Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-03-25 03:28:37 INFO
TEST-RUNNER
Test instance MuhIZ403LVVvYYd created
baseUrl
https://www.certification.openid.net/test/a/xp
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
xp
description
Banco XP - Iniciação de Pagamentos
planId
n7Q3vTHR1mt5V
config
{
  "alias": "xp",
  "description": "Banco XP - Iniciação de Pagamentos",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "xp-bank",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
          "e": "AQAB",
          "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
          "e": "AQAB",
          "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "xp-bank-two",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
          "e": "AQAB",
          "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
          "e": "AQAB",
          "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test
2022-03-25 03:28:37 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/xp/
discoveryUrl
https://www.certification.openid.net/test/a/xp/.well-known/openid-configuration
2022-03-25 03:28:37 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:28:37 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:37
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-03-25 03:28:37
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-03-25 03:28:37
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-03-25 03:28:37
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-03-25 03:28:37
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-03-25 03:28:37
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/xp/par
2022-03-25 03:28:37
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-03-25 03:28:37 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-03-25 03:28:37 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-03-25 03:28:37 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-03-25 03:28:37 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:28:37 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-03-25 03:28:37 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
xp-bank
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:37 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:37 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ"
    }
  ]
}
2022-03-25 03:28:37 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:28:37 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:28:37 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
Verify configuration of second client
2022-03-25 03:28:37 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
xp-bank-two
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0
NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p
f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X
9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy
FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe
q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c
jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz
sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/
/LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb
U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV
Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN
DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE
G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A==
-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:28:37 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:37 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ"
    }
  ]
}
2022-03-25 03:28:37 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:28:37 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:28:37 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:28:37
fapi1-advanced-final-client-test
Setup Done
2022-03-25 03:28:38 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3442276161876480338",
  "x-datadog-parent-id": "4754770498910761773",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:28:38 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:38 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:28:39 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3442276161876480338",
