Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-05-18 23:31:06 INFO
TEST-RUNNER
Test instance DR17gxoztz8JwiI created
baseUrl
https://www.certification.openid.net/test/a/mova
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
mova
description
Mova - Recepção de dados
planId
lokNg4PJHivLh
config
{
  "alias": "mova",
  "description": "Mova - Recepção de dados",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "mova-bank",
    "redirect_uri": "https://staging-open.mova.vc/retorno",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "9pSuQC6aoj1KhNil2lZ3wZOipjZX6tLZA2_x8BFUprAOjS-GYHw8aLWln7gY4egu2eHA7Mj9cp98c2u20okKPwrX2Jm9YtDGtZjhd8U34uciOjZr7hgV-0D-dywVYzwlwI52sC9mtYQSkJYWPfb-1ewxhsZ6IFP7SX6S__wyexcwL8i_QbduTSEGUZJbbDoD7Sy9kK55UA94THsUfmHzqEXlA1TUSB6uL-9YjJK2enaCG3MjNd0FKFjT8jLnzQqIiIpe4oZxZcA17e20uYgo4nicgpg3-_5JI37tJvOo-k23Sbc6tVJ5jTVm4imB44TYzf3hxwHSGA-mlul2rvo_-Q",
          "e": "AQAB",
          "kid": "8436e2bf17e235fdf0ca0f633aae8985c10348f75eafec13fddb37810708e794"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "lpMeSx_VAFUgjkBZ4XFRwC7xHwqOKVU0YVzrG7QLYGNoZv94KipW0JIW370e7Np-BJakLulEIA_FcutCpaPDmkUj6cYTMT0HkWtqqmJuxoIpNLTjviOkP49YcP-B1CioB1-u5FUq7dJGSfn1BzGV3p6TFkNQbdg7F3uSGlsYoeq9rBFj04tW0L1UxZnoE0AD4mSIAVqljbMLuU6sQBxYJkJKX0cQSt17F0xciUsviS0Po-htK_xKHXdMZI0oiWExDYYzV9raBku1pmTsXp9sReLxtiSLzvspt3yXhl7VkNyBr2VCP_1cMA0ra761MpQj9RhpbEnVK4jdtB1-qlB00w",
          "e": "AQAB",
          "kid": "467cafc729b4e65f42aa3d5805352ef5caae363d867bec23c030bc01353f248f"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIG2TCCBcGgAwIBAgIUPoyUQtlYFVg0sx4RAozSQytpsS4wDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE0MjUwMFoXDTIyMTEwNTE0\nMjUwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0\nOGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52\nYzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn\nYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk\nZjM5NjI2Y2UtZjM0My00ZmY5LTkxMDYtY2ZkZTBiMThiNWNjMIIBIjANBgkqhkiG\n9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodOuw9Q8pXoIOCd98EvvUdOZr2ZaB/C3yov1\n8aX/NY3MsYWXXcDxIUlNfGL7YGj7AGbAplpPPdYhxzOoUtW9iid7A8ScjIqiZafr\nqpYJHoIeeE0xnE2036NMGZ7sQlooHlANOkXQpbtftAc8EtLo3KpTwc1bHPcSEmkK\nb61r9FGuRKxMBdi9NNIbtoDAmL+LmLK60itR4SKmBkrKHUnAvExLPYFkCMmEVVui\nwQG0rZGDF0J3Q8YPxF/uVJUS1sP+NAQ1vbfuLJfp5agEHJC0Keo11J2b/yDQpJ5U\nkBaKl/p34nXHFKt069oTpfshulzyXs6gvKoLkjR0Vw6G7NUY8wIDAQABo4ICyzCC\nAscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU47+67OxwCVnyWCh4Vxk2EPP2cikw\nHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+\nMDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu\nZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV\nHREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF\nBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr\nBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz\nZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj\naXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt\naXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z\nc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp\nZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk\nIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI\nhvcNAQELBQADggEBAGysGk34ujjbrqKBJY5avFMGPQ51VQORqU+hnKkoseZLoP5+\nJoOTFnqzdVNM8atoNvD1gA/bo1KLQ3I+j9XCqui/KzM1y3zDK9JfH53uUwFagO8o\n0POEafzbKx5A9oWPpozL6GVZvcLsPgHflvzaDuhueBqOJNy3Ho1Tx5ACm3nn584q\n1Gl295W5FQga7+R2hs9AZcYOA5oCfTLcGqUYW85JmvZQRO4FsQeRlWXbkhNFLhk6\nuYnnkaZ+tDOg6uGgn3PHGCudL7AbF1dzKKJhJrnph+axJFs3CPihaVFW8RFzobey\nsHp8dBIX08Gmq2zVl3eCiW1YOwgJT/q7wsC3iAQ\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "mova-bank-two",
    "redirect_uri": "https://staging-open.mova.vc/retorno",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "qoVaJlh4r9Irlgj7NyZRDoPpKHcBGeB_uvUxje7zupPoY_1y9BQCRW19CICHtKb6m5EkRw6VvUiPoob0RMQ-BDwreOTRvFsIcvTIM53qOH3R9ujS5hx2yXD91H8Pc1ClvtcpM3L8Srl8ZvDYymmVGOEmWblaPp0Khddo-FObd4ffEF3F-pIFmZT-7mWl5HDy4R_RkhUmezlgHXHJWl-X93vqdSiJkZ1iuHBBz8NsDZ2dSkttRmzXG8nBtzoI7-J-XxQlysSDSuLVi0xRsjScs9uHbM-A58Pm1V-7pzizE_7i7C1g3H5-TtQoJlunghRF_R_qxtNdbvm0RB8jQfDulw",
          "e": "AQAB",
          "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "v-jdLAhpffx1bS69MM1zCnOasrmq26XV4UtRiMPjam-btJMYWiDJMA4JjThbjgOSRE9uhM0fkfah0XkFkZs8swZzPg4MT4ntM_r15ANXkx4jspafLN3-9e9PVjNFDAokkOjQjbUtoU_dyvJkNSO6nNV3oPPwynu-i6gFepHltojRg-WspinsaktjY8RNWGPsBWFeHb_OKS1x6R2SC0ZnAdLvrR-WjHHPdYEbIWzUxO9FLv47CuKmCq-nDDHF-eTfHKQ3H9an3PxaK9eW4CQoJMGYCFxnBWlA_3poNGQgnxzGXcpGHw7IztDZYYHW87OimTdpV7iGdJRkNUZHfHKMXw",
          "e": "AQAB",
          "kid": "dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-encrypted-idtoken
2022-05-18 23:31:06 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/mova/
discoveryUrl
https://www.certification.openid.net/test/a/mova/.well-known/openid-configuration
2022-05-18 23:31:06 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-05-18 23:31:06
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-05-18 23:31:06
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-05-18 23:31:06
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-05-18 23:31:06
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-05-18 23:31:06
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-05-18 23:31:06
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/mova/par
2022-05-18 23:31:06
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-05-18 23:31:06 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-05-18 23:31:06 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-05-18 23:31:06 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-05-18 23:31:06 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-05-18 23:31:06 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
mova-bank
redirect_uri
https://staging-open.mova.vc/retorno
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "9pSuQC6aoj1KhNil2lZ3wZOipjZX6tLZA2_x8BFUprAOjS-GYHw8aLWln7gY4egu2eHA7Mj9cp98c2u20okKPwrX2Jm9YtDGtZjhd8U34uciOjZr7hgV-0D-dywVYzwlwI52sC9mtYQSkJYWPfb-1ewxhsZ6IFP7SX6S__wyexcwL8i_QbduTSEGUZJbbDoD7Sy9kK55UA94THsUfmHzqEXlA1TUSB6uL-9YjJK2enaCG3MjNd0FKFjT8jLnzQqIiIpe4oZxZcA17e20uYgo4nicgpg3-_5JI37tJvOo-k23Sbc6tVJ5jTVm4imB44TYzf3hxwHSGA-mlul2rvo_-Q",
      "e": "AQAB",
      "kid": "8436e2bf17e235fdf0ca0f633aae8985c10348f75eafec13fddb37810708e794"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "lpMeSx_VAFUgjkBZ4XFRwC7xHwqOKVU0YVzrG7QLYGNoZv94KipW0JIW370e7Np-BJakLulEIA_FcutCpaPDmkUj6cYTMT0HkWtqqmJuxoIpNLTjviOkP49YcP-B1CioB1-u5FUq7dJGSfn1BzGV3p6TFkNQbdg7F3uSGlsYoeq9rBFj04tW0L1UxZnoE0AD4mSIAVqljbMLuU6sQBxYJkJKX0cQSt17F0xciUsviS0Po-htK_xKHXdMZI0oiWExDYYzV9raBku1pmTsXp9sReLxtiSLzvspt3yXhl7VkNyBr2VCP_1cMA0ra761MpQj9RhpbEnVK4jdtB1-qlB00w",
      "e": "AQAB",
      "kid": "467cafc729b4e65f42aa3d5805352ef5caae363d867bec23c030bc01353f248f"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:06 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-05-18 23:31:06 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "9pSuQC6aoj1KhNil2lZ3wZOipjZX6tLZA2_x8BFUprAOjS-GYHw8aLWln7gY4egu2eHA7Mj9cp98c2u20okKPwrX2Jm9YtDGtZjhd8U34uciOjZr7hgV-0D-dywVYzwlwI52sC9mtYQSkJYWPfb-1ewxhsZ6IFP7SX6S__wyexcwL8i_QbduTSEGUZJbbDoD7Sy9kK55UA94THsUfmHzqEXlA1TUSB6uL-9YjJK2enaCG3MjNd0FKFjT8jLnzQqIiIpe4oZxZcA17e20uYgo4nicgpg3-_5JI37tJvOo-k23Sbc6tVJ5jTVm4imB44TYzf3hxwHSGA-mlul2rvo_-Q",
      "e": "AQAB",
      "kid": "8436e2bf17e235fdf0ca0f633aae8985c10348f75eafec13fddb37810708e794"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "lpMeSx_VAFUgjkBZ4XFRwC7xHwqOKVU0YVzrG7QLYGNoZv94KipW0JIW370e7Np-BJakLulEIA_FcutCpaPDmkUj6cYTMT0HkWtqqmJuxoIpNLTjviOkP49YcP-B1CioB1-u5FUq7dJGSfn1BzGV3p6TFkNQbdg7F3uSGlsYoeq9rBFj04tW0L1UxZnoE0AD4mSIAVqljbMLuU6sQBxYJkJKX0cQSt17F0xciUsviS0Po-htK_xKHXdMZI0oiWExDYYzV9raBku1pmTsXp9sReLxtiSLzvspt3yXhl7VkNyBr2VCP_1cMA0ra761MpQj9RhpbEnVK4jdtB1-qlB00w",
      "e": "AQAB",
      "kid": "467cafc729b4e65f42aa3d5805352ef5caae363d867bec23c030bc01353f248f"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "8436e2bf17e235fdf0ca0f633aae8985c10348f75eafec13fddb37810708e794",
      "alg": "PS256",
      "n": "9pSuQC6aoj1KhNil2lZ3wZOipjZX6tLZA2_x8BFUprAOjS-GYHw8aLWln7gY4egu2eHA7Mj9cp98c2u20okKPwrX2Jm9YtDGtZjhd8U34uciOjZr7hgV-0D-dywVYzwlwI52sC9mtYQSkJYWPfb-1ewxhsZ6IFP7SX6S__wyexcwL8i_QbduTSEGUZJbbDoD7Sy9kK55UA94THsUfmHzqEXlA1TUSB6uL-9YjJK2enaCG3MjNd0FKFjT8jLnzQqIiIpe4oZxZcA17e20uYgo4nicgpg3-_5JI37tJvOo-k23Sbc6tVJ5jTVm4imB44TYzf3hxwHSGA-mlul2rvo_-Q"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "467cafc729b4e65f42aa3d5805352ef5caae363d867bec23c030bc01353f248f",
      "alg": "RSA-OAEP",
