Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-01-26 11:39:33 INFO
TEST-RUNNER
Test instance mq673sUYdo1tyFG created
baseUrl
https://www.certification.openid.net/test/a/upp
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
upp
description
UP.P - Recepção de dados
planId
z5vVhu9ODSDbP
config
{
  "alias": "upp",
  "description": "UP.P - Recepção de dados",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "upp-bank",
    "redirect_uri": "https://www.upp.com.br/callback",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "z53jstIY3rvuuVH9i-f3yBpaCU16Tf5gptz_iY2t4nCzsd3oGXgP9nKNGvT8SZuU45nDWsqBAe6wCwkDP6O0nl24cLMQYwowryhUSBh7kdw7icjWbF_TYdG13LbwblKVkpO7kcDx-Ujrq4bLBtx-z-99EQRa4eXq2OmTGtgW18MqQ2V3rLWC8SpxF3DfGVXoL8L4z4YvkpPT0Wevdelflte8-9tIy3tZun95vXX7ZTc5YeHIuzCB_VohPI4LVLmUcXymWUUDceOggLzvCi9PGK2SET-Bu0Nk2cw0BMnZEaWM6bZ5XVryaDvQtyK89d98RRUQimvCA2ZFtr7MlO7aaQ",
          "e": "AQAB",
          "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "rpy9RGoXXnwg72mtJtC25i8XnPlxZiUVR9Ss2r4wSBfxDGH2S2fu5qnB8W-R7zpKQfCEyNfWmnZpYIcIsY3HdRd_5POhGwaTRwXHpHKtpjZw-s6oImS66ENfbmafa8zNTYw39mue5H7xQIv1eByZMfzjdY13rwk121w8WbAQIAnP7TqYfj9in8l8wnR3NyHDfYmylo9NZdcim8ShXTBszCmSXK_8pRvT1wRES1R914Nhn1nx-2kSI11j5qUM1zESiRsqLlTU0us-5iK9UMlEl7XaPQ5-hscqag9Jp5vME67komisSAVjYgEeONsE-tTz68Hel29LFMRwmLDWntd6WQ",
          "e": "AQAB",
          "kid": "24c73a6a0cfd3277da5e3e83a44d4b2be60adc19d62aae14725e621453cb39e3"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "upp-bank-two",
    "redirect_uri": "https://www.upp.com.br/callback",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\n0KmKWino3dfNqtjaCv/5K4GQe/3OOktsjyT6OAjxE/nGF+8\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "7pqFiGchP3a61yP2IayP6hywX0-FKDz-JPCLz5eItq49_0YaIeVbhdHJe9B9cjuoyQ8uB8vNd6wii6dc4TMVbOWAo0nrZymAP5Cfp6zGOk1uSVyEOuDBUDRFlJEEJtNREknIX9lTou4-EtHu1o8gFFAJvKa22tMtUrC8A_jQNcdc6id-NNgZ3gL3pkUAobwax3ImOvhjT7TfZDLySANgww2OdOzkiVTq_abymxmSjxRXpGxJv_5Yc9Kltaj6a9_yqsbq8RvJImYGHv24p08hnkq5KvOXaqiFzBxJBrYf4_LyCEShFF9wrCoClUkhSRhMoNbZfln_oLAnFZ9JxQr-pQ",
          "e": "AQAB",
          "kid": "3e274b78e9b7779a570067ec0318234f28d5d921512e9f9500714a5915aa286e"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "rJ82cyRXhegVp9JJn9KX41J-U6j1keOY94B4geY81D0A5gQTovHUdkkk9lX9iQ-4Y12uDOTEhOBkNJTQZp_YoT1P8GfTgCBNiAM1HWN8RYIu8rJBaqfwncbuk0K7U6wAuYLGswnMDt2LoRIE4agtSMBH_8SstCbRhjmz29Nm349LZCN_KWWyKpOrl60_pLUVcUyKtzIxUdbpSR_xYZtLoGLud0TBucMeVgJTBuj4ZNRf49NfXscfY_yI1VK273oyIeyAZYIINxVqCY20CbUGup5T7gTvyMosoe1vXgEkYEBpmfSbEZ5ksaCYQ_i_vn9lJsqW5onvErzQTe1RvF9tWQ",
          "e": "AQAB",
          "kid": "8d22d327b8d49291ad3556dca6f69f79775bced7b896a3075fb4be7a49ebd06f"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-refresh-token-test
2022-01-26 11:39:33 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/upp/
discoveryUrl
https://www.certification.openid.net/test/a/upp/.well-known/openid-configuration
2022-01-26 11:39:33 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-01-26 11:39:33 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-26 11:39:33
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-01-26 11:39:33
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-01-26 11:39:33
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-01-26 11:39:33
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-01-26 11:39:33
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-01-26 11:39:33
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/upp/par
2022-01-26 11:39:33
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-01-26 11:39:33 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-01-26 11:39:33 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-01-26 11:39:33 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-01-26 11:39:33 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-01-26 11:39:33 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-01-26 11:39:33 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
upp-bank
redirect_uri
https://www.upp.com.br/callback
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "z53jstIY3rvuuVH9i-f3yBpaCU16Tf5gptz_iY2t4nCzsd3oGXgP9nKNGvT8SZuU45nDWsqBAe6wCwkDP6O0nl24cLMQYwowryhUSBh7kdw7icjWbF_TYdG13LbwblKVkpO7kcDx-Ujrq4bLBtx-z-99EQRa4eXq2OmTGtgW18MqQ2V3rLWC8SpxF3DfGVXoL8L4z4YvkpPT0Wevdelflte8-9tIy3tZun95vXX7ZTc5YeHIuzCB_VohPI4LVLmUcXymWUUDceOggLzvCi9PGK2SET-Bu0Nk2cw0BMnZEaWM6bZ5XVryaDvQtyK89d98RRUQimvCA2ZFtr7MlO7aaQ",
      "e": "AQAB",
      "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rpy9RGoXXnwg72mtJtC25i8XnPlxZiUVR9Ss2r4wSBfxDGH2S2fu5qnB8W-R7zpKQfCEyNfWmnZpYIcIsY3HdRd_5POhGwaTRwXHpHKtpjZw-s6oImS66ENfbmafa8zNTYw39mue5H7xQIv1eByZMfzjdY13rwk121w8WbAQIAnP7TqYfj9in8l8wnR3NyHDfYmylo9NZdcim8ShXTBszCmSXK_8pRvT1wRES1R914Nhn1nx-2kSI11j5qUM1zESiRsqLlTU0us-5iK9UMlEl7XaPQ5-hscqag9Jp5vME67komisSAVjYgEeONsE-tTz68Hel29LFMRwmLDWntd6WQ",
      "e": "AQAB",
      "kid": "24c73a6a0cfd3277da5e3e83a44d4b2be60adc19d62aae14725e621453cb39e3"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----
MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw
MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD
o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx
MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv
bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg
T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB
ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq
hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku
l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97
ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK
j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv
C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G
+cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC
zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP
Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE
QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu
a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z
YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV
BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK
BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw
ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg
Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg
cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj
ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw
dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0
aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy
ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw
cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw
DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj
ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow
o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese
7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq
eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit
paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4=
-----END CERTIFICATE-----
2022-01-26 11:39:33 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-26 11:39:33 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "z53jstIY3rvuuVH9i-f3yBpaCU16Tf5gptz_iY2t4nCzsd3oGXgP9nKNGvT8SZuU45nDWsqBAe6wCwkDP6O0nl24cLMQYwowryhUSBh7kdw7icjWbF_TYdG13LbwblKVkpO7kcDx-Ujrq4bLBtx-z-99EQRa4eXq2OmTGtgW18MqQ2V3rLWC8SpxF3DfGVXoL8L4z4YvkpPT0Wevdelflte8-9tIy3tZun95vXX7ZTc5YeHIuzCB_VohPI4LVLmUcXymWUUDceOggLzvCi9PGK2SET-Bu0Nk2cw0BMnZEaWM6bZ5XVryaDvQtyK89d98RRUQimvCA2ZFtr7MlO7aaQ",
      "e": "AQAB",
      "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rpy9RGoXXnwg72mtJtC25i8XnPlxZiUVR9Ss2r4wSBfxDGH2S2fu5qnB8W-R7zpKQfCEyNfWmnZpYIcIsY3HdRd_5POhGwaTRwXHpHKtpjZw-s6oImS66ENfbmafa8zNTYw39mue5H7xQIv1eByZMfzjdY13rwk121w8WbAQIAnP7TqYfj9in8l8wnR3NyHDfYmylo9NZdcim8ShXTBszCmSXK_8pRvT1wRES1R914Nhn1nx-2kSI11j5qUM1zESiRsqLlTU0us-5iK9UMlEl7XaPQ5-hscqag9Jp5vME67komisSAVjYgEeONsE-tTz68Hel29LFMRwmLDWntd6WQ",
      "e": "AQAB",
      "kid": "24c73a6a0cfd3277da5e3e83a44d4b2be60adc19d62aae14725e621453cb39e3"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
      "alg": "PS256",
      "n": "z53jstIY3rvuuVH9i-f3yBpaCU16Tf5gptz_iY2t4nCzsd3oGXgP9nKNGvT8SZuU45nDWsqBAe6wCwkDP6O0nl24cLMQYwowryhUSBh7kdw7icjWbF_TYdG13LbwblKVkpO7kcDx-Ujrq4bLBtx-z-99EQRa4eXq2OmTGtgW18MqQ2V3rLWC8SpxF3DfGVXoL8L4z4YvkpPT0Wevdelflte8-9tIy3tZun95vXX7ZTc5YeHIuzCB_VohPI4LVLmUcXymWUUDceOggLzvCi9PGK2SET-Bu0Nk2cw0BMnZEaWM6bZ5XVryaDvQtyK89d98RRUQimvCA2ZFtr7MlO7aaQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "24c73a6a0cfd3277da5e3e83a44d4b2be60adc19d62aae14725e621453cb39e3",
      "alg": "RSA-OAEP",