  "x-datadog-parent-id": "6730451669482458312",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1035"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "payments",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MTgsImV4cCI6MTY0ODE3ODk3OCwianRpIjoiSnJEZGlPNUJQejl0TGpyYVR5bVRfaFN5M1REeFFUWnFFejRfMXV0NXpFMCIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ZnoRwIPC64W9FxAhzLiJPF59CUi-JZQ6drF8tcDsYa_O6iwo1X-ZnPrO39z3LiCLyOBQKAJGI3OaijUulVB_dcQsUmnuROhT3Sq-JrVFUrXOSPUsska21rnhXa0q-iyftNSpQWl-DNVogTgwWpXULPIwv8-2nadHfqheacjFCWraIbdgBc9saz7sUXCwPsd2DYolhL1mSqa-XUxoYWwDDvTW6M_xgz3wLvju4HVXnoJyu2Xv1dB8eN1Ej6FvIZT9W-s4A5La7KtWZW44UEzrleLMN3DAwess_KIGahPxK7W69yMJPwd5L1nXy84xvxC2k-1ry4AGydiQex6HIglh2g",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=payments&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MTgsImV4cCI6MTY0ODE3ODk3OCwianRpIjoiSnJEZGlPNUJQejl0TGpyYVR5bVRfaFN5M1REeFFUWnFFejRfMXV0NXpFMCIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ZnoRwIPC64W9FxAhzLiJPF59CUi-JZQ6drF8tcDsYa_O6iwo1X-ZnPrO39z3LiCLyOBQKAJGI3OaijUulVB_dcQsUmnuROhT3Sq-JrVFUrXOSPUsska21rnhXa0q-iyftNSpQWl-DNVogTgwWpXULPIwv8-2nadHfqheacjFCWraIbdgBc9saz7sUXCwPsd2DYolhL1mSqa-XUxoYWwDDvTW6M_xgz3wLvju4HVXnoJyu2Xv1dB8eN1Ej6FvIZT9W-s4A5La7KtWZW44UEzrleLMN3DAwess_KIGahPxK7W69yMJPwd5L1nXy84xvxC2k-1ry4AGydiQex6HIglh2g&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:28:39 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:28:39 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank
2022-03-25 03:28:39 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0\nNDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp\nbyBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3\nMTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku\nY29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0\nZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is\nZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G\nCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x\n4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV\n0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab\nkV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4\ndR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+\niH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj\nggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt\nNHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM\nMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB\ngDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs\neSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl\nciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2\naWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl\naXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m\nIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k\nIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v\nY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll\nczANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV\nfl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G\nMfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk\ngJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA\nx9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:39 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:39 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:39 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MTgsImV4cCI6MTY0ODE3ODk3OCwianRpIjoiSnJEZGlPNUJQejl0TGpyYVR5bVRfaFN5M1REeFFUWnFFejRfMXV0NXpFMCIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ZnoRwIPC64W9FxAhzLiJPF59CUi-JZQ6drF8tcDsYa_O6iwo1X-ZnPrO39z3LiCLyOBQKAJGI3OaijUulVB_dcQsUmnuROhT3Sq-JrVFUrXOSPUsska21rnhXa0q-iyftNSpQWl-DNVogTgwWpXULPIwv8-2nadHfqheacjFCWraIbdgBc9saz7sUXCwPsd2DYolhL1mSqa-XUxoYWwDDvTW6M_xgz3wLvju4HVXnoJyu2Xv1dB8eN1Ej6FvIZT9W-s4A5La7KtWZW44UEzrleLMN3DAwess_KIGahPxK7W69yMJPwd5L1nXy84xvxC2k-1ry4AGydiQex6HIglh2g",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648178978,
    "iat": 1648178918,
    "jti": "JrDdiO5BPz9tLjraTymT_hSy3TDxQTZqEz4_1ut5zE0"
  }
}
2022-03-25 03:28:39
