Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-12-03 15:30:39 INFO
TEST-RUNNER
Test instance yLJ1AScmSSEDGmg created
baseUrl
https://www.certification.openid.net/test/a/itau_fapi
variant
{
  "client_auth_type": "mtls",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
itau_fapi
description
OB Brazil client RP Itau Test 1.0 
planId
UeUZKHx15LcbY
config
{
  "alias": "itau_fapi",
  "description": "OB Brazil client RP Itau Test 1.0 ",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "alg": "PS256",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "alg": "RSA-OAEP",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "x5c": [
            "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\u003d\u003d"
          ],
          "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
          "e": "AQAB",
          "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
          "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
          "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "alg": "RSA-OAEP",
          "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
        }
      ]
    },
    "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf"
  },
  "client2": {
    "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
    "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "x5c": [
            "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\u003d\u003d"
          ],
          "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
          "e": "AQAB",
          "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
          "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
          "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
        },
        {
          "kty": "RSA",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "alg": "RSA-OAEP",
          "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
        }
      ]
    },
    "id_token_encrypted_response_enc": "A256GCM"
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-encrypted-idtoken
2021-12-03 15:30:39 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/itau_fapi/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/itau_fapi/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/itau_fapi/
discoveryUrl
https://www.certification.openid.net/test/a/itau_fapi/.well-known/openid-configuration
2021-12-03 15:30:39 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-03 15:30:39 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 15:30:39
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2021-12-03 15:30:39
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/itau_fapi/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/itau_fapi/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2021-12-03 15:30:39
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/itau_fapi/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/itau_fapi/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2021-12-03 15:30:39
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/itau_fapi/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/itau_fapi/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2021-12-03 15:30:39 SUCCESS
AddTLSClientAuthToServerConfiguration
Added tls_client_auth for token_endpoint_auth_methods_supported
2021-12-03 15:30:39
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/itau_fapi/par
2021-12-03 15:30:39
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2021-12-03 15:30:39 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2021-12-03 15:30:39 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2021-12-03 15:30:39 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2021-12-03 15:30:39 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2021-12-03 15:30:39 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2021-12-03 15:30:39 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
client_BVTbVaLUnshLlnUqZQPG18759
certificate
-----BEGIN CERTIFICATE-----
MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg==
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "MIIGxjCCBa6gAwIBAgIUVyZnCun/YKhqelAGSNLaqHEXW68wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgwMjE4NTIwMFoXDTIyMDkwMTE4NTIwMFowgbExCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMTowDQYDVQQLEwZSZW1vdG8wEgYDVQQLEwtPQkIgU2FuZEJveDAVBgNVBAsTDjYwNzAxMTkwMDAwMTA0MRswGQYDVQQDExJJVEFVIFVOSUJBTkNPIFMuQS4xNDAyBgoJkiaJk/IsZAEBEyQ5YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa29vl4Lx6aqF+7bJJGTxFCO55/WS4C6vlR6h7qj8hc118EZTq4MKlXMvjA9hjan53SMzt/oEIlWGOxCqFN8ycqQZkT9nlbeDBUN5AixG85yPiAsDQjm2j8y7UByY/nSPJq04J4BQrs2e7R2nPhXBEfubyve9XVb0RaQuwkd/n8VPCLQxDvB1OOStornSe2/3/bVyVCUAVynkcp9ymy+ghOu1dOXtxbozTpwWF6PmXn4eaZr+lLuD71n84NWqiHGCFu+x/x4CBD3g2/dXtbUP7qAQXZtmrj0K/4MEKxfEzf8VCv30NVgIX95bdrfuZLyt5xd6894dO7q+NhqtHLgohAgMBAAGjggMTMIIDDzAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQPUuWcRNQi+AEh2Yacb+f9fIztAzAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMG8GA1UdEQRoMGagHgYFYEwBAwKgFQwTRGFuaWxvIFNpbHZhIFNhc2FraaAZBgVgTAEDA6AQDA42MDcwMTE5MDAwMDEwNKAXBgVgTAEDBKAODAwxMjM0NTY3ODktMDCgEAYFYEwBAwegBwwFMTIzNDUwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAzh2gdRT4sCeb/+rVEgM1Kk/AERA5jq5fYeUXNu6CLCqSnclwhu4GAyjYqh4uGISe62jB2hxmzOTHgsrBeeJX3ZZM1kJmq64s+rpRVty+Mp+lYOgBOel8V35LvwpC40609KXhOzCe6Vd7uXGNQzMIbkLXyhBCN7a2bJY2VjvTObjyW3iTk7tBxySnny8ZMppAmf8nGL+V2ZdG7wKCuTaV5OdOJfq1qcxFxd1P3IeR/KBBh84flk4pyhGlXyKVxA07qS3Hf2pMCeNzoP0c2U6slKSzfKxMBGV+8dbMCbamHPPEE39JdKDqjTtavtbVcbCHWIXSKllDzKicHr228xsVEg\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
redirect_uri
https://www.itau.com.br/opbconsentimento/mobilepf
2021-12-03 15:30:39 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 15:30:39 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5c": [
        "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\u003d\u003d"
      ],
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
2021-12-03 15:30:39 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-03 15:30:39 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-03 15:30:39 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
Verify configuration of second client
2021-12-03 15:30:39 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
client_BVTbVaLUnshLlnUqZQPG18759
redirect_uri
https://www.itau.com.br/opbconsentimento/mobilepf
id_token_encrypted_response_alg
RSA-OAEP
certificate
-----BEGIN CERTIFICATE-----
MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg==
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
id_token_encrypted_response_enc
A256GCM
2021-12-03 15:30:39 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-12-03 15:30:39 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5c": [
