Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-01-05 18:39:27 INFO
TEST-RUNNER
Test instance hWykul4vKSSXvbw created
baseUrl
https://www.certification.openid.net/test/a/bancointer
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
bancointer
description
RP certification MTLS - accounts
planId
VhPVRBuRbHxjc
config
{
  "alias": "bancointer",
  "description": "RP certification MTLS - accounts",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "static_client_1",
    "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
          "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
          "alg": "RSA-OAEP",
          "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\n9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "static_client_2",
    "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "sig",
          "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
          "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
          "alg": "RSA-OAEP",
          "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\n9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d\n-----END CERTIFICATE-----",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-invalid-secondary-aud
2022-01-05 18:39:27 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/bancointer/
discoveryUrl
https://www.certification.openid.net/test/a/bancointer/.well-known/openid-configuration
2022-01-05 18:39:27 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-01-05 18:39:27 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-05 18:39:27
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-01-05 18:39:27
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-01-05 18:39:27
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-01-05 18:39:27
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-01-05 18:39:27 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2022-01-05 18:39:27
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/bancointer/par
2022-01-05 18:39:27
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-01-05 18:39:27 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-01-05 18:39:27 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-01-05 18:39:27 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-01-05 18:39:27 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-01-05 18:39:27 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-01-05 18:39:27 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
static_client_1
redirect_uri
https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-05 18:39:27 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-05 18:39:27 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
2022-01-05 18:39:27 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-01-05 18:39:27 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-01-05 18:39:27 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
Verify configuration of second client
2022-01-05 18:39:27 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
static_client_2
redirect_uri
https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
2022-01-05 18:39:27 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-05 18:39:27 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
2022-01-05 18:39:27 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-01-05 18:39:27 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-01-05 18:39:27 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
      "n": "ziS_OV277dF2hI3oFJSTcJN-owi13GlkhrIO92F2Dxw2vULxIOVatXgfM_664AigcQqMcFUFxy14AL5S4dUCNXowm1dZ1huNdFdIQBSnPxWhKI4Blj6AnyKDiU_xGhvZN5ilmbXwRAe75C0FDE4OVPGywHU0kUTexhs_tqHTvNlKW4MoEsdiZX0J_9wIXLxyVuxn69y0AAv4_oxC_KYQHrA1UdLLeqLsWK-6H-vEKtc-iYQ_7CFb0cK3yqXEcVMGq2CSSkxy2PIySGTGSTgGSdkG7OAYglLxWY41m8TIjapWprx3gxxvjEXrYEO7GFlvH3mkjp9J71guRmtxp_qyaw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "2e1c457d-794e-48d2-a683-2708cdf3f16b",
      "alg": "RSA-OAEP",
      "n": "oLQuwMFW3aMpaXCATKI0G0wBqYE8zGTmVAv8zDOy6zQ3Avaz8fVHUt9rOHoCHrW0l1cKVkhnKPrfXta-7TCqW4Sw_O8ffZGVal78_MbviTod1sTj4pF0qf_VjmZF-92Hzu_KYu99AkwVZFFIInLWgw_klo0ORZY5uVOw2onZBSr6rWAvruA5QWYVYrXp1ruhnIv8l412ln6Rg3RGAqg5RPzZ0HCV4pGFpa5Rafvi02VUxfdfKW7E0AKjjn8-PPwGgqjyNLZW94ik_x2rJVilOoEm5WcftBKHwNWm7004pl2YrJ0qZ4JhDmfx9DgoOep2lzkvMmADm9dYg1Q1FXctZw"