      "n": "rpy9RGoXXnwg72mtJtC25i8XnPlxZiUVR9Ss2r4wSBfxDGH2S2fu5qnB8W-R7zpKQfCEyNfWmnZpYIcIsY3HdRd_5POhGwaTRwXHpHKtpjZw-s6oImS66ENfbmafa8zNTYw39mue5H7xQIv1eByZMfzjdY13rwk121w8WbAQIAnP7TqYfj9in8l8wnR3NyHDfYmylo9NZdcim8ShXTBszCmSXK_8pRvT1wRES1R914Nhn1nx-2kSI11j5qUM1zESiRsqLlTU0us-5iK9UMlEl7XaPQ5-hscqag9Jp5vME67komisSAVjYgEeONsE-tTz68Hel29LFMRwmLDWntd6WQ"
    }
  ]
}
2022-01-26 11:39:33 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-01-26 11:39:33 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-01-26 11:39:33 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "z53jstIY3rvuuVH9i-f3yBpaCU16Tf5gptz_iY2t4nCzsd3oGXgP9nKNGvT8SZuU45nDWsqBAe6wCwkDP6O0nl24cLMQYwowryhUSBh7kdw7icjWbF_TYdG13LbwblKVkpO7kcDx-Ujrq4bLBtx-z-99EQRa4eXq2OmTGtgW18MqQ2V3rLWC8SpxF3DfGVXoL8L4z4YvkpPT0Wevdelflte8-9tIy3tZun95vXX7ZTc5YeHIuzCB_VohPI4LVLmUcXymWUUDceOggLzvCi9PGK2SET-Bu0Nk2cw0BMnZEaWM6bZ5XVryaDvQtyK89d98RRUQimvCA2ZFtr7MlO7aaQ",
      "e": "AQAB",
      "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rpy9RGoXXnwg72mtJtC25i8XnPlxZiUVR9Ss2r4wSBfxDGH2S2fu5qnB8W-R7zpKQfCEyNfWmnZpYIcIsY3HdRd_5POhGwaTRwXHpHKtpjZw-s6oImS66ENfbmafa8zNTYw39mue5H7xQIv1eByZMfzjdY13rwk121w8WbAQIAnP7TqYfj9in8l8wnR3NyHDfYmylo9NZdcim8ShXTBszCmSXK_8pRvT1wRES1R914Nhn1nx-2kSI11j5qUM1zESiRsqLlTU0us-5iK9UMlEl7XaPQ5-hscqag9Jp5vME67komisSAVjYgEeONsE-tTz68Hel29LFMRwmLDWntd6WQ",
      "e": "AQAB",
      "kid": "24c73a6a0cfd3277da5e3e83a44d4b2be60adc19d62aae14725e621453cb39e3"
    }
  ]
}
Verify configuration of second client
2022-01-26 11:39:33 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
upp-bank-two
redirect_uri
https://www.upp.com.br/callback
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "7pqFiGchP3a61yP2IayP6hywX0-FKDz-JPCLz5eItq49_0YaIeVbhdHJe9B9cjuoyQ8uB8vNd6wii6dc4TMVbOWAo0nrZymAP5Cfp6zGOk1uSVyEOuDBUDRFlJEEJtNREknIX9lTou4-EtHu1o8gFFAJvKa22tMtUrC8A_jQNcdc6id-NNgZ3gL3pkUAobwax3ImOvhjT7TfZDLySANgww2OdOzkiVTq_abymxmSjxRXpGxJv_5Yc9Kltaj6a9_yqsbq8RvJImYGHv24p08hnkq5KvOXaqiFzBxJBrYf4_LyCEShFF9wrCoClUkhSRhMoNbZfln_oLAnFZ9JxQr-pQ",
      "e": "AQAB",
      "kid": "3e274b78e9b7779a570067ec0318234f28d5d921512e9f9500714a5915aa286e"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rJ82cyRXhegVp9JJn9KX41J-U6j1keOY94B4geY81D0A5gQTovHUdkkk9lX9iQ-4Y12uDOTEhOBkNJTQZp_YoT1P8GfTgCBNiAM1HWN8RYIu8rJBaqfwncbuk0K7U6wAuYLGswnMDt2LoRIE4agtSMBH_8SstCbRhjmz29Nm349LZCN_KWWyKpOrl60_pLUVcUyKtzIxUdbpSR_xYZtLoGLud0TBucMeVgJTBuj4ZNRf49NfXscfY_yI1VK273oyIeyAZYIINxVqCY20CbUGup5T7gTvyMosoe1vXgEkYEBpmfSbEZ5ksaCYQ_i_vn9lJsqW5onvErzQTe1RvF9tWQ",
      "e": "AQAB",
      "kid": "8d22d327b8d49291ad3556dca6f69f79775bced7b896a3075fb4be7a49ebd06f"
    }
  ]
}
2022-01-26 11:39:33 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-01-26 11:39:33 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "7pqFiGchP3a61yP2IayP6hywX0-FKDz-JPCLz5eItq49_0YaIeVbhdHJe9B9cjuoyQ8uB8vNd6wii6dc4TMVbOWAo0nrZymAP5Cfp6zGOk1uSVyEOuDBUDRFlJEEJtNREknIX9lTou4-EtHu1o8gFFAJvKa22tMtUrC8A_jQNcdc6id-NNgZ3gL3pkUAobwax3ImOvhjT7TfZDLySANgww2OdOzkiVTq_abymxmSjxRXpGxJv_5Yc9Kltaj6a9_yqsbq8RvJImYGHv24p08hnkq5KvOXaqiFzBxJBrYf4_LyCEShFF9wrCoClUkhSRhMoNbZfln_oLAnFZ9JxQr-pQ",
      "e": "AQAB",
      "kid": "3e274b78e9b7779a570067ec0318234f28d5d921512e9f9500714a5915aa286e"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rJ82cyRXhegVp9JJn9KX41J-U6j1keOY94B4geY81D0A5gQTovHUdkkk9lX9iQ-4Y12uDOTEhOBkNJTQZp_YoT1P8GfTgCBNiAM1HWN8RYIu8rJBaqfwncbuk0K7U6wAuYLGswnMDt2LoRIE4agtSMBH_8SstCbRhjmz29Nm349LZCN_KWWyKpOrl60_pLUVcUyKtzIxUdbpSR_xYZtLoGLud0TBucMeVgJTBuj4ZNRf49NfXscfY_yI1VK273oyIeyAZYIINxVqCY20CbUGup5T7gTvyMosoe1vXgEkYEBpmfSbEZ5ksaCYQ_i_vn9lJsqW5onvErzQTe1RvF9tWQ",
      "e": "AQAB",
      "kid": "8d22d327b8d49291ad3556dca6f69f79775bced7b896a3075fb4be7a49ebd06f"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "3e274b78e9b7779a570067ec0318234f28d5d921512e9f9500714a5915aa286e",
      "alg": "PS256",
      "n": "7pqFiGchP3a61yP2IayP6hywX0-FKDz-JPCLz5eItq49_0YaIeVbhdHJe9B9cjuoyQ8uB8vNd6wii6dc4TMVbOWAo0nrZymAP5Cfp6zGOk1uSVyEOuDBUDRFlJEEJtNREknIX9lTou4-EtHu1o8gFFAJvKa22tMtUrC8A_jQNcdc6id-NNgZ3gL3pkUAobwax3ImOvhjT7TfZDLySANgww2OdOzkiVTq_abymxmSjxRXpGxJv_5Yc9Kltaj6a9_yqsbq8RvJImYGHv24p08hnkq5KvOXaqiFzBxJBrYf4_LyCEShFF9wrCoClUkhSRhMoNbZfln_oLAnFZ9JxQr-pQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "8d22d327b8d49291ad3556dca6f69f79775bced7b896a3075fb4be7a49ebd06f",
      "alg": "RSA-OAEP",
      "n": "rJ82cyRXhegVp9JJn9KX41J-U6j1keOY94B4geY81D0A5gQTovHUdkkk9lX9iQ-4Y12uDOTEhOBkNJTQZp_YoT1P8GfTgCBNiAM1HWN8RYIu8rJBaqfwncbuk0K7U6wAuYLGswnMDt2LoRIE4agtSMBH_8SstCbRhjmz29Nm349LZCN_KWWyKpOrl60_pLUVcUyKtzIxUdbpSR_xYZtLoGLud0TBucMeVgJTBuj4ZNRf49NfXscfY_yI1VK273oyIeyAZYIINxVqCY20CbUGup5T7gTvyMosoe1vXgEkYEBpmfSbEZ5ksaCYQ_i_vn9lJsqW5onvErzQTe1RvF9tWQ"
    }
  ]
}
2022-01-26 11:39:33 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-01-26 11:39:33 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-01-26 11:39:33 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "7pqFiGchP3a61yP2IayP6hywX0-FKDz-JPCLz5eItq49_0YaIeVbhdHJe9B9cjuoyQ8uB8vNd6wii6dc4TMVbOWAo0nrZymAP5Cfp6zGOk1uSVyEOuDBUDRFlJEEJtNREknIX9lTou4-EtHu1o8gFFAJvKa22tMtUrC8A_jQNcdc6id-NNgZ3gL3pkUAobwax3ImOvhjT7TfZDLySANgww2OdOzkiVTq_abymxmSjxRXpGxJv_5Yc9Kltaj6a9_yqsbq8RvJImYGHv24p08hnkq5KvOXaqiFzBxJBrYf4_LyCEShFF9wrCoClUkhSRhMoNbZfln_oLAnFZ9JxQr-pQ",
      "e": "AQAB",
      "kid": "3e274b78e9b7779a570067ec0318234f28d5d921512e9f9500714a5915aa286e"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "rJ82cyRXhegVp9JJn9KX41J-U6j1keOY94B4geY81D0A5gQTovHUdkkk9lX9iQ-4Y12uDOTEhOBkNJTQZp_YoT1P8GfTgCBNiAM1HWN8RYIu8rJBaqfwncbuk0K7U6wAuYLGswnMDt2LoRIE4agtSMBH_8SstCbRhjmz29Nm349LZCN_KWWyKpOrl60_pLUVcUyKtzIxUdbpSR_xYZtLoGLud0TBucMeVgJTBuj4ZNRf49NfXscfY_yI1VK273oyIeyAZYIINxVqCY20CbUGup5T7gTvyMosoe1vXgEkYEBpmfSbEZ5ksaCYQ_i_vn9lJsqW5onvErzQTe1RvF9tWQ",
      "e": "AQAB",
      "kid": "8d22d327b8d49291ad3556dca6f69f79775bced7b896a3075fb4be7a49ebd06f"
    }
  ]
}
2022-01-26 11:39:33
fapi1-advanced-final-client-refresh-token-test
Setup Done
2022-01-26 11:39:34 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:34 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:34 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/upp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-26 11:39:34 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1042",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "consents",
  "client_id": "upp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzQsImV4cCI6MTY0MzE5NzIzNCwianRpIjoiakZtZTNJMDZHTjFmN0R2SGRZTVF5UERZZ21NMEwtNjFicFdhR3MtYk5rRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.RYfJLr0tfRMP6ENwxdT-HcDjqBx4rqVm314Q7_13r-TrYRcwrxWLlAhZ_4e3nppNRjSo07CdYc7sqpYr-vz4IhWQODZoSvHY88mMuP3A_5EPjL3Jpl8uMe-shN3-NawecfvHBuosQ5QywoKXYwugLtUTbS0ggHoIZmEgMHk8QaC1G4ePttuEYRMC3A_qZR4GIJfww94i-bK5Q-O50881c6RcNFrM-AXxsCGpuusiiiQI1diFTX54EplPhjjA1qD_o1KfW3ZonxfsCunjIhW-eOhwwnN1o6NLi4JDsa3hNChM_VS76uxTElcS9aAhC4ZCT67z3aO8JJtdAKPpzfOXkA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=consents&client_id=upp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzQsImV4cCI6MTY0MzE5NzIzNCwianRpIjoiakZtZTNJMDZHTjFmN0R2SGRZTVF5UERZZ21NMEwtNjFicFdhR3MtYk5rRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.RYfJLr0tfRMP6ENwxdT-HcDjqBx4rqVm314Q7_13r-TrYRcwrxWLlAhZ_4e3nppNRjSo07CdYc7sqpYr-vz4IhWQODZoSvHY88mMuP3A_5EPjL3Jpl8uMe-shN3-NawecfvHBuosQ5QywoKXYwugLtUTbS0ggHoIZmEgMHk8QaC1G4ePttuEYRMC3A_qZR4GIJfww94i-bK5Q-O50881c6RcNFrM-AXxsCGpuusiiiQI1diFTX54EplPhjjA1qD_o1KfW3ZonxfsCunjIhW-eOhwwnN1o6NLi4JDsa3hNChM_VS76uxTElcS9aAhC4ZCT67z3aO8JJtdAKPpzfOXkA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-01-26 11:39:34 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-01-26 11:39:34 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw\nMjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx\nMDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv\nbS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg\nT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB\nARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq\nhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku\nl2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97\nULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK\nj9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv\nC7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G\n+cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC\nzjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP\nY3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE\nQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu\na2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z\nYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV\nBgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK\nBggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw\nggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg\nZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg\ncGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj\nZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw\ndCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0\naGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy\nZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw\ncy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw\nDQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj\nytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow\no5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese\n7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq\neE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:34 