        "MIIGxjCCBa6gAwIBAgIUVyZnCun/YKhqelAGSNLaqHEXW68wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgwMjE4NTIwMFoXDTIyMDkwMTE4NTIwMFowgbExCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMTowDQYDVQQLEwZSZW1vdG8wEgYDVQQLEwtPQkIgU2FuZEJveDAVBgNVBAsTDjYwNzAxMTkwMDAwMTA0MRswGQYDVQQDExJJVEFVIFVOSUJBTkNPIFMuQS4xNDAyBgoJkiaJk/IsZAEBEyQ5YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa29vl4Lx6aqF+7bJJGTxFCO55/WS4C6vlR6h7qj8hc118EZTq4MKlXMvjA9hjan53SMzt/oEIlWGOxCqFN8ycqQZkT9nlbeDBUN5AixG85yPiAsDQjm2j8y7UByY/nSPJq04J4BQrs2e7R2nPhXBEfubyve9XVb0RaQuwkd/n8VPCLQxDvB1OOStornSe2/3/bVyVCUAVynkcp9ymy+ghOu1dOXtxbozTpwWF6PmXn4eaZr+lLuD71n84NWqiHGCFu+x/x4CBD3g2/dXtbUP7qAQXZtmrj0K/4MEKxfEzf8VCv30NVgIX95bdrfuZLyt5xd6894dO7q+NhqtHLgohAgMBAAGjggMTMIIDDzAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQPUuWcRNQi+AEh2Yacb+f9fIztAzAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3JsMG8GA1UdEQRoMGagHgYFYEwBAwKgFQwTRGFuaWxvIFNpbHZhIFNhc2FraaAZBgVgTAEDA6AQDA42MDcwMTE5MDAwMDEwNKAXBgVgTAEDBKAODAwxMjM0NTY3ODktMDCgEAYFYEwBAwegBwwFMTIzNDUwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAzh2gdRT4sCeb/+rVEgM1Kk/AERA5jq5fYeUXNu6CLCqSnclwhu4GAyjYqh4uGISe62jB2hxmzOTHgsrBeeJX3ZZM1kJmq64s+rpRVty+Mp+lYOgBOel8V35LvwpC40609KXhOzCe6Vd7uXGNQzMIbkLXyhBCN7a2bJY2VjvTObjyW3iTk7tBxySnny8ZMppAmf8nGL+V2ZdG7wKCuTaV5OdOJfq1qcxFxd1P3IeR/KBBh84flk4pyhGlXyKVxA07qS3Hf2pMCeNzoP0c2U6slKSzfKxMBGV+8dbMCbamHPPEE39JdKDqjTtavtbVcbCHWIXSKllDzKicHr228xsVEg\u003d\u003d"
      ],
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
2021-12-03 15:30:39 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-12-03 15:30:39 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-12-03 15:30:39 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d\u003d"
      ],
      "n": "2tvb5eC8emqhfu2ySRk8RQjuef1kuAur5Ueoe6o_IXNdfBGU6uDCpVzL4wPYY2p-d0jM7f6BCJVhjsQqhTfMnKkGZE_Z5W3gwVDeQIsRvOcj4gLA0I5to_Mu1AcmP50jyatOCeAUK7Nnu0dpz4VwRH7m8r3vV1W9EWkLsJHf5_FTwi0MQ7wdTjkraK50ntv9_21clQlAFcp5HKfcpsvoITrtXTl7cW6M06cFhej5l5-Hmma_pS7g-9Z_ODVqohxghbvsf8eAgQ94Nv3V7W1D-6gEF2bZq49Cv-DBCsXxM3_FQr99DVYCF_eW3a37mS8recXevPeHTu6vjYarRy4KIQ",
      "e": "AQAB",
      "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/9c721898-9ce0-50f1-bf85-05075557850b/nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA.pem",
      "x5t#256": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "swxhpRjvaNko3Hq10TqG8K9ha1yz6kkWJF_bGLNTyGxL4dxsixRr4xVCk3cYCSnZGkc1JcgbZKhMR3yyJZzG4y6Kr97HvKHhAJhWS_Ust-pp141WCEffqTK1tRi_xx-EvK7BXyW3KzdSBpfEpNEsa_TzV_siue1MQRgoC5ggn_zsQKNKkx-ZdGgqzOdHGhz0w0CO1wEguzhhnjHaIEOi5vQ6d3hf2UDHuAt8G3-GtpZVywBjP4SJEl6YsR8sw0DsITmBAKGggAmdYCgaI0GMQqIK9EdeC3Hx-_e4iV67Nznp4H0yR6cHPHgoAKtniy-HGb8rhTBFcRZoAY0qgqnZzQ"
    }
  ]
}
2021-12-03 15:30:39 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsNotRSA1_5
Id token encryption algorithm is not RSA1_5
alg
RSA-OAEP
2021-12-03 15:30:39 SUCCESS
FAPIEnsureClientJwksContainsAnEncryptionKey
Found an encryption key in client jwks
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
algorithm
RSA-OAEP
2021-12-03 15:30:39 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_alg is set
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
2021-12-03 15:30:39
fapi1-advanced-final-client-test-encrypted-idtoken
Setup Done
2021-12-03 15:31:25 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "connection": "close",
  "backend": "www.certification.openid.net",
  "content-type": "application/json",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1"
}
incoming_path
/test/a/itau_fapi/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 15:31:25 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 15:31:25 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/itau_fapi/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/itau_fapi/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/itau_fapi/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "tls_client_auth"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/itau_fapi/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2021-12-03 15:31:26 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "connection": "close",
  "backend": "www.certification.openid.net",
  "content-type": "application/json",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1"
}
incoming_path
/test/a/itau_fapi/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 15:31:26 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2021-12-03 15:31:26 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2021-12-03 15:31:27 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-length": "87",
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58",
  "x-client": "63c61f41-bb75-59ec-b690-876172c5fbf0",
  "backend": "www.certification.openid.net",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1",
  "connection": "close"
}
incoming_path
/test-mtls/a/itau_fapi/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "consents",
  "client_id": "client_BVTbVaLUnshLlnUqZQPG18759"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=consents&client_id=client_BVTbVaLUnshLlnUqZQPG18759
2021-12-03 15:31:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-03 15:31:27 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nDdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d9d56d7e9-d2bf-4444-b16f-c59a629a784f,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3630373031313930303030313034,CN\u003d*.opf.api.itau,OU\u003d9c721898-9ce0-50f1-bf85-05075557850b,O\u003dITAU UNIBANCO S.A.,L\u003dSAO PAULO,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "des-secure.opf.api.itau",
    "hom-secure.opf.api.itau"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 15:31:27 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 15:31:27 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy
MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB
TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5
YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou
b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU
UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ
kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw
ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L
teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM
O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM
7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR
C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG
3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH
AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr
P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr
BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp
Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw
Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1
ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t
c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI
KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6
L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz
IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu
ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh
bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0
cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh
bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp
Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho
dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w