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:28:39 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MTgsImV4cCI6MTY0ODE3ODk3OCwianRpIjoiSnJEZGlPNUJQejl0TGpyYVR5bVRfaFN5M1REeFFUWnFFejRfMXV0NXpFMCIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.ZnoRwIPC64W9FxAhzLiJPF59CUi-JZQ6drF8tcDsYa_O6iwo1X-ZnPrO39z3LiCLyOBQKAJGI3OaijUulVB_dcQsUmnuROhT3Sq-JrVFUrXOSPUsska21rnhXa0q-iyftNSpQWl-DNVogTgwWpXULPIwv8-2nadHfqheacjFCWraIbdgBc9saz7sUXCwPsd2DYolhL1mSqa-XUxoYWwDDvTW6M_xgz3wLvju4HVXnoJyu2Xv1dB8eN1Ej6FvIZT9W-s4A5La7KtWZW44UEzrleLMN3DAwess_KIGahPxK7W69yMJPwd5L1nXy84xvxC2k-1ry4AGydiQex6HIglh2g
2022-03-25 03:28:39 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:28:39 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:28:39 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "payments"
]
expected
payments
2022-03-25 03:28:39 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN
2022-03-25 03:28:39 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN
token_type
Bearer
2022-03-25 03:28:39
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-03-25 03:28:39 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN",
  "token_type": "Bearer"
}
outgoing_path
token
2022-03-25 03:28:40 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test-mtls/a/xp/payments/v1/consents
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/jwt",
  "authorization": "Bearer UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN",
  "x-idempotency-key": "ebb83e9b-cdf3-4fd8-b3c3-ec8a17e42fdb",
  "user-agent": "axios/0.24.0",
  "x-datadog-trace-id": "3442276161876480338",
  "x-datadog-parent-id": "7177502478698799252",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1401"
}
incoming_path
/test-mtls/a/xp/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.Dq_ueLzJK1SGK0PBZtl_OvWpBqCRDrC1GBkPeG3ivzdRInBZ6VhSTVQf18AiMfWmCBJzdssw74LjMU_TqyV-ICalAztEscj9KmscqjdaSPqvlKmWexsJMD6-SDARhx0r9Zh9ppt-ZQiunagL-I2jE3dFIeYUEezNVlZWne-8TxYbDFpfFARqU8whKrSDzUIHmd5WC3qr-YILp0-Pk2ZacI7BaYFxwMq4NOqv6RUgW6_qIuzYDymTcOpo1DdKl1xB4g2JrCeefEKjpBX3ge0MmVOeonTCnaxtfWa9NGW4HAr4KuIycPsKZeFIeJxt30x9iCRpUc-SjeC3FJHPB1u1kg
2022-03-25 03:28:40 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-03-25 03:28:40 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:40 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:40 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:40 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:28:40 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:28:40 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN
2022-03-25 03:28:40 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
UcZiV9uPrbGrtFf0xghEkOcXgVKqKuY64UXhFqWhW82t1lyaxN
2022-03-25 03:28:40 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:28:40 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:28:40 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:28:40 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2022-03-25 03:28:40 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "payments"
]
2022-03-25 03:28:40 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents",
  "data": {
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    }
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178919,
  "jti": "f0b657ec-1d87-4f43-9971-c98917abefaa"
}
2022-03-25 03:28:40 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:28:40 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
ebb83e9b-cdf3-4fd8-b3c3-ec8a17e42fdb
2022-03-25 03:28:40 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents
2022-03-25 03:28:40 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
0674aed0-cd43-4980-98c4-b20c219e56da
2022-03-25 03:28:40 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:28:40 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
f0b657ec-1d87-4f43-9971-c98917abefaa
2022-03-25 03:28:40 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1648178919
2022-03-25 03:28:40
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
2022-03-25 03:28:40
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-03-25 03:28:40 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "8964",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Thu, 10 Mar 2022 14:55:40 GMT",