    }
  ]
}
2022-01-05 18:39:27
fapi1-advanced-final-client-test-invalid-secondary-aud
Setup Done
2022-01-05 18:39:45 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Java-http-client/11.0.7",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test/a/bancointer/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-05 18:39:45 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-05 18:39:45 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bancointer/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-05 18:39:46 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded; charset\u003dUTF-8",
  "user-agent": "Java/11.0.7",
  "accept": "text/html, image/gif, image/jpeg, *; q\u003d.2, */*; q\u003d.2",
  "content-length": "70",
  "connection": "close"
}
incoming_path
/test-mtls/a/bancointer/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "consents",
  "client_id": "static_client_1"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=consents&client_id=static_client_1
2022-01-05 18:39:46 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-01-05 18:39:46 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da78c17ca-15ad-45ee-a573-6acca9955b44,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030343136393638303030313031,CN\u003dwww.certification.openid.net,OU\u003d31ee4f72-8769-5136-83e4-03f2dd4c935e,O\u003dBANCO INTER,L\u003dBelo Horizonte,ST\u003dMG,C\u003dBR"
  },
  "sanDnsNames": [
    "www.certification.openid.net"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-05 18:39:46 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-05 18:39:46 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-05 18:39:46 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2022-01-05 18:39:46 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2022-01-05 18:39:46 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X
2022-01-05 18:39:46 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X
token_type
Bearer
2022-01-05 18:39:46
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-01-05 18:39:46 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X",
  "token_type": "Bearer"
}
outgoing_path
token
2022-01-05 18:39:46 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Java-http-client/11.0.7",
  "authorization": "Bearer Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X",
  "content-type": "application/json",
  "x-fapi-auth-date": "Wed, 5 Jan 2022 15:39:46 -0300",
  "x-fapi-customer-ip-address": "127.0.0.1",
  "x-fapi-interaction-id": "58b526d3-4e36-493f-bd1e-24b1ba0eeb13",
  "x-idempotency-key": "5c63180a-3eda-43ed-81a1-fbe697992d70",
  "content-length": "270",
  "connection": "close"
}
incoming_path
/test-mtls/a/bancointer/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA== -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "13714168850",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-06-01T23:59:59Z",
    "transactionFromDateTime": "2022-01-01T00:00:00Z",
    "transactionToDateTime": "2021-06-01T23:59:59Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"13714168850","rel":"CPF"}},"permissions":["ACCOUNTS_READ","RESOURCES_READ"],"expirationDateTime":"2022-06-01T23:59:59Z","transactionFromDateTime":"2022-01-01T00:00:00Z","transactionToDateTime":"2021-06-01T23:59:59Z"}}
2022-01-05 18:39:46 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-01-05 18:39:46 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da78c17ca-15ad-45ee-a573-6acca9955b44,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030343136393638303030313031,CN\u003dwww.certification.openid.net,OU\u003d31ee4f72-8769-5136-83e4-03f2dd4c935e,O\u003dBANCO INTER,L\u003dBelo Horizonte,ST\u003dMG,C\u003dBR"
  },
  "sanDnsNames": [
    "www.certification.openid.net"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-05 18:39:46 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-05 18:39:46 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-05 18:39:46 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-01-05 18:39:46 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-01-05 18:39:46 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X