      "n": "lpMeSx_VAFUgjkBZ4XFRwC7xHwqOKVU0YVzrG7QLYGNoZv94KipW0JIW370e7Np-BJakLulEIA_FcutCpaPDmkUj6cYTMT0HkWtqqmJuxoIpNLTjviOkP49YcP-B1CioB1-u5FUq7dJGSfn1BzGV3p6TFkNQbdg7F3uSGlsYoeq9rBFj04tW0L1UxZnoE0AD4mSIAVqljbMLuU6sQBxYJkJKX0cQSt17F0xciUsviS0Po-htK_xKHXdMZI0oiWExDYYzV9raBku1pmTsXp9sReLxtiSLzvspt3yXhl7VkNyBr2VCP_1cMA0ra761MpQj9RhpbEnVK4jdtB1-qlB00w"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-05-18 23:31:06 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-05-18 23:31:06 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "9pSuQC6aoj1KhNil2lZ3wZOipjZX6tLZA2_x8BFUprAOjS-GYHw8aLWln7gY4egu2eHA7Mj9cp98c2u20okKPwrX2Jm9YtDGtZjhd8U34uciOjZr7hgV-0D-dywVYzwlwI52sC9mtYQSkJYWPfb-1ewxhsZ6IFP7SX6S__wyexcwL8i_QbduTSEGUZJbbDoD7Sy9kK55UA94THsUfmHzqEXlA1TUSB6uL-9YjJK2enaCG3MjNd0FKFjT8jLnzQqIiIpe4oZxZcA17e20uYgo4nicgpg3-_5JI37tJvOo-k23Sbc6tVJ5jTVm4imB44TYzf3hxwHSGA-mlul2rvo_-Q",
      "e": "AQAB",
      "kid": "8436e2bf17e235fdf0ca0f633aae8985c10348f75eafec13fddb37810708e794"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "lpMeSx_VAFUgjkBZ4XFRwC7xHwqOKVU0YVzrG7QLYGNoZv94KipW0JIW370e7Np-BJakLulEIA_FcutCpaPDmkUj6cYTMT0HkWtqqmJuxoIpNLTjviOkP49YcP-B1CioB1-u5FUq7dJGSfn1BzGV3p6TFkNQbdg7F3uSGlsYoeq9rBFj04tW0L1UxZnoE0AD4mSIAVqljbMLuU6sQBxYJkJKX0cQSt17F0xciUsviS0Po-htK_xKHXdMZI0oiWExDYYzV9raBku1pmTsXp9sReLxtiSLzvspt3yXhl7VkNyBr2VCP_1cMA0ra761MpQj9RhpbEnVK4jdtB1-qlB00w",
      "e": "AQAB",
      "kid": "467cafc729b4e65f42aa3d5805352ef5caae363d867bec23c030bc01353f248f"
    }
  ]
}
Verify configuration of second client
2022-05-18 23:31:06 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
mova-bank-two
redirect_uri
https://staging-open.mova.vc/retorno
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "qoVaJlh4r9Irlgj7NyZRDoPpKHcBGeB_uvUxje7zupPoY_1y9BQCRW19CICHtKb6m5EkRw6VvUiPoob0RMQ-BDwreOTRvFsIcvTIM53qOH3R9ujS5hx2yXD91H8Pc1ClvtcpM3L8Srl8ZvDYymmVGOEmWblaPp0Khddo-FObd4ffEF3F-pIFmZT-7mWl5HDy4R_RkhUmezlgHXHJWl-X93vqdSiJkZ1iuHBBz8NsDZ2dSkttRmzXG8nBtzoI7-J-XxQlysSDSuLVi0xRsjScs9uHbM-A58Pm1V-7pzizE_7i7C1g3H5-TtQoJlunghRF_R_qxtNdbvm0RB8jQfDulw",
      "e": "AQAB",
      "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "v-jdLAhpffx1bS69MM1zCnOasrmq26XV4UtRiMPjam-btJMYWiDJMA4JjThbjgOSRE9uhM0fkfah0XkFkZs8swZzPg4MT4ntM_r15ANXkx4jspafLN3-9e9PVjNFDAokkOjQjbUtoU_dyvJkNSO6nNV3oPPwynu-i6gFepHltojRg-WspinsaktjY8RNWGPsBWFeHb_OKS1x6R2SC0ZnAdLvrR-WjHHPdYEbIWzUxO9FLv47CuKmCq-nDDHF-eTfHKQ3H9an3PxaK9eW4CQoJMGYCFxnBWlA_3poNGQgnxzGXcpGHw7IztDZYYHW87OimTdpV7iGdJRkNUZHfHKMXw",
      "e": "AQAB",
      "kid": "dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-05-18 23:31:06 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "qoVaJlh4r9Irlgj7NyZRDoPpKHcBGeB_uvUxje7zupPoY_1y9BQCRW19CICHtKb6m5EkRw6VvUiPoob0RMQ-BDwreOTRvFsIcvTIM53qOH3R9ujS5hx2yXD91H8Pc1ClvtcpM3L8Srl8ZvDYymmVGOEmWblaPp0Khddo-FObd4ffEF3F-pIFmZT-7mWl5HDy4R_RkhUmezlgHXHJWl-X93vqdSiJkZ1iuHBBz8NsDZ2dSkttRmzXG8nBtzoI7-J-XxQlysSDSuLVi0xRsjScs9uHbM-A58Pm1V-7pzizE_7i7C1g3H5-TtQoJlunghRF_R_qxtNdbvm0RB8jQfDulw",
      "e": "AQAB",
      "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "v-jdLAhpffx1bS69MM1zCnOasrmq26XV4UtRiMPjam-btJMYWiDJMA4JjThbjgOSRE9uhM0fkfah0XkFkZs8swZzPg4MT4ntM_r15ANXkx4jspafLN3-9e9PVjNFDAokkOjQjbUtoU_dyvJkNSO6nNV3oPPwynu-i6gFepHltojRg-WspinsaktjY8RNWGPsBWFeHb_OKS1x6R2SC0ZnAdLvrR-WjHHPdYEbIWzUxO9FLv47CuKmCq-nDDHF-eTfHKQ3H9an3PxaK9eW4CQoJMGYCFxnBWlA_3poNGQgnxzGXcpGHw7IztDZYYHW87OimTdpV7iGdJRkNUZHfHKMXw",
      "e": "AQAB",
      "kid": "dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3",
      "alg": "PS256",
      "n": "qoVaJlh4r9Irlgj7NyZRDoPpKHcBGeB_uvUxje7zupPoY_1y9BQCRW19CICHtKb6m5EkRw6VvUiPoob0RMQ-BDwreOTRvFsIcvTIM53qOH3R9ujS5hx2yXD91H8Pc1ClvtcpM3L8Srl8ZvDYymmVGOEmWblaPp0Khddo-FObd4ffEF3F-pIFmZT-7mWl5HDy4R_RkhUmezlgHXHJWl-X93vqdSiJkZ1iuHBBz8NsDZ2dSkttRmzXG8nBtzoI7-J-XxQlysSDSuLVi0xRsjScs9uHbM-A58Pm1V-7pzizE_7i7C1g3H5-TtQoJlunghRF_R_qxtNdbvm0RB8jQfDulw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39",
      "alg": "RSA-OAEP",
      "n": "v-jdLAhpffx1bS69MM1zCnOasrmq26XV4UtRiMPjam-btJMYWiDJMA4JjThbjgOSRE9uhM0fkfah0XkFkZs8swZzPg4MT4ntM_r15ANXkx4jspafLN3-9e9PVjNFDAokkOjQjbUtoU_dyvJkNSO6nNV3oPPwynu-i6gFepHltojRg-WspinsaktjY8RNWGPsBWFeHb_OKS1x6R2SC0ZnAdLvrR-WjHHPdYEbIWzUxO9FLv47CuKmCq-nDDHF-eTfHKQ3H9an3PxaK9eW4CQoJMGYCFxnBWlA_3poNGQgnxzGXcpGHw7IztDZYYHW87OimTdpV7iGdJRkNUZHfHKMXw"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-05-18 23:31:06 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-05-18 23:31:06 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "qoVaJlh4r9Irlgj7NyZRDoPpKHcBGeB_uvUxje7zupPoY_1y9BQCRW19CICHtKb6m5EkRw6VvUiPoob0RMQ-BDwreOTRvFsIcvTIM53qOH3R9ujS5hx2yXD91H8Pc1ClvtcpM3L8Srl8ZvDYymmVGOEmWblaPp0Khddo-FObd4ffEF3F-pIFmZT-7mWl5HDy4R_RkhUmezlgHXHJWl-X93vqdSiJkZ1iuHBBz8NsDZ2dSkttRmzXG8nBtzoI7-J-XxQlysSDSuLVi0xRsjScs9uHbM-A58Pm1V-7pzizE_7i7C1g3H5-TtQoJlunghRF_R_qxtNdbvm0RB8jQfDulw",
      "e": "AQAB",
      "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "v-jdLAhpffx1bS69MM1zCnOasrmq26XV4UtRiMPjam-btJMYWiDJMA4JjThbjgOSRE9uhM0fkfah0XkFkZs8swZzPg4MT4ntM_r15ANXkx4jspafLN3-9e9PVjNFDAokkOjQjbUtoU_dyvJkNSO6nNV3oPPwynu-i6gFepHltojRg-WspinsaktjY8RNWGPsBWFeHb_OKS1x6R2SC0ZnAdLvrR-WjHHPdYEbIWzUxO9FLv47CuKmCq-nDDHF-eTfHKQ3H9an3PxaK9eW4CQoJMGYCFxnBWlA_3poNGQgnxzGXcpGHw7IztDZYYHW87OimTdpV7iGdJRkNUZHfHKMXw",
      "e": "AQAB",
      "kid": "dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39"
    }
  ]
}
2022-05-18 23:31:06 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsNotRSA1_5
Id token encryption algorithm is not RSA1_5
alg
RSA-OAEP
2022-05-18 23:31:06 SUCCESS
FAPIEnsureClientJwksContainsAnEncryptionKey
Found an encryption key in client jwks
kid
dcb68c8dc9324633f123cacb5fed644ce87c71fe52c25bdb49e5eae9c1e13e39
algorithm
RSA-OAEP
2022-05-18 23:31:06 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_alg is set
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
2022-05-18 23:31:06
fapi1-advanced-final-client-test-encrypted-idtoken
Setup Done
2022-05-18 23:31:07 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/mova/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "6395761454303883475",
  "x-datadog-parent-id": "973118498732309500",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/mova/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-05-18 23:31:07 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-05-18 23:31:07 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/mova/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-05-18 23:31:08 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/mova/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "6395761454303883475",
  "x-datadog-parent-id": "1455306016779925652",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1065"
}
incoming_path
/test-mtls/a/mova/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "consents",
  "client_id": "mova-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjcsImV4cCI6MTY1MjkxNjcyNywianRpIjoibEJOdHprZngyTWpBN1RYdE1LbFBjSWR4ZlRRMFJ6clZESmxtbFB5WXYzdyIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.Tik1E8BuC_rklYB_JxTBxmkBe5u7u7NjIiKuQU5YwiP2W0aJCjY3zontfVGXfjMhgfK6jN_p8ch-VxNe6zZ1QA3DFKTA67KR0k6-fsf-BqZyUD-FHhKEuRho_eBJUC3nSs_t43DMS4Vq9JoGvA6JPL9XIB90sVSTEQxcfPyX756lXnlR347pzRKvrmlk-5tLsNlWQv995pT9_wKL0qatisro1tXZa68bWPy5CS2PXt2I-0yBo8-mhuESJS9h6dWHbZgw73ymkJZptVYHCRselxpKANYD5NJZ4Lk2qD0OH5pwpbRh3aQruoHPH0XKFYQAjEF9p0z2UUpPkPDCioWIfw",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=consents&client_id=mova-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjcsImV4cCI6MTY1MjkxNjcyNywianRpIjoibEJOdHprZngyTWpBN1RYdE1LbFBjSWR4ZlRRMFJ6clZESmxtbFB5WXYzdyIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.Tik1E8BuC_rklYB_JxTBxmkBe5u7u7NjIiKuQU5YwiP2W0aJCjY3zontfVGXfjMhgfK6jN_p8ch-VxNe6zZ1QA3DFKTA67KR0k6-fsf-BqZyUD-FHhKEuRho_eBJUC3nSs_t43DMS4Vq9JoGvA6JPL9XIB90sVSTEQxcfPyX756lXnlR347pzRKvrmlk-5tLsNlWQv995pT9_wKL0qatisro1tXZa68bWPy5CS2PXt2I-0yBo8-mhuESJS9h6dWHbZgw73ymkJZptVYHCRselxpKANYD5NJZ4Lk2qD0OH5pwpbRh3aQruoHPH0XKFYQAjEF9p0z2UUpPkPDCioWIfw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-05-18 23:31:08 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-05-18 23:31:08 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
mova-bank-two
2022-05-18 23:31:08 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dd6667ebb-86ff-4abd-b4a0-6c96328afec9,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333393539373338303030313330,CN\u003dmova.vc,OU\u003d3e9b48bf-6929-4aba-b7c9-5b4df8ac371e,O\u003dMOVA SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mova.vc"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-05-18 23:31:08 SUCCESS
CheckForClientCertificate