  "x-amz-version-id": "6PRpK8NBC.5muY.MLRUAjkn40qtnhX9N",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Fri, 25 Mar 2022 03:28:41 GMT",
  "etag": "\"dd439665e3119a15a2072315d0a724f1\"",
  "x-xss-protection": "1; mode\u003dblock",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "strict-origin-when-cross-origin",
  "x-content-type-options": "nosniff",
  "strict-transport-security": "max-age\u003d31536000",
  "x-cache": "RefreshHit from cloudfront",
  "via": "1.1 1d180e6d1aa5f424d0d3571ff7011a02.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-P2",
  "x-amz-cf-id": "qbD5RSVHppt5dCiCjSyfugLgV5-NV5h6gLFMaZciglVAx8lQHi9A7A\u003d\u003d"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:28:40
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["MIIGyjCCBbKgAwIBAgIUMKsNYCFNllXyex8gdurSW50eLr4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NTEwMFoXDTIzMDQwOTE0NTEwMFowgbgxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUgwEwYDVQQLEwxGaW5hbnN5c3RlY2gwFQYDVQQLEw40MjIyMjkxNTAwMDE5MTAaBgNVBAsTE0NlcnRpZmljYWRvIERpZ2l0YWwxFDASBgNVBAMTC0JDTyBYUCBTLkEuMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs/vRWhEb6M6foZIxYKQON7uDn+hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC/uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn/1GRFn13MaY5UtV+ds8p/uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC+fSQIDAQABo4IDEDCCAwwwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUINMH8Nt4e4d64L95J1SsnBnCIzMwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBsBgNVHREEZTBjoBcGBWBMAQMCoA4MDFdlc2xleSBTaWx2YaAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6AWBgVgTAEDBKANDAszMDkzMjc0MzAzMKAVBgVgTAEDB6AMDAoxMjM0NTY2Nzg5MA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAMctaE4siLeds6YXgyedgGczn4GLGrflicwZ47NB7a88EjaSlx54GwPGyePqQEJJ2atWnldN4v6L+PzDA2b9VN1t4L5KDWabb36ln/gCuAWti0mYGKiI1AfZdjXNP6DlEwiUsKAyyLb39tVbkm65kxEleMUGHHJsxTYS+ztgpYtfQEqPiwAvPOQNvdk3pbg6ChqpuhpPR7nHRHCmmiSkZPDOqcW8e85vawNrojM1mKbqXmwydOoWqJb38UCj7ZEMHZcPliaK1vyAGPblpPyRfnFAiX7W9vJ7IIkEznHtRJeRUEhAeFBRGgbRhfHYNkIuT/+nUgGfiTD8e/Wsv35FYHE="],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:28:40 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ",
      "e": "AQAB",
      "kid": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem",
      "x5t#256": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew",
      "e": "AQAB",
      "kid": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem",
      "x5t#256": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ",
      "e": "AQAB",
      "kid": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem",
      "x5t#256": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"
    }
  ]
}
2022-03-25 03:28:40 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.Dq_ueLzJK1SGK0PBZtl_OvWpBqCRDrC1GBkPeG3ivzdRInBZ6VhSTVQf18AiMfWmCBJzdssw74LjMU_TqyV-ICalAztEscj9KmscqjdaSPqvlKmWexsJMD6-SDARhx0r9Zh9ppt-ZQiunagL-I2jE3dFIeYUEezNVlZWne-8TxYbDFpfFARqU8whKrSDzUIHmd5WC3qr-YILp0-Pk2ZacI7BaYFxwMq4NOqv6RUgW6_qIuzYDymTcOpo1DdKl1xB4g2JrCeefEKjpBX3ge0MmVOeonTCnaxtfWa9NGW4HAr4KuIycPsKZeFIeJxt30x9iCRpUc-SjeC3FJHPB1u1kg
2022-03-25 03:28:40 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
d684baf5-7542-44f1-955b-f3b31d4e4dbf
2022-03-25 03:28:40 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "d684baf5-7542-44f1-955b-f3b31d4e4dbf"
}
consentId
urn:conformance:oidf:g5O9QlaAr5
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:g5O9QlaAr5",
    "creationDateTime": "2022-03-25T03:28:40Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-03-25T03:28:40Z",
    "expirationDateTime": "2022-03-25T05:28:40Z",
    "transactionFromDateTime": "2022-03-25T03:23:40Z",
    "transactionToDateTime": "2022-03-25T05:28:40Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:28:40Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178920,
