Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-29 19:49:57 INFO
TEST-RUNNER
Test instance 0CpQYnMvuZx9skN created
baseUrl
https://www.certification.openid.net/test/a/fintech-clienttest-meli
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
fintech-clienttest-meli
description
OB Brazil client secret test with MTLS. (kid X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM is an organization level BRSEAL for organisation 74e929d9-33b6-4d85-8ba7-c146c867a817, as found on the directory sandbox)
planId
lDr1GGS6E4EiO
config
{
  "alias": "fintech-clienttest-meli",
  "description": "OB Brazil client secret test with MTLS. (kid X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM is an organization level BRSEAL for organisation 74e929d9-33b6-4d85-8ba7-c146c867a817, as found on the directory sandbox)",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "UA5nelbHfgInILgWcHQP_",
    "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
    "certificate": "-----BEGIN CERTIFICATE-----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\nzeVlOifX0mchKVHfj2+Out6zlpTZUvy6\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
          "alg": "PS256",
          "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
        }
      ]
    }
  },
  "client2": {
    "client_id": "UA5nelbHfgInILgWcHQP_",
    "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "certificate": "-----BEGIN CERTIFICATE-----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\nzeVlOifX0mchKVHfj2+Out6zlpTZUvy6\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
          "alg": "PS256",
          "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
        }
      ]
    },
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-invalid-alternate-alg
2021-12-29 19:49:57 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/fintech-clienttest-meli/
discoveryUrl
https://www.certification.openid.net/test/a/fintech-clienttest-meli/.well-known/openid-configuration
2021-12-29 19:49:57 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-29 19:49:57 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-29 19:49:57
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-29 19:49:57
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-29 19:49:57
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-29 19:49:57
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-29 19:49:57
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2021-12-29 19:49:57
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/fintech-clienttest-meli/par
2021-12-29 19:49:57
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2021-12-29 19:49:57 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-29 19:49:57 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-29 19:49:57 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-29 19:49:57 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-29 19:49:57 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-29 19:49:57 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
UA5nelbHfgInILgWcHQP_
redirect_uri
https://omega.mercadopago.com.br/open-banking/app/cb
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
2021-12-29 19:49:57 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-29 19:49:57 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
2021-12-29 19:49:57 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-29 19:49:57 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-29 19:49:57 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
Verify configuration of second client
2021-12-29 19:49:57 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
UA5nelbHfgInILgWcHQP_
redirect_uri
https://omega.mercadopago.com.br/open-banking/app/cb
id_token_encrypted_response_alg
RSA-OAEP
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
id_token_encrypted_response_enc
A256GCM
2021-12-29 19:49:57 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-29 19:49:57 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
2021-12-29 19:49:57 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-29 19:49:57 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-29 19:49:57 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
      "alg": "PS256",
      "n": "ydi-1p3CvP-mWChKSnCyOr3ku-bQ6gJqytWKTFeau-dsiqTVdDRcO12KSnqVZaMwIw28Kp3MALCgGsbbcE5j3oZM4d0YaJrvZcEKNMpEX76WVf_aWhRKKw-OoTr731yfULBqZljfv_fMdtzDY9_XaFlC-qZnsispzpOFsCM7CFPjXfp7GtP1YF00xLO0ntdjtRGnX8mf-ZRTlTP8OEnr3Jp5E-KDRojDIJcbiuzJ2PhHm4FmYw_4JrmoD4Fjyo4l5BA8rcqqbeLeNcQC1qrgGXlpeulmxz-I0E0A01N32DJBlszcsyxwU4P6v3grSiVzAemj3LBFHPBA2exhRgH7HQ"
    }
  ]
}
2021-12-29 19:49:57
fapi1-advanced-final-client-test-invalid-alternate-alg
Setup Done
2021-12-29 19:50:22 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "content-type": "application/json",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-29 19:50:22 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-29 19:50:22 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-29 19:50:22 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "httpclient-go-core/v0.14.2",
  "accept-encoding": "gzip",
  "content-type": "application/x-www-form-urlencoded",
  "newrelic": "eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkFwcCIsImFwIjoiMTc3NDkwNjU0NSIsImFjIjoiOTg5NTg2IiwidHgiOiIwNjFiNjc1MWVkNTE4MTU1IiwiaWQiOiI0NzA3MzhkM2JiMjc4ZTFlIiwidHIiOiIwNjdiOGMwMTZjNmQzNjMxNGM3YTBjYjE5YWQzOTAyOSIsInByIjoxLjc0NjMwMywic2EiOnRydWUsInRpIjoxNjQwODA3NDIyNTU1LCJ0ayI6IjE3MDk3MDcifX0\u003d",
  "traceparent": "00-067b8c016c6d36314c7a0cb19ad39029-470738d3bb278e1e-01",
  "tracestate": "1709707@nr\u003d0-0-989586-1774906545-470738d3bb278e1e-061b6751ed518155-1-1.746303-1640807422555",
  "x-amzn-trace-id": "Root\u003d1-61ccbbfe-4d3546247267a5483802e0fa",
