Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-10 14:46:08 INFO
TEST-RUNNER
Test instance gv1hEMXBXsU0Dtc created
baseUrl
https://www.certification.openid.net/test/a/sicoob
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
sicoob
description
Sicoob - Recepção de dados
planId
mrIWQcgjehgI1
config
{
  "alias": "sicoob",
  "description": "Sicoob - Recepção de dados",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "sicoob-bank",
    "redirect_uri": "https://openfinance-homol.sicoob.com.br",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "alg": "PS256",
          "use": "sig",
          "n": "0FzpW7EXNljVelkdmpq3_feK2booZZUZ1cmu6ofh3-73Fw7ganPoba5rc4_fduyk5LW0efFoZ0yGDtJRvGYYx2v7Sk-E69q8cQ7fv7ddXlAzGLH3qq-ZDjCMonsPyXAYIw8rRsGjxCBqFCcw76zU6OmdPI9Er6USZjWqHYhcIErZBUSVQAkkf3LgVdc7SBdPAtQM4l-Twaw85XgJ5kzRgekS6WTs1MEx1OzzwzVJbY4ZoF1XrzVgZ6O8QrWeMLgAIa25HDga_3zT6vSLOImSXuQ0fBIfHNw4Tzn4UnwmsqWpfbmbnHRS-BT11tT5J-ovyhM5eZ-rhXJWv_FyKhWP5w",
          "e": "AQAB",
          "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37"
        },
        {
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "use": "enc",
          "n": "woXacG_b1VWfWWj5QMZN0EmntOvEEABW5o-J0rsmUTUcyPtPWKGi2Whfz4vL_hzUCTMB1c3xObMa3JjgIIqva_LCUMV-NbEPoB4TONPOUlSZE9pFMvDs9r9UHdgk1diWo9WFnLQERIGuBtDImBQFeuhFoL7cWp4G0TUxk-xkhG9LpAdWvuIDATr9nCdYUbiJ5EC-K8B-KQQwvv67_PZnlw74k1442rpuqyEKh1y4Vw-JNNMatyMx0_mwzR0GdNyuybMavXFCgeGc42e_og_FsA_4EsGIhtVDSEQGpR553D8drtwpTepMa7Ha1_1FQBL0Yc7Eqx-k8ZKCcGUzyB6-KQ",
          "e": "AQAB",
          "kid": "65b70cd42fcd58c82cd1bd0fc4803572c2efd63a474a8aaf5706f54d2e8eafba"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "sicoob-bank-two",
    "redirect_uri": "https://openfinance-homol.sicoob.com.br",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nZNFVxt9wOCA9PiBEGlCmZpYpY9TZZbHr\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "alg": "PS256",
          "use": "sig",
          "n": "rIwG3-3hyi4CL2xu76cjzFF7oOKkozI2TBWAeaVDXOD9nzFY5XToT8dmFYSOvoRW5S9gcr7DyI6drU8pYCtzJss-T2U2RgRGy-5lyICK2vMDnXgr8LG7Pp3yS6OQT9rPXxUjp_Fn9goeIIvnSkMUPEDQDkCrRMCNzHbBsB_J6rBLcKjV8mtaJXMvL3T129StOQ-14_uFtaQx1GjmqlzjzknwxBLTEfKFTdty6PY45fw0pNV2wNJuUi0WIzh5llgAbsfN0lqy3Ifjj2hj0h9gBmWwcr7HdgdQ8ADQ6aJW6LAa8aWa6VBmJ5rdYWs-4kBI0Ke_gaiScJRq1MgJMwlzUw",
          "e": "AQAB",
          "kid": "bb7267b579fa62603ba06cc4df150043d8f206896d016f902b3491f74fc799f8"
        },
        {
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "use": "enc",
          "n": "rEbpuQIAwS2KB0uuNxaoEN_wKP9b2qFOpeYtE_LKmH6JAQ-aNTEx2sZe1fxMYIg1823dCb9l2auYs1cuRyZPfUwxcxMSpan2BvLmpboi7amG9gpwKvWhE6xsc_aDZicY5cHslDfCeO1VCrIn7k0cvedkYO1X_ExZpUdreReTDDuAtByg_pQTU4yHik0-qvmDpW_eAQ1Wb6V805KWBgLi_VxV8VSKGka4QyXF93pw3Juif42dzh-8w4tJaoBxSGQ49X6W5rEf9gIHrCsNZN0e9BsfCBT8siHV-f_wufMzX72PQ5imqk667GC2xxHnXUJazFVA8ZBcCaP4cMg4SoHSqw",
          "e": "AQAB",
          "kid": "96bce1fbd8ba57df1ba0023ba4b9bd7bbd27f0e1e649fbd3d60b51c7d7642e34"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-refresh-token-test
2021-12-10 14:46:08 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/sicoob/
discoveryUrl
https://www.certification.openid.net/test/a/sicoob/.well-known/openid-configuration
2021-12-10 14:46:08 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-10 14:46:08 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 14:46:08
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-10 14:46:08
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-10 14:46:08
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-10 14:46:08
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-10 14:46:08 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-10 14:46:08
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/sicoob/par
2021-12-10 14:46:08
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2021-12-10 14:46:08 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-10 14:46:08 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-10 14:46:08 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-10 14:46:08 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-10 14:46:08 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-10 14:46:08 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
sicoob-bank
redirect_uri
https://openfinance-homol.sicoob.com.br
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "0FzpW7EXNljVelkdmpq3_feK2booZZUZ1cmu6ofh3-73Fw7ganPoba5rc4_fduyk5LW0efFoZ0yGDtJRvGYYx2v7Sk-E69q8cQ7fv7ddXlAzGLH3qq-ZDjCMonsPyXAYIw8rRsGjxCBqFCcw76zU6OmdPI9Er6USZjWqHYhcIErZBUSVQAkkf3LgVdc7SBdPAtQM4l-Twaw85XgJ5kzRgekS6WTs1MEx1OzzwzVJbY4ZoF1XrzVgZ6O8QrWeMLgAIa25HDga_3zT6vSLOImSXuQ0fBIfHNw4Tzn4UnwmsqWpfbmbnHRS-BT11tT5J-ovyhM5eZ-rhXJWv_FyKhWP5w",
      "e": "AQAB",
      "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "woXacG_b1VWfWWj5QMZN0EmntOvEEABW5o-J0rsmUTUcyPtPWKGi2Whfz4vL_hzUCTMB1c3xObMa3JjgIIqva_LCUMV-NbEPoB4TONPOUlSZE9pFMvDs9r9UHdgk1diWo9WFnLQERIGuBtDImBQFeuhFoL7cWp4G0TUxk-xkhG9LpAdWvuIDATr9nCdYUbiJ5EC-K8B-KQQwvv67_PZnlw74k1442rpuqyEKh1y4Vw-JNNMatyMx0_mwzR0GdNyuybMavXFCgeGc42e_og_FsA_4EsGIhtVDSEQGpR553D8drtwpTepMa7Ha1_1FQBL0Yc7Eqx-k8ZKCcGUzyB6-KQ",
      "e": "AQAB",
      "kid": "65b70cd42fcd58c82cd1bd0fc4803572c2efd63a474a8aaf5706f54d2e8eafba"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----
MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy
MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy
YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl
cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h
NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj
b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy
aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm
iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB
IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7
D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK
59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn
6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp
/hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU
C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID
AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88
QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB
BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v
cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov
L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy
LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy
MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw
ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH
AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0
aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp
bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz
IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np
b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g
U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1
bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w
a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB
CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK
D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn
PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u
QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon
nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr
QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL
-----END CERTIFICATE-----