  "jti": "bcad5a06-20dd-4671-b9a8-db0a169aec82",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:28:40 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7ImRlYnRvckFjY291bnQiOnsibnVtYmVyIjoiNDI2MTA3MzU3MyIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiIzNzI0MTIzMCIsImlzc3VlciI6IjAwMDEifSwiZXhwaXJhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwNToyODo0MFoiLCJ0cmFuc2FjdGlvblRvRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDA1OjI4OjQwWiIsImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY29uc2VudElkIjoidXJuOmNvbmZvcm1hbmNlOm9pZGY6ZzVPOVFsYUFyNSIsInRyYW5zYWN0aW9uRnJvbURhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyMzo0MFoiLCJtZXRhIjp7InRvdGFsUmVjb3JkcyI6MSwicmVxdWVzdERhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyODo0MFoiLCJ0b3RhbFBhZ2VzIjoxfSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjI4OjQwWiIsImxpbmtzIjp7InNlbGYiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBwYXltZW50c1wvdjFcL2NvbnNlbnRzIn0sImNyZWRpdG9yIjp7Im5hbWUiOiJIT01PTE9HQUNBTyBQSVgiLCJjcGZDbnBqIjoiNTUxNTUxMTQ4NDUiLCJwZXJzb25UeXBlIjoiUEVTU09BX05BVFVSQUwifSwicGF5bWVudCI6eyJkYXRlIjoiMjAyMS0xMS0xMSIsImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRldGFpbHMiOnsicHJveHkiOiI1NTE1NTExNDg0NSIsImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJjcmVkaXRvckFjY291bnQiOnsibnVtYmVyIjoiMTAxNzM3MjIiLCJhY2NvdW50VHlwZSI6IkNBQ0MiLCJpc3BiIjoiOTI4OTQ5MjIiLCJpc3N1ZXIiOiIwMDAxIn19LCJpYmdlVG93bkNvZGUiOiI1MzAwMTA4IiwidHlwZSI6IlBJWCJ9LCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyODo0MFoiLCJzdGF0dXMiOiJBV0FJVElOR19BVVRIT1JJU0FUSU9OIn0sImlhdCI6MTY0ODE3ODkyMCwianRpIjoiYmNhZDVhMDYtMjBkZC00NjcxLWI5YTgtZGIwYTE2OWFlYzgyIn0.PI1OqhvC6hrfUZVCUm9svOq7FJl_JemiYZfHTViFTtATbF2_OjYIRcPxE93zFKTTjHFL-T6JfNwSmMBCep1sDzkQNJnstkRryJTBd8w3qgI1JdlENMXNeLVy24_ZMADEIIUDOIQHZKWUR3_w2ecylWhq91kodZaqm1hMoGFmPZT3gztjn7JEMo23TeAkf8dp8IlFjGH4sKcLVoRLfu9kiaEC-ft1GF9lhTSyDhmv_T9N8y1QCxh9OhjPag3Nh8nDUgxqx0dc8wjfKo8WKPNtBBf_9qFkJ6n5e1BipHlRC7XA-rmPQrdrDWDwUZV2jrfbB0Bo10NFm060ZEU62PuTjg
2022-03-25 03:28:40
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:28:40 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d684baf5-7542-44f1-955b-f3b31d4e4dbf"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.PI1OqhvC6hrfUZVCUm9svOq7FJl_JemiYZfHTViFTtATbF2_OjYIRcPxE93zFKTTjHFL-T6JfNwSmMBCep1sDzkQNJnstkRryJTBd8w3qgI1JdlENMXNeLVy24_ZMADEIIUDOIQHZKWUR3_w2ecylWhq91kodZaqm1hMoGFmPZT3gztjn7JEMo23TeAkf8dp8IlFjGH4sKcLVoRLfu9kiaEC-ft1GF9lhTSyDhmv_T9N8y1QCxh9OhjPag3Nh8nDUgxqx0dc8wjfKo8WKPNtBBf_9qFkJ6n5e1BipHlRC7XA-rmPQrdrDWDwUZV2jrfbB0Bo10NFm060ZEU62PuTjg
outgoing_path
payments/v1/consents
2022-03-25 03:28:41 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test-mtls/a/xp/par
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3442276161876480338",
  "x-datadog-parent-id": "6816645275647792310",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "2405"
}
incoming_path
/test-mtls/a/xp/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.opZRJMTc6CxN2Xd7YjYP78Q0gu0PiUUTYBV-L-n00xNm6JxzRiQOWw7CbE4OofRZswczFjqjo7ubZyHi62mtifSWuSobCP_1JsSSeRElFQhojlbORYNt34m_RRGbho_xoKB5Scs6mgBD7n1jaB40YUqQuMej7011mP-S7yXtwqD9eZYB-Jk6Ys0m9kx8KvRObRg2to75bY4W3FSLvqz9uuh-7x5cMsRtC-zUDJ5IKX3Bg1hkTIHtj07y1WZphPGOmHqv-qFFwVKX2HfGXKpM78zyXZ4gAmdCyCJCaRuhgMBM_ouBnv1J4TAATz49b6qKLTQRfgVRQB3SbdHdyAcUEw",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjAsImV4cCI6MTY0ODE3ODk4MCwianRpIjoiSkpianZ2b2s2eUFWWGsxLUNzTFAwM0xQRmsxYkFRWWwtSUZ0Q0FQVTRxWSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.JJTu2ZZ0tlqFUAWPYXaXdujxEc20Mrsjok_kIXV_gIifXvCHvarvQZ6-poNb9lmbKdO0Skrc9J3KLgfIuC0kPLDniBkwAT9y1rYDcieyhoKBSsgyNr-Zh8vwdRgANHEsGXe9sR3NBtzG2u0injgIBVxQnxk3ORhsghLMvsJqqBkAS8Kf_y6z_HWexkfN8TcgVYsFDXiqdN-FiVgG4FCmWxl6LV--_lB7jJChwBBQybmT8aWRaEz5Pw3febj2gL5BsZD8xfyOfnXyEg9Meqqmt-3ppjWpf1IdI5CGR287HsGSnpCiw0aPMRfIZD0iJhmQmTqmqL10UJsiZcHI_eLQuA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.opZRJMTc6CxN2Xd7YjYP78Q0gu0PiUUTYBV-L-n00xNm6JxzRiQOWw7CbE4OofRZswczFjqjo7ubZyHi62mtifSWuSobCP_1JsSSeRElFQhojlbORYNt34m_RRGbho_xoKB5Scs6mgBD7n1jaB40YUqQuMej7011mP-S7yXtwqD9eZYB-Jk6Ys0m9kx8KvRObRg2to75bY4W3FSLvqz9uuh-7x5cMsRtC-zUDJ5IKX3Bg1hkTIHtj07y1WZphPGOmHqv-qFFwVKX2HfGXKpM78zyXZ4gAmdCyCJCaRuhgMBM_ouBnv1J4TAATz49b6qKLTQRfgVRQB3SbdHdyAcUEw&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjAsImV4cCI6MTY0ODE3ODk4MCwianRpIjoiSkpianZ2b2s2eUFWWGsxLUNzTFAwM0xQRmsxYkFRWWwtSUZ0Q0FQVTRxWSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.JJTu2ZZ0tlqFUAWPYXaXdujxEc20Mrsjok_kIXV_gIifXvCHvarvQZ6-poNb9lmbKdO0Skrc9J3KLgfIuC0kPLDniBkwAT9y1rYDcieyhoKBSsgyNr-Zh8vwdRgANHEsGXe9sR3NBtzG2u0injgIBVxQnxk3ORhsghLMvsJqqBkAS8Kf_y6z_HWexkfN8TcgVYsFDXiqdN-FiVgG4FCmWxl6LV--_lB7jJChwBBQybmT8aWRaEz5Pw3febj2gL5BsZD8xfyOfnXyEg9Meqqmt-3ppjWpf1IdI5CGR287HsGSnpCiw0aPMRfIZD0iJhmQmTqmqL10UJsiZcHI_eLQuA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:28:41 