  "x-api-client-application": "opb-data-in",
  "x-api-client-scope": "beta",
  "x-api-source": "fury",
  "x-api-transport-protocol": "https",
  "x-b3-sampled": "0",
  "x-b3-spanid": "b5321abd49cd46a9",
  "x-b3-traceid": "b5321abd49cd46a9",
  "x-envoy-expected-rq-timeout-ms": "1200000",
  "x-fapi-interaction-id": "42ffc2c3-0f18-4faf-9408-09adfd650902",
  "content-length": "898",
  "x-forwarded-header-names": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys,tracestate,traceparent,x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-identity-token": "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",
  "x-meli-trace-bu": "mercadopago",
  "x-meli-trace-platform": "/web/desktop",
  "x-meli-trace-site": "MLB",
  "x-nginx-host": "i-0cba0797a471751fe-10.53.174.187",
  "x-nginx-pool": "hom-proxy-obb.mtls-outbound-proxy.melifrontends.com",
  "x-request-device-id": "bd6713bd-cab0-437c-a0c1-25a6bf26ed04",
  "x-request-id": "ee8c07cd-72f4-4e6e-a527-5cefd31a1d8a",
  "x-source-ip": "201.63.25.34",
  "x-trace-digest-19": "rysAMgXc4cBCiY2JhWkI8eV9iTFMlsKK9CnofC7bNOBdrs4ztSRsktgSGSaJUC/2",
  "x-trace-digest-keys": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys",
  "x-trace-existing-keys": "tracestate,traceparent,x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-trace-source": "fury_app",
  "connection": "close"
}
incoming_path
/test-mtls/a/fintech-clienttest-meli/token
incoming_body_form_params
{
  "client_assertion": "eyJhbGciOiJQUzI1NiIsImtpZCI6IkpFajg4RWpuaGpkNVhwM3h0WUl4a3M0Rko1ZXdDSWhZUjhZQ2xaek9CTVUifQ.eyJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpL3Rva2VuIl0sImV4cCI6MTY0MDgwODMyMiwiaWF0IjoxNjQwODA3NDIyLCJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJqdGkiOiJkZWQ1ZDc3Yy05ZmRkLTQzMzEtYmU1NC1lODAzMjU3YjFlMjYiLCJzdWIiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8ifQ.kjOqF45Rlgvj0Yn9kD9EI_xw4s_f_asl7RMNOMwM3bXEXcBgbpCLWUqmcdFJC8Vv7y9RBQEyut1y2xgzK7HomuNHKkx__Z69MXOcd_cL5e8rpUSCMI83BESNV6IkTD4H1Q8BNucCvG6k9y_bi_dPzJyoVeoAIBc1UeNl22DKAsnlKoZa-NED-AhQscjUSh_8pu37uSPOo1yr10e6h6LE2k_8bwWPERZAkjpg2AF49jzAoW1K-6jSKoe59-l9nF2HdU2SJ_p71R8aRLjtHWXUGt5YhVHrVZtv-NB7nib-wp99sqheUFc_aHxaiweVFlNIte44XpQRdsxS9kbgDoezyA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
  "grant_type": "client_credentials",
  "scope": "consents payments"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
client_assertion=eyJhbGciOiJQUzI1NiIsImtpZCI6IkpFajg4RWpuaGpkNVhwM3h0WUl4a3M0Rko1ZXdDSWhZUjhZQ2xaek9CTVUifQ.eyJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpL3Rva2VuIl0sImV4cCI6MTY0MDgwODMyMiwiaWF0IjoxNjQwODA3NDIyLCJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJqdGkiOiJkZWQ1ZDc3Yy05ZmRkLTQzMzEtYmU1NC1lODAzMjU3YjFlMjYiLCJzdWIiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8ifQ.kjOqF45Rlgvj0Yn9kD9EI_xw4s_f_asl7RMNOMwM3bXEXcBgbpCLWUqmcdFJC8Vv7y9RBQEyut1y2xgzK7HomuNHKkx__Z69MXOcd_cL5e8rpUSCMI83BESNV6IkTD4H1Q8BNucCvG6k9y_bi_dPzJyoVeoAIBc1UeNl22DKAsnlKoZa-NED-AhQscjUSh_8pu37uSPOo1yr10e6h6LE2k_8bwWPERZAkjpg2AF49jzAoW1K-6jSKoe59-l9nF2HdU2SJ_p71R8aRLjtHWXUGt5YhVHrVZtv-NB7nib-wp99sqheUFc_aHxaiweVFlNIte44XpQRdsxS9kbgDoezyA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&grant_type=client_credentials&scope=consents+payments
2021-12-29 19:50:22 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-29 19:50:22 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzeVlOifX0mchKVHfj2+Out6zlpTZUvy6\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,UID\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,2.5.4.5\u003d#130e3130353733353231303030313931,CN\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,OU\u003de5a1c7ad-11d4-560d-914c-611003a39219,O\u003dMERCADO PAGO,L\u003dOsasco,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.mercacopago.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-29 19:50:22 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-29 19:50:22 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-29 19:50:22 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsImtpZCI6IkpFajg4RWpuaGpkNVhwM3h0WUl4a3M0Rko1ZXdDSWhZUjhZQ2xaek9CTVUifQ.eyJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpL3Rva2VuIl0sImV4cCI6MTY0MDgwODMyMiwiaWF0IjoxNjQwODA3NDIyLCJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJqdGkiOiJkZWQ1ZDc3Yy05ZmRkLTQzMzEtYmU1NC1lODAzMjU3YjFlMjYiLCJzdWIiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8ifQ.kjOqF45Rlgvj0Yn9kD9EI_xw4s_f_asl7RMNOMwM3bXEXcBgbpCLWUqmcdFJC8Vv7y9RBQEyut1y2xgzK7HomuNHKkx__Z69MXOcd_cL5e8rpUSCMI83BESNV6IkTD4H1Q8BNucCvG6k9y_bi_dPzJyoVeoAIBc1UeNl22DKAsnlKoZa-NED-AhQscjUSh_8pu37uSPOo1yr10e6h6LE2k_8bwWPERZAkjpg2AF49jzAoW1K-6jSKoe59-l9nF2HdU2SJ_p71R8aRLjtHWXUGt5YhVHrVZtv-NB7nib-wp99sqheUFc_aHxaiweVFlNIte44XpQRdsxS9kbgDoezyA",
  "header": {
    "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
    "alg": "PS256"
  },
  "claims": {
    "aud": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "sub": "UA5nelbHfgInILgWcHQP_",
    "iss": "UA5nelbHfgInILgWcHQP_",
    "exp": 1640808322,
    "iat": 1640807422,
    "jti": "ded5d77c-9fdd-4331-be54-e803257b1e26"
  }
}
2021-12-29 19:50:22
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-29 19:50:22 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsImtpZCI6IkpFajg4RWpuaGpkNVhwM3h0WUl4a3M0Rko1ZXdDSWhZUjhZQ2xaek9CTVUifQ.eyJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpL3Rva2VuIl0sImV4cCI6MTY0MDgwODMyMiwiaWF0IjoxNjQwODA3NDIyLCJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJqdGkiOiJkZWQ1ZDc3Yy05ZmRkLTQzMzEtYmU1NC1lODAzMjU3YjFlMjYiLCJzdWIiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8ifQ.kjOqF45Rlgvj0Yn9kD9EI_xw4s_f_asl7RMNOMwM3bXEXcBgbpCLWUqmcdFJC8Vv7y9RBQEyut1y2xgzK7HomuNHKkx__Z69MXOcd_cL5e8rpUSCMI83BESNV6IkTD4H1Q8BNucCvG6k9y_bi_dPzJyoVeoAIBc1UeNl22DKAsnlKoZa-NED-AhQscjUSh_8pu37uSPOo1yr10e6h6LE2k_8bwWPERZAkjpg2AF49jzAoW1K-6jSKoe59-l9nF2HdU2SJ_p71R8aRLjtHWXUGt5YhVHrVZtv-NB7nib-wp99sqheUFc_aHxaiweVFlNIte44XpQRdsxS9kbgDoezyA
