "alg": "RSA-OAEP",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
}
2021-12-16 21:21:40 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-16 21:21:40 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJKV1QiLCJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0NhaXhhT3BlbkJhbmtpbmdSUC8ifQ.dZcScfaFlOyhexaXOTz2NQE7cFqF4wxW7sR6nlasL1JS0g8j_6X9LpD5lXHovbFlioCOOVJbiNUqudCJTtWt8Bp8mei6lh1kz0seZIZGptSY60l61_nwKHR-xtAijDbmkVMcREo4t968qCBF6kQlo8dXZ7eA_Xf6Dy8R98HV0CNgaxgzxMhe4opCF-kcHPXO_4IaW_kt_xeF4WqkN2kKnPhtAvsGGk44C4ThFP_kUg3bQR2HV7DnM82yqzniymlNxiMLfZ48-OMXJGILBjJI7wtq9LazMxkNiOM8iScQUf8WSyO_kxKvoPyFvr-P_KZsh02SH49A6z1m0bovBaWGuw.RQkMjS2AzGgpzX8g.qyJHivzYHRmYquXsucbTpRVZRi2I_A3j4aiepdapLnTXo8xyPORRcBfPoIDm1FvHsMUgmdRcF9euA4i9V3n0e21Y0QXgnP-Kxslr1VzuPWTZSuJUShQc5jNQHEFLrcZ7O5w3Exxf_f3JXc6JVlvY2TZYBGYd8JR6XVKGSA_bvLRRRlhEX5pS9NrNL86-ZgHe-ke7FNaJ7nm3ympqEEF85neMRQhb6Rn2llXl3Vkti2vYBB8712CWzbZPyf-OIOERFEviyt-FsP8gtFly0JodxI3VGaGiawI2bd1k-OKG4-y2Z_ZowHyanmssDTdZ2c7kknXZmgb7kxJxjbnYuDSCjw-fbbjaimxqZjD09lLBpRuBFXdQ3K746jDXNKSYgUwG56xosHin-HCKgbRhlZznOS2jex_hx6v9nmFg9PQi0OBR7HLZkHnjb-4rHUrHSdlte-Gk-g9pbgJZsXAshpZVf6KlQxyG3iGVX8mFLSFdKZcqMoncbF82vt0P5TTKNgEzcXZ7-Bxbt-i-j1iSLhvGje0hbfUYRYL1GGl5Ht1dyKQ2JmQ01AH8gl-MV-HV0Kz2K2fpMXdCJjFnGkiG9Z3pS5HoRe011a9qw6ImjUL3BQDeoeqaY0B3zBVx6i9W4G9kgRg8VOabFjpazMJyYdDoV9YoSAQZWKg-oLgrGceE65XU5JHEmChb5wW8r6RJf-ZkHrFOAc-uKZePcDXLRCauZEgCTCuLCDfc__kfuyOUg2M0L3jub0Nq_1AuOoUJOHGw7m2kkK83dlekz81l-Smbj7kJTYmRL2eHcp78myEM1M1E5e4EORQHrToANMfAK8tJwKL1HCQwuDnaprLyvCzYICm2zAvwAnU5ORuUmBYFAQg2ypaqT_aah9_YVZyeLYN72_eIT1NpLbjMIifaJ1N4GJPinZ2TI6M4pS99G7fBzOK7IPmbVhd5Teh02D_ZycAx4r9A5klBjyKaAJg9tNZne_xkOMblfGPGPHnc682G2RAH2M2XeNij7kTwsEW-BMABiBnXqieC262wt4XhxbwIdYWmzk2AM3aWJi9l2BpBg7HAzFju1ohmrV12WCBscVIiuOBzmHagkkaFWsH_QUz_Ys1Q2jaefP30zTvyoMLYWWTpeDtIlRNl_QaE_yFnHlRdmluoKIjj4SEzjgj7y1wP2puCtGCUb7KGOtpd8xOkAoAUk36tR08nKDiHkL3La5WgeN0yDM_sjlw2fdetcgSOM8hZMMXiIHxBs_CftGMw3PjcPO2EnL2xseuRPyR9RltaSDiZCj42kGCK5l96vAqlrDTkg3JA4MdbVpHKcynwY0Bs8Wgeng7xOFY9kbDMXjylddT-PUWTeevhAFHvPwTQ86Poh9OOG6QkZpR8kQ6ZaEmP_edu0Z0xmOXEo5Tk3gk33QgvMCDS1k45SqSTSfhah2-E0kQMkXTGNcrc662EVMjXtskYnkGqw6_6xDVFKJyZOiwNBCVzUtxlFmj-T-Hw8rcOIx5K6jHX6INIaIsKhq1s7v_uFz9GOkxVes_lI5nYCN_NvIcAT6YbPU-9pf2lupv9oE3CmLN71thyNV3VINEQLGb0RwgYuAtdkP5tuC4sxWPjp0AUj7Uk0UP2bP97Y4Rl9Zrgov7mIPSIpYgC5JGoDg6UHBeVT-8TH4cxmpFGQDAwvtYvaqSzEroZXYy23-4phovViCm3T1wzD7MkULWzANqoaGMb-NOmCBD-W_n_c-wp3zO0SidNtCThsTjzgNoskjb3pRCDEmaipJco4NUePqlJMvC5VX3nIeLw1Opjyol22EyiVQq3.1WphEoX2TJ0vxxZs-ERopA",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "scope": "openid consents accounts consent:urn:conformance.oidf:wfRA0LK409",
  "response_type": "code id_token",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "iss": "ZbMFOJkpxMgSyK5e-8BLr",
  "code_challenge_method": "S256",
  "nonce": "6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b",
  "aud": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "nbf": 1639689690,
  "azp": "ZbMFOJkpxMgSyK5e-8BLr",
  "state": "22ba7469-a3e0-4b99-9972-cc0ea118e9c1",
  "exp": 1639690590,
  "iat": 1639689690,
  "jti": "bb27OM_8C-3oNDxb3mWx7w",
  "code_challenge": "i8Ir4IGg3wUGVTiIIbxLhBtwEYeoIT0TJ3g5HX2p5QE"
}
2021-12-16 21:21:40 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-16 21:21:40
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2021-12-16 21:21:40 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 16, 2021, 9:36:30 PM"
2021-12-16 21:21:40 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 16, 2021, 9:21:30 PM"
now
"Dec 16, 2021, 9:21:40 PM"
2021-12-16 21:21:40
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-16 21:21:40 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-16 21:21:40 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-16 21:21:40 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-16 21:21:40 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-16 21:21:40 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.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.sMm1Ly9GQDAmNt8UZz077sfRaXqbijW8FUuLO2VU-f2SenroDjJ-GvmGL82xP61b9pSZn8yH61z9icCIhaE3eu9HPrrS5bNExNU4M5e7mEpTYutnmcIDkQPYk19YhPRoIiCrsf-CTS0jncWVSYZ6u7XYGIXY83zYjMkYbiQ8Ht0mJqe5rneTviGOA8Is82nxQqgjCmm6-PIsX6xACK6jzaWn7Q7-1EokN8Booe2bZrpS3ZFQGNifvEMqi9ZRj5VeB5QOC1cbeEEsXm8EmFSQTFi4Ydu3itF4H02sJnxy4FgD2ERcufYMCVE2QpeRqjSfP0zgCHG4yZZa3sMwuyZiUQ
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 24487713187701826203633759426414660205207544385150837670321423790431785218127351161570278527016847365851303507056877332864099365651241192323842922473962019884210868214854422795716872783667510110042934241796902280848215310145654193808657521455873391801800818903763257999503996503304859717372410055632226973053354065864765408904587609576950860201016087420168654022628919762491196872725196714381388661709875666591814730553028832628901465978132623081840321194382869121802107708250289816017150020212844566789235998195665007528948792346543235668095192038322111457237645955649345534402371395832564477022768133835403473777249
  public exponent: 65537
2021-12-16 21:21:40 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://stgopenbankingdes.z15.web.core.windows.net/
2021-12-16 21:21:40 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
ZbMFOJkpxMgSyK5e-8BLr
2021-12-16 21:21:40 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2021-12-16 21:21:40 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:wfRA0LK409"
]
expected
openid
2021-12-16 21:21:40 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consents accounts consent:urn:conformance.oidf:wfRA0LK409
2021-12-16 21:21:40 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:wfRA0LK409"
]
expected
consent:urn:conformance.oidf:wfRA0LK409
2021-12-16 21:21:40 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:wfRA0LK409"
]
2021-12-16 21:21:40 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-16 21:21:40 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:wfRA0LK409"
]
expected
openid
2021-12-16 21:21:40 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
ZbMFOJkpxMgSyK5e-8BLr
2021-12-16 21:21:40 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
TkLC3S0f39QE20ryTId81HmodPoGg5a1
2021-12-16 21:21:40 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b
2021-12-16 21:21:40 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
uamF4PhlqH5BIMINgHyLcg
2021-12-16 21:21:40 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
zg1oc7T_1QHffmNoOZ-VeQ
2021-12-16 21:21:40 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/
sub
user-subject-1234531
aud
ZbMFOJkpxMgSyK5e-8BLr
nonce
6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b
iat
1639689700
exp
1639690000
2021-12-16 21:21:40
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-16 21:21:40 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
uamF4PhlqH5BIMINgHyLcg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b",
  "iat": 1639689700,
  "exp": 1639690000,
  "c_hash": "uamF4PhlqH5BIMINgHyLcg"
}
2021-12-16 21:21:40 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
zg1oc7T_1QHffmNoOZ-VeQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b",
  "iat": 1639689700,
  "exp": 1639690000,
  "c_hash": "uamF4PhlqH5BIMINgHyLcg",
  "s_hash": "zg1oc7T_1QHffmNoOZ-VeQ"
}
2021-12-16 21:21:40 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-16 21:21:40 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-16 21:21:40 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlpiTUZPSmtweE1nU3lLNWUtOEJMciIsImNfaGFzaCI6InVhbUY0UGhscUg1QklNSU5nSHlMY2ciLCJzX2hhc2giOiJ6ZzFvYzdUXzFRSGZmbU5vT1otVmVRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDAsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzAwfQ.xbd9yRyijqq1QEpLQBTYu2Hg47bo66hQ4agbGngf_MknxG4YY6iPy-cd4ntsH5k0aN3qXP2-aLndO2HD5aJk0oHc20qmQgWPE2TdQvLC4M64QQB5CVIUEXWeJCzPkZReMBCcMxNyDnA8aKe6XWOr0myJf0NFGSp6Zw9t7S5uwIyWo5aa4IRJoP2Qr_I7CSgSVjnXEJBCY5ArN2JAE-WMGJaFVGXdnozyA_wzSZMKhvkthmYiHE2KKaxdglun3srrxjg4V5yDsbBm_mWJ-UXU8TzDFczA6KUe4hJd9D6ucPkMR10mzXB1qijJdsZw1LZ3L1QmqsD13IbCd2hInJDCHQ
2021-12-16 21:21:40 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:wfRA0LK409",
    "creationDateTime": "2021-12-16T21:21:30Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-16T21:21:40Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:21:30Z",
    "transactionFromDateTime": "2021-12-16T21:16:30Z",
    "transactionToDateTime": "2021-12-16T23:21:30Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:21:30Z"
  }
}
2021-12-16 21:21:40 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "22ba7469-a3e0-4b99-9972-cc0ea118e9c1"
}