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-03-25 03:28:41 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:41 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:41 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0
NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x
4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV
0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab
kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4
dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+
iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt
NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV
fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G
MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk
gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA
x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf
fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg==
-----END CERTIFICATE-----
2022-03-25 03:28:41 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjAsImV4cCI6MTY0ODE3ODk4MCwianRpIjoiSkpianZ2b2s2eUFWWGsxLUNzTFAwM0xQRmsxYkFRWWwtSUZ0Q0FQVTRxWSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.JJTu2ZZ0tlqFUAWPYXaXdujxEc20Mrsjok_kIXV_gIifXvCHvarvQZ6-poNb9lmbKdO0Skrc9J3KLgfIuC0kPLDniBkwAT9y1rYDcieyhoKBSsgyNr-Zh8vwdRgANHEsGXe9sR3NBtzG2u0injgIBVxQnxk3ORhsghLMvsJqqBkAS8Kf_y6z_HWexkfN8TcgVYsFDXiqdN-FiVgG4FCmWxl6LV--_lB7jJChwBBQybmT8aWRaEz5Pw3febj2gL5BsZD8xfyOfnXyEg9Meqqmt-3ppjWpf1IdI5CGR287HsGSnpCiw0aPMRfIZD0iJhmQmTqmqL10UJsiZcHI_eLQuA",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648178980,
    "iat": 1648178920,
    "jti": "JJbjvvok6yAVXk1-CsLP03LPFk1bAQYl-IFtCAPU4qY"
  }
}
2022-03-25 03:28:41
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:28:41 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjAsImV4cCI6MTY0ODE3ODk4MCwianRpIjoiSkpianZ2b2s2eUFWWGsxLUNzTFAwM0xQRmsxYkFRWWwtSUZ0Q0FQVTRxWSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.JJTu2ZZ0tlqFUAWPYXaXdujxEc20Mrsjok_kIXV_gIifXvCHvarvQZ6-poNb9lmbKdO0Skrc9J3KLgfIuC0kPLDniBkwAT9y1rYDcieyhoKBSsgyNr-Zh8vwdRgANHEsGXe9sR3NBtzG2u0injgIBVxQnxk3ORhsghLMvsJqqBkAS8Kf_y6z_HWexkfN8TcgVYsFDXiqdN-FiVgG4FCmWxl6LV--_lB7jJChwBBQybmT8aWRaEz5Pw3febj2gL5BsZD8xfyOfnXyEg9Meqqmt-3ppjWpf1IdI5CGR287HsGSnpCiw0aPMRfIZD0iJhmQmTqmqL10UJsiZcHI_eLQuA
2022-03-25 03:28:41 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:28:41 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2022-03-25 03:28:41 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.opZRJMTc6CxN2Xd7YjYP78Q0gu0PiUUTYBV-L-n00xNm6JxzRiQOWw7CbE4OofRZswczFjqjo7ubZyHi62mtifSWuSobCP_1JsSSeRElFQhojlbORYNt34m_RRGbho_xoKB5Scs6mgBD7n1jaB40YUqQuMej7011mP-S7yXtwqD9eZYB-Jk6Ys0m9kx8KvRObRg2to75bY4W3FSLvqz9uuh-7x5cMsRtC-zUDJ5IKX3Bg1hkTIHtj07y1WZphPGOmHqv-qFFwVKX2HfGXKpM78zyXZ4gAmdCyCJCaRuhgMBM_ouBnv1J4TAATz49b6qKLTQRfgVRQB3SbdHdyAcUEw",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "xp-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
    "client_id": "xp-bank",
    "aud": "https://www.certification.openid.net/test/a/xp/",
    "nbf": 1648178920,
    "scope": "openid consent:urn:conformance:oidf:g5O9QlaAr5 payments",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "exp": 1648179220,
    "iat": 1648178920,
    "code_challenge": "2-tbmj5K9kMHo4wMyjGIV5jyqrVbe8Sf7k-x7u2MFqQ",
    "jti": "tHNvjkqwnannTGJlbtKKp3OEKMWmkxztoDzno1AQgnU"
  }
}