2021-12-29 19:50:22 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-29 19:50:22 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2021-12-29 19:50:22 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "consents",
  "payments"
]
expected
payments
2021-12-29 19:50:22 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF
2021-12-29 19:50:22 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF
token_type
Bearer
2021-12-29 19:50:22
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-29 19:50:22 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-29 19:50:22 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpAsyncClient/4.1.4 (Java/11.0.11)",
  "accept": "application/json",
  "accept-encoding": "gzip",
  "authorization": "Bearer WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF",
  "content-type": "application/json; charset\u003dUTF-8",
  "newrelic": "eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkFwcCIsImFwIjoiMTc3NDkwNjU0NSIsImFjIjoiOTg5NTg2IiwidHgiOiJhZmU0ODY4YTY2ZGY5ZWJiIiwiaWQiOiI2YTgxNDhlNzBiNDAwNDcxIiwidHIiOiJhZmU0ODY4YTY2ZGY5ZWJiOTM1Y2RiZjVhMTk0NjY1MyIsInByIjoxLjM3NjI0MCwic2EiOnRydWUsInRpIjoxNjQwODA3NDIyNzcxLCJ0ayI6IjE3MDk3MDcifX0\u003d",
  "traceparent": "00-afe4868a66df9ebb935cdbf5a1946653-6a8148e70b400471-01",
  "tracestate": "1709707@nr\u003d0-0-989586-1774906545-6a8148e70b400471-afe4868a66df9ebb-1-1.37624-1640807422771",
  "x-amzn-trace-id": "Root\u003d1-61ccbbfe-386a1b8f5f9f772156b1f5df",
  "x-api-client-application": "opb-consents",
  "x-api-client-scope": "beta",
  "x-api-source": "fury",
  "x-api-transport-protocol": "https",
  "x-b3-sampled": "0",
  "x-b3-spanid": "801e536a098a7c03",
  "x-b3-traceid": "801e536a098a7c03",
  "x-envoy-expected-rq-timeout-ms": "1200000",
  "x-fapi-interaction-id": "3d78faa0-b896-423c-b7a8-f9917a77b232",
  "content-length": "1078",
  "x-forwarded-header-names": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys,x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-identity-token": "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",
  "x-meli-trace-bu": "mercadopago",
  "x-meli-trace-platform": "/web/desktop",
  "x-meli-trace-site": "MLB",
  "x-nginx-host": "i-0bd082562f20c1574-10.53.159.210",
  "x-nginx-pool": "hom-proxy-obb.mtls-outbound-proxy.melifrontends.com",
  "x-request-device-id": "bd6713bd-cab0-437c-a0c1-25a6bf26ed04",
  "x-request-id": "ee8c07cd-72f4-4e6e-a527-5cefd31a1d8a",
  "x-source-ip": "201.63.25.34",
  "x-trace-digest-19": "rysAMgXc4cBCiY2JhWkI8eV9iTFMlsKK9CnofC7bNOBdrs4ztSRsktgSGSaJUC/2",
  "x-trace-digest-keys": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys",
  "x-trace-existing-keys": "x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-trace-source": "fury_app",
  "connection": "close"
}
incoming_path
/test-mtls/a/fintech-clienttest-meli/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "06072829678",
        "rel": "CPF"
      }
    },
    "permissions": [
      "RESOURCES_READ",
      "FINANCINGS_PAYMENTS_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "FINANCINGS_READ",
      "LOANS_WARRANTIES_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "LOANS_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "LOANS_PAYMENTS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "ACCOUNTS_READ"
    ],
    "expirationDateTime": "2022-12-29T10:44:51Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"06072829678","rel":"CPF"}},"permissions":["RESOURCES_READ","FINANCINGS_PAYMENTS_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","CREDIT_CARDS_ACCOUNTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","ACCOUNTS_TRANSACTIONS_READ","FINANCINGS_READ","LOANS_WARRANTIES_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","LOANS_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","INVOICE_FINANCINGS_PAYMENTS_READ","INVOICE_FINANCINGS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","LOANS_PAYMENTS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","LOANS_SCHEDULED_INSTALMENTS_READ","ACCOUNTS_READ"],"expirationDateTime":"2022-12-29T10:44:51Z"}}
2021-12-29 19:50:22 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-29 19:50:22 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzeVlOifX0mchKVHfj2+Out6zlpTZUvy6\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,UID\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,2.5.4.5\u003d#130e3130353733353231303030313931,CN\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,OU\u003de5a1c7ad-11d4-560d-914c-611003a39219,O\u003dMERCADO PAGO,L\u003dOsasco,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.mercacopago.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-29 19:50:22 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-29 19:50:22 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-29 19:50:22 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-29 19:50:22 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-29 19:50:22 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF
2021-12-29 19:50:22 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
WligmwA9up228837FHo156iwmMKajfaksopUUaTlKKZEkZZiUF
2021-12-29 19:50:22 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-29 19:50:22 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-29 19:50:22 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
3d78faa0-b896-423c-b7a8-f9917a77b232
2021-12-29 19:50:22 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents",
  "payments"
]
2021-12-29 19:50:22
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-29 19:50:22 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
3d78faa0-b896-423c-b7a8-f9917a77b232
