Plan details

Test Plan Details

Plan Name	fapi1-advanced-final-test-plan
Variant	client_auth_type=mtls, fapi_auth_request_method=pushed, fapi_profile=openbanking_brazil, fapi_response_mode=plain_response
Plan ID	yN56Mf5gLDQ01 https://www.certification.openid.net/plan-detail.html?public=true&plan=yN56Mf5gLDQ01
Description	FAPI1-Advanced-Final, OB-BR, PAR: Keycloak test with mtls client authentication (RequestObject:PS256/IDToken:PS256)
Version	4.1.38
Started	2022-01-04T18:42:34.081903Z
Owner	115310558227229560855 https://accounts.google.com
Exported From	https://www.certification.openid.net
Exported By	115310558227229560855 https://accounts.google.com
Suite Version	4.1.38
Exported	2022-01-04 19:00:20 (UTC)

These test results were generated by the OpenID Foundation conformance suite. By themselves, they are not proof that a deployment is conformant nor that it meets the requirements for certification. For a list of certified deployments, see https://openid.net/certification/ - to be added to this list follow the certification instructions.

Test Results

Status	Result	Test Name	Test Id	Test Version
FINISHED	PASSED	fapi1-advanced-final-discovery-end-point-verification	vnngtLB2QVVdE93	4.1.38
FINISHED	WARNING	fapi1-advanced-final	Pi89CThjWStVv5n	4.1.38
FINISHED	PASSED	fapi1-advanced-final-user-rejects-authentication	sWsYUGejeU68noe	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-multiple-aud-succeeds	sq6izsP1XF3oX4w	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-authorization-request-without-state-success	p5l2q8jKUdhHiPv	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-other-scope-order-succeeds	mkKtlcimtNc5ZhO	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-response-mode-query	5rIvB12eeOrqaVq	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-different-nonce-inside-and-outside-request-object	amp3CszBqQuz3zz	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-registered-redirect-uri	brELyy4iRfH2kCX	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-long-nonce	9ft7SvZBbFkxXEX	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-long-state	NQGXgg6JrfFK60Q	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-exp-fails	2BDJUKqkZDSrLcd	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-nbf-fails	FJ5VMDPoSGP3Wz1	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-scope-fails	jpb3L4JRWeyuyCp	4.1.38
FINISHED	PASSED	fapi1-advanced-final-state-only-outside-request-object-not-used	zaMsmSCISvuQK1N	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-nonce-fails	Xthxfe3xY7dQqoi	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-redirect-uri-fails	D4YrtQe580kcOb7	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-expired-request-object-fails	Y4YTNiLqqgq1i85	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-bad-aud-fails	xlrOzLJPcDbxqMr	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-exp-over-60-fails	gYPKYRuwuRhUHxH	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-nbf-over-60-fails	i6iBwLmxvcXOzkO	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-signed-request-object-with-RS256-fails	8yLFdhsMVDr0kHV	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-signature-algorithm-is-not-none	pjcdzBZ7ATQBUhz	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-invalid-signature-fails	ZG0o53s5rrx0r7R	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-matching-key-in-authorization-request	iMhCroBxrp9zRCi	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-ensure-authorization-request-without-request-object-fails	Q8BvYoozbKIg6ja	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-redirect-uri-in-authorization-request	ueSvGcrUP3sDqio	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-response-type-code-fails	B53PV8pltDyAxPF	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-id-in-token-endpoint	RJu6QoaDkYOjCRI	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-mtls-holder-of-key-required	ciuBGM6Ki5pcd7o	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-authorization-code-is-bound-to-client	UIi5IePAya8UURU	4.1.38
FINISHED	PASSED	fapi1-advanced-final-attempt-reuse-authorisation-code-after-one-second	pPKhptCRTTis1qy	4.1.38
FINISHED	PASSED	fapi1-advanced-final-refresh-token	zWJl3t1jT6UDyzX	4.1.38
FINISHED	PASSED	fapi1-advanced-final-brazil-ensure-bad-payment-signature-fails	3Z4qz0LQiAfTgVV	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-reuse-request_uri	W42fNBWmEX3fjxI	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-to-use-expired-request_uri	civ1Oz7R7jLpW9d	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-to-use-request_uri-for-different-client	gbzRPPS3MM08cDM	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-authorization-request-containing-request_uri-form-param	Favvgu2iVQdRhT7	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-attempt-invalid-http-method	VPfhU24pWK2bJ8u	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-ensure-pkce-required	M1iF6gTAx1C3Pvf	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-pkce-code-verifier-required	gABRwnpFr1kEvCg	4.1.38
FINISHED	PASSED	fapi1-advanced-final-incorrect-pkce-code-verifier-rejected	k8ALGdKZUvUjnGy	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-plain-pkce-rejected	G9c4rTOMahRHExF	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-pushed-authorization-url-as-audience-in-request-object	GrQ9EcTTtNoKxMK	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-attempt-invalid-redirect_uri	uFIZEfXP1gYIcUU	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-authorization-request-containing-request_uri	3b9m73EgxIcszcQ	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-without-duplicate-parameters	NEdXLKVp1EW0uzB	4.1.38

Status

Result

Test Name

Test Id

Test Version

FINISHED

PASSED

fapi1-advanced-final-discovery-end-point-verification

vnngtLB2QVVdE93

4.1.38

FINISHED

WARNING