b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw
yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ
evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5
OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB
dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy
DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg==
-----END CERTIFICATE-----
2021-12-03 15:31:27 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-03 15:31:27 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2021-12-03 15:31:27 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh
2021-12-03 15:31:27 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh
token_type
Bearer
2021-12-03 15:31:27
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2021-12-03 15:31:27 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh",
  "token_type": "Bearer"
}
outgoing_path
token
2021-12-03 15:31:27 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-length": "303",
  "authorization": "Bearer c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh",
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58",
  "x-client": "63c61f41-bb75-59ec-b690-876172c5fbf0",
  "backend": "www.certification.openid.net",
  "accept": "application/json; charset\u003dutf-8",
  "accept-charset": "utf-8",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "content-type": "application/json; charset\u003dutf-8",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1",
  "connection": "close"
}
incoming_path
/test-mtls/a/itau_fapi/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg== -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "46716154876",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-02-03T15:31:24Z",
    "transactionFromDateTime": "2021-12-03T15:31:27Z",
    "transactionToDateTime": "2022-02-03T15:31:24Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"46716154876","rel":"CPF"}},"permissions":["ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_READ","RESOURCES_READ"],"expirationDateTime":"2022-02-03T15:31:24Z","transactionFromDateTime":"2021-12-03T15:31:27Z","transactionToDateTime":"2022-02-03T15:31:24Z"}}
2021-12-03 15:31:27 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2021-12-03 15:31:27 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy\nMDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB\nTyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5\nYzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou\nb3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU\nUHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ\nkiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw\nggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L\nteGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM\nO73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM\n7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR\nC6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG\n3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH\nAgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr\nP5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr\nBgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp\nLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw\nOi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1\nZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t\nc2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI\nKwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6\nL2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz\nIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu\nZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh\nbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0\ncyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh\nbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp\nY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho\ndHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w\nb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw\nyNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ\nevuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5\nOLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB\ndgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy\nDdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d9d56d7e9-d2bf-4444-b16f-c59a629a784f,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3630373031313930303030313034,CN\u003d*.opf.api.itau,OU\u003d9c721898-9ce0-50f1-bf85-05075557850b,O\u003dITAU UNIBANCO S.A.,L\u003dSAO PAULO,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "des-secure.opf.api.itau",
    "hom-secure.opf.api.itau"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 15:31:27 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 15:31:27 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 15:31:27 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2021-12-03 15:31:27 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-03 15:31:27 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh
2021-12-03 15:31:27 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
c2bLNxkYQ9i5upwsD85yLL12o7pDwWFbqi1GocQTv6ZtLaJdgh
2021-12-03 15:31:27 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-03 15:31:27 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-03 15:31:27 SUCCESS
ExtractFapiInteractionIdHeader
Found a FAPI interaction ID header
fapi_interaction_id
4af490bd-24b8-4ed4-9f99-bfad0501de58
2021-12-03 15:31:27 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2021-12-03 15:31:27
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2021-12-03 15:31:27 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
4af490bd-24b8-4ed4-9f99-bfad0501de58
2021-12-03 15:31:27 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58"
}
consentId
urn:conformance.oidf:AwSXbLBwDV
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:AwSXbLBwDV",
    "creationDateTime": "2021-12-03T15:31:27Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-03T15:31:27Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-03T17:31:27Z",
    "transactionFromDateTime": "2021-12-03T15:26:27Z",
    "transactionToDateTime": "2021-12-03T17:31:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/itau_fapiconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-03T15:31:27Z"
  }
}
2021-12-03 15:31:27
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-03 15:31:27 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "4af490bd-24b8-4ed4-9f99-bfad0501de58"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:AwSXbLBwDV",
    "creationDateTime": "2021-12-03T15:31:27Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2021-12-03T15:31:27Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-03T17:31:27Z",
    "transactionFromDateTime": "2021-12-03T15:26:27Z",
    "transactionToDateTime": "2021-12-03T17:31:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/itau_fapiconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-03T15:31:27Z"
  }
}
outgoing_path
consents/v1/consents
2021-12-03 15:31:28 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-length": "1227",