2021-12-16 21:21:40 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "22ba7469-a3e0-4b99-9972-cc0ea118e9c1",
  "code": "TkLC3S0f39QE20ryTId81HmodPoGg5a1"
}
2021-12-16 21:21:40 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "22ba7469-a3e0-4b99-9972-cc0ea118e9c1",
  "code": "TkLC3S0f39QE20ryTId81HmodPoGg5a1",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlpiTUZPSmtweE1nU3lLNWUtOEJMciIsImNfaGFzaCI6InVhbUY0UGhscUg1QklNSU5nSHlMY2ciLCJzX2hhc2giOiJ6ZzFvYzdUXzFRSGZmbU5vT1otVmVRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDAsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzAwfQ.xbd9yRyijqq1QEpLQBTYu2Hg47bo66hQ4agbGngf_MknxG4YY6iPy-cd4ntsH5k0aN3qXP2-aLndO2HD5aJk0oHc20qmQgWPE2TdQvLC4M64QQB5CVIUEXWeJCzPkZReMBCcMxNyDnA8aKe6XWOr0myJf0NFGSp6Zw9t7S5uwIyWo5aa4IRJoP2Qr_I7CSgSVjnXEJBCY5ArN2JAE-WMGJaFVGXdnozyA_wzSZMKhvkthmYiHE2KKaxdglun3srrxjg4V5yDsbBm_mWJ-UXU8TzDFczA6KUe4hJd9D6ucPkMR10mzXB1qijJdsZw1LZ3L1QmqsD13IbCd2hInJDCHQ"
}
2021-12-16 21:21:40
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://stgopenbankingdes.z15.web.core.windows.net/#state=22ba7469-a3e0-4b99-9972-cc0ea118e9c1&code=TkLC3S0f39QE20ryTId81HmodPoGg5a1&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlpiTUZPSmtweE1nU3lLNWUtOEJMciIsImNfaGFzaCI6InVhbUY0UGhscUg1QklNSU5nSHlMY2ciLCJzX2hhc2giOiJ6ZzFvYzdUXzFRSGZmbU5vT1otVmVRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDAsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzAwfQ.xbd9yRyijqq1QEpLQBTYu2Hg47bo66hQ4agbGngf_MknxG4YY6iPy-cd4ntsH5k0aN3qXP2-aLndO2HD5aJk0oHc20qmQgWPE2TdQvLC4M64QQB5CVIUEXWeJCzPkZReMBCcMxNyDnA8aKe6XWOr0myJf0NFGSp6Zw9t7S5uwIyWo5aa4IRJoP2Qr_I7CSgSVjnXEJBCY5ArN2JAE-WMGJaFVGXdnozyA_wzSZMKhvkthmYiHE2KKaxdglun3srrxjg4V5yDsbBm_mWJ-UXU8TzDFczA6KUe4hJd9D6ucPkMR10mzXB1qijJdsZw1LZ3L1QmqsD13IbCd2hInJDCHQ
2021-12-16 21:21:40 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://stgopenbankingdes.z15.web.core.windows.net/#state=22ba7469-a3e0-4b99-9972-cc0ea118e9c1&code=TkLC3S0f39QE20ryTId81HmodPoGg5a1&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlpiTUZPSmtweE1nU3lLNWUtOEJMciIsImNfaGFzaCI6InVhbUY0UGhscUg1QklNSU5nSHlMY2ciLCJzX2hhc2giOiJ6ZzFvYzdUXzFRSGZmbU5vT1otVmVRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDAsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzAwfQ.xbd9yRyijqq1QEpLQBTYu2Hg47bo66hQ4agbGngf_MknxG4YY6iPy-cd4ntsH5k0aN3qXP2-aLndO2HD5aJk0oHc20qmQgWPE2TdQvLC4M64QQB5CVIUEXWeJCzPkZReMBCcMxNyDnA8aKe6XWOr0myJf0NFGSp6Zw9t7S5uwIyWo5aa4IRJoP2Qr_I7CSgSVjnXEJBCY5ArN2JAE-WMGJaFVGXdnozyA_wzSZMKhvkthmYiHE2KKaxdglun3srrxjg4V5yDsbBm_mWJ-UXU8TzDFczA6KUe4hJd9D6ucPkMR10mzXB1qijJdsZw1LZ3L1QmqsD13IbCd2hInJDCHQ]
outgoing_path
authorize
2021-12-16 21:21:43 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "501ba3fd-f6ac-4493-b8c1-3d1ebd3ff73a",
  "request-id": "|ba90324f2ea4dbe394944b4c27adb7df.7091b855a135d33c.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-ba90324f2ea4dbe394944b4c27adb7df-7091b855a135d33c-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:21:43 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:21:43 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-16 21:21:44 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "631be091-89bb-4e76-a79e-02d98ca569d2",
  "request-id": "|ba90324f2ea4dbe394944b4c27adb7df.6314dd16bf82ffcf.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-ba90324f2ea4dbe394944b4c27adb7df-6314dd16bf82ffcf-01",
  "content-length": "995",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "TkLC3S0f39QE20ryTId81HmodPoGg5a1",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MDMsImlhdCI6MTYzOTY4OTcwMywianRpIjoiQTZxQm83YkotNU9FUVZFSWotUTRDQSJ9.CHxu7D1JIELq4XYJvfMa6zBlhGNIHD8wYtp4df_SyDO7X9rb6H82Cqk4zQfav4iWqxT2EaXPJMoMNwShdvjnD5qSpki8Nc_qkjn4CwPDEwW6vbhwikQFpGZ0aQqjhVH2820X0mvYzmOvMEL7ED45LjAq7YsFxBrbirZlRUTTk3hmPtws8FF5ErunwzaLxFv1Jp3u9sJCIz4f1zd46xGIG5Vnalw6kvu3SpjNbWu5wEz_pPETgI7M-04JgM7r2YOy5B0CprIEUocbVF-jx8EUt2BoOU3OEkYKKzaE2m9KDFu0RcQEeRqq9iU9-JhFAuBpY17zCg2G7mORtQn54JB7Mg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=TkLC3S0f39QE20ryTId81HmodPoGg5a1&redirect_uri=https%3A%2F%2Fstgopenbankingdes.z15.web.core.windows.net%2F&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MDMsImlhdCI6MTYzOTY4OTcwMywianRpIjoiQTZxQm83YkotNU9FUVZFSWotUTRDQSJ9.CHxu7D1JIELq4XYJvfMa6zBlhGNIHD8wYtp4df_SyDO7X9rb6H82Cqk4zQfav4iWqxT2EaXPJMoMNwShdvjnD5qSpki8Nc_qkjn4CwPDEwW6vbhwikQFpGZ0aQqjhVH2820X0mvYzmOvMEL7ED45LjAq7YsFxBrbirZlRUTTk3hmPtws8FF5ErunwzaLxFv1Jp3u9sJCIz4f1zd46xGIG5Vnalw6kvu3SpjNbWu5wEz_pPETgI7M-04JgM7r2YOy5B0CprIEUocbVF-jx8EUt2BoOU3OEkYKKzaE2m9KDFu0RcQEeRqq9iU9-JhFAuBpY17zCg2G7mORtQn54JB7Mg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2021-12-16 21:21:44 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:21:44 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:21:44 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:21:44 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0
MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS
QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE
CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD
EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT
DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET
MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh
NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy
X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y
edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8
Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET
+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw
bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB
/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA
FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw
AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn
LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl
bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz
dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG
CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC
ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm
b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw
YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl
cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0
LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo
ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl
bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN
BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx
akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/
fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj
4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5
qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS
jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A==
-----END CERTIFICATE-----
2021-12-16 21:21:44 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MDMsImlhdCI6MTYzOTY4OTcwMywianRpIjoiQTZxQm83YkotNU9FUVZFSWotUTRDQSJ9.CHxu7D1JIELq4XYJvfMa6zBlhGNIHD8wYtp4df_SyDO7X9rb6H82Cqk4zQfav4iWqxT2EaXPJMoMNwShdvjnD5qSpki8Nc_qkjn4CwPDEwW6vbhwikQFpGZ0aQqjhVH2820X0mvYzmOvMEL7ED45LjAq7YsFxBrbirZlRUTTk3hmPtws8FF5ErunwzaLxFv1Jp3u9sJCIz4f1zd46xGIG5Vnalw6kvu3SpjNbWu5wEz_pPETgI7M-04JgM7r2YOy5B0CprIEUocbVF-jx8EUt2BoOU3OEkYKKzaE2m9KDFu0RcQEeRqq9iU9-JhFAuBpY17zCg2G7mORtQn54JB7Mg",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690603,
    "iat": 1639689703,
    "jti": "A6qBo7bJ-5OEQVEIj-Q4CA"
  }
}
2021-12-16 21:21:44
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:21:44 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MDMsImlhdCI6MTYzOTY4OTcwMywianRpIjoiQTZxQm83YkotNU9FUVZFSWotUTRDQSJ9.CHxu7D1JIELq4XYJvfMa6zBlhGNIHD8wYtp4df_SyDO7X9rb6H82Cqk4zQfav4iWqxT2EaXPJMoMNwShdvjnD5qSpki8Nc_qkjn4CwPDEwW6vbhwikQFpGZ0aQqjhVH2820X0mvYzmOvMEL7ED45LjAq7YsFxBrbirZlRUTTk3hmPtws8FF5ErunwzaLxFv1Jp3u9sJCIz4f1zd46xGIG5Vnalw6kvu3SpjNbWu5wEz_pPETgI7M-04JgM7r2YOy5B0CprIEUocbVF-jx8EUt2BoOU3OEkYKKzaE2m9KDFu0RcQEeRqq9iU9-JhFAuBpY17zCg2G7mORtQn54JB7Mg
2021-12-16 21:21:44 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:21:44 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:21:44 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
TkLC3S0f39QE20ryTId81HmodPoGg5a1
2021-12-16 21:21:44 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://stgopenbankingdes.z15.web.core.windows.net/
2021-12-16 21:21:44 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
5bi30VzocSH95Dqux0SAqLKbl99F15IothnhB3DkJPhDPuEPQ8
2021-12-16 21:21:44 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
5IOgv5hpcXI1hhDSKtMAWw
2021-12-16 21:21:44
CreateRefreshToken
Created refresh token
refresh_token
GUfmTYMuxSFFSCrlwWuCcCXIKTJlWtLOOyshvwsGLQbCGqAEvz2717381123\~=>?
2021-12-16 21:21:44 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/
sub
user-subject-1234531
aud
ZbMFOJkpxMgSyK5e-8BLr
nonce
6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b
iat
1639689704
exp
1639690004
2021-12-16 21:21:44
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-16 21:21:44 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
5IOgv5hpcXI1hhDSKtMAWw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "6879e9f7-8db2-4b7b-8018-ac9fd1e13f7b",
  "iat": 1639689704,
  "exp": 1639690004,
  "at_hash": "5IOgv5hpcXI1hhDSKtMAWw"
}
2021-12-16 21:21:44 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-16 21:21:44 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDQsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzA0fQ.ct3iwdWThV62GbGGc1Ijrrmsc4dGLk0VDdysPzOSYC9s7zm-38BJkGWQGNuKlJGTQc8LE7SwqoorR8For6q0E4c3E30tYP1SxYDrTK44smyLy8j0QfaZAWiyKTCjd8b7-xqnYlateVWWXRFxNOnp0QgBQFxJg2YQn3SvO8ky-DJri3GKc-8HE2RwF5-_nF3jeT3tDo4dqhxy73eUkQ8Cq4wJe1c3XXe4KhYcxAmGwawtmiJiDnKkn3FiqEdFXgi2wDyEB3Seoy0RitNxmCbElGmV155IzL_LGZBNOtdkuxOL5MV1I-eW7T6ha8V4uVpXjuIR9Idn2Uq1UBSZC4PZlQ
2021-12-16 21:21:44 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
5bi30VzocSH95Dqux0SAqLKbl99F15IothnhB3DkJPhDPuEPQ8
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDQsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzA0fQ.ct3iwdWThV62GbGGc1Ijrrmsc4dGLk0VDdysPzOSYC9s7zm-38BJkGWQGNuKlJGTQc8LE7SwqoorR8For6q0E4c3E30tYP1SxYDrTK44smyLy8j0QfaZAWiyKTCjd8b7-xqnYlateVWWXRFxNOnp0QgBQFxJg2YQn3SvO8ky-DJri3GKc-8HE2RwF5-_nF3jeT3tDo4dqhxy73eUkQ8Cq4wJe1c3XXe4KhYcxAmGwawtmiJiDnKkn3FiqEdFXgi2wDyEB3Seoy0RitNxmCbElGmV155IzL_LGZBNOtdkuxOL5MV1I-eW7T6ha8V4uVpXjuIR9Idn2Uq1UBSZC4PZlQ
refresh_token
GUfmTYMuxSFFSCrlwWuCcCXIKTJlWtLOOyshvwsGLQbCGqAEvz2717381123\~=>?
scope
openid consents accounts consent:urn:conformance.oidf:wfRA0LK409
2021-12-16 21:21:44
RemoveIssuedAccessTokenFromEnvironment
Removed access_token and token_type from environment
2021-12-16 21:21:44 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "5bi30VzocSH95Dqux0SAqLKbl99F15IothnhB3DkJPhDPuEPQ8",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDQsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzA0fQ.ct3iwdWThV62GbGGc1Ijrrmsc4dGLk0VDdysPzOSYC9s7zm-38BJkGWQGNuKlJGTQc8LE7SwqoorR8For6q0E4c3E30tYP1SxYDrTK44smyLy8j0QfaZAWiyKTCjd8b7-xqnYlateVWWXRFxNOnp0QgBQFxJg2YQn3SvO8ky-DJri3GKc-8HE2RwF5-_nF3jeT3tDo4dqhxy73eUkQ8Cq4wJe1c3XXe4KhYcxAmGwawtmiJiDnKkn3FiqEdFXgi2wDyEB3Seoy0RitNxmCbElGmV155IzL_LGZBNOtdkuxOL5MV1I-eW7T6ha8V4uVpXjuIR9Idn2Uq1UBSZC4PZlQ",
  "refresh_token": "GUfmTYMuxSFFSCrlwWuCcCXIKTJlWtLOOyshvwsGLQbCGqAEvz2717381123\\~\u003d\u003e?",
  "scope": "openid consents accounts consent:urn:conformance.oidf:wfRA0LK409"
}
outgoing_path
token
2021-12-16 21:22:14 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "14ff6590-cdbb-47d8-8694-b3bd2e03978f",
  "request-id": "|014fd42844328170d775f77dea136f35.700c40f352218de2.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-014fd42844328170d775f77dea136f35-700c40f352218de2-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:22:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:22:14 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-16 21:22:15 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "f65b8b0c-9f84-4cfb-9f7e-7e2991bbb132",
  "request-id": "|014fd42844328170d775f77dea136f35.a84fa37c2d0136c1.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-014fd42844328170d775f77dea136f35-a84fa37c2d0136c1-01",
  "content-length": "947",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
  "scope": "openid consents accounts",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MzUsImlhdCI6MTYzOTY4OTczNSwianRpIjoiTnpTZjhDQXRuMkEzY2FSZVV4b1BoQSJ9.X1Rv53oE6aHGw5IeeuL406zFz0vrPkhN2sdPn9u-nnW6H1lgAMlm0j4yXUTsoR6OlbiXj81SghtdVQ_IA4zzTbAdzWUEF3mlsquASOp13vqaLlvY7rdyzLYFXKg_EYXRqshE_MARyaNjxWKkCRatMNZJ3SRcnymiJPSLCLlqz8cvdZ2EqBJG2P2ir-CQWBlNNDDT0juJU8MXB9gJFufjLUDDuPGP_9CKSLndYxCmXle7vL5GCfx2q1EHvWwPsZNlhL7gTTA9P81B1ybMglA0IncdXCrlotsx2vUg2EuqECsH8G-sRe4BV-yAwhnTQIrK668-8TkzREG8jd4hdWZdnA"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&client_id=ZbMFOJkpxMgSyK5e-8BLr&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&scope=openid+consents+accounts&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MzUsImlhdCI6MTYzOTY4OTczNSwianRpIjoiTnpTZjhDQXRuMkEzY2FSZVV4b1BoQSJ9.X1Rv53oE6aHGw5IeeuL406zFz0vrPkhN2sdPn9u-nnW6H1lgAMlm0j4yXUTsoR6OlbiXj81SghtdVQ_IA4zzTbAdzWUEF3mlsquASOp13vqaLlvY7rdyzLYFXKg_EYXRqshE_MARyaNjxWKkCRatMNZJ3SRcnymiJPSLCLlqz8cvdZ2EqBJG2P2ir-CQWBlNNDDT0juJU8MXB9gJFufjLUDDuPGP_9CKSLndYxCmXle7vL5GCfx2q1EHvWwPsZNlhL7gTTA9P81B1ybMglA0IncdXCrlotsx2vUg2EuqECsH8G-sRe4BV-yAwhnTQIrK668-8TkzREG8jd4hdWZdnA
2021-12-16 21:22:15 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:22:15 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:22:15 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:22:15 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0
MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS
QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE
CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD
EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT
DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET
MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh
NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy
X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y
edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8
Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET
+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw
bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB
/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA
FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw
AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn
LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl
bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz
dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG
CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC
ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm
b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw
YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl
cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0
LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo
ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl
bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN
BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx
akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/
fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj
4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5
qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS
jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A==
-----END CERTIFICATE-----
2021-12-16 21:22:15 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MzUsImlhdCI6MTYzOTY4OTczNSwianRpIjoiTnpTZjhDQXRuMkEzY2FSZVV4b1BoQSJ9.X1Rv53oE6aHGw5IeeuL406zFz0vrPkhN2sdPn9u-nnW6H1lgAMlm0j4yXUTsoR6OlbiXj81SghtdVQ_IA4zzTbAdzWUEF3mlsquASOp13vqaLlvY7rdyzLYFXKg_EYXRqshE_MARyaNjxWKkCRatMNZJ3SRcnymiJPSLCLlqz8cvdZ2EqBJG2P2ir-CQWBlNNDDT0juJU8MXB9gJFufjLUDDuPGP_9CKSLndYxCmXle7vL5GCfx2q1EHvWwPsZNlhL7gTTA9P81B1ybMglA0IncdXCrlotsx2vUg2EuqECsH8G-sRe4BV-yAwhnTQIrK668-8TkzREG8jd4hdWZdnA",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690635,
    "iat": 1639689735,
    "jti": "NzSf8CAtn2A3caReUxoPhA"
  }
}
2021-12-16 21:22:15
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:22:15 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2MzUsImlhdCI6MTYzOTY4OTczNSwianRpIjoiTnpTZjhDQXRuMkEzY2FSZVV4b1BoQSJ9.X1Rv53oE6aHGw5IeeuL406zFz0vrPkhN2sdPn9u-nnW6H1lgAMlm0j4yXUTsoR6OlbiXj81SghtdVQ_IA4zzTbAdzWUEF3mlsquASOp13vqaLlvY7rdyzLYFXKg_EYXRqshE_MARyaNjxWKkCRatMNZJ3SRcnymiJPSLCLlqz8cvdZ2EqBJG2P2ir-CQWBlNNDDT0juJU8MXB9gJFufjLUDDuPGP_9CKSLndYxCmXle7vL5GCfx2q1EHvWwPsZNlhL7gTTA9P81B1ybMglA0IncdXCrlotsx2vUg2EuqECsH8G-sRe4BV-yAwhnTQIrK668-8TkzREG8jd4hdWZdnA
2021-12-16 21:22:15 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:22:15 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:22:15 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "openid",
  "consents",
  "accounts"
]
expected
consents
2021-12-16 21:22:15 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy
2021-12-16 21:22:15 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDQsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzA0fQ.ct3iwdWThV62GbGGc1Ijrrmsc4dGLk0VDdysPzOSYC9s7zm-38BJkGWQGNuKlJGTQc8LE7SwqoorR8For6q0E4c3E30tYP1SxYDrTK44smyLy8j0QfaZAWiyKTCjd8b7-xqnYlateVWWXRFxNOnp0QgBQFxJg2YQn3SvO8ky-DJri3GKc-8HE2RwF5-_nF3jeT3tDo4dqhxy73eUkQ8Cq4wJe1c3XXe4KhYcxAmGwawtmiJiDnKkn3FiqEdFXgi2wDyEB3Seoy0RitNxmCbElGmV155IzL_LGZBNOtdkuxOL5MV1I-eW7T6ha8V4uVpXjuIR9Idn2Uq1UBSZC4PZlQ
refresh_token
GUfmTYMuxSFFSCrlwWuCcCXIKTJlWtLOOyshvwsGLQbCGqAEvz2717381123\~=>?