2021-12-29 19:50:22 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "3d78faa0-b896-423c-b7a8-f9917a77b232"
}
consentId
urn:conformance.oidf:w7RTyO746J
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:w7RTyO746J",
    "creationDateTime": "2021-12-29T19:50:22Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-29T19:50:22Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-29T21:50:22Z",
    "transactionFromDateTime": "2021-12-29T19:45:22Z",
    "transactionToDateTime": "2021-12-29T21:50:22Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/fintech-clienttest-meliconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-29T19:50:22Z"
  }
}
2021-12-29 19:50:22
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-29 19:50:22 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "3d78faa0-b896-423c-b7a8-f9917a77b232"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:w7RTyO746J",
    "creationDateTime": "2021-12-29T19:50:22Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-29T19:50:22Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-29T21:50:22Z",
    "transactionFromDateTime": "2021-12-29T19:45:22Z",
    "transactionToDateTime": "2021-12-29T21:50:22Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/fintech-clienttest-meliconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-29T19:50:22Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-29 19:50:23 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "content-type": "application/json",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-29 19:50:23 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-29 19:50:23 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-29 19:50:23 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpAsyncClient/4.1.4 (Java/11.0.11)",
  "accept": "application/json",
  "accept-encoding": "gzip",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "newrelic": "eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkFwcCIsImFwIjoiMTc3NDkwNjU0NSIsImFjIjoiOTg5NTg2IiwidHgiOiJhNWExZDNmMjhkNGY2MjE0IiwiaWQiOiJhNTA0YTI0OTBkNzI1ZDk0IiwidHIiOiJhNWExZDNmMjhkNGY2MjE0NjMxMDliYjA4Yzk5ODYxNyIsInByIjoxLjkxOTc0Nywic2EiOnRydWUsInRpIjoxNjQwODA3NDIzNTE5LCJ0ayI6IjE3MDk3MDcifX0\u003d",
  "traceparent": "00-a5a1d3f28d4f621463109bb08c998617-a504a2490d725d94-01",
  "tracestate": "1709707@nr\u003d0-0-989586-1774906545-a504a2490d725d94-a5a1d3f28d4f6214-1-1.919747-1640807423519",
  "x-amzn-trace-id": "Root\u003d1-61ccbbff-710bbe65136e38d168606152",
  "x-api-client-application": "opb-consents",
  "x-api-client-scope": "beta",
  "x-api-source": "fury",
  "x-api-transport-protocol": "https",
  "x-b3-sampled": "0",
  "x-b3-spanid": "c627a865d80286c9",
  "x-b3-traceid": "c627a865d80286c9",
  "x-envoy-expected-rq-timeout-ms": "1200000",
  "x-fapi-interaction-id": "af211446-7112-4d4e-bf39-3ecf3025f766",
  "content-length": "2735",
  "x-forwarded-header-names": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys,x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-identity-token": "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",
  "x-meli-trace-bu": "mercadopago",
  "x-meli-trace-platform": "/web/desktop",
  "x-meli-trace-site": "MLB",
  "x-nginx-host": "i-0b58b428d0376d73c-10.53.155.181",
  "x-nginx-pool": "hom-proxy-obb.mtls-outbound-proxy.melifrontends.com",
  "x-request-device-id": "bd6713bd-cab0-437c-a0c1-25a6bf26ed04",
  "x-request-id": "6b50cb0d-10f0-4f03-b41d-2cd91321f9a7",
  "x-source-ip": "201.63.25.34",
  "x-trace-digest-19": "F7XMQvTGmlnQqa2asp0oKzWTjqjaZb8SXOTW4hpI0KNqkMrIUew9q5L3t2WYK8p5",
  "x-trace-digest-keys": "x-identity-token,x-source-ip,x-request-device-id,x-meli-trace-bu,x-meli-trace-site,x-meli-trace-platform,x-trace-source,x-request-id,x-trace-digest-19,x-trace-digest-keys,x-trace-existing-keys",
  "x-trace-existing-keys": "x-b3-sampled,x-b3-spanid,x-b3-traceid",
  "x-trace-source": "fury_app",
  "connection": "close"
}
incoming_path
/test-mtls/a/fintech-clienttest-meli/par
incoming_body_form_params
{
  "request": "eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.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.oAj04TfNvyKj1nZM826ylP1i7LCH5hzzJwnrdnPSyI6RWnlopilhtSsKVcL-nCWuHn7_2CtS1DyaZ46AwLE-HLIJPiIynUxp1FqxyuuH-c4kB735wlrSx-5wZEVEU0X4YEs_sQJQV7yKMjYDWXt4LBVVuxLZt0Y4NiVXY7bx2SRjUiwOn2c1oWIVCIdPHr13BREwWEeFt1MD6ePwV5VP3i3MYgjL4kyDhmPu0ebGYcGODXCAzNFX7szbwh_ZAg0BGUfw-TpZGDaxXhh9Ify0wbOEPQqbys4fC0H_y7VfzMfS-jMMikls3PYQDyaniyQrp07Tfp_fpbYqXShFmJsEHg",
  "client_assertion": "eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpLyIsIm5iZiI6MTY0MDgwNzQyMCwiZXhwIjoxNjQwODA4MDIzLCJqdGkiOiI5NjIzZWYxMy0xZDE2LTQzYjctYTIxMS01ZmQ0ZjY0NWVlMDciLCJpYXQiOjE2NDA4MDc0MjMsInN1YiI6Ind3dy5tZXJjYWRvcGFnby5jb20uYnIifQ.MxHhj1yN4al5ZPX2Uy-OL3iimOdjLn64vdVNWcXVeUZ1D5hPE_gyvFwgoWGNRyj35KK57hsLHV2O1mCvZBySIPYj4OUEBD782drA-hD-pNphRRB6TdBaXCenuJZpWxuxiqCBETQtG05wSQZvnRVHjc-19PvODzcuMeW1zsFr0EYkcOAysXOWWc4wELmuM5r65igOV4lsLTAEOKK_0pWnzdM7_ImDAG2UHvCA4C08dsAmG67E_G8MRvQ8zEMAuj3r-FOhbvjo1HeDgYJZZmWsRg3vluOYXqxPRtIxUBylc46Phs9Q29WFQoU3SSxm2PTPmLyguA_BA34KXij8z8gnYQ",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpLyIsIm5iZiI6MTY0MDgwNzQyMCwiZXhwIjoxNjQwODA4MDIzLCJqdGkiOiI1NTBkNDE5Yi05NzBiLTRmYjgtYWIzMS1mNGYwMzdhMjU2NDYiLCJpYXQiOjE2NDA4MDc0MjMsInN1YiI6Ind3dy5tZXJjYWRvcGFnby5jb20uYnIiLCJzY29wZSI6Im9wZW5pZCBjb25zZW50OnVybjpjb25mb3JtYW5jZS5vaWRmOnc3UlR5Tzc0NkogcmVzb3VyY2VzIGZpbmFuY2luZ3MgY3VzdG9tZXJzIHVuYXJyYW5nZWQtYWNjb3VudHMtb3ZlcmRyYWZ0IGNyZWRpdC1jYXJkcy1hY2NvdW50cyBhY2NvdW50cyBsb2FucyBpbnZvaWNlLWZpbmFuY2luZ3MiLCJjbGFpbXMiOnsiaWRfdG9rZW4iOnsiYWNyIjp7InZhbHVlcyI6WyJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiXSwiZXNzZW50aWFsIjoidHJ1ZSJ9fX0sInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwicmVkaXJlY3RfdXJpIjoiaHR0cHM6Ly9vbWVnYS5tZXJjYWRvcGFnby5jb20uYnIvb3Blbi1iYW5raW5nL2FwcC9jYiIsInN0YXRlIjoiZXlKaGJHY2lPaUpJVXpJMU5pSXNJblI1Y0NJNklrcFhWQ0o5LmV5SjFjMlZEWVhObFNXUWlPaUlpTENKcFpFWnliMjUwSWpvaU9USmhaREl3TW1VdE5qVTBZUzAwWXpObUxUbG1ObUl0TVdNMFlqZzVOalJrTldRd0lpd2lhV0YwSWpveE5qUXdPREEzTkRJeWZRLkVNaENrTHR1NEdzZnFoU1ZLMjhKdndqSWotUjZiWTNfd2ZLdTVsY1JRaTQiLCJjb2RlX2NoYWxsZW5nZV9tZXRob2QiOiJTMjU2Iiwibm9uY2UiOiJmZjcyZWJjOC03NWQ4LTQ3NDMtOWY1Mi1lNzZlODU2YTdkNDciLCJjbGllbnRfaWQiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJjb25zZW50X2lkIjoidXJuOm1lcmNhZG9wYWdvOjAwYjU4NjIwLWUzOTUtNDBmMy1iZDU3LTQ1MzQxNDkxZWZhNiIsImNvZGVfY2hhbGxlbmdlIjoiOWIzZlZPVFlLdV9ZVkRmdHI4QVlEVmx6c0IzaDg4MHVpZ0g4MXVUWERtWSJ9.oAj04TfNvyKj1nZM826ylP1i7LCH5hzzJwnrdnPSyI6RWnlopilhtSsKVcL-nCWuHn7_2CtS1DyaZ46AwLE-HLIJPiIynUxp1FqxyuuH-c4kB735wlrSx-5wZEVEU0X4YEs_sQJQV7yKMjYDWXt4LBVVuxLZt0Y4NiVXY7bx2SRjUiwOn2c1oWIVCIdPHr13BREwWEeFt1MD6ePwV5VP3i3MYgjL4kyDhmPu0ebGYcGODXCAzNFX7szbwh_ZAg0BGUfw-TpZGDaxXhh9Ify0wbOEPQqbys4fC0H_y7VfzMfS-jMMikls3PYQDyaniyQrp07Tfp_fpbYqXShFmJsEHg&client_assertion=eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpLyIsIm5iZiI6MTY0MDgwNzQyMCwiZXhwIjoxNjQwODA4MDIzLCJqdGkiOiI5NjIzZWYxMy0xZDE2LTQzYjctYTIxMS01ZmQ0ZjY0NWVlMDciLCJpYXQiOjE2NDA4MDc0MjMsInN1YiI6Ind3dy5tZXJjYWRvcGFnby5jb20uYnIifQ.MxHhj1yN4al5ZPX2Uy-OL3iimOdjLn64vdVNWcXVeUZ1D5hPE_gyvFwgoWGNRyj35KK57hsLHV2O1mCvZBySIPYj4OUEBD782drA-hD-pNphRRB6TdBaXCenuJZpWxuxiqCBETQtG05wSQZvnRVHjc-19PvODzcuMeW1zsFr0EYkcOAysXOWWc4wELmuM5r65igOV4lsLTAEOKK_0pWnzdM7_ImDAG2UHvCA4C08dsAmG67E_G8MRvQ8zEMAuj3r-FOhbvjo1HeDgYJZZmWsRg3vluOYXqxPRtIxUBylc46Phs9Q29WFQoU3SSxm2PTPmLyguA_BA34KXij8z8gnYQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2021-12-29 19:50:23 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2021-12-29 19:50:23 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBDCCBeygAwIBAgIUa+dvooDXXhQ7qBasqA6tq+k99/AwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDYyMzE4MjkwMFoXDTIyMDcyMzE4 MjkwMFowggEjMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxDzANBgNVBAcTBk9z YXNjbzEVMBMGA1UEChMMTUVSQ0FETyBQQUdPMS0wKwYDVQQLEyRlNWExYzdhZC0x MWQ0LTU2MGQtOTE0Yy02MTEwMDNhMzkyMTkxLTArBgNVBAMTJGM4ZWZhYTk5LWEx NTMtNDExYy05OGE3LWEwYjRmNDY5ZmIyYzEXMBUGA1UEBRMOMTA1NzM1MjEwMDAx OTExNDAyBgoJkiaJk/IsZAEBEyRjOGVmYWE5OS1hMTUzLTQxMWMtOThhNy1hMGI0 ZjQ2OWZiMmMxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAkJSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fh8 K7cCmD73m9CDT5Jfto0Xh1NDPFSasao1ONvcggQe4OD5llv4pp/wSYZG6HiWdhUm 8WBcn0z8VwNzwFqYn4+1gdElVfjM1lmZNMyVh71nsU9F7Mri/U6na2UIGDgB6/BV aaP5t+K4r/2WIuHmZ7MyoUk7tarwXOeh9zsZhSGZ1+FouIkcMKGD7Nzh7tKXXXR8 9E58mHovslVxOOtE1YfW6wxyP2n9ogkhrYlaBnswz2pYvvtuBi4lDnKVglcfJdmJ utvll/Pp4DtjfO8D+kxHF9YgHylyBi8S71kuDdpeCi9MvFNlR/dwMO0odyjrKW44 xnIHA81aga1OhBrbLwIDAQABo4IC3jCCAtowDAYDVR0TAQH/BAIwADAfBgNVHSME GDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYB BQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMA4GA1UdDwEB/wQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUx5ZRrGXNiaYTkMaJ q3/c0VRg7QMwJQYDVR0RBB4wHIIadGVzdGNsaWVudC5tZXJjYWNvcGFnby5jb20w ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQBpNBSPsTmpLbhJBl9u4IDGZDSmssBzbAoodV0+3s7OREpRT+dlsctM ZlUBv16e6kQzwscjbtAqqUXAXrKpX3jWPqdXy/IDaQOK8nrnXUIjVbcFyuFt4siS AMJxySypxeddmsA0bfg0KzEoUedQc8xYXTGEYHkEmpTgiXACHaJQ3Jfd0puE2Wkx s8mWMK040lZqsqizuCgJkXFyofANVEs7Wi1ChtgHuES0Z9a1AM0iPBzA8xhD5JBR Y2t6tyquotseLDviRCsgc+5k4yghQ+aToNawZR65rJPztCNT5Rkuy+tfzVNNV+ej zeVlOifX0mchKVHfj2+Out6zlpTZUvy6 -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzeVlOifX0mchKVHfj2+Out6zlpTZUvy6\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,UID\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,2.5.4.5\u003d#130e3130353733353231303030313931,CN\u003dc8efaa99-a153-411c-98a7-a0b4f469fb2c,OU\u003de5a1c7ad-11d4-560d-914c-611003a39219,O\u003dMERCADO PAGO,L\u003dOsasco,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "testclient.mercacopago.com"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-29 19:50:23 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-29 19:50:23 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-29 19:50:23 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpLyIsIm5iZiI6MTY0MDgwNzQyMCwiZXhwIjoxNjQwODA4MDIzLCJqdGkiOiI5NjIzZWYxMy0xZDE2LTQzYjctYTIxMS01ZmQ0ZjY0NWVlMDciLCJpYXQiOjE2NDA4MDc0MjMsInN1YiI6Ind3dy5tZXJjYWRvcGFnby5jb20uYnIifQ.MxHhj1yN4al5ZPX2Uy-OL3iimOdjLn64vdVNWcXVeUZ1D5hPE_gyvFwgoWGNRyj35KK57hsLHV2O1mCvZBySIPYj4OUEBD782drA-hD-pNphRRB6TdBaXCenuJZpWxuxiqCBETQtG05wSQZvnRVHjc-19PvODzcuMeW1zsFr0EYkcOAysXOWWc4wELmuM5r65igOV4lsLTAEOKK_0pWnzdM7_ImDAG2UHvCA4C08dsAmG67E_G8MRvQ8zEMAuj3r-FOhbvjo1HeDgYJZZmWsRg3vluOYXqxPRtIxUBylc46Phs9Q29WFQoU3SSxm2PTPmLyguA_BA34KXij8z8gnYQ",
  "header": {
    "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
    "alg": "PS256"
  },
  "claims": {
    "aud": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
    "sub": "www.mercadopago.com.br",
    "nbf": 1640807420,
    "iss": "UA5nelbHfgInILgWcHQP_",
    "exp": 1640808023,
    "iat": 1640807423,
    "jti": "9623ef13-1d16-43b7-a211-5fd4f645ee07"
  }
}
2021-12-29 19:50:23
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2021-12-29 19:50:23 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiJVQTVuZWxiSGZnSW5JTGdXY0hRUF8iLCJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpLyIsIm5iZiI6MTY0MDgwNzQyMCwiZXhwIjoxNjQwODA4MDIzLCJqdGkiOiI5NjIzZWYxMy0xZDE2LTQzYjctYTIxMS01ZmQ0ZjY0NWVlMDciLCJpYXQiOjE2NDA4MDc0MjMsInN1YiI6Ind3dy5tZXJjYWRvcGFnby5jb20uYnIifQ.MxHhj1yN4al5ZPX2Uy-OL3iimOdjLn64vdVNWcXVeUZ1D5hPE_gyvFwgoWGNRyj35KK57hsLHV2O1mCvZBySIPYj4OUEBD782drA-hD-pNphRRB6TdBaXCenuJZpWxuxiqCBETQtG05wSQZvnRVHjc-19PvODzcuMeW1zsFr0EYkcOAysXOWWc4wELmuM5r65igOV4lsLTAEOKK_0pWnzdM7_ImDAG2UHvCA4C08dsAmG67E_G8MRvQ8zEMAuj3r-FOhbvjo1HeDgYJZZmWsRg3vluOYXqxPRtIxUBylc46Phs9Q29WFQoU3SSxm2PTPmLyguA_BA34KXij8z8gnYQ
