Plan details

Test Plan Details

Plan Name	fapi1-advanced-final-test-plan
Variant	client_auth_type=private_key_jwt, fapi_auth_request_method=pushed, fapi_profile=openbanking_brazil, fapi_response_mode=jarm
Plan ID	eQLR26yxaDgDU https://www.certification.openid.net/plan-detail.html?public=true&plan=eQLR26yxaDgDU
Description	FAPI1-Advanced-Final, OB-BR, PAR, JARM: Keycloak test with private_key_jwt client authentication (RequestObject:PS256/IDToken:PS256)
Version	4.1.38
Started	2022-01-04T15:49:52.339565Z
Owner	115310558227229560855 https://accounts.google.com
Exported From	https://www.certification.openid.net
Exported By	115310558227229560855 https://accounts.google.com
Suite Version	4.1.38
Exported	2022-01-04 16:06:11 (UTC)

These test results were generated by the OpenID Foundation conformance suite. By themselves, they are not proof that a deployment is conformant nor that it meets the requirements for certification. For a list of certified deployments, see https://openid.net/certification/ - to be added to this list follow the certification instructions.

Test Results

Status	Result	Test Name	Test Id	Test Version
FINISHED	PASSED	fapi1-advanced-final-discovery-end-point-verification	cjXKLBtgJtbioke	4.1.38
FINISHED	WARNING	fapi1-advanced-final	h6BX67qpCPyIjlK	4.1.38
FINISHED	PASSED	fapi1-advanced-final-user-rejects-authentication	uJsAKxtiPJpEy8r	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-multiple-aud-succeeds	rjS2IX9jr7P1r94	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-authorization-request-without-state-success	EtcF0ae98Ggt0uy	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-other-scope-order-succeeds	My3L5zMnuJpj1Ny	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-response-mode-query	n5nCD8KrGUxBGVZ	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-different-nonce-inside-and-outside-request-object	YKFolAmueY8KVgf	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-registered-redirect-uri	VzZf2NSfrm2LwgM	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-long-nonce	EEGuO6GT4jj9ELL	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-long-state	6EfrMLJCKABGTr7	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-exp-fails	xTxkAE2vlrAWJyj	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-nbf-fails	jfZ4IlLSSmzmo4V	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-scope-fails	z7C5wWYNMB3aKxv	4.1.38
FINISHED	PASSED	fapi1-advanced-final-state-only-outside-request-object-not-used	XZBUdcnCo8dI1km	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-nonce-fails	8PXNJ7ElDOthXct	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-without-redirect-uri-fails	kD4tGWdeC5pFhSU	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-expired-request-object-fails	nTXdiYEV6XaM7sw	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-bad-aud-fails	8Kp256kn9noE87D	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-exp-over-60-fails	UtjfELdoaIvKqni	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-nbf-over-60-fails	XCahggOKD3tRAgr	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-signed-request-object-with-RS256-fails	6pakmY3i2FneGQU	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-signature-algorithm-is-not-none	5J1HDRCdTV8kq2c	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-request-object-with-invalid-signature-fails	7NZ1r5jmcXkJZts	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-matching-key-in-authorization-request	wP9c3gyfvFU9Ndc	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-ensure-authorization-request-without-request-object-fails	wRucW1YUx8SNwor	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-redirect-uri-in-authorization-request	mmFgvfAuRahxy2S	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-response-type-code-fails	8Vchj9NaYQnzYRX	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-id-in-token-endpoint	ndyK3IjfxCfljYZ	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-mtls-holder-of-key-required	UuLJFoKTQAThAWx	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-authorization-code-is-bound-to-client	YiQpksKsWCe6C1Q	4.1.38
FINISHED	PASSED	fapi1-advanced-final-attempt-reuse-authorisation-code-after-one-second	WUfUvU6Bf9f9fLo	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-signed-client-assertion-with-RS256-fails	BarYFAg8LZ7UJdm	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-assertion-in-token-endpoint	UPynYuCNagekJpx	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-assertion-with-exp-is-5-minutes-in-past-fails	m2YJb0PCKGmsOEe	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-assertion-with-wrong-aud-fails	ICg8mOPP6CVoQyI	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-client-assertion-with-no-sub-fails	8tfHUG9afwtlqtg	4.1.38
FINISHED	PASSED	fapi1-advanced-final-refresh-token	48YWB5RwntbAv6j	4.1.38
FINISHED	PASSED	fapi1-advanced-final-brazil-ensure-bad-payment-signature-fails	vwlmyMs8O4xMe2c	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-reuse-request_uri	bRjtZ8YFpQrNRRe	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-to-use-expired-request_uri	qEP1svBM7FQAhBz	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-test-pushed-authorization-url-as-audience-for-client-JWT-assertion	YmitgxbzGoYm10o	4.1.38
FINISHED	REVIEW	fapi1-advanced-final-par-attempt-to-use-request_uri-for-different-client	FHGUGj3SsD1h7gc	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-authorization-request-containing-request_uri-form-param	t3kGdxpB93Sx0lP	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-attempt-invalid-http-method	aEP76ghuyFaC8iZ	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-ensure-pkce-required	7vnkTVD7IlXXv2h	4.1.38
FINISHED	PASSED	fapi1-advanced-final-ensure-pkce-code-verifier-required	BycJA1zJlmm9f9T	4.1.38
FINISHED	PASSED	fapi1-advanced-final-incorrect-pkce-code-verifier-rejected	nsGkR6NtOr3l8tH	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-plain-pkce-rejected	32SsXOAVGtLM0Gh	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-pushed-authorization-url-as-audience-in-request-object	UBZkZMlUgd52g59	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-attempt-invalid-redirect_uri	yPXWfQ2FsGnCCTh	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-authorization-request-containing-request_uri	ikF4KSXwAdIm9uy	4.1.38
FINISHED	PASSED	fapi1-advanced-final-par-without-duplicate-parameters	vuuxRT7WHP2anOo	4.1.38

Status

Result

Test Name

Test Id

Test Version

FINISHED

PASSED

fapi1-advanced-final-discovery-end-point-verification

cjXKLBtgJtbioke

4.1.38

FINISHED

WARNING