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:34 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:34 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzQsImV4cCI6MTY0MzE5NzIzNCwianRpIjoiakZtZTNJMDZHTjFmN0R2SGRZTVF5UERZZ21NMEwtNjFicFdhR3MtYk5rRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.RYfJLr0tfRMP6ENwxdT-HcDjqBx4rqVm314Q7_13r-TrYRcwrxWLlAhZ_4e3nppNRjSo07CdYc7sqpYr-vz4IhWQODZoSvHY88mMuP3A_5EPjL3Jpl8uMe-shN3-NawecfvHBuosQ5QywoKXYwugLtUTbS0ggHoIZmEgMHk8QaC1G4ePttuEYRMC3A_qZR4GIJfww94i-bK5Q-O50881c6RcNFrM-AXxsCGpuusiiiQI1diFTX54EplPhjjA1qD_o1KfW3ZonxfsCunjIhW-eOhwwnN1o6NLi4JDsa3hNChM_VS76uxTElcS9aAhC4ZCT67z3aO8JJtdAKPpzfOXkA",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "upp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/upp/",
      "https://www.certification.openid.net/test/a/upp/token",
      "https://www.certification.openid.net/test-mtls/a/upp/token"
    ],
    "iss": "upp-bank",
    "exp": 1643197234,
    "iat": 1643197174,
    "jti": "jFme3I06GN1f7DvHdYMQyPDYgmM0L-61bpWaGs-bNkE"
  }
}
2022-01-26 11:39:34
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-01-26 11:39:34 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzQsImV4cCI6MTY0MzE5NzIzNCwianRpIjoiakZtZTNJMDZHTjFmN0R2SGRZTVF5UERZZ21NMEwtNjFicFdhR3MtYk5rRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.RYfJLr0tfRMP6ENwxdT-HcDjqBx4rqVm314Q7_13r-TrYRcwrxWLlAhZ_4e3nppNRjSo07CdYc7sqpYr-vz4IhWQODZoSvHY88mMuP3A_5EPjL3Jpl8uMe-shN3-NawecfvHBuosQ5QywoKXYwugLtUTbS0ggHoIZmEgMHk8QaC1G4ePttuEYRMC3A_qZR4GIJfww94i-bK5Q-O50881c6RcNFrM-AXxsCGpuusiiiQI1diFTX54EplPhjjA1qD_o1KfW3ZonxfsCunjIhW-eOhwwnN1o6NLi4JDsa3hNChM_VS76uxTElcS9aAhC4ZCT67z3aO8JJtdAKPpzfOXkA
2022-01-26 11:39:34 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-01-26 11:39:34 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-01-26 11:39:34 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2022-01-26 11:39:34 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg
2022-01-26 11:39:34 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg
token_type
Bearer
2022-01-26 11:39:34
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-01-26 11:39:34 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg",
  "token_type": "Bearer"
}
outgoing_path
token
2022-01-26 11:39:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/json",
  "authorization": "Bearer yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg",
  "user-agent": "axios/0.24.0",
  "content-length": "1174",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "LOANS_READ",
      "LOANS_WARRANTIES_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_PAYMENTS_READ",
      "FINANCINGS_READ",
      "FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "FINANCINGS_PAYMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-31T00:00:00Z",
    "transactionFromDateTime": "2021-08-10T00:00:00Z",
    "transactionToDateTime": "2021-12-31T23:59:59Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"57784518064","rel":"CPF"}},"permissions":["ACCOUNTS_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ","RESOURCES_READ"],"expirationDateTime":"2021-12-31T00:00:00Z","transactionFromDateTime":"2021-08-10T00:00:00Z","transactionToDateTime":"2021-12-31T23:59:59Z"}}
2022-01-26 11:39:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-01-26 11:39:35 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:35 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:35 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:35 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-01-26 11:39:35 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-01-26 11:39:35 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg
2022-01-26 11:39:35 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
yxsBbLpDH0dYhb4oi6iwVhZZisSrNlQyzDhEOXjurqpDPV3bLg
2022-01-26 11:39:35 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-01-26 11:39:35 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-01-26 11:39:35 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-01-26 11:39:35 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2022-01-26 11:39:35
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2022-01-26 11:39:35 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
d6e2e8ba-15a6-4fd4-b2f9-2259090a7785
2022-01-26 11:39:35 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "d6e2e8ba-15a6-4fd4-b2f9-2259090a7785"
}
consentId
urn:conformance.oidf:pbpuoDmSrf
consent_response
{
  "data": {
    "consentId": "urn:conformance.oidf:pbpuoDmSrf",
    "creationDateTime": "2022-01-26T11:39:35Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-01-26T11:39:35Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-26T13:39:35Z",
    "transactionFromDateTime": "2022-01-26T11:34:35Z",
    "transactionToDateTime": "2022-01-26T13:39:35Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/uppconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-26T11:39:35Z"
  }
}
2022-01-26 11:39:35
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-01-26 11:39:35 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d6e2e8ba-15a6-4fd4-b2f9-2259090a7785"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance.oidf:pbpuoDmSrf",
    "creationDateTime": "2022-01-26T11:39:35Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-01-26T11:39:35Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-26T13:39:35Z",
    "transactionFromDateTime": "2022-01-26T11:34:35Z",
    "transactionToDateTime": "2022-01-26T13:39:35Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/uppconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-26T11:39:35Z"
  }
}
outgoing_path
consents/v1/consents
2022-01-26 11:39:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:35 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-01-26 11:39:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "3408",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.j5id3JpPcrzOoH0BW1MeICVnRC2uP1LawnxbNEokfKMHiP1DlJLnnr1e1gBdBGrc4NVpqzVnNnCTC3GPKolnB1t8suzQevUdBEDynCIzHSqi_RBC93HftU48nYUb-o2WwMdFpR-e9TiKBP4JWRTwY0_7FL3JiwD927ETzivjRIBy9M1xawMnZpswTOHw3VWIMnYSkCMl39Qji95gXEQc02gP9_735vD5fQ7YKWOfxkWrE-QngHPeiLCboyJeaQboRK6f6f5mjyA9sLJWEuo3dOYodi3l9aP3vWZ91QZIIAURW65KwYQ5gfW58PDOF02SIB-Qq3Y5uPC4C0yovXRvNA.umioKfDvfkQ-aBJ1.bzp5fnE2XKWpXDzHIZmJp1Tz1OJasoqzw0oF266_mw_4HCb0GvOBtCDOorW6Vohv4GX5rSEvaXu8iTwR3yiPmQEaTfRcj93EfPCE_RFi1OXY-SjaSXt7z0GSq34BltGeD2Abs-2YFxeGZgfH5r6nv0pFUf37t557CKJxX6ilNW0DThcLXZXK-PyOaSb5bWZOph3kjTZfH9qtrnM-fdmhoA0KsudAYFffvQlt7Y3CPdk3nJjwpxV2rMV6ebVLxjqaqLc6TE2DptUa5nlRXgDvhI7Tmv5epQl6R44LTc5NzkvjcgPFVMOXIQuHPgbBameaWiVW5XAXX8TbYhAgemgZ1W3wmUQoQMZGEkUPWZRgDuruvzPfqreA8nk151dKYwfNXejwi1Tihza-MQdMR7ST_YCTOiVc0VF6cxuRY00CkUvIyIBP-ty_8XQyVzgNMltvgZCWaTHKUtIl6PwkzzuxhBE6G18U7Jqj41JCSvYeAizqx26rbv7QKFqgzq6bdUx0C4PCqfDcyMsbchbMXc3zWlSfA0GDMY5hP3TVX6kXAjnCW0dMjUM56gESyENBrxPNwXipM0iXeMLcSmunL5exr13uijtukvpl3ttWZwj2Y4TYgWaL1uYz1tNzt_qIH5Ly2-n28TgydkCY1Pl5AI1yXvP83_O5yYkppTwYUP6W0YI0n9sNDQveLDjb-DV2hTI54Ce6auQhhLYRjAct_nlKAbveGM3h8kI3QZrolS2353bZlUX6tJAmE0bS4h4xH8hgN5772RmJvtVdrx62F4p5qkNDG3u7krVVSyhiOFoqBaXfyHebVmHJCi3O70-1piMg210MzxLhaNs6lFJLL4ILgvK5RAoJn0J_VAKT8p9hYXzjZVvahLcgTjxs5KjR48EN4mIvwGd9lXvhxrq39kuMyNgM8IzTLTjOcm5rg4eY-V4I-Xu5JqDonCjkqTsN35L0Vd1di5RUqbMc-RiPIBuKU60gJNcZ8RUsl6QLz2Dp_5-pCe_u9hktqYPWMoNhgONzQSWgZRADbBangB-kOoQdZxiBVMpoAiSEEbJhSgLKbVK_aGW85TTk_CMkY-RmdSqLQDopVdzgv8LE9qxXaPSyeQX-41K0q9nNR7xZ6hb5romnso8mmZ3L2RaRiRu1bebWP-WNzX6x_o2H_U16O-N00jctTYtwyXprAdDpa-tORBuDfkPxcn836fb7bE4_0kgbQs41JOJ42iWEn68rctydE0oiTCPH8joTRDIfpvMbpSezAoilUYLUGsxG-CJsM5k8CIYxvWbA310-oXuGbzfpG9H_vUfibaNLGOANEIKSS_Q86evvs8IZWpFTdqivudXhXk9a19ZiRG8wJT4dm7CC1U6X5tBCgVGHXN2-3_Etx7pRZc8wx7dnhPzyWuSa3QaVR7oX6Z0ME9JKNwtbBUfjygWcGY5ILREI2OSSAUqnJDzuDj7DglbhsHgfAqxF1Pp_WF6mi8l1LWOeYYG5j97kf8Gh0FUgZzif3bRsfDRFzWfQeiG73DoL4G6cuxaRyBgrYTYmr8lFMWMdoNzI6k6aK20z1Zlxh3aqBhf3B60I6hXF-7DcszKylL5TJM9Jr3ZG4Rq4t5JJPblHuSPHCs2FSi9HIqCprTjNSLL16LEO0iTva_kkIJDagarLpONePAe6lKF7gQSpYZyMswPvU0UzTUXMOQbxIrDl_xkFTSGj4rTklfaOib77AesuoOEPlqpIVwapcutEws7f5kiwhj_Qqb4y7nhXatksEMhz6ISZXf1lKhxHxNrcd2Xi1gcMKnuf8NO80CfMlwol0l5k1AjwghQskBUh1Qqy35L8OeHFkW6F9kAIBgAnIq_OKWjyzU-qt6T4B9lCVCduJaL9Yf4.pZUgakiLDlhRmS6biwDTvA",