Found client certificate
2022-05-18 23:31:08 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:08 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjcsImV4cCI6MTY1MjkxNjcyNywianRpIjoibEJOdHprZngyTWpBN1RYdE1LbFBjSWR4ZlRRMFJ6clZESmxtbFB5WXYzdyIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.Tik1E8BuC_rklYB_JxTBxmkBe5u7u7NjIiKuQU5YwiP2W0aJCjY3zontfVGXfjMhgfK6jN_p8ch-VxNe6zZ1QA3DFKTA67KR0k6-fsf-BqZyUD-FHhKEuRho_eBJUC3nSs_t43DMS4Vq9JoGvA6JPL9XIB90sVSTEQxcfPyX756lXnlR347pzRKvrmlk-5tLsNlWQv995pT9_wKL0qatisro1tXZa68bWPy5CS2PXt2I-0yBo8-mhuESJS9h6dWHbZgw73ymkJZptVYHCRselxpKANYD5NJZ4Lk2qD0OH5pwpbRh3aQruoHPH0XKFYQAjEF9p0z2UUpPkPDCioWIfw",
  "header": {
    "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "mova-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/mova/",
      "https://www.certification.openid.net/test/a/mova/token",
      "https://www.certification.openid.net/test-mtls/a/mova/token"
    ],
    "iss": "mova-bank-two",
    "exp": 1652916727,
    "iat": 1652916667,
    "jti": "lBNtzkfx2MjA7TXtMKlPcIdxfTQ0RzrVDJlmlPyYv3w"
  }
}
2022-05-18 23:31:08
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-05-18 23:31:08 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjcsImV4cCI6MTY1MjkxNjcyNywianRpIjoibEJOdHprZngyTWpBN1RYdE1LbFBjSWR4ZlRRMFJ6clZESmxtbFB5WXYzdyIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.Tik1E8BuC_rklYB_JxTBxmkBe5u7u7NjIiKuQU5YwiP2W0aJCjY3zontfVGXfjMhgfK6jN_p8ch-VxNe6zZ1QA3DFKTA67KR0k6-fsf-BqZyUD-FHhKEuRho_eBJUC3nSs_t43DMS4Vq9JoGvA6JPL9XIB90sVSTEQxcfPyX756lXnlR347pzRKvrmlk-5tLsNlWQv995pT9_wKL0qatisro1tXZa68bWPy5CS2PXt2I-0yBo8-mhuESJS9h6dWHbZgw73ymkJZptVYHCRselxpKANYD5NJZ4Lk2qD0OH5pwpbRh3aQruoHPH0XKFYQAjEF9p0z2UUpPkPDCioWIfw
2022-05-18 23:31:08 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-05-18 23:31:08 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-05-18 23:31:08 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'consents' scope in request
actual
[
  "consents"
]
expected
consents
2022-05-18 23:31:08 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO
2022-05-18 23:31:08 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO
token_type
Bearer
2022-05-18 23:31:08
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-05-18 23:31:08 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO",
  "token_type": "Bearer"
}
outgoing_path
token
2022-05-18 23:31:08 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/mova/consents/v1/consents
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/json",
  "authorization": "Bearer g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO",
  "user-agent": "axios/0.24.0",
  "x-datadog-trace-id": "6395761454303883475",
  "x-datadog-parent-id": "3985172231053313476",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1186"
}
incoming_path
/test-mtls/a/mova/consents/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk= -----END CERTIFICATE-----
incoming_body_json
{
  "data": {
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_OVERDRAFT_LIMITS_READ",
      "ACCOUNTS_BALANCES_READ",
      "ACCOUNTS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_READ",
      "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ",
      "CREDIT_CARDS_ACCOUNTS_LIMITS_READ",
      "CREDIT_CARDS_ACCOUNTS_READ",
      "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ",
      "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ",
      "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ",
      "LOANS_READ",
      "LOANS_WARRANTIES_READ",
      "LOANS_SCHEDULED_INSTALMENTS_READ",
      "LOANS_PAYMENTS_READ",
      "FINANCINGS_READ",
      "FINANCINGS_WARRANTIES_READ",
      "FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "FINANCINGS_PAYMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ",
      "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ",
      "INVOICE_FINANCINGS_READ",
      "INVOICE_FINANCINGS_WARRANTIES_READ",
      "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ",
      "INVOICE_FINANCINGS_PAYMENTS_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2021-12-31T00:00:00.000Z",
    "transactionFromDateTime": "2021-08-10T00:00:00.000Z",
    "transactionToDateTime": "2021-12-31T23:59:59.000Z"
  }
}
incoming_query_string_params
{}
incoming_body
{"data":{"loggedUser":{"document":{"identification":"57784518064","rel":"CPF"}},"permissions":["ACCOUNTS_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ","RESOURCES_READ"],"expirationDateTime":"2021-12-31T00:00:00.000Z","transactionFromDateTime":"2021-08-10T00:00:00.000Z","transactionToDateTime":"2021-12-31T23:59:59.000Z"}}
2022-05-18 23:31:08 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-05-18 23:31:08 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dd6667ebb-86ff-4abd-b4a0-6c96328afec9,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333393539373338303030313330,CN\u003dmova.vc,OU\u003d3e9b48bf-6929-4aba-b7c9-5b4df8ac371e,O\u003dMOVA SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mova.vc"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-05-18 23:31:08 SUCCESS
CheckForClientCertificate
Found client certificate
2022-05-18 23:31:08 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:08 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-05-18 23:31:08 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-05-18 23:31:08 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO
2022-05-18 23:31:08 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
g7w7siSeBiFeauQ59p6prpyYKTJYSABTM3raE4idSawt37rcPO
2022-05-18 23:31:08 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-05-18 23:31:08 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-05-18 23:31:08 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-05-18 23:31:08 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedConsents
The token request which was used to obtain the access token contained 'consents' scope
actual
[
  "consents"
]
2022-05-18 23:31:08
FAPIBrazilExtractConsentRequest
Condition ran but did not log anything
2022-05-18 23:31:08 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
470695d5-c93b-4ee5-b02c-d91aacaee64f
2022-05-18 23:31:08 SUCCESS
FAPIBrazilGenerateNewConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "470695d5-c93b-4ee5-b02c-d91aacaee64f"
}
consentId
urn:conformance:oidf:eNA56o2TAB
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:eNA56o2TAB",
    "creationDateTime": "2022-05-18T23:31:08Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-05-18T23:31:08Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-05-19T01:31:08Z",
    "transactionFromDateTime": "2022-05-18T23:26:08Z",
    "transactionToDateTime": "2022-05-19T01:31:08Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/movaconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-05-18T23:31:08Z"
  }
}
2022-05-18 23:31:08
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-05-18 23:31:08 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "470695d5-c93b-4ee5-b02c-d91aacaee64f"
  ]
}
outgoing_body
{
  "data": {
    "consentId": "urn:conformance:oidf:eNA56o2TAB",
    "creationDateTime": "2022-05-18T23:31:08Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-05-18T23:31:08Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-05-19T01:31:08Z",
    "transactionFromDateTime": "2022-05-18T23:26:08Z",
    "transactionToDateTime": "2022-05-19T01:31:08Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/movaconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-05-18T23:31:08Z"
  }
}
outgoing_path
consents/v1/consents
2022-05-18 23:31:08 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/mova/par
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "6395761454303883475",
  "x-datadog-parent-id": "5594576031504765605",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "2456"
}
incoming_path
/test-mtls/a/mova/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJiNDM3Mjc3ODM3NGY3MTIyNmJmZTdkMDdjYmY4YjczZjJhYzI5NGVkZmJjZjllNDE3ZGRmNGI5Y2Q1YzU1N2YzIn0.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.SyqFbrMZqdtI7nC-GBQfteLvR5QXykItgmyAQynhRN0RPEDEW4peoRrepXW8a2vTSE8Pil7LCwJfNdkrizMn9LAHhztbh2fy-3vYdlJ_UTUzD1rGFTG6J9NOOEsLEaofFHGNI8QB7bWb6wGSG2B0Sga6-KlPS79Uk4m02wnu41pakI70dXdvq43m5BPojzr5301TB91PxYVGSGXTygljEdGk-WW3i9ucuDcb8At3Kl2yzrbiM2rwRdX9nWLNvl3bmZUBkh5HetBJHIGZ4fzNkmzfURCiZeoLWHl_9SnBxuZ7oKfOdGW-nsECTQ3P6apKwQ8ms6v1KFIA8SmUQMGFCQ",