2021-12-10 14:46:08 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 14:46:08 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "0FzpW7EXNljVelkdmpq3_feK2booZZUZ1cmu6ofh3-73Fw7ganPoba5rc4_fduyk5LW0efFoZ0yGDtJRvGYYx2v7Sk-E69q8cQ7fv7ddXlAzGLH3qq-ZDjCMonsPyXAYIw8rRsGjxCBqFCcw76zU6OmdPI9Er6USZjWqHYhcIErZBUSVQAkkf3LgVdc7SBdPAtQM4l-Twaw85XgJ5kzRgekS6WTs1MEx1OzzwzVJbY4ZoF1XrzVgZ6O8QrWeMLgAIa25HDga_3zT6vSLOImSXuQ0fBIfHNw4Tzn4UnwmsqWpfbmbnHRS-BT11tT5J-ovyhM5eZ-rhXJWv_FyKhWP5w",
      "e": "AQAB",
      "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "woXacG_b1VWfWWj5QMZN0EmntOvEEABW5o-J0rsmUTUcyPtPWKGi2Whfz4vL_hzUCTMB1c3xObMa3JjgIIqva_LCUMV-NbEPoB4TONPOUlSZE9pFMvDs9r9UHdgk1diWo9WFnLQERIGuBtDImBQFeuhFoL7cWp4G0TUxk-xkhG9LpAdWvuIDATr9nCdYUbiJ5EC-K8B-KQQwvv67_PZnlw74k1442rpuqyEKh1y4Vw-JNNMatyMx0_mwzR0GdNyuybMavXFCgeGc42e_og_FsA_4EsGIhtVDSEQGpR553D8drtwpTepMa7Ha1_1FQBL0Yc7Eqx-k8ZKCcGUzyB6-KQ",
      "e": "AQAB",
      "kid": "65b70cd42fcd58c82cd1bd0fc4803572c2efd63a474a8aaf5706f54d2e8eafba"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37",
      "alg": "PS256",
      "n": "0FzpW7EXNljVelkdmpq3_feK2booZZUZ1cmu6ofh3-73Fw7ganPoba5rc4_fduyk5LW0efFoZ0yGDtJRvGYYx2v7Sk-E69q8cQ7fv7ddXlAzGLH3qq-ZDjCMonsPyXAYIw8rRsGjxCBqFCcw76zU6OmdPI9Er6USZjWqHYhcIErZBUSVQAkkf3LgVdc7SBdPAtQM4l-Twaw85XgJ5kzRgekS6WTs1MEx1OzzwzVJbY4ZoF1XrzVgZ6O8QrWeMLgAIa25HDga_3zT6vSLOImSXuQ0fBIfHNw4Tzn4UnwmsqWpfbmbnHRS-BT11tT5J-ovyhM5eZ-rhXJWv_FyKhWP5w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "65b70cd42fcd58c82cd1bd0fc4803572c2efd63a474a8aaf5706f54d2e8eafba",
      "alg": "RSA-OAEP",
      "n": "woXacG_b1VWfWWj5QMZN0EmntOvEEABW5o-J0rsmUTUcyPtPWKGi2Whfz4vL_hzUCTMB1c3xObMa3JjgIIqva_LCUMV-NbEPoB4TONPOUlSZE9pFMvDs9r9UHdgk1diWo9WFnLQERIGuBtDImBQFeuhFoL7cWp4G0TUxk-xkhG9LpAdWvuIDATr9nCdYUbiJ5EC-K8B-KQQwvv67_PZnlw74k1442rpuqyEKh1y4Vw-JNNMatyMx0_mwzR0GdNyuybMavXFCgeGc42e_og_FsA_4EsGIhtVDSEQGpR553D8drtwpTepMa7Ha1_1FQBL0Yc7Eqx-k8ZKCcGUzyB6-KQ"
    }
  ]
}
2021-12-10 14:46:08 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-10 14:46:08 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-10 14:46:08 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "0FzpW7EXNljVelkdmpq3_feK2booZZUZ1cmu6ofh3-73Fw7ganPoba5rc4_fduyk5LW0efFoZ0yGDtJRvGYYx2v7Sk-E69q8cQ7fv7ddXlAzGLH3qq-ZDjCMonsPyXAYIw8rRsGjxCBqFCcw76zU6OmdPI9Er6USZjWqHYhcIErZBUSVQAkkf3LgVdc7SBdPAtQM4l-Twaw85XgJ5kzRgekS6WTs1MEx1OzzwzVJbY4ZoF1XrzVgZ6O8QrWeMLgAIa25HDga_3zT6vSLOImSXuQ0fBIfHNw4Tzn4UnwmsqWpfbmbnHRS-BT11tT5J-ovyhM5eZ-rhXJWv_FyKhWP5w",
      "e": "AQAB",
      "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "woXacG_b1VWfWWj5QMZN0EmntOvEEABW5o-J0rsmUTUcyPtPWKGi2Whfz4vL_hzUCTMB1c3xObMa3JjgIIqva_LCUMV-NbEPoB4TONPOUlSZE9pFMvDs9r9UHdgk1diWo9WFnLQERIGuBtDImBQFeuhFoL7cWp4G0TUxk-xkhG9LpAdWvuIDATr9nCdYUbiJ5EC-K8B-KQQwvv67_PZnlw74k1442rpuqyEKh1y4Vw-JNNMatyMx0_mwzR0GdNyuybMavXFCgeGc42e_og_FsA_4EsGIhtVDSEQGpR553D8drtwpTepMa7Ha1_1FQBL0Yc7Eqx-k8ZKCcGUzyB6-KQ",
      "e": "AQAB",
      "kid": "65b70cd42fcd58c82cd1bd0fc4803572c2efd63a474a8aaf5706f54d2e8eafba"
    }
  ]
}
Verify configuration of second client
2021-12-10 14:46:08 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
sicoob-bank-two
redirect_uri
https://openfinance-homol.sicoob.com.br
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "rIwG3-3hyi4CL2xu76cjzFF7oOKkozI2TBWAeaVDXOD9nzFY5XToT8dmFYSOvoRW5S9gcr7DyI6drU8pYCtzJss-T2U2RgRGy-5lyICK2vMDnXgr8LG7Pp3yS6OQT9rPXxUjp_Fn9goeIIvnSkMUPEDQDkCrRMCNzHbBsB_J6rBLcKjV8mtaJXMvL3T129StOQ-14_uFtaQx1GjmqlzjzknwxBLTEfKFTdty6PY45fw0pNV2wNJuUi0WIzh5llgAbsfN0lqy3Ifjj2hj0h9gBmWwcr7HdgdQ8ADQ6aJW6LAa8aWa6VBmJ5rdYWs-4kBI0Ke_gaiScJRq1MgJMwlzUw",
      "e": "AQAB",
      "kid": "bb7267b579fa62603ba06cc4df150043d8f206896d016f902b3491f74fc799f8"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "rEbpuQIAwS2KB0uuNxaoEN_wKP9b2qFOpeYtE_LKmH6JAQ-aNTEx2sZe1fxMYIg1823dCb9l2auYs1cuRyZPfUwxcxMSpan2BvLmpboi7amG9gpwKvWhE6xsc_aDZicY5cHslDfCeO1VCrIn7k0cvedkYO1X_ExZpUdreReTDDuAtByg_pQTU4yHik0-qvmDpW_eAQ1Wb6V805KWBgLi_VxV8VSKGka4QyXF93pw3Juif42dzh-8w4tJaoBxSGQ49X6W5rEf9gIHrCsNZN0e9BsfCBT8siHV-f_wufMzX72PQ5imqk667GC2xxHnXUJazFVA8ZBcCaP4cMg4SoHSqw",
      "e": "AQAB",
      "kid": "96bce1fbd8ba57df1ba0023ba4b9bd7bbd27f0e1e649fbd3d60b51c7d7642e34"
    }
  ]
}
2021-12-10 14:46:08 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-10 14:46:08 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "rIwG3-3hyi4CL2xu76cjzFF7oOKkozI2TBWAeaVDXOD9nzFY5XToT8dmFYSOvoRW5S9gcr7DyI6drU8pYCtzJss-T2U2RgRGy-5lyICK2vMDnXgr8LG7Pp3yS6OQT9rPXxUjp_Fn9goeIIvnSkMUPEDQDkCrRMCNzHbBsB_J6rBLcKjV8mtaJXMvL3T129StOQ-14_uFtaQx1GjmqlzjzknwxBLTEfKFTdty6PY45fw0pNV2wNJuUi0WIzh5llgAbsfN0lqy3Ifjj2hj0h9gBmWwcr7HdgdQ8ADQ6aJW6LAa8aWa6VBmJ5rdYWs-4kBI0Ke_gaiScJRq1MgJMwlzUw",
      "e": "AQAB",
      "kid": "bb7267b579fa62603ba06cc4df150043d8f206896d016f902b3491f74fc799f8"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "rEbpuQIAwS2KB0uuNxaoEN_wKP9b2qFOpeYtE_LKmH6JAQ-aNTEx2sZe1fxMYIg1823dCb9l2auYs1cuRyZPfUwxcxMSpan2BvLmpboi7amG9gpwKvWhE6xsc_aDZicY5cHslDfCeO1VCrIn7k0cvedkYO1X_ExZpUdreReTDDuAtByg_pQTU4yHik0-qvmDpW_eAQ1Wb6V805KWBgLi_VxV8VSKGka4QyXF93pw3Juif42dzh-8w4tJaoBxSGQ49X6W5rEf9gIHrCsNZN0e9BsfCBT8siHV-f_wufMzX72PQ5imqk667GC2xxHnXUJazFVA8ZBcCaP4cMg4SoHSqw",
      "e": "AQAB",
      "kid": "96bce1fbd8ba57df1ba0023ba4b9bd7bbd27f0e1e649fbd3d60b51c7d7642e34"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "bb7267b579fa62603ba06cc4df150043d8f206896d016f902b3491f74fc799f8",
      "alg": "PS256",
      "n": "rIwG3-3hyi4CL2xu76cjzFF7oOKkozI2TBWAeaVDXOD9nzFY5XToT8dmFYSOvoRW5S9gcr7DyI6drU8pYCtzJss-T2U2RgRGy-5lyICK2vMDnXgr8LG7Pp3yS6OQT9rPXxUjp_Fn9goeIIvnSkMUPEDQDkCrRMCNzHbBsB_J6rBLcKjV8mtaJXMvL3T129StOQ-14_uFtaQx1GjmqlzjzknwxBLTEfKFTdty6PY45fw0pNV2wNJuUi0WIzh5llgAbsfN0lqy3Ifjj2hj0h9gBmWwcr7HdgdQ8ADQ6aJW6LAa8aWa6VBmJ5rdYWs-4kBI0Ke_gaiScJRq1MgJMwlzUw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "96bce1fbd8ba57df1ba0023ba4b9bd7bbd27f0e1e649fbd3d60b51c7d7642e34",
      "alg": "RSA-OAEP",
      "n": "rEbpuQIAwS2KB0uuNxaoEN_wKP9b2qFOpeYtE_LKmH6JAQ-aNTEx2sZe1fxMYIg1823dCb9l2auYs1cuRyZPfUwxcxMSpan2BvLmpboi7amG9gpwKvWhE6xsc_aDZicY5cHslDfCeO1VCrIn7k0cvedkYO1X_ExZpUdreReTDDuAtByg_pQTU4yHik0-qvmDpW_eAQ1Wb6V805KWBgLi_VxV8VSKGka4QyXF93pw3Juif42dzh-8w4tJaoBxSGQ49X6W5rEf9gIHrCsNZN0e9BsfCBT8siHV-f_wufMzX72PQ5imqk667GC2xxHnXUJazFVA8ZBcCaP4cMg4SoHSqw"
    }
  ]
}
2021-12-10 14:46:08 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-10 14:46:08 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-10 14:46:08 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "alg": "PS256",
      "use": "sig",
      "n": "rIwG3-3hyi4CL2xu76cjzFF7oOKkozI2TBWAeaVDXOD9nzFY5XToT8dmFYSOvoRW5S9gcr7DyI6drU8pYCtzJss-T2U2RgRGy-5lyICK2vMDnXgr8LG7Pp3yS6OQT9rPXxUjp_Fn9goeIIvnSkMUPEDQDkCrRMCNzHbBsB_J6rBLcKjV8mtaJXMvL3T129StOQ-14_uFtaQx1GjmqlzjzknwxBLTEfKFTdty6PY45fw0pNV2wNJuUi0WIzh5llgAbsfN0lqy3Ifjj2hj0h9gBmWwcr7HdgdQ8ADQ6aJW6LAa8aWa6VBmJ5rdYWs-4kBI0Ke_gaiScJRq1MgJMwlzUw",
      "e": "AQAB",
      "kid": "bb7267b579fa62603ba06cc4df150043d8f206896d016f902b3491f74fc799f8"
    },
    {
      "kty": "RSA",
      "alg": "RSA-OAEP",
      "use": "enc",
      "n": "rEbpuQIAwS2KB0uuNxaoEN_wKP9b2qFOpeYtE_LKmH6JAQ-aNTEx2sZe1fxMYIg1823dCb9l2auYs1cuRyZPfUwxcxMSpan2BvLmpboi7amG9gpwKvWhE6xsc_aDZicY5cHslDfCeO1VCrIn7k0cvedkYO1X_ExZpUdreReTDDuAtByg_pQTU4yHik0-qvmDpW_eAQ1Wb6V805KWBgLi_VxV8VSKGka4QyXF93pw3Juif42dzh-8w4tJaoBxSGQ49X6W5rEf9gIHrCsNZN0e9BsfCBT8siHV-f_wufMzX72PQ5imqk667GC2xxHnXUJazFVA8ZBcCaP4cMg4SoHSqw",
      "e": "AQAB",
      "kid": "96bce1fbd8ba57df1ba0023ba4b9bd7bbd27f0e1e649fbd3d60b51c7d7642e34"
    }
  ]
}
2021-12-10 14:46:08
fapi1-advanced-final-client-refresh-token-test
Setup Done