2022-03-25 03:28:41 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-03-25 03:28:41 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:28:41 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-03-25 03:28:41 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2022-03-25 03:28:41 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Mar 25, 2022, 3:33:40 AM"
2022-03-25 03:28:41 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Mar 25, 2022, 3:28:40 AM"
now
"Mar 25, 2022, 3:28:41 AM"
2022-03-25 03:28:41
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-03-25 03:28:41 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-03-25 03:28:41 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-03-25 03:28:41 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-03-25 03:28:41 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-03-25 03:28:41 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiIxNWE2M2JjYzcxZjU3MzgyYmNlNjgwMmM2ZmMzOGE0ZjRmYjM3MTg4NjI3ZmMwNDc5NTc0OTJhOTEwZDI0ZGVkIn0.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.opZRJMTc6CxN2Xd7YjYP78Q0gu0PiUUTYBV-L-n00xNm6JxzRiQOWw7CbE4OofRZswczFjqjo7ubZyHi62mtifSWuSobCP_1JsSSeRElFQhojlbORYNt34m_RRGbho_xoKB5Scs6mgBD7n1jaB40YUqQuMej7011mP-S7yXtwqD9eZYB-Jk6Ys0m9kx8KvRObRg2to75bY4W3FSLvqz9uuh-7x5cMsRtC-zUDJ5IKX3Bg1hkTIHtj07y1WZphPGOmHqv-qFFwVKX2HfGXKpM78zyXZ4gAmdCyCJCaRuhgMBM_ouBnv1J4TAATz49b6qKLTQRfgVRQB3SbdHdyAcUEw
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 23260735002103450243623279762843511426759305573696610508136501342853040913247956190583618876991429258896006008596549696285751806271973298667918283242520972854533393606787795648263127145039554511523867477202246167931487508408010436130184823223363845603861690992798440562805972778928998695813268100359636496296631962636237856512232437316249605540178473079207065586583947340964737808938940851445143149246717972540651650264880045277910664227027452684898374945780557802335608637428113050134339387488288360648020652711378823998226345458260018299333773950708709471541667060852705395511509504215491042380631648331270236178317
  public exponent: 65537
2022-03-25 03:28:41 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:28:41 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
2-tbmj5K9kMHo4wMyjGIV5jyqrVbe8Sf7k-x7u2MFqQ
2022-03-25 03:28:41 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:73d2459e-1ef8-4a73-931c-708c102b5e6d
expires_in
600
2022-03-25 03:28:41 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:73d2459e-1ef8-4a73-931c-708c102b5e6d",
  "expires_in": 600
}
outgoing_path
par
2022-03-25 03:28:42 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test/a/xp/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "b099fb01-8806-4d84-96cc-25c7b079d2ef",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/xp/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:g5O9QlaAr5 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "request_uri": "urn:ietf:params:oauth:request_uri:73d2459e-1ef8-4a73-931c-708c102b5e6d"
}
incoming_body
2022-03-25 03:28:42 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-03-25 03:28:42 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-03-25 03:28:42 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:28:42 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "xp-bank",
  "scope": "openid consent:urn:conformance:oidf:g5O9QlaAr5 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "iss": "xp-bank",
  "code_challenge_method": "S256",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "aud": "https://www.certification.openid.net/test/a/xp/",
  "nbf": 1648178920,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q",
  "exp": 1648179220,
  "iat": 1648178920,
  "code_challenge": "2-tbmj5K9kMHo4wMyjGIV5jyqrVbe8Sf7k-x7u2MFqQ",
  "jti": "tHNvjkqwnannTGJlbtKKp3OEKMWmkxztoDzno1AQgnU"
}
2022-03-25 03:28:42 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-03-25 03:28:42 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance:oidf:g5O9QlaAr5 payments
2022-03-25 03:28:42 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:g5O9QlaAr5",
  "payments"
]
expected
consent:urn:conformance:oidf:g5O9QlaAr5
2022-03-25 03:28:42 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:g5O9QlaAr5",
  "payments"
]