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58",
  "x-client": "63c61f41-bb75-59ec-b690-876172c5fbf0",
  "backend": "www.certification.openid.net",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1",
  "connection": "close"
}
incoming_path
/test-mtls/a/itau_fapi/par
incoming_body_form_params
{
  "request": "eyJraWQiOiJuUnk1bXFYdE14UDZEWS1LM1RZYl9WU18wUUVKV2ROalVQbWgwZDd3WUxBIiwiYWxnIjoiUFMyNTYifQ.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.UEZPaCxfX2UJp3h_NJbDXaSiak47qvh8GYGV9U05j3p3fc2FcpiW5vB0GUl7J28jSSdMUt_7WyALZzX3E2_Q0BwKof9W4mDuU5RvTR6hzlTl14sshjEOkoUQlH3rPon9fLCMqEruMDsPeyBRDs19nE4NbqNQSbR-5C6XfgXvOxx4TM-SUj46jmxCkd6CixPaFaeGnzgpjbErwJMDcpVGOCPvL_HzUTEwlvAMAlMjs1-W6SkIahb2HsApxGzGgQnPrR3oiaPjrqrCT_vvG57cINOFB5YQKSiLX-zsQfjgNl-QWR7v58MzOE66D-pz7SfQdNBjrVSDEg11nzLWVWMxAQ",
  "client_id": "client_BVTbVaLUnshLlnUqZQPG18759"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJraWQiOiJuUnk1bXFYdE14UDZEWS1LM1RZYl9WU18wUUVKV2ROalVQbWgwZDd3WUxBIiwiYWxnIjoiUFMyNTYifQ.eyJhdWQiOiJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL2l0YXVfZmFwaS8iLCJuYmYiOjE2Mzg1NDU0ODgsInNjb3BlIjoib3BlbmlkIGNvbnNlbnQ6dXJuOmNvbmZvcm1hbmNlLm9pZGY6QXdTWGJMQndEViBhY2NvdW50cyByZXNvdXJjZXMiLCJpc3MiOiJjbGllbnRfQlZUYlZhTFVuc2hMbG5VcVpRUEcxODc1OSIsInJlc3BvbnNlX3R5cGUiOiJjb2RlIGlkX3Rva2VuIiwicmVkaXJlY3RfdXJpIjoiaHR0cHM6Ly93d3cuaXRhdS5jb20uYnIvb3BiY29uc2VudGltZW50by9tb2JpbGVwZiIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJzdGF0ZSI6IjEwNzMyMTk4NTcwODUzNTc0MjkzMzMyMTYwODAzODcyMzEzNjc5MDciLCJleHAiOjE2Mzg1NDcyODgsIm5vbmNlIjoiNDg1MzA0OTY1NTA1NDgzOTE4NzM4MzM0MzQyNjUzMzI0NjAzODIzIiwiY2xpZW50X2lkIjoiY2xpZW50X0JWVGJWYUxVbnNoTGxuVXFaUVBHMTg3NTkiLCJjb2RlX2NoYWxsZW5nZSI6IlpIUTRpUFNFYmlHY1dVd0NQUGU1UG0xOUlUbEMwaHpQNGdTdTVxbFpHZ28ifQ.UEZPaCxfX2UJp3h_NJbDXaSiak47qvh8GYGV9U05j3p3fc2FcpiW5vB0GUl7J28jSSdMUt_7WyALZzX3E2_Q0BwKof9W4mDuU5RvTR6hzlTl14sshjEOkoUQlH3rPon9fLCMqEruMDsPeyBRDs19nE4NbqNQSbR-5C6XfgXvOxx4TM-SUj46jmxCkd6CixPaFaeGnzgpjbErwJMDcpVGOCPvL_HzUTEwlvAMAlMjs1-W6SkIahb2HsApxGzGgQnPrR3oiaPjrqrCT_vvG57cINOFB5YQKSiLX-zsQfjgNl-QWR7v58MzOE66D-pz7SfQdNBjrVSDEg11nzLWVWMxAQ&client_id=client_BVTbVaLUnshLlnUqZQPG18759
2021-12-03 15:31:28 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2021-12-03 15:31:28 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nDdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d9d56d7e9-d2bf-4444-b16f-c59a629a784f,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3630373031313930303030313034,CN\u003d*.opf.api.itau,OU\u003d9c721898-9ce0-50f1-bf85-05075557850b,O\u003dITAU UNIBANCO S.A.,L\u003dSAO PAULO,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "des-secure.opf.api.itau",
    "hom-secure.opf.api.itau"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 15:31:28 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 15:31:28 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 15:31:28 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-03 15:31:28 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJraWQiOiJuUnk1bXFYdE14UDZEWS1LM1RZYl9WU18wUUVKV2ROalVQbWgwZDd3WUxBIiwiYWxnIjoiUFMyNTYifQ.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.UEZPaCxfX2UJp3h_NJbDXaSiak47qvh8GYGV9U05j3p3fc2FcpiW5vB0GUl7J28jSSdMUt_7WyALZzX3E2_Q0BwKof9W4mDuU5RvTR6hzlTl14sshjEOkoUQlH3rPon9fLCMqEruMDsPeyBRDs19nE4NbqNQSbR-5C6XfgXvOxx4TM-SUj46jmxCkd6CixPaFaeGnzgpjbErwJMDcpVGOCPvL_HzUTEwlvAMAlMjs1-W6SkIahb2HsApxGzGgQnPrR3oiaPjrqrCT_vvG57cINOFB5YQKSiLX-zsQfjgNl-QWR7v58MzOE66D-pz7SfQdNBjrVSDEg11nzLWVWMxAQ",
  "header": {
    "kid": "nRy5mqXtMxP6DY-K3TYb_VS_0QEJWdNjUPmh0d7wYLA",
    "alg": "PS256"
  },
  "claims": {
    "aud": "https://www.certification.openid.net/test/a/itau_fapi/",
    "nbf": 1638545488,
    "scope": "openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources",
    "iss": "client_BVTbVaLUnshLlnUqZQPG18759",
    "response_type": "code id_token",
    "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
    "code_challenge_method": "S256",
    "state": "1073219857085357429333216080387231367907",
    "exp": 1638547288,
    "nonce": "485304965505483918738334342653324603823",
    "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
    "code_challenge": "ZHQ4iPSEbiGcWUwCPPe5Pm19ITlC0hzP4gSu5qlZGgo"
  }
}
2021-12-03 15:31:28 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2021-12-03 15:31:28 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-03 15:31:28 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2021-12-03 15:31:28
FAPIBrazilValidateRequestObjectIdTokenACRClaims
acr claim is not requested
2021-12-03 15:31:28 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Dec 3, 2021, 4:01:28 PM"
2021-12-03 15:31:28 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Dec 3, 2021, 3:31:28 PM"
now
"Dec 3, 2021, 3:31:28 PM"
2021-12-03 15:31:28 INFO
ValidateRequestObjectClaims
Missing issuance time
2021-12-03 15:31:28
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2021-12-03 15:31:28 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2021-12-03 15:31:28 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2021-12-03 15:31:28 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2021-12-03 15:31:28 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2021-12-03 15:31:28 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJraWQiOiJuUnk1bXFYdE14UDZEWS1LM1RZYl9WU18wUUVKV2ROalVQbWgwZDd3WUxBIiwiYWxnIjoiUFMyNTYifQ.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.UEZPaCxfX2UJp3h_NJbDXaSiak47qvh8GYGV9U05j3p3fc2FcpiW5vB0GUl7J28jSSdMUt_7WyALZzX3E2_Q0BwKof9W4mDuU5RvTR6hzlTl14sshjEOkoUQlH3rPon9fLCMqEruMDsPeyBRDs19nE4NbqNQSbR-5C6XfgXvOxx4TM-SUj46jmxCkd6CixPaFaeGnzgpjbErwJMDcpVGOCPvL_HzUTEwlvAMAlMjs1-W6SkIahb2HsApxGzGgQnPrR3oiaPjrqrCT_vvG57cINOFB5YQKSiLX-zsQfjgNl-QWR7v58MzOE66D-pz7SfQdNBjrVSDEg11nzLWVWMxAQ
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 27628366984605939891806510398941267794769232583098510180021934536526183806514334339908356261265903847521282573415471264022376549266298704526693962068884219254378525121053777322279218168137124330039022193348068064720438155081560018091383288424606447970850282693331988722292305973108862943320982171580403440086050869878830962099169841148371976362029683334197283445290749677085194084245294359059607683715182204200839015141380281902577140065560437103852943038235955689827195319416831338009110510703097860232409821440576786597182913589547901884360419517776541696253503459304973503782051637441212331505597923546990369442337
  public exponent: 65537
2021-12-03 15:31:28 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://www.itau.com.br/opbconsentimento/mobilepf
2021-12-03 15:31:28 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
ZHQ4iPSEbiGcWUwCPPe5Pm19ITlC0hzP4gSu5qlZGgo
2021-12-03 15:31:28 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:1ed948b9-9ad5-4015-9bdc-7ceba2a8b4ea
expires_in
600
2021-12-03 15:31:28 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:1ed948b9-9ad5-4015-9bdc-7ceba2a8b4ea",
  "expires_in": 600
}
outgoing_path
par