  "client_id": "upp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzUsImV4cCI6MTY0MzE5NzIzNSwianRpIjoiZWNyUkdvOVVvTmNvclY3WXFsSmV6SlIwV0JxQXJVWEV1ZG5jTVM0ckVXRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.snXnu8HlYdVP2CdBNb5fFCgcYOHvWUAKDDx5fL2NDIvFRhC5MZqoPqiNHfJ6acY2oeIZjAH4yiZVdSTUmGBONtDXrgramz7NptpCV90_w_k7JNULjhidEV1l7ZAcjfEE9Sa1f5zh2Ly35xhe1uyUami-IHOkw40e6qR5dOZInMOP6z7nvYV9ztQBOGIG2-wsInAc6Go1w0goz3ha6mmA3u_nRR14ImNnqDS5IW4WXkNNi5uj_VcPtxI802OLMeMY_NrkHkwASSgQKb3-WyVMB6NFtLfUeUMZmCFEq2FFaxTw-ecgQqkeRPJRO_EcKDfooC4ifUCPbXtd2kh0tstXJA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.j5id3JpPcrzOoH0BW1MeICVnRC2uP1LawnxbNEokfKMHiP1DlJLnnr1e1gBdBGrc4NVpqzVnNnCTC3GPKolnB1t8suzQevUdBEDynCIzHSqi_RBC93HftU48nYUb-o2WwMdFpR-e9TiKBP4JWRTwY0_7FL3JiwD927ETzivjRIBy9M1xawMnZpswTOHw3VWIMnYSkCMl39Qji95gXEQc02gP9_735vD5fQ7YKWOfxkWrE-QngHPeiLCboyJeaQboRK6f6f5mjyA9sLJWEuo3dOYodi3l9aP3vWZ91QZIIAURW65KwYQ5gfW58PDOF02SIB-Qq3Y5uPC4C0yovXRvNA.umioKfDvfkQ-aBJ1.bzp5fnE2XKWpXDzHIZmJp1Tz1OJasoqzw0oF266_mw_4HCb0GvOBtCDOorW6Vohv4GX5rSEvaXu8iTwR3yiPmQEaTfRcj93EfPCE_RFi1OXY-SjaSXt7z0GSq34BltGeD2Abs-2YFxeGZgfH5r6nv0pFUf37t557CKJxX6ilNW0DThcLXZXK-PyOaSb5bWZOph3kjTZfH9qtrnM-fdmhoA0KsudAYFffvQlt7Y3CPdk3nJjwpxV2rMV6ebVLxjqaqLc6TE2DptUa5nlRXgDvhI7Tmv5epQl6R44LTc5NzkvjcgPFVMOXIQuHPgbBameaWiVW5XAXX8TbYhAgemgZ1W3wmUQoQMZGEkUPWZRgDuruvzPfqreA8nk151dKYwfNXejwi1Tihza-MQdMR7ST_YCTOiVc0VF6cxuRY00CkUvIyIBP-ty_8XQyVzgNMltvgZCWaTHKUtIl6PwkzzuxhBE6G18U7Jqj41JCSvYeAizqx26rbv7QKFqgzq6bdUx0C4PCqfDcyMsbchbMXc3zWlSfA0GDMY5hP3TVX6kXAjnCW0dMjUM56gESyENBrxPNwXipM0iXeMLcSmunL5exr13uijtukvpl3ttWZwj2Y4TYgWaL1uYz1tNzt_qIH5Ly2-n28TgydkCY1Pl5AI1yXvP83_O5yYkppTwYUP6W0YI0n9sNDQveLDjb-DV2hTI54Ce6auQhhLYRjAct_nlKAbveGM3h8kI3QZrolS2353bZlUX6tJAmE0bS4h4xH8hgN5772RmJvtVdrx62F4p5qkNDG3u7krVVSyhiOFoqBaXfyHebVmHJCi3O70-1piMg210MzxLhaNs6lFJLL4ILgvK5RAoJn0J_VAKT8p9hYXzjZVvahLcgTjxs5KjR48EN4mIvwGd9lXvhxrq39kuMyNgM8IzTLTjOcm5rg4eY-V4I-Xu5JqDonCjkqTsN35L0Vd1di5RUqbMc-RiPIBuKU60gJNcZ8RUsl6QLz2Dp_5-pCe_u9hktqYPWMoNhgONzQSWgZRADbBangB-kOoQdZxiBVMpoAiSEEbJhSgLKbVK_aGW85TTk_CMkY-RmdSqLQDopVdzgv8LE9qxXaPSyeQX-41K0q9nNR7xZ6hb5romnso8mmZ3L2RaRiRu1bebWP-WNzX6x_o2H_U16O-N00jctTYtwyXprAdDpa-tORBuDfkPxcn836fb7bE4_0kgbQs41JOJ42iWEn68rctydE0oiTCPH8joTRDIfpvMbpSezAoilUYLUGsxG-CJsM5k8CIYxvWbA310-oXuGbzfpG9H_vUfibaNLGOANEIKSS_Q86evvs8IZWpFTdqivudXhXk9a19ZiRG8wJT4dm7CC1U6X5tBCgVGHXN2-3_Etx7pRZc8wx7dnhPzyWuSa3QaVR7oX6Z0ME9JKNwtbBUfjygWcGY5ILREI2OSSAUqnJDzuDj7DglbhsHgfAqxF1Pp_WF6mi8l1LWOeYYG5j97kf8Gh0FUgZzif3bRsfDRFzWfQeiG73DoL4G6cuxaRyBgrYTYmr8lFMWMdoNzI6k6aK20z1Zlxh3aqBhf3B60I6hXF-7DcszKylL5TJM9Jr3ZG4Rq4t5JJPblHuSPHCs2FSi9HIqCprTjNSLL16LEO0iTva_kkIJDagarLpONePAe6lKF7gQSpYZyMswPvU0UzTUXMOQbxIrDl_xkFTSGj4rTklfaOib77AesuoOEPlqpIVwapcutEws7f5kiwhj_Qqb4y7nhXatksEMhz6ISZXf1lKhxHxNrcd2Xi1gcMKnuf8NO80CfMlwol0l5k1AjwghQskBUh1Qqy35L8OeHFkW6F9kAIBgAnIq_OKWjyzU-qt6T4B9lCVCduJaL9Yf4.pZUgakiLDlhRmS6biwDTvA&client_id=upp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzUsImV4cCI6MTY0MzE5NzIzNSwianRpIjoiZWNyUkdvOVVvTmNvclY3WXFsSmV6SlIwV0JxQXJVWEV1ZG5jTVM0ckVXRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.snXnu8HlYdVP2CdBNb5fFCgcYOHvWUAKDDx5fL2NDIvFRhC5MZqoPqiNHfJ6acY2oeIZjAH4yiZVdSTUmGBONtDXrgramz7NptpCV90_w_k7JNULjhidEV1l7ZAcjfEE9Sa1f5zh2Ly35xhe1uyUami-IHOkw40e6qR5dOZInMOP6z7nvYV9ztQBOGIG2-wsInAc6Go1w0goz3ha6mmA3u_nRR14ImNnqDS5IW4WXkNNi5uj_VcPtxI802OLMeMY_NrkHkwASSgQKb3-WyVMB6NFtLfUeUMZmCFEq2FFaxTw-ecgQqkeRPJRO_EcKDfooC4ifUCPbXtd2kh0tstXJA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-01-26 11:39:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-01-26 11:39:35 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:35 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:35 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:35 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzUsImV4cCI6MTY0MzE5NzIzNSwianRpIjoiZWNyUkdvOVVvTmNvclY3WXFsSmV6SlIwV0JxQXJVWEV1ZG5jTVM0ckVXRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.snXnu8HlYdVP2CdBNb5fFCgcYOHvWUAKDDx5fL2NDIvFRhC5MZqoPqiNHfJ6acY2oeIZjAH4yiZVdSTUmGBONtDXrgramz7NptpCV90_w_k7JNULjhidEV1l7ZAcjfEE9Sa1f5zh2Ly35xhe1uyUami-IHOkw40e6qR5dOZInMOP6z7nvYV9ztQBOGIG2-wsInAc6Go1w0goz3ha6mmA3u_nRR14ImNnqDS5IW4WXkNNi5uj_VcPtxI802OLMeMY_NrkHkwASSgQKb3-WyVMB6NFtLfUeUMZmCFEq2FFaxTw-ecgQqkeRPJRO_EcKDfooC4ifUCPbXtd2kh0tstXJA",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "upp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/upp/",
      "https://www.certification.openid.net/test/a/upp/token",
      "https://www.certification.openid.net/test-mtls/a/upp/token"
    ],
    "iss": "upp-bank",
    "exp": 1643197235,
    "iat": 1643197175,
    "jti": "ecrRGo9UoNcorV7YqlJezJR0WBqArUXEudncMS4rEWE"
  }
}
2022-01-26 11:39:35
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-01-26 11:39:35 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzUsImV4cCI6MTY0MzE5NzIzNSwianRpIjoiZWNyUkdvOVVvTmNvclY3WXFsSmV6SlIwV0JxQXJVWEV1ZG5jTVM0ckVXRSIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.snXnu8HlYdVP2CdBNb5fFCgcYOHvWUAKDDx5fL2NDIvFRhC5MZqoPqiNHfJ6acY2oeIZjAH4yiZVdSTUmGBONtDXrgramz7NptpCV90_w_k7JNULjhidEV1l7ZAcjfEE9Sa1f5zh2Ly35xhe1uyUami-IHOkw40e6qR5dOZInMOP6z7nvYV9ztQBOGIG2-wsInAc6Go1w0goz3ha6mmA3u_nRR14ImNnqDS5IW4WXkNNi5uj_VcPtxI802OLMeMY_NrkHkwASSgQKb3-WyVMB6NFtLfUeUMZmCFEq2FFaxTw-ecgQqkeRPJRO_EcKDfooC4ifUCPbXtd2kh0tstXJA
2022-01-26 11:39:35 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-01-26 11:39:35 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2022-01-26 11:39:35 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI2ZjViOTVkOGFmZGZjNjlmZTM3ZTdiYjhjYjcwMzQyZjEzYWQ0NGZlZjFiYjg0MjRiOTU4ZDlhYmMwNjlhODBkIn0.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.FrsEKlzncOq15KFEv1FC7fY6Ie88FKn8GqAvWLdoycw1u0qZGOGV6Ea33PAK4QOL6o8OZLvfQj8F8gJeWj49qLkyK8xR7QrcnVAPUns-yGETalsOvsh3yiThzctXQoCGZDbn9tRShEOEVlWbW3NwazUy8wPV9NtJ46BabaiovMJKU8BnepPZlDIhIFNCIDMN-Wokr4SaWkJZAA-x5YRc8xaP8pmWRjrn17RUELOBPjtZEXQbWI74nmiZcPEyd1DfCsTJbrDMvoIl9jGLK6uKJhS41EPchu_0BGTUm0AxVbhmkIwHVARnvebcP11vZ1SscvC0aAr6kKQsDw6ffmysfg",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "upp-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
    "client_id": "upp-bank",
    "aud": "https://www.certification.openid.net/test/a/upp/",
    "nbf": 1643197175,
    "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU",
    "redirect_uri": "https://www.upp.com.br/callback",
    "exp": 1643197475,
    "iat": 1643197175,
    "code_challenge": "DoZxymkizbv2sIMF3_G1cL8XvPT9WNHAeofoTdOOUHY",
    "jti": "qxSHDL0bvwpHiUGQQ14onzKkY7zurAIAFsf69S5I9Fk"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "oauth-authz-req+jwt",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2022-01-26 11:39:35 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-01-26 11:39:35 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2022-01-26 11:39:35 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-01-26 11:39:35 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
2022-01-26 11:39:35 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Jan 26, 2022, 11:44:35 AM"
2022-01-26 11:39:35 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Jan 26, 2022, 11:39:35 AM"
now
"Jan 26, 2022, 11:39:35 AM"
2022-01-26 11:39:35
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-01-26 11:39:35 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-01-26 11:39:35 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-01-26 11:39:35 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-01-26 11:39:35 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-01-26 11:39:35 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI2ZjViOTVkOGFmZGZjNjlmZTM3ZTdiYjhjYjcwMzQyZjEzYWQ0NGZlZjFiYjg0MjRiOTU4ZDlhYmMwNjlhODBkIn0.eyJub25jZSI6IkxOUnEySEtGR29PdnJubVVqQ0NLcDhLQU9wUEZ3bGVIY1dwaTFPdkZhdFUiLCJzdGF0ZSI6IjFSNi1VVzBJX0pYRXJZNWRKbFo5aG5tMEdrVUJKUjNxcm12STJURDNTTFUiLCJzY29wZSI6Im9wZW5pZCBjb25zZW50OnVybjpjb25mb3JtYW5jZS5vaWRmOnBicHVvRG1TcmYgYWNjb3VudHMgcmVzb3VyY2VzIiwicmVzcG9uc2VfdHlwZSI6ImNvZGUgaWRfdG9rZW4iLCJyZWRpcmVjdF91cmkiOiJodHRwczovL3d3dy51cHAuY29tLmJyL2NhbGxiYWNrIiwiY2xhaW1zIjp7ImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZXMiOlsidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIl0sImVzc2VudGlhbCI6dHJ1ZX19fSwiY29kZV9jaGFsbGVuZ2UiOiJEb1p4eW1raXpidjJzSU1GM19HMWNMOFh2UFQ5V05IQWVvZm9UZE9PVUhZIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsImlzcyI6InVwcC1iYW5rIiwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiY2xpZW50X2lkIjoidXBwLWJhbmsiLCJqdGkiOiJxeFNIREwwYnZ3cEhpVUdRUTE0b256S2tZN3p1ckFJQUZzZjY5UzVJOUZrIiwiaWF0IjoxNjQzMTk3MTc1LCJleHAiOjE2NDMxOTc0NzUsIm5iZiI6MTY0MzE5NzE3NX0.FrsEKlzncOq15KFEv1FC7fY6Ie88FKn8GqAvWLdoycw1u0qZGOGV6Ea33PAK4QOL6o8OZLvfQj8F8gJeWj49qLkyK8xR7QrcnVAPUns-yGETalsOvsh3yiThzctXQoCGZDbn9tRShEOEVlWbW3NwazUy8wPV9NtJ46BabaiovMJKU8BnepPZlDIhIFNCIDMN-Wokr4SaWkJZAA-x5YRc8xaP8pmWRjrn17RUELOBPjtZEXQbWI74nmiZcPEyd1DfCsTJbrDMvoIl9jGLK6uKJhS41EPchu_0BGTUm0AxVbhmkIwHVARnvebcP11vZ1SscvC0aAr6kKQsDw6ffmysfg