2021-12-10 14:46:10 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:10 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:10 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sicoob/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-10 14:46:10 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "66",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "consents",
  "client_id": "sicoob-bank"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=consents&client_id=sicoob-bank
2021-12-10 14:46:10 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 14:46:10 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy\nMzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy\nYXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl\ncmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h\nNDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj\nb29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy\naXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm\niZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB\nIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7\nD415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK\n59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn\n6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp\n/hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU\nC4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID\nAQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88\nQOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB\nBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v\ncGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov\nL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy\nLmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy\nMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw\nggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH\nAgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0\naCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp\nbmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz\nIFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np\nb24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g\nU2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1\nbWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w\na2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB\nCwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK\nD+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn\nPIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u\nQDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon\nnljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:10 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:10 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 14:46:10 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 14:46:10 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2021-12-10 14:46:10 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj
2021-12-10 14:46:10 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj
token_type
Bearer
2021-12-10 14:46:10
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-10 14:46:10 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-10 14:46:11 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/json",
  "authorization": "Bearer 8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj",
  "user-agent": "axios/0.21.1",
  "content-length": "1174",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "LOANS_READ",
      "LOANS_WARRANTIES_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_PAYMENTS_READ",
      "FINANCINGS_READ",
      "FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "FINANCINGS_PAYMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-31T00:00:00Z",
    "transactionFromDateTime": "2021-08-10T00:00:00Z",
    "transactionToDateTime": "2021-12-31T23:59:59Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"57784518064","rel":"CPF"}},"permissions":["ACCOUNTS_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ","RESOURCES_READ"],"expirationDateTime":"2021-12-31T00:00:00Z","transactionFromDateTime":"2021-08-10T00:00:00Z","transactionToDateTime":"2021-12-31T23:59:59Z"}}
2021-12-10 14:46:11 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-10 14:46:11 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:11 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:11 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 14:46:11 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-10 14:46:11 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-10 14:46:11 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj
2021-12-10 14:46:11 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
8xAhcwHFzeVEoi4uCq3afnwLzOAdbkac7ZR3MyCQU0LpFjqPOj
2021-12-10 14:46:11 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-10 14:46:11 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-10 14:46:11 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2021-12-10 14:46:11 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2021-12-10 14:46:11
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-10 14:46:11 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
30a91013-5e85-4b32-88de-73cfd1da8d6a
2021-12-10 14:46:11 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "30a91013-5e85-4b32-88de-73cfd1da8d6a"
}
consentId
urn:conformance.oidf:5VWQSnvx5G
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:5VWQSnvx5G",
    "creationDateTime": "2021-12-10T14:46:11Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-10T14:46:11Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T16:46:11Z",
    "transactionFromDateTime": "2021-12-10T14:41:11Z",
    "transactionToDateTime": "2021-12-10T16:46:11Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/sicoobconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T14:46:11Z"
  }
}
2021-12-10 14:46:11
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-10 14:46:11 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "30a91013-5e85-4b32-88de-73cfd1da8d6a"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:5VWQSnvx5G",
    "creationDateTime": "2021-12-10T14:46:11Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-10T14:46:11Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T16:46:11Z",
    "transactionFromDateTime": "2021-12-10T14:41:11Z",
    "transactionToDateTime": "2021-12-10T16:46:11Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/sicoobconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T14:46:11Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-10 14:46:12 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:12 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:12 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-10 14:46:13 