2021-12-03 15:31:30 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer eyJraWQiOiJhZTYxYWIxZi0yNTRhLTQ5ZWQtODMzNC05ZDJlN2E0MzZiNGQuaG9tLmdlbi4xNTk3NjAwMzM2OTkyLmp3dCIsImFsZyI6IlJTMjU2In0.eyJzdWIiOiI0Mzc1ODdjMC03YmNhLTQ5NTYtYjU0ZS1jYTA5NjE5YmQ4N2QiLCJpc3MiOiJodHRwczovL29wZW5pZC5pdGF1LmNvbS5ici9hcGkvb2F1dGgvdG9rZW4iLCJpYXQiOjE2Mzg1NDU0ODMsImV4cCI6MTYzODU0NTc4MywiQWNjZXNzX1Rva2VuIjoiMmFhM2ZlOTUuNzA3MDE5OWItNmVkYS00YzU4LTk2YjktMmVlNTZkYjU3NmQzIiwidXNyIjoibnVsbCIsImZsb3ciOiJDQyIsInNvdXJjZSI6IklOVCIsInNpdGUiOiJkZXYiLCJlbnYiOiJIIiwibWJpIjoidHJ1ZSIsImF1dCI6IiIsInZlciI6InYxLjAiLCJzY29wZSI6InJlc291cmNlLlJFQUQgbWYuSU1TIGFwcGlkLTJjZmUyYjI4LTBlOTYtNDE5MC1hOTEzLWI0MTUzNjBjZTYyOSJ9.KkQSAszGpRXnfvyDQGan0uyVBEHociz5xUsNCuZGoZ7DEHejsJjmlOr_ENVkGAq-C-W79CJAFKmK_eInWQP6JzNOY4u_x09M9YNVAuYGR-dCAvtghtqPd_PXZM-wp2JP6WPgBU0JN1rrBcy0ObCOJxfwsqYnMqIUJMPWPSgHUWmYahPPGtzkaY1OCwOica3L4ecAkfugzowSkFhFMRfNhkh4Qa_HuDeSDAGmQXzk3_IbdqEKpEixOf4mnGl8yePT0oGZWRZO3rcZl70V2zgtKr69sOmr0m2U3j5WWWeDI5sPU5c1lEK9ukbUc-OSNTgA9nJaswau96ZGcvQ1kTwlwg",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "postman-token": "ff939dc4-b879-4335-a3ec-debd96346a51",
  "cookie": "JSESSIONID\u003d84B32C90EAD641E7BD6CCEE174B3A2F1",
  "accept-encoding": "gzip, deflate",
  "x-i": "4817300031",
  "cache-control": "max-stale\u003d0",
  "connection": "close"
}
incoming_path
/test/a/itau_fapi/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "response_type": "code id_token",
  "request_uri": "urn:ietf:params:oauth:request_uri:1ed948b9-9ad5-4015-9bdc-7ceba2a8b4ea",
  "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "state": "1073219857085357429333216080387231367907",
  "scope": "openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources"
}
incoming_body
2021-12-03 15:31:30 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2021-12-03 15:31:30 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2021-12-03 15:31:30 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2021-12-03 15:31:30 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "response_type": "code id_token",
  "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "state": "1073219857085357429333216080387231367907",
  "scope": "openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources",
  "aud": "https://www.certification.openid.net/test/a/itau_fapi/",
  "nbf": 1638545488,
  "iss": "client_BVTbVaLUnshLlnUqZQPG18759",
  "code_challenge_method": "S256",
  "exp": 1638547288,
  "nonce": "485304965505483918738334342653324603823",
  "code_challenge": "ZHQ4iPSEbiGcWUwCPPe5Pm19ITlC0hzP4gSu5qlZGgo"
}
2021-12-03 15:31:30 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2021-12-03 15:31:30 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources
2021-12-03 15:31:30 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:AwSXbLBwDV",
  "accounts",
  "resources"
]
expected
consent:urn:conformance.oidf:AwSXbLBwDV
2021-12-03 15:31:30 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:AwSXbLBwDV",
  "accounts",
  "resources"
]
2021-12-03 15:31:30 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2021-12-03 15:31:30 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:AwSXbLBwDV",
  "accounts",
  "resources"
]
expected
openid
2021-12-03 15:31:30 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
client_BVTbVaLUnshLlnUqZQPG18759
2021-12-03 15:31:30 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
89NrrvM64JGp19Fca7seCPvGoGrQoaMr
2021-12-03 15:31:30 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
485304965505483918738334342653324603823
2021-12-03 15:31:30 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
LcEzXjnUC8uN75P_Jiub7g
2021-12-03 15:31:30 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
h58BDhHcH7mOGhbKjtRtJg
2021-12-03 15:31:30 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/itau_fapi/
sub
user-subject-1234531
aud
client_BVTbVaLUnshLlnUqZQPG18759
nonce
485304965505483918738334342653324603823
iat
1638545490
exp
1638545790
2021-12-03 15:31:30
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-03 15:31:30 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
LcEzXjnUC8uN75P_Jiub7g
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/itau_fapi/",
  "sub": "user-subject-1234531",
  "aud": "client_BVTbVaLUnshLlnUqZQPG18759",
  "nonce": "485304965505483918738334342653324603823",
  "iat": 1638545490,
  "exp": 1638545790,
  "c_hash": "LcEzXjnUC8uN75P_Jiub7g"
}
2021-12-03 15:31:30 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
h58BDhHcH7mOGhbKjtRtJg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/itau_fapi/",
  "sub": "user-subject-1234531",
  "aud": "client_BVTbVaLUnshLlnUqZQPG18759",
  "nonce": "485304965505483918738334342653324603823",
  "iat": 1638545490,
  "exp": 1638545790,
  "c_hash": "LcEzXjnUC8uN75P_Jiub7g",
  "s_hash": "h58BDhHcH7mOGhbKjtRtJg"
}
2021-12-03 15:31:30 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2021-12-03 15:31:30 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-03 15:31:30 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6ImNsaWVudF9CVlRiVmFMVW5zaExsblVxWlFQRzE4NzU5IiwiY19oYXNoIjoiTGNFelhqblVDOHVONzVQX0ppdWI3ZyIsInNfaGFzaCI6Img1OEJEaEhjSDdtT0doYktqdFJ0SmciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvaXRhdV9mYXBpXC8iLCJleHAiOjE2Mzg1NDU3OTAsIm5vbmNlIjoiNDg1MzA0OTY1NTA1NDgzOTE4NzM4MzM0MzQyNjUzMzI0NjAzODIzIiwiaWF0IjoxNjM4NTQ1NDkwfQ.E1UUBT3xThy4SaN9-cETc3sGIaiEATNacmJotGWyUcCvhYWTxJbNP7hMNTfffJ7B0y9QNG6jiMg1JpLtiJIRIiygj9_E4EfVRj9keQz1Dkhdwf4riNqrpTxTjmrYBwHQEm2eqEsDJo8jwfci3YGURaYSNL9e_uKL0xYwrIPOkkvpzR8QmxAhu-fBpwns8nAp7o28V1kZmSmG_jpMsrVnTQlSBTwNYq_hpQc6nEqpz57FD8_dbgF30npBMQml5iS8VjAPYlIC6t2O42lBJ8Dsh0k7PRlwfSFGiehtrViBhP-6nhxOsxKAnpW2Q3F-ogomPs8il4g52Gi7-RjJKYOU0w
2021-12-03 15:31:30
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.UYL3B9gkpn8T-9lqpgn5OuYXqEU4rvroELnx5gmKmhI0msO3Iz0UlDvI_mW0_C9TC-0fei_NPQpLQQN2p83Mch4xRPktIcxf9gV_jX10JoX4qsf91rIGOLsKk1k_T3BOFE0_YNkG7UMYRgNmAy_ALsN3xsnmNFdkweANl8v_mmbBJefcyXT8FmfqULtIpX2zcpj_MwLETdwhRPaa4WK9kW5lElicjY21SO-G4tcnteE67Y_Bnryghnu1fr6z36mqBrqiVGuy2vpz7fC7JeovZcOmwnWuPjtrgWoSf0UJEgVTTH6v3k5XqC0M1pX4n4Xh1Kv1-u6Fhrj9snj7P-v_bA.a4VaIq1oq0Pbap8J.TVddyOhRzMjNVHHUazobxDZeXdX8DfNgG-m4Vsso18CvYnfxX8pApxyNELQNNuDe_6Z0a3SraPD8AO3PAZICya4KkZfPiu1e_Y568IkO32zIHIMTVO6Xl-ekBUhNkW7OC4gJzcF5Tn9biFl0TYKEPn5Y_eiyF4Mz4KvA9d9hZGohgp_E0oGOSlH-etZUOnOeFALqtJqXkrDf7rQHrZo1A_8Xr6tVm3Fj1reR1uQRjBMRqMaGYxaY5h-mmn6qMFad7SINdBIfaGM01r1u7JdDzTvRrO7Z6DJ1ZCPpMjl9_ijKaC4Pcq6UCh84PEacSRDJAbHPYyJzymQDBU56VMih0bf-3rfO920EBehrNS-ocKX1Xs7pu-3w7JHXiV1IrGryQNl6PaBLN1P-hL25MfQILsZKc6vH9TyRHzyjcaDH8Fu6Vxb_YUMX0arxfXEviJPIUBsbBpc_7jeKFNz6G4Q2isEWPTQl0UTcsFAaC4xpwK04SaDtk5vjaBpbTH6mG_wrAoI9Qu8EZROGklPcsgB81rgaGH0Dbkg1mGWmIJ5qpV7gAHT2Jws1HIo1jXG0GVfBK5cUz2p4fvlFe54msmjhU_KmvWU5B6qaIQmT2zoV3_2cphlFQCmJlzn5d-ttU75saSRTDDegJop8zb_qErH5IKSE6987j889XLCzWbz-aQ_29tRPGbPx-zeCNgnaK99KfPiYVNPlXHd-tEWi7UESQzy2Oc5drS5Q_Gh9Fz4AC_fhCWk-v0hMnJnYFcgOCzxorcCHZ-c14gRKnvSfAujIQ0TGUZEtCGyVeiBP1dR81FjmS4BjbzhGMS5CDvcva3blua4FdXBcJTXjhcC-0DG_zQ2SzFTNZYRSg3Z_08i-lNiYScUevOzEbv1gPmxzUDhlqLNloRbiEahC-GHc92lwRUPhMjNH8cNQl5_QUTrodYBRRT3Gepyol8KIIK_-DVJEW_Yx17usa5UpUNzpMxiypz8SdId4wJ6pEOo5hMnofM68rH9H3LKKVqPNrZ1C-QWMhUMG82LDsgON96rClTFK_wyPIcBa8zJF7_KPMjmLHDFYCxh-dqU-2gbscGIIwg06yCA5UzPEPdU.ahFUfAxf0LI5qUyLB5udPA