  "client_id": "mova-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjgsImV4cCI6MTY1MjkxNjcyOCwianRpIjoiUjc3QUFxdG5xNE5RTmFCWTlNdEJLaTFid1pVelBOUWhKT3IwQkhQMVRZTSIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.ntY9wygxC4IlahNsNt251V_PsWnVpCZeMs6qYuKBxL9VlQAnJ33EVNrfBrI9pgfExZ84zXKNz1mfz3sCOYmtJHfi1jQonsc8OHHO52vV4_Qz1_YEaqFdK1Q3-zLtqbKtIV7ws_QRfq1YwIxQxCeYspkuIQsPpaooktsxHlPZw9veZVMtLqeMPZYxZBnQ4hEDA3PqS3w863zOlt7lUTLacXALR_wdKkTn_fG2ENkFR1FeLp-FpyylWKuCoB7sWzPY28iYMNZ0pwvbQqLek9ZCZ3ya01UvQF7um7unbO1_uMRH30M2Ar_dAeOjBXQpqRebb5ifTcEgUolQjaWwHE4hcQ",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJiNDM3Mjc3ODM3NGY3MTIyNmJmZTdkMDdjYmY4YjczZjJhYzI5NGVkZmJjZjllNDE3ZGRmNGI5Y2Q1YzU1N2YzIn0.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.SyqFbrMZqdtI7nC-GBQfteLvR5QXykItgmyAQynhRN0RPEDEW4peoRrepXW8a2vTSE8Pil7LCwJfNdkrizMn9LAHhztbh2fy-3vYdlJ_UTUzD1rGFTG6J9NOOEsLEaofFHGNI8QB7bWb6wGSG2B0Sga6-KlPS79Uk4m02wnu41pakI70dXdvq43m5BPojzr5301TB91PxYVGSGXTygljEdGk-WW3i9ucuDcb8At3Kl2yzrbiM2rwRdX9nWLNvl3bmZUBkh5HetBJHIGZ4fzNkmzfURCiZeoLWHl_9SnBxuZ7oKfOdGW-nsECTQ3P6apKwQ8ms6v1KFIA8SmUQMGFCQ&client_id=mova-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjgsImV4cCI6MTY1MjkxNjcyOCwianRpIjoiUjc3QUFxdG5xNE5RTmFCWTlNdEJLaTFid1pVelBOUWhKT3IwQkhQMVRZTSIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.ntY9wygxC4IlahNsNt251V_PsWnVpCZeMs6qYuKBxL9VlQAnJ33EVNrfBrI9pgfExZ84zXKNz1mfz3sCOYmtJHfi1jQonsc8OHHO52vV4_Qz1_YEaqFdK1Q3-zLtqbKtIV7ws_QRfq1YwIxQxCeYspkuIQsPpaooktsxHlPZw9veZVMtLqeMPZYxZBnQ4hEDA3PqS3w863zOlt7lUTLacXALR_wdKkTn_fG2ENkFR1FeLp-FpyylWKuCoB7sWzPY28iYMNZ0pwvbQqLek9ZCZ3ya01UvQF7um7unbO1_uMRH30M2Ar_dAeOjBXQpqRebb5ifTcEgUolQjaWwHE4hcQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-05-18 23:31:08 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-05-18 23:31:08 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3\nMjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0\nOGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52\nYzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn\nYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk\nZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG\n9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb\nfp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD\nr0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT\no9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5\nZp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ\ndTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC\nAscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw\nHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+\nMDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu\nZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV\nHREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF\nBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr\nBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz\nZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj\naXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt\naXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z\nc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp\nZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk\nIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI\nhvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+\njgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD\nafubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS\nmndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ\n2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dd6667ebb-86ff-4abd-b4a0-6c96328afec9,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333393539373338303030313330,CN\u003dmova.vc,OU\u003d3e9b48bf-6929-4aba-b7c9-5b4df8ac371e,O\u003dMOVA SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mova.vc"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-05-18 23:31:08 SUCCESS
CheckForClientCertificate
Found client certificate
2022-05-18 23:31:08 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:08 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjgsImV4cCI6MTY1MjkxNjcyOCwianRpIjoiUjc3QUFxdG5xNE5RTmFCWTlNdEJLaTFid1pVelBOUWhKT3IwQkhQMVRZTSIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.ntY9wygxC4IlahNsNt251V_PsWnVpCZeMs6qYuKBxL9VlQAnJ33EVNrfBrI9pgfExZ84zXKNz1mfz3sCOYmtJHfi1jQonsc8OHHO52vV4_Qz1_YEaqFdK1Q3-zLtqbKtIV7ws_QRfq1YwIxQxCeYspkuIQsPpaooktsxHlPZw9veZVMtLqeMPZYxZBnQ4hEDA3PqS3w863zOlt7lUTLacXALR_wdKkTn_fG2ENkFR1FeLp-FpyylWKuCoB7sWzPY28iYMNZ0pwvbQqLek9ZCZ3ya01UvQF7um7unbO1_uMRH30M2Ar_dAeOjBXQpqRebb5ifTcEgUolQjaWwHE4hcQ",
  "header": {
    "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "mova-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/mova/",
      "https://www.certification.openid.net/test/a/mova/token",
      "https://www.certification.openid.net/test-mtls/a/mova/token"
    ],
    "iss": "mova-bank-two",
    "exp": 1652916728,
    "iat": 1652916668,
    "jti": "R77AAqtnq4NQNaBY9MtBKi1bwZUzPNQhJOr0BHP1TYM"
  }
}
2022-05-18 23:31:08
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-05-18 23:31:08 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NjgsImV4cCI6MTY1MjkxNjcyOCwianRpIjoiUjc3QUFxdG5xNE5RTmFCWTlNdEJLaTFid1pVelBOUWhKT3IwQkhQMVRZTSIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.ntY9wygxC4IlahNsNt251V_PsWnVpCZeMs6qYuKBxL9VlQAnJ33EVNrfBrI9pgfExZ84zXKNz1mfz3sCOYmtJHfi1jQonsc8OHHO52vV4_Qz1_YEaqFdK1Q3-zLtqbKtIV7ws_QRfq1YwIxQxCeYspkuIQsPpaooktsxHlPZw9veZVMtLqeMPZYxZBnQ4hEDA3PqS3w863zOlt7lUTLacXALR_wdKkTn_fG2ENkFR1FeLp-FpyylWKuCoB7sWzPY28iYMNZ0pwvbQqLek9ZCZ3ya01UvQF7um7unbO1_uMRH30M2Ar_dAeOjBXQpqRebb5ifTcEgUolQjaWwHE4hcQ
2022-05-18 23:31:08 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-05-18 23:31:08 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2022-05-18 23:31:08 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJiNDM3Mjc3ODM3NGY3MTIyNmJmZTdkMDdjYmY4YjczZjJhYzI5NGVkZmJjZjllNDE3ZGRmNGI5Y2Q1YzU1N2YzIn0.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.SyqFbrMZqdtI7nC-GBQfteLvR5QXykItgmyAQynhRN0RPEDEW4peoRrepXW8a2vTSE8Pil7LCwJfNdkrizMn9LAHhztbh2fy-3vYdlJ_UTUzD1rGFTG6J9NOOEsLEaofFHGNI8QB7bWb6wGSG2B0Sga6-KlPS79Uk4m02wnu41pakI70dXdvq43m5BPojzr5301TB91PxYVGSGXTygljEdGk-WW3i9ucuDcb8At3Kl2yzrbiM2rwRdX9nWLNvl3bmZUBkh5HetBJHIGZ4fzNkmzfURCiZeoLWHl_9SnBxuZ7oKfOdGW-nsECTQ3P6apKwQ8ms6v1KFIA8SmUQMGFCQ",
  "header": {
    "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "mova-bank-two",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
    "client_id": "mova-bank-two",
    "aud": "https://www.certification.openid.net/test/a/mova/",
    "nbf": 1652916668,
    "scope": "openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8",
    "redirect_uri": "https://staging-open.mova.vc/retorno",
    "exp": 1652916968,
    "iat": 1652916668,
    "code_challenge": "ZtEV8qOBm0SBpFtq1xCnp1mwUMgmNzZtQE8Ohc6BROc",
    "jti": "xpAi-FfgY1Sb4ATg3i85zH4Sn3XX-_EOhwf-tDT-r74"
  }
}
2022-05-18 23:31:08 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-05-18 23:31:08 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-05-18 23:31:08 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-05-18 23:31:08 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]
2022-05-18 23:31:08 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"May 18, 2022, 11:36:08 PM"
2022-05-18 23:31:08 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"May 18, 2022, 11:31:08 PM"
now
"May 18, 2022, 11:31:08 PM"
2022-05-18 23:31:08
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-05-18 23:31:08 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-05-18 23:31:08 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-05-18 23:31:08 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-05-18 23:31:08 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-05-18 23:31:08 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJiNDM3Mjc3ODM3NGY3MTIyNmJmZTdkMDdjYmY4YjczZjJhYzI5NGVkZmJjZjllNDE3ZGRmNGI5Y2Q1YzU1N2YzIn0.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.SyqFbrMZqdtI7nC-GBQfteLvR5QXykItgmyAQynhRN0RPEDEW4peoRrepXW8a2vTSE8Pil7LCwJfNdkrizMn9LAHhztbh2fy-3vYdlJ_UTUzD1rGFTG6J9NOOEsLEaofFHGNI8QB7bWb6wGSG2B0Sga6-KlPS79Uk4m02wnu41pakI70dXdvq43m5BPojzr5301TB91PxYVGSGXTygljEdGk-WW3i9ucuDcb8At3Kl2yzrbiM2rwRdX9nWLNvl3bmZUBkh5HetBJHIGZ4fzNkmzfURCiZeoLWHl_9SnBxuZ7oKfOdGW-nsECTQ3P6apKwQ8ms6v1KFIA8SmUQMGFCQ
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 21526270239064060631586280473820529458950263848035686142504669229599567744569140414804398097143287187733191828688376220129541041986594689889732506101080614818120720609551561456806603178575225167192331905929733163370989503415050261984644109775638382310974848517831539904524592359528690070784782230979504006398237619617857853620897692644825949801080173504122526842739248237511642880544487606174258776540167656861123820969271274733802372191054593269305462578496896816864294375764800242915022572737616837388228518721094934255496442303210008519243881020033072044920266066241342943801654397235734234583955937487124939468439
  public exponent: 65537
2022-05-18 23:31:08 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://staging-open.mova.vc/retorno
2022-05-18 23:31:08 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
ZtEV8qOBm0SBpFtq1xCnp1mwUMgmNzZtQE8Ohc6BROc
2022-05-18 23:31:08 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:47a6e60b-aa34-490d-866e-6432f25e8a58
expires_in
600
2022-05-18 23:31:08 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:47a6e60b-aa34-490d-866e-6432f25e8a58",
  "expires_in": 600
}
outgoing_path
par
2022-05-18 23:31:09 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/mova/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "f1ddf275-4625-4159-a5bd-8baaa06bdcf2",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/mova/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "mova-bank-two",
  "scope": "openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "request_uri": "urn:ietf:params:oauth:request_uri:47a6e60b-aa34-490d-866e-6432f25e8a58"
}
incoming_body
2022-05-18 23:31:09 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-05-18 23:31:09 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-05-18 23:31:09 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-05-18 23:31:09 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "mova-bank-two",
  "scope": "openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "iss": "mova-bank-two",
  "code_challenge_method": "S256",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "aud": "https://www.certification.openid.net/test/a/mova/",
  "nbf": 1652916668,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8",
  "exp": 1652916968,
  "iat": 1652916668,
  "code_challenge": "ZtEV8qOBm0SBpFtq1xCnp1mwUMgmNzZtQE8Ohc6BROc",
  "jti": "xpAi-FfgY1Sb4ATg3i85zH4Sn3XX-_EOhwf-tDT-r74"
}
2022-05-18 23:31:09 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-05-18 23:31:09 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources
2022-05-18 23:31:09 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:eNA56o2TAB",
  "accounts",
  "resources"
]
expected
consent:urn:conformance:oidf:eNA56o2TAB
2022-05-18 23:31:09 SUCCESS
EnsureScopeContainsAccounts
Found accounts scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:eNA56o2TAB",
  "accounts",
  "resources"
]
2022-05-18 23:31:09 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-05-18 23:31:09 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:eNA56o2TAB",
  "accounts",
  "resources"
]
expected
openid
2022-05-18 23:31:09 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
mova-bank-two
2022-05-18 23:31:09 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N
2022-05-18 23:31:09 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE
2022-05-18 23:31:09 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
NdnRa3qO6AkRmwb8xXK6Mg
2022-05-18 23:31:09 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
R8bGvTYRhRTX66WyeZqOlg
2022-05-18 23:31:09 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/mova/
sub
user-subject-1234531
aud
mova-bank-two
nonce
LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE
iat
1652916669
exp
1652916969
2022-05-18 23:31:09 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916669,
  "exp": 1652916969
}
2022-05-18 23:31:09 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
NdnRa3qO6AkRmwb8xXK6Mg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916669,
  "exp": 1652916969,
  "c_hash": "NdnRa3qO6AkRmwb8xXK6Mg"
}
2022-05-18 23:31:09 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
R8bGvTYRhRTX66WyeZqOlg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916669,
  "exp": 1652916969,
  "c_hash": "NdnRa3qO6AkRmwb8xXK6Mg",
  "s_hash": "R8bGvTYRhRTX66WyeZqOlg"
}
2022-05-18 23:31:09 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-05-18 23:31:09 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916669,
  "exp": 1652916969,
  "c_hash": "NdnRa3qO6AkRmwb8xXK6Mg",
  "s_hash": "R8bGvTYRhRTX66WyeZqOlg",
  "acr": "urn:brasil:openbanking:loa2"
}
2022-05-18 23:31:09 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6Im1vdmEtYmFuay10d28iLCJjX2hhc2giOiJOZG5SYTNxTzZBa1Jtd2I4eFhLNk1nIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiUjhiR3ZUWVJoUlRYNjZXeWVacU9sZyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9tb3ZhXC8iLCJleHAiOjE2NTI5MTY5NjksIm5vbmNlIjoiTEY5R3JuV0hTangxeDBLd2FMLU40LTJTeDNhazZHMkNaLWNRMGN5LUZCRSIsImlhdCI6MTY1MjkxNjY2OX0.SBMgQUJk_NHHkYeVWPqTSDlApPwsV8kq49U1yZpDwiKS4FZlKj89jeaktmnf-vibCZ6hyHfwffdlHX839r3jS_J1jySUxMSoF3PPgZz5WQ3DqmulLZQPKbhnR8VcR7ncekDMshsiNlUrJbbjmjIk6Td4ClgFp0o9QvkiHNFF_fqbMdJ8GrIgnO8deY-TFRI5W0OwcsjzX0Zb8IZFxjm2GEb6hqNxJs_fbimz6HW-R1OY3B7-Y-T9Juxa4Yf1TRkvo27A_DTytC_X6imtsSnneWFX89DM4zA5fRtQZqqiAez7NJBKNHz2IX3NT8vVpEzjJxY8GoCNRD8QMOR829WAcQ
2022-05-18 23:31:09
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.lyO92fe-QiBH1NY64XH9mHc4r0qk0GN9Xy6hFYiTomznDgdWse7x2mVzxFwyAXmF8MzJYAZhq1vdLlgAdCpq11kOlnlh-dXx0Xr2pHKXLzCez887sJQheT3hGV-qXeCbeAV6G8ctCzEEcVaA1HAA0roiMCVKfIFBFZfQZGhUQh9JeNfjcc-RV-VHvEai0N2LqRrR2PTngsgthzjltdLy_YPl-YJZH0x5y_6pgOeBfhJ5dWxk3klAqsTuEWdOHhG9p_I1zBcSp-dcBDMl_l3clJU6BJQ5rQfpLhWWbFW1NxR5QA5GrioINA45qJlHAVKLOVtlKFgnNZcRw3P6ym6nsg.TPpga-k1h__besQZ.F8N0zGArCHbXy1_oHfZrL2yft2Dqn9sxCxfeXuEaT5iguzmesD0cX7SwyK4DGi6ksM3FoYuYjGdqUwUgvG7yFzRd5E2Llp_f7ZcKKiT4dm2bz7ioDF8OdOip2xsq14vNML7FuwoKsbxbsLg155KBiixS0AI5p5LAzllQYYYpiE7cs08-xAcyRNOzdvizzls6wIfjy-rk62mJx45nEa1NsHvqVfGXvGUNewd2M7K6_J3TqldjFP0sKu0bHjBCUbWnH-f_6GzYBK5FHz57lfQGY_-hLnbKJAO0PrASCx2pSNpm-jkydws6BvMuGwkrxLRa8VkLcLDZrjoLZzH81h_436fHyYUWw_XXyGmAwba7CFn03Np3v9nGO2imv3ABfsyfYBfvC-_jAVOcFQ3RedbrOuO6e-NdnWpl1UcmIkDMTgKPCbFf-A0i0RgChLuithea85mu818Zk5AvDezOv2DLjNY6cr79a3OKNf_mUlzZbXmFaTKTHLtB8vKpKKDSLauGNHts5m0aGEocIWEeZUguj5yEGJfI4Gb-PbW77XlYK8hLNqq7dj6Ayftku3DplfFtgetkngeARIwJvhHdSpRGfML1J24Rr0EEm2qvpYLLAbUOzJFvI6BZtCH9ZRBdNWqiKJo6qrRaAD5FyAq1HcNDUpZamLUYoj1x47kH8jV19U1VYFCH-aTxpid3KG38Ut4x8M2yDWL4-Wcv29fDhQNzfUk_tE1meSJWxvCqGdmAFsX4zbwKWwqMKnGkHOZkoO4fxoXabJw4eRS_JBTJE6kUD-qT2PgP59EXKl8FpNrz91n-Wbzfwe34NWbMg7e8JnEX1jwlsdS7oK60Zz06dTupoowFOgmYgikmPEzpVMvSEdtDNfMuPn4f4uqfcAbs-RI1x4bTI9w2K-RVgUyp265_uOiLKalHsPAJqf473PoQX4ZKMjeu-klNrPzPxpQe8fCRaB8TYcVu4TOr5YwJiYIahv6R4HLCzQMjKCAnDwX4nTJ-bTGa2ofM5CyeXdV-F30YfCyp7Hj_yMo_qPC6cSpw5a2BKk2QCKcJy-TL7jzyhhWBrlfVwXtLnOKtL_y3gHNEjmFqLrGAFiAPW5tEGSBNv474Z0MWEh83rnqYeGw._MU3EDewv72A-mvyLgPn3w
2022-05-18 23:31:09 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:eNA56o2TAB",
    "creationDateTime": "2022-05-18T23:31:08Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-05-18T23:31:09Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-05-19T01:31:08Z",
    "transactionFromDateTime": "2022-05-18T23:26:08Z",
    "transactionToDateTime": "2022-05-19T01:31:08Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/movaconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-05-18T23:31:08Z"
  }
}
2022-05-18 23:31:09 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "state": "EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8"
}
2022-05-18 23:31:09 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "state": "EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8",
  "code": "aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N"
}
2022-05-18 23:31:09 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "state": "EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8",
  "code": "aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N",
  "id_token": "eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.lyO92fe-QiBH1NY64XH9mHc4r0qk0GN9Xy6hFYiTomznDgdWse7x2mVzxFwyAXmF8MzJYAZhq1vdLlgAdCpq11kOlnlh-dXx0Xr2pHKXLzCez887sJQheT3hGV-qXeCbeAV6G8ctCzEEcVaA1HAA0roiMCVKfIFBFZfQZGhUQh9JeNfjcc-RV-VHvEai0N2LqRrR2PTngsgthzjltdLy_YPl-YJZH0x5y_6pgOeBfhJ5dWxk3klAqsTuEWdOHhG9p_I1zBcSp-dcBDMl_l3clJU6BJQ5rQfpLhWWbFW1NxR5QA5GrioINA45qJlHAVKLOVtlKFgnNZcRw3P6ym6nsg.TPpga-k1h__besQZ.F8N0zGArCHbXy1_oHfZrL2yft2Dqn9sxCxfeXuEaT5iguzmesD0cX7SwyK4DGi6ksM3FoYuYjGdqUwUgvG7yFzRd5E2Llp_f7ZcKKiT4dm2bz7ioDF8OdOip2xsq14vNML7FuwoKsbxbsLg155KBiixS0AI5p5LAzllQYYYpiE7cs08-xAcyRNOzdvizzls6wIfjy-rk62mJx45nEa1NsHvqVfGXvGUNewd2M7K6_J3TqldjFP0sKu0bHjBCUbWnH-f_6GzYBK5FHz57lfQGY_-hLnbKJAO0PrASCx2pSNpm-jkydws6BvMuGwkrxLRa8VkLcLDZrjoLZzH81h_436fHyYUWw_XXyGmAwba7CFn03Np3v9nGO2imv3ABfsyfYBfvC-_jAVOcFQ3RedbrOuO6e-NdnWpl1UcmIkDMTgKPCbFf-A0i0RgChLuithea85mu818Zk5AvDezOv2DLjNY6cr79a3OKNf_mUlzZbXmFaTKTHLtB8vKpKKDSLauGNHts5m0aGEocIWEeZUguj5yEGJfI4Gb-PbW77XlYK8hLNqq7dj6Ayftku3DplfFtgetkngeARIwJvhHdSpRGfML1J24Rr0EEm2qvpYLLAbUOzJFvI6BZtCH9ZRBdNWqiKJo6qrRaAD5FyAq1HcNDUpZamLUYoj1x47kH8jV19U1VYFCH-aTxpid3KG38Ut4x8M2yDWL4-Wcv29fDhQNzfUk_tE1meSJWxvCqGdmAFsX4zbwKWwqMKnGkHOZkoO4fxoXabJw4eRS_JBTJE6kUD-qT2PgP59EXKl8FpNrz91n-Wbzfwe34NWbMg7e8JnEX1jwlsdS7oK60Zz06dTupoowFOgmYgikmPEzpVMvSEdtDNfMuPn4f4uqfcAbs-RI1x4bTI9w2K-RVgUyp265_uOiLKalHsPAJqf473PoQX4ZKMjeu-klNrPzPxpQe8fCRaB8TYcVu4TOr5YwJiYIahv6R4HLCzQMjKCAnDwX4nTJ-bTGa2ofM5CyeXdV-F30YfCyp7Hj_yMo_qPC6cSpw5a2BKk2QCKcJy-TL7jzyhhWBrlfVwXtLnOKtL_y3gHNEjmFqLrGAFiAPW5tEGSBNv474Z0MWEh83rnqYeGw._MU3EDewv72A-mvyLgPn3w"
}
2022-05-18 23:31:09
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://staging-open.mova.vc/retorno#state=EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8&code=aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N&id_token=eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.lyO92fe-QiBH1NY64XH9mHc4r0qk0GN9Xy6hFYiTomznDgdWse7x2mVzxFwyAXmF8MzJYAZhq1vdLlgAdCpq11kOlnlh-dXx0Xr2pHKXLzCez887sJQheT3hGV-qXeCbeAV6G8ctCzEEcVaA1HAA0roiMCVKfIFBFZfQZGhUQh9JeNfjcc-RV-VHvEai0N2LqRrR2PTngsgthzjltdLy_YPl-YJZH0x5y_6pgOeBfhJ5dWxk3klAqsTuEWdOHhG9p_I1zBcSp-dcBDMl_l3clJU6BJQ5rQfpLhWWbFW1NxR5QA5GrioINA45qJlHAVKLOVtlKFgnNZcRw3P6ym6nsg.TPpga-k1h__besQZ.F8N0zGArCHbXy1_oHfZrL2yft2Dqn9sxCxfeXuEaT5iguzmesD0cX7SwyK4DGi6ksM3FoYuYjGdqUwUgvG7yFzRd5E2Llp_f7ZcKKiT4dm2bz7ioDF8OdOip2xsq14vNML7FuwoKsbxbsLg155KBiixS0AI5p5LAzllQYYYpiE7cs08-xAcyRNOzdvizzls6wIfjy-rk62mJx45nEa1NsHvqVfGXvGUNewd2M7K6_J3TqldjFP0sKu0bHjBCUbWnH-f_6GzYBK5FHz57lfQGY_-hLnbKJAO0PrASCx2pSNpm-jkydws6BvMuGwkrxLRa8VkLcLDZrjoLZzH81h_436fHyYUWw_XXyGmAwba7CFn03Np3v9nGO2imv3ABfsyfYBfvC-_jAVOcFQ3RedbrOuO6e-NdnWpl1UcmIkDMTgKPCbFf-A0i0RgChLuithea85mu818Zk5AvDezOv2DLjNY6cr79a3OKNf_mUlzZbXmFaTKTHLtB8vKpKKDSLauGNHts5m0aGEocIWEeZUguj5yEGJfI4Gb-PbW77XlYK8hLNqq7dj6Ayftku3DplfFtgetkngeARIwJvhHdSpRGfML1J24Rr0EEm2qvpYLLAbUOzJFvI6BZtCH9ZRBdNWqiKJo6qrRaAD5FyAq1HcNDUpZamLUYoj1x47kH8jV19U1VYFCH-aTxpid3KG38Ut4x8M2yDWL4-Wcv29fDhQNzfUk_tE1meSJWxvCqGdmAFsX4zbwKWwqMKnGkHOZkoO4fxoXabJw4eRS_JBTJE6kUD-qT2PgP59EXKl8FpNrz91n-Wbzfwe34NWbMg7e8JnEX1jwlsdS7oK60Zz06dTupoowFOgmYgikmPEzpVMvSEdtDNfMuPn4f4uqfcAbs-RI1x4bTI9w2K-RVgUyp265_uOiLKalHsPAJqf473PoQX4ZKMjeu-klNrPzPxpQe8fCRaB8TYcVu4TOr5YwJiYIahv6R4HLCzQMjKCAnDwX4nTJ-bTGa2ofM5CyeXdV-F30YfCyp7Hj_yMo_qPC6cSpw5a2BKk2QCKcJy-TL7jzyhhWBrlfVwXtLnOKtL_y3gHNEjmFqLrGAFiAPW5tEGSBNv474Z0MWEh83rnqYeGw._MU3EDewv72A-mvyLgPn3w
2022-05-18 23:31:09 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://staging-open.mova.vc/retorno#state=EeNhbpm_GDJEpqDtiEGX-SDeaZFbKsQz31KgyOsvqF8&code=aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N&id_token=eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.lyO92fe-QiBH1NY64XH9mHc4r0qk0GN9Xy6hFYiTomznDgdWse7x2mVzxFwyAXmF8MzJYAZhq1vdLlgAdCpq11kOlnlh-dXx0Xr2pHKXLzCez887sJQheT3hGV-qXeCbeAV6G8ctCzEEcVaA1HAA0roiMCVKfIFBFZfQZGhUQh9JeNfjcc-RV-VHvEai0N2LqRrR2PTngsgthzjltdLy_YPl-YJZH0x5y_6pgOeBfhJ5dWxk3klAqsTuEWdOHhG9p_I1zBcSp-dcBDMl_l3clJU6BJQ5rQfpLhWWbFW1NxR5QA5GrioINA45qJlHAVKLOVtlKFgnNZcRw3P6ym6nsg.TPpga-k1h__besQZ.F8N0zGArCHbXy1_oHfZrL2yft2Dqn9sxCxfeXuEaT5iguzmesD0cX7SwyK4DGi6ksM3FoYuYjGdqUwUgvG7yFzRd5E2Llp_f7ZcKKiT4dm2bz7ioDF8OdOip2xsq14vNML7FuwoKsbxbsLg155KBiixS0AI5p5LAzllQYYYpiE7cs08-xAcyRNOzdvizzls6wIfjy-rk62mJx45nEa1NsHvqVfGXvGUNewd2M7K6_J3TqldjFP0sKu0bHjBCUbWnH-f_6GzYBK5FHz57lfQGY_-hLnbKJAO0PrASCx2pSNpm-jkydws6BvMuGwkrxLRa8VkLcLDZrjoLZzH81h_436fHyYUWw_XXyGmAwba7CFn03Np3v9nGO2imv3ABfsyfYBfvC-_jAVOcFQ3RedbrOuO6e-NdnWpl1UcmIkDMTgKPCbFf-A0i0RgChLuithea85mu818Zk5AvDezOv2DLjNY6cr79a3OKNf_mUlzZbXmFaTKTHLtB8vKpKKDSLauGNHts5m0aGEocIWEeZUguj5yEGJfI4Gb-PbW77XlYK8hLNqq7dj6Ayftku3DplfFtgetkngeARIwJvhHdSpRGfML1J24Rr0EEm2qvpYLLAbUOzJFvI6BZtCH9ZRBdNWqiKJo6qrRaAD5FyAq1HcNDUpZamLUYoj1x47kH8jV19U1VYFCH-aTxpid3KG38Ut4x8M2yDWL4-Wcv29fDhQNzfUk_tE1meSJWxvCqGdmAFsX4zbwKWwqMKnGkHOZkoO4fxoXabJw4eRS_JBTJE6kUD-qT2PgP59EXKl8FpNrz91n-Wbzfwe34NWbMg7e8JnEX1jwlsdS7oK60Zz06dTupoowFOgmYgikmPEzpVMvSEdtDNfMuPn4f4uqfcAbs-RI1x4bTI9w2K-RVgUyp265_uOiLKalHsPAJqf473PoQX4ZKMjeu-klNrPzPxpQe8fCRaB8TYcVu4TOr5YwJiYIahv6R4HLCzQMjKCAnDwX4nTJ-bTGa2ofM5CyeXdV-F30YfCyp7Hj_yMo_qPC6cSpw5a2BKk2QCKcJy-TL7jzyhhWBrlfVwXtLnOKtL_y3gHNEjmFqLrGAFiAPW5tEGSBNv474Z0MWEh83rnqYeGw._MU3EDewv72A-mvyLgPn3w]
outgoing_path
authorize
2022-05-18 23:31:10 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/mova/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "1920272744748247922",
  "x-datadog-parent-id": "6961801932974698723",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/mova/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-05-18 23:31:10 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-05-18 23:31:10 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/mova/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/mova/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/mova/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/mova/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/mova/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/mova/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/mova/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/mova/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-05-18 23:31:10 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/mova/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "1920272744748247922",
  "x-datadog-parent-id": "7560470796987824876",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/mova/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-05-18 23:31:10 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-05-18 23:31:10 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-05-18 23:31:10 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/mova/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "1920272744748247922",
  "x-datadog-parent-id": "3571214351745728602",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1204"
}
incoming_path
/test-mtls/a/mova/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N",
  "redirect_uri": "https://staging-open.mova.vc/retorno",
  "code_verifier": "cLTtVT4rBh3bvwQgIAxYnHgCttzqb07ydf9tFY7TJYU",
  "client_id": "mova-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NzAsImV4cCI6MTY1MjkxNjczMCwianRpIjoiZE5tSUFLTDdmclp6VHU5VjhZdms3czR0UGlheEF5YTBUUTBreWRzMXY2USIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.m0Sl2rz6yxisutWM8bz1UTCsPzcl6BmAOaKWhOWepgvQ689aW4orZ1lMCBaaYznCXOuD5m8NMnmYqog5UKVVcWydVHrr5ktWSQiB3AmY-FFvXorA6e0a6YmTUToGhSf5V62e2qfTBhZ-3OKNFqnAEbYWaFFMVsXHgafe-V03EbUEV6sFc3gjJF_VOr_g4UVxLyjNoI6j85oUVkKNoEkgeakTfsMQR7a_eiuDeJUVnJlKARgBT40iAIz5ZOPsGdcp9Ht2WiTGy_8c6G6zwJjSIcRvcpGDJehqgLZCzTxtc1UhLyj4dV5tKO3P6dY-V7LlBWC3S53Y4jSXZWqbTcZ3oA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N&redirect_uri=https%3A%2F%2Fstaging-open.mova.vc%2Fretorno&code_verifier=cLTtVT4rBh3bvwQgIAxYnHgCttzqb07ydf9tFY7TJYU&client_id=mova-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NzAsImV4cCI6MTY1MjkxNjczMCwianRpIjoiZE5tSUFLTDdmclp6VHU5VjhZdms3czR0UGlheEF5YTBUUTBreWRzMXY2USIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.m0Sl2rz6yxisutWM8bz1UTCsPzcl6BmAOaKWhOWepgvQ689aW4orZ1lMCBaaYznCXOuD5m8NMnmYqog5UKVVcWydVHrr5ktWSQiB3AmY-FFvXorA6e0a6YmTUToGhSf5V62e2qfTBhZ-3OKNFqnAEbYWaFFMVsXHgafe-V03EbUEV6sFc3gjJF_VOr_g4UVxLyjNoI6j85oUVkKNoEkgeakTfsMQR7a_eiuDeJUVnJlKARgBT40iAIz5ZOPsGdcp9Ht2WiTGy_8c6G6zwJjSIcRvcpGDJehqgLZCzTxtc1UhLyj4dV5tKO3P6dY-V7LlBWC3S53Y4jSXZWqbTcZ3oA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-05-18 23:31:10 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-05-18 23:31:10 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
mova-bank-two
2022-05-18 23:31:10 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3\nMjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD\no28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0\nOGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52\nYzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn\nYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk\nZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG\n9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb\nfp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD\nr0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT\no9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5\nZp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ\ndTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC\nAscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw\nHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+\nMDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu\nZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV\nHREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF\nBQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr\nBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz\nZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj\naXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt\naXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z\nc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp\nZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk\nIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k\nYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI\nhvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+\njgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD\nafubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS\nmndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ\n2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dd6667ebb-86ff-4abd-b4a0-6c96328afec9,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333393539373338303030313330,CN\u003dmova.vc,OU\u003d3e9b48bf-6929-4aba-b7c9-5b4df8ac371e,O\u003dMOVA SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mova.vc"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-05-18 23:31:10 SUCCESS
CheckForClientCertificate
Found client certificate
2022-05-18 23:31:10 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:10 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NzAsImV4cCI6MTY1MjkxNjczMCwianRpIjoiZE5tSUFLTDdmclp6VHU5VjhZdms3czR0UGlheEF5YTBUUTBreWRzMXY2USIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.m0Sl2rz6yxisutWM8bz1UTCsPzcl6BmAOaKWhOWepgvQ689aW4orZ1lMCBaaYznCXOuD5m8NMnmYqog5UKVVcWydVHrr5ktWSQiB3AmY-FFvXorA6e0a6YmTUToGhSf5V62e2qfTBhZ-3OKNFqnAEbYWaFFMVsXHgafe-V03EbUEV6sFc3gjJF_VOr_g4UVxLyjNoI6j85oUVkKNoEkgeakTfsMQR7a_eiuDeJUVnJlKARgBT40iAIz5ZOPsGdcp9Ht2WiTGy_8c6G6zwJjSIcRvcpGDJehqgLZCzTxtc1UhLyj4dV5tKO3P6dY-V7LlBWC3S53Y4jSXZWqbTcZ3oA",
  "header": {
    "kid": "b4372778374f71226bfe7d07cbf8b73f2ac294edfbcf9e417ddf4b9cd5c557f3",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "mova-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/mova/",
      "https://www.certification.openid.net/test/a/mova/token",
      "https://www.certification.openid.net/test-mtls/a/mova/token"
    ],
    "iss": "mova-bank-two",
    "exp": 1652916730,
    "iat": 1652916670,
    "jti": "dNmIAKL7frZzTu9V8Yvk7s4tPiaxAya0TQ0kyds1v6Q"
  }
}
2022-05-18 23:31:10
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-05-18 23:31:10 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImI0MzcyNzc4Mzc0ZjcxMjI2YmZlN2QwN2NiZjhiNzNmMmFjMjk0ZWRmYmNmOWU0MTdkZGY0YjljZDVjNTU3ZjMifQ.eyJpYXQiOjE2NTI5MTY2NzAsImV4cCI6MTY1MjkxNjczMCwianRpIjoiZE5tSUFLTDdmclp6VHU5VjhZdms3czR0UGlheEF5YTBUUTBreWRzMXY2USIsImlzcyI6Im1vdmEtYmFuay10d28iLCJzdWIiOiJtb3ZhLWJhbmstdHdvIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EvbW92YS8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL21vdmEvdG9rZW4iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC1tdGxzL2EvbW92YS90b2tlbiJdfQ.m0Sl2rz6yxisutWM8bz1UTCsPzcl6BmAOaKWhOWepgvQ689aW4orZ1lMCBaaYznCXOuD5m8NMnmYqog5UKVVcWydVHrr5ktWSQiB3AmY-FFvXorA6e0a6YmTUToGhSf5V62e2qfTBhZ-3OKNFqnAEbYWaFFMVsXHgafe-V03EbUEV6sFc3gjJF_VOr_g4UVxLyjNoI6j85oUVkKNoEkgeakTfsMQR7a_eiuDeJUVnJlKARgBT40iAIz5ZOPsGdcp9Ht2WiTGy_8c6G6zwJjSIcRvcpGDJehqgLZCzTxtc1UhLyj4dV5tKO3P6dY-V7LlBWC3S53Y4jSXZWqbTcZ3oA
2022-05-18 23:31:10 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-05-18 23:31:10 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-05-18 23:31:10 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
aCVFNhnF5V0AoeTziWQB2YSMwV9FiZ1N
2022-05-18 23:31:10 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://staging-open.mova.vc/retorno
2022-05-18 23:31:10 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
cLTtVT4rBh3bvwQgIAxYnHgCttzqb07ydf9tFY7TJYU
code_challenge
ZtEV8qOBm0SBpFtq1xCnp1mwUMgmNzZtQE8Ohc6BROc
2022-05-18 23:31:10 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A
2022-05-18 23:31:10 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
JguWWuNpOBA4UidMp_GUpA
2022-05-18 23:31:10
CreateRefreshToken
Created refresh token
refresh_token
YMRYUuzEdomOtEmfDiyJxnzYMeWGtuqcSKDeRKBymesFsMLcvn9124426684^+^#/
2022-05-18 23:31:10 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/mova/
sub
user-subject-1234531
aud
mova-bank-two
nonce
LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE
iat
1652916670
exp
1652916970
2022-05-18 23:31:10 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916670,
  "exp": 1652916970
}
2022-05-18 23:31:10 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
JguWWuNpOBA4UidMp_GUpA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916670,
  "exp": 1652916970,
  "at_hash": "JguWWuNpOBA4UidMp_GUpA"
}
2022-05-18 23:31:10 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa2
claims
{
  "iss": "https://www.certification.openid.net/test/a/mova/",
  "sub": "user-subject-1234531",
  "aud": "mova-bank-two",
  "nonce": "LF9GrnWHSjx1x0KwaL-N4-2Sx3ak6G2CZ-cQ0cy-FBE",
  "iat": 1652916670,
  "exp": 1652916970,
  "at_hash": "JguWWuNpOBA4UidMp_GUpA",
  "acr": "urn:brasil:openbanking:loa2"
}
2022-05-18 23:31:10 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiSmd1V1d1TnBPQkE0VWlkTXBfR1VwQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoibW92YS1iYW5rLXR3byIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9tb3ZhXC8iLCJleHAiOjE2NTI5MTY5NzAsIm5vbmNlIjoiTEY5R3JuV0hTangxeDBLd2FMLU40LTJTeDNhazZHMkNaLWNRMGN5LUZCRSIsImlhdCI6MTY1MjkxNjY3MH0.zs8pEQCrwM3SgZtricFmc9t3YxD6nXA-UsyiNkuInVekGiNiXjIkieMaTATWP87BN3ssYb-svaG8kAsdlR7vq13sOV2YoZhlkI9zx_mKNdW0PTtoLVV0frdfPGNj4DVWj3wfLHcx3bprUJdggpExl-iGkd3GlhJhFTgDTPexyB-Pd00wgxWdlBMnyH0kM9LIit3LZeczqe9lSZgmqaRFuBRkTQ5B7d2nlXnyvT4l01xZ0Tnb5I3M4p0xjgEK0U2wt1XJlYdku64z0GxMmb3P_WY1P65UEGL9K2UQ_tWTkIfennPgzmU7OcOpyZtwlQFFfP4IEJGFWuG4xDtSqrENgw
2022-05-18 23:31:10
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.Cc9RP4vtol5lOgyG0UXTc9X4b_LfyIjNAjguePX1b7SHJ-E-AHvw71yHPzt8T6hIYDXiOqFBr5alfgJ87fHjvIhMvVaDjkqa4KwFW-M4HNKW71teO2p0IcIf8m47U2tFXY3PcYlygMfyWlfgAxYBSfbNRuiStTl4wBuAObyCekGVIAVgBTOqlPOIR8wK19Xc87IXDSvtk428a8zRk7SXHCpYko5JyIXrTTsa5Il1FJjIMcEZ4SgJL2tIYOOZhAcvUL8BdqQhSIVrcUA2dHtYG62u0o-idwhE71Clz-QM_RJV-jb45_Qu3ER-eGMK5n_X00XT1JvnlmvledldXl2tXQ.AuSYrjGWJ30eOjzM.93Wnc1Z93k2MdigIAkV8opDY17ZK-SbN-o9QK9_XeMBo5foXFXs6N8cqSSj1bmGejNuqAkGGXvm6NT6qDfv-6Y8MP7HMsMSc_Y6Ky_F5QINMFzhqcLr59amwRZpAQlULWMtgT-cf_M_jMLH8b0m832W2htHkKa9LGbHVq_Hw7E6EhwXzjV4IT_SYut3j-wEq5924jW7T6mjFtregGMXP16jceAh4eaGDlAHuu36jKQ5Ny_mVoz7QJziukiHV6cojVFKx7k0kn7ji-v09k3rKdDh4d5WG5kc72ABzGNm19I93ueD7G7Fed9NWeIkR5Zov-NucaIsOpDc0T8GIt64IzVk2MRum364V3lc4ggZWZup2wtINj9QmDNPv5W7ouQg7Rf7WYfH3oLuIfDugyV0c2l7x9od5hKz31VoEojatIAEfRlIL-amjoqoxix23kUXZAhdq7MMCBA2UxYNrb91i83v7qhsYSwgD_Vw6YddCPku2VOSXRVxGBPIdc9Qx-G-0O2vWYoIOLjK9kRn3mK9zpcxKp63e0JDX1Pwmmt868deEYW5fbhT4LWf8YiPpufh0bB7_TcCFyclH-yuWb7GqZOezlgWzTl4qenQmZrzI_RSri_SnXmiHPHroy9KX3RKiB44BUcQum09ErTC11emIJF9gXtlhuNoa3-lg-l2u8qJ075_apwFOQX5X3aOZtFeGJHBaBmyRThjfyRD_WSFSbIcncLpTI2y7EYLjKtpRnHcU7qO5x1c6YaErPcDmeXNmxyyKx9oqWVROCIeRo7XVzV15bvZWFEDNw4vZl8omhwFZ3vn7IMGBMThFZdFJe1QUoSanXXtsHmNnZFedAUn90xZNEVrEE3DdeP_ocWu_1AKsaUzf2RwOZEn8XS1K_2WSRV5FP3SU93QYCQGi8iEhECYtKy9EYh63XolfLqPA9syyAVTXeaHdcxKBsLpCdm_qd9Tiqkz82g8BKWJWWSdm6IXhvVg7aaNRdY-KtXnX-bA19Q-X_KEJOZvdDm4Z2pc_My7_CCch4uG-Hh4vpXTxyWlfGtbTtMNT3NSNsrNCKD4K.cKR1_vL4osaJnySmlvCcpw
2022-05-18 23:31:10 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A
token_type
Bearer
id_token
eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.Cc9RP4vtol5lOgyG0UXTc9X4b_LfyIjNAjguePX1b7SHJ-E-AHvw71yHPzt8T6hIYDXiOqFBr5alfgJ87fHjvIhMvVaDjkqa4KwFW-M4HNKW71teO2p0IcIf8m47U2tFXY3PcYlygMfyWlfgAxYBSfbNRuiStTl4wBuAObyCekGVIAVgBTOqlPOIR8wK19Xc87IXDSvtk428a8zRk7SXHCpYko5JyIXrTTsa5Il1FJjIMcEZ4SgJL2tIYOOZhAcvUL8BdqQhSIVrcUA2dHtYG62u0o-idwhE71Clz-QM_RJV-jb45_Qu3ER-eGMK5n_X00XT1JvnlmvledldXl2tXQ.AuSYrjGWJ30eOjzM.93Wnc1Z93k2MdigIAkV8opDY17ZK-SbN-o9QK9_XeMBo5foXFXs6N8cqSSj1bmGejNuqAkGGXvm6NT6qDfv-6Y8MP7HMsMSc_Y6Ky_F5QINMFzhqcLr59amwRZpAQlULWMtgT-cf_M_jMLH8b0m832W2htHkKa9LGbHVq_Hw7E6EhwXzjV4IT_SYut3j-wEq5924jW7T6mjFtregGMXP16jceAh4eaGDlAHuu36jKQ5Ny_mVoz7QJziukiHV6cojVFKx7k0kn7ji-v09k3rKdDh4d5WG5kc72ABzGNm19I93ueD7G7Fed9NWeIkR5Zov-NucaIsOpDc0T8GIt64IzVk2MRum364V3lc4ggZWZup2wtINj9QmDNPv5W7ouQg7Rf7WYfH3oLuIfDugyV0c2l7x9od5hKz31VoEojatIAEfRlIL-amjoqoxix23kUXZAhdq7MMCBA2UxYNrb91i83v7qhsYSwgD_Vw6YddCPku2VOSXRVxGBPIdc9Qx-G-0O2vWYoIOLjK9kRn3mK9zpcxKp63e0JDX1Pwmmt868deEYW5fbhT4LWf8YiPpufh0bB7_TcCFyclH-yuWb7GqZOezlgWzTl4qenQmZrzI_RSri_SnXmiHPHroy9KX3RKiB44BUcQum09ErTC11emIJF9gXtlhuNoa3-lg-l2u8qJ075_apwFOQX5X3aOZtFeGJHBaBmyRThjfyRD_WSFSbIcncLpTI2y7EYLjKtpRnHcU7qO5x1c6YaErPcDmeXNmxyyKx9oqWVROCIeRo7XVzV15bvZWFEDNw4vZl8omhwFZ3vn7IMGBMThFZdFJe1QUoSanXXtsHmNnZFedAUn90xZNEVrEE3DdeP_ocWu_1AKsaUzf2RwOZEn8XS1K_2WSRV5FP3SU93QYCQGi8iEhECYtKy9EYh63XolfLqPA9syyAVTXeaHdcxKBsLpCdm_qd9Tiqkz82g8BKWJWWSdm6IXhvVg7aaNRdY-KtXnX-bA19Q-X_KEJOZvdDm4Z2pc_My7_CCch4uG-Hh4vpXTxyWlfGtbTtMNT3NSNsrNCKD4K.cKR1_vL4osaJnySmlvCcpw