2021-12-29 19:50:23 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-12-29 19:50:23 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2021-12-29 19:50:23 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.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.oAj04TfNvyKj1nZM826ylP1i7LCH5hzzJwnrdnPSyI6RWnlopilhtSsKVcL-nCWuHn7_2CtS1DyaZ46AwLE-HLIJPiIynUxp1FqxyuuH-c4kB735wlrSx-5wZEVEU0X4YEs_sQJQV7yKMjYDWXt4LBVVuxLZt0Y4NiVXY7bx2SRjUiwOn2c1oWIVCIdPHr13BREwWEeFt1MD6ePwV5VP3i3MYgjL4kyDhmPu0ebGYcGODXCAzNFX7szbwh_ZAg0BGUfw-TpZGDaxXhh9Ify0wbOEPQqbys4fC0H_y7VfzMfS-jMMikls3PYQDyaniyQrp07Tfp_fpbYqXShFmJsEHg",
  "header": {
    "kid": "JEj88Ejnhjd5Xp3xtYIxks4FJ5ewCIhYR8YClZzOBMU",
    "alg": "PS256"
  },
  "claims": {
    "sub": "www.mercadopago.com.br",
    "iss": "UA5nelbHfgInILgWcHQP_",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
    "client_id": "UA5nelbHfgInILgWcHQP_",
    "aud": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
    "nbf": 1640807420,
    "scope": "openid consent:urn:conformance.oidf:w7RTyO746J resources financings customers unarranged-accounts-overdraft credit-cards-accounts accounts loans invoice-financings",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": "true"
        }
      }
    },
    "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
    "state": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4",
    "exp": 1640808023,
    "iat": 1640807423,
    "jti": "550d419b-970b-4fb8-ab31-f4f037a25646",
    "consent_id": "urn:mercadopago:00b58620-e395-40f3-bd57-45341491efa6",
    "code_challenge": "9b3fVOTYKu_YVDftr8AYDVlzsB3h880uigH81uTXDmY"
  }
}
2021-12-29 19:50:23 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2021-12-29 19:50:23 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-29 19:50:23 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-29 19:50:23 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
2021-12-29 19:50:23 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 29, 2021, 8:00:23 PM"
2021-12-29 19:50:23 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 29, 2021, 7:50:20 PM"
now
"Dec 29, 2021, 7:50:23 PM"
2021-12-29 19:50:23
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-29 19:50:23 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-29 19:50:23 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-29 19:50:23 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-29 19:50:23 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-29 19:50:23 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiJKRWo4OEVqbmhqZDVYcDN4dFlJeGtzNEZKNWV3Q0loWVI4WUNsWnpPQk1VIiwiYWxnIjoiUFMyNTYifQ.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.oAj04TfNvyKj1nZM826ylP1i7LCH5hzzJwnrdnPSyI6RWnlopilhtSsKVcL-nCWuHn7_2CtS1DyaZ46AwLE-HLIJPiIynUxp1FqxyuuH-c4kB735wlrSx-5wZEVEU0X4YEs_sQJQV7yKMjYDWXt4LBVVuxLZt0Y4NiVXY7bx2SRjUiwOn2c1oWIVCIdPHr13BREwWEeFt1MD6ePwV5VP3i3MYgjL4kyDhmPu0ebGYcGODXCAzNFX7szbwh_ZAg0BGUfw-TpZGDaxXhh9Ify0wbOEPQqbys4fC0H_y7VfzMfS-jMMikls3PYQDyaniyQrp07Tfp_fpbYqXShFmJsEHg
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 25480780469145881962310735744658811096860752389453611962905067136280275666473089816796321765769404897314727609033235356903696283772003685983218588007567494317279497956301912860707622970367752075200583646530242149972344891211179531056906418988328664846636933970366528480103713538597757125359924017367320583046113420584809008937461771191132523804909271703414934471604306233606077310967879824799282301902892295633616563951726863946436028901609973937383968565131630524354885154883690630157820145537570485779506185784817396559682692254797068841420160661190987123189805165649520946876740481869453633625338132246556489939741
  public exponent: 65537
2021-12-29 19:50:23 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://omega.mercadopago.com.br/open-banking/app/cb
2021-12-29 19:50:23 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
9b3fVOTYKu_YVDftr8AYDVlzsB3h880uigH81uTXDmY
2021-12-29 19:50:23 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:def9313e-3c40-4594-a76d-d7c8b859b7d7
expires_in
600
2021-12-29 19:50:23 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:def9313e-3c40-4594-a76d-d7c8b859b7d7",
  "expires_in": 600
}
outgoing_path
par
2021-12-29 19:50:25 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.9",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\" Not A;Brand\";v\u003d\"99\", \"Chromium\";v\u003d\"96\", \"Google Chrome\";v\u003d\"96\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"macOS\"",
  "referer": "https://omega.mercadopago.com.br/open-banking/app/opt-in?consentId\u003durn%3Amercadopago%3A8955a334-8c0c-4d87-a9c0-c194864ce9da\u0026pageAction\u003dedit\u0026timestamp\u003d1640807413920\u0026page\u003d4",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "pt-BR,pt;q\u003d0.9,en-US;q\u003d0.8,en;q\u003d0.7",
  "cookie": "__utmz\u003d201319536.1637066900.1.1.utmcsr\u003d(direct)|utmccn\u003d(direct)|utmcmd\u003d(none); __utmc\u003d201319536; __utma\u003d201319536.775603841.1637066900.1640690913.1640806479.17; __utmb\u003d201319536.2.10.1640806479; JSESSIONID\u003d41C940ED0DDC29DB577FB2F77A878F5E",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "request_uri": "urn:ietf:params:oauth:request_uri:def9313e-3c40-4594-a76d-d7c8b859b7d7",
  "client_id": "UA5nelbHfgInILgWcHQP_",
  "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
  "scope": "openid consent:urn:conformance.oidf:w7RTyO746J resources financings customers unarranged-accounts-overdraft credit-cards-accounts accounts loans invoice-financings",
  "response_type": "code id_token"
}
incoming_body