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 26209187316270534456033699213267036038577328332991643835531519844623783324814538679401675444727386664417805841416441600811972966637356833516193074570358709672840913335701123820129356233132932042589954281752646149758647969873334467859355848316241495157845641470802378146769191155439360515150178981790383342019826659619756591874960315685926895668654700512608293206222385118218980734323885798381069631320128215099863150840448466552415731452665795634836178977613588767173155891760592246579683203551600268102701482873623532227785292156437089054856960718476772904396863387193750660388033972090457897899490669165334764640873
  public exponent: 65537
2022-01-26 11:39:35 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://www.upp.com.br/callback
2022-01-26 11:39:35 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
DoZxymkizbv2sIMF3_G1cL8XvPT9WNHAeofoTdOOUHY
2022-01-26 11:39:35 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:7b3826ef-e349-46c4-99ad-73756f85b359
expires_in
600
2022-01-26 11:39:35 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:7b3826ef-e349-46c4-99ad-73756f85b359",
  "expires_in": 600
}
outgoing_path
par
2022-01-26 11:39:35 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "5f105383-94f4-4175-976b-26c41ec251b1",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "upp-bank",
  "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://www.upp.com.br/callback",
  "request_uri": "urn:ietf:params:oauth:request_uri:7b3826ef-e349-46c4-99ad-73756f85b359"
}
incoming_body
2022-01-26 11:39:35 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-01-26 11:39:35 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-01-26 11:39:35 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2022-01-26 11:39:35 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "upp-bank",
  "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://www.upp.com.br/callback",
  "iss": "upp-bank",
  "code_challenge_method": "S256",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "aud": "https://www.certification.openid.net/test/a/upp/",
  "nbf": 1643197175,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU",
  "exp": 1643197475,
  "iat": 1643197175,
  "code_challenge": "DoZxymkizbv2sIMF3_G1cL8XvPT9WNHAeofoTdOOUHY",
  "jti": "qxSHDL0bvwpHiUGQQ14onzKkY7zurAIAFsf69S5I9Fk"
}
2022-01-26 11:39:35 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-01-26 11:39:35 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources
2022-01-26 11:39:35 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:pbpuoDmSrf",
  "accounts",
  "resources"
]
expected
consent:urn:conformance.oidf:pbpuoDmSrf
2022-01-26 11:39:35 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:pbpuoDmSrf",
  "accounts",
  "resources"
]
2022-01-26 11:39:35 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-01-26 11:39:35 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance.oidf:pbpuoDmSrf",
  "accounts",
  "resources"
]
expected
openid
2022-01-26 11:39:35 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
upp-bank
2022-01-26 11:39:35 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
aYR293FFV91or3GHKhwwD4FBpCHZ6rsT
2022-01-26 11:39:35 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU
2022-01-26 11:39:35 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
M2GPQDW-_zb0XTvt1Fb6kQ
2022-01-26 11:39:35 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
5dQtrERT2V8--zwm1oKWLA
2022-01-26 11:39:35 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/upp/
sub
user-subject-1234531
aud
upp-bank
nonce
LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU
iat
1643197175
exp
1643197475
2022-01-26 11:39:35 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197175,
  "exp": 1643197475
}
2022-01-26 11:39:35 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
M2GPQDW-_zb0XTvt1Fb6kQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197175,
  "exp": 1643197475,
  "c_hash": "M2GPQDW-_zb0XTvt1Fb6kQ"
}
2022-01-26 11:39:35 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
5dQtrERT2V8--zwm1oKWLA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197175,
  "exp": 1643197475,
  "c_hash": "M2GPQDW-_zb0XTvt1Fb6kQ",
  "s_hash": "5dQtrERT2V8--zwm1oKWLA"
}
2022-01-26 11:39:35 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-01-26 11:39:35 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197175,
  "exp": 1643197475,
  "c_hash": "M2GPQDW-_zb0XTvt1Fb6kQ",
  "s_hash": "5dQtrERT2V8--zwm1oKWLA",
  "acr": "urn:brasil:openbanking:loa2"
}
2022-01-26 11:39:35 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InVwcC1iYW5rIiwiY19oYXNoIjoiTTJHUFFEVy1femIwWFR2dDFGYjZrUSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IjVkUXRyRVJUMlY4LS16d20xb0tXTEEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzUsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3NX0.q-KI2qZ8PWMGQAhKIZ1_PYNQBKrKDR24FIrDMUKRkAr3RygDi4xxvbd1m9YAGzU0vhBJJpNgXJPtxSnl-B1tSYaBuN4_TwhUkk8Sqt1kpQXM5PwLFwlUn7UH68kPMyLqZiXv8iCa-yxutfdk-U8zwJo1ZI3GeQwbSHWGy77reL3Y3RRiYn3K15Gx2mqfkJxVRfk3BOHYdec1CeQiJg_F7gkf02noynNpBFdgTid6jtRl9ikihDDp88bqvji9dfoe-hr0CAIPb2IYOBpLNIou1Ha-PT4DffuKYztq8to5D-bwp2JWPKZairUPln5xslyoJcEwLOfakiDSQhDshVppTg
2022-01-26 11:39:35 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance.oidf:pbpuoDmSrf",
    "creationDateTime": "2022-01-26T11:39:35Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-01-26T11:39:35Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-01-26T13:39:35Z",
    "transactionFromDateTime": "2022-01-26T11:34:35Z",
    "transactionToDateTime": "2022-01-26T13:39:35Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/uppconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-26T11:39:35Z"
  }
}
2022-01-26 11:39:35 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://www.upp.com.br/callback",
  "state": "1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU"
}
2022-01-26 11:39:35 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.upp.com.br/callback",
  "state": "1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU",
  "code": "aYR293FFV91or3GHKhwwD4FBpCHZ6rsT"
}
2022-01-26 11:39:35 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://www.upp.com.br/callback",
  "state": "1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU",
  "code": "aYR293FFV91or3GHKhwwD4FBpCHZ6rsT",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InVwcC1iYW5rIiwiY19oYXNoIjoiTTJHUFFEVy1femIwWFR2dDFGYjZrUSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IjVkUXRyRVJUMlY4LS16d20xb0tXTEEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzUsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3NX0.q-KI2qZ8PWMGQAhKIZ1_PYNQBKrKDR24FIrDMUKRkAr3RygDi4xxvbd1m9YAGzU0vhBJJpNgXJPtxSnl-B1tSYaBuN4_TwhUkk8Sqt1kpQXM5PwLFwlUn7UH68kPMyLqZiXv8iCa-yxutfdk-U8zwJo1ZI3GeQwbSHWGy77reL3Y3RRiYn3K15Gx2mqfkJxVRfk3BOHYdec1CeQiJg_F7gkf02noynNpBFdgTid6jtRl9ikihDDp88bqvji9dfoe-hr0CAIPb2IYOBpLNIou1Ha-PT4DffuKYztq8to5D-bwp2JWPKZairUPln5xslyoJcEwLOfakiDSQhDshVppTg"
}
2022-01-26 11:39:35
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://www.upp.com.br/callback#state=1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU&code=aYR293FFV91or3GHKhwwD4FBpCHZ6rsT&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InVwcC1iYW5rIiwiY19oYXNoIjoiTTJHUFFEVy1femIwWFR2dDFGYjZrUSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IjVkUXRyRVJUMlY4LS16d20xb0tXTEEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzUsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3NX0.q-KI2qZ8PWMGQAhKIZ1_PYNQBKrKDR24FIrDMUKRkAr3RygDi4xxvbd1m9YAGzU0vhBJJpNgXJPtxSnl-B1tSYaBuN4_TwhUkk8Sqt1kpQXM5PwLFwlUn7UH68kPMyLqZiXv8iCa-yxutfdk-U8zwJo1ZI3GeQwbSHWGy77reL3Y3RRiYn3K15Gx2mqfkJxVRfk3BOHYdec1CeQiJg_F7gkf02noynNpBFdgTid6jtRl9ikihDDp88bqvji9dfoe-hr0CAIPb2IYOBpLNIou1Ha-PT4DffuKYztq8to5D-bwp2JWPKZairUPln5xslyoJcEwLOfakiDSQhDshVppTg
2022-01-26 11:39:36 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://www.upp.com.br/callback#state=1R6-UW0I_JXErY5dJlZ9hnm0GkUBJR3qrmvI2TD3SLU&code=aYR293FFV91or3GHKhwwD4FBpCHZ6rsT&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InVwcC1iYW5rIiwiY19oYXNoIjoiTTJHUFFEVy1femIwWFR2dDFGYjZrUSIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInNfaGFzaCI6IjVkUXRyRVJUMlY4LS16d20xb0tXTEEiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzUsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3NX0.q-KI2qZ8PWMGQAhKIZ1_PYNQBKrKDR24FIrDMUKRkAr3RygDi4xxvbd1m9YAGzU0vhBJJpNgXJPtxSnl-B1tSYaBuN4_TwhUkk8Sqt1kpQXM5PwLFwlUn7UH68kPMyLqZiXv8iCa-yxutfdk-U8zwJo1ZI3GeQwbSHWGy77reL3Y3RRiYn3K15Gx2mqfkJxVRfk3BOHYdec1CeQiJg_F7gkf02noynNpBFdgTid6jtRl9ikihDDp88bqvji9dfoe-hr0CAIPb2IYOBpLNIou1Ha-PT4DffuKYztq8to5D-bwp2JWPKZairUPln5xslyoJcEwLOfakiDSQhDshVppTg]
outgoing_path
authorize
2022-01-26 11:39:36 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:36 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/upp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-26 11:39:36 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:36 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-01-26 11:39:36 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1176",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "aYR293FFV91or3GHKhwwD4FBpCHZ6rsT",
  "redirect_uri": "https://www.upp.com.br/callback",
  "code_verifier": "n-n0LBJPPQK2NRw4fNRyacQo3BooQDX5CWE_fUA3zzU",
  "client_id": "upp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzYsImV4cCI6MTY0MzE5NzIzNiwianRpIjoiWTl2V2c5ckx3Q2tBVWhlY1M5d0JfN0M4d2FacEM4S21QNVNKZi1zbW50ZyIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ij7svknY438-BDmqbNeTdA8Z1zZOvtoi25Lbe1DuR63WKrFiDaFAL4jd9VePyWgvCpD-qHwaF7gbbzzpELIppk-x8arrzViSbz5WmnRE1rRQ43iZvhwdqy9vjTIsggIalatsA-VD8wk-Mb57cVK_30ZFa8jGKmgWfMNswQ5rBhjT1WmvGYrjgFbS58yOItR_janY4x3X7Q-AHB8OWTbIgkuwdP8LBKu6RPvjbfP9HnstNLAKNLUCzCABufNr0Qjfa9l_mbH7qRfFbgIjnNk0FCJtcyl1tVAZcTtR0c1A3CaKB_7J5YtE9M_27q1SrFMBxUmzAgKveieFImq2xyBA1g",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=aYR293FFV91or3GHKhwwD4FBpCHZ6rsT&redirect_uri=https%3A%2F%2Fwww.upp.com.br%2Fcallback&code_verifier=n-n0LBJPPQK2NRw4fNRyacQo3BooQDX5CWE_fUA3zzU&client_id=upp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzYsImV4cCI6MTY0MzE5NzIzNiwianRpIjoiWTl2V2c5ckx3Q2tBVWhlY1M5d0JfN0M4d2FacEM4S21QNVNKZi1zbW50ZyIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ij7svknY438-BDmqbNeTdA8Z1zZOvtoi25Lbe1DuR63WKrFiDaFAL4jd9VePyWgvCpD-qHwaF7gbbzzpELIppk-x8arrzViSbz5WmnRE1rRQ43iZvhwdqy9vjTIsggIalatsA-VD8wk-Mb57cVK_30ZFa8jGKmgWfMNswQ5rBhjT1WmvGYrjgFbS58yOItR_janY4x3X7Q-AHB8OWTbIgkuwdP8LBKu6RPvjbfP9HnstNLAKNLUCzCABufNr0Qjfa9l_mbH7qRfFbgIjnNk0FCJtcyl1tVAZcTtR0c1A3CaKB_7J5YtE9M_27q1SrFMBxUmzAgKveieFImq2xyBA1g&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-01-26 11:39:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-01-26 11:39:36 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:36 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:36 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:36 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzYsImV4cCI6MTY0MzE5NzIzNiwianRpIjoiWTl2V2c5ckx3Q2tBVWhlY1M5d0JfN0M4d2FacEM4S21QNVNKZi1zbW50ZyIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ij7svknY438-BDmqbNeTdA8Z1zZOvtoi25Lbe1DuR63WKrFiDaFAL4jd9VePyWgvCpD-qHwaF7gbbzzpELIppk-x8arrzViSbz5WmnRE1rRQ43iZvhwdqy9vjTIsggIalatsA-VD8wk-Mb57cVK_30ZFa8jGKmgWfMNswQ5rBhjT1WmvGYrjgFbS58yOItR_janY4x3X7Q-AHB8OWTbIgkuwdP8LBKu6RPvjbfP9HnstNLAKNLUCzCABufNr0Qjfa9l_mbH7qRfFbgIjnNk0FCJtcyl1tVAZcTtR0c1A3CaKB_7J5YtE9M_27q1SrFMBxUmzAgKveieFImq2xyBA1g",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "upp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/upp/",
      "https://www.certification.openid.net/test/a/upp/token",
      "https://www.certification.openid.net/test-mtls/a/upp/token"
    ],
    "iss": "upp-bank",
    "exp": 1643197236,
    "iat": 1643197176,
    "jti": "Y9vWg9rLwCkAUhecS9wB_7C8waZpC8KmP5SJf-smntg"
  }
}
2022-01-26 11:39:36
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-01-26 11:39:36 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzYsImV4cCI6MTY0MzE5NzIzNiwianRpIjoiWTl2V2c5ckx3Q2tBVWhlY1M5d0JfN0M4d2FacEM4S21QNVNKZi1zbW50ZyIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ij7svknY438-BDmqbNeTdA8Z1zZOvtoi25Lbe1DuR63WKrFiDaFAL4jd9VePyWgvCpD-qHwaF7gbbzzpELIppk-x8arrzViSbz5WmnRE1rRQ43iZvhwdqy9vjTIsggIalatsA-VD8wk-Mb57cVK_30ZFa8jGKmgWfMNswQ5rBhjT1WmvGYrjgFbS58yOItR_janY4x3X7Q-AHB8OWTbIgkuwdP8LBKu6RPvjbfP9HnstNLAKNLUCzCABufNr0Qjfa9l_mbH7qRfFbgIjnNk0FCJtcyl1tVAZcTtR0c1A3CaKB_7J5YtE9M_27q1SrFMBxUmzAgKveieFImq2xyBA1g
2022-01-26 11:39:36 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-01-26 11:39:36 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-01-26 11:39:36 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
aYR293FFV91or3GHKhwwD4FBpCHZ6rsT
2022-01-26 11:39:36 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://www.upp.com.br/callback
2022-01-26 11:39:36 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
n-n0LBJPPQK2NRw4fNRyacQo3BooQDX5CWE_fUA3zzU
code_challenge
DoZxymkizbv2sIMF3_G1cL8XvPT9WNHAeofoTdOOUHY
2022-01-26 11:39:36 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
ttRIu6FfPlubFFRRzoQBlx7RVHmDRWm5fUywy2PdfFF9JNppNI
2022-01-26 11:39:36 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
bDvcuNzBtADlf_aKbScuvg
2022-01-26 11:39:36
CreateRefreshToken
Created refresh token
refresh_token
wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091{/<^;
2022-01-26 11:39:36 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/upp/
sub
user-subject-1234531
aud
upp-bank
nonce
LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU
iat
1643197176
exp
1643197476
2022-01-26 11:39:36 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197176,
  "exp": 1643197476
}
2022-01-26 11:39:36 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
bDvcuNzBtADlf_aKbScuvg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197176,
  "exp": 1643197476,
  "at_hash": "bDvcuNzBtADlf_aKbScuvg"
}
2022-01-26 11:39:36 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/upp/",
  "sub": "user-subject-1234531",
  "aud": "upp-bank",
  "nonce": "LNRq2HKFGoOvrnmUjCCKp8KAOpPFwleHcWpi1OvFatU",
  "iat": 1643197176,
  "exp": 1643197476,
  "at_hash": "bDvcuNzBtADlf_aKbScuvg",
  "acr": "urn:brasil:openbanking:loa2"
}
2022-01-26 11:39:36 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYkR2Y3VOekJ0QURsZl9hS2JTY3V2ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoidXBwLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzYsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3Nn0.fY71myUWap2onZeJSVbM-mdmQkPEdOOSPjA0YZdJgvTFXxbBssgewrW9p7ooh_DCwEltM17gFPouwX_0HnBPTmIb9YVBpmIs34d2JAAFsOgl5NR_1-oipEENwPJxTSx5yp0cvzXRqnHXLgeHXGGRe1Rq9ZZZwUcxW1yYEUnyVu9AmZZtJLRSLlGxR9s9c2vXErv0t35CzQzixFk_s1IQfLlaFa7Nfy-BiBLqT-ee-_l1b07lc0OjssR6AUQ0NVBIgtJEIKcApyUPVEqzD_hBEvzPlDSb3T3Wy_lSR-ELkakBSxhMr3njcuGPqpjI0RB1S3SXw9gEPBstWXZznQ42KA
2022-01-26 11:39:36 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
ttRIu6FfPlubFFRRzoQBlx7RVHmDRWm5fUywy2PdfFF9JNppNI
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYkR2Y3VOekJ0QURsZl9hS2JTY3V2ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoidXBwLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzYsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3Nn0.fY71myUWap2onZeJSVbM-mdmQkPEdOOSPjA0YZdJgvTFXxbBssgewrW9p7ooh_DCwEltM17gFPouwX_0HnBPTmIb9YVBpmIs34d2JAAFsOgl5NR_1-oipEENwPJxTSx5yp0cvzXRqnHXLgeHXGGRe1Rq9ZZZwUcxW1yYEUnyVu9AmZZtJLRSLlGxR9s9c2vXErv0t35CzQzixFk_s1IQfLlaFa7Nfy-BiBLqT-ee-_l1b07lc0OjssR6AUQ0NVBIgtJEIKcApyUPVEqzD_hBEvzPlDSb3T3Wy_lSR-ELkakBSxhMr3njcuGPqpjI0RB1S3SXw9gEPBstWXZznQ42KA
refresh_token
wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091{/<^;
scope
openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources
2022-01-26 11:39:36
RemoveIssuedAccessTokenFromEnvironment
Removed access_token and token_type from environment
2022-01-26 11:39:36 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "ttRIu6FfPlubFFRRzoQBlx7RVHmDRWm5fUywy2PdfFF9JNppNI",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiYkR2Y3VOekJ0QURsZl9hS2JTY3V2ZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoidXBwLWJhbmsiLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTIiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwvdXBwXC8iLCJleHAiOjE2NDMxOTc0NzYsIm5vbmNlIjoiTE5ScTJIS0ZHb092cm5tVWpDQ0twOEtBT3BQRndsZUhjV3BpMU92RmF0VSIsImlhdCI6MTY0MzE5NzE3Nn0.fY71myUWap2onZeJSVbM-mdmQkPEdOOSPjA0YZdJgvTFXxbBssgewrW9p7ooh_DCwEltM17gFPouwX_0HnBPTmIb9YVBpmIs34d2JAAFsOgl5NR_1-oipEENwPJxTSx5yp0cvzXRqnHXLgeHXGGRe1Rq9ZZZwUcxW1yYEUnyVu9AmZZtJLRSLlGxR9s9c2vXErv0t35CzQzixFk_s1IQfLlaFa7Nfy-BiBLqT-ee-_l1b07lc0OjssR6AUQ0NVBIgtJEIKcApyUPVEqzD_hBEvzPlDSb3T3Wy_lSR-ELkakBSxhMr3njcuGPqpjI0RB1S3SXw9gEPBstWXZznQ42KA",