2022-01-05 18:39:46 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
Cqdi7KRdEb2uZoUsf2ez24QOSG3FTZq4PkRdOQPTsWz3Zmkx7X
2022-01-05 18:39:46 SUCCESS
ExtractFapiDateHeader
Found a FAPI auth date header
fapi_auth_date
Wed, 5 Jan 2022 15:39:46 -0300
2022-01-05 18:39:46 SUCCESS
ExtractFapiIpAddressHeader
Found a FAPI ip address header
fapi_customer_ip_address
127.0.0.1
addr
127.0.0.1
2022-01-05 18:39:46 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
58b526d3-4e36-493f-bd1e-24b1ba0eeb13
2022-01-05 18:39:46 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2022-01-05 18:39:46
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2022-01-05 18:39:46 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
58b526d3-4e36-493f-bd1e-24b1ba0eeb13
2022-01-05 18:39:46 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "58b526d3-4e36-493f-bd1e-24b1ba0eeb13"
}
consentId
urn:conformance.oidf:VxGgFah9K1
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:VxGgFah9K1",
    "creationDateTime": "2022-01-05T18:39:46Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-01-05T18:39:46Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-05T20:39:46Z",
    "transactionFromDateTime": "2022-01-05T18:34:46Z",
    "transactionToDateTime": "2022-01-05T20:39:46Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bancointerconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-05T18:39:46Z"
  }
}
2022-01-05 18:39:46
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-01-05 18:39:46 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "58b526d3-4e36-493f-bd1e-24b1ba0eeb13"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:VxGgFah9K1",
    "creationDateTime": "2022-01-05T18:39:46Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-01-05T18:39:46Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-05T20:39:46Z",
    "transactionFromDateTime": "2022-01-05T18:34:46Z",
    "transactionToDateTime": "2022-01-05T20:39:46Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bancointerconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-05T18:39:46Z"
  }
}
outgoing_path
consents/v1/consents
2022-01-05 18:39:46 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Java-http-client/11.0.7",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test/a/bancointer/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-05 18:39:46 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-05 18:39:46 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-01-05 18:39:48 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/x-www-form-urlencoded; charset\u003dUTF-8",
  "user-agent": "Java/11.0.7",
  "accept": "text/html, image/gif, image/jpeg, *; q\u003d.2, */*; q\u003d.2",
  "content-length": "2264",
  "connection": "close"
}
incoming_path
/test-mtls/a/bancointer/par
incoming_body_form_params
{
  "response_type": "code id_token",
  "request": "eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.jySR5fQx3A0hjxL2JBe1wh1jTAEuxkf-QcwBHKkSC9p1rukSXbGDX3IGJpzHr46Uvo812WzKyWjmIDZQGuR1kgDQG-mhbLfgmnLnlfUXSAQZpsV_FA99wgkBuTmRyX_DWFD6knlz3BU6-vuALgeTuuqKyA4yyRZL10yBbCMQcyQZm4GlFYZ76udeskMXGfisB1F639KSW5J8-9Hs5IyQwYseh6z8pCsMYL1FzfmpWvZ7LXpw1i0Atxk8C-WJU6yXziqPy27_Lw8Gpp-ZTJW-4BZAR-odDWO68LGUPVENszoI2YlovioTQFor4b_w6MIsLUFQFqibY_Y5dJhmp6WDew.QY7dyJ-RjSYqJCl8.ILLAPMhqGH-hmWcn1uIXOaDtXgvdpz4AGZxbL6Irj94Hk9aKlFzTZj9RPZapi6oV_WTv3UUH81Eo7kctHeat1SBcXyGetgRo-q5A4ExjXsCrTQGUQfJHhJK4CtcocUy5LQv0ixMNf7itWC96xBCB2KcuhB2EAXXmP9Uzjar0z8R-OZRW_lYYG7r5NcrPjdjRmdQ5F-WNgNg6PSNtscDx9YmK4CKLoa1YQBbtc2ZSI-fsFHC07DuO7O7ZlPUImANLYUm4HS29KATWYTotDFNPRlhAn9m5ON4LOnlFyafzYWHxHidbYV0O6T_5DBo056UVJvCvi4GIo_ccymDOTNWIaGQpKrN0lfimni3e1WvaOjD8wqvCQYpoe0goKm7rKosiIQkmoSqBpCq-H2HTCQYEOToIYW-XOkTKyTyf_A4MKd4x7Q45DL27qH4zYhFdZKxvmQlyGxkkuxjclmnRhddJJM789nLRzdD_TXccCgEPlYj5qw3TQwcWBHPMeGqyCKiqOSEkhKCOzHBbCbYDHi1qg0Po86uhr_lvqC_NyttCDhp95k_HdcowJ0BbkUXjuiIv06PZ-OVK_9MSVgonGYvU3y-QjcUSxbi4D8OAjgp6ZVgVPywtcZ6sNtnQH2IaUvlNgCXrzI4yoquz46GddH39ufTdz2s-vviOCQnRxDWAqEpf4pJ3pALCBuaylPFfLh5m4MeD5PHduU28h9Qnhb8B8KDSiNsXoD2ZRvKA07Z1Bsf7Ra6MDk5Vgs-8iaDZ4X8roUHS1_pehH8IovhEjRGCbqdxRXukXeacXT7tarSCuFLKOfQR4tVgV4UaDyfnrm2L2-l2DeI0jsUXcMlIW3sPNNEcPlCN4HEPIXY44hg0TBlu2oNpoe1SK1v964yRJrkLOQjwctEe1EBTpn0e0Ip2Q5efbix80lkQtOmrRaViUE7wpSuflkD-utMVS4Egf0xJRVJ4zQNu_007ppy1hE7K7g_34kke9h-ASfM4TzQ_czYoxFBjnDRC3J7bOH8NpZQlrrUjWZQjQ8L4bp3qzM_6mGHq0egrKsHhXDRlc2n-M4lbSGsZ9gXNHcz7lYQM5jjfRqRnePiwn6erXrbnVS2CpLRs1EJbluIzcPu8XxFfuK-WBP9qrKMbJk1SXlLQlZEVYlqhS2JkoeHU0z64gV6IRRqgACLtySWayMyLsSApJ6Y2X3Jf1xpxAasR6LcLlua943fBpUC8UCGeponRxhZBEO04p_vqtCE89AmxFToEo3n4R-IZ_v4zbet7Gl39m5CWzFmeVJX7OR0FqRWu_hBGwR9Wdkxir0mpq66xpJ7WCEkoeu3glqnb4q2lQRCKc1Eyvqa0nY395FP0LAQ5SoTjH-upIWcEgz278JgL84FRQ4_4ebIJ7GWJ1owf_4qJ-Kc_ovNS7ki67XnOagbVPQJAkFaTSIejm9RWgOWbNtsOZ9E5f4d79JR8hZ8EevxQXFcpseMwp1kCtLimZswTfG23jRxbL8Q6Mln-VPFuHRmgK4LzTTL29GZwHMI0UYcGR6nwzy8u6QlVL4kYu2ceB9wWYRb19HWJRCacW6SzJzL4Z6pgC4FGj_33KYZZkUuey6s4Z2xeJiHYVmWBRd_KYIWR8FXDIiljIvX7xo0o5DylVh4l8g8e_GjSRJimKlohsaU-bRzp61-5MmwRR_MBQz5m_lS0P0IVsrLH._F-y8CoUL_Msou8Byh9Nbw",
  "client_id": "static_client_1"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
response_type=code+id_token&request=eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.jySR5fQx3A0hjxL2JBe1wh1jTAEuxkf-QcwBHKkSC9p1rukSXbGDX3IGJpzHr46Uvo812WzKyWjmIDZQGuR1kgDQG-mhbLfgmnLnlfUXSAQZpsV_FA99wgkBuTmRyX_DWFD6knlz3BU6-vuALgeTuuqKyA4yyRZL10yBbCMQcyQZm4GlFYZ76udeskMXGfisB1F639KSW5J8-9Hs5IyQwYseh6z8pCsMYL1FzfmpWvZ7LXpw1i0Atxk8C-WJU6yXziqPy27_Lw8Gpp-ZTJW-4BZAR-odDWO68LGUPVENszoI2YlovioTQFor4b_w6MIsLUFQFqibY_Y5dJhmp6WDew.QY7dyJ-RjSYqJCl8.ILLAPMhqGH-hmWcn1uIXOaDtXgvdpz4AGZxbL6Irj94Hk9aKlFzTZj9RPZapi6oV_WTv3UUH81Eo7kctHeat1SBcXyGetgRo-q5A4ExjXsCrTQGUQfJHhJK4CtcocUy5LQv0ixMNf7itWC96xBCB2KcuhB2EAXXmP9Uzjar0z8R-OZRW_lYYG7r5NcrPjdjRmdQ5F-WNgNg6PSNtscDx9YmK4CKLoa1YQBbtc2ZSI-fsFHC07DuO7O7ZlPUImANLYUm4HS29KATWYTotDFNPRlhAn9m5ON4LOnlFyafzYWHxHidbYV0O6T_5DBo056UVJvCvi4GIo_ccymDOTNWIaGQpKrN0lfimni3e1WvaOjD8wqvCQYpoe0goKm7rKosiIQkmoSqBpCq-H2HTCQYEOToIYW-XOkTKyTyf_A4MKd4x7Q45DL27qH4zYhFdZKxvmQlyGxkkuxjclmnRhddJJM789nLRzdD_TXccCgEPlYj5qw3TQwcWBHPMeGqyCKiqOSEkhKCOzHBbCbYDHi1qg0Po86uhr_lvqC_NyttCDhp95k_HdcowJ0BbkUXjuiIv06PZ-OVK_9MSVgonGYvU3y-QjcUSxbi4D8OAjgp6ZVgVPywtcZ6sNtnQH2IaUvlNgCXrzI4yoquz46GddH39ufTdz2s-vviOCQnRxDWAqEpf4pJ3pALCBuaylPFfLh5m4MeD5PHduU28h9Qnhb8B8KDSiNsXoD2ZRvKA07Z1Bsf7Ra6MDk5Vgs-8iaDZ4X8roUHS1_pehH8IovhEjRGCbqdxRXukXeacXT7tarSCuFLKOfQR4tVgV4UaDyfnrm2L2-l2DeI0jsUXcMlIW3sPNNEcPlCN4HEPIXY44hg0TBlu2oNpoe1SK1v964yRJrkLOQjwctEe1EBTpn0e0Ip2Q5efbix80lkQtOmrRaViUE7wpSuflkD-utMVS4Egf0xJRVJ4zQNu_007ppy1hE7K7g_34kke9h-ASfM4TzQ_czYoxFBjnDRC3J7bOH8NpZQlrrUjWZQjQ8L4bp3qzM_6mGHq0egrKsHhXDRlc2n-M4lbSGsZ9gXNHcz7lYQM5jjfRqRnePiwn6erXrbnVS2CpLRs1EJbluIzcPu8XxFfuK-WBP9qrKMbJk1SXlLQlZEVYlqhS2JkoeHU0z64gV6IRRqgACLtySWayMyLsSApJ6Y2X3Jf1xpxAasR6LcLlua943fBpUC8UCGeponRxhZBEO04p_vqtCE89AmxFToEo3n4R-IZ_v4zbet7Gl39m5CWzFmeVJX7OR0FqRWu_hBGwR9Wdkxir0mpq66xpJ7WCEkoeu3glqnb4q2lQRCKc1Eyvqa0nY395FP0LAQ5SoTjH-upIWcEgz278JgL84FRQ4_4ebIJ7GWJ1owf_4qJ-Kc_ovNS7ki67XnOagbVPQJAkFaTSIejm9RWgOWbNtsOZ9E5f4d79JR8hZ8EevxQXFcpseMwp1kCtLimZswTfG23jRxbL8Q6Mln-VPFuHRmgK4LzTTL29GZwHMI0UYcGR6nwzy8u6QlVL4kYu2ceB9wWYRb19HWJRCacW6SzJzL4Z6pgC4FGj_33KYZZkUuey6s4Z2xeJiHYVmWBRd_KYIWR8FXDIiljIvX7xo0o5DylVh4l8g8e_GjSRJimKlohsaU-bRzp61-5MmwRR_MBQz5m_lS0P0IVsrLH._F-y8CoUL_Msou8Byh9Nbw&client_id=static_client_1
2022-01-05 18:39:48 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-01-05 18:39:48 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHBTCCBe2gAwIBAgIUZuTmelLx6AjQfDY/lTGBCJUyIHAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTEyMjE0MzEwMFoXDTIyMTIyMjE0 MzEwMFowggEiMQswCQYDVQQGEwJCUjELMAkGA1UECBMCTUcxFzAVBgNVBAcTDkJl bG8gSG9yaXpvbnRlMRQwEgYDVQQKEwtCQU5DTyBJTlRFUjEtMCsGA1UECxMkMzFl ZTRmNzItODc2OS01MTM2LTgzZTQtMDNmMmRkNGM5MzVlMSUwIwYDVQQDExx3d3cu Y2VydGlmaWNhdGlvbi5vcGVuaWQubmV0MRcwFQYDVQQFEw4wMDQxNjk2ODAwMDEw MTEdMBsGA1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIB AxMCQlIxNDAyBgoJkiaJk/IsZAEBEyRhNzhjMTdjYS0xNWFkLTQ1ZWUtYTU3My02 YWNjYTk5NTViNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8oRw tPTYnWInM12fJUj5MetkthBqUeUj5mHvvMfBmyzQgEnCuklUke87Hp/jBAPQ8unZ 4wWTOyg6SXmf7xxo6cG6EaHsW62mLs3TgH0xxWq/jnFoduUc+e2xMztnDXjL5UqZ 6JRmYRCdJeoqUrWyD4eemVqfaO39iPjHwDXG7sJ2fsS836qhTLulXR4zzAKQC6uU gEOI6FQ+/YpakeibvwRIre9+LyDpALyAVFSTJF1hyN13ksOTb/fjo0hKT9Xj+r28 