scope
openid consents accounts consent:urn:conformance.oidf:wfRA0LK409
2021-12-16 21:22:15
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-16 21:22:15 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwMDQsIm5vbmNlIjoiNjg3OWU5ZjctOGRiMi00YjdiLTgwMTgtYWM5ZmQxZTEzZjdiIiwiaWF0IjoxNjM5Njg5NzA0fQ.ct3iwdWThV62GbGGc1Ijrrmsc4dGLk0VDdysPzOSYC9s7zm-38BJkGWQGNuKlJGTQc8LE7SwqoorR8For6q0E4c3E30tYP1SxYDrTK44smyLy8j0QfaZAWiyKTCjd8b7-xqnYlateVWWXRFxNOnp0QgBQFxJg2YQn3SvO8ky-DJri3GKc-8HE2RwF5-_nF3jeT3tDo4dqhxy73eUkQ8Cq4wJe1c3XXe4KhYcxAmGwawtmiJiDnKkn3FiqEdFXgi2wDyEB3Seoy0RitNxmCbElGmV155IzL_LGZBNOtdkuxOL5MV1I-eW7T6ha8V4uVpXjuIR9Idn2Uq1UBSZC4PZlQ",
  "refresh_token": "GUfmTYMuxSFFSCrlwWuCcCXIKTJlWtLOOyshvwsGLQbCGqAEvz2717381123\\~\u003d\u003e?",
  "scope": "openid consents accounts consent:urn:conformance.oidf:wfRA0LK409"
}
outgoing_path
token
2021-12-16 21:22:16 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "authorization": "Bearer UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy",
  "content-type": "application/json",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4",
  "request-id": "|014fd42844328170d775f77dea136f35.9fcb5504697034a2.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-014fd42844328170d775f77dea136f35-9fcb5504697034a2-01",
  "content-length": "356",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "02086630964",
        "rel": "CPF"
      }
    },
    "permissions": [
      "RESOURCES_READ",
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_TRANSACTIONS_READ"
    ],
    "expirationDateTime": "2022-11-24T01:44:40Z",
    "scopes": "openid consents accounts"
  },
  "finalidade": "001",
  "company": "fake77",
  "companyChild": "777"
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"02086630964","rel":"CPF"}},"permissions":["RESOURCES_READ","ACCOUNTS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_TRANSACTIONS_READ"],"expirationDateTime":"2022-11-24T01:44:40Z","scopes":"openid consents accounts"},"finalidade":"001","company":"fake77","companyChild":"777"}
2021-12-16 21:22:16 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-16 21:22:16 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:22:16 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:22:16 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 21:22:16 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-16 21:22:16 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 21:22:16 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy
2021-12-16 21:22:16 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
UiG97LpZTppNuj3HVQx4JuQWdPZU63qoBQ2E6UKEWw6A30tHzy
2021-12-16 21:22:16 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-16 21:22:16 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 21:22:16 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
e83e66ad-cebf-4eeb-a8b0-20c236b16cf4
2021-12-16 21:22:16 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "openid",
  "consents",
  "accounts"
]
2021-12-16 21:22:16
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-16 21:22:16 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
e83e66ad-cebf-4eeb-a8b0-20c236b16cf4
2021-12-16 21:22:16 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4"
}
consentId
urn:conformance.oidf:Sj8EsvBI8z
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:Sj8EsvBI8z",
    "creationDateTime": "2021-12-16T21:22:16Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-16T21:22:16Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:22:16Z",
    "transactionFromDateTime": "2021-12-16T21:17:16Z",
    "transactionToDateTime": "2021-12-16T23:22:16Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:22:16Z"
  }
}
2021-12-16 21:22:16
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 21:22:16 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:Sj8EsvBI8z",
    "creationDateTime": "2021-12-16T21:22:16Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-16T21:22:16Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:22:16Z",
    "transactionFromDateTime": "2021-12-16T21:17:16Z",
    "transactionToDateTime": "2021-12-16T23:22:16Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:22:16Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-16 21:22:27 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "2e20d794-7252-48c5-bc4c-c35078bfbb61",
  "request-id": "|014fd42844328170d775f77dea136f35.97fcb0a73ac9ea1a.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-014fd42844328170d775f77dea136f35-97fcb0a73ac9ea1a-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:22:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:22:27 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-16 21:22:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "none",
  "sec-fetch-mode": "navigate",
  "sec-fetch-dest": "document",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7,lb;q\u003d0.6",
  "cookie": "_ga\u003dGA1.2.1521956178.1623789646; __utmz\u003d201319536.1634310691.9.5.utmcsr\u003dweb.conformance.directory.openbankingbrasil.org.br|utmccn\u003d(referral)|utmcmd\u003dreferral|utmcct\u003d/schedule-test.html; __utma\u003d201319536.1521956178.1623789646.1637679552.1638021473.12; JSESSIONID\u003dBE5B5711B7755AC5CB6840220978DC79",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJKV1QiLCJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0NhaXhhT3BlbkJhbmtpbmdSUC8ifQ.YmF9-ZlSfBrRbM_30S7Y0e7MPQT9ZBM8zRySheHaAfvp62ark1z3JyjDTZcIUvjgrTGEUxkW0vI1Keav0SUuVh5PZuPoz015mtN0PavZ7VlqU5qUffhxCBGjo1TThpfgNfaB_D6yWoHTxggjwTqGRu0mhpiInd37_KlI-Qitsyx_YopxIJ0amL__z-o9LSWxGVIdZUmP2bbJvxsnq2RUttn6hYKOTvVaGratsL8b2kHS-ZUHngjSFMe2T3BkmiqYv_YviAJ6jchgVNTnAm3YFwMeISaz-6otd8cEELqjInXmELxjnj8SgaLQDYyJTnFl9_Q2FDxbidHFoBcP06fWdQ.MFL2UZmdIBPxRlKv.Gj2hbZ-JXevuXMvvaebgvOCNcfnUSuh-ISGNLpcyC90SXy4kdbEr6YM48SVqFxAfg6n3CrpnqHWg5P49Gd0nddqrHAgtA5_cd-rVuEpxMeCj0S1MZOLXMQ6gsej3Wqzeq3AR17yW8C2N-olEVkSpaRO-up8VGfKZDp9xaUIAWgN8A5yYJfKqtp1q14zlawmXSlGr6_wFOuItf36-ZCqKsFdjCrKWcdw8-VmlWMHwuL0IPT_-oCgQbBhEBB70qNolJJQy8mKiLwkGvNdKRabTyomSsCCTQ0RztpGqFZb24Kqyy8-RWElXBrr_-wxFXASnnqlVk7zp9s-6_ovhZ4T3vJ9So6IFNmQEVIlk9WBhUqqf9DzD9NU3N278VJGXz0hZ4yqNTAWqX0XehpLTBXbC8W-bl_1ZMNwuftgFjsoD7gfM89YrLhdpAAVP1BLp9oJy2DRp6sUU-41K_dI5MQVuFcx_0LTwWYaVvE23b6xB2MUYz19z37p0sHtmbTHWuFKY27HeEnlZMflhkhYCOhMdE3qiyENQRTcYHA7e-39K0MyAndc0LIxk-tnylgnfCNTLuCT7LRsDv80IdabqIKiSSObAVZLLvMTcJ1EiMG3Pa0HWcsBMf2PoSkmS2d0bS3i-jb622qxGGMU6p4gfLbc4W-j6yLj51DkncU6TRBqHfZOSnyNEYOkhGrCgyrKNTD_yOhi80iSjG5YWkMpCOwkwinhiJZTQ--dQec77h3zjj8zG8miHazgdO2MDBaHM35RUbyQ7mME6o8t7fPOX22k3mWQRoDdnffyB3_wBiKwFs2rO_qC-S3dMGxqcCjBi-Edy88B31qhiNSBo8XjyLDSUpGYXRCwVBrntEvHaosVsZqKghjoYiLnq9JeEtbGX3I-dK6FbXEq3aixNcBT6hImIEcknAcn252_2kjJII-Kneyjn3TasqNSaBUxX39S0rf24ZHpkFuQkr5_knBZAUAA8Rt1CstcLWL8oQ-0tK_L054iWbjUUgChUCi_UvyAPYQWhsOa-RMut1tZlg6vZQe_MHIPkeNTURfTvjtCX6pitv4LOJ1t8jqqDK3N44-bxZAekNchtw8rKPYzGEo0D3spkQqu2Dsw5xZ2W_thDYM8BvgYPSuoIzwF1dJlMPBNKpy3BhFI20FnxGK1OkJzKTTjpe0jqakQtLOvSn2JC1Z3WpR6HTzZ5EpyTvwdvQC9XGhfc7ix0exS51MtWOZGKT9tDwlggBIrtVp3TCIarHYXSE9RddyIbxLhFdblwkQQ2JKn9-AI4jOPSEUWE9xWkZak0iF_w546MHVY2cQEOUZuc7H42Axx13oqAFEqQcPTzo7dXlIpROCWtuhIr8mwGw4viojq_AQiMTOA3Wgia9BJfJNG4p0K4Fl1mLgzkvZKByw6vm91NGS7QO83nw_f_eM7HAu6yx0M1uwrAoYMOLpGDJSOEQ20_tsLDa1rPckurGyu3gPUlg1_3d9Et-I4cXkmTqRtlf7DUdugqRtKWD_1oyay58Be3M2amdpeutVkqDZlggtK4RRp_wSnkTTWXdFppg5OAJoW0QoBXGQHE9uFixKxxDGNsFR5Iusr9P3LgZ7YmGbHTNAq7mOYD2wD2ut41JhbFkag5AtSEdFkQcJ2Iw0XCzQZ74PuUJZgcKSqqS_dyrpQiG1cCe34zS_007wSb0KVbgm4ifrmpfcx4b8pTIVtdJhABedfZF09olR6wAAz0Lii2pdS_V34vw5Shr2rO8lbKYdPhJwelv1awFkGS386CtDvWY-_Q6AvGF9Jo6WI4oEWYIAQCbJCw.Xb6w0WMcz630JDb3xLfdjw",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z",
  "response_type": "code id_token"
}
incoming_body
2021-12-16 21:22:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-16 21:22:35 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.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.P-b9ZTXbJ7pZlwcqk_GECIC87cksMG0B2jnXCeet9FC1sXPXuJxzRbslLU-CbQ7AVM71GTRdQ_m3wuaYtbD0-mZ0takg5YYKjcqqqnmhmlBFikOpQ7BSJXTbIPTbHlVVjhtqvQC17oTwR4qzeXYpq5s2YJRVVnZum70ER6OO7yVQ5hfWrM6zV9iWh52zZTNOSbsGeXzAkz5J4sI8rI2jNdxW3AzPS2qDIndakBNPbCldzgdqnWzlgak93PlfbbAPkV0qQyiJyOpo4BrbNh5cqGGmy71ErQeGoyxrGZWOHdw80lnRZ3UFxFKCdGDzucuB73ZvaPv0XiD9mlBo6lnQNQ",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
    "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
    "nbf": 1639689747,
    "azp": "ZbMFOJkpxMgSyK5e-8BLr",
    "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z",
    "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
    "state": "eab6896c-e086-40fa-b78b-45d801371029",
    "exp": 1639690647,
    "iat": 1639689747,
    "jti": "YKkVxOtEu1e5yCaWBCnQtg",
    "code_challenge": "tm37srIVYXcETZtX4mlNfyap68NeHCuImK5f5519WLQ"
  },
  "jwe_header": {
    "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
    "cty": "JWT",
    "enc": "A256GCM",
    "alg": "RSA-OAEP",
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
  }
}
2021-12-16 21:22:35 SUCCESS
EnsureRequestObjectWasEncrypted
Request object was encrypted
jwe_header
{
  "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
  "cty": "JWT",
  "enc": "A256GCM",
  "alg": "RSA-OAEP",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
}
2021-12-16 21:22:35 SUCCESS
FAPIBrazilEnsureRequestObjectEncryptedUsingRSAOAEPA256GCM
Request object was encrypted using RSA-OAEP and A256GCM
jwe_header
{
  "iss": "https://www.certification.openid.net/test/a/CaixaOpenBankingRP/",
  "cty": "JWT",
  "enc": "A256GCM",
  "alg": "RSA-OAEP",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996"
}