2021-12-29 19:50:25 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-29 19:50:25 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2021-12-29 19:50:25 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-29 19:50:25 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "UA5nelbHfgInILgWcHQP_",
  "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
  "scope": "openid consent:urn:conformance.oidf:w7RTyO746J resources financings customers unarranged-accounts-overdraft credit-cards-accounts accounts loans invoice-financings",
  "response_type": "code id_token",
  "sub": "www.mercadopago.com.br",
  "iss": "UA5nelbHfgInILgWcHQP_",
  "code_challenge_method": "S256",
  "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
  "aud": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "nbf": 1640807420,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": "true"
      }
    }
  },
  "state": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4",
  "exp": 1640808023,
  "iat": 1640807423,
  "jti": "550d419b-970b-4fb8-ab31-f4f037a25646",
  "consent_id": "urn:mercadopago:00b58620-e395-40f3-bd57-45341491efa6",
  "code_challenge": "9b3fVOTYKu_YVDftr8AYDVlzsB3h880uigH81uTXDmY"
}
2021-12-29 19:50:25 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2021-12-29 19:50:25 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance.oidf:w7RTyO746J resources financings customers unarranged-accounts-overdraft credit-cards-accounts accounts loans invoice-financings
2021-12-29 19:50:25 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:w7RTyO746J",
  "resources",
  "financings",
  "customers",
  "unarranged-accounts-overdraft",
  "credit-cards-accounts",
  "accounts",
  "loans",
  "invoice-financings"
]
expected
consent:urn:conformance.oidf:w7RTyO746J
2021-12-29 19:50:25 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:w7RTyO746J",
  "resources",
  "financings",
  "customers",
  "unarranged-accounts-overdraft",
  "credit-cards-accounts",
  "accounts",
  "loans",
  "invoice-financings"
]
2021-12-29 19:50:25 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-29 19:50:25 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:w7RTyO746J",
  "resources",
  "financings",
  "customers",
  "unarranged-accounts-overdraft",
  "credit-cards-accounts",
  "accounts",
  "loans",
  "invoice-financings"
]
expected
openid
2021-12-29 19:50:25 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
UA5nelbHfgInILgWcHQP_
2021-12-29 19:50:25 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
jl26aCMVZnxnoW9lko3mmcA8fivnY4kP
2021-12-29 19:50:25 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
ff72ebc8-75d8-4743-9f52-e76e856a7d47
2021-12-29 19:50:25 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
SooCVHbuzqNhAJ8EscBWgQ
2021-12-29 19:50:25 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
aquYMG7_vAgLFWWIVLpWog
2021-12-29 19:50:25 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/fintech-clienttest-meli/
sub
user-subject-1234531
aud
UA5nelbHfgInILgWcHQP_
nonce
ff72ebc8-75d8-4743-9f52-e76e856a7d47
iat
1640807425
exp
1640807725
2021-12-29 19:50:25 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "sub": "user-subject-1234531",
  "aud": "UA5nelbHfgInILgWcHQP_",
  "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
  "iat": 1640807425,
  "exp": 1640807725
}
2021-12-29 19:50:25 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
SooCVHbuzqNhAJ8EscBWgQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "sub": "user-subject-1234531",
  "aud": "UA5nelbHfgInILgWcHQP_",
  "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
  "iat": 1640807425,
  "exp": 1640807725,
  "c_hash": "SooCVHbuzqNhAJ8EscBWgQ"
}
2021-12-29 19:50:25 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
aquYMG7_vAgLFWWIVLpWog
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "sub": "user-subject-1234531",
  "aud": "UA5nelbHfgInILgWcHQP_",
  "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
  "iat": 1640807425,
  "exp": 1640807725,
  "c_hash": "SooCVHbuzqNhAJ8EscBWgQ",
  "s_hash": "aquYMG7_vAgLFWWIVLpWog"
}
2021-12-29 19:50:25 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-29 19:50:25 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "sub": "user-subject-1234531",
  "aud": "UA5nelbHfgInILgWcHQP_",
  "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
  "iat": 1640807425,
  "exp": 1640807725,
  "c_hash": "SooCVHbuzqNhAJ8EscBWgQ",
  "s_hash": "aquYMG7_vAgLFWWIVLpWog",
  "acr": "urn:brasil:openbanking:loa2"
}
2021-12-29 19:50:25 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ.Xry4XbSmifGeHEf7r1JbarARGhB3_MJCvYns5tC29quuDayAdBhj4EQgrKnMGj9UaeCttJzT4KTNwTswoWayZ-LFHrMgdP3p9cG2QHeKlARPRFYtcoX-V6nNikH1LiAFmpgPFFa5E8I0kesvjcosipnx7Suith0pLcHd1pKRX9zm1VZ7Ff3MFWQr48VGCcXaH8VvrG4NnfquJvWNDLagRtrqiajf0OKAxr1Qtb7HoC_oKLaCNLYjk--zU45WtkeBS4QzWzH28XvXnohMsWAyqvLJHepW-D58975luih3HRATyng1btsF6fXpL9O0pvacT7bZKHb3yPar9dkRvFVJ4w
2021-12-29 19:50:25 SUCCESS
ForceIdTokenToBeSignedWithRS256
Signed the ID token with alg of RS256
id_token serialized
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ.Kxfskmhw-8cTWdMMO3YPeS2ydiwMg6lIve_FvZKtWU-Q2z5s6X_6R4iNy1uqS69Rlqfy0nFMu-s7d0atE5Gg6VmFowBCQ6OAOxTtAvo85fA-NOUhwVjt9bHgBjQ6MAXuDuy3U_GAhqpFdeBJG9Z-jk87iVfjSvAFcJm7njvjUStRnDudeI9jQd003ZC9QlvtANcakOtuq4eymM_jp-Dgxfq7edyT3iPjiLcmAtYYHc8oEJY5NHICFlc7CO5-Bk8mSzqzhgiq7V2jdI9RUF16-oqsa7YoTzvP-nhMrY59KEwiVLeP6zXavcgxRiLReF12MXrykSHUC63MYpwTHnKeeg
id_token
{
  "header": {
    "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
    "alg": {
      "name": "RS256",
      "requirement": "RECOMMENDED"
    },
    "typ": {
      "type": "JWT"
    },
    "customParams": {}
  },
  "signingInputString": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ",
  "signature": {