a1kc7uVuOwGKeAUrrG1XplJ4FdR5IO4PzaCduECbrg3cfJP9BJGenE9Rme3LnFy2 TD2goxQ/VNuPvYDtAgMBAAGjggLgMIIC3DAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBRLeJXkBTtpI6+mJ93abAVuEnxgWjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7 sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3Nw LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBC MECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2ls Lm9yZy5ici9pc3N1ZXIuY3JsMCcGA1UdEQQgMB6CHHd3dy5jZXJ0aWZpY2F0aW9u Lm9wZW5pZC5uZXQwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMC MIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUF BwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdp dGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0 aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVk cyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNz aW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFt IFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9j dW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gu cGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0B AQsFAAOCAQEAjHrJfvOKfioSpwea71zcROcnB6wGMVRxBA/xDZtH5vmO0UCNOvYX EUkdedn95Ak1Dc3iPbzPqMSYTHa+A1szLkrIgAyBpz4sRNV/XU0YJ/XjXB6aDQSE lrn8yF5COyd0fjRJ+rONqQCCeiL0qnba+3N9iIrPm9vFktbyE4ABcn/C+aw/ZZ41 joiPWPZCTtMcaVQ21e+k+rH2Ce+Lb5M3ZFJAo3Q6FuCdSKoi4Y2ijTb/IWj/JLP3 VAjNl+Jv+TcE/tC352RjvgJtittH6hn/iSKkw4TRFPW3gzVI0TZmZjWap5ueoewn 9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\n9jO8HSZn9JcT2Pnq6YrRGCtYxipsGODYWA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da78c17ca-15ad-45ee-a573-6acca9955b44,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3030343136393638303030313031,CN\u003dwww.certification.openid.net,OU\u003d31ee4f72-8769-5136-83e4-03f2dd4c935e,O\u003dBANCO INTER,L\u003dBelo Horizonte,ST\u003dMG,C\u003dBR"
  },
  "sanDnsNames": [
    "www.certification.openid.net"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-05 18:39:48 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-05 18:39:48 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-05 18:39:48 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2022-01-05 18:39:48 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJraWQiOiJueWwwU1ZBbEFrNFNTdEg5MlZMVGFzREhXcDVOM1VJeDc1M2hqRy1hVFhjIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.sqtThOvR2IYj9F4fJTBpI3B3OEB04LrcdBRttoOr-JVqkvN9E1Bl_qMyZ1GgqFVNcyl_fdcyBezalZfW1DLFP_yYB1Yz5ncnwdAv2dKnXo7wQDvB_BI6xAzKgwYYlFUtY1XNrQiGM1LDez2ukLxTsIou0XnIWeaMLttA1w_7E4g2qO18WSiHLl1Zr26YhW2NhvUHfPcap21K1i6mbfadTxHz_jr0HN1jRqQwdzau8g1DS_qfL8N1VzzFkNuWqfy0ArehjqqxBRmLNcuoIPYviJsYaiWyS2udyGxafX9uPzHwOUJAfJPKi3EPjCgppltyyadkIRDPVz8oSD1SOGOaHA",
  "header": {
    "kid": "nyl0SVAlAk4SStH92VLTasDHWp5N3UIx753hjG-aTXc",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "iss": "static_client_1",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg",
    "client_id": "static_client_1",
    "response_mode": "query.jwt",
    "aud": "https://www.certification.openid.net/test/a/bancointer/",
    "nbf": 1641407986,
    "scope": "openid accounts consent:urn:conformance.oidf:VxGgFah9K1",
    "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
    "state": "ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw",
    "exp": 1641408286,
    "code_challenge": "PsPNpYr1EPIPHCXSKRYpbZ8zW3J8HG-YmsfOu6O-Qlw"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "JWT",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2022-01-05 18:39:48 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-01-05 18:39:48 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2022-01-05 18:39:48 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-01-05 18:39:48
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2022-01-05 18:39:48 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Jan 5, 2022, 6:44:46 PM"
2022-01-05 18:39:48 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Jan 5, 2022, 6:39:46 PM"
now
"Jan 5, 2022, 6:39:48 PM"
2022-01-05 18:39:48 INFO
ValidateRequestObjectClaims
Missing issuance time
2022-01-05 18:39:48