2021-12-16 21:22:35 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-16 21:22:35 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJKV1QiLCJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJpc3MiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL0NhaXhhT3BlbkJhbmtpbmdSUC8ifQ.YmF9-ZlSfBrRbM_30S7Y0e7MPQT9ZBM8zRySheHaAfvp62ark1z3JyjDTZcIUvjgrTGEUxkW0vI1Keav0SUuVh5PZuPoz015mtN0PavZ7VlqU5qUffhxCBGjo1TThpfgNfaB_D6yWoHTxggjwTqGRu0mhpiInd37_KlI-Qitsyx_YopxIJ0amL__z-o9LSWxGVIdZUmP2bbJvxsnq2RUttn6hYKOTvVaGratsL8b2kHS-ZUHngjSFMe2T3BkmiqYv_YviAJ6jchgVNTnAm3YFwMeISaz-6otd8cEELqjInXmELxjnj8SgaLQDYyJTnFl9_Q2FDxbidHFoBcP06fWdQ.MFL2UZmdIBPxRlKv.Gj2hbZ-JXevuXMvvaebgvOCNcfnUSuh-ISGNLpcyC90SXy4kdbEr6YM48SVqFxAfg6n3CrpnqHWg5P49Gd0nddqrHAgtA5_cd-rVuEpxMeCj0S1MZOLXMQ6gsej3Wqzeq3AR17yW8C2N-olEVkSpaRO-up8VGfKZDp9xaUIAWgN8A5yYJfKqtp1q14zlawmXSlGr6_wFOuItf36-ZCqKsFdjCrKWcdw8-VmlWMHwuL0IPT_-oCgQbBhEBB70qNolJJQy8mKiLwkGvNdKRabTyomSsCCTQ0RztpGqFZb24Kqyy8-RWElXBrr_-wxFXASnnqlVk7zp9s-6_ovhZ4T3vJ9So6IFNmQEVIlk9WBhUqqf9DzD9NU3N278VJGXz0hZ4yqNTAWqX0XehpLTBXbC8W-bl_1ZMNwuftgFjsoD7gfM89YrLhdpAAVP1BLp9oJy2DRp6sUU-41K_dI5MQVuFcx_0LTwWYaVvE23b6xB2MUYz19z37p0sHtmbTHWuFKY27HeEnlZMflhkhYCOhMdE3qiyENQRTcYHA7e-39K0MyAndc0LIxk-tnylgnfCNTLuCT7LRsDv80IdabqIKiSSObAVZLLvMTcJ1EiMG3Pa0HWcsBMf2PoSkmS2d0bS3i-jb622qxGGMU6p4gfLbc4W-j6yLj51DkncU6TRBqHfZOSnyNEYOkhGrCgyrKNTD_yOhi80iSjG5YWkMpCOwkwinhiJZTQ--dQec77h3zjj8zG8miHazgdO2MDBaHM35RUbyQ7mME6o8t7fPOX22k3mWQRoDdnffyB3_wBiKwFs2rO_qC-S3dMGxqcCjBi-Edy88B31qhiNSBo8XjyLDSUpGYXRCwVBrntEvHaosVsZqKghjoYiLnq9JeEtbGX3I-dK6FbXEq3aixNcBT6hImIEcknAcn252_2kjJII-Kneyjn3TasqNSaBUxX39S0rf24ZHpkFuQkr5_knBZAUAA8Rt1CstcLWL8oQ-0tK_L054iWbjUUgChUCi_UvyAPYQWhsOa-RMut1tZlg6vZQe_MHIPkeNTURfTvjtCX6pitv4LOJ1t8jqqDK3N44-bxZAekNchtw8rKPYzGEo0D3spkQqu2Dsw5xZ2W_thDYM8BvgYPSuoIzwF1dJlMPBNKpy3BhFI20FnxGK1OkJzKTTjpe0jqakQtLOvSn2JC1Z3WpR6HTzZ5EpyTvwdvQC9XGhfc7ix0exS51MtWOZGKT9tDwlggBIrtVp3TCIarHYXSE9RddyIbxLhFdblwkQQ2JKn9-AI4jOPSEUWE9xWkZak0iF_w546MHVY2cQEOUZuc7H42Axx13oqAFEqQcPTzo7dXlIpROCWtuhIr8mwGw4viojq_AQiMTOA3Wgia9BJfJNG4p0K4Fl1mLgzkvZKByw6vm91NGS7QO83nw_f_eM7HAu6yx0M1uwrAoYMOLpGDJSOEQ20_tsLDa1rPckurGyu3gPUlg1_3d9Et-I4cXkmTqRtlf7DUdugqRtKWD_1oyay58Be3M2amdpeutVkqDZlggtK4RRp_wSnkTTWXdFppg5OAJoW0QoBXGQHE9uFixKxxDGNsFR5Iusr9P3LgZ7YmGbHTNAq7mOYD2wD2ut41JhbFkag5AtSEdFkQcJ2Iw0XCzQZ74PuUJZgcKSqqS_dyrpQiG1cCe34zS_007wSb0KVbgm4ifrmpfcx4b8pTIVtdJhABedfZF09olR6wAAz0Lii2pdS_V34vw5Shr2rO8lbKYdPhJwelv1awFkGS386CtDvWY-_Q6AvGF9Jo6WI4oEWYIAQCbJCw.Xb6w0WMcz630JDb3xLfdjw",
  "client_id": "ZbMFOJkpxMgSyK5e-8BLr",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z",
  "response_type": "code id_token",
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "iss": "ZbMFOJkpxMgSyK5e-8BLr",
  "code_challenge_method": "S256",
  "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
  "aud": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "nbf": 1639689747,
  "azp": "ZbMFOJkpxMgSyK5e-8BLr",
  "state": "eab6896c-e086-40fa-b78b-45d801371029",
  "exp": 1639690647,
  "iat": 1639689747,
  "jti": "YKkVxOtEu1e5yCaWBCnQtg",
  "code_challenge": "tm37srIVYXcETZtX4mlNfyap68NeHCuImK5f5519WLQ"
}
2021-12-16 21:22:35 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-16 21:22:35
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2021-12-16 21:22:35 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 16, 2021, 9:37:27 PM"
2021-12-16 21:22:35 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 16, 2021, 9:22:27 PM"
now
"Dec 16, 2021, 9:22:35 PM"
2021-12-16 21:22:35
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-16 21:22:35 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-16 21:22:35 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-16 21:22:35 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-16 21:22:35 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-16 21:22:35 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.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.P-b9ZTXbJ7pZlwcqk_GECIC87cksMG0B2jnXCeet9FC1sXPXuJxzRbslLU-CbQ7AVM71GTRdQ_m3wuaYtbD0-mZ0takg5YYKjcqqqnmhmlBFikOpQ7BSJXTbIPTbHlVVjhtqvQC17oTwR4qzeXYpq5s2YJRVVnZum70ER6OO7yVQ5hfWrM6zV9iWh52zZTNOSbsGeXzAkz5J4sI8rI2jNdxW3AzPS2qDIndakBNPbCldzgdqnWzlgak93PlfbbAPkV0qQyiJyOpo4BrbNh5cqGGmy71ErQeGoyxrGZWOHdw80lnRZ3UFxFKCdGDzucuB73ZvaPv0XiD9mlBo6lnQNQ
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 24487713187701826203633759426414660205207544385150837670321423790431785218127351161570278527016847365851303507056877332864099365651241192323842922473962019884210868214854422795716872783667510110042934241796902280848215310145654193808657521455873391801800818903763257999503996503304859717372410055632226973053354065864765408904587609576950860201016087420168654022628919762491196872725196714381388661709875666591814730553028832628901465978132623081840321194382869121802107708250289816017150020212844566789235998195665007528948792346543235668095192038322111457237645955649345534402371395832564477022768133835403473777249
  public exponent: 65537
2021-12-16 21:22:35 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://stgopenbankingdes.z15.web.core.windows.net/
2021-12-16 21:22:35 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
ZbMFOJkpxMgSyK5e-8BLr
2021-12-16 21:22:35 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2021-12-16 21:22:35 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:Sj8EsvBI8z"
]
expected
openid
2021-12-16 21:22:35 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z
2021-12-16 21:22:35 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:Sj8EsvBI8z"
]
expected
consent:urn:conformance.oidf:Sj8EsvBI8z
2021-12-16 21:22:35 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:Sj8EsvBI8z"
]
2021-12-16 21:22:35 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-16 21:22:35 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consents",
  "accounts",
  "consent:urn:conformance.oidf:Sj8EsvBI8z"
]
expected
openid
2021-12-16 21:22:35 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
ZbMFOJkpxMgSyK5e-8BLr
2021-12-16 21:22:35 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
c14Z89rJbVfMY289pFRzP3TklruZPUvC
2021-12-16 21:22:35 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
acd41811-163a-479b-9731-b8cae356f7a4
2021-12-16 21:22:35 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
6NeMMSkUIBfHOZTaSSEsrg
2021-12-16 21:22:35 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
Rm2PuCY8hnKWWWyXxsVbow
2021-12-16 21:22:35 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/
sub
user-subject-1234531
aud
ZbMFOJkpxMgSyK5e-8BLr
nonce
acd41811-163a-479b-9731-b8cae356f7a4
iat
1639689755
exp
1639690055
2021-12-16 21:22:35
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-16 21:22:35 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
6NeMMSkUIBfHOZTaSSEsrg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
  "iat": 1639689755,
  "exp": 1639690055,
  "c_hash": "6NeMMSkUIBfHOZTaSSEsrg"
}
2021-12-16 21:22:35 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
Rm2PuCY8hnKWWWyXxsVbow
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
  "iat": 1639689755,
  "exp": 1639690055,
  "c_hash": "6NeMMSkUIBfHOZTaSSEsrg",
  "s_hash": "Rm2PuCY8hnKWWWyXxsVbow"
}
2021-12-16 21:22:35 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
5IOgv5hpcXI1hhDSKtMAWw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
  "iat": 1639689755,
  "exp": 1639690055,
  "c_hash": "6NeMMSkUIBfHOZTaSSEsrg",
  "s_hash": "Rm2PuCY8hnKWWWyXxsVbow",
  "at_hash": "5IOgv5hpcXI1hhDSKtMAWw"
}
2021-12-16 21:22:35 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-16 21:22:35 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiY19oYXNoIjoiNk5lTU1Ta1VJQmZIT1pUYVNTRXNyZyIsInNfaGFzaCI6IlJtMlB1Q1k4aG5LV1dXeVh4c1Zib3ciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWxcLyIsImV4cCI6MTYzOTY5MDA1NSwibm9uY2UiOiJhY2Q0MTgxMS0xNjNhLTQ3OWItOTczMS1iOGNhZTM1NmY3YTQiLCJpYXQiOjE2Mzk2ODk3NTV9.DQT63QUPFAgTkSR7zsTqQGsISk7UYlyGUzpgWTK7nmYJaLH5WXnDiIrHWybPd9qVrQnUFU9krO9zBEuH4GgtUCYU2f0ULzLOsAclI9Howw8rBmTH5ELhYRkHt7wpGBQgDHnbZ5sgFQ00cWk53YgH_Dryb8nZrlv1QYGxwQdt_C1y2VANkhZac9njakkR-_ttcOGuZlZ4Cd_TJun2yC4KiOq65F9yIzWDgjrzWzSCeQYS6eEWoyDDtZzvqlaIFr-RYdFNSIKQy0678eJ2nF0GBNnFUCGGl4mVKewpRFZ8-kNErBmTcnLgqlggbTsU_MCUTdFXUib5r9L8dh6AfJlEUA
2021-12-16 21:22:35 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:Sj8EsvBI8z",
    "creationDateTime": "2021-12-16T21:22:16Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-16T21:22:35Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-16T23:22:16Z",
    "transactionFromDateTime": "2021-12-16T21:17:16Z",
    "transactionToDateTime": "2021-12-16T23:22:16Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federalconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:22:16Z"
  }
}
2021-12-16 21:22:35 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "eab6896c-e086-40fa-b78b-45d801371029"
}
2021-12-16 21:22:35 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "eab6896c-e086-40fa-b78b-45d801371029",
  "code": "c14Z89rJbVfMY289pFRzP3TklruZPUvC"
}
2021-12-16 21:22:35 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "state": "eab6896c-e086-40fa-b78b-45d801371029",
  "code": "c14Z89rJbVfMY289pFRzP3TklruZPUvC",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiY19oYXNoIjoiNk5lTU1Ta1VJQmZIT1pUYVNTRXNyZyIsInNfaGFzaCI6IlJtMlB1Q1k4aG5LV1dXeVh4c1Zib3ciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWxcLyIsImV4cCI6MTYzOTY5MDA1NSwibm9uY2UiOiJhY2Q0MTgxMS0xNjNhLTQ3OWItOTczMS1iOGNhZTM1NmY3YTQiLCJpYXQiOjE2Mzk2ODk3NTV9.DQT63QUPFAgTkSR7zsTqQGsISk7UYlyGUzpgWTK7nmYJaLH5WXnDiIrHWybPd9qVrQnUFU9krO9zBEuH4GgtUCYU2f0ULzLOsAclI9Howw8rBmTH5ELhYRkHt7wpGBQgDHnbZ5sgFQ00cWk53YgH_Dryb8nZrlv1QYGxwQdt_C1y2VANkhZac9njakkR-_ttcOGuZlZ4Cd_TJun2yC4KiOq65F9yIzWDgjrzWzSCeQYS6eEWoyDDtZzvqlaIFr-RYdFNSIKQy0678eJ2nF0GBNnFUCGGl4mVKewpRFZ8-kNErBmTcnLgqlggbTsU_MCUTdFXUib5r9L8dh6AfJlEUA"
}
2021-12-16 21:22:35
