Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-03-25 03:25:09 INFO
TEST-RUNNER
Test instance bsfPJCsI5iN4rQ9 created
baseUrl
https://www.certification.openid.net/test/a/xp
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "by_value",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
xp
description
Banco XP - Iniciação de Pagamentos
planId
n7Q3vTHR1mt5V
config
{
  "alias": "xp",
  "description": "Banco XP - Iniciação de Pagamentos",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "xp-bank",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
          "e": "AQAB",
          "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
          "e": "AQAB",
          "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "xp-bank-two",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
          "e": "AQAB",
          "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
          "e": "AQAB",
          "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-invalid-iss
2022-03-25 03:25:09 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/xp/
discoveryUrl
https://www.certification.openid.net/test/a/xp/.well-known/openid-configuration
2022-03-25 03:25:09 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:25:09 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:25:09
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-03-25 03:25:09
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-03-25 03:25:09
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-03-25 03:25:09
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-03-25 03:25:09
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-03-25 03:25:09 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-03-25 03:25:09 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-03-25 03:25:09 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-03-25 03:25:09 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:25:09 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-03-25 03:25:09 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
xp-bank
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:25:09 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:25:09 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ"
    }
  ]
}
2022-03-25 03:25:09 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:25:09 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:25:09 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
Verify configuration of second client
2022-03-25 03:25:09 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
xp-bank-two
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:25:09 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:25:09 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ"
    }
  ]
}
2022-03-25 03:25:09 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:25:09 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:25:09 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:25:09
fapi1-advanced-final-client-test-invalid-iss
Setup Done
2022-03-25 03:25:12 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "8574755806984470133",
  "x-datadog-parent-id": "6444076621198314342",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:25:12 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:25:12 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance bsfPJCsI5iN4rQ9
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:25:12 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "8574755806984470133",
  "x-datadog-parent-id": "4345545573773636483",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1035"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "payments",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg3MTIsImV4cCI6MTY0ODE3ODc3MiwianRpIjoiTlNLckZaRTJ6VzVRSnBMU1IzVGhnd19wRGZXLVR3LWZJc3hjTEdETWRFQSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.g8vblqjJtC63i4FmC2noFwiHr__8DLtwgXj7t621OLp6ClFZEduDBaqq0AjOkI_T-PozYdsX4MksYBxi1uySiBSPhQgGx7Wyq-ZqI0jwIBzlZtoN4o2F5Y7whidE1GQep1jxoUpBe6YFTr6ZQEjsA0L9W35B2c6Oq7gZFW5SzeycyH3hMRY-6T9gq23nL3ken4kgEAFe_DYJzN8ayTY1MSM82iylL_OkBqfj_v9Et682bofx-HD5fKacdaCyyXZNutWumf6v3zbSpD9XDw8is4CudmpPrMNxQmSEP9g0Gwt_s7_efh4uM_0szlJaTcNWG7tOkUwxb9mVFLzTEOVwvg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=payments&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg3MTIsImV4cCI6MTY0ODE3ODc3MiwianRpIjoiTlNLckZaRTJ6VzVRSnBMU1IzVGhnd19wRGZXLVR3LWZJc3hjTEdETWRFQSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.g8vblqjJtC63i4FmC2noFwiHr__8DLtwgXj7t621OLp6ClFZEduDBaqq0AjOkI_T-PozYdsX4MksYBxi1uySiBSPhQgGx7Wyq-ZqI0jwIBzlZtoN4o2F5Y7whidE1GQep1jxoUpBe6YFTr6ZQEjsA0L9W35B2c6Oq7gZFW5SzeycyH3hMRY-6T9gq23nL3ken4kgEAFe_DYJzN8ayTY1MSM82iylL_OkBqfj_v9Et682bofx-HD5fKacdaCyyXZNutWumf6v3zbSpD9XDw8is4CudmpPrMNxQmSEP9g0Gwt_s7_efh4uM_0szlJaTcNWG7tOkUwxb9mVFLzTEOVwvg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:25:12 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:25:12 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank
2022-03-25 03:25:12 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:25:12 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:25:12 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:25:12 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg3MTIsImV4cCI6MTY0ODE3ODc3MiwianRpIjoiTlNLckZaRTJ6VzVRSnBMU1IzVGhnd19wRGZXLVR3LWZJc3hjTEdETWRFQSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.g8vblqjJtC63i4FmC2noFwiHr__8DLtwgXj7t621OLp6ClFZEduDBaqq0AjOkI_T-PozYdsX4MksYBxi1uySiBSPhQgGx7Wyq-ZqI0jwIBzlZtoN4o2F5Y7whidE1GQep1jxoUpBe6YFTr6ZQEjsA0L9W35B2c6Oq7gZFW5SzeycyH3hMRY-6T9gq23nL3ken4kgEAFe_DYJzN8ayTY1MSM82iylL_OkBqfj_v9Et682bofx-HD5fKacdaCyyXZNutWumf6v3zbSpD9XDw8is4CudmpPrMNxQmSEP9g0Gwt_s7_efh4uM_0szlJaTcNWG7tOkUwxb9mVFLzTEOVwvg",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648178772,
    "iat": 1648178712,
    "jti": "NSKrFZE2zW5QJpLSR3Thgw_pDfW-Tw-fIsxcLGDMdEA"
  }
}
2022-03-25 03:25:12
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:25:12 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg3MTIsImV4cCI6MTY0ODE3ODc3MiwianRpIjoiTlNLckZaRTJ6VzVRSnBMU1IzVGhnd19wRGZXLVR3LWZJc3hjTEdETWRFQSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.g8vblqjJtC63i4FmC2noFwiHr__8DLtwgXj7t621OLp6ClFZEduDBaqq0AjOkI_T-PozYdsX4MksYBxi1uySiBSPhQgGx7Wyq-ZqI0jwIBzlZtoN4o2F5Y7whidE1GQep1jxoUpBe6YFTr6ZQEjsA0L9W35B2c6Oq7gZFW5SzeycyH3hMRY-6T9gq23nL3ken4kgEAFe_DYJzN8ayTY1MSM82iylL_OkBqfj_v9Et682bofx-HD5fKacdaCyyXZNutWumf6v3zbSpD9XDw8is4CudmpPrMNxQmSEP9g0Gwt_s7_efh4uM_0szlJaTcNWG7tOkUwxb9mVFLzTEOVwvg
2022-03-25 03:25:12 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:25:12 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:25:12 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "payments"
]
expected
payments
2022-03-25 03:25:12 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19
2022-03-25 03:25:12 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19
token_type
Bearer
2022-03-25 03:25:12
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-03-25 03:25:12 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance bsfPJCsI5iN4rQ9
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19",
  "token_type": "Bearer"
}
outgoing_path
token
2022-03-25 03:25:13 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test-mtls/a/xp/payments/v1/consents
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/jwt",
  "authorization": "Bearer ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19",
  "x-idempotency-key": "e5114ca7-eabc-4230-a2b8-dc68c09a2692",
  "user-agent": "axios/0.24.0",
  "x-datadog-trace-id": "8574755806984470133",
  "x-datadog-parent-id": "5081152577099242016",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1401"
}
incoming_path
/test-mtls/a/xp/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.eyJkYXRhIjp7ImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY3JlZGl0b3IiOnsiY3BmQ25waiI6IjU1MTU1MTE0ODQ1IiwibmFtZSI6IkhPTU9MT0dBQ0FPIFBJWCIsInBlcnNvblR5cGUiOiJQRVNTT0FfTkFUVVJBTCJ9LCJwYXltZW50Ijp7ImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRhdGUiOiIyMDIxLTExLTExIiwiZGV0YWlscyI6eyJjcmVkaXRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjkyODk0OTIyIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjEwMTczNzIyIn0sImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJwcm94eSI6IjU1MTU1MTE0ODQ1In0sImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJ0eXBlIjoiUElYIn0sImRlYnRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjM3MjQxMjMwIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjQyNjEwNzM1NzMifX0sImlhdCI6MTY0ODE3ODcxMiwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3BheW1lbnRzL3YxL2NvbnNlbnRzIiwiaXNzIjoiNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzIiwianRpIjoiNDFhOWJkY2QtM2M0YS00ZThkLWJhZGEtN2U4NmQ0ZjRiN2E0In0.UIjdOoYdv2J_MSGt5K2fYEjjumIs9fxbKMakTTbMbI_OFTxHXvoMF1f9RMSICvYCQFg92t43z1C97wEM16cpVHTD_7iAdwsXkRzS6cqzKh_5ID-_eQ7_-XGByJK8J2E3IrTRrmDvHS1C58-4b4XtOWakKOZfJF2_VAHDRtglZmQyxlSOjB_z1_a-bwa7JjpnA6XlAHO36dbwQMO0NAFL2zKFlflSkWCSPztdgExXiAqrQwocPvnEumcwFKk8YUCddISdJV3bK9lG9dKMTNKWmsnANOuULzfnFkeaC3AGASqXqbHYQ6fS3s3KfYcDL-Dly_DPELQgrsLduv1Z3OvVXw
2022-03-25 03:25:13 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-03-25 03:25:13 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0\nNDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp\nbyBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3\nMTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku\nY29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0\nZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is\nZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G\nCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x\n4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV\n0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab\nkV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4\ndR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+\niH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj\nggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt\nNHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM\nMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB\ngDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs\neSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl\nciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2\naWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl\naXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m\nIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k\nIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v\nY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll\nczANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV\nfl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G\nMfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk\ngJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA\nx9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:25:13 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:25:13 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:25:13 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:25:13 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:25:13 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19
2022-03-25 03:25:13 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
ZcLB2FMgKTf7xmE6Z6Sh9k7A64wplRwAJwJngLRGAAS9ycjO19
2022-03-25 03:25:13 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:25:13 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:25:13 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:25:13 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2022-03-25 03:25:13 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "payments"
]
2022-03-25 03:25:13 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents",
  "data": {
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    }
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178712,
  "jti": "41a9bdcd-3c4a-4e8d-bada-7e86d4f4b7a4"
}
2022-03-25 03:25:13 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:25:13 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
e5114ca7-eabc-4230-a2b8-dc68c09a2692
2022-03-25 03:25:13 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents
2022-03-25 03:25:13 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
0674aed0-cd43-4980-98c4-b20c219e56da
2022-03-25 03:25:13 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:25:13 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
41a9bdcd-3c4a-4e8d-bada-7e86d4f4b7a4
2022-03-25 03:25:13 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1648178712
2022-03-25 03:25:13
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
2022-03-25 03:25:13
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-03-25 03:25:13 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "8964",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Thu, 10 Mar 2022 14:55:40 GMT",
  "x-amz-version-id": "6PRpK8NBC.5muY.MLRUAjkn40qtnhX9N",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Fri, 25 Mar 2022 03:24:16 GMT",
  "etag": "\"dd439665e3119a15a2072315d0a724f1\"",
  "x-xss-protection": "1; mode\u003dblock",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "strict-origin-when-cross-origin",
  "x-content-type-options": "nosniff",
  "strict-transport-security": "max-age\u003d31536000",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 92ed8a6103fa735c31caf49b92d4efb6.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "IAD89-P2",
  "x-amz-cf-id": "93F_kCX1wZoOQFVKVpPeJTS6FIU4UmmTDyYTJnl09XgvrUIgQc48rA\u003d\u003d",
  "age": "58"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["MIIG0DCCBbigAwIBAgIUOSEiTVKSXPYVcS7HUFKtt65AIrkwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgwMjIwMjAwMFoXDTIyMDkwMTIwMjAwMFowgbsxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUYwCwYDVQQLEwR0ZXN0MBUGA1UECxMOMzMyNjQ2NjgwMDAxMDMwIAYDVQQLExlpbnN0aXR1aWNhbyBDZXJ0aWZpY2Fkb3JhMRkwFwYDVQQDExBYUCBJTlZFU1RJTUVOVE9TMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWiyxqXG/9IfRmEWPBpjHCxXTkAV1Oetq3/l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG+xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie/9j/2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W+rDOmmX4wXOyazo+BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg+rJyrQG7gM+xyOnqcmhavjG8FlZ/bO+4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin/5flJ9WJG1HUUiM62sQIDAQABo4IDEzCCAw8wDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUShLKNrbb1Q1qOV5I+p3lkRsDmqUwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBvBgNVHREEaDBmoB0GBWBMAQMCoBQMElBlc3NvYSBSZXNwb25zYXZlbKAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6ATBgVgTAEDBKAKDAgxMjMxMjMyMaAVBgVgTAEDB6AMDAozMjEzMTIzMzIxMA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAJwWTRuW9wFz/LmFEkYHuXN4thDEk1pk9VLFrfOw7iBDNH7p4lgwtrpjEqCSo/sRj6rpTVJTfAPLIxdM7dxNEbxr1UTkCG/NszxY3VUfmuzs0CTXswh1ZMbfkoNZwKFfx3g1XT1VueQ+kPJqtf8JpglVanKOteaQDN9C812WvDSFUt6OzdU4hbU29Jzl/g+lM9s67xYSlP0944IT4U/TEZ5eR+UPGgZyLLvdol8/gO9nWwszMp4itQKC9vLotNSe6KFPgxzC/HW5kFhW1iwjp5pw6sWubUJvtwlrqgKvqdwHAgf7nKAx+5kL5IThmNCw++XxM4SEDpnbByWJI8biKlk="],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:25:13
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["MIIGyjCCBbKgAwIBAgIUMKsNYCFNllXyex8gdurSW50eLr4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NTEwMFoXDTIzMDQwOTE0NTEwMFowgbgxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUgwEwYDVQQLEwxGaW5hbnN5c3RlY2gwFQYDVQQLEw40MjIyMjkxNTAwMDE5MTAaBgNVBAsTE0NlcnRpZmljYWRvIERpZ2l0YWwxFDASBgNVBAMTC0JDTyBYUCBTLkEuMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs/vRWhEb6M6foZIxYKQON7uDn+hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC/uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn/1GRFn13MaY5UtV+ds8p/uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC+fSQIDAQABo4IDEDCCAwwwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUINMH8Nt4e4d64L95J1SsnBnCIzMwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBsBgNVHREEZTBjoBcGBWBMAQMCoA4MDFdlc2xleSBTaWx2YaAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6AWBgVgTAEDBKANDAszMDkzMjc0MzAzMKAVBgVgTAEDB6AMDAoxMjM0NTY2Nzg5MA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAMctaE4siLeds6YXgyedgGczn4GLGrflicwZ47NB7a88EjaSlx54GwPGyePqQEJJ2atWnldN4v6L+PzDA2b9VN1t4L5KDWabb36ln/gCuAWti0mYGKiI1AfZdjXNP6DlEwiUsKAyyLb39tVbkm65kxEleMUGHHJsxTYS+ztgpYtfQEqPiwAvPOQNvdk3pbg6ChqpuhpPR7nHRHCmmiSkZPDOqcW8e85vawNrojM1mKbqXmwydOoWqJb38UCj7ZEMHZcPliaK1vyAGPblpPyRfnFAiX7W9vJ7IIkEznHtRJeRUEhAeFBRGgbRhfHYNkIuT/+nUgGfiTD8e/Wsv35FYHE="],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:25:13 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ",
      "e": "AQAB",
      "kid": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem",
      "x5t#256": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew",
      "e": "AQAB",
      "kid": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem",
      "x5t#256": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ",
      "e": "AQAB",
      "kid": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem",
      "x5t#256": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"
    }
  ]
}
2022-03-25 03:25:13 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.UIjdOoYdv2J_MSGt5K2fYEjjumIs9fxbKMakTTbMbI_OFTxHXvoMF1f9RMSICvYCQFg92t43z1C97wEM16cpVHTD_7iAdwsXkRzS6cqzKh_5ID-_eQ7_-XGByJK8J2E3IrTRrmDvHS1C58-4b4XtOWakKOZfJF2_VAHDRtglZmQyxlSOjB_z1_a-bwa7JjpnA6XlAHO36dbwQMO0NAFL2zKFlflSkWCSPztdgExXiAqrQwocPvnEumcwFKk8YUCddISdJV3bK9lG9dKMTNKWmsnANOuULzfnFkeaC3AGASqXqbHYQ6fS3s3KfYcDL-Dly_DPELQgrsLduv1Z3OvVXw
2022-03-25 03:25:13 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
8e99bda0-2bcf-433a-ba36-def0ca90c49d
2022-03-25 03:25:13 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "8e99bda0-2bcf-433a-ba36-def0ca90c49d"
}
consentId
urn:conformance:oidf:ZIOx7cK02e
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:ZIOx7cK02e",
    "creationDateTime": "2022-03-25T03:25:13Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-03-25T03:25:13Z",
    "expirationDateTime": "2022-03-25T05:25:13Z",
    "transactionFromDateTime": "2022-03-25T03:20:13Z",
    "transactionToDateTime": "2022-03-25T05:25:13Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:25:13Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178713,
  "jti": "c9f84633-6da8-4e17-9837-27589d546460",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:25:13 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7ImRlYnRvckFjY291bnQiOnsibnVtYmVyIjoiNDI2MTA3MzU3MyIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiIzNzI0MTIzMCIsImlzc3VlciI6IjAwMDEifSwiZXhwaXJhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwNToyNToxM1oiLCJ0cmFuc2FjdGlvblRvRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDA1OjI1OjEzWiIsImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY29uc2VudElkIjoidXJuOmNvbmZvcm1hbmNlOm9pZGY6WklPeDdjSzAyZSIsInRyYW5zYWN0aW9uRnJvbURhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyMDoxM1oiLCJtZXRhIjp7InRvdGFsUmVjb3JkcyI6MSwicmVxdWVzdERhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyNToxM1oiLCJ0b3RhbFBhZ2VzIjoxfSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjI1OjEzWiIsImxpbmtzIjp7InNlbGYiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBwYXltZW50c1wvdjFcL2NvbnNlbnRzIn0sImNyZWRpdG9yIjp7Im5hbWUiOiJIT01PTE9HQUNBTyBQSVgiLCJjcGZDbnBqIjoiNTUxNTUxMTQ4NDUiLCJwZXJzb25UeXBlIjoiUEVTU09BX05BVFVSQUwifSwicGF5bWVudCI6eyJkYXRlIjoiMjAyMS0xMS0xMSIsImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRldGFpbHMiOnsicHJveHkiOiI1NTE1NTExNDg0NSIsImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJjcmVkaXRvckFjY291bnQiOnsibnVtYmVyIjoiMTAxNzM3MjIiLCJhY2NvdW50VHlwZSI6IkNBQ0MiLCJpc3BiIjoiOTI4OTQ5MjIiLCJpc3N1ZXIiOiIwMDAxIn19LCJpYmdlVG93bkNvZGUiOiI1MzAwMTA4IiwidHlwZSI6IlBJWCJ9LCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyNToxM1oiLCJzdGF0dXMiOiJBV0FJVElOR19BVVRIT1JJU0FUSU9OIn0sImlhdCI6MTY0ODE3ODcxMywianRpIjoiYzlmODQ2MzMtNmRhOC00ZTE3LTk4MzctMjc1ODlkNTQ2NDYwIn0.Dm1IshevJFn42-gmCO_Ga39KAwa3cK2dheMtPK96WNyR3fEHNnwov1LWFxGwbHs2u029h_3bgcXH7mxIZMKlWAnYeTN7dns1R9Ks3Sq-zFX-Ogur9OeC-EL2MW9Nd3tpAah_pyTTqmO--Oee5QnL4tYUMibz8BdU62pQsBtSs6LG4HE7Vg7NZ-cbWX-jpEVc4vOHxRt2qkvn7zoGUvZCuBCiFIDauSoVAngz6pb4rYBLRHNn8Jd8kTKyqEQH2LmIMs2hOzkh7svX0a3tS3EVNjG9gF4iLhUVaUbYS1a3czWzj9m2uofqGNwf0S0V8wLVHNI4BAg7OFsD6Kwdrv044w
2022-03-25 03:25:13
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:25:13 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance bsfPJCsI5iN4rQ9
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "8e99bda0-2bcf-433a-ba36-def0ca90c49d"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.Dm1IshevJFn42-gmCO_Ga39KAwa3cK2dheMtPK96WNyR3fEHNnwov1LWFxGwbHs2u029h_3bgcXH7mxIZMKlWAnYeTN7dns1R9Ks3Sq-zFX-Ogur9OeC-EL2MW9Nd3tpAah_pyTTqmO--Oee5QnL4tYUMibz8BdU62pQsBtSs6LG4HE7Vg7NZ-cbWX-jpEVc4vOHxRt2qkvn7zoGUvZCuBCiFIDauSoVAngz6pb4rYBLRHNn8Jd8kTKyqEQH2LmIMs2hOzkh7svX0a3tS3EVNjG9gF4iLhUVaUbYS1a3czWzj9m2uofqGNwf0S0V8wLVHNI4BAg7OFsD6Kwdrv044w
outgoing_path
payments/v1/consents
2022-03-25 03:25:14 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test/a/xp/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "8574755806984470133",
  "x-datadog-parent-id": "3612201087034768051",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:25:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:25:14 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance bsfPJCsI5iN4rQ9
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-03-25 03:25:14 INCOMING
fapi1-advanced-final-client-test-invalid-iss
Incoming HTTP request to /test/a/xp/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "57219210-808b-4fbf-8b26-7d94b4644e9f",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/xp/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:ZIOx7cK02e payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.R6E5iROx8OYkNxA0SCX6g4XeOtDZ_kOT8XjbU-kOPSKT1y9-7Au33Cn8upQIRYbWfsFDo8KvGEdad9uGHsRbN9Hwj5a09DZzLDFxCy_e5Igd1OCCrLMQ55EVp05Ynh9aMe-ChzpF_u86JeuTR46-aU8t96OLZwGaC4YNOHf24jT-qyh3AvE0cxysgGripKL-U8wfgARS_Iye9dp32pFrYwlO-ac8-JE3zkvt3EG8YqC-SxnPYYX5x74o9bwS0NrOQPk9V233wHxsi7LOXA7_ryrtkJ9734-R1ZlY8GEcCogbwj033q1m0idTFXu2lgrXVEu-Rfg7ssBHTE8SNZGMPA.wyzzzwGCcLQZLFri.BQUum1akyEiauBi3ZAgH0Q8JgQQU7ZiRUSfBcSsHmD-Cf080ELINxBJMKnw1VZiE35eVLfJ6WnNWBsHx3nlACMgPKk6GuGZsSlpF60jnqKBy_F5d34-6ptZ6UYGlhCpzlwynU3cY9aYD91ADdNBCNxhb1cMPQgDGsWNg7dkdZJpKTSDpKVHfMKemuCiD3t4qZrMxbcZAf3_fR9nECv9qJ7JJnVSps4mLJtK_YCcE8x4JR0an2o9AEAtMEBOK68jZ9DQdOp2KBNuPI3JlNZMiVHZwietGnELCrujzKbm9xFT5ZXNoSs6dhru-4BfLbTeXf8T08xYlv72AGE4OU97inh-A1rliw0ZFYp19L6BDXvLsOlWVj0xWXhsIOuWjjM-mEYLElEJ9ghpvWGApjUkT_4paCVZDOsx8ao27X6CHze0YiiyQWD6ihmRSq9ofjSuus4W2WAa537AE2Qy7NgTEqtqO_AXOL-O3Nb8qXm_QW5dOGlgQh3TWXpGMWnvav3hgQLUrT1JSwAfvgVqb4-dcH91ASrpjTlfyqWHywuMyxaWH6T_S-ioQXaITDQVrBP1bbuxAXAGW1fWIYrha7lCsLah2fnNhem8rdke2LGBsSZTTpjlp4vdGtKmGXhnJuOwLX3QGpvDth93dKV-m9vvltE1TEJ587DQsXOKoVYy_l548a9YG-53LSTTSB-FYcCiGUfAqNvjECm0U0Jlf8_hPuTU9g-ASAxzpG9lZJfktzrM6O2xTy6XbfLtlBiMiHeajzucPOtqdKSKpMyO2P33ZiBb5S4ofmU9HGmdQwDrEoPLrbbJSAhiiVvXSoQ88KFEIaB41Hxlc3iLqroudWN8LFk9Ulw86DxTilftSrwMbCkdEJ8ANhRjJ3v1SETum9DzEvMTCoKDSDt2bbFk3brqjNZRTGMggM9n_62dCNXCFu5NSQCBMUy7UXRpubVUTcIdfaFkV4-nsdZlGp4kneociJVMPWqNpzw3plDjdDPQnC3KlQTfB3xdDhy1M3S4Gisq4Vn2qrPaPabBDDuh605x8MZeeuEq25yKN_2bZli4TJRrgSKnv8dJxTX6EqEREiaC8o_C0hLQ-3f1b9WRm3GfZvl7aBhY7iuAkaCftz5cK8fZJg6antTWffzu8FGs_zSM6r7zGcoi90qgiei193gCmz_3kA8iGc-1KkkHB7XtoPnw_Y6_Ui0YnkHrF_Tzhu5d1zO7Wcb7F-_iZFqGP4dlpTi0KgMaw2Yj7jfiIAmRzDqNAUy76vqLlb2O5Z1Z6SZbtLGdkneiaFt0Z5QeZAxapZUlTQ1A-w-XWVERZjX8ctbvDDy8mb4u28ppVN9CSp7r0c0N04KZGYtO9W6EeSotfAtI7-NnWmTFAq4CFGgtHUekGXCGHOHfXIVS79UAQdhD5JaUU4FO0BtHUaDi0ZCi6DP-Cdx4KwXLtXD-KlYx_dpini5mHHkT683dQLBotS8OVOtJF4zVQzZTkPD5p7feCCIOnuWd40b6RYrhaB_w54FnOF1gXrm4jVT3n7ZIEJN-_BpwSVtEAAWczYdxEE5IOUSjPz9zG-B1AFPNQ7OKWw5EB-Z4hNNlN-LEvjrf8DP7UQ3pcOVo3GsVe3HDYe3E492Ya4vQhK0qt7GLnkgolOBq9zvdKXqth_OPcYIeMExPm9QICNVe_SY3AxsVBvjyWbr7cL-sZTJ3NiwpStyDOFPcQSmqdta_kOpDXK7kw044vfPsFwrfYDIWzkJZ9dLjzAevOTdPR8B0NrZnC3q-MRkWl-byqEmRwVGa-x2-6KPe5zpwKyEeAAVY2m_g300MHo1BFlIDakWvlgaovMoEAWyej7bBVz5oB_mBwKiS0ODodQQ86rD7lIjiQAe2wtik.Jg4dSMsrAuABQKrDbvVd-Q"
}
incoming_body
2022-03-25 03:25:14 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-03-25 03:25:14 SUCCESS
ExtractRequestObject
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.pYGAsYrK0Hl-pCVU9bQesvY_KtlLdxV7jsnWUs1NNix6t3X7EGFpH7FuDdzrLCcXtYR3SBLl_vSY36Cv_kmSTNzlFE5wdQ8OLg1O4nVR1JmRK276TT4ZRY37Gy2kIDrw2jm8JXctbDZVG1S87B69ROcdpnmgjQL8Q69R_WuFT3dMqydXPnwWTd2KRu4zEpWsuPVmeRmqiOiuTMfnt49OluSWny9kcdrJLaO-8o5xS6a8Q4ea7v3Csvnbu40VyLtJcj1RChjAC91eA97M0U_VaqBuhyNnf_zcjgA4rq2Vh3yn9YEyMtPb6GPGefFee3GPLp69TlEHH5nRTZocMBoEIA",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "xp-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
    "client_id": "xp-bank",
    "aud": "https://www.certification.openid.net/test/a/xp/",
    "nbf": 1648178713,
    "scope": "openid consent:urn:conformance:oidf:ZIOx7cK02e payments",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "exp": 1648179013,
    "iat": 1648178713,
    "code_challenge": "D9hWL8od_oYSGneA_jWJrlk6pHsyh_BBVcLe6fiEf88",
    "jti": "rzqXhWy-AXZlRGC5Nh3uHeMjvS3DDs1HOXExgh_GAU4"
  },
  "jwe_header": {
    "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
    "cty": "oauth-authz-req+jwt",
    "enc": "A256GCM",
    "alg": "RSA-OAEP"
  }
}
2022-03-25 03:25:14 SUCCESS
EnsureRequestObjectWasEncrypted
Request object was encrypted
jwe_header
{
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "cty": "oauth-authz-req+jwt",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2022-03-25 03:25:14 SUCCESS
FAPIBrazilEnsureRequestObjectEncryptedUsingRSAOAEPA256GCM
Request object was encrypted using RSA-OAEP and A256GCM
jwe_header
{
  "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
  "cty": "oauth-authz-req+jwt",
  "enc": "A256GCM",
  "alg": "RSA-OAEP"
}
2022-03-25 03:25:14 SUCCESS
ValidateEncryptedRequestObjectHasKid
kid was found in the encrypted request object header
kid
0fe502dd-14f0-4f45-80f9-feb9a216f996
2022-03-25 03:25:14 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:ZIOx7cK02e payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "request": "eyJhbGciOiJSU0EtT0FFUCIsImVuYyI6IkEyNTZHQ00iLCJjdHkiOiJvYXV0aC1hdXRoei1yZXErand0Iiwia2lkIjoiMGZlNTAyZGQtMTRmMC00ZjQ1LTgwZjktZmViOWEyMTZmOTk2In0.R6E5iROx8OYkNxA0SCX6g4XeOtDZ_kOT8XjbU-kOPSKT1y9-7Au33Cn8upQIRYbWfsFDo8KvGEdad9uGHsRbN9Hwj5a09DZzLDFxCy_e5Igd1OCCrLMQ55EVp05Ynh9aMe-ChzpF_u86JeuTR46-aU8t96OLZwGaC4YNOHf24jT-qyh3AvE0cxysgGripKL-U8wfgARS_Iye9dp32pFrYwlO-ac8-JE3zkvt3EG8YqC-SxnPYYX5x74o9bwS0NrOQPk9V233wHxsi7LOXA7_ryrtkJ9734-R1ZlY8GEcCogbwj033q1m0idTFXu2lgrXVEu-Rfg7ssBHTE8SNZGMPA.wyzzzwGCcLQZLFri.BQUum1akyEiauBi3ZAgH0Q8JgQQU7ZiRUSfBcSsHmD-Cf080ELINxBJMKnw1VZiE35eVLfJ6WnNWBsHx3nlACMgPKk6GuGZsSlpF60jnqKBy_F5d34-6ptZ6UYGlhCpzlwynU3cY9aYD91ADdNBCNxhb1cMPQgDGsWNg7dkdZJpKTSDpKVHfMKemuCiD3t4qZrMxbcZAf3_fR9nECv9qJ7JJnVSps4mLJtK_YCcE8x4JR0an2o9AEAtMEBOK68jZ9DQdOp2KBNuPI3JlNZMiVHZwietGnELCrujzKbm9xFT5ZXNoSs6dhru-4BfLbTeXf8T08xYlv72AGE4OU97inh-A1rliw0ZFYp19L6BDXvLsOlWVj0xWXhsIOuWjjM-mEYLElEJ9ghpvWGApjUkT_4paCVZDOsx8ao27X6CHze0YiiyQWD6ihmRSq9ofjSuus4W2WAa537AE2Qy7NgTEqtqO_AXOL-O3Nb8qXm_QW5dOGlgQh3TWXpGMWnvav3hgQLUrT1JSwAfvgVqb4-dcH91ASrpjTlfyqWHywuMyxaWH6T_S-ioQXaITDQVrBP1bbuxAXAGW1fWIYrha7lCsLah2fnNhem8rdke2LGBsSZTTpjlp4vdGtKmGXhnJuOwLX3QGpvDth93dKV-m9vvltE1TEJ587DQsXOKoVYy_l548a9YG-53LSTTSB-FYcCiGUfAqNvjECm0U0Jlf8_hPuTU9g-ASAxzpG9lZJfktzrM6O2xTy6XbfLtlBiMiHeajzucPOtqdKSKpMyO2P33ZiBb5S4ofmU9HGmdQwDrEoPLrbbJSAhiiVvXSoQ88KFEIaB41Hxlc3iLqroudWN8LFk9Ulw86DxTilftSrwMbCkdEJ8ANhRjJ3v1SETum9DzEvMTCoKDSDt2bbFk3brqjNZRTGMggM9n_62dCNXCFu5NSQCBMUy7UXRpubVUTcIdfaFkV4-nsdZlGp4kneociJVMPWqNpzw3plDjdDPQnC3KlQTfB3xdDhy1M3S4Gisq4Vn2qrPaPabBDDuh605x8MZeeuEq25yKN_2bZli4TJRrgSKnv8dJxTX6EqEREiaC8o_C0hLQ-3f1b9WRm3GfZvl7aBhY7iuAkaCftz5cK8fZJg6antTWffzu8FGs_zSM6r7zGcoi90qgiei193gCmz_3kA8iGc-1KkkHB7XtoPnw_Y6_Ui0YnkHrF_Tzhu5d1zO7Wcb7F-_iZFqGP4dlpTi0KgMaw2Yj7jfiIAmRzDqNAUy76vqLlb2O5Z1Z6SZbtLGdkneiaFt0Z5QeZAxapZUlTQ1A-w-XWVERZjX8ctbvDDy8mb4u28ppVN9CSp7r0c0N04KZGYtO9W6EeSotfAtI7-NnWmTFAq4CFGgtHUekGXCGHOHfXIVS79UAQdhD5JaUU4FO0BtHUaDi0ZCi6DP-Cdx4KwXLtXD-KlYx_dpini5mHHkT683dQLBotS8OVOtJF4zVQzZTkPD5p7feCCIOnuWd40b6RYrhaB_w54FnOF1gXrm4jVT3n7ZIEJN-_BpwSVtEAAWczYdxEE5IOUSjPz9zG-B1AFPNQ7OKWw5EB-Z4hNNlN-LEvjrf8DP7UQ3pcOVo3GsVe3HDYe3E492Ya4vQhK0qt7GLnkgolOBq9zvdKXqth_OPcYIeMExPm9QICNVe_SY3AxsVBvjyWbr7cL-sZTJ3NiwpStyDOFPcQSmqdta_kOpDXK7kw044vfPsFwrfYDIWzkJZ9dLjzAevOTdPR8B0NrZnC3q-MRkWl-byqEmRwVGa-x2-6KPe5zpwKyEeAAVY2m_g300MHo1BFlIDakWvlgaovMoEAWyej7bBVz5oB_mBwKiS0ODodQQ86rD7lIjiQAe2wtik.Jg4dSMsrAuABQKrDbvVd-Q",
  "iss": "xp-bank",
  "code_challenge_method": "S256",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "aud": "https://www.certification.openid.net/test/a/xp/",
  "nbf": 1648178713,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY",
  "exp": 1648179013,
  "iat": 1648178713,
  "code_challenge": "D9hWL8od_oYSGneA_jWJrlk6pHsyh_BBVcLe6fiEf88",
  "jti": "rzqXhWy-AXZlRGC5Nh3uHeMjvS3DDs1HOXExgh_GAU4"
}
2022-03-25 03:25:14 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-03-25 03:25:14 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2022-03-25 03:25:14 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Mar 25, 2022, 3:30:13 AM"
2022-03-25 03:25:14 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Mar 25, 2022, 3:25:13 AM"
now
"Mar 25, 2022, 3:25:14 AM"
2022-03-25 03:25:14
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-03-25 03:25:14 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-03-25 03:25:14 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-03-25 03:25:14 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-03-25 03:25:14 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-03-25 03:25:14 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.pYGAsYrK0Hl-pCVU9bQesvY_KtlLdxV7jsnWUs1NNix6t3X7EGFpH7FuDdzrLCcXtYR3SBLl_vSY36Cv_kmSTNzlFE5wdQ8OLg1O4nVR1JmRK276TT4ZRY37Gy2kIDrw2jm8JXctbDZVG1S87B69ROcdpnmgjQL8Q69R_WuFT3dMqydXPnwWTd2KRu4zEpWsuPVmeRmqiOiuTMfnt49OluSWny9kcdrJLaO-8o5xS6a8Q4ea7v3Csvnbu40VyLtJcj1RChjAC91eA97M0U_VaqBuhyNnf_zcjgA4rq2Vh3yn9YEyMtPb6GPGefFee3GPLp69TlEHH5nRTZocMBoEIA
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 23260735002103450243623279762843511426759305573696610508136501342853040913247956190583618876991429258896006008596549696285751806271973298667918283242520972854533393606787795648263127145039554511523867477202246167931487508408010436130184823223363845603861690992798440562805972778928998695813268100359636496296631962636237856512232437316249605540178473079207065586583947340964737808938940851445143149246717972540651650264880045277910664227027452684898374945780557802335608637428113050134339387488288360648020652711378823998226345458260018299333773950708709471541667060852705395511509504215491042380631648331270236178317
  public exponent: 65537
2022-03-25 03:25:14 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:25:14 SUCCESS
EnsureRequiredAuthorizationRequestParametersMatchRequestObject
Required http request parameters match request object claims
response_type
code id_token
client_id
xp-bank
2022-03-25 03:25:14 SUCCESS
EnsureOptionalAuthorizationRequestParametersMatchRequestObject
All http request parameters and request object claims match
2022-03-25 03:25:14 SUCCESS
EnsureAuthorizationHttpRequestContainsOpenIDScope
Found 'openid' in scope http request parameter
actual
[
  "openid",
  "consent:urn:conformance:oidf:ZIOx7cK02e",
  "payments"
]
expected
openid
2022-03-25 03:25:14 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance:oidf:ZIOx7cK02e payments
2022-03-25 03:25:14 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:ZIOx7cK02e",
  "payments"
]
expected
consent:urn:conformance:oidf:ZIOx7cK02e
2022-03-25 03:25:14 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:ZIOx7cK02e",
  "payments"
]
2022-03-25 03:25:14 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-03-25 03:25:14 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:ZIOx7cK02e",
  "payments"
]
expected
openid
2022-03-25 03:25:14 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
xp-bank
2022-03-25 03:25:14 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
ageZrCKnlCBmeuX8LZz1ohYmVNdfhFTB
2022-03-25 03:25:14 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0
2022-03-25 03:25:14 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
zhhum9Iw7chw2QjFX4axOw
2022-03-25 03:25:14 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
YFY9_Zy8QZaQsQMK4AUdxg
2022-03-25 03:25:14 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank
nonce
fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0
iat
1648178714
exp
1648179014
2022-03-25 03:25:14 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "iat": 1648178714,
  "exp": 1648179014
}
2022-03-25 03:25:14 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
zhhum9Iw7chw2QjFX4axOw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "iat": 1648178714,
  "exp": 1648179014,
  "c_hash": "zhhum9Iw7chw2QjFX4axOw"
}
2022-03-25 03:25:14 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
YFY9_Zy8QZaQsQMK4AUdxg
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "iat": 1648178714,
  "exp": 1648179014,
  "c_hash": "zhhum9Iw7chw2QjFX4axOw",
  "s_hash": "YFY9_Zy8QZaQsQMK4AUdxg"
}
2022-03-25 03:25:14 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-03-25 03:25:14 SUCCESS
AddInvalidIssValueToIdToken
Added invalid iss to ID token claims
iss
https://www.certification.openid.net/test/a/xp/1
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/1",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "iat": 1648178714,
  "exp": 1648179014,
  "c_hash": "zhhum9Iw7chw2QjFX4axOw",
  "s_hash": "YFY9_Zy8QZaQsQMK4AUdxg"
}
2022-03-25 03:25:14 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/1",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "fwXvFYoudWsLNl0u3-RBL9CMWTi47rbIb58wnpuA2U0",
  "iat": 1648178714,
  "exp": 1648179014,
  "c_hash": "zhhum9Iw7chw2QjFX4axOw",
  "s_hash": "YFY9_Zy8QZaQsQMK4AUdxg",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:25:14 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJ6aGh1bTlJdzdjaHcyUWpGWDRheE93IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiWUZZOV9aeThRWmFRc1FNSzRBVWR4ZyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvMSIsImV4cCI6MTY0ODE3OTAxNCwibm9uY2UiOiJmd1h2RllvdWRXc0xObDB1My1SQkw5Q01XVGk0N3JiSWI1OHducHVBMlUwIiwiaWF0IjoxNjQ4MTc4NzE0fQ.17UuHu3Ijs0TyK99CXqar5NT52ej2gPXGStm2ucDceU5QR4CumMWXfx1D46XSsyFC7uieeMccn-nLiE5Ye7fX7m4kf8Xu3kAsNniCpCwQATodxUdrPmAJnHNQ26QU2hHbQVOM1PSzXywRLrMQDAd6rLf1Bd5gFttWx4qxharjsZK14kfeuayVrBg0RclGCNd80090rabi4azAytTf3Ie_aepWHn2-yU-JhrO5yFVwJAMmUl4D0lHIbMzOqRhJZnP8ntq2Z2Kr4u1W62t75SjIhg3E04p6EheHomIE7LJEzVvXUU7KY23fXRmJnOIHJJbxq7TJequNFclDYGIfp6JBg
2022-03-25 03:25:14 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:ZIOx7cK02e",
    "creationDateTime": "2022-03-25T03:25:13Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-03-25T03:25:14Z",
    "expirationDateTime": "2022-03-25T05:25:13Z",
    "transactionFromDateTime": "2022-03-25T03:20:13Z",
    "transactionToDateTime": "2022-03-25T05:25:13Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:25:13Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178713,
  "jti": "c9f84633-6da8-4e17-9837-27589d546460",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:25:14 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY"
}
2022-03-25 03:25:14 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY",
  "code": "ageZrCKnlCBmeuX8LZz1ohYmVNdfhFTB"
}
2022-03-25 03:25:14 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY",
  "code": "ageZrCKnlCBmeuX8LZz1ohYmVNdfhFTB",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJ6aGh1bTlJdzdjaHcyUWpGWDRheE93IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiWUZZOV9aeThRWmFRc1FNSzRBVWR4ZyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvMSIsImV4cCI6MTY0ODE3OTAxNCwibm9uY2UiOiJmd1h2RllvdWRXc0xObDB1My1SQkw5Q01XVGk0N3JiSWI1OHducHVBMlUwIiwiaWF0IjoxNjQ4MTc4NzE0fQ.17UuHu3Ijs0TyK99CXqar5NT52ej2gPXGStm2ucDceU5QR4CumMWXfx1D46XSsyFC7uieeMccn-nLiE5Ye7fX7m4kf8Xu3kAsNniCpCwQATodxUdrPmAJnHNQ26QU2hHbQVOM1PSzXywRLrMQDAd6rLf1Bd5gFttWx4qxharjsZK14kfeuayVrBg0RclGCNd80090rabi4azAytTf3Ie_aepWHn2-yU-JhrO5yFVwJAMmUl4D0lHIbMzOqRhJZnP8ntq2Z2Kr4u1W62t75SjIhg3E04p6EheHomIE7LJEzVvXUU7KY23fXRmJnOIHJJbxq7TJequNFclDYGIfp6JBg"
}
2022-03-25 03:25:14
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://openbanking-redirect-hml.xpi.com.br/#state=iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY&code=ageZrCKnlCBmeuX8LZz1ohYmVNdfhFTB&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJ6aGh1bTlJdzdjaHcyUWpGWDRheE93IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiWUZZOV9aeThRWmFRc1FNSzRBVWR4ZyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvMSIsImV4cCI6MTY0ODE3OTAxNCwibm9uY2UiOiJmd1h2RllvdWRXc0xObDB1My1SQkw5Q01XVGk0N3JiSWI1OHducHVBMlUwIiwiaWF0IjoxNjQ4MTc4NzE0fQ.17UuHu3Ijs0TyK99CXqar5NT52ej2gPXGStm2ucDceU5QR4CumMWXfx1D46XSsyFC7uieeMccn-nLiE5Ye7fX7m4kf8Xu3kAsNniCpCwQATodxUdrPmAJnHNQ26QU2hHbQVOM1PSzXywRLrMQDAd6rLf1Bd5gFttWx4qxharjsZK14kfeuayVrBg0RclGCNd80090rabi4azAytTf3Ie_aepWHn2-yU-JhrO5yFVwJAMmUl4D0lHIbMzOqRhJZnP8ntq2Z2Kr4u1W62t75SjIhg3E04p6EheHomIE7LJEzVvXUU7KY23fXRmJnOIHJJbxq7TJequNFclDYGIfp6JBg
2022-03-25 03:25:14 OUTGOING
fapi1-advanced-final-client-test-invalid-iss
Response to HTTP request to test instance bsfPJCsI5iN4rQ9
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://openbanking-redirect-hml.xpi.com.br/#state=iGBnkfEnPctajB49LLSM4iGgroIVNj8JnnIuvY6rKxY&code=ageZrCKnlCBmeuX8LZz1ohYmVNdfhFTB&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJ6aGh1bTlJdzdjaHcyUWpGWDRheE93IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiWUZZOV9aeThRWmFRc1FNSzRBVWR4ZyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvMSIsImV4cCI6MTY0ODE3OTAxNCwibm9uY2UiOiJmd1h2RllvdWRXc0xObDB1My1SQkw5Q01XVGk0N3JiSWI1OHducHVBMlUwIiwiaWF0IjoxNjQ4MTc4NzE0fQ.17UuHu3Ijs0TyK99CXqar5NT52ej2gPXGStm2ucDceU5QR4CumMWXfx1D46XSsyFC7uieeMccn-nLiE5Ye7fX7m4kf8Xu3kAsNniCpCwQATodxUdrPmAJnHNQ26QU2hHbQVOM1PSzXywRLrMQDAd6rLf1Bd5gFttWx4qxharjsZK14kfeuayVrBg0RclGCNd80090rabi4azAytTf3Ie_aepWHn2-yU-JhrO5yFVwJAMmUl4D0lHIbMzOqRhJZnP8ntq2Z2Kr4u1W62t75SjIhg3E04p6EheHomIE7LJEzVvXUU7KY23fXRmJnOIHJJbxq7TJequNFclDYGIfp6JBg]
outgoing_path
authorize
2022-03-25 03:25:19 FINISHED
fapi1-advanced-final-client-test-invalid-iss
Test has run to completion
testmodule_result
PASSED
2022-03-25 03:25:20
TEST-RUNNER
Alias has now been claimed by another test
alias
xp
new_test_id
hbM5CF3SDdWaUN1
Test Results