    "value": "Kxfskmhw-8cTWdMMO3YPeS2ydiwMg6lIve_FvZKtWU-Q2z5s6X_6R4iNy1uqS69Rlqfy0nFMu-s7d0atE5Gg6VmFowBCQ6OAOxTtAvo85fA-NOUhwVjt9bHgBjQ6MAXuDuy3U_GAhqpFdeBJG9Z-jk87iVfjSvAFcJm7njvjUStRnDudeI9jQd003ZC9QlvtANcakOtuq4eymM_jp-Dgxfq7edyT3iPjiLcmAtYYHc8oEJY5NHICFlc7CO5-Bk8mSzqzhgiq7V2jdI9RUF16-oqsa7YoTzvP-nhMrY59KEwiVLeP6zXavcgxRiLReF12MXrykSHUC63MYpwTHnKeeg"
  },
  "state": "SIGNED",
  "payload": {
    "origin": "JSON",
    "jsonObject": {
      "sub": "user-subject-1234531",
      "aud": "UA5nelbHfgInILgWcHQP_",
      "c_hash": "SooCVHbuzqNhAJ8EscBWgQ",
      "acr": "urn:brasil:openbanking:loa2",
      "s_hash": "aquYMG7_vAgLFWWIVLpWog",
      "iss": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
      "exp": 1640807725,
      "nonce": "ff72ebc8-75d8-4743-9f52-e76e856a7d47",
      "iat": 1640807425
    }
  }
}
2021-12-29 19:50:25 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:w7RTyO746J",
    "creationDateTime": "2021-12-29T19:50:22Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-29T19:50:25Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-29T21:50:22Z",
    "transactionFromDateTime": "2021-12-29T19:45:22Z",
    "transactionToDateTime": "2021-12-29T21:50:22Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/fintech-clienttest-meliconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-29T19:50:22Z"
  }
}
2021-12-29 19:50:25 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
  "state": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4"
}
2021-12-29 19:50:25 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
  "state": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4",
  "code": "jl26aCMVZnxnoW9lko3mmcA8fivnY4kP"
}
2021-12-29 19:50:25 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://omega.mercadopago.com.br/open-banking/app/cb",
  "state": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4",
  "code": "jl26aCMVZnxnoW9lko3mmcA8fivnY4kP",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ.Kxfskmhw-8cTWdMMO3YPeS2ydiwMg6lIve_FvZKtWU-Q2z5s6X_6R4iNy1uqS69Rlqfy0nFMu-s7d0atE5Gg6VmFowBCQ6OAOxTtAvo85fA-NOUhwVjt9bHgBjQ6MAXuDuy3U_GAhqpFdeBJG9Z-jk87iVfjSvAFcJm7njvjUStRnDudeI9jQd003ZC9QlvtANcakOtuq4eymM_jp-Dgxfq7edyT3iPjiLcmAtYYHc8oEJY5NHICFlc7CO5-Bk8mSzqzhgiq7V2jdI9RUF16-oqsa7YoTzvP-nhMrY59KEwiVLeP6zXavcgxRiLReF12MXrykSHUC63MYpwTHnKeeg"
}
2021-12-29 19:50:25
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://omega.mercadopago.com.br/open-banking/app/cb#state=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4&code=jl26aCMVZnxnoW9lko3mmcA8fivnY4kP&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ.Kxfskmhw-8cTWdMMO3YPeS2ydiwMg6lIve_FvZKtWU-Q2z5s6X_6R4iNy1uqS69Rlqfy0nFMu-s7d0atE5Gg6VmFowBCQ6OAOxTtAvo85fA-NOUhwVjt9bHgBjQ6MAXuDuy3U_GAhqpFdeBJG9Z-jk87iVfjSvAFcJm7njvjUStRnDudeI9jQd003ZC9QlvtANcakOtuq4eymM_jp-Dgxfq7edyT3iPjiLcmAtYYHc8oEJY5NHICFlc7CO5-Bk8mSzqzhgiq7V2jdI9RUF16-oqsa7YoTzvP-nhMrY59KEwiVLeP6zXavcgxRiLReF12MXrykSHUC63MYpwTHnKeeg
2021-12-29 19:50:25 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://omega.mercadopago.com.br/open-banking/app/cb#state=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VDYXNlSWQiOiIiLCJpZEZyb250IjoiOTJhZDIwMmUtNjU0YS00YzNmLTlmNmItMWM0Yjg5NjRkNWQwIiwiaWF0IjoxNjQwODA3NDIyfQ.EMhCkLtu4GsfqhSVK28JvwjIj-R6bY3_wfKu5lcRQi4&code=jl26aCMVZnxnoW9lko3mmcA8fivnY4kP&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUlMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6IlVBNW5lbGJIZmdJbklMZ1djSFFQXyIsImNfaGFzaCI6IlNvb0NWSGJ1enFOaEFKOEVzY0JXZ1EiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJzX2hhc2giOiJhcXVZTUc3X3ZBZ0xGV1dJVkxwV29nIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2ZpbnRlY2gtY2xpZW50dGVzdC1tZWxpXC8iLCJleHAiOjE2NDA4MDc3MjUsIm5vbmNlIjoiZmY3MmViYzgtNzVkOC00NzQzLTlmNTItZTc2ZTg1NmE3ZDQ3IiwiaWF0IjoxNjQwODA3NDI1fQ.Kxfskmhw-8cTWdMMO3YPeS2ydiwMg6lIve_FvZKtWU-Q2z5s6X_6R4iNy1uqS69Rlqfy0nFMu-s7d0atE5Gg6VmFowBCQ6OAOxTtAvo85fA-NOUhwVjt9bHgBjQ6MAXuDuy3U_GAhqpFdeBJG9Z-jk87iVfjSvAFcJm7njvjUStRnDudeI9jQd003ZC9QlvtANcakOtuq4eymM_jp-Dgxfq7edyT3iPjiLcmAtYYHc8oEJY5NHICFlc7CO5-Bk8mSzqzhgiq7V2jdI9RUF16-oqsa7YoTzvP-nhMrY59KEwiVLeP6zXavcgxRiLReF12MXrykSHUC63MYpwTHnKeeg]
outgoing_path
authorize
2021-12-29 19:50:27 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "content-type": "application/json",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-29 19:50:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-29 19:50:27 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-29 19:50:27 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "content-type": "application/json",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-29 19:50:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-29 19:50:27 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-29 19:50:27 INCOMING
fapi1-advanced-final-client-test-invalid-alternate-alg
Incoming HTTP request to test instance 0CpQYnMvuZx9skN
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Go-http-client/1.1",
  "content-type": "application/json",
  "accept-encoding": "gzip",
  "connection": "close"
}
incoming_path
/test/a/fintech-clienttest-meli/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-29 19:50:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-29 19:50:27 OUTGOING
fapi1-advanced-final-client-test-invalid-alternate-alg
Response to HTTP request to test instance 0CpQYnMvuZx9skN
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/fintech-clienttest-meli/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/fintech-clienttest-meli/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-29 19:50:30 FINISHED
fapi1-advanced-final-client-test-invalid-alternate-alg
Test has run to completion
testmodule_result
PASSED
2021-12-29 19:50:44
TEST-RUNNER
Alias has now been claimed by another test
alias
fintech-clienttest-meli
new_test_id
6uDrY1sDBv9KVk2
Test Results