2021-12-03 15:31:30 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:AwSXbLBwDV",
    "creationDateTime": "2021-12-03T15:31:27Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2021-12-03T15:31:30Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-03T17:31:27Z",
    "transactionFromDateTime": "2021-12-03T15:26:27Z",
    "transactionToDateTime": "2021-12-03T17:31:27Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/itau_fapiconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-03T15:31:27Z"
  }
}
2021-12-03 15:31:30 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "state": "1073219857085357429333216080387231367907"
}
2021-12-03 15:31:30 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "state": "1073219857085357429333216080387231367907",
  "code": "89NrrvM64JGp19Fca7seCPvGoGrQoaMr"
}
2021-12-03 15:31:30 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "state": "1073219857085357429333216080387231367907",
  "code": "89NrrvM64JGp19Fca7seCPvGoGrQoaMr",
  "id_token": "eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.UYL3B9gkpn8T-9lqpgn5OuYXqEU4rvroELnx5gmKmhI0msO3Iz0UlDvI_mW0_C9TC-0fei_NPQpLQQN2p83Mch4xRPktIcxf9gV_jX10JoX4qsf91rIGOLsKk1k_T3BOFE0_YNkG7UMYRgNmAy_ALsN3xsnmNFdkweANl8v_mmbBJefcyXT8FmfqULtIpX2zcpj_MwLETdwhRPaa4WK9kW5lElicjY21SO-G4tcnteE67Y_Bnryghnu1fr6z36mqBrqiVGuy2vpz7fC7JeovZcOmwnWuPjtrgWoSf0UJEgVTTH6v3k5XqC0M1pX4n4Xh1Kv1-u6Fhrj9snj7P-v_bA.a4VaIq1oq0Pbap8J.TVddyOhRzMjNVHHUazobxDZeXdX8DfNgG-m4Vsso18CvYnfxX8pApxyNELQNNuDe_6Z0a3SraPD8AO3PAZICya4KkZfPiu1e_Y568IkO32zIHIMTVO6Xl-ekBUhNkW7OC4gJzcF5Tn9biFl0TYKEPn5Y_eiyF4Mz4KvA9d9hZGohgp_E0oGOSlH-etZUOnOeFALqtJqXkrDf7rQHrZo1A_8Xr6tVm3Fj1reR1uQRjBMRqMaGYxaY5h-mmn6qMFad7SINdBIfaGM01r1u7JdDzTvRrO7Z6DJ1ZCPpMjl9_ijKaC4Pcq6UCh84PEacSRDJAbHPYyJzymQDBU56VMih0bf-3rfO920EBehrNS-ocKX1Xs7pu-3w7JHXiV1IrGryQNl6PaBLN1P-hL25MfQILsZKc6vH9TyRHzyjcaDH8Fu6Vxb_YUMX0arxfXEviJPIUBsbBpc_7jeKFNz6G4Q2isEWPTQl0UTcsFAaC4xpwK04SaDtk5vjaBpbTH6mG_wrAoI9Qu8EZROGklPcsgB81rgaGH0Dbkg1mGWmIJ5qpV7gAHT2Jws1HIo1jXG0GVfBK5cUz2p4fvlFe54msmjhU_KmvWU5B6qaIQmT2zoV3_2cphlFQCmJlzn5d-ttU75saSRTDDegJop8zb_qErH5IKSE6987j889XLCzWbz-aQ_29tRPGbPx-zeCNgnaK99KfPiYVNPlXHd-tEWi7UESQzy2Oc5drS5Q_Gh9Fz4AC_fhCWk-v0hMnJnYFcgOCzxorcCHZ-c14gRKnvSfAujIQ0TGUZEtCGyVeiBP1dR81FjmS4BjbzhGMS5CDvcva3blua4FdXBcJTXjhcC-0DG_zQ2SzFTNZYRSg3Z_08i-lNiYScUevOzEbv1gPmxzUDhlqLNloRbiEahC-GHc92lwRUPhMjNH8cNQl5_QUTrodYBRRT3Gepyol8KIIK_-DVJEW_Yx17usa5UpUNzpMxiypz8SdId4wJ6pEOo5hMnofM68rH9H3LKKVqPNrZ1C-QWMhUMG82LDsgON96rClTFK_wyPIcBa8zJF7_KPMjmLHDFYCxh-dqU-2gbscGIIwg06yCA5UzPEPdU.ahFUfAxf0LI5qUyLB5udPA"
}
2021-12-03 15:31:30
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://www.itau.com.br/opbconsentimento/mobilepf#state=1073219857085357429333216080387231367907&code=89NrrvM64JGp19Fca7seCPvGoGrQoaMr&id_token=eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.UYL3B9gkpn8T-9lqpgn5OuYXqEU4rvroELnx5gmKmhI0msO3Iz0UlDvI_mW0_C9TC-0fei_NPQpLQQN2p83Mch4xRPktIcxf9gV_jX10JoX4qsf91rIGOLsKk1k_T3BOFE0_YNkG7UMYRgNmAy_ALsN3xsnmNFdkweANl8v_mmbBJefcyXT8FmfqULtIpX2zcpj_MwLETdwhRPaa4WK9kW5lElicjY21SO-G4tcnteE67Y_Bnryghnu1fr6z36mqBrqiVGuy2vpz7fC7JeovZcOmwnWuPjtrgWoSf0UJEgVTTH6v3k5XqC0M1pX4n4Xh1Kv1-u6Fhrj9snj7P-v_bA.a4VaIq1oq0Pbap8J.TVddyOhRzMjNVHHUazobxDZeXdX8DfNgG-m4Vsso18CvYnfxX8pApxyNELQNNuDe_6Z0a3SraPD8AO3PAZICya4KkZfPiu1e_Y568IkO32zIHIMTVO6Xl-ekBUhNkW7OC4gJzcF5Tn9biFl0TYKEPn5Y_eiyF4Mz4KvA9d9hZGohgp_E0oGOSlH-etZUOnOeFALqtJqXkrDf7rQHrZo1A_8Xr6tVm3Fj1reR1uQRjBMRqMaGYxaY5h-mmn6qMFad7SINdBIfaGM01r1u7JdDzTvRrO7Z6DJ1ZCPpMjl9_ijKaC4Pcq6UCh84PEacSRDJAbHPYyJzymQDBU56VMih0bf-3rfO920EBehrNS-ocKX1Xs7pu-3w7JHXiV1IrGryQNl6PaBLN1P-hL25MfQILsZKc6vH9TyRHzyjcaDH8Fu6Vxb_YUMX0arxfXEviJPIUBsbBpc_7jeKFNz6G4Q2isEWPTQl0UTcsFAaC4xpwK04SaDtk5vjaBpbTH6mG_wrAoI9Qu8EZROGklPcsgB81rgaGH0Dbkg1mGWmIJ5qpV7gAHT2Jws1HIo1jXG0GVfBK5cUz2p4fvlFe54msmjhU_KmvWU5B6qaIQmT2zoV3_2cphlFQCmJlzn5d-ttU75saSRTDDegJop8zb_qErH5IKSE6987j889XLCzWbz-aQ_29tRPGbPx-zeCNgnaK99KfPiYVNPlXHd-tEWi7UESQzy2Oc5drS5Q_Gh9Fz4AC_fhCWk-v0hMnJnYFcgOCzxorcCHZ-c14gRKnvSfAujIQ0TGUZEtCGyVeiBP1dR81FjmS4BjbzhGMS5CDvcva3blua4FdXBcJTXjhcC-0DG_zQ2SzFTNZYRSg3Z_08i-lNiYScUevOzEbv1gPmxzUDhlqLNloRbiEahC-GHc92lwRUPhMjNH8cNQl5_QUTrodYBRRT3Gepyol8KIIK_-DVJEW_Yx17usa5UpUNzpMxiypz8SdId4wJ6pEOo5hMnofM68rH9H3LKKVqPNrZ1C-QWMhUMG82LDsgON96rClTFK_wyPIcBa8zJF7_KPMjmLHDFYCxh-dqU-2gbscGIIwg06yCA5UzPEPdU.ahFUfAxf0LI5qUyLB5udPA
2021-12-03 15:31:30 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.itau.com.br/opbconsentimento/mobilepf#state=1073219857085357429333216080387231367907&code=89NrrvM64JGp19Fca7seCPvGoGrQoaMr&id_token=eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.UYL3B9gkpn8T-9lqpgn5OuYXqEU4rvroELnx5gmKmhI0msO3Iz0UlDvI_mW0_C9TC-0fei_NPQpLQQN2p83Mch4xRPktIcxf9gV_jX10JoX4qsf91rIGOLsKk1k_T3BOFE0_YNkG7UMYRgNmAy_ALsN3xsnmNFdkweANl8v_mmbBJefcyXT8FmfqULtIpX2zcpj_MwLETdwhRPaa4WK9kW5lElicjY21SO-G4tcnteE67Y_Bnryghnu1fr6z36mqBrqiVGuy2vpz7fC7JeovZcOmwnWuPjtrgWoSf0UJEgVTTH6v3k5XqC0M1pX4n4Xh1Kv1-u6Fhrj9snj7P-v_bA.a4VaIq1oq0Pbap8J.TVddyOhRzMjNVHHUazobxDZeXdX8DfNgG-m4Vsso18CvYnfxX8pApxyNELQNNuDe_6Z0a3SraPD8AO3PAZICya4KkZfPiu1e_Y568IkO32zIHIMTVO6Xl-ekBUhNkW7OC4gJzcF5Tn9biFl0TYKEPn5Y_eiyF4Mz4KvA9d9hZGohgp_E0oGOSlH-etZUOnOeFALqtJqXkrDf7rQHrZo1A_8Xr6tVm3Fj1reR1uQRjBMRqMaGYxaY5h-mmn6qMFad7SINdBIfaGM01r1u7JdDzTvRrO7Z6DJ1ZCPpMjl9_ijKaC4Pcq6UCh84PEacSRDJAbHPYyJzymQDBU56VMih0bf-3rfO920EBehrNS-ocKX1Xs7pu-3w7JHXiV1IrGryQNl6PaBLN1P-hL25MfQILsZKc6vH9TyRHzyjcaDH8Fu6Vxb_YUMX0arxfXEviJPIUBsbBpc_7jeKFNz6G4Q2isEWPTQl0UTcsFAaC4xpwK04SaDtk5vjaBpbTH6mG_wrAoI9Qu8EZROGklPcsgB81rgaGH0Dbkg1mGWmIJ5qpV7gAHT2Jws1HIo1jXG0GVfBK5cUz2p4fvlFe54msmjhU_KmvWU5B6qaIQmT2zoV3_2cphlFQCmJlzn5d-ttU75saSRTDDegJop8zb_qErH5IKSE6987j889XLCzWbz-aQ_29tRPGbPx-zeCNgnaK99KfPiYVNPlXHd-tEWi7UESQzy2Oc5drS5Q_Gh9Fz4AC_fhCWk-v0hMnJnYFcgOCzxorcCHZ-c14gRKnvSfAujIQ0TGUZEtCGyVeiBP1dR81FjmS4BjbzhGMS5CDvcva3blua4FdXBcJTXjhcC-0DG_zQ2SzFTNZYRSg3Z_08i-lNiYScUevOzEbv1gPmxzUDhlqLNloRbiEahC-GHc92lwRUPhMjNH8cNQl5_QUTrodYBRRT3Gepyol8KIIK_-DVJEW_Yx17usa5UpUNzpMxiypz8SdId4wJ6pEOo5hMnofM68rH9H3LKKVqPNrZ1C-QWMhUMG82LDsgON96rClTFK_wyPIcBa8zJF7_KPMjmLHDFYCxh-dqU-2gbscGIIwg06yCA5UzPEPdU.ahFUfAxf0LI5qUyLB5udPA]
outgoing_path
authorize
2021-12-03 15:31:31 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-length": "297",
  "x-fapi-interaction-id": "131115f8-d163-4fb5-ae0f-8d62a74712b6",
  "x-client": "63c61f41-bb75-59ec-b690-876172c5fbf0",
  "backend": "www.certification.openid.net",
  "singularityheader": "notxdetect\u003dtrue",
  "x-itau-correlationid": "[FAPI_TESTS] 2-mtls-fapi1-advanced-final-client-test-encrypted-idtoken-3333343",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.1",
  "connection": "close"
}
incoming_path
/test-mtls/a/itau_fapi/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "client_id": "client_BVTbVaLUnshLlnUqZQPG18759",
  "code": "89NrrvM64JGp19Fca7seCPvGoGrQoaMr",
  "redirect_uri": "https://www.itau.com.br/opbconsentimento/mobilepf",