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-01-05 18:39:48 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-01-05 18:39:48 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-01-05 18:39:48 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-01-05 18:39:48 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-01-05 18:39:48 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiJueWwwU1ZBbEFrNFNTdEg5MlZMVGFzREhXcDVOM1VJeDc1M2hqRy1hVFhjIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.sqtThOvR2IYj9F4fJTBpI3B3OEB04LrcdBRttoOr-JVqkvN9E1Bl_qMyZ1GgqFVNcyl_fdcyBezalZfW1DLFP_yYB1Yz5ncnwdAv2dKnXo7wQDvB_BI6xAzKgwYYlFUtY1XNrQiGM1LDez2ukLxTsIou0XnIWeaMLttA1w_7E4g2qO18WSiHLl1Zr26YhW2NhvUHfPcap21K1i6mbfadTxHz_jr0HN1jRqQwdzau8g1DS_qfL8N1VzzFkNuWqfy0ArehjqqxBRmLNcuoIPYviJsYaiWyS2udyGxafX9uPzHwOUJAfJPKi3EPjCgppltyyadkIRDPVz8oSD1SOGOaHA
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 26023211428829579107656408482231121357418181734716207178197125326019699022635406654432066197373078641695676997763573510611284313557480959420441349740989420096831075914620574825267452462480183251740028192782180856100604215986270025918775812841172173663367153130963561178323477898260335689253468542234561623166869024764130024597374657134175434171656574226621752411633106913883750929402560991540364804669312418635013942248990322195205330372789301534935863828832479879477233848217589923267612495205855083121442067538294200313616172073370389910981134572847322290402906312141380706967133135886895013409769902734056326083179
  public exponent: 65537
2022-01-05 18:39:48 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback
2022-01-05 18:39:48 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
PsPNpYr1EPIPHCXSKRYpbZ8zW3J8HG-YmsfOu6O-Qlw
2022-01-05 18:39:48 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:e4366121-43cf-48c9-a8a3-d93d95caaff3
expires_in
600
2022-01-05 18:39:48 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:e4366121-43cf-48c9-a8a3-d93d95caaff3",
  "expires_in": 600
}
outgoing_path
par
2022-01-05 18:39:49 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Apache-HttpClient/4.5.1 (Java/1.8.0_275)",
  "accept-encoding": "gzip,deflate",
  "connection": "close"
}
incoming_path
/test/a/bancointer/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "response_type": "code id_token",
  "client_id": "static_client_1",
  "request_uri": "urn:ietf:params:oauth:request_uri:e4366121-43cf-48c9-a8a3-d93d95caaff3"
}
incoming_body
2022-01-05 18:39:49 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-01-05 18:39:49 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-01-05 18:39:49 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2022-01-05 18:39:49 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "response_type": "code id_token",
  "client_id": "static_client_1",
  "iss": "static_client_1",
  "code_challenge_method": "S256",
  "nonce": "okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg",
  "response_mode": "query.jwt",
  "aud": "https://www.certification.openid.net/test/a/bancointer/",
  "nbf": 1641407986,
  "scope": "openid accounts consent:urn:conformance.oidf:VxGgFah9K1",
  "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
  "state": "ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw",
  "exp": 1641408286,
  "code_challenge": "PsPNpYr1EPIPHCXSKRYpbZ8zW3J8HG-YmsfOu6O-Qlw"
}
2022-01-05 18:39:49 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-01-05 18:39:49 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid accounts consent:urn:conformance.oidf:VxGgFah9K1
2022-01-05 18:39:49 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "accounts",
  "consent:urn:conformance.oidf:VxGgFah9K1"
]
expected
consent:urn:conformance.oidf:VxGgFah9K1
2022-01-05 18:39:49 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "accounts",
  "consent:urn:conformance.oidf:VxGgFah9K1"
]
2022-01-05 18:39:49 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-01-05 18:39:49 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "accounts",
  "consent:urn:conformance.oidf:VxGgFah9K1"
]
expected
openid
2022-01-05 18:39:49 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
static_client_1
2022-01-05 18:39:49 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
NmOo297tYU4L3J1NkS25ZbVVtx74g1Mk