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://stgopenbankingdes.z15.web.core.windows.net/#state=eab6896c-e086-40fa-b78b-45d801371029&code=c14Z89rJbVfMY289pFRzP3TklruZPUvC&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiY19oYXNoIjoiNk5lTU1Ta1VJQmZIT1pUYVNTRXNyZyIsInNfaGFzaCI6IlJtMlB1Q1k4aG5LV1dXeVh4c1Zib3ciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWxcLyIsImV4cCI6MTYzOTY5MDA1NSwibm9uY2UiOiJhY2Q0MTgxMS0xNjNhLTQ3OWItOTczMS1iOGNhZTM1NmY3YTQiLCJpYXQiOjE2Mzk2ODk3NTV9.DQT63QUPFAgTkSR7zsTqQGsISk7UYlyGUzpgWTK7nmYJaLH5WXnDiIrHWybPd9qVrQnUFU9krO9zBEuH4GgtUCYU2f0ULzLOsAclI9Howw8rBmTH5ELhYRkHt7wpGBQgDHnbZ5sgFQ00cWk53YgH_Dryb8nZrlv1QYGxwQdt_C1y2VANkhZac9njakkR-_ttcOGuZlZ4Cd_TJun2yC4KiOq65F9yIzWDgjrzWzSCeQYS6eEWoyDDtZzvqlaIFr-RYdFNSIKQy0678eJ2nF0GBNnFUCGGl4mVKewpRFZ8-kNErBmTcnLgqlggbTsU_MCUTdFXUib5r9L8dh6AfJlEUA
2021-12-16 21:22:35 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://stgopenbankingdes.z15.web.core.windows.net/#state=eab6896c-e086-40fa-b78b-45d801371029&code=c14Z89rJbVfMY289pFRzP3TklruZPUvC&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiNUlPZ3Y1aHBjWEkxaGhEU0t0TUFXdyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiY19oYXNoIjoiNk5lTU1Ta1VJQmZIT1pUYVNTRXNyZyIsInNfaGFzaCI6IlJtMlB1Q1k4aG5LV1dXeVh4c1Zib3ciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWxcLyIsImV4cCI6MTYzOTY5MDA1NSwibm9uY2UiOiJhY2Q0MTgxMS0xNjNhLTQ3OWItOTczMS1iOGNhZTM1NmY3YTQiLCJpYXQiOjE2Mzk2ODk3NTV9.DQT63QUPFAgTkSR7zsTqQGsISk7UYlyGUzpgWTK7nmYJaLH5WXnDiIrHWybPd9qVrQnUFU9krO9zBEuH4GgtUCYU2f0ULzLOsAclI9Howw8rBmTH5ELhYRkHt7wpGBQgDHnbZ5sgFQ00cWk53YgH_Dryb8nZrlv1QYGxwQdt_C1y2VANkhZac9njakkR-_ttcOGuZlZ4Cd_TJun2yC4KiOq65F9yIzWDgjrzWzSCeQYS6eEWoyDDtZzvqlaIFr-RYdFNSIKQy0678eJ2nF0GBNnFUCGGl4mVKewpRFZ8-kNErBmTcnLgqlggbTsU_MCUTdFXUib5r9L8dh6AfJlEUA]
outgoing_path
authorize
2021-12-16 21:22:39 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "b401fda6-5b99-493a-8695-c72d526b84ff",
  "request-id": "|a4a2848cd404da70aac2665a10a5876c.5537e47b1ecd1c46.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-a4a2848cd404da70aac2665a10a5876c-5537e47b1ecd1c46-01",
  "connection": "close"
}
incoming_path
/test/a/RP-Accounts-Caixa-Economica-Federal/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:22:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-16 21:22:39 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-16 21:22:40 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept-encoding": "gzip, deflate",
  "content-type": "application/x-www-form-urlencoded",
  "user-agent": "caixa-economica-federal",
  "x-fapi-interaction-id": "7aa81291-34aa-481f-a93c-e69ae09c0cdc",
  "request-id": "|a4a2848cd404da70aac2665a10a5876c.c1c584211642ad4e.",
  "request-context": "appId\u003d3190b1c3-4c81-4ef4-87d6-5bc68f699693",
  "traceparent": "00-a4a2848cd404da70aac2665a10a5876c-c1c584211642ad4e-01",
  "content-length": "995",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "c14Z89rJbVfMY289pFRzP3TklruZPUvC",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=c14Z89rJbVfMY289pFRzP3TklruZPUvC&redirect_uri=https%3A%2F%2Fstgopenbankingdes.z15.web.core.windows.net%2F&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2021-12-16 21:22:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:22:40 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0\nMjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS\nQVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE\nCxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD\nEyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT\nDjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET\nMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh\nNzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP\nADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy\nX71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y\nedmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8\nIv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET\n+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw\nbK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB\n/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA\nFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw\nAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn\nLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl\nbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz\ndGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG\nCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC\nATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm\nb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw\nYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl\ncyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0\nLCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo\nZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl\nbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN\nBgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx\nakI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/\nfKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj\n4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5\nqMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:22:40 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:22:40 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0
MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS
QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE
CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD
EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT
DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET
MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh
NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy
X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y
edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8
Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET
+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw
bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB
/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA
FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw
AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn
LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl
bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz
dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG
CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC
ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm
b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw
YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl
cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0
LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo
ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl
bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN
BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx
akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/
fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj
4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5
qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS
jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A==
-----END CERTIFICATE-----
2021-12-16 21:22:40 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690659,
    "iat": 1639689759,
    "jti": "RIdTR-vipRx0PjoXh-1skw"
  }
}
2021-12-16 21:22:40
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:22:40 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg
2021-12-16 21:22:40 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:22:40 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:22:40 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
c14Z89rJbVfMY289pFRzP3TklruZPUvC
2021-12-16 21:22:40 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://stgopenbankingdes.z15.web.core.windows.net/
2021-12-16 21:22:40 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
ahnH12iSgJEpXR9lTBfYSRwa5ANtKXZiKMIw8lhdhL4v8BjksZ
2021-12-16 21:22:40 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
tVPDtfeiljlDimIuOk5XzA
2021-12-16 21:22:40
CreateRefreshToken
Created refresh token
refresh_token
lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513)?(*|
2021-12-16 21:22:40 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/
sub
user-subject-1234531
aud
ZbMFOJkpxMgSyK5e-8BLr
nonce
acd41811-163a-479b-9731-b8cae356f7a4
iat
1639689760
exp
1639690060
2021-12-16 21:22:40
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-16 21:22:40 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
tVPDtfeiljlDimIuOk5XzA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/RP-Accounts-Caixa-Economica-Federal/",
  "sub": "user-subject-1234531",
  "aud": "ZbMFOJkpxMgSyK5e-8BLr",
  "nonce": "acd41811-163a-479b-9731-b8cae356f7a4",
  "iat": 1639689760,
  "exp": 1639690060,
  "at_hash": "tVPDtfeiljlDimIuOk5XzA"
}
2021-12-16 21:22:40 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-16 21:22:40 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoidFZQRHRmZWlsamxEaW1JdU9rNVh6QSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwNjAsIm5vbmNlIjoiYWNkNDE4MTEtMTYzYS00NzliLTk3MzEtYjhjYWUzNTZmN2E0IiwiaWF0IjoxNjM5Njg5NzYwfQ.MdLo0AirTp3BY4Y-17IkcP1TvbSpUc7-lLqokd99wLxUy-uOWz-RLbsb4HF5RScQ_H6rwdDA3XnYq0wAhFjxfANCAKdb9dLrApPwLZBwTpQImNEGfJldnjOGdztK8HcI59ufquycYKt9KcTeK8mgN9iwnFa8hyJX5sw3snkoSlv_3n-oWSbmBEaNLPkYgNbEecfvfKixGFh8aoFAdLYhDQDmPYQ7dJso4zCudXrKsymrXpodEa1NQhnY5SBQDfZZC-L-kQNX5Mo80B50rnyxuSWXyHwSkhYAKKiygNkiyNf89HSEhst-szTmW30MZH_zgWMhMntKp17kCdbuEEs4Pg
2021-12-16 21:22:40 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
ahnH12iSgJEpXR9lTBfYSRwa5ANtKXZiKMIw8lhdhL4v8BjksZ
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoidFZQRHRmZWlsamxEaW1JdU9rNVh6QSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwNjAsIm5vbmNlIjoiYWNkNDE4MTEtMTYzYS00NzliLTk3MzEtYjhjYWUzNTZmN2E0IiwiaWF0IjoxNjM5Njg5NzYwfQ.MdLo0AirTp3BY4Y-17IkcP1TvbSpUc7-lLqokd99wLxUy-uOWz-RLbsb4HF5RScQ_H6rwdDA3XnYq0wAhFjxfANCAKdb9dLrApPwLZBwTpQImNEGfJldnjOGdztK8HcI59ufquycYKt9KcTeK8mgN9iwnFa8hyJX5sw3snkoSlv_3n-oWSbmBEaNLPkYgNbEecfvfKixGFh8aoFAdLYhDQDmPYQ7dJso4zCudXrKsymrXpodEa1NQhnY5SBQDfZZC-L-kQNX5Mo80B50rnyxuSWXyHwSkhYAKKiygNkiyNf89HSEhst-szTmW30MZH_zgWMhMntKp17kCdbuEEs4Pg
refresh_token
lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513)?(*|
scope
openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z
2021-12-16 21:22:40
RemoveIssuedAccessTokenFromEnvironment
Removed access_token and token_type from environment
2021-12-16 21:22:40 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "ahnH12iSgJEpXR9lTBfYSRwa5ANtKXZiKMIw8lhdhL4v8BjksZ",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoidFZQRHRmZWlsamxEaW1JdU9rNVh6QSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiWmJNRk9Ka3B4TWdTeUs1ZS04QkxyIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL1JQLUFjY291bnRzLUNhaXhhLUVjb25vbWljYS1GZWRlcmFsXC8iLCJleHAiOjE2Mzk2OTAwNjAsIm5vbmNlIjoiYWNkNDE4MTEtMTYzYS00NzliLTk3MzEtYjhjYWUzNTZmN2E0IiwiaWF0IjoxNjM5Njg5NzYwfQ.MdLo0AirTp3BY4Y-17IkcP1TvbSpUc7-lLqokd99wLxUy-uOWz-RLbsb4HF5RScQ_H6rwdDA3XnYq0wAhFjxfANCAKdb9dLrApPwLZBwTpQImNEGfJldnjOGdztK8HcI59ufquycYKt9KcTeK8mgN9iwnFa8hyJX5sw3snkoSlv_3n-oWSbmBEaNLPkYgNbEecfvfKixGFh8aoFAdLYhDQDmPYQ7dJso4zCudXrKsymrXpodEa1NQhnY5SBQDfZZC-L-kQNX5Mo80B50rnyxuSWXyHwSkhYAKKiygNkiyNf89HSEhst-szTmW30MZH_zgWMhMntKp17kCdbuEEs4Pg",
  "refresh_token": "lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513)?(*|",
  "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z"
}
outgoing_path
token
2021-12-16 21:23:05 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "caixa-economica-federal",
  "authorization": "Bearer ahnH12iSgJEpXR9lTBfYSRwa5ANtKXZiKMIw8lhdhL4v8BjksZ",
  "accept": "*/*",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d02FA97342BFD66E5E912DC02624250DD",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:23:05 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2021-12-16 21:23:05 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2021-12-16 21:23:05 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2021-12-16 21:24:14 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "caixa-economica-federal",
  "accept": "*/*",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "application/x-www-form-urlencoded",
  "cookie": "JSESSIONID\u003d02FA97342BFD66E5E912DC02624250DD",
  "content-length": "1224",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "code": "c14Z89rJbVfMY289pFRzP3TklruZPUvC",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
  "code_verifier": "ZylxMV1S2J4Wkz3MrvLg3Jn-uxYka9m56dC8mrE9oluQlPvpuSuITDVH-EjMqzJDzJ8AYdcelHkXl8yae2_GnQ",
  "client_id": "client_HHIavzGctTkHPibLbDws48266",
  "refresh_token": "lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513)?(*|"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&code=c14Z89rJbVfMY289pFRzP3TklruZPUvC&redirect_uri=https%3A%2F%2Fstgopenbankingdes.z15.web.core.windows.net%2F&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&code_verifier=ZylxMV1S2J4Wkz3MrvLg3Jn-uxYka9m56dC8mrE9oluQlPvpuSuITDVH-EjMqzJDzJ8AYdcelHkXl8yae2_GnQ&client_id=client_HHIavzGctTkHPibLbDws48266&refresh_token=lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513%29%3F%28*%7C
2021-12-16 21:24:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:24:14 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0\nMjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS\nQVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE\nCxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD\nEyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT\nDjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET\nMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh\nNzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP\nADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy\nX71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y\nedmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8\nIv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET\n+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw\nbK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB\n/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA\nFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw\nAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn\nLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl\nbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz\ndGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG\nCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC\nATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm\nb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw\nYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl\ncyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0\nLCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo\nZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl\nbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN\nBgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx\nakI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/\nfKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj\n4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5\nqMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:24:14 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:24:14 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 21:24:14 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690659,
    "iat": 1639689759,
    "jti": "RIdTR-vipRx0PjoXh-1skw"
  }
}
2021-12-16 21:24:14
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:24:14 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg
2021-12-16 21:24:14 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:24:14 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:24:14 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
lDNXUqsUTGPURBjQRBenaFweuPgJZneVPsBADEXRYhisOMUPUx2956060513)?(*|
2021-12-16 21:24:14 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
iT46IocNqjh73qlixrdSqWIYYTWNFDK02gGzxwVma272KBfQce
2021-12-16 21:24:14 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
btdjgYqUAw44AS4k-zCPxw
2021-12-16 21:24:14
CreateRefreshToken
Created refresh token
refresh_token
csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862:%,^,
2021-12-16 21:24:14 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
iT46IocNqjh73qlixrdSqWIYYTWNFDK02gGzxwVma272KBfQce
token_type
Bearer
refresh_token
csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862:%,^,
scope
openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z
2021-12-16 21:24:14 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "iT46IocNqjh73qlixrdSqWIYYTWNFDK02gGzxwVma272KBfQce",
  "token_type": "Bearer",
  "refresh_token": "csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862:%,^,",
  "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z"
}
outgoing_path
token
2021-12-16 21:24:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "caixa-economica-federal",
  "accept": "*/*",
  "accept-encoding": "gzip, deflate, br",
  "content-type": "application/x-www-form-urlencoded",
  "cookie": "JSESSIONID\u003d02FA97342BFD66E5E912DC02624250DD",
  "content-length": "1224",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "code": "c14Z89rJbVfMY289pFRzP3TklruZPUvC",
  "redirect_uri": "https://stgopenbankingdes.z15.web.core.windows.net/",
  "client_assertion": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
  "code_verifier": "ZylxMV1S2J4Wkz3MrvLg3Jn-uxYka9m56dC8mrE9oluQlPvpuSuITDVH-EjMqzJDzJ8AYdcelHkXl8yae2_GnQ",
  "client_id": "client_HHIavzGctTkHPibLbDws48266",
  "refresh_token": "csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862:%,^,"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&code=c14Z89rJbVfMY289pFRzP3TklruZPUvC&redirect_uri=https%3A%2F%2Fstgopenbankingdes.z15.web.core.windows.net%2F&client_assertion=eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&code_verifier=ZylxMV1S2J4Wkz3MrvLg3Jn-uxYka9m56dC8mrE9oluQlPvpuSuITDVH-EjMqzJDzJ8AYdcelHkXl8yae2_GnQ&client_id=client_HHIavzGctTkHPibLbDws48266&refresh_token=csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862%3A%25%2C%5E%2C
2021-12-16 21:24:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-16 21:24:37 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:24:37 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:24:37 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0
MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS
QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE
CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD
EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT
DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET
MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh
NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy
X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y
edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8
Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET
+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw
bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB
/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA
FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw
AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn
LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl
bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz
dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG
CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC
ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm
b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw
YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl
cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0
LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo
ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl
bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN
BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx
akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/
fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj
4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5
qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS
jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A==
-----END CERTIFICATE-----
2021-12-16 21:24:37 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg",
  "header": {
    "kid": "VoL3mGhLojN3e_dXnd9oyT0-CM56_8S8qkY0wTGUqzM",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "ZbMFOJkpxMgSyK5e-8BLr",
    "aud": "https://www.certification.openid.net/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/token",
    "iss": "ZbMFOJkpxMgSyK5e-8BLr",
    "exp": 1639690659,
    "iat": 1639689759,
    "jti": "RIdTR-vipRx0PjoXh-1skw"
  }
}
2021-12-16 21:24:37
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-16 21:24:37 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJ0eXAiOiJKV1QiLCJhbGciOiJQUzI1NiIsImtpZCI6IlZvTDNtR2hMb2pOM2VfZFhuZDlveVQwLUNNNTZfOFM4cWtZMHdUR1Vxek0ifQ.eyJpc3MiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJzdWIiOiJaYk1GT0prcHhNZ1N5SzVlLThCTHIiLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvUlAtQWNjb3VudHMtQ2FpeGEtRWNvbm9taWNhLUZlZGVyYWwvdG9rZW4iLCJleHAiOjE2Mzk2OTA2NTksImlhdCI6MTYzOTY4OTc1OSwianRpIjoiUklkVFItdmlwUngwUGpvWGgtMXNrdyJ9.TVIWCNPrXDPPay0JmvU2fk9vy4OxRo2py0DhmHUvS5HstniUwp3Hf6cZuqHyc_aTTW-AbrYaz-7kXe0GIUDosgrTfyTcYE00wP_lzKMM8q7kIErGqJYZP3CJkRIwEH2HbsYfAmjTlMSMSVYGYlXRjb8m7iT4BsUI1ja8IgrrU8GrrjNgZyzcaNSM4at_YcrTaQitHTKsjdfnjDmFboj-2Zv4Nt4Hn4eXQ91Vc-56jW1lTXbEYeJnS6LweVxEqIObowCq7dmSBA7jz0yMEd72nJjXRb44ox6PfPYHx09RUNUQCGszwqRRE1HdKvHLVD6jSk5HOrvuQyk31BkVph6kHg
2021-12-16 21:24:37 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-16 21:24:37 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-16 21:24:37 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
csjryPlxFNJZjELeJFZwgLNRjsWjtSLYTDLKtgmUWnWEMvBnrM5403873862:%,^,
2021-12-16 21:24:37 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N
2021-12-16 21:24:37 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
lFlyatFmK_8SltRwTnVxlw
2021-12-16 21:24:37
CreateRefreshToken
Created refresh token
refresh_token
wIOPPBiTLgBpSvJxXCOtlznefyGIfvtlaMxNvflqBpsvFzpJgr4173232651/=='-
2021-12-16 21:24:37 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N
token_type
Bearer
refresh_token
wIOPPBiTLgBpSvJxXCOtlznefyGIfvtlaMxNvflqBpsvFzpJgr4173232651/=='-
scope
openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z
2021-12-16 21:24:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N",
  "token_type": "Bearer",
  "refresh_token": "wIOPPBiTLgBpSvJxXCOtlznefyGIfvtlaMxNvflqBpsvFzpJgr4173232651/\u003d\u003d\u0027-",
  "scope": "openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z"
}
outgoing_path
token
2021-12-16 21:24:50 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance uY2U45e3A7DglPR
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "caixa-economica-federal",
  "authorization": "Bearer Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N",
  "accept": "*/*",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d02FA97342BFD66E5E912DC02624250DD",
  "connection": "close"
}
incoming_path
/test-mtls/a/RP-Accounts-Caixa-Economica-Federal/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-16 21:24:50 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2021-12-16 21:24:50 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0 MjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS QVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE CxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD EyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT DjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET MBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh NzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy X71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y edmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8 Iv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET +mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw bK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA FIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw AYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn LmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl bmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz dGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG CCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC ATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm b3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw YXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl cyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0 LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo ZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl bGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN BgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx akI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/ fKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj 4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5 qMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS jlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHDjCCBfagAwIBAgIUDP6sKYO7meljYWqwEBOy/DZy5IkwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyOTE0MjcwMFoXDTIyMDcyOTE0\nMjcwMFowggEwMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJS\nQVNJTElBMSAwHgYDVQQKExdDQUlYQSBFQ09OT01JQ0EgRkVERVJBTDEtMCsGA1UE\nCxMkYzE2MGE2ZjUtZTVkZi01MDY3LTllOTctZWM2ZmJhNjJmZDg3MS0wKwYDVQQD\nEyQ4ZmQ1ODkzMi0yYTcyLTRjNjctYmYxMi1hM2Y2MGMzOTVmODcxFzAVBgNVBAUT\nDjAwMzYwMzA1MDAwMTA0MR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlvbjET\nMBEGCysGAQQBgjc8AgEDEwJCUjE0MDIGCgmSJomT8ixkAQETJDhmZDU4OTMyLTJh\nNzItNGM2Ny1iZjEyLWEzZjYwYzM5NWY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP\nADCCAQoCggEBAPDyXT6fAxU4TmQ9pZ7XlwH6aQMQCC7rwk6Ox+9ISUHPVODNzDgy\nX71pCKA3Pq1l6mlpanVWjtuDEm+KKriavt8KNSt728NKYID/EmHsObpDu1Yzhu/y\nedmeUjD/MW7lvnIgu5I1QHE6kDU4oT6zqca28Uaat4y5s1m86S3gQyGInQFnMqu8\nIv7i4cur76cZjZpoWuGhWMwwGPCzUMLPQohqSuJBeoFNbvTYMttNsb1gYdF0F6ET\n+mLw1h0ERRmoqFri+RjkNoW/0CINENYojU3g3/uOygo4EHm2elNjtlUuFS4BvyKw\nbK6lNGcyb+4lZOy5MD2+Yzc78PlT29EocXsCAwEAAaOCAtswggLXMAwGA1UdEwEB\n/wQCMAAwHQYDVR0OBBYEFPb8hprgC+Z+pWz5dRHe2Z+PyFiHMB8GA1UdIwQYMBaA\nFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcw\nAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3Jn\nLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3Bl\nbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwIgYDVR0RBBswGYIXdGVz\ndGNsaWVudC5jYWl4YS5nb3YuYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoG\nCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCC\nATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBm\nb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBw\nYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNl\ncyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0\nLCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRo\nZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJl\nbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3Bz\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczAN\nBgkqhkiG9w0BAQsFAAOCAQEAedfQ/ZvfYlHv3l5rwvHlWBBaK1c3OdxAZEweQGdx\nakI30q8lxGqI7giho2zvO6H4dQzK0XoVuujQvrJMAwY9uLycT8rfcTpt+i3elWC/\nfKz7DJss+s1rBz/3N/2esTHUQWSBnePowoS9tQ0xewjhwa73cxlAOqRQdpvGmoGj\n4Nk8qhpe4f/d5szaDH66Cs8vcowrGXnX+P2GpBS3Q1YVxJS6oz49PfN/q0aHbIV5\nqMvrzzyG36iUSTy9MpfPX0+6K7FVZiXD1+HEg6IlGIiu1gF0ZSv97BahqpTOwHpS\njlNCK+finYxm0ETXc6X5BN1fBO1tEqRKPKdgEpl6iekf0A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030333630333035303030313034,CN\u003d8fd58932-2a72-4c67-bf12-a3f60c395f87,OU\u003dc160a6f5-e5df-5067-9e97-ec6fba62fd87,O\u003dCAIXA ECONOMICA FEDERAL,L\u003dBRASILIA,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.caixa.gov.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-16 21:24:50 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-16 21:24:50 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-16 21:24:50 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-16 21:24:50 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N
2021-12-16 21:24:50 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
Qzcph5eVdPkVw5iw4KnzOGobKAtrtZ9lYjlLk4WJoAkI7U4T2N
2021-12-16 21:24:50 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-16 21:24:50 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-16 21:24:50 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2021-12-16 21:24:50 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid consents accounts consent:urn:conformance.oidf:Sj8EsvBI8z
expected
accounts
2021-12-16 21:24:50 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
e83e66ad-cebf-4eeb-a8b0-20c236b16cf4
2021-12-16 21:24:50 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4",
  "content-type": "application/json; charset\u003dUTF-8"
}
2021-12-16 21:24:50 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:24:50Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4",
  "content-type": "application/json"
}
2021-12-16 21:24:50
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-16 21:24:50 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance uY2U45e3A7DglPR
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "e83e66ad-cebf-4eeb-a8b0-20c236b16cf4"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-16T21:24:50Z"
  }
}
outgoing_path
accounts/v1/accounts
2021-12-16 21:24:50 FINISHED
fapi1-advanced-final-client-refresh-token-test
Test has run to completion
testmodule_result
PASSED
2021-12-16 21:25:15
TEST-RUNNER
Alias has now been claimed by another test
alias
RP-Accounts-Caixa-Economica-Federal
new_test_id
48K07bda1lm3dyd
Test Results