  "code_verifier": "207256621275146876573784569841554435090451501046695260424448971116015201486695278260966817024199625"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&client_id=client_BVTbVaLUnshLlnUqZQPG18759&code=89NrrvM64JGp19Fca7seCPvGoGrQoaMr&redirect_uri=https%3A%2F%2Fwww.itau.com.br%2Fopbconsentimento%2Fmobilepf&code_verifier=207256621275146876573784569841554435090451501046695260424448971116015201486695278260966817024199625
2021-12-03 15:31:31 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2021-12-03 15:31:31 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nDdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d9d56d7e9-d2bf-4444-b16f-c59a629a784f,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3630373031313930303030313034,CN\u003d*.opf.api.itau,OU\u003d9c721898-9ce0-50f1-bf85-05075557850b,O\u003dITAU UNIBANCO S.A.,L\u003dSAO PAULO,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "des-secure.opf.api.itau",
    "hom-secure.opf.api.itau"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 15:31:31 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 15:31:31 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 15:31:31 SUCCESS
EnsureNoClientAssertionSentToTokenEndpoint
Client did not send a client_assertion to token endpoint
2021-12-03 15:31:31 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
89NrrvM64JGp19Fca7seCPvGoGrQoaMr
2021-12-03 15:31:31 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://www.itau.com.br/opbconsentimento/mobilepf
2021-12-03 15:31:31 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
207256621275146876573784569841554435090451501046695260424448971116015201486695278260966817024199625
code_challenge
ZHQ4iPSEbiGcWUwCPPe5Pm19ITlC0hzP4gSu5qlZGgo
2021-12-03 15:31:31 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk
2021-12-03 15:31:31 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
i3FUsRCXtVXmMTJXGrgYXA
2021-12-03 15:31:31
CreateRefreshToken
Created refresh token
refresh_token
wWhmDIvnEljqibWDNVsoFEyoXYJptqUaxMMDILMlYsBuoheUPj8893082931#_'$/
2021-12-03 15:31:31 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/itau_fapi/
sub
user-subject-1234531
aud
client_BVTbVaLUnshLlnUqZQPG18759
nonce
485304965505483918738334342653324603823
iat
1638545491
exp
1638545791
2021-12-03 15:31:31
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Request object does not contain a claims element.id_token
2021-12-03 15:31:31 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
i3FUsRCXtVXmMTJXGrgYXA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/itau_fapi/",
  "sub": "user-subject-1234531",
  "aud": "client_BVTbVaLUnshLlnUqZQPG18759",
  "nonce": "485304965505483918738334342653324603823",
  "iat": 1638545491,
  "exp": 1638545791,
  "at_hash": "i3FUsRCXtVXmMTJXGrgYXA"
}
2021-12-03 15:31:31 INFO
FAPIBrazilAddACRClaimToIdTokenClaims
Skipped evaluation due to missing required string: requested_id_token_acr_values
expected
requested_id_token_acr_values
2021-12-03 15:31:31 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiaTNGVXNSQ1h0VlhtTVRKWEdyZ1lYQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoiY2xpZW50X0JWVGJWYUxVbnNoTGxuVXFaUVBHMTg3NTkiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvaXRhdV9mYXBpXC8iLCJleHAiOjE2Mzg1NDU3OTEsIm5vbmNlIjoiNDg1MzA0OTY1NTA1NDgzOTE4NzM4MzM0MzQyNjUzMzI0NjAzODIzIiwiaWF0IjoxNjM4NTQ1NDkxfQ.D4g0uoLIIZxrlmfdYtFQhRk-fq1FVrOG-h1uEAo4-5vMMam_emJdxK00k3U0wW2ANA7hvcQSpOfOD2iyFql8iB85hKRwrUe8Rdj3sfx1sQkDiC-mDOFwA_Kg8P5IVcmXGTtPiwcrEmEqWgkXkIDPwQvZmBgtagNUA4ciRDdzdqX0TkCgJlDV6HFNDKQyZajZfI_CWJBJNCebO_VbUCIvVDCusES01EupA3WlHcEZbOGHaNlh1IvAWIJlodCEx22kwPceQFWCUvGU4_WUEMep2XTbULQ_dCP6b7oySxCVfey96DE23vq_dWwBayPt1yIcJzrbKj21jC3pzXKoFlW4OA
2021-12-03 15:31:31
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.RSBe4nI5WvSBerpbs8fAybFqrng0YIDaQChwgGmkz4bwHC7zLqhfeJWeZWQ-UdU27Kep2C4UYL3__fCjgNhsDes8xPrwOB6m8zFuOfbzMSdKx5h_sa29dd6MsZPYYgjNcr8DhbOxI29MqZe4PNCPUyyGVpmVgQD9UX1vrilgFevt7a4SD0fliqtf2pEngmVuR66tK3Ejru8Z0915OxUCI2iW6dcvsFbV8ZqvIeNi1IWx5l4eqoQ4Ed11XTnfhF2aPlihhJR-YLdD5b9Mbw-T9Ab2NOnvODKZelmkGD8UUW6t8mk9p60exjnzlOydRQuTmLqlrqgIs4nWbwKRsrRWUQ.zuAatyZ9YXTQulAv.tOBiZVv7j47b1sTxOVdlwPYqpPBNMvzgDIp_GM3FLyxP8Hm7BHN875sTh8jPqMRmvwwl4lv2bCFWMUsgyQkCak3EBceWp_H7hph3s-kv1x5dslt4lhKwVtb0hT1OjQapqbsS2TqPww-aL3yAAoR5nFMV6t6QH1asym66XxmFkEoHd8Z_oCluhEVz8tPRo2XSXsYLanC0m8J2-Dd6TFnwV1-1pZ041FrbDrnkwjvOBkkoHExvseSbC6SjUK7DlGS22tZIWUdVQ4fXp_vIZAgptsOJ8zKoxM41lKZSKFOfbbs453Gt8l-8Pqtn-ausy7_d-Nk2czfq48-uTc9EbbY-0JAmc8UwGTJKE7P660yJANf0iBPh3S_sL1b61ObqhSkPgIox21dcx9ba-PlqYG34vVQccAZQTb_qBLm5Hzq4l7cHdEjn9MUWGvqr7veu7gMMwGZq1DXG28nVhR06SNSQaZURa5DR69AxSaCxPn4vHtCKX5QueC5S2qp_fkNok3b2ygNOOJoZGBYi_1vmP5k3ROdcWZLeLDXTlwm3l46pEcUZ9TOgZZh2PMzTF9coDUwCXuc-niblLFI35Zbu1dVwMSQiZStC3Qs2Sm9T3YqJCfmbrT3UK_BjUydRSUOIw24KYV17q78hN9Q1qsvQJGhLZj6PZZNJI-Tk_7Gop-Q5CSmYjl4hfFFooEOJt4aGLDT280_YGfJAGXfVkcxygTBMd3I8UUTvWXsp6OyF1wQtflS1yFbHo7oRZ1LXxfvHpLmqsCoh7FrXcq-D-UuaqVUvCEQ6-qkGBvICcmHuUb_r6GtaZwZNteluASe2z16TmR8s2SFstlWOKsHhrxFmR0IiUVnQp1a8P7zVbLK0M3LkI-MjK88-cZCKAbJufUN5vHYagbgjiHXjI8qhPaEFDXQRsA1mUIZYhvQ5BfW07nqs0C5odatrWzwarH_J0mySDwqGxgLQhMAhbvBi9tFK6d6varc808IzcjhcZ4lggpoGPpgqWgs7vDc8RvLDIlERjvqUEaejzyqE_5PjYksa.16eOQNXn8o8HBI5i_Uyo4Q
2021-12-03 15:31:31 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk
token_type
Bearer
id_token
eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.RSBe4nI5WvSBerpbs8fAybFqrng0YIDaQChwgGmkz4bwHC7zLqhfeJWeZWQ-UdU27Kep2C4UYL3__fCjgNhsDes8xPrwOB6m8zFuOfbzMSdKx5h_sa29dd6MsZPYYgjNcr8DhbOxI29MqZe4PNCPUyyGVpmVgQD9UX1vrilgFevt7a4SD0fliqtf2pEngmVuR66tK3Ejru8Z0915OxUCI2iW6dcvsFbV8ZqvIeNi1IWx5l4eqoQ4Ed11XTnfhF2aPlihhJR-YLdD5b9Mbw-T9Ab2NOnvODKZelmkGD8UUW6t8mk9p60exjnzlOydRQuTmLqlrqgIs4nWbwKRsrRWUQ.zuAatyZ9YXTQulAv.tOBiZVv7j47b1sTxOVdlwPYqpPBNMvzgDIp_GM3FLyxP8Hm7BHN875sTh8jPqMRmvwwl4lv2bCFWMUsgyQkCak3EBceWp_H7hph3s-kv1x5dslt4lhKwVtb0hT1OjQapqbsS2TqPww-aL3yAAoR5nFMV6t6QH1asym66XxmFkEoHd8Z_oCluhEVz8tPRo2XSXsYLanC0m8J2-Dd6TFnwV1-1pZ041FrbDrnkwjvOBkkoHExvseSbC6SjUK7DlGS22tZIWUdVQ4fXp_vIZAgptsOJ8zKoxM41lKZSKFOfbbs453Gt8l-8Pqtn-ausy7_d-Nk2czfq48-uTc9EbbY-0JAmc8UwGTJKE7P660yJANf0iBPh3S_sL1b61ObqhSkPgIox21dcx9ba-PlqYG34vVQccAZQTb_qBLm5Hzq4l7cHdEjn9MUWGvqr7veu7gMMwGZq1DXG28nVhR06SNSQaZURa5DR69AxSaCxPn4vHtCKX5QueC5S2qp_fkNok3b2ygNOOJoZGBYi_1vmP5k3ROdcWZLeLDXTlwm3l46pEcUZ9TOgZZh2PMzTF9coDUwCXuc-niblLFI35Zbu1dVwMSQiZStC3Qs2Sm9T3YqJCfmbrT3UK_BjUydRSUOIw24KYV17q78hN9Q1qsvQJGhLZj6PZZNJI-Tk_7Gop-Q5CSmYjl4hfFFooEOJt4aGLDT280_YGfJAGXfVkcxygTBMd3I8UUTvWXsp6OyF1wQtflS1yFbHo7oRZ1LXxfvHpLmqsCoh7FrXcq-D-UuaqVUvCEQ6-qkGBvICcmHuUb_r6GtaZwZNteluASe2z16TmR8s2SFstlWOKsHhrxFmR0IiUVnQp1a8P7zVbLK0M3LkI-MjK88-cZCKAbJufUN5vHYagbgjiHXjI8qhPaEFDXQRsA1mUIZYhvQ5BfW07nqs0C5odatrWzwarH_J0mySDwqGxgLQhMAhbvBi9tFK6d6varc808IzcjhcZ4lggpoGPpgqWgs7vDc8RvLDIlERjvqUEaejzyqE_5PjYksa.16eOQNXn8o8HBI5i_Uyo4Q
refresh_token
wWhmDIvnEljqibWDNVsoFEyoXYJptqUaxMMDILMlYsBuoheUPj8893082931#_'$/
scope
openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources
2021-12-03 15:31:31 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiIwZmU1MDJkZC0xNGYwLTRmNDUtODBmOS1mZWI5YTIxNmY5OTYiLCJjdHkiOiJKV1QiLCJlbmMiOiJBMjU2R0NNIiwiYWxnIjoiUlNBLU9BRVAifQ.RSBe4nI5WvSBerpbs8fAybFqrng0YIDaQChwgGmkz4bwHC7zLqhfeJWeZWQ-UdU27Kep2C4UYL3__fCjgNhsDes8xPrwOB6m8zFuOfbzMSdKx5h_sa29dd6MsZPYYgjNcr8DhbOxI29MqZe4PNCPUyyGVpmVgQD9UX1vrilgFevt7a4SD0fliqtf2pEngmVuR66tK3Ejru8Z0915OxUCI2iW6dcvsFbV8ZqvIeNi1IWx5l4eqoQ4Ed11XTnfhF2aPlihhJR-YLdD5b9Mbw-T9Ab2NOnvODKZelmkGD8UUW6t8mk9p60exjnzlOydRQuTmLqlrqgIs4nWbwKRsrRWUQ.zuAatyZ9YXTQulAv.tOBiZVv7j47b1sTxOVdlwPYqpPBNMvzgDIp_GM3FLyxP8Hm7BHN875sTh8jPqMRmvwwl4lv2bCFWMUsgyQkCak3EBceWp_H7hph3s-kv1x5dslt4lhKwVtb0hT1OjQapqbsS2TqPww-aL3yAAoR5nFMV6t6QH1asym66XxmFkEoHd8Z_oCluhEVz8tPRo2XSXsYLanC0m8J2-Dd6TFnwV1-1pZ041FrbDrnkwjvOBkkoHExvseSbC6SjUK7DlGS22tZIWUdVQ4fXp_vIZAgptsOJ8zKoxM41lKZSKFOfbbs453Gt8l-8Pqtn-ausy7_d-Nk2czfq48-uTc9EbbY-0JAmc8UwGTJKE7P660yJANf0iBPh3S_sL1b61ObqhSkPgIox21dcx9ba-PlqYG34vVQccAZQTb_qBLm5Hzq4l7cHdEjn9MUWGvqr7veu7gMMwGZq1DXG28nVhR06SNSQaZURa5DR69AxSaCxPn4vHtCKX5QueC5S2qp_fkNok3b2ygNOOJoZGBYi_1vmP5k3ROdcWZLeLDXTlwm3l46pEcUZ9TOgZZh2PMzTF9coDUwCXuc-niblLFI35Zbu1dVwMSQiZStC3Qs2Sm9T3YqJCfmbrT3UK_BjUydRSUOIw24KYV17q78hN9Q1qsvQJGhLZj6PZZNJI-Tk_7Gop-Q5CSmYjl4hfFFooEOJt4aGLDT280_YGfJAGXfVkcxygTBMd3I8UUTvWXsp6OyF1wQtflS1yFbHo7oRZ1LXxfvHpLmqsCoh7FrXcq-D-UuaqVUvCEQ6-qkGBvICcmHuUb_r6GtaZwZNteluASe2z16TmR8s2SFstlWOKsHhrxFmR0IiUVnQp1a8P7zVbLK0M3LkI-MjK88-cZCKAbJufUN5vHYagbgjiHXjI8qhPaEFDXQRsA1mUIZYhvQ5BfW07nqs0C5odatrWzwarH_J0mySDwqGxgLQhMAhbvBi9tFK6d6varc808IzcjhcZ4lggpoGPpgqWgs7vDc8RvLDIlERjvqUEaejzyqE_5PjYksa.16eOQNXn8o8HBI5i_Uyo4Q",
  "refresh_token": "wWhmDIvnEljqibWDNVsoFEyoXYJptqUaxMMDILMlYsBuoheUPj8893082931#_\u0027$/",
  "scope": "openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources"
}
outgoing_path
token
2021-12-03 15:31:45 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to test instance yLJ1AScmSSEDGmg
incoming_headers
{
  "host": "www.certification.openid.net",
  "connection": "close",
  "backend": "www.certification.openid.net",
  "content-type": "application/json",
  "x-client": "63c61f41-bb75-59ec-b690-876172c5fbf0",
  "authorization": "Bearer t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk",
  "accept-encoding": "gzip",
  "user-agent": "okhttp/4.9.0"
}
incoming_path
/test-mtls/a/itau_fapi/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2021-12-03 15:31:45 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2021-12-03 15:31:45 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIHFzCCBf+gAwIBAgIUfeD7zmQSJ52R+YRmN1eZcp8gOYswDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDkyOTIyMDAwMFoXDTIyMTAyOTIy MDAwMFowggEWMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEjAQBgNVBAcTCVNB TyBQQVVMTzEbMBkGA1UEChMSSVRBVSBVTklCQU5DTyBTLkEuMS0wKwYDVQQLEyQ5 YzcyMTg5OC05Y2UwLTUwZjEtYmY4NS0wNTA3NTU1Nzg1MGIxFzAVBgNVBAMMDiou b3BmLmFwaS5pdGF1MRcwFQYDVQQFEw42MDcwMTE5MDAwMDEwNDEdMBsGA1UEDxMU UHJpdmF0ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJ kiaJk/IsZAEBEyQ5ZDU2ZDdlOS1kMmJmLTQ0NDQtYjE2Zi1jNTlhNjI5YTc4NGYw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBTQwZHFt16tvW1LdoH4L teGlUcNdDc0h7KlAzmYasKfFof3NG6WkE2Yl2ekhGI7C6HKUHrQEfLM+Xypa6fEM O73m89Gne+hul2eewozIgLxA/U/SQ1XC/7DRkkgInNuPVpe2APqD2uig5dkQegvM 7qQJzNwWBIhTfUqZpPYh2q1FG0CI2cQJu+H1YDAkRM5k8WJ80T1goUB3fXYnuMTR C6FH9jrzQFrTF5sZI1bLmClsp2Zt30CJS1Ph482ehIN4G2qbaptwrEBio9HBHZIG 3EOMhzx32vWdn6IY/+DpdJ0E2FuVG366Xih4DXiZHruEQAfVhXq9BdpYpXbrPCeH AgMBAAGjggL+MIIC+jAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS9mggxqvh9AJHr P5nz9TkQJTlXRjAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggr BgEFBQcBAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtp Lm9wZW5iYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRw Oi8vY3JsLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1 ZXIuY3JsMDsGA1UdEQQ0MDKCF2Rlcy1zZWN1cmUub3BmLmFwaS5pdGF1ghdob20t c2VjdXJlLm9wZi5hcGkuaXRhdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwIGCCsGAQUFBwMBMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6 L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlz IHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFu ZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlh bSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0 cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRh bmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xp Y3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjho dHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9w b2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEA2jbiAg7Tr3oVADRLn3skurhvshgw yNJuyo0ncVgUgzCM6WwFeK9oINg9LAeo2F86Al1TyQ8PLh47ffS2n/OSJDWOTyfQ evuvpqAj0KDfy8jKcFGOyctg/w2xwd0rUqZjYn9Thp4IaE0mD429YgiZfOCmuJS5 OLkoSau7JjsCQzMD6bjThvjSLTqCAc++pKM6/eqETf291OPJ/Ccort4/1m6ABXFB dgmzLhTphoYoiy5JNxSqMYKDXbKybdLAh6f5T0moqza+amkjoJapKEdoc2vbHxpy DdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nDdHS/4xMiZtnPjhYfbWe+n0VJLc812ahDb5MX0Q9WBtvG9zNnadXjmZhjg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d9d56d7e9-d2bf-4444-b16f-c59a629a784f,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3630373031313930303030313034,CN\u003d*.opf.api.itau,OU\u003d9c721898-9ce0-50f1-bf85-05075557850b,O\u003dITAU UNIBANCO S.A.,L\u003dSAO PAULO,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "des-secure.opf.api.itau",
    "hom-secure.opf.api.itau"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2021-12-03 15:31:45 SUCCESS
CheckForClientCertificate
Found client certificate
2021-12-03 15:31:45 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2021-12-03 15:31:45 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2021-12-03 15:31:45 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk
2021-12-03 15:31:45 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
t4ZFjwVlQQNqv6HWUJ5tUx1P8O59AS71YKcO2mNXQ6J7nxyxxk
2021-12-03 15:31:45 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2021-12-03 15:31:45 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2021-12-03 15:31:45 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2021-12-03 15:31:45 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid consent:urn:conformance.oidf:AwSXbLBwDV accounts resources
expected
accounts
2021-12-03 15:31:45 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
4af490bd-24b8-4ed4-9f99-bfad0501de58
2021-12-03 15:31:45 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58",
  "content-type": "application/json; charset\u003dUTF-8"
}
2021-12-03 15:31:45 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-03T15:31:45Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "4af490bd-24b8-4ed4-9f99-bfad0501de58",
  "content-type": "application/json"
}
2021-12-03 15:31:45
ClearAccessTokenFromRequest
Condition ran but did not log anything
2021-12-03 15:31:45 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance yLJ1AScmSSEDGmg
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "4af490bd-24b8-4ed4-9f99-bfad0501de58"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2021-12-03T15:31:45Z"
  }
}
outgoing_path
accounts/v1/accounts
2021-12-03 15:31:45 FINISHED
fapi1-advanced-final-client-test-encrypted-idtoken
Test has run to completion
testmodule_result
PASSED
Test Results