2022-01-05 18:39:49 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg
2022-01-05 18:39:49 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
ivQSZRGCxhThdukUrdjUKg
2022-01-05 18:39:49 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
M1OW03yUU4O4XcZuMsMrIQ
2022-01-05 18:39:49 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/bancointer/
sub
user-subject-1234531
aud
static_client_1
nonce
okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg
iat
1641407989
exp
1641408289
2022-01-05 18:39:49
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2022-01-05 18:39:49 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
ivQSZRGCxhThdukUrdjUKg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bancointer/",
  "sub": "user-subject-1234531",
  "aud": "static_client_1",
  "nonce": "okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg",
  "iat": 1641407989,
  "exp": 1641408289,
  "c_hash": "ivQSZRGCxhThdukUrdjUKg"
}
2022-01-05 18:39:49 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
M1OW03yUU4O4XcZuMsMrIQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bancointer/",
  "sub": "user-subject-1234531",
  "aud": "static_client_1",
  "nonce": "okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg",
  "iat": 1641407989,
  "exp": 1641408289,
  "c_hash": "ivQSZRGCxhThdukUrdjUKg",
  "s_hash": "M1OW03yUU4O4XcZuMsMrIQ"
}
2022-01-05 18:39:49 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-01-05 18:39:49 SUCCESS
AddUntrustedSecondAudValueToIdToken
Added a second, invalid aud value in ID token claims
aud
[
  "static_client_1",
  "static_client_11"
]
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/bancointer/",
  "sub": "user-subject-1234531",
  "aud": [
    "static_client_1",
    "static_client_11"
  ],
  "nonce": "okMXuWGHwifYmCp6uSzhIMFQeYDN5WC8_HwbNM_63yg",
  "iat": 1641407989,
  "exp": 1641408289,
  "c_hash": "ivQSZRGCxhThdukUrdjUKg",
  "s_hash": "M1OW03yUU4O4XcZuMsMrIQ"
}
2022-01-05 18:39:49 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2022-01-05 18:39:49 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6WyJzdGF0aWNfY2xpZW50XzEiLCJzdGF0aWNfY2xpZW50XzExIl0sImNfaGFzaCI6Iml2UVNaUkdDeGhUaGR1a1VyZGpVS2ciLCJzX2hhc2giOiJNMU9XMDN5VVU0TzRYY1p1TXNNcklRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JhbmNvaW50ZXJcLyIsImV4cCI6MTY0MTQwODI4OSwibm9uY2UiOiJva01YdVdHSHdpZlltQ3A2dVN6aElNRlFlWURONVdDOF9Id2JOTV82M3lnIiwiaWF0IjoxNjQxNDA3OTg5fQ.UYrnlRq6Mv-mlbzZ8cS5lwtGO4xWB_iZmVG25B-dzCtSktCkQZn2aQTYPXomM-eQeY3fQ8eZhp9owwJUyxDpAJmgBcSGhY4V2HsC2B07L-2Loyd9tAOIrd5wM61vByZ-YZNHHdBkXE5jS8NqOPIOGd3Qg8nsPCd_y6LY7wxi38kN_EgFMloQV69eRngBHF1xeRPzAKx9QnrpcrhcAxrm-8UgRQLnjW5U8YFxw3x2JX7aRZuz6Bl8ZWKM8uzivwJkmd-PkKlOyBcAi_IXZMm14gdml5MlhRzNPee69XegUjfD4wkGXj4vw-3EjFqXnvskiJLlv3IHAxux8Pd88hbn8w
2022-01-05 18:39:49 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:VxGgFah9K1",
    "creationDateTime": "2022-01-05T18:39:46Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-01-05T18:39:49Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-05T20:39:46Z",
    "transactionFromDateTime": "2022-01-05T18:34:46Z",
    "transactionToDateTime": "2022-01-05T20:39:46Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/bancointerconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-05T18:39:46Z"
  }
}
2022-01-05 18:39:49 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
  "state": "ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw"
}
2022-01-05 18:39:49 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
  "state": "ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw",
  "code": "NmOo297tYU4L3J1NkS25ZbVVtx74g1Mk"
}
2022-01-05 18:39:49 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback",
  "state": "ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw",
  "code": "NmOo297tYU4L3J1NkS25ZbVVtx74g1Mk",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6WyJzdGF0aWNfY2xpZW50XzEiLCJzdGF0aWNfY2xpZW50XzExIl0sImNfaGFzaCI6Iml2UVNaUkdDeGhUaGR1a1VyZGpVS2ciLCJzX2hhc2giOiJNMU9XMDN5VVU0TzRYY1p1TXNNcklRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JhbmNvaW50ZXJcLyIsImV4cCI6MTY0MTQwODI4OSwibm9uY2UiOiJva01YdVdHSHdpZlltQ3A2dVN6aElNRlFlWURONVdDOF9Id2JOTV82M3lnIiwiaWF0IjoxNjQxNDA3OTg5fQ.UYrnlRq6Mv-mlbzZ8cS5lwtGO4xWB_iZmVG25B-dzCtSktCkQZn2aQTYPXomM-eQeY3fQ8eZhp9owwJUyxDpAJmgBcSGhY4V2HsC2B07L-2Loyd9tAOIrd5wM61vByZ-YZNHHdBkXE5jS8NqOPIOGd3Qg8nsPCd_y6LY7wxi38kN_EgFMloQV69eRngBHF1xeRPzAKx9QnrpcrhcAxrm-8UgRQLnjW5U8YFxw3x2JX7aRZuz6Bl8ZWKM8uzivwJkmd-PkKlOyBcAi_IXZMm14gdml5MlhRzNPee69XegUjfD4wkGXj4vw-3EjFqXnvskiJLlv3IHAxux8Pd88hbn8w"
}
2022-01-05 18:39:49
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback#state=ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw&code=NmOo297tYU4L3J1NkS25ZbVVtx74g1Mk&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6WyJzdGF0aWNfY2xpZW50XzEiLCJzdGF0aWNfY2xpZW50XzExIl0sImNfaGFzaCI6Iml2UVNaUkdDeGhUaGR1a1VyZGpVS2ciLCJzX2hhc2giOiJNMU9XMDN5VVU0TzRYY1p1TXNNcklRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JhbmNvaW50ZXJcLyIsImV4cCI6MTY0MTQwODI4OSwibm9uY2UiOiJva01YdVdHSHdpZlltQ3A2dVN6aElNRlFlWURONVdDOF9Id2JOTV82M3lnIiwiaWF0IjoxNjQxNDA3OTg5fQ.UYrnlRq6Mv-mlbzZ8cS5lwtGO4xWB_iZmVG25B-dzCtSktCkQZn2aQTYPXomM-eQeY3fQ8eZhp9owwJUyxDpAJmgBcSGhY4V2HsC2B07L-2Loyd9tAOIrd5wM61vByZ-YZNHHdBkXE5jS8NqOPIOGd3Qg8nsPCd_y6LY7wxi38kN_EgFMloQV69eRngBHF1xeRPzAKx9QnrpcrhcAxrm-8UgRQLnjW5U8YFxw3x2JX7aRZuz6Bl8ZWKM8uzivwJkmd-PkKlOyBcAi_IXZMm14gdml5MlhRzNPee69XegUjfD4wkGXj4vw-3EjFqXnvskiJLlv3IHAxux8Pd88hbn8w
2022-01-05 18:39:49 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://localhost.emobix.co.uk:443/api/openbanking-payment-initiation-provider/v1/payment-notify-callback#state=ziqHCiB8Dc-XDw9-piffZxVIYkCE1_NdpJaREXklhOw&code=NmOo297tYU4L3J1NkS25ZbVVtx74g1Mk&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6WyJzdGF0aWNfY2xpZW50XzEiLCJzdGF0aWNfY2xpZW50XzExIl0sImNfaGFzaCI6Iml2UVNaUkdDeGhUaGR1a1VyZGpVS2ciLCJzX2hhc2giOiJNMU9XMDN5VVU0TzRYY1p1TXNNcklRIiwiaXNzIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL2JhbmNvaW50ZXJcLyIsImV4cCI6MTY0MTQwODI4OSwibm9uY2UiOiJva01YdVdHSHdpZlltQ3A2dVN6aElNRlFlWURONVdDOF9Id2JOTV82M3lnIiwiaWF0IjoxNjQxNDA3OTg5fQ.UYrnlRq6Mv-mlbzZ8cS5lwtGO4xWB_iZmVG25B-dzCtSktCkQZn2aQTYPXomM-eQeY3fQ8eZhp9owwJUyxDpAJmgBcSGhY4V2HsC2B07L-2Loyd9tAOIrd5wM61vByZ-YZNHHdBkXE5jS8NqOPIOGd3Qg8nsPCd_y6LY7wxi38kN_EgFMloQV69eRngBHF1xeRPzAKx9QnrpcrhcAxrm-8UgRQLnjW5U8YFxw3x2JX7aRZuz6Bl8ZWKM8uzivwJkmd-PkKlOyBcAi_IXZMm14gdml5MlhRzNPee69XegUjfD4wkGXj4vw-3EjFqXnvskiJLlv3IHAxux8Pd88hbn8w]
outgoing_path
authorize
2022-01-05 18:39:49 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Java-http-client/11.0.7",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test/a/bancointer/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-05 18:39:49 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-05 18:39:49 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/bancointer/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/bancointer/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/bancointer/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/bancointer/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/bancointer/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/bancointer/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/bancointer/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/bancointer/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-05 18:39:50 INCOMING
fapi1-advanced-final-client-test-invalid-secondary-aud
Incoming HTTP request to test instance hWykul4vKSSXvbw
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "Java-http-client/11.0.7",
  "content-length": "0",
  "connection": "close"
}
incoming_path
/test/a/bancointer/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES256-GCM-SHA384
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-05 18:39:50 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES256-GCM-SHA384
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-05 18:39:50 OUTGOING
fapi1-advanced-final-client-test-invalid-secondary-aud
Response to HTTP request to test instance hWykul4vKSSXvbw
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-01-05 18:39:54 FINISHED
fapi1-advanced-final-client-test-invalid-secondary-aud
Test has run to completion
testmodule_result
PASSED
2022-01-05 18:40:10
TEST-RUNNER
Alias has now been claimed by another test
alias
bancointer
new_test_id
d22O80QvDNtD5Xs
Test Results