  "refresh_token": "wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091{/\u003c^;",
  "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources"
}
outgoing_path
token
2022-01-26 11:39:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer ttRIu6FfPlubFFRRzoQBlx7RVHmDRWm5fUywy2PdfFF9JNppNI",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "fff3136d-7da9-4487-8e72-261283852138",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d43B1CA482598CCAC759B2174FD9EC02E",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2022-01-26 11:39:37 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2022-01-26 11:39:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2022-01-26 11:39:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/upp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-26 11:39:37 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1112",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "refresh_token": "wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091{/\u003c^;",
  "client_id": "upp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzcsImV4cCI6MTY0MzE5NzIzNywianRpIjoiam1NclNqb2FNNFI4bDRKZ01mQzgwTkZod2ZEOHozbENHcEpMTTEzOFFpOCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ZPSoyLyNKcNnSXMFoDg--priiRy0sht_4AYAjdqz4apEjRiGva6oc4n0EtDCXI1CcGl2X8Vmxj2vf4JND6q9yANKodCP7CaVt26OrlHBcTA_-jB2jsDz4-nZPurS2siIMWP0ud6IehZWIA9YHlMfB-L_A233oJJ3gdohnlTf-ZZS1WjtsCU7m8FR5iCD23d9wl-SupkcGuYSB5C53QytKK6W2Yim8-ri1JTB8o9siNiq7ywoDQaw_sb8cP_9LMJG4MiL6RT2_j3GKZWRU6G0coCtGDcnrcPQihCM30rnzurMqkWyD0VDlTbJAXvOCbhyiQYC1AleOe6YU22DJaUqbg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&refresh_token=wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091%7B%2F%3C%5E%3B&client_id=upp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzcsImV4cCI6MTY0MzE5NzIzNywianRpIjoiam1NclNqb2FNNFI4bDRKZ01mQzgwTkZod2ZEOHozbENHcEpMTTEzOFFpOCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ZPSoyLyNKcNnSXMFoDg--priiRy0sht_4AYAjdqz4apEjRiGva6oc4n0EtDCXI1CcGl2X8Vmxj2vf4JND6q9yANKodCP7CaVt26OrlHBcTA_-jB2jsDz4-nZPurS2siIMWP0ud6IehZWIA9YHlMfB-L_A233oJJ3gdohnlTf-ZZS1WjtsCU7m8FR5iCD23d9wl-SupkcGuYSB5C53QytKK6W2Yim8-ri1JTB8o9siNiq7ywoDQaw_sb8cP_9LMJG4MiL6RT2_j3GKZWRU6G0coCtGDcnrcPQihCM30rnzurMqkWyD0VDlTbJAXvOCbhyiQYC1AleOe6YU22DJaUqbg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-01-26 11:39:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-01-26 11:39:37 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:37 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:37 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:37 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzcsImV4cCI6MTY0MzE5NzIzNywianRpIjoiam1NclNqb2FNNFI4bDRKZ01mQzgwTkZod2ZEOHozbENHcEpMTTEzOFFpOCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ZPSoyLyNKcNnSXMFoDg--priiRy0sht_4AYAjdqz4apEjRiGva6oc4n0EtDCXI1CcGl2X8Vmxj2vf4JND6q9yANKodCP7CaVt26OrlHBcTA_-jB2jsDz4-nZPurS2siIMWP0ud6IehZWIA9YHlMfB-L_A233oJJ3gdohnlTf-ZZS1WjtsCU7m8FR5iCD23d9wl-SupkcGuYSB5C53QytKK6W2Yim8-ri1JTB8o9siNiq7ywoDQaw_sb8cP_9LMJG4MiL6RT2_j3GKZWRU6G0coCtGDcnrcPQihCM30rnzurMqkWyD0VDlTbJAXvOCbhyiQYC1AleOe6YU22DJaUqbg",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "upp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/upp/",
      "https://www.certification.openid.net/test/a/upp/token",
      "https://www.certification.openid.net/test-mtls/a/upp/token"
    ],
    "iss": "upp-bank",
    "exp": 1643197237,
    "iat": 1643197177,
    "jti": "jmMrSjoaM4R8l4JgMfC80NFhwfD8z3lCGpJLM138Qi8"
  }
}
2022-01-26 11:39:37
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-01-26 11:39:37 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzcsImV4cCI6MTY0MzE5NzIzNywianRpIjoiam1NclNqb2FNNFI4bDRKZ01mQzgwTkZod2ZEOHozbENHcEpMTTEzOFFpOCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.ZPSoyLyNKcNnSXMFoDg--priiRy0sht_4AYAjdqz4apEjRiGva6oc4n0EtDCXI1CcGl2X8Vmxj2vf4JND6q9yANKodCP7CaVt26OrlHBcTA_-jB2jsDz4-nZPurS2siIMWP0ud6IehZWIA9YHlMfB-L_A233oJJ3gdohnlTf-ZZS1WjtsCU7m8FR5iCD23d9wl-SupkcGuYSB5C53QytKK6W2Yim8-ri1JTB8o9siNiq7ywoDQaw_sb8cP_9LMJG4MiL6RT2_j3GKZWRU6G0coCtGDcnrcPQihCM30rnzurMqkWyD0VDlTbJAXvOCbhyiQYC1AleOe6YU22DJaUqbg
2022-01-26 11:39:37 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-01-26 11:39:37 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-01-26 11:39:37 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
wWFnlDgmzhtvFtbQfZFRiqpaQnrLLUgAJWRKFkcWAtorLEzxCY4235931091{/<^;
2022-01-26 11:39:37 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Zk2FahZTiswGbP8jadBOpPg1qCWKOVBiYUKekeKulEPMD5es4L
2022-01-26 11:39:37 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
Ko6wHoLvVGGJla1xOJpXUA
2022-01-26 11:39:37
CreateRefreshToken
Created refresh token
refresh_token
uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037,)-<,
2022-01-26 11:39:37 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Zk2FahZTiswGbP8jadBOpPg1qCWKOVBiYUKekeKulEPMD5es4L
token_type
Bearer
refresh_token
uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037,)-<,
scope
openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources
2022-01-26 11:39:37 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Zk2FahZTiswGbP8jadBOpPg1qCWKOVBiYUKekeKulEPMD5es4L",
  "token_type": "Bearer",
  "refresh_token": "uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037,)-\u003c,",
  "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources"
}
outgoing_path
token
2022-01-26 11:39:38 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer Zk2FahZTiswGbP8jadBOpPg1qCWKOVBiYUKekeKulEPMD5es4L",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "4dac14f8-7396-4481-b45c-23e51cfafc71",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d43B1CA482598CCAC759B2174FD9EC02E",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint (always rejected)
2022-01-26 11:39:38 SUCCESS
LogAccessTokenAlwaysRejectedToForceARefreshGrant
This call will be always rejected. The client must obtain a new access token twice using the refresh_token
2022-01-26 11:39:38 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
401
outgoing_headers
{
  "WWW-Authenticate": [
    "Bearer realm\u003d\"conformancesuite\", error\u003d\"invalid_token\", error_description\u003d\"Invalid access token. This test requires you to obtain a new access token twice using the refresh_token\""
  ]
}
outgoing_body
outgoing_path
accounts/v1/accounts
2022-01-26 11:39:38 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/upp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-01-26 11:39:38 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/upp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/upp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/upp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/upp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/upp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/upp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/upp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/upp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-01-26 11:39:38 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "content-length": "1110",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/token
incoming_body_form_params
{
  "grant_type": "refresh_token",
  "refresh_token": "uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037,)-\u003c,",
  "client_id": "upp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzgsImV4cCI6MTY0MzE5NzIzOCwianRpIjoiUTRMcXh1M3ZSYTBVQlJsbkxjRUtLblFTdkdkMmRDM2p0YVZEcUMzVjE5NCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.wjN-WEpJ7f-sJJALUCQfnl_xVdzeTvYP3jusn-6W3on_TN_RCOpGCXmjizWoDcKIcgT7LAKrW0sl0yFzyRJdJqCHcb-PLnFKUZ8Xgiv4RViTRajBnHNM4sIG-vuc5D0mEv1YgMs5vVpvgfVG--997makh54fGlPfM1MUthnPo_9QI-1AeDOEltkhOIjPH7IKrCpVTyjJnGlLW_LUJxXRFqCyvOWGvKpOxdCg63AgG0oxH7p-31JFJN48REEPTfRrZf2w6pWScsaihd_aXM5fBSW9TfWYmajSovkvQHZo6xkMNsLOZ8MOy8-RUOmj_n2nbguwHhk2uf92RzBfTiQogg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=refresh_token&refresh_token=uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037%2C%29-%3C%2C&client_id=upp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzgsImV4cCI6MTY0MzE5NzIzOCwianRpIjoiUTRMcXh1M3ZSYTBVQlJsbkxjRUtLblFTdkdkMmRDM2p0YVZEcUMzVjE5NCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.wjN-WEpJ7f-sJJALUCQfnl_xVdzeTvYP3jusn-6W3on_TN_RCOpGCXmjizWoDcKIcgT7LAKrW0sl0yFzyRJdJqCHcb-PLnFKUZ8Xgiv4RViTRajBnHNM4sIG-vuc5D0mEv1YgMs5vVpvgfVG--997makh54fGlPfM1MUthnPo_9QI-1AeDOEltkhOIjPH7IKrCpVTyjJnGlLW_LUJxXRFqCyvOWGvKpOxdCg63AgG0oxH7p-31JFJN48REEPTfRrZf2w6pWScsaihd_aXM5fBSW9TfWYmajSovkvQHZo6xkMNsLOZ8MOy8-RUOmj_n2nbguwHhk2uf92RzBfTiQogg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-01-26 11:39:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-01-26 11:39:38 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:38 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:38 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:38 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzgsImV4cCI6MTY0MzE5NzIzOCwianRpIjoiUTRMcXh1M3ZSYTBVQlJsbkxjRUtLblFTdkdkMmRDM2p0YVZEcUMzVjE5NCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.wjN-WEpJ7f-sJJALUCQfnl_xVdzeTvYP3jusn-6W3on_TN_RCOpGCXmjizWoDcKIcgT7LAKrW0sl0yFzyRJdJqCHcb-PLnFKUZ8Xgiv4RViTRajBnHNM4sIG-vuc5D0mEv1YgMs5vVpvgfVG--997makh54fGlPfM1MUthnPo_9QI-1AeDOEltkhOIjPH7IKrCpVTyjJnGlLW_LUJxXRFqCyvOWGvKpOxdCg63AgG0oxH7p-31JFJN48REEPTfRrZf2w6pWScsaihd_aXM5fBSW9TfWYmajSovkvQHZo6xkMNsLOZ8MOy8-RUOmj_n2nbguwHhk2uf92RzBfTiQogg",
  "header": {
    "kid": "6f5b95d8afdfc69fe37e7bb8cb70342f13ad44fef1bb8424b958d9abc069a80d",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "upp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/upp/",
      "https://www.certification.openid.net/test/a/upp/token",
      "https://www.certification.openid.net/test-mtls/a/upp/token"
    ],
    "iss": "upp-bank",
    "exp": 1643197238,
    "iat": 1643197178,
    "jti": "Q4Lqxu3vRa0UBRlnLcEKKnQSvGd2dC3jtaVDqC3V194"
  }
}
2022-01-26 11:39:38
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-01-26 11:39:38 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjZmNWI5NWQ4YWZkZmM2OWZlMzdlN2JiOGNiNzAzNDJmMTNhZDQ0ZmVmMWJiODQyNGI5NThkOWFiYzA2OWE4MGQifQ.eyJpYXQiOjE2NDMxOTcxNzgsImV4cCI6MTY0MzE5NzIzOCwianRpIjoiUTRMcXh1M3ZSYTBVQlJsbkxjRUtLblFTdkdkMmRDM2p0YVZEcUMzVjE5NCIsImlzcyI6InVwcC1iYW5rIiwic3ViIjoidXBwLWJhbmsiLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS91cHAvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvdXBwL3Rva2VuIl19.wjN-WEpJ7f-sJJALUCQfnl_xVdzeTvYP3jusn-6W3on_TN_RCOpGCXmjizWoDcKIcgT7LAKrW0sl0yFzyRJdJqCHcb-PLnFKUZ8Xgiv4RViTRajBnHNM4sIG-vuc5D0mEv1YgMs5vVpvgfVG--997makh54fGlPfM1MUthnPo_9QI-1AeDOEltkhOIjPH7IKrCpVTyjJnGlLW_LUJxXRFqCyvOWGvKpOxdCg63AgG0oxH7p-31JFJN48REEPTfRrZf2w6pWScsaihd_aXM5fBSW9TfWYmajSovkvQHZo6xkMNsLOZ8MOy8-RUOmj_n2nbguwHhk2uf92RzBfTiQogg
2022-01-26 11:39:38 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-01-26 11:39:38 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-01-26 11:39:38 SUCCESS
ValidateRefreshToken
refresh_token parameter matches the expected value.
refresh_token
uphQWuxLukrcIBdFUMaJxGQHujVgigtbaUQffWfSuJEtTzifjl1018044037,)-<,
2022-01-26 11:39:38 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz
2022-01-26 11:39:38 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
ugfJEFN1q-724hxDBy9o2w
2022-01-26 11:39:38
CreateRefreshToken
Created refresh token
refresh_token
YJdsttqWniERrbzZWhwKIToXHSxfPmjoRPsvTjyApxLYUIzPCM7227317201*([{+
2022-01-26 11:39:38 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz
token_type
Bearer
refresh_token
YJdsttqWniERrbzZWhwKIToXHSxfPmjoRPsvTjyApxLYUIzPCM7227317201*([{+
scope
openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources
2022-01-26 11:39:38 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz",
  "token_type": "Bearer",
  "refresh_token": "YJdsttqWniERrbzZWhwKIToXHSxfPmjoRPsvTjyApxLYUIzPCM7227317201*([{+",
  "scope": "openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources"
}
outgoing_path
token
2022-01-26 11:39:38 INCOMING
fapi1-advanced-final-client-refresh-token-test
Incoming HTTP request to test instance mq673sUYdo1tyFG
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "121e0ffe-9f58-4fe8-adbb-5aa20c8c3800",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d43B1CA482598CCAC759B2174FD9EC02E",
  "connection": "close"
}
incoming_path
/test-mtls/a/upp/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-01-26 11:39:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2022-01-26 11:39:38 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIUTrKPcyxmsJN8pipEtalpdFpxSmQwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyNjAwMjcwMFoXDTIyMTEyNTAw MjcwMFowggEOMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDVVQLlAgU0VQIFMuQS4xLTArBgNVBAsTJGU1YjUx MDgzLWFkYzItNTc3NS1iMGZjLTAyYjI2M2IxYzQwZDETMBEGA1UEAxMKdXBwLmNv bS5icjEXMBUGA1UEBRMOMzU5NzcwOTcwMDAxNzExHTAbBgNVBA8TFFByaXZhdGUg T3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQB ARMkYTk3NjdlN2QtZDBkNi00YzlmLTgyNmEtNmI1YWM4YmJkN2QyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw42kU9qat2iCpuOSM3NesGlIKeFx7wku l2p2F18psHEIJCdteqxd7X0TPZyKTkQ/TwwBV3yrocjoz0TXTVEgEG3P5NLvvj97 ULcSxjdznyzMdPvVggA7FavgglBmACo9EGbN9I36AmPapxssDcwO0tzsuet3mGUK j9uzI7E4mWcnd29ONzocBuJqNxedeviUuy0mvVtuaetIpaeD9FjK0RGS16LKC+Hv C7eQ4p2d+m+6v98eiAoVOrmyDSxduTkiR+FjuyVgqIKF+NP/M2NtQ9oh5dpYuY/G +cUVaRulBBpovw4PkpOB2WtheH5gQH5Z7zQt4G+TzRH8zXZNnW1bZQIDAQABo4IC zjCCAsowDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU1mayPO/xnsUK2/4AgKBCLKgP Y3AwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEE QDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFu a2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5z YW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDAV BgNVHREEDjAMggp1cHAuY29tLmJyMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAK BggrBgEFBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAw ggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkg Zm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIg cGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2Vydmlj ZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlw dCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0 aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCBy ZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nw cy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMw DQYJKoZIhvcNAQELBQADggEBAGb7C6Rf6g0thATgsvrbnUCwxwJPnufirk0C9Gdj ytyYLaZyeSBdufjhbKrZsslUMyqR02sYBVpdASv/eQafA/x3278dDVOY3jaMkmow o5dYSrkKZ84+0bnEH39dzAuG6Wn7MTVhh5lcIQhypEFcT6UuheaphpGXYyFS+Ese 7yAzbWc909KOzIdvUmPUj/44pb6WrsBTnaVSEkBoeAO41tLI5EgkOn/rBLlwUnWq eE5o+5BmqhrOqJ8CEl8Y11uk+LHQuVMKVizmHv2GWFxVJFr4M0Kpjbn8q7v6xjit paZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\npaZ/ex7kzt/MUEEGFumfW3URrkhV8cf3GgJzvmycGHzWpL4\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003da9767e7d-d0d6-4c9f-826a-6b5ac8bbd7d2,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3335393737303937303030313731,CN\u003dupp.com.br,OU\u003de5b51083-adc2-5775-b0fc-02b263b1c40d,O\u003dUP.P SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "upp.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-01-26 11:39:38 SUCCESS
CheckForClientCertificate
Found client certificate
2022-01-26 11:39:38 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-01-26 11:39:38 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-01-26 11:39:38 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz
2022-01-26 11:39:38 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
MO1YE59cbECED1HkT1SO9fJVs2HSpnKNUSNlAoA7Cv1tdenhgz
2022-01-26 11:39:38 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-01-26 11:39:38 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-01-26 11:39:38 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-01-26 11:39:38 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid consent:urn:conformance.oidf:pbpuoDmSrf accounts resources
expected
accounts
2022-01-26 11:39:38 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
d6e2e8ba-15a6-4fd4-b2f9-2259090a7785
2022-01-26 11:39:38 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "d6e2e8ba-15a6-4fd4-b2f9-2259090a7785",
  "content-type": "application/json; charset\u003dUTF-8"
}
2022-01-26 11:39:38 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-26T11:39:38Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "d6e2e8ba-15a6-4fd4-b2f9-2259090a7785",
  "content-type": "application/json"
}
2022-01-26 11:39:38
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-01-26 11:39:38 OUTGOING
fapi1-advanced-final-client-refresh-token-test
Response to HTTP request to test instance mq673sUYdo1tyFG
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d6e2e8ba-15a6-4fd4-b2f9-2259090a7785"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-01-26T11:39:38Z"
  }
}
outgoing_path
accounts/v1/accounts
2022-01-26 11:39:38 FINISHED
fapi1-advanced-final-client-refresh-token-test
Test has run to completion
testmodule_result
PASSED
2022-01-26 11:39:41
TEST-RUNNER
Alias has now been claimed by another test
alias
upp
new_test_id
ut3ZVzM4jS1i1y5
Test Results