2022-03-25 03:28:42 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-03-25 03:28:42 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:g5O9QlaAr5",
  "payments"
]
expected
openid
2022-03-25 03:28:42 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
xp-bank
2022-03-25 03:28:42 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
APQVsKiYoHntDn5N0FPERSwYM4wKXNMx
2022-03-25 03:28:42 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs
2022-03-25 03:28:42 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
elu5R0YNKuzReuSsd8yg4g
2022-03-25 03:28:42 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
3QxHHouXhF8GvcaLiTIGmQ
2022-03-25 03:28:42 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank
nonce
JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs
iat
1648178922
exp
1648179222
2022-03-25 03:28:42 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178922,
  "exp": 1648179222
}
2022-03-25 03:28:42 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
elu5R0YNKuzReuSsd8yg4g
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178922,
  "exp": 1648179222,
  "c_hash": "elu5R0YNKuzReuSsd8yg4g"
}
2022-03-25 03:28:42 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
3QxHHouXhF8GvcaLiTIGmQ
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178922,
  "exp": 1648179222,
  "c_hash": "elu5R0YNKuzReuSsd8yg4g",
  "s_hash": "3QxHHouXhF8GvcaLiTIGmQ"
}
2022-03-25 03:28:42 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-03-25 03:28:42 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178922,
  "exp": 1648179222,
  "c_hash": "elu5R0YNKuzReuSsd8yg4g",
  "s_hash": "3QxHHouXhF8GvcaLiTIGmQ",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:28:42 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJlbHU1UjBZTkt1elJldVNzZDh5ZzRnIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiM1F4SEhvdVhoRjhHdmNhTGlUSUdtUSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjIyLCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjJ9.VxCr_tXFaT0RGsSdoNbyaLWzkpoJ1SQwYqhPdFFkz_G7S9QfFCXT3hTz5Dw2IjaP2pAVicrCKuFFuWuZJn8Hi7YDke7Wfgvaojwf3hx_XYBHmHmZu3sQ7nZveLNQEOvaTyOl6326nUdwMYnfiUM9s60sVyWrM3Gj-UFGHw9WIpQhuAzTZQp8NHVlf-SZ-ZCj54B2wAhSvLWgwR5GaAW2kzPnp0A4Y-dFegy0hGtn1L28DT3qlO4xIfC4d5Hy4w645atosOcmjpCVVJkPakYlLp31OXIHGmh0io4GjveihhsJ7lvK3HrKGnPVqsBYYo_bg1xL0B1iyEIglqgnIkfQQA
2022-03-25 03:28:42 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:g5O9QlaAr5",
    "creationDateTime": "2022-03-25T03:28:40Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-03-25T03:28:42Z",
    "expirationDateTime": "2022-03-25T05:28:40Z",
    "transactionFromDateTime": "2022-03-25T03:23:40Z",
    "transactionToDateTime": "2022-03-25T05:28:40Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:28:40Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178920,
  "jti": "bcad5a06-20dd-4671-b9a8-db0a169aec82",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:28:42 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q"
}
2022-03-25 03:28:42 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q",
  "code": "APQVsKiYoHntDn5N0FPERSwYM4wKXNMx"
}
2022-03-25 03:28:42 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q",
  "code": "APQVsKiYoHntDn5N0FPERSwYM4wKXNMx",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJlbHU1UjBZTkt1elJldVNzZDh5ZzRnIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiM1F4SEhvdVhoRjhHdmNhTGlUSUdtUSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjIyLCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjJ9.VxCr_tXFaT0RGsSdoNbyaLWzkpoJ1SQwYqhPdFFkz_G7S9QfFCXT3hTz5Dw2IjaP2pAVicrCKuFFuWuZJn8Hi7YDke7Wfgvaojwf3hx_XYBHmHmZu3sQ7nZveLNQEOvaTyOl6326nUdwMYnfiUM9s60sVyWrM3Gj-UFGHw9WIpQhuAzTZQp8NHVlf-SZ-ZCj54B2wAhSvLWgwR5GaAW2kzPnp0A4Y-dFegy0hGtn1L28DT3qlO4xIfC4d5Hy4w645atosOcmjpCVVJkPakYlLp31OXIHGmh0io4GjveihhsJ7lvK3HrKGnPVqsBYYo_bg1xL0B1iyEIglqgnIkfQQA"
}
2022-03-25 03:28:42
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://openbanking-redirect-hml.xpi.com.br/#state=rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q&code=APQVsKiYoHntDn5N0FPERSwYM4wKXNMx&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJlbHU1UjBZTkt1elJldVNzZDh5ZzