Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-03-25 03:32:34 INFO
TEST-RUNNER
Test instance GSJpQpsmbwl3Vyh created
baseUrl
https://www.certification.openid.net/test/a/xp
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
xp
description
Banco XP - Iniciação de Pagamentos
planId
n7Q3vTHR1mt5V
config
{
  "alias": "xp",
  "description": "Banco XP - Iniciação de Pagamentos",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "xp-bank",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
          "e": "AQAB",
          "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
          "e": "AQAB",
          "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----\nMIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0\nNDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp\nbyBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3\nMTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku\nY29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0\nZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is\nZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G\nCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x\n4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV\n0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab\nkV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4\ndR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+\niH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj\nggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt\nNHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM\nMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB\ngDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs\neSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl\nciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2\naWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl\naXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m\nIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k\nIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v\nY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll\nczANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV\nfl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G\nMfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk\ngJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA\nx9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "xp-bank-two",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
          "e": "AQAB",
          "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
          "e": "AQAB",
          "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
2022-03-25 03:32:34 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/xp/
discoveryUrl
https://www.certification.openid.net/test/a/xp/.well-known/openid-configuration
2022-03-25 03:32:34 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:32:34 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:32:34
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-03-25 03:32:34
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-03-25 03:32:34
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-03-25 03:32:34
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-03-25 03:32:34
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-03-25 03:32:34
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/xp/par
2022-03-25 03:32:34
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-03-25 03:32:34 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-03-25 03:32:34 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-03-25 03:32:34 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-03-25 03:32:34 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:32:34 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-03-25 03:32:34 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
xp-bank
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0
NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x
4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV
0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab
kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4
dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+
iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt
NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV
fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G
MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk
gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA
x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf
fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg==
-----END CERTIFICATE-----
2022-03-25 03:32:34 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:32:34 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ"
    }
  ]
}
2022-03-25 03:32:34 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:32:34 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:32:34 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
Verify configuration of second client
2022-03-25 03:32:34 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
xp-bank-two
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:32:34 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:32:34 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ"
    }
  ]
}
2022-03-25 03:32:34 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:32:34 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:32:34 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:32:34
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Setup Done
2022-03-25 03:32:36 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "61995046035920142",
  "x-datadog-parent-id": "1055955663227578661",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:32:36 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:32:36 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:32:37 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "61995046035920142",
  "x-datadog-parent-id": "204960276515857949",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1035"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "payments",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTYsImV4cCI6MTY0ODE3OTIxNiwianRpIjoiTnFfS3FGSXl5dV9MZy1vaTZ4LXYzTEQ1TmI2WThJUFNZRm44SUt4WmpGUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cscsv-8gJYg45e9Z85tAxntw5dNWod_xDv8PdHZMZE9q0t-U_ZxZ2mOIKLhUCOQVI3NbKzCpsjka10YS048LZ49V_VJeFRJRsEQwqujwlt86_NVUu51Ca_94EhBEfMZKauzu2qgjkkhvmTC0zS8AOU4nt83Jnqmy78oN6qSumKPxACzdDE2AWDegcpyYY4-Dx26zAhdJ0R5BOWwisqGRTuJENg8QmrNoka8PmE-OaILZD8Aixcn8cUHt9ADxivDfv6pzaWNtBwZKUFJaHLE7zn67cl8D21lOaqVEFUjIWWThiKZeYOKRJP0I9JYbt2bY6nYPhZ7oRNnZMhsl5voOyg",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=payments&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTYsImV4cCI6MTY0ODE3OTIxNiwianRpIjoiTnFfS3FGSXl5dV9MZy1vaTZ4LXYzTEQ1TmI2WThJUFNZRm44SUt4WmpGUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cscsv-8gJYg45e9Z85tAxntw5dNWod_xDv8PdHZMZE9q0t-U_ZxZ2mOIKLhUCOQVI3NbKzCpsjka10YS048LZ49V_VJeFRJRsEQwqujwlt86_NVUu51Ca_94EhBEfMZKauzu2qgjkkhvmTC0zS8AOU4nt83Jnqmy78oN6qSumKPxACzdDE2AWDegcpyYY4-Dx26zAhdJ0R5BOWwisqGRTuJENg8QmrNoka8PmE-OaILZD8Aixcn8cUHt9ADxivDfv6pzaWNtBwZKUFJaHLE7zn67cl8D21lOaqVEFUjIWWThiKZeYOKRJP0I9JYbt2bY6nYPhZ7oRNnZMhsl5voOyg&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:32:37 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:32:37 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank
2022-03-25 03:32:37 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:32:37 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:32:37 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:32:37 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTYsImV4cCI6MTY0ODE3OTIxNiwianRpIjoiTnFfS3FGSXl5dV9MZy1vaTZ4LXYzTEQ1TmI2WThJUFNZRm44SUt4WmpGUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cscsv-8gJYg45e9Z85tAxntw5dNWod_xDv8PdHZMZE9q0t-U_ZxZ2mOIKLhUCOQVI3NbKzCpsjka10YS048LZ49V_VJeFRJRsEQwqujwlt86_NVUu51Ca_94EhBEfMZKauzu2qgjkkhvmTC0zS8AOU4nt83Jnqmy78oN6qSumKPxACzdDE2AWDegcpyYY4-Dx26zAhdJ0R5BOWwisqGRTuJENg8QmrNoka8PmE-OaILZD8Aixcn8cUHt9ADxivDfv6pzaWNtBwZKUFJaHLE7zn67cl8D21lOaqVEFUjIWWThiKZeYOKRJP0I9JYbt2bY6nYPhZ7oRNnZMhsl5voOyg",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648179216,
    "iat": 1648179156,
    "jti": "Nq_KqFIyyu_Lg-oi6x-v3LD5Nb6Y8IPSYFn8IKxZjFQ"
  }
}
2022-03-25 03:32:37
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:32:37 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTYsImV4cCI6MTY0ODE3OTIxNiwianRpIjoiTnFfS3FGSXl5dV9MZy1vaTZ4LXYzTEQ1TmI2WThJUFNZRm44SUt4WmpGUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cscsv-8gJYg45e9Z85tAxntw5dNWod_xDv8PdHZMZE9q0t-U_ZxZ2mOIKLhUCOQVI3NbKzCpsjka10YS048LZ49V_VJeFRJRsEQwqujwlt86_NVUu51Ca_94EhBEfMZKauzu2qgjkkhvmTC0zS8AOU4nt83Jnqmy78oN6qSumKPxACzdDE2AWDegcpyYY4-Dx26zAhdJ0R5BOWwisqGRTuJENg8QmrNoka8PmE-OaILZD8Aixcn8cUHt9ADxivDfv6pzaWNtBwZKUFJaHLE7zn67cl8D21lOaqVEFUjIWWThiKZeYOKRJP0I9JYbt2bY6nYPhZ7oRNnZMhsl5voOyg
2022-03-25 03:32:37 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:32:37 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:32:37 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "payments"
]
expected
payments
2022-03-25 03:32:37 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1
2022-03-25 03:32:37 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1
token_type
Bearer
2022-03-25 03:32:37
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-03-25 03:32:37 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1",
  "token_type": "Bearer"
}
outgoing_path
token
2022-03-25 03:32:38 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test-mtls/a/xp/payments/v1/consents
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/jwt",
  "authorization": "Bearer dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1",
  "x-idempotency-key": "20f8b8e9-c54a-42b9-bd4c-44d0cd3c42d7",
  "user-agent": "axios/0.24.0",
  "x-datadog-trace-id": "61995046035920142",
  "x-datadog-parent-id": "3364862784996630053",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1401"
}
incoming_path
/test-mtls/a/xp/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.eyJkYXRhIjp7ImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY3JlZGl0b3IiOnsiY3BmQ25waiI6IjU1MTU1MTE0ODQ1IiwibmFtZSI6IkhPTU9MT0dBQ0FPIFBJWCIsInBlcnNvblR5cGUiOiJQRVNTT0FfTkFUVVJBTCJ9LCJwYXltZW50Ijp7ImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRhdGUiOiIyMDIxLTExLTExIiwiZGV0YWlscyI6eyJjcmVkaXRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjkyODk0OTIyIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjEwMTczNzIyIn0sImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJwcm94eSI6IjU1MTU1MTE0ODQ1In0sImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJ0eXBlIjoiUElYIn0sImRlYnRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjM3MjQxMjMwIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjQyNjEwNzM1NzMifX0sImlhdCI6MTY0ODE3OTE1NywiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3BheW1lbnRzL3YxL2NvbnNlbnRzIiwiaXNzIjoiNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzIiwianRpIjoiNGEyZmFhYTctOGQyNi00M2Q0LThhODctM2I0NjI0ZTA3MDNkIn0.hFS85Jtm7Hc4r9msLfbKGxyfOkkn27LjaowP14c40mLAosBv6Tz2wgWoZ79rJGqSr0RGz0HmwZ0o9nBvC3UqossAw1mUrDB8K1xk4YgezxLaGss4vVrQZWVI3X9pygj82aTbK3OWnLj06tCz4ZcTjYlTjPhWTxI0faZb1A4JLaXmEpZ6BQGQY0uGPrVDla8LJhVs5pClzk8KmqS1544yIWaW9QUzU0659B_-25KWUMctEHUgVjdVNqn5E2mPPdAavRR8-gq5dGvmPUjBJx-4NiRoYQDh6c2VAn_sZKbheWRzl0UaKJLHqN8enYEVW7vuLHAvqZail1aLbhlgh8IB2w
2022-03-25 03:32:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-03-25 03:32:38 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:32:38 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:32:38 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0
NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x
4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV
0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab
kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4
dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+
iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt
NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV
fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G
MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk
gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA
x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf
fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg==
-----END CERTIFICATE-----
2022-03-25 03:32:38 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:32:38 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:32:38 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1
2022-03-25 03:32:38 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
dE2PPgOAspMTusRPOy8LQYjDrsRRWKTY4BGzviMa3cBsD1p1J1
2022-03-25 03:32:38 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:32:38 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:32:38 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:32:38 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2022-03-25 03:32:38 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "payments"
]
2022-03-25 03:32:38 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents",
  "data": {
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    }
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648179157,
  "jti": "4a2faaa7-8d26-43d4-8a87-3b4624e0703d"
}
2022-03-25 03:32:38 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:32:38 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
20f8b8e9-c54a-42b9-bd4c-44d0cd3c42d7
2022-03-25 03:32:38 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents
2022-03-25 03:32:38 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
0674aed0-cd43-4980-98c4-b20c219e56da
2022-03-25 03:32:38 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:32:38 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
4a2faaa7-8d26-43d4-8a87-3b4624e0703d
2022-03-25 03:32:38 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1648179157
2022-03-25 03:32:38
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
2022-03-25 03:32:38
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-03-25 03:32:38 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "8964",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Thu, 10 Mar 2022 14:55:40 GMT",
  "x-amz-version-id": "6PRpK8NBC.5muY.MLRUAjkn40qtnhX9N",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Fri, 25 Mar 2022 03:31:56 GMT",
  "etag": "\"dd439665e3119a15a2072315d0a724f1\"",
  "x-xss-protection": "1; mode\u003dblock",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "strict-origin-when-cross-origin",
  "x-content-type-options": "nosniff",
  "strict-transport-security": "max-age\u003d31536000",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 c8bcdad2cb88c57a5e39f7757d2e9f6a.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-P2",
  "x-amz-cf-id": "A6FiHRpQxgNnsaWo6zUt6gv6pWDqW4xSluGBqqoBV7Np30w-8qpgnA\u003d\u003d",
  "age": "42"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["MIIG0DCCBbigAwIBAgIUOSEiTVKSXPYVcS7HUFKtt65AIrkwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgwMjIwMjAwMFoXDTIyMDkwMTIwMjAwMFowgbsxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUYwCwYDVQQLEwR0ZXN0MBUGA1UECxMOMzMyNjQ2NjgwMDAxMDMwIAYDVQQLExlpbnN0aXR1aWNhbyBDZXJ0aWZpY2Fkb3JhMRkwFwYDVQQDExBYUCBJTlZFU1RJTUVOVE9TMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWiyxqXG/9IfRmEWPBpjHCxXTkAV1Oetq3/l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG+xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie/9j/2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W+rDOmmX4wXOyazo+BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg+rJyrQG7gM+xyOnqcmhavjG8FlZ/bO+4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin/5flJ9WJG1HUUiM62sQIDAQABo4IDEzCCAw8wDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUShLKNrbb1Q1qOV5I+p3lkRsDmqUwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBvBgNVHREEaDBmoB0GBWBMAQMCoBQMElBlc3NvYSBSZXNwb25zYXZlbKAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6ATBgVgTAEDBKAKDAgxMjMxMjMyMaAVBgVgTAEDB6AMDAozMjEzMTIzMzIxMA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAJwWTRuW9wFz/LmFEkYHuXN4thDEk1pk9VLFrfOw7iBDNH7p4lgwtrpjEqCSo/sRj6rpTVJTfAPLIxdM7dxNEbxr1UTkCG/NszxY3VUfmuzs0CTXswh1ZMbfkoNZwKFfx3g1XT1VueQ+kPJqtf8JpglVanKOteaQDN9C812WvDSFUt6OzdU4hbU29Jzl/g+lM9s67xYSlP0944IT4U/TEZ5eR+UPGgZyLLvdol8/gO9nWwszMp4itQKC9vLotNSe6KFPgxzC/HW5kFhW1iwjp5pw6sWubUJvtwlrqgKvqdwHAgf7nKAx+5kL5IThmNCw++XxM4SEDpnbByWJI8biKlk="],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["MIIGyjCCBbKgAwIBAgIUMKsNYCFNllXyex8gdurSW50eLr4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NTEwMFoXDTIzMDQwOTE0NTEwMFowgbgxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUgwEwYDVQQLEwxGaW5hbnN5c3RlY2gwFQYDVQQLEw40MjIyMjkxNTAwMDE5MTAaBgNVBAsTE0NlcnRpZmljYWRvIERpZ2l0YWwxFDASBgNVBAMTC0JDTyBYUCBTLkEuMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs/vRWhEb6M6foZIxYKQON7uDn+hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC/uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn/1GRFn13MaY5UtV+ds8p/uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC+fSQIDAQABo4IDEDCCAwwwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUINMH8Nt4e4d64L95J1SsnBnCIzMwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBsBgNVHREEZTBjoBcGBWBMAQMCoA4MDFdlc2xleSBTaWx2YaAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6AWBgVgTAEDBKANDAszMDkzMjc0MzAzMKAVBgVgTAEDB6AMDAoxMjM0NTY2Nzg5MA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAMctaE4siLeds6YXgyedgGczn4GLGrflicwZ47NB7a88EjaSlx54GwPGyePqQEJJ2atWnldN4v6L+PzDA2b9VN1t4L5KDWabb36ln/gCuAWti0mYGKiI1AfZdjXNP6DlEwiUsKAyyLb39tVbkm65kxEleMUGHHJsxTYS+ztgpYtfQEqPiwAvPOQNvdk3pbg6ChqpuhpPR7nHRHCmmiSkZPDOqcW8e85vawNrojM1mKbqXmwydOoWqJb38UCj7ZEMHZcPliaK1vyAGPblpPyRfnFAiX7W9vJ7IIkEznHtRJeRUEhAeFBRGgbRhfHYNkIuT/+nUgGfiTD8e/Wsv35FYHE="],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:32:38
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:32:38 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ",
      "e": "AQAB",
      "kid": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem",
      "x5t#256": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew",
      "e": "AQAB",
      "kid": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem",
      "x5t#256": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ",
      "e": "AQAB",
      "kid": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem",
      "x5t#256": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"
    }
  ]
}
2022-03-25 03:32:38 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.hFS85Jtm7Hc4r9msLfbKGxyfOkkn27LjaowP14c40mLAosBv6Tz2wgWoZ79rJGqSr0RGz0HmwZ0o9nBvC3UqossAw1mUrDB8K1xk4YgezxLaGss4vVrQZWVI3X9pygj82aTbK3OWnLj06tCz4ZcTjYlTjPhWTxI0faZb1A4JLaXmEpZ6BQGQY0uGPrVDla8LJhVs5pClzk8KmqS1544yIWaW9QUzU0659B_-25KWUMctEHUgVjdVNqn5E2mPPdAavRR8-gq5dGvmPUjBJx-4NiRoYQDh6c2VAn_sZKbheWRzl0UaKJLHqN8enYEVW7vuLHAvqZail1aLbhlgh8IB2w
2022-03-25 03:32:38 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
d459d137-7546-4655-b230-4b9483d6ed91
2022-03-25 03:32:38 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "d459d137-7546-4655-b230-4b9483d6ed91"
}
consentId
urn:conformance:oidf:Yx0AsamsT6
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:Yx0AsamsT6",
    "creationDateTime": "2022-03-25T03:32:38Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-03-25T03:32:38Z",
    "expirationDateTime": "2022-03-25T05:32:38Z",
    "transactionFromDateTime": "2022-03-25T03:27:38Z",
    "transactionToDateTime": "2022-03-25T05:32:38Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:32:38Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648179158,
  "jti": "bfe40067-6a67-4b64-af0f-459acc85e45b",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:32:38 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7ImRlYnRvckFjY291bnQiOnsibnVtYmVyIjoiNDI2MTA3MzU3MyIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiIzNzI0MTIzMCIsImlzc3VlciI6IjAwMDEifSwiZXhwaXJhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwNTozMjozOFoiLCJ0cmFuc2FjdGlvblRvRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDA1OjMyOjM4WiIsImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY29uc2VudElkIjoidXJuOmNvbmZvcm1hbmNlOm9pZGY6WXgwQXNhbXNUNiIsInRyYW5zYWN0aW9uRnJvbURhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyNzozOFoiLCJtZXRhIjp7InRvdGFsUmVjb3JkcyI6MSwicmVxdWVzdERhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzozMjozOFoiLCJ0b3RhbFBhZ2VzIjoxfSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjMyOjM4WiIsImxpbmtzIjp7InNlbGYiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBwYXltZW50c1wvdjFcL2NvbnNlbnRzIn0sImNyZWRpdG9yIjp7Im5hbWUiOiJIT01PTE9HQUNBTyBQSVgiLCJjcGZDbnBqIjoiNTUxNTUxMTQ4NDUiLCJwZXJzb25UeXBlIjoiUEVTU09BX05BVFVSQUwifSwicGF5bWVudCI6eyJkYXRlIjoiMjAyMS0xMS0xMSIsImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRldGFpbHMiOnsicHJveHkiOiI1NTE1NTExNDg0NSIsImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJjcmVkaXRvckFjY291bnQiOnsibnVtYmVyIjoiMTAxNzM3MjIiLCJhY2NvdW50VHlwZSI6IkNBQ0MiLCJpc3BiIjoiOTI4OTQ5MjIiLCJpc3N1ZXIiOiIwMDAxIn19LCJpYmdlVG93bkNvZGUiOiI1MzAwMTA4IiwidHlwZSI6IlBJWCJ9LCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzozMjozOFoiLCJzdGF0dXMiOiJBV0FJVElOR19BVVRIT1JJU0FUSU9OIn0sImlhdCI6MTY0ODE3OTE1OCwianRpIjoiYmZlNDAwNjctNmE2Ny00YjY0LWFmMGYtNDU5YWNjODVlNDViIn0.A4XjDZBAHaI-ZGCrKf6WgzQORzT7V3tVvTEH0nK5Mlhs-uF30_Q70iXHst-iYMhGdEy1GojeB6Shr1G6d8cGeNvf7r0S4GrVZFzu_7AZa1B6nMdvy4BdeHJn52U7oQwqFrEMWDpyVWI6y4p7m2VLyA0UqZPJyx4-JPrre2QgxrBc3wvjG0C0JZCAcxP-39gjLaa1ihJwGzUkLMjxvthRB9bdsQCMNRtnolp13ytmxUnfxnGVCD8THNtsTJ49LeW53Dg6zye9YqbkIbB46YoVR71PhDN9_0bismrHXsneRTXBpxVtoPUALi-eQ52SHJzDiiyGS8-Q5Cgr9Ic1g2Cd2Q
2022-03-25 03:32:38
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:32:38 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d459d137-7546-4655-b230-4b9483d6ed91"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7ImRlYnRvckFjY291bnQiOnsibnVtYmVyIjoiNDI2MTA3MzU3MyIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiIzNzI0MTIzMCIsImlzc3VlciI6IjAwMDEifSwiZXhwaXJhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwNTozMjozOFoiLCJ0cmFuc2FjdGlvblRvRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDA1OjMyOjM4WiIsImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY29uc2VudElkIjoidXJuOmNvbmZvcm1hbmNlOm9pZGY6WXgwQXNhbXNUNiIsInRyYW5zYWN0aW9uRnJvbURhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyNzozOFoiLCJtZXRhIjp7InRvdGFsUmVjb3JkcyI6MSwicmVxdWVzdERhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzozMjozOFoiLCJ0b3RhbFBhZ2VzIjoxfSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjMyOjM4WiIsImxpbmtzIjp7InNlbGYiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBwYXltZW50c1wvdjFcL2NvbnNlbnRzIn0sImNyZWRpdG9yIjp7Im5hbWUiOiJIT01PTE9HQUNBTyBQSVgiLCJjcGZDbnBqIjoiNTUxNTUxMTQ4NDUiLCJwZXJzb25UeXBlIjoiUEVTU09BX05BVFVSQUwifSwicGF5bWVudCI6eyJkYXRlIjoiMjAyMS0xMS0xMSIsImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRldGFpbHMiOnsicHJveHkiOiI1NTE1NTExNDg0NSIsImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJjcmVkaXRvckFjY291bnQiOnsibnVtYmVyIjoiMTAxNzM3MjIiLCJhY2NvdW50VHlwZSI6IkNBQ0MiLCJpc3BiIjoiOTI4OTQ5MjIiLCJpc3N1ZXIiOiIwMDAxIn19LCJpYmdlVG93bkNvZGUiOiI1MzAwMTA4IiwidHlwZSI6IlBJWCJ9LCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzozMjozOFoiLCJzdGF0dXMiOiJBV0FJVElOR19BVVRIT1JJU0FUSU9OIn0sImlhdCI6MTY0ODE3OTE1OCwianRpIjoiYmZlNDAwNjctNmE2Ny00YjY0LWFmMGYtNDU5YWNjODVlNDViIn0.A4XjDZBAHaI-ZGCrKf6WgzQORzT7V3tVvTEH0nK5Mlhs-uF30_Q70iXHst-iYMhGdEy1GojeB6Shr1G6d8cGeNvf7r0S4GrVZFzu_7AZa1B6nMdvy4BdeHJn52U7oQwqFrEMWDpyVWI6y4p7m2VLyA0UqZPJyx4-JPrre2QgxrBc3wvjG0C0JZCAcxP-39gjLaa1ihJwGzUkLMjxvthRB9bdsQCMNRtnolp13ytmxUnfxnGVCD8THNtsTJ49LeW53Dg6zye9YqbkIbB46YoVR71PhDN9_0bismrHXsneRTXBpxVtoPUALi-eQ52SHJzDiiyGS8-Q5Cgr9Ic1g2Cd2Q
outgoing_path
payments/v1/consents
2022-03-25 03:32:39 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test-mtls/a/xp/par
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "61995046035920142",
  "x-datadog-parent-id": "236325190753813947",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "2405"
}
incoming_path
/test-mtls/a/xp/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.OqRsx3_T4c-x7bAXDNLPwUxDfGkMOJEfjX47M5c0cF20MIk6cFif3jVNBzbuB6JoXioWAW3FO4gzAWPjopOIBEyKtfeEPplukP3EK-ngUf-KdUJq3a41ejuh-tiTHRrmRQF3tdBTSA5leIae-LfQEAhEhOXF7sJfz7ZXYNG3mV0NtgUGC54UKy5IWaRILODnTM5J_pkOhYC0xeG1NxjAyMrGvZnhoeJqC3O8Iwtvm8HzWmcz-TCMrZ9oGnQpk41MiCrEiuQZpYUXW--FuarifVnZKd8WwdzJ6vlMC3LKT5RI3QesKKlEk5Qlj4MWz0CmKi6DRzFiobc0MUuIcKFj_Q",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTgsImV4cCI6MTY0ODE3OTIxOCwianRpIjoiczJkVl9VXy01SEdEV0ZrV19MTzdPcGRRbVhXdUMxa2NZbU4zbEgxTVVUYyIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.Sw1KjBypvAfs0C0KKtxgF2RjvXHuK04GlGvFA97OCZc-5-zxe42xfNeRv5pGFyCQFRnb5jx5hfP_V1X3MeRNNQbAZCRxrUZBGwBKqie-FgP6T43iq8dhFMplTRoU4IRQstz0jeQTtatFuX4_uV3PZh8hzA5tl6zyzvXPb8X3Ga6Cw8SaU5N4poW16yTk6TEI_YudFbHAKm1pAl7nIxsZN3teVL7Csks7DoP1u2UPjy4R1y-1oKBgBXkANnaupabw_WT0uHVTgGf7VeZCq9WIn53ehfWj0ALm0phxTy88fYeJ2IMgKiuxfV7oUeqgpnabrjwg4KnBqymE6NNgOnVIZw",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.OqRsx3_T4c-x7bAXDNLPwUxDfGkMOJEfjX47M5c0cF20MIk6cFif3jVNBzbuB6JoXioWAW3FO4gzAWPjopOIBEyKtfeEPplukP3EK-ngUf-KdUJq3a41ejuh-tiTHRrmRQF3tdBTSA5leIae-LfQEAhEhOXF7sJfz7ZXYNG3mV0NtgUGC54UKy5IWaRILODnTM5J_pkOhYC0xeG1NxjAyMrGvZnhoeJqC3O8Iwtvm8HzWmcz-TCMrZ9oGnQpk41MiCrEiuQZpYUXW--FuarifVnZKd8WwdzJ6vlMC3LKT5RI3QesKKlEk5Qlj4MWz0CmKi6DRzFiobc0MUuIcKFj_Q&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTgsImV4cCI6MTY0ODE3OTIxOCwianRpIjoiczJkVl9VXy01SEdEV0ZrV19MTzdPcGRRbVhXdUMxa2NZbU4zbEgxTVVUYyIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.Sw1KjBypvAfs0C0KKtxgF2RjvXHuK04GlGvFA97OCZc-5-zxe42xfNeRv5pGFyCQFRnb5jx5hfP_V1X3MeRNNQbAZCRxrUZBGwBKqie-FgP6T43iq8dhFMplTRoU4IRQstz0jeQTtatFuX4_uV3PZh8hzA5tl6zyzvXPb8X3Ga6Cw8SaU5N4poW16yTk6TEI_YudFbHAKm1pAl7nIxsZN3teVL7Csks7DoP1u2UPjy4R1y-1oKBgBXkANnaupabw_WT0uHVTgGf7VeZCq9WIn53ehfWj0ALm0phxTy88fYeJ2IMgKiuxfV7oUeqgpnabrjwg4KnBqymE6NNgOnVIZw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:32:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-03-25 03:32:39 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0\nNDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp\nbyBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3\nMTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku\nY29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0\nZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is\nZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G\nCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x\n4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV\n0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab\nkV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4\ndR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+\niH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj\nggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt\nNHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM\nMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB\ngDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs\neSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl\nciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2\naWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl\naXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m\nIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k\nIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v\nY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll\nczANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV\nfl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G\nMfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk\ngJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA\nx9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:32:39 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:32:39 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0
NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x
4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV
0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab
kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4
dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+
iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt
NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV
fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G
MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk
gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA
x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf
fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg==
-----END CERTIFICATE-----
2022-03-25 03:32:39 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTgsImV4cCI6MTY0ODE3OTIxOCwianRpIjoiczJkVl9VXy01SEdEV0ZrV19MTzdPcGRRbVhXdUMxa2NZbU4zbEgxTVVUYyIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.Sw1KjBypvAfs0C0KKtxgF2RjvXHuK04GlGvFA97OCZc-5-zxe42xfNeRv5pGFyCQFRnb5jx5hfP_V1X3MeRNNQbAZCRxrUZBGwBKqie-FgP6T43iq8dhFMplTRoU4IRQstz0jeQTtatFuX4_uV3PZh8hzA5tl6zyzvXPb8X3Ga6Cw8SaU5N4poW16yTk6TEI_YudFbHAKm1pAl7nIxsZN3teVL7Csks7DoP1u2UPjy4R1y-1oKBgBXkANnaupabw_WT0uHVTgGf7VeZCq9WIn53ehfWj0ALm0phxTy88fYeJ2IMgKiuxfV7oUeqgpnabrjwg4KnBqymE6NNgOnVIZw",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648179218,
    "iat": 1648179158,
    "jti": "s2dV_U_-5HGDWFkW_LO7OpdQmXWuC1kcYmN3lH1MUTc"
  }
}
2022-03-25 03:32:39
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:32:39 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNTgsImV4cCI6MTY0ODE3OTIxOCwianRpIjoiczJkVl9VXy01SEdEV0ZrV19MTzdPcGRRbVhXdUMxa2NZbU4zbEgxTVVUYyIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.Sw1KjBypvAfs0C0KKtxgF2RjvXHuK04GlGvFA97OCZc-5-zxe42xfNeRv5pGFyCQFRnb5jx5hfP_V1X3MeRNNQbAZCRxrUZBGwBKqie-FgP6T43iq8dhFMplTRoU4IRQstz0jeQTtatFuX4_uV3PZh8hzA5tl6zyzvXPb8X3Ga6Cw8SaU5N4poW16yTk6TEI_YudFbHAKm1pAl7nIxsZN3teVL7Csks7DoP1u2UPjy4R1y-1oKBgBXkANnaupabw_WT0uHVTgGf7VeZCq9WIn53ehfWj0ALm0phxTy88fYeJ2IMgKiuxfV7oUeqgpnabrjwg4KnBqymE6NNgOnVIZw
2022-03-25 03:32:39 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:32:39 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2022-03-25 03:32:39 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.OqRsx3_T4c-x7bAXDNLPwUxDfGkMOJEfjX47M5c0cF20MIk6cFif3jVNBzbuB6JoXioWAW3FO4gzAWPjopOIBEyKtfeEPplukP3EK-ngUf-KdUJq3a41ejuh-tiTHRrmRQF3tdBTSA5leIae-LfQEAhEhOXF7sJfz7ZXYNG3mV0NtgUGC54UKy5IWaRILODnTM5J_pkOhYC0xeG1NxjAyMrGvZnhoeJqC3O8Iwtvm8HzWmcz-TCMrZ9oGnQpk41MiCrEiuQZpYUXW--FuarifVnZKd8WwdzJ6vlMC3LKT5RI3QesKKlEk5Qlj4MWz0CmKi6DRzFiobc0MUuIcKFj_Q",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "xp-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
    "client_id": "xp-bank",
    "aud": "https://www.certification.openid.net/test/a/xp/",
    "nbf": 1648179158,
    "scope": "openid consent:urn:conformance:oidf:Yx0AsamsT6 payments",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "exp": 1648179458,
    "iat": 1648179158,
    "code_challenge": "aEdvS50vcMxPC7G0FgNwDIWGsTQeiRwVxMgRnAU_QN0",
    "jti": "VwGg8E43PdH676n2aVCxNUG1EfRtiT9lG_O5dLO3RhA"
  }
}
2022-03-25 03:32:39 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-03-25 03:32:39 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:32:39 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-03-25 03:32:39 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2022-03-25 03:32:39 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Mar 25, 2022, 3:37:38 AM"
2022-03-25 03:32:39 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Mar 25, 2022, 3:32:38 AM"
now
"Mar 25, 2022, 3:32:39 AM"
2022-03-25 03:32:39
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-03-25 03:32:39 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-03-25 03:32:39 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-03-25 03:32:39 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-03-25 03:32:39 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-03-25 03:32:39 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.OqRsx3_T4c-x7bAXDNLPwUxDfGkMOJEfjX47M5c0cF20MIk6cFif3jVNBzbuB6JoXioWAW3FO4gzAWPjopOIBEyKtfeEPplukP3EK-ngUf-KdUJq3a41ejuh-tiTHRrmRQF3tdBTSA5leIae-LfQEAhEhOXF7sJfz7ZXYNG3mV0NtgUGC54UKy5IWaRILODnTM5J_pkOhYC0xeG1NxjAyMrGvZnhoeJqC3O8Iwtvm8HzWmcz-TCMrZ9oGnQpk41MiCrEiuQZpYUXW--FuarifVnZKd8WwdzJ6vlMC3LKT5RI3QesKKlEk5Qlj4MWz0CmKi6DRzFiobc0MUuIcKFj_Q
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 23260735002103450243623279762843511426759305573696610508136501342853040913247956190583618876991429258896006008596549696285751806271973298667918283242520972854533393606787795648263127145039554511523867477202246167931487508408010436130184823223363845603861690992798440562805972778928998695813268100359636496296631962636237856512232437316249605540178473079207065586583947340964737808938940851445143149246717972540651650264880045277910664227027452684898374945780557802335608637428113050134339387488288360648020652711378823998226345458260018299333773950708709471541667060852705395511509504215491042380631648331270236178317
  public exponent: 65537
2022-03-25 03:32:39 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:32:39 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
aEdvS50vcMxPC7G0FgNwDIWGsTQeiRwVxMgRnAU_QN0
2022-03-25 03:32:39 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:dbf3ac2a-7298-4a89-9a99-b4f5cb6b29c3
expires_in
600
2022-03-25 03:32:39 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:dbf3ac2a-7298-4a89-9a99-b4f5cb6b29c3",
  "expires_in": 600
}
outgoing_path
par
2022-03-25 03:32:39 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test/a/xp/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "19c28b84-6c6f-4b49-9aa3-bf0c91359ab7",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/xp/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:Yx0AsamsT6 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "request_uri": "urn:ietf:params:oauth:request_uri:dbf3ac2a-7298-4a89-9a99-b4f5cb6b29c3"
}
incoming_body
2022-03-25 03:32:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-03-25 03:32:39 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-03-25 03:32:39 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:32:39 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:Yx0AsamsT6 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "iss": "xp-bank",
  "code_challenge_method": "S256",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "aud": "https://www.certification.openid.net/test/a/xp/",
  "nbf": 1648179158,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0",
  "exp": 1648179458,
  "iat": 1648179158,
  "code_challenge": "aEdvS50vcMxPC7G0FgNwDIWGsTQeiRwVxMgRnAU_QN0",
  "jti": "VwGg8E43PdH676n2aVCxNUG1EfRtiT9lG_O5dLO3RhA"
}
2022-03-25 03:32:39 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-03-25 03:32:39 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance:oidf:Yx0AsamsT6 payments
2022-03-25 03:32:39 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:Yx0AsamsT6",
  "payments"
]
expected
consent:urn:conformance:oidf:Yx0AsamsT6
2022-03-25 03:32:39 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:Yx0AsamsT6",
  "payments"
]
2022-03-25 03:32:39 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-03-25 03:32:39 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:Yx0AsamsT6",
  "payments"
]
expected
openid
2022-03-25 03:32:39 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
xp-bank
2022-03-25 03:32:39 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX
2022-03-25 03:32:39 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ
2022-03-25 03:32:39 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
4LxfJtJGWwOwSIZKH-ZFsw
2022-03-25 03:32:39 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
wZBKmfRSs7ojqTQwJWJMIA
2022-03-25 03:32:39 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank
nonce
DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ
iat
1648179159
exp
1648179459
2022-03-25 03:32:39 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179159,
  "exp": 1648179459
}
2022-03-25 03:32:39 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
4LxfJtJGWwOwSIZKH-ZFsw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179159,
  "exp": 1648179459,
  "c_hash": "4LxfJtJGWwOwSIZKH-ZFsw"
}
2022-03-25 03:32:39 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
wZBKmfRSs7ojqTQwJWJMIA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179159,
  "exp": 1648179459,
  "c_hash": "4LxfJtJGWwOwSIZKH-ZFsw",
  "s_hash": "wZBKmfRSs7ojqTQwJWJMIA"
}
2022-03-25 03:32:39 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-03-25 03:32:39 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179159,
  "exp": 1648179459,
  "c_hash": "4LxfJtJGWwOwSIZKH-ZFsw",
  "s_hash": "wZBKmfRSs7ojqTQwJWJMIA",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:32:39 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiI0THhmSnRKR1d3T3dTSVpLSC1aRnN3IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoid1pCS21mUlNzN29qcVRRd0pXSk1JQSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDU5LCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNTl9.0g0piW1K3ANMe_6hDFlnfobVZFC_k9pgysM7kaN2ksPjce4TPt9RtUG2v-jlo5QIwafd6nejr8TAf__2aoO6vyDTSZscyEuC1xv3z6NNwbpGlEqp3yLla-g68IPB9QYZ8kIFt5M-tSryHzbd8tmek5aw4sjmzwwZDJh0L4oE3t7e40EAYfH1g7j07avOnEopBVrVSHNlOXguI2Iesg5iNPTR3qflmmnNKK5nbOG7GFv3QAov2VP9L--K2DgdpmsRuqNY0VfWYPHywyiO34Lshfj2KE01_S-O8pvzCvBL3v6gTuqnnOXj8-TC3-tymU8vTtUBc4WI7lCVk9QHKkuZgA
2022-03-25 03:32:39 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:Yx0AsamsT6",
    "creationDateTime": "2022-03-25T03:32:38Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-03-25T03:32:39Z",
    "expirationDateTime": "2022-03-25T05:32:38Z",
    "transactionFromDateTime": "2022-03-25T03:27:38Z",
    "transactionToDateTime": "2022-03-25T05:32:38Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:32:38Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648179158,
  "jti": "bfe40067-6a67-4b64-af0f-459acc85e45b",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:32:39 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0"
}
2022-03-25 03:32:39 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0",
  "code": "BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX"
}
2022-03-25 03:32:39 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0",
  "code": "BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiI0THhmSnRKR1d3T3dTSVpLSC1aRnN3IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoid1pCS21mUlNzN29qcVRRd0pXSk1JQSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDU5LCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNTl9.0g0piW1K3ANMe_6hDFlnfobVZFC_k9pgysM7kaN2ksPjce4TPt9RtUG2v-jlo5QIwafd6nejr8TAf__2aoO6vyDTSZscyEuC1xv3z6NNwbpGlEqp3yLla-g68IPB9QYZ8kIFt5M-tSryHzbd8tmek5aw4sjmzwwZDJh0L4oE3t7e40EAYfH1g7j07avOnEopBVrVSHNlOXguI2Iesg5iNPTR3qflmmnNKK5nbOG7GFv3QAov2VP9L--K2DgdpmsRuqNY0VfWYPHywyiO34Lshfj2KE01_S-O8pvzCvBL3v6gTuqnnOXj8-TC3-tymU8vTtUBc4WI7lCVk9QHKkuZgA"
}
2022-03-25 03:32:39
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://openbanking-redirect-hml.xpi.com.br/#state=L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0&code=BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiI0THhmSnRKR1d3T3dTSVpLSC1aRnN3IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoid1pCS21mUlNzN29qcVRRd0pXSk1JQSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDU5LCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNTl9.0g0piW1K3ANMe_6hDFlnfobVZFC_k9pgysM7kaN2ksPjce4TPt9RtUG2v-jlo5QIwafd6nejr8TAf__2aoO6vyDTSZscyEuC1xv3z6NNwbpGlEqp3yLla-g68IPB9QYZ8kIFt5M-tSryHzbd8tmek5aw4sjmzwwZDJh0L4oE3t7e40EAYfH1g7j07avOnEopBVrVSHNlOXguI2Iesg5iNPTR3qflmmnNKK5nbOG7GFv3QAov2VP9L--K2DgdpmsRuqNY0VfWYPHywyiO34Lshfj2KE01_S-O8pvzCvBL3v6gTuqnnOXj8-TC3-tymU8vTtUBc4WI7lCVk9QHKkuZgA
2022-03-25 03:32:39 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://openbanking-redirect-hml.xpi.com.br/#state=L2rr_TG10eZsDk0SiPukInlkDLv4rq75WECSVDHhfG0&code=BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiI0THhmSnRKR1d3T3dTSVpLSC1aRnN3IiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoid1pCS21mUlNzN29qcVRRd0pXSk1JQSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDU5LCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNTl9.0g0piW1K3ANMe_6hDFlnfobVZFC_k9pgysM7kaN2ksPjce4TPt9RtUG2v-jlo5QIwafd6nejr8TAf__2aoO6vyDTSZscyEuC1xv3z6NNwbpGlEqp3yLla-g68IPB9QYZ8kIFt5M-tSryHzbd8tmek5aw4sjmzwwZDJh0L4oE3t7e40EAYfH1g7j07avOnEopBVrVSHNlOXguI2Iesg5iNPTR3qflmmnNKK5nbOG7GFv3QAov2VP9L--K2DgdpmsRuqNY0VfWYPHywyiO34Lshfj2KE01_S-O8pvzCvBL3v6gTuqnnOXj8-TC3-tymU8vTtUBc4WI7lCVk9QHKkuZgA]
outgoing_path
authorize
2022-03-25 03:32:40 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "2811490155592675260",
  "x-datadog-parent-id": "581134328477466508",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:32:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:32:40 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:32:41 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test/a/xp/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "2811490155592675260",
  "x-datadog-parent-id": "1333115538489695041",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:32:41 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:32:41 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-03-25 03:32:41 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "2811490155592675260",
  "x-datadog-parent-id": "448173378495498454",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1182"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "code_verifier": "vbUE0jztGQzAtq_uPluZ-ebFnkZTKP4vbGaxWYka5as",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNjEsImV4cCI6MTY0ODE3OTIyMSwianRpIjoiaG56ay0zZmFXZkgyeDFkQW5velBuSlZmTkpuVmNrenFMVFItYjRGT3JVUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ko3jR8qi4WdstPY_HdIswpSY-5WupTU6EXOMblS3XKObzgSaCi9nYExzHzusFqu8FML95H7yQx3th80-wIrLmsokABnLWYcCNCHT3QFP3Z5GXsfjLPtNxBqR_QuORz_-7n7cpov1gTUwUguGBfTZmfbeHGSp2LqgO_UX8_YRF5qicuIC21HroZV_b_gocEp2Y6Wl8rChsO2wN6LS2difnUwlQaZ5TuFx2vMBdmJ-LHh7e1IC0H4Nha7wMNJ4XQe5xFqWAomiHgew3uOsWzBI6NLDWr1AmOF1FdkibbPEP_wIhgaXn_XFwqojMRoRNFlZ9TfylpK-_Q2JOGwxX7aSXA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX&redirect_uri=https%3A%2F%2Fopenbanking-redirect-hml.xpi.com.br%2F&code_verifier=vbUE0jztGQzAtq_uPluZ-ebFnkZTKP4vbGaxWYka5as&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNjEsImV4cCI6MTY0ODE3OTIyMSwianRpIjoiaG56ay0zZmFXZkgyeDFkQW5velBuSlZmTkpuVmNrenFMVFItYjRGT3JVUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ko3jR8qi4WdstPY_HdIswpSY-5WupTU6EXOMblS3XKObzgSaCi9nYExzHzusFqu8FML95H7yQx3th80-wIrLmsokABnLWYcCNCHT3QFP3Z5GXsfjLPtNxBqR_QuORz_-7n7cpov1gTUwUguGBfTZmfbeHGSp2LqgO_UX8_YRF5qicuIC21HroZV_b_gocEp2Y6Wl8rChsO2wN6LS2difnUwlQaZ5TuFx2vMBdmJ-LHh7e1IC0H4Nha7wMNJ4XQe5xFqWAomiHgew3uOsWzBI6NLDWr1AmOF1FdkibbPEP_wIhgaXn_XFwqojMRoRNFlZ9TfylpK-_Q2JOGwxX7aSXA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:32:41 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:32:41 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank
2022-03-25 03:32:41 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:32:41 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:32:41 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:32:41 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNjEsImV4cCI6MTY0ODE3OTIyMSwianRpIjoiaG56ay0zZmFXZkgyeDFkQW5velBuSlZmTkpuVmNrenFMVFItYjRGT3JVUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ko3jR8qi4WdstPY_HdIswpSY-5WupTU6EXOMblS3XKObzgSaCi9nYExzHzusFqu8FML95H7yQx3th80-wIrLmsokABnLWYcCNCHT3QFP3Z5GXsfjLPtNxBqR_QuORz_-7n7cpov1gTUwUguGBfTZmfbeHGSp2LqgO_UX8_YRF5qicuIC21HroZV_b_gocEp2Y6Wl8rChsO2wN6LS2difnUwlQaZ5TuFx2vMBdmJ-LHh7e1IC0H4Nha7wMNJ4XQe5xFqWAomiHgew3uOsWzBI6NLDWr1AmOF1FdkibbPEP_wIhgaXn_XFwqojMRoRNFlZ9TfylpK-_Q2JOGwxX7aSXA",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648179221,
    "iat": 1648179161,
    "jti": "hnzk-3faWfH2x1dAnozPnJVfNJnVckzqLTR-b4FOrUQ"
  }
}
2022-03-25 03:32:41
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:32:41 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzkxNjEsImV4cCI6MTY0ODE3OTIyMSwianRpIjoiaG56ay0zZmFXZkgyeDFkQW5velBuSlZmTkpuVmNrenFMVFItYjRGT3JVUSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ko3jR8qi4WdstPY_HdIswpSY-5WupTU6EXOMblS3XKObzgSaCi9nYExzHzusFqu8FML95H7yQx3th80-wIrLmsokABnLWYcCNCHT3QFP3Z5GXsfjLPtNxBqR_QuORz_-7n7cpov1gTUwUguGBfTZmfbeHGSp2LqgO_UX8_YRF5qicuIC21HroZV_b_gocEp2Y6Wl8rChsO2wN6LS2difnUwlQaZ5TuFx2vMBdmJ-LHh7e1IC0H4Nha7wMNJ4XQe5xFqWAomiHgew3uOsWzBI6NLDWr1AmOF1FdkibbPEP_wIhgaXn_XFwqojMRoRNFlZ9TfylpK-_Q2JOGwxX7aSXA
2022-03-25 03:32:41 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:32:41 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:32:41 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
BBsBei7yKOPdKDJ6Zs9xClfcQs33lVxX
2022-03-25 03:32:41 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:32:41 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
vbUE0jztGQzAtq_uPluZ-ebFnkZTKP4vbGaxWYka5as
code_challenge
aEdvS50vcMxPC7G0FgNwDIWGsTQeiRwVxMgRnAU_QN0
2022-03-25 03:32:41 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo
2022-03-25 03:32:41 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
f8_dWdgqSdn6RiBqhIBP9w
2022-03-25 03:32:41
CreateRefreshToken
Created refresh token
refresh_token
vMUgAukdzkiwCQRnFdNaFNfAtzeOeXflYHXVDRdAuzBMYMbAJA1517415810(`\^:
2022-03-25 03:32:41 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank
nonce
DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ
iat
1648179161
exp
1648179461
2022-03-25 03:32:41 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179161,
  "exp": 1648179461
}
2022-03-25 03:32:41 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
f8_dWdgqSdn6RiBqhIBP9w
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179161,
  "exp": 1648179461,
  "at_hash": "f8_dWdgqSdn6RiBqhIBP9w"
}
2022-03-25 03:32:41 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "DUMHL819RTuo07MfJdAhq9SS7z8f5rGUV4aPW1QxFtQ",
  "iat": 1648179161,
  "exp": 1648179461,
  "at_hash": "f8_dWdgqSdn6RiBqhIBP9w",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:32:41 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiZjhfZFdkZ3FTZG42UmlCcWhJQlA5dyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDYxLCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNjF9.fQC5gjW4S86HJefpc1uq2U5_qOL2hle2TRMX3ZXxmSA_1hZjMhEq0rPkwMw4XLUBgjiDjqo5MmOYJ0f5_Lk9_wOls7djmzNMrpS8dPiFF-CfOvYLadFPCXqJZ3vUDkb0dNVsKOOqoHt79RglrH3U7LdZNxKOBZ0G2x1jaZAQfji_-nx_0hYa0ZUjb0FeBXW-yHnhk09v-JIX-W0-BKmIy42Zg255umURf10ObKcyH2SaCAWOuLUoOaRvVLZTG9YwqDQchtiFifl4L3jsK0ALQmitflGvm-GVDXA_rxEKt6tLroH1CQkUh7VIe6KEhTPFuAATkuz27xGLKA4bhl_1vQ
2022-03-25 03:32:41 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiZjhfZFdkZ3FTZG42UmlCcWhJQlA5dyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDYxLCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNjF9.fQC5gjW4S86HJefpc1uq2U5_qOL2hle2TRMX3ZXxmSA_1hZjMhEq0rPkwMw4XLUBgjiDjqo5MmOYJ0f5_Lk9_wOls7djmzNMrpS8dPiFF-CfOvYLadFPCXqJZ3vUDkb0dNVsKOOqoHt79RglrH3U7LdZNxKOBZ0G2x1jaZAQfji_-nx_0hYa0ZUjb0FeBXW-yHnhk09v-JIX-W0-BKmIy42Zg255umURf10ObKcyH2SaCAWOuLUoOaRvVLZTG9YwqDQchtiFifl4L3jsK0ALQmitflGvm-GVDXA_rxEKt6tLroH1CQkUh7VIe6KEhTPFuAATkuz27xGLKA4bhl_1vQ
refresh_token
vMUgAukdzkiwCQRnFdNaFNfAtzeOeXflYHXVDRdAuzBMYMbAJA1517415810(`\^:
2022-03-25 03:32:41 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiZjhfZFdkZ3FTZG42UmlCcWhJQlA5dyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5NDYxLCJub25jZSI6IkRVTUhMODE5UlR1bzA3TWZKZEFocTlTUzd6OGY1ckdVVjRhUFcxUXhGdFEiLCJpYXQiOjE2NDgxNzkxNjF9.fQC5gjW4S86HJefpc1uq2U5_qOL2hle2TRMX3ZXxmSA_1hZjMhEq0rPkwMw4XLUBgjiDjqo5MmOYJ0f5_Lk9_wOls7djmzNMrpS8dPiFF-CfOvYLadFPCXqJZ3vUDkb0dNVsKOOqoHt79RglrH3U7LdZNxKOBZ0G2x1jaZAQfji_-nx_0hYa0ZUjb0FeBXW-yHnhk09v-JIX-W0-BKmIy42Zg255umURf10ObKcyH2SaCAWOuLUoOaRvVLZTG9YwqDQchtiFifl4L3jsK0ALQmitflGvm-GVDXA_rxEKt6tLroH1CQkUh7VIe6KEhTPFuAATkuz27xGLKA4bhl_1vQ",
  "refresh_token": "vMUgAukdzkiwCQRnFdNaFNfAtzeOeXflYHXVDRdAuzBMYMbAJA1517415810(`\\^:"
}
outgoing_path
token
2022-03-25 03:32:42 INCOMING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Incoming HTTP request to /test-mtls/a/xp/payments/v1/pix/payments
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/jwt",
  "x-idempotency-key": "ffc8f334-b1dd-4952-9583-5ee47105d5a5",
  "authorization": "Bearer Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "75842bc2-861e-48d4-97b9-5b3690ba37dc",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003dEB836BCF9B08B2BEAC51E9D5B9ADDD1F",
  "connection": "close",
  "content-length": "1046"
}
incoming_path
/test-mtls/a/xp/payments/v1/pix/payments
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.rM2yZE3j7vaUjGrG1fYWax0bTRgQpExn1gofd1SpvfsnAztMPNDJ4mg7uvv7tlQTT3gGuJS4gh-y_lmECuylCx-1TWM26TmvK5wIKhkZgoNOzscFRuKdxmyudb6oBGhhBe4C9IYWa_qTrp9EPiDlcplwGEuV_0TrIfFYcCWT-S1spgiM6NF-jv2i0Ypay5aWXLSolOVw7Pm7DbtJRf0Z1pvwW8tfk88pJmgkYUJHA3jqaDIwEJITH06j9BHriEipNvot2gDKmq6lCNcXVZOaDTe8_Rvt4LXE6EuMPrDKDQe2z5L-eblcAIeerrinRh7YFbZPwO2PfEqxMByz4_SeBg
2022-03-25 03:32:42 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:32:42 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:32:42 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:32:42 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Payment initiation endpoint
2022-03-25 03:32:42 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:32:42 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:32:42 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo
2022-03-25 03:32:42 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
Br6IMYwQGWIxC0MdNgFcVUVOtTq8igu2hSjHyijQfSWvuAKFFo
2022-03-25 03:32:42 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:32:42 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:32:42 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:32:42 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainPayments
'payments' was included in authorization request scopes
actual
openid consent:urn:conformance:oidf:Yx0AsamsT6 payments
expected
payments
2022-03-25 03:32:42 SUCCESS
FAPIBrazilExtractPaymentInitiationRequest
Parsed payment initiation request
payment_initiation_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments",
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108"
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648179162,
  "jti": "1c35b5cd-0f21-4704-87ee-d9fa63a28549"
}
2022-03-25 03:32:42 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.rM2yZE3j7vaUjGrG1fYWax0bTRgQpExn1gofd1SpvfsnAztMPNDJ4mg7uvv7tlQTT3gGuJS4gh-y_lmECuylCx-1TWM26TmvK5wIKhkZgoNOzscFRuKdxmyudb6oBGhhBe4C9IYWa_qTrp9EPiDlcplwGEuV_0TrIfFYcCWT-S1spgiM6NF-jv2i0Ypay5aWXLSolOVw7Pm7DbtJRf0Z1pvwW8tfk88pJmgkYUJHA3jqaDIwEJITH06j9BHriEipNvot2gDKmq6lCNcXVZOaDTe8_Rvt4LXE6EuMPrDKDQe2z5L-eblcAIeerrinRh7YFbZPwO2PfEqxMByz4_SeBg
2022-03-25 03:32:42 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:32:42 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
ffc8f334-b1dd-4952-9583-5ee47105d5a5
2022-03-25 03:32:42 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments
2022-03-25 03:32:42 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
0674aed0-cd43-4980-98c4-b20c219e56da
2022-03-25 03:32:42 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestIssEqualsOrganizationId
iss claim in payment initiation request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:32:42 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestJtiIsUUIDv4
jti claim in payment initiation request is a UUIDv4
jti
1c35b5cd-0f21-4704-87ee-d9fa63a28549
2022-03-25 03:32:42 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestIat
iat claim in payment initiation request is valid
iat
1648179162
2022-03-25 03:32:42 SUCCESS
FAPIBrazilGenerateNewPaymentInitiationResponse
Created payment initiation response
payment_initiation_response_headers
{
  "x-fapi-interaction-id": "d459d137-7546-4655-b230-4b9483d6ed91"
}
payment_initiation_response
{
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108",
    "paymentId": "42c02b30-720c-46f0-a479-7564ad8b6bc4",
    "consentId": "urn:conformance:oidf:Yx0AsamsT6",
    "creationDateTime": "2022-03-25T03:32:42Z",
    "statusUpdateDateTime": "2022-03-25T03:32:42Z",
    "status": "ACSP"
  },
  "links": {
    "self": "https://www.certification.openid.net/test/a/xppayments/v1/pix/payments"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-03-25T03:32:42Z"
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648179162,
  "jti": "8f578779-f99b-462c-960c-81e1add89dc7",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:32:42 SUCCESS
FAPIBrazilSignPaymentInitiationResponse
Signed the payment initiation response
signed_payment_initiation_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7InByb3h5IjoiNTUxNTUxMTQ4NDUiLCJjb25zZW50SWQiOiJ1cm46Y29uZm9ybWFuY2U6b2lkZjpZeDBBc2Ftc1Q2IiwibG9jYWxJbnN0cnVtZW50IjoiRElDVCIsInBheW1lbnRJZCI6IjQyYzAyYjMwLTcyMGMtNDZmMC1hNDc5LTc1NjRhZDhiNmJjNCIsImNyZWRpdG9yQWNjb3VudCI6eyJudW1iZXIiOiIxMDE3MzcyMiIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiI5Mjg5NDkyMiIsImlzc3VlciI6IjAwMDEifSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjMyOjQyWiIsImNucGpJbml0aWF0b3IiOiIyMDc0NzQzNjAwMDE1NiIsInBheW1lbnQiOnsiYW1vdW50IjoiMS4xNSIsImN1cnJlbmN5IjoiQlJMIn0sImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzozMjo0MloiLCJzdGF0dXMiOiJBQ1NQIn0sIm1ldGEiOnsidG90YWxSZWNvcmRzIjoxLCJyZXF1ZXN0RGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjMyOjQyWiIsInRvdGFsUGFnZXMiOjF9LCJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJsaW5rcyI6eyJzZWxmIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3hwcGF5bWVudHNcL3YxXC9waXhcL3BheW1lbnRzIn0sImlhdCI6MTY0ODE3OTE2MiwianRpIjoiOGY1Nzg3NzktZjk5Yi00NjJjLTk2MGMtODFlMWFkZDg5ZGM3In0.giVH0V5t4RWGKy6G2maHSDNyzwaX4rWLLemToAklBpyztP-s4Gh8o_5DHHDZV1uz8m07OrS6r-eSEIt03ZU4Ypm2Tc5XOcr1ed3mzQlmzjUOrICBBHebi1h311UzsKQ6c7z_b4UxcSrkr-WfYcsx5x3SSYHr4OFfBp4Xulwud3V4cCv0ZSXY7m4FZw68mwEgQ0qOOnT4lArrU9rU4hlLWcvJosxpOUgiINlP35CJ96F3w7F2RGjgxX7oJCLt20uu2kXi90ReMwNN5uASAv7uLivo7DPgd7J9B6rXSOwrTCF5XAYI36GZZQ0IkePvWYgGDi6Xpk8_dqbShDT1xgjJQQ
2022-03-25 03:32:42
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:32:42 OUTGOING
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Response to HTTP request to test instance GSJpQpsmbwl3Vyh
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d459d137-7546-4655-b230-4b9483d6ed91"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.giVH0V5t4RWGKy6G2maHSDNyzwaX4rWLLemToAklBpyztP-s4Gh8o_5DHHDZV1uz8m07OrS6r-eSEIt03ZU4Ypm2Tc5XOcr1ed3mzQlmzjUOrICBBHebi1h311UzsKQ6c7z_b4UxcSrkr-WfYcsx5x3SSYHr4OFfBp4Xulwud3V4cCv0ZSXY7m4FZw68mwEgQ0qOOnT4lArrU9rU4hlLWcvJosxpOUgiINlP35CJ96F3w7F2RGjgxX7oJCLt20uu2kXi90ReMwNN5uASAv7uLivo7DPgd7J9B6rXSOwrTCF5XAYI36GZZQ0IkePvWYgGDi6Xpk8_dqbShDT1xgjJQQ
outgoing_path
payments/v1/pix/payments
2022-03-25 03:32:42 FINISHED
fapi1-advanced-final-client-test-no-scope-in-token-endpoint-response
Test has run to completion
testmodule_result
PASSED
2022-03-25 03:32:44
TEST-RUNNER
Alias has now been claimed by another test
alias
xp
new_test_id
rf5y9QZCVb6aD3z
Test Results