refresh_token
YMRYUuzEdomOtEmfDiyJxnzYMeWGtuqcSKDeRKBymesFsMLcvn9124426684^+^#/
scope
openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources
2022-05-18 23:31:10 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJkY2I2OGM4ZGM5MzI0NjMzZjEyM2NhY2I1ZmVkNjQ0Y2U4N2M3MWZlNTJjMjViZGI0OWU1ZWFlOWMxZTEzZTM5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.Cc9RP4vtol5lOgyG0UXTc9X4b_LfyIjNAjguePX1b7SHJ-E-AHvw71yHPzt8T6hIYDXiOqFBr5alfgJ87fHjvIhMvVaDjkqa4KwFW-M4HNKW71teO2p0IcIf8m47U2tFXY3PcYlygMfyWlfgAxYBSfbNRuiStTl4wBuAObyCekGVIAVgBTOqlPOIR8wK19Xc87IXDSvtk428a8zRk7SXHCpYko5JyIXrTTsa5Il1FJjIMcEZ4SgJL2tIYOOZhAcvUL8BdqQhSIVrcUA2dHtYG62u0o-idwhE71Clz-QM_RJV-jb45_Qu3ER-eGMK5n_X00XT1JvnlmvledldXl2tXQ.AuSYrjGWJ30eOjzM.93Wnc1Z93k2MdigIAkV8opDY17ZK-SbN-o9QK9_XeMBo5foXFXs6N8cqSSj1bmGejNuqAkGGXvm6NT6qDfv-6Y8MP7HMsMSc_Y6Ky_F5QINMFzhqcLr59amwRZpAQlULWMtgT-cf_M_jMLH8b0m832W2htHkKa9LGbHVq_Hw7E6EhwXzjV4IT_SYut3j-wEq5924jW7T6mjFtregGMXP16jceAh4eaGDlAHuu36jKQ5Ny_mVoz7QJziukiHV6cojVFKx7k0kn7ji-v09k3rKdDh4d5WG5kc72ABzGNm19I93ueD7G7Fed9NWeIkR5Zov-NucaIsOpDc0T8GIt64IzVk2MRum364V3lc4ggZWZup2wtINj9QmDNPv5W7ouQg7Rf7WYfH3oLuIfDugyV0c2l7x9od5hKz31VoEojatIAEfRlIL-amjoqoxix23kUXZAhdq7MMCBA2UxYNrb91i83v7qhsYSwgD_Vw6YddCPku2VOSXRVxGBPIdc9Qx-G-0O2vWYoIOLjK9kRn3mK9zpcxKp63e0JDX1Pwmmt868deEYW5fbhT4LWf8YiPpufh0bB7_TcCFyclH-yuWb7GqZOezlgWzTl4qenQmZrzI_RSri_SnXmiHPHroy9KX3RKiB44BUcQum09ErTC11emIJF9gXtlhuNoa3-lg-l2u8qJ075_apwFOQX5X3aOZtFeGJHBaBmyRThjfyRD_WSFSbIcncLpTI2y7EYLjKtpRnHcU7qO5x1c6YaErPcDmeXNmxyyKx9oqWVROCIeRo7XVzV15bvZWFEDNw4vZl8omhwFZ3vn7IMGBMThFZdFJe1QUoSanXXtsHmNnZFedAUn90xZNEVrEE3DdeP_ocWu_1AKsaUzf2RwOZEn8XS1K_2WSRV5FP3SU93QYCQGi8iEhECYtKy9EYh63XolfLqPA9syyAVTXeaHdcxKBsLpCdm_qd9Tiqkz82g8BKWJWWSdm6IXhvVg7aaNRdY-KtXnX-bA19Q-X_KEJOZvdDm4Z2pc_My7_CCch4uG-Hh4vpXTxyWlfGtbTtMNT3NSNsrNCKD4K.cKR1_vL4osaJnySmlvCcpw",
  "refresh_token": "YMRYUuzEdomOtEmfDiyJxnzYMeWGtuqcSKDeRKBymesFsMLcvn9124426684^+^#/",
  "scope": "openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources"
}
outgoing_path
token
2022-05-18 23:31:11 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/mova/accounts/v1/accounts
incoming_headers
{
  "host": "www.certification.openid.net",
  "authorization": "Bearer wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "19a9c2ed-d4b7-4b0d-aaae-4ce1590c7e2a",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003d98627B76E5B8B23B9ECD48D7311261EB",
  "connection": "close"
}
incoming_path
/test-mtls/a/mova/accounts/v1/accounts
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk= -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-05-18 23:31:11 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Accounts endpoint
2022-05-18 23:31:11 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG2TCCBcGgAwIBAgIUDMn0pLauAJpDmDTKFEWf8v8LagYwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAwNjE3MjgwMFoXDTIyMTEwNTE3 MjgwMFowggELMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFjAUBgNVBAoTDU1PVkEgU0VQIFMuQS4xLTArBgNVBAsTJDNlOWI0 OGJmLTY5MjktNGFiYS1iN2M5LTViNGRmOGFjMzcxZTEQMA4GA1UEAxMHbW92YS52 YzEXMBUGA1UEBRMOMzM5NTk3MzgwMDAxMzAxHTAbBgNVBA8TFFByaXZhdGUgT3Jn YW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPyLGQBARMk ZDY2NjdlYmItODZmZi00YWJkLWI0YTAtNmM5NjMyOGFmZWM5MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG+03IyCC60p0unc7/D8+me0h7SDKSMGszeb fp/AhxONe46xHydMKU9DqvuEIV7wU81gWqbNu1oJYvyoS8I31fl2HOZjqlKkAXUD r0t0AxJt3DP9d1KyPTnPl9xhsK76eoR1BZy6VyKByq73rFd7QTC5x9tawpjcsdOT o9222C8Ht/QfdQl8i4S/pVOlkxBQHnERtebCfBI8epeTaOtn7RgN76eyjcqZ3hV5 Zp3Kx2oPjSnyuxO0ZATOLVNxdBUN8+C8YPtZCVB+PtIZDzh2aHwHTpBgikd5GJBJ dTZVLv52LC1hmBtdKntuA/RfwAuAJp/YfFWmlCy3XT167Hq1jwIDAQABo4ICyzCC AscwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUemSKC4syQbF41T+3nXktvhfljPcw HwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+ MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2lu Z2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDASBgNV HREECzAJggdtb3ZhLnZjMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDAjCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2Bggr BgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVz ZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGlj aXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGlt aXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9z c2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFp ZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVk IGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5k Ym94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZI hvcNAQELBQADggEBAHT9MUUwF/qeECNgR1QV/IVKV9MbEKQ3edTaoNRlCWw6zDs+ jgJlRRLlZNAWoE8t82Daj5oK9oQHS4xx6YUw0bgMPO72BQ4DWeJIGWaE0BauOWDD afubxwi0hdn21e6S+Bt6KiJ7hd2cRuzdiJQEysAj0xLujn5ixaADKyGkW0T1xRCS mndCsmWWm+z7H5+CbFoIGfrXfUp30f9PpvqzbcBLILcXcFVk/r+5hidvI4u8AdwZ 2N7Az/9+u3dNbmHkLcz02UbKrhCHYrr2JAJ7WYUjb2YtAWOT48Q8nZ1XLh10jRVw rvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nrvztSHmLqteFzoFQolGvwaGHAYxqK4Rng5iF6Vk\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003dd6667ebb-86ff-4abd-b4a0-6c96328afec9,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333393539373338303030313330,CN\u003dmova.vc,OU\u003d3e9b48bf-6929-4aba-b7c9-5b4df8ac371e,O\u003dMOVA SEP S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "mova.vc"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-05-18 23:31:11 SUCCESS
CheckForClientCertificate
Found client certificate
2022-05-18 23:31:11 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-05-18 23:31:11 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-05-18 23:31:11 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A
2022-05-18 23:31:11 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
wl3Ndxl2eSX6hoV8o8Osg0prIeoiBqs0Baxy94EJyNKaeZlM3A
2022-05-18 23:31:11 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-05-18 23:31:11 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-05-18 23:31:11 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-05-18 23:31:11 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainAccounts
'accounts' was included in authorization request scopes
actual
openid consent:urn:conformance:oidf:eNA56o2TAB accounts resources
expected
accounts
2022-05-18 23:31:11 INFO
CreateFapiInteractionIdIfNeeded
Found existing FAPI interaction ID
fapi_interaction_id
470695d5-c93b-4ee5-b02c-d91aacaee64f
2022-05-18 23:31:11 SUCCESS
CreateFAPIAccountEndpointResponse
Created account response object
accounts_endpoint_response
{
  "conformance-test-finished": "true"
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "470695d5-c93b-4ee5-b02c-d91aacaee64f",
  "content-type": "application/json; charset\u003dUTF-8"
}
2022-05-18 23:31:11 SUCCESS
CreateBrazilAccountsEndpointResponse
Created Brazil accounts response (Please note that this is a hardcoded response copied from API documentation)
accounts_endpoint_response
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-05-18T23:31:11Z"
  }
}
accounts_endpoint_response_headers
{
  "x-fapi-interaction-id": "470695d5-c93b-4ee5-b02c-d91aacaee64f",
  "content-type": "application/json"
}
2022-05-18 23:31:11
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-05-18 23:31:11 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance DR17gxoztz8JwiI
outgoing_status_code
200
outgoing_headers
{
  "x-fapi-interaction-id": [
    "470695d5-c93b-4ee5-b02c-d91aacaee64f"
  ],
  "content-type": [
    "application/json"
  ]
}
outgoing_body
{
  "data": [
    {
      "brandName": "Organização A",
      "companyCnpj": "21128159000166",
      "type": "CONTA_DEPOSITO_A_VISTA",
      "compeCode": "001",
      "branchCode": "6272",
      "number": "94088392",
      "checkDigit": "4",
      "accountId": "92792126019929279212650822221989319252576"
    }
  ],
  "links": {
    "self": "https://api.banco.com.br/open-banking/api/v1/resource",
    "first": "https://api.banco.com.br/open-banking/api/v1/resource",
    "prev": "https://api.banco.com.br/open-banking/api/v1/resource",
    "next": "https://api.banco.com.br/open-banking/api/v1/resource",
    "last": "https://api.banco.com.br/open-banking/api/v1/resource"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-05-18T23:31:11Z"
  }
}
outgoing_path
accounts/v1/accounts
2022-05-18 23:31:11 FINISHED
fapi1-advanced-final-client-test-encrypted-idtoken
Test has run to completion
testmodule_result
PASSED
2022-05-18 23:31:12
TEST-RUNNER
Alias has now been claimed by another test
alias
mova
new_test_id
oDgCOMPtyHWHZGd
Test Results