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "2463",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.EIVv4Yc6-QxdFOk_lZR72-xHmkW76uarz1ic3ZCXFDXnGMe6tPtMhy63pF_YLdeoDUrIxty46d3cLgGmzgCecqRoaEITI2fD5XR0HTPrVnauCE-2-_porfdKbIx-vdkQcGC2teL4OENg8Xv6E9Yf6TWbiLYLfKYH0hG28a2Z-NpwXuL6hlxumiDr_baGmZwKeVqo6lhSYSdJDMKyjsiyLJrV3o48Xv-Eo0XBXe9VLKjm4EKnseAGeMv7G1QNeTsDgZ3USuznPuHzZByM3MkBHDeMnOSdho7zdKQR1UJ3c_hrfLgzNmDcLbFGivXlPIMa9dl1DhXxthI2-3BjgK9AuQ.kf2bCcgn6l73_Nhf.vlTlO3wv8sc4YMUtv7CIUaesQPMQ6HveyPnF0dfgXQE6n9vZZwgQmi6J2a29ckqteVGZ_5q64-SwvYCztuNCY2ymzlEyKZnwvfBaooitsnbohDGN4u90diTPxLdPkgAO-BdUPw8bLrNtelNRE7jcQE9SiQBTaL2SMNwLQ3LfxyiS0rSfona9Mxu10PDZt8ygsBpAoC2Ob81IPCC8ZA8yNDhVXFfJiXy-kZN-1ReDvJiQN4vMRXEZodACbWrsviaKzpzN1BpvS8-DwJJL1JKh1IRZXhcpfKCrkL-ZgVBovk8W8SNo3FV4rZoOTgW2tpw1V6sZIUzmGGhyWm8NMR-3KVg9PM0BJb94XuTTGTCPp5i-9bRUsUPmgD_N9pO1naB0xMRBGo9hLUC0CyzZ7vdV0PixKPzP1P9C2c1qCBnp4y2pgzv9E29MC1wwGNdVeij9KqTCXZkcaoQqISYwqlikeTbLouvL8jWoIkOrColT4D32XlPRt8APwSq8bZ4zSnF6wXGffQkC5KLSCLBzTopYm2fx_KabeJWjCR_ZoDLQe4XMXFAyYm3dKh8cUHgnLDbUA3sjp_DpN8moIncqO39ljiJO-KTSqe7qI9pqNHUQkqpV8PiJJNf01ADUHFJ-dq4PrVY5ok9yw_1xs0Kkbq7TtsSJW9A1nTSn-qqKmLGxiMIJOLCU9UYEJpV5UIMz7xJJkCUURQxtkbR5mP6MPlA-SafilNVgCgQv_PsvgaquPkgQyTMe5x5IRDQ0309D3gWnBtEfizaamhDp4Wg51b-pntUgi79pDdO57HSN1afgt_tX8XvYV-ZoLwATLtNfDAxFZM4e_4kE80qPTjEijxURzD_wX8RW9HSVsNCVohXHFhJCHSzuN2MbWCRnGXpP1cruDUVe8wmXM0Eta2BvYoiHa8-8sUuGdI3P7-gMrMmLmIZeEJDUrNZ0zd3_eVnL6S1UJa-sNMaC_Zb4-1EghJ_lXGAF2FYZbhQ9IjzET55mTXS9wH5TYsCYCjW-pHpkBhvPx3T_Wy4EJhu4nZtxp5iD2zL2Fwt1WR8HOS6blvicQntDTeQ-YjT468rfCbN0C3snhgWM3kUgWQ0locGsP-1Ulni35Nqi89-njty5HeNIvAQO1OB1kw1TX9mu9_d_Eyw5tblskGLmEq29NdxL5h5HfmwFIl2nhk-IdG4CQ76BDSc9tF721rBON2Gd3coSCalvn46KNeyNJGplD-K1ysiLx3vTnGbB95Fo_Cc-bK78RheXgVrOLDU5RSzAWvPJiPm4Aw-LRM7kvyyWJseq6NEyP2frzJnEMJdnJzDFtxqToAmRUHFHQuN8s0BI0MH0H7tqxrP5VFkcQMHdmYkMF-xi1ZvryILANnbgaZ4sgAYnnylD2jXB6K0wb_mw0qmW_yB_G9kRW11sb3sZSjMuRaz8Hr_U6ERlqvRhby-RQUXSrphDr6uVPtu14uYKW9d6EZ-s2_BzL62N6cONlEyt49hYBM7Uj9wejGYvsod5sSIXc8hEfNf_WDTUTKeUaNLEuDP-53eQv2oVA6R5_MjX-8GaaZiiyJLqX6IRTpcZN5yF1ZP4nNDAGt1pIzgBx4c2jF2skqCWnPh8ItWdNQRfNPrEG2Ix1jkWp7_U2nfMkunABfCIfG8SwtzzTRXjmYyzwvcu6a5v7Lwjlb8a1NgWSiEon099A8M0kPzHky7OoxRkivPhi8yt3F4MgTgfnleh2V64MLQN9zqUsfAYGu8bs5Eqt2dkqOgILl8FLWXW5mitknQ6zwxch46xFNyn24WK5fod9lrnN-s-XfUXOciUcarx-VbOhDCcMWzXp2zoB1qmbzQc-nMxCQLllhxa44Kxi0MeBOtCzxDsfVmkP-Uc_tCLyoG2pwDlzixsjZAwwxFS3tlQeqzrWA.VjxzTx1dlFmuhvyDjdKa4A",
  "client_id": "sicoob-bank"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.EIVv4Yc6-QxdFOk_lZR72-xHmkW76uarz1ic3ZCXFDXnGMe6tPtMhy63pF_YLdeoDUrIxty46d3cLgGmzgCecqRoaEITI2fD5XR0HTPrVnauCE-2-_porfdKbIx-vdkQcGC2teL4OENg8Xv6E9Yf6TWbiLYLfKYH0hG28a2Z-NpwXuL6hlxumiDr_baGmZwKeVqo6lhSYSdJDMKyjsiyLJrV3o48Xv-Eo0XBXe9VLKjm4EKnseAGeMv7G1QNeTsDgZ3USuznPuHzZByM3MkBHDeMnOSdho7zdKQR1UJ3c_hrfLgzNmDcLbFGivXlPIMa9dl1DhXxthI2-3BjgK9AuQ.kf2bCcgn6l73_Nhf.vlTlO3wv8sc4YMUtv7CIUaesQPMQ6HveyPnF0dfgXQE6n9vZZwgQmi6J2a29ckqteVGZ_5q64-SwvYCztuNCY2ymzlEyKZnwvfBaooitsnbohDGN4u90diTPxLdPkgAO-BdUPw8bLrNtelNRE7jcQE9SiQBTaL2SMNwLQ3LfxyiS0rSfona9Mxu10PDZt8ygsBpAoC2Ob81IPCC8ZA8yNDhVXFfJiXy-kZN-1ReDvJiQN4vMRXEZodACbWrsviaKzpzN1BpvS8-DwJJL1JKh1IRZXhcpfKCrkL-ZgVBovk8W8SNo3FV4rZoOTgW2tpw1V6sZIUzmGGhyWm8NMR-3KVg9PM0BJb94XuTTGTCPp5i-9bRUsUPmgD_N9pO1naB0xMRBGo9hLUC0CyzZ7vdV0PixKPzP1P9C2c1qCBnp4y2pgzv9E29MC1wwGNdVeij9KqTCXZkcaoQqISYwqlikeTbLouvL8jWoIkOrColT4D32XlPRt8APwSq8bZ4zSnF6wXGffQkC5KLSCLBzTopYm2fx_KabeJWjCR_ZoDLQe4XMXFAyYm3dKh8cUHgnLDbUA3sjp_DpN8moIncqO39ljiJO-KTSqe7qI9pqNHUQkqpV8PiJJNf01ADUHFJ-dq4PrVY5ok9yw_1xs0Kkbq7TtsSJW9A1nTSn-qqKmLGxiMIJOLCU9UYEJpV5UIMz7xJJkCUURQxtkbR5mP6MPlA-SafilNVgCgQv_PsvgaquPkgQyTMe5x5IRDQ0309D3gWnBtEfizaamhDp4Wg51b-pntUgi79pDdO57HSN1afgt_tX8XvYV-ZoLwATLtNfDAxFZM4e_4kE80qPTjEijxURzD_wX8RW9HSVsNCVohXHFhJCHSzuN2MbWCRnGXpP1cruDUVe8wmXM0Eta2BvYoiHa8-8sUuGdI3P7-gMrMmLmIZeEJDUrNZ0zd3_eVnL6S1UJa-sNMaC_Zb4-1EghJ_lXGAF2FYZbhQ9IjzET55mTXS9wH5TYsCYCjW-pHpkBhvPx3T_Wy4EJhu4nZtxp5iD2zL2Fwt1WR8HOS6blvicQntDTeQ-YjT468rfCbN0C3snhgWM3kUgWQ0locGsP-1Ulni35Nqi89-njty5HeNIvAQO1OB1kw1TX9mu9_d_Eyw5tblskGLmEq29NdxL5h5HfmwFIl2nhk-IdG4CQ76BDSc9tF721rBON2Gd3coSCalvn46KNeyNJGplD-K1ysiLx3vTnGbB95Fo_Cc-bK78RheXgVrOLDU5RSzAWvPJiPm4Aw-LRM7kvyyWJseq6NEyP2frzJnEMJdnJzDFtxqToAmRUHFHQuN8s0BI0MH0H7tqxrP5VFkcQMHdmYkMF-xi1ZvryILANnbgaZ4sgAYnnylD2jXB6K0wb_mw0qmW_yB_G9kRW11sb3sZSjMuRaz8Hr_U6ERlqvRhby-RQUXSrphDr6uVPtu14uYKW9d6EZ-s2_BzL62N6cONlEyt49hYBM7Uj9wejGYvsod5sSIXc8hEfNf_WDTUTKeUaNLEuDP-53eQv2oVA6R5_MjX-8GaaZiiyJLqX6IRTpcZN5yF1ZP4nNDAGt1pIzgBx4c2jF2skqCWnPh8ItWdNQRfNPrEG2Ix1jkWp7_U2nfMkunABfCIfG8SwtzzTRXjmYyzwvcu6a5v7Lwjlb8a1NgWSiEon099A8M0kPzHky7OoxRkivPhi8yt3F4MgTgfnleh2V64MLQN9zqUsfAYGu8bs5Eqt2dkqOgILl8FLWXW5mitknQ6zwxch46xFNyn24WK5fod9lrnN-s-XfUXOciUcarx-VbOhDCcMWzXp2zoB1qmbzQc-nMxCQLllhxa44Kxi0MeBOtCzxDsfVmkP-Uc_tCLyoG2pwDlzixsjZAwwxFS3tlQeqzrWA.VjxzTx1dlFmuhvyDjdKa4A&client_id=sicoob-bank
2021-12-10 14:46:13 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2021-12-10 14:46:13 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:13 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:13 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy
MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy
YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl
cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h
NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj
b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy
aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm
iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB
IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7
D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK
59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn
6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp
/hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU
C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID
AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88
QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB
BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v
cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov
L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy
LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy
MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw
ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH
AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0
aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp
bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz
IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np
b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g
U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1
bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w
a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB
CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK
D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn
PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u
QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon
nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr
QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL
-----END CERTIFICATE-----
2021-12-10 14:46:13 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 14:46:13 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJmMzM0MTQxODNiOWJlNjM5ZjhmZDQ4ZWE2ZjkzOTFjMjc1YTdmNzcxMDVlZDY5OTIyOGE1YzY2MzNmMDZhZDM3In0.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.GU0ffbwhNgWHcTHJgcslayuxrMpCUcI0jxdQ0sT3M4ESi9fM0PkXu3NJ4Zcd7Twf1dxrdFSxEk9mQ01gKkympONa7YUvbuAqGr78g8Z4yZPBLQWqdesAX7a-At4Rt-IhnxfahkADnLneiZ1NwPX_5KFEXJXhRRjyZnquTBB2mt6uPXiYMS_81bIpy4qrImV5BoVPs3vDOLP_JtItqs99EpYYR6GSYW2SUM3Uq62ayUYgdgTDdcnIFx8KKqt1kUFB7HVba69OnPahWzeCw9Rq-XYsZY2x5Q1sENfnlhBEXGzs_ipypfo6wuzsv8r_AInrGumhZxjEHSgiuFST0QhizA",
  "header": {
    "kid": "f33414183b9be639f8fd48ea6f9391c275a7f77105ed699228a5c6633f06ad37",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "sicoob-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
    "client_id": "sicoob-bank",
    "aud": "https://www.certification.openid.net/test/a/sicoob/",
    "nbf": 1639147571,
    "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc",
    "redirect_uri": "https://openfinance-homol.sicoob.com.br",
    "exp": 1639147871,
    "iat": 1639147571,
    "code_challenge": "50Md8p_vx4YDXl9_RYhQs7Lflzczi136LEtgToQyAz4",
    "jti": "z2J7AYpEjKXYuw9M_81PngKI7GB2ehswKKFzOI7rn7M"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "oauth-authz-req+jwt",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2021-12-10 14:46:13 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2021-12-10 14:46:13 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-10 14:46:13 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-10 14:46:13 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
2021-12-10 14:46:13 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 10, 2021, 2:51:11 PM"
2021-12-10 14:46:13 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 10, 2021, 2:46:11 PM"
now
"Dec 10, 2021, 2:46:13 PM"
2021-12-10 14:46:13
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-10 14:46:13 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-10 14:46:13 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-10 14:46:13 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-10 14:46:13 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-10 14:46:13 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJmMzM0MTQxODNiOWJlNjM5ZjhmZDQ4ZWE2ZjkzOTFjMjc1YTdmNzcxMDVlZDY5OTIyOGE1YzY2MzNmMDZhZDM3In0.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.GU0ffbwhNgWHcTHJgcslayuxrMpCUcI0jxdQ0sT3M4ESi9fM0PkXu3NJ4Zcd7Twf1dxrdFSxEk9mQ01gKkympONa7YUvbuAqGr78g8Z4yZPBLQWqdesAX7a-At4Rt-IhnxfahkADnLneiZ1NwPX_5KFEXJXhRRjyZnquTBB2mt6uPXiYMS_81bIpy4qrImV5BoVPs3vDOLP_JtItqs99EpYYR6GSYW2SUM3Uq62ayUYgdgTDdcnIFx8KKqt1kUFB7HVba69OnPahWzeCw9Rq-XYsZY2x5Q1sENfnlhBEXGzs_ipypfo6wuzsv8r_AInrGumhZxjEHSgiuFST0QhizA
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 26303383828486304884130578648275083887367033086552727145594752675829992877112480183783357435307791504317463527825659827343383481479394806726016664927062394854575821687299923664052269156753154566317788153281632410025388987435315307383702657122990175495143231279858772188526457658902074615906713494080211095747737622465859458717213094283269821093077775181175070598706548317140750487118807441540948986098786280613750859364006887059106573296716258774408933529737192194622968974968790725149908463611356079043228214248927954291796892809718960044661705545277066237823566726261579271385148824041834109331049055969723142213607
  public exponent: 65537
2021-12-10 14:46:13 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://openfinance-homol.sicoob.com.br
2021-12-10 14:46:13 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
50Md8p_vx4YDXl9_RYhQs7Lflzczi136LEtgToQyAz4
2021-12-10 14:46:13 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:5b6ef1fc-90a2-4f54-bdd4-1c37550e2280
expires_in
600
2021-12-10 14:46:13 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:5b6ef1fc-90a2-4f54-bdd4-1c37550e2280",
  "expires_in": 600
}
outgoing_path
par
2021-12-10 14:46:13 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "69e6d0bf-df09-4013-9ea1-e5c37acbb1ac",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "sicoob-bank",
  "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "request_uri": "urn:ietf:params:oauth:request_uri:5b6ef1fc-90a2-4f54-bdd4-1c37550e2280"
}
incoming_body
2021-12-10 14:46:13 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-10 14:46:13 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2021-12-10 14:46:13 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2021-12-10 14:46:13 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "sicoob-bank",
  "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "iss": "sicoob-bank",
  "code_challenge_method": "S256",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "aud": "https://www.certification.openid.net/test/a/sicoob/",
  "nbf": 1639147571,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc",
  "exp": 1639147871,
  "iat": 1639147571,
  "code_challenge": "50Md8p_vx4YDXl9_RYhQs7Lflzczi136LEtgToQyAz4",
  "jti": "z2J7AYpEjKXYuw9M_81PngKI7GB2ehswKKFzOI7rn7M"
}
2021-12-10 14:46:13 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2021-12-10 14:46:13 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources
2021-12-10 14:46:13 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:5VWQSnvx5G",
  "accounts",
  "resources"
]
expected
consent:urn:conformance.oidf:5VWQSnvx5G
2021-12-10 14:46:13 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:5VWQSnvx5G",
  "accounts",
  "resources"
]
2021-12-10 14:46:13 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-10 14:46:13 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:5VWQSnvx5G",
  "accounts",
  "resources"
]
expected
openid
2021-12-10 14:46:13 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
sicoob-bank
2021-12-10 14:46:13 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli
2021-12-10 14:46:13 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8
2021-12-10 14:46:13 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
Undee6G-v-AaQPAWBNJPuA
2021-12-10 14:46:13 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
L-bP4VuItFwNQPQIhK1JHQ
2021-12-10 14:46:13 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/sicoob/
sub
user-subject-1234531
aud
sicoob-bank
nonce
dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8
iat
1639147573
exp
1639147873
2021-12-10 14:46:13 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147573,
  "exp": 1639147873
}
2021-12-10 14:46:13 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
Undee6G-v-AaQPAWBNJPuA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147573,
  "exp": 1639147873,
  "c_hash": "Undee6G-v-AaQPAWBNJPuA"
}
2021-12-10 14:46:13 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
L-bP4VuItFwNQPQIhK1JHQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147573,
  "exp": 1639147873,
  "c_hash": "Undee6G-v-AaQPAWBNJPuA",
  "s_hash": "L-bP4VuItFwNQPQIhK1JHQ"
}
2021-12-10 14:46:13 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-10 14:46:13 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147573,
  "exp": 1639147873,
  "c_hash": "Undee6G-v-AaQPAWBNJPuA",
  "s_hash": "L-bP4VuItFwNQPQIhK1JHQ",
  "acr": "urn:brasil:openbanking:loa2"
}
2021-12-10 14:46:13 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InNpY29vYi1iYW5rIiwiY19oYXNoIjoiVW5kZWU2Ry12LUFhUVBBV0JOSlB1QSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IkwtYlA0VnVJdEZ3TlFQUUloSzFKSFEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzMsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3M30.Celpn9qnZ4S0PW3FYnvqzPSVNZksM0M34uui9eB3Y4zBEXzP6l9jODl4PX06vLPII9uoMvsNWF-QV5HKgTOYaVjTVFW01ISeoxA9up0z7yiw6iN3bxSlItsxighsUEOsrC_0WrBI4HH3UICJXiH_Unt9jag_EKAeMlH9q6XfzlLI1Oiv_XtLRaVg7YCoR9gunl2mp-zZtjztnqURYwaz1wf3kbLpCX9zUQ9UEQh-sbREmUuWQDNPg1zC6dRejV1PF2wQHMBY0q1vFOvQMM0EzRkQ1fN1dGpbynQ1vGCFsCrFRVa4sfI3mDOz8Hq5NJKZyupsv3AcMSBHkBNF0Pgh2w
2021-12-10 14:46:13 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:5VWQSnvx5G",
    "creationDateTime": "2021-12-10T14:46:11Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-10T14:46:13Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-10T16:46:11Z",
    "transactionFromDateTime": "2021-12-10T14:41:11Z",
    "transactionToDateTime": "2021-12-10T16:46:11Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/sicoobconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T14:46:11Z"
  }
}
2021-12-10 14:46:13 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "state": "gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc"
}
2021-12-10 14:46:13 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "state": "gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc",
  "code": "sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli"
}
2021-12-10 14:46:13 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "state": "gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc",
  "code": "sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InNpY29vYi1iYW5rIiwiY19oYXNoIjoiVW5kZWU2Ry12LUFhUVBBV0JOSlB1QSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IkwtYlA0VnVJdEZ3TlFQUUloSzFKSFEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzMsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3M30.Celpn9qnZ4S0PW3FYnvqzPSVNZksM0M34uui9eB3Y4zBEXzP6l9jODl4PX06vLPII9uoMvsNWF-QV5HKgTOYaVjTVFW01ISeoxA9up0z7yiw6iN3bxSlItsxighsUEOsrC_0WrBI4HH3UICJXiH_Unt9jag_EKAeMlH9q6XfzlLI1Oiv_XtLRaVg7YCoR9gunl2mp-zZtjztnqURYwaz1wf3kbLpCX9zUQ9UEQh-sbREmUuWQDNPg1zC6dRejV1PF2wQHMBY0q1vFOvQMM0EzRkQ1fN1dGpbynQ1vGCFsCrFRVa4sfI3mDOz8Hq5NJKZyupsv3AcMSBHkBNF0Pgh2w"
}
2021-12-10 14:46:13
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://openfinance-homol.sicoob.com.br#state=gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc&code=sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InNpY29vYi1iYW5rIiwiY19oYXNoIjoiVW5kZWU2Ry12LUFhUVBBV0JOSlB1QSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IkwtYlA0VnVJdEZ3TlFQUUloSzFKSFEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzMsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3M30.Celpn9qnZ4S0PW3FYnvqzPSVNZksM0M34uui9eB3Y4zBEXzP6l9jODl4PX06vLPII9uoMvsNWF-QV5HKgTOYaVjTVFW01ISeoxA9up0z7yiw6iN3bxSlItsxighsUEOsrC_0WrBI4HH3UICJXiH_Unt9jag_EKAeMlH9q6XfzlLI1Oiv_XtLRaVg7YCoR9gunl2mp-zZtjztnqURYwaz1wf3kbLpCX9zUQ9UEQh-sbREmUuWQDNPg1zC6dRejV1PF2wQHMBY0q1vFOvQMM0EzRkQ1fN1dGpbynQ1vGCFsCrFRVa4sfI3mDOz8Hq5NJKZyupsv3AcMSBHkBNF0Pgh2w
2021-12-10 14:46:13 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://openfinance-homol.sicoob.com.br#state=gJH8CCxEUnUOYbXE-veJOOTufjWxsxbVH9y_4RNBWvc&code=sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InNpY29vYi1iYW5rIiwiY19oYXNoIjoiVW5kZWU2Ry12LUFhUVBBV0JOSlB1QSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IkwtYlA0VnVJdEZ3TlFQUUloSzFKSFEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzMsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3M30.Celpn9qnZ4S0PW3FYnvqzPSVNZksM0M34uui9eB3Y4zBEXzP6l9jODl4PX06vLPII9uoMvsNWF-QV5HKgTOYaVjTVFW01ISeoxA9up0z7yiw6iN3bxSlItsxighsUEOsrC_0WrBI4HH3UICJXiH_Unt9jag_EKAeMlH9q6XfzlLI1Oiv_XtLRaVg7YCoR9gunl2mp-zZtjztnqURYwaz1wf3kbLpCX9zUQ9UEQh-sbREmUuWQDNPg1zC6dRejV1PF2wQHMBY0q1vFOvQMM0EzRkQ1fN1dGpbynQ1vGCFsCrFRVa4sfI3mDOz8Hq5NJKZyupsv3AcMSBHkBNF0Pgh2w]
outgoing_path
authorize
2021-12-10 14:46:14 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:14 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sicoob/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-10 14:46:14 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:14 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-10 14:46:15 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "206",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli",
  "redirect_uri": "https://openfinance-homol.sicoob.com.br",
  "code_verifier": "GOajkcjp1xt7V-90hJ-nF8zGxtpmVg5OqRzBOuulHTY",
  "client_id": "sicoob-bank"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli&redirect_uri=https%3A%2F%2Fopenfinance-homol.sicoob.com.br&code_verifier=GOajkcjp1xt7V-90hJ-nF8zGxtpmVg5OqRzBOuulHTY&client_id=sicoob-bank
2021-12-10 14:46:15 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 14:46:15 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:15 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:15 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 14:46:15 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 14:46:15 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
sIeNsFyD4NAeIA1D3uuPhuLRbXGzfhli
2021-12-10 14:46:15 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://openfinance-homol.sicoob.com.br
2021-12-10 14:46:15 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
GOajkcjp1xt7V-90hJ-nF8zGxtpmVg5OqRzBOuulHTY
code_challenge
50Md8p_vx4YDXl9_RYhQs7Lflzczi136LEtgToQyAz4
2021-12-10 14:46:15 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
nfYcyAeUkkx47vQsNn0BXs2Atmp40wodzChz3rWKpLgigL6AD4
2021-12-10 14:46:15 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
wZddKkmF7Ag9SbEOXWhHdA
2021-12-10 14:46:15
CreateRefreshToken
Created refresh token
refresh_token
yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264;"+/ 
2021-12-10 14:46:15 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/sicoob/
sub
user-subject-1234531
aud
sicoob-bank
nonce
dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8
iat
1639147575
exp
1639147875
2021-12-10 14:46:15 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147575,
  "exp": 1639147875
}
2021-12-10 14:46:15 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
wZddKkmF7Ag9SbEOXWhHdA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147575,
  "exp": 1639147875,
  "at_hash": "wZddKkmF7Ag9SbEOXWhHdA"
}
2021-12-10 14:46:15 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/sicoob/",
  "sub": "user-subject-1234531",
  "aud": "sicoob-bank",
  "nonce": "dzR3OnLfFE_ML4clQi_RG-5PsN7KhWUXy_f1OIpJDs8",
  "iat": 1639147575,
  "exp": 1639147875,
  "at_hash": "wZddKkmF7Ag9SbEOXWhHdA",
  "acr": "urn:brasil:openbanking:loa2"
}
2021-12-10 14:46:15 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoid1pkZEtrbUY3QWc5U2JFT1hXaEhkQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoic2ljb29iLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzUsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3NX0.g62gK28s8QMmkVBp05djaSvTUNDyTrzW2CQG2HamffzU14zKdKONxDkh-OttUxZMwWsY7BU_39ig8Ve3hQqJpQaV_IGEWaxVjXKTUykEw1fe47e5hpBHNreuwRzM7e6p_D2B6pPr6uV10gGgsWcEx2FUadTTtioKTGJ_hJOjKy_VNYAJeHsQeGvyrD1ND80YJIlM_q87lMuLs2522Ess08-_D_Et1AFdu7EzQdr_v0XKQtk4iWXqVD1YrymZIXq7ZksLWgBruzlWtgTt_fpVMtBzE5GQ-liuDt7-xDL1hNs5LmWNiEClzhHpm0bLYGdtJqf8Tq5i9WyipgUmecWqXA
2021-12-10 14:46:15 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
nfYcyAeUkkx47vQsNn0BXs2Atmp40wodzChz3rWKpLgigL6AD4
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoid1pkZEtrbUY3QWc5U2JFT1hXaEhkQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoic2ljb29iLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzUsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3NX0.g62gK28s8QMmkVBp05djaSvTUNDyTrzW2CQG2HamffzU14zKdKONxDkh-OttUxZMwWsY7BU_39ig8Ve3hQqJpQaV_IGEWaxVjXKTUykEw1fe47e5hpBHNreuwRzM7e6p_D2B6pPr6uV10gGgsWcEx2FUadTTtioKTGJ_hJOjKy_VNYAJeHsQeGvyrD1ND80YJIlM_q87lMuLs2522Ess08-_D_Et1AFdu7EzQdr_v0XKQtk4iWXqVD1YrymZIXq7ZksLWgBruzlWtgTt_fpVMtBzE5GQ-liuDt7-xDL1hNs5LmWNiEClzhHpm0bLYGdtJqf8Tq5i9WyipgUmecWqXA
refresh_token
yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264;"+/ 
scope
openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources
2021-12-10 14:46:15
RemoveIssuedAccessTokenFromEnvironment
Removed access_token and token_type from environment
2021-12-10 14:46:15 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "nfYcyAeUkkx47vQsNn0BXs2Atmp40wodzChz3rWKpLgigL6AD4",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoid1pkZEtrbUY3QWc5U2JFT1hXaEhkQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoic2ljb29iLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvc2ljb29iXC8iLCJleHAiOjE2MzkxNDc4NzUsIm5vbmNlIjoiZHpSM09uTGZGRV9NTDRjbFFpX1JHLTVQc043S2hXVVh5X2YxT0lwSkRzOCIsImlhdCI6MTYzOTE0NzU3NX0.g62gK28s8QMmkVBp05djaSvTUNDyTrzW2CQG2HamffzU14zKdKONxDkh-OttUxZMwWsY7BU_39ig8Ve3hQqJpQaV_IGEWaxVjXKTUykEw1fe47e5hpBHNreuwRzM7e6p_D2B6pPr6uV10gGgsWcEx2FUadTTtioKTGJ_hJOjKy_VNYAJeHsQeGvyrD1ND80YJIlM_q87lMuLs2522Ess08-_D_Et1AFdu7EzQdr_v0XKQtk4iWXqVD1YrymZIXq7ZksLWgBruzlWtgTt_fpVMtBzE5GQ-liuDt7-xDL1hNs5LmWNiEClzhHpm0bLYGdtJqf8Tq5i9WyipgUmecWqXA",
  "refresh_token": "yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264;\"+/ ",
  "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources"
}
outgoing_path
token
2021-12-10 14:46:16 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer nfYcyAeUkkx47vQsNn0BXs2Atmp40wodzChz3rWKpLgigL6AD4",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "8256b9f7-5082-46c6-ae3b-b187bdee7cfd",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d691D812CBD4AC462CB150F373304EEB7",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:16 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2021-12-10 14:46:16 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2021-12-10 14:46:16 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2021-12-10 14:46:16 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:16 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:16 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sicoob/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-10 14:46:17 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "134",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "refresh_token": "yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264;\"+/ ",
  "client_id": "sicoob-bank"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&refresh_token=yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264%3B%22%2B%2F+&client_id=sicoob-bank
2021-12-10 14:46:17 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 14:46:17 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy\nMzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy\nYXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl\ncmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h\nNDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj\nb29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy\naXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm\niZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB\nIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7\nD415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK\n59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn\n6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp\n/hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU\nC4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID\nAQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88\nQOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB\nBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v\ncGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov\nL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy\nLmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy\nMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw\nggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH\nAgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0\naCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp\nbmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz\nIFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np\nb24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g\nU2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1\nbWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w\na2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB\nCwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK\nD+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn\nPIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u\nQDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon\nnljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:17 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:17 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 14:46:17 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 14:46:17 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
yFhURIcSwBpzwoQWOjSwBDQywGrBUHTviPNEwsBiDmoyUAIBWN7056649264;"+/ 
2021-12-10 14:46:17 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
JDtULPqul0RKpvQEatmyibv0MyAhVO1QbweW9fTMPElyifxGRq
2021-12-10 14:46:17 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
zFIAGsIle9zM3gdui_cyfg
2021-12-10 14:46:17
CreateRefreshToken
Created refresh token
refresh_token
nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155@@,=#
2021-12-10 14:46:17 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
JDtULPqul0RKpvQEatmyibv0MyAhVO1QbweW9fTMPElyifxGRq
token_type
Bearer
refresh_token
nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155@@,=#
scope
openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources
2021-12-10 14:46:17 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "JDtULPqul0RKpvQEatmyibv0MyAhVO1QbweW9fTMPElyifxGRq",
  "token_type": "Bearer",
  "refresh_token": "nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155@@,\u003d#",
  "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources"
}
outgoing_path
token
2021-12-10 14:46:17 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer JDtULPqul0RKpvQEatmyibv0MyAhVO1QbweW9fTMPElyifxGRq",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "6c0b6875-616f-4927-89d0-fab6d7676fb2",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d691D812CBD4AC462CB150F373304EEB7",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:17 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2021-12-10 14:46:17 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2021-12-10 14:46:17 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2021-12-10 14:46:18 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/sicoob/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:18 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-10 14:46:18 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/sicoob/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sicoob/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sicoob/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sicoob/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sicoob/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sicoob/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sicoob/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sicoob/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-10 14:46:19 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "136",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "refresh_token": "nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155@@,\u003d#",
  "client_id": "sicoob-bank"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&refresh_token=nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155%40%40%2C%3D%23&client_id=sicoob-bank
2021-12-10 14:46:19 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-10 14:46:19 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:19 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:19 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy
MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy
YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl
cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h
NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj
b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy
aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm
iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB
IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7
D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK
59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn
6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp
/hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU
C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID
AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88
QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB
BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v
cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov
L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy
LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy
MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw
ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH
AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0
aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp
bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz
IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np
b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g
U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1
bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w
a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB
CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK
D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn
PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u
QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon
nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr
QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL
-----END CERTIFICATE-----
2021-12-10 14:46:19 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-10 14:46:19 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
nUvcByWkibMTlBHlFwaXsHKRvlNHBvASojxCZqDqkYYseToypU8452290155@@,=#
2021-12-10 14:46:19 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3
2021-12-10 14:46:19 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
6y5KF5w-vagQj7LjvUJB6g
2021-12-10 14:46:19
CreateRefreshToken
Created refresh token
refresh_token
gavEtgkOTphQizqqQjMjueIjQOOtIvHmxJPKHqYGEOEfHEaRAK5626188192_#_['
2021-12-10 14:46:19 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3
token_type
Bearer
refresh_token
gavEtgkOTphQizqqQjMjueIjQOOtIvHmxJPKHqYGEOEfHEaRAK5626188192_#_['
scope
openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources
2021-12-10 14:46:19 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3",
  "token_type": "Bearer",
  "refresh_token": "gavEtgkOTphQizqqQjMjueIjQOOtIvHmxJPKHqYGEOEfHEaRAK5626188192_#_[\u0027",
  "scope": "openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources"
}
outgoing_path
token
2021-12-10 14:46:19 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance gv1hEMXBXsU0Dtc
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "c2d93e7c-179d-4f8f-9d3a-98ce88dfe8eb",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d691D812CBD4AC462CB150F373304EEB7",
  "connection": "close"
}
incoming_path
/test-mtls/a/sicoob/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-10 14:46:19 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2021-12-10 14:46:19 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIUOK3jJcFPX1RjikSxVDW7p7gJY9kwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyODIyMzgwMFoXDTIyMTAyODIy MzgwMFowggFEMQswCQYDVQQGEwJCUjELMAkGA1UECBMCREYxETAPBgNVBAcTCEJy YXNpbGlhMTkwNwYDVQQKEzBDb25mZWRlcmFjYW8gTmFjaW9uYWwgZGFzIENvb3Bl cmF0aXZhcyBkbyBTaWNvb2IxLTArBgNVBAsTJDc3N2IzZWNlLTc1ZWEtNWZhNy1h NDY0LWRkMjliMTQxZTk5ZTEoMCYGA1UEAxMfb3BlbmZpbmFuY2UtaG9tb2wuc2lj b29iLmNvbS5icjEXMBUGA1UEBRMOMDQ4OTE4NTAwMDAxODgxHTAbBgNVBA8TFFBy aXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZIm iZPyLGQBARMkNTk3OGJjMmYtMzRhYS00NWFjLWE4NzktMTJhODZhYWM2MWMxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqAoz51+eAQW3ROKQ2VILRN7 D415swKZKuk3LnnZ7NWctlScAY0PdHUDkSqHKokQfL9WBj7iupuxna7eyXoe4BUK 59lipOZlNFjIZ7ntmzYAxgsAfEDSH/R/XYZQWYiluYtDA2Nt0a2gyWueZ57+PvXn 6aflSA2StIK9AVjnmCL6CFFBZv++1pCLyC+eKGMWL1TES6X4d9c7u03JgEJk6kXp /hrfU3MFJPwBqFIYi9tuE4a3BF2N+vXWLFO6S3BqqAFo0CVwPL/PBywS9axU1FcU C4nEcpnyJX9CkdnFq+gWGogjkPrOLr7DCfQVMAe55XLX2aLMabVWYnK0MnMlOwID AQABo4IC7TCCAukwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUkfZ3bO44fF9KMt88 QOWkbTmgz68wHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYB BQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5v cGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDov L2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVy LmNybDAqBgNVHREEIzAhgh9vcGVuZmluYW5jZS1ob21vbC5zaWNvb2IuY29tLmJy MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEw ggGhBgNVHSAEggGYMIIBlDCCAZAGCisGAQQBg7ovZAEwggGAMIIBNgYIKwYBBQUH AgIwggEoDIIBJFRoaXMgQ2VydGlmaWNhdGUgaXMgc29sZWx5IGZvciB1c2Ugd2l0 aCBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWQgYW5kIG90aGVyIHBhcnRpY2lwYXRp bmcgb3JnYW5pc2F0aW9ucyB1c2luZyBSYWlkaWFtIFNlcnZpY2VzIExpbWl0ZWRz IFRydXN0IEZyYW1ld29yayBTZXJ2aWNlcy4gSXRzIHJlY2VpcHQsIHBvc3Nlc3Np b24gb3IgdXNlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFJhaWRpYW0g U2VydmljZXMgTHRkIENlcnRpY2ljYXRlIFBvbGljeSBhbmQgcmVsYXRlZCBkb2N1 bWVudHMgdGhlcmVpbi4wRAYIKwYBBQUHAgEWOGh0dHA6Ly9jcHMuc2FuZGJveC5w a2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL3BvbGljaWVzMA0GCSqGSIb3DQEB CwUAA4IBAQA73+0sU8m1m/6c8+pWpEK8HoEgKNO/HiVJTnqQnWVnS+qTPeUCpFDK D+ye8H4d/Ut9hwgeQ6hX2GcRQYSowpRi9HFVUPxflSHOZxwXSPujNFXGQidPt9Tn PIG2MoCxFaeXCvjNGJqTjgH480EMu8+BSV1Eu1iJYqwC0YKGNoNnfijyq9rntV+u QDWM6IKTLQsXcs+OIt2oyR/sLxNKMXkQ7We/1QIIqRm8hsbaX9enHj/4W8k1Rdon nljD3qaWJztVk+wiX0FaMDwXcCRtBNsgK/J/UUyeUMiOrZCZYfE72BnDZ7h+hpQr QTIADZN74LoDBRSzHg+GKkJ/k34UTkUL -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nQTIADZN74LoDBRSzHg+GKkJ/k34UTkUL\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d5978bc2f-34aa-45ac-a879-12a86aac61c1,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3034383931383530303030313838,CN\u003dopenfinance-homol.sicoob.com.br,OU\u003d777b3ece-75ea-5fa7-a464-dd29b141e99e,O\u003dConfederacao Nacional das Cooperativas do Sicoob,L\u003dBrasilia,ST\u003dDF,C\u003dBR"
  },
  "sanDnsNames": [
    "openfinance-homol.sicoob.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-10 14:46:19 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-10 14:46:19 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-10 14:46:19 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-10 14:46:19 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3
2021-12-10 14:46:19 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
LYBVV03VlIaAkql3PlqfXpAUN1NHjeFkDv3LVohmGKVvaFPnE3
2021-12-10 14:46:19 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-10 14:46:19 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-10 14:46:19 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2021-12-10 14:46:19 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid consent:urn:conformance.oidf:5VWQSnvx5G accounts resources
expected
accounts
2021-12-10 14:46:19 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
30a91013-5e85-4b32-88de-73cfd1da8d6a
2021-12-10 14:46:19 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "30a91013-5e85-4b32-88de-73cfd1da8d6a",
  "content-type": "application/json; charset\u003dUTF-8"
}
2021-12-10 14:46:19 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T14:46:19Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "30a91013-5e85-4b32-88de-73cfd1da8d6a",
  "content-type": "application/json"
}
2021-12-10 14:46:19
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-10 14:46:19 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance gv1hEMXBXsU0Dtc
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "30a91013-5e85-4b32-88de-73cfd1da8d6a"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-10T14:46:19Z"
  }
}
outgoing_path
accounts/v1/accounts
2021-12-10 14:46:19 FINISHED
fapi1-advanced-final-client-refresh-token-test
Test has run to completion
testmodule_result
PASSED
2021-12-10 14:46:22
TEST-RUNNER
Alias has now been claimed by another test
alias
sicoob
new_test_id
hzxxr81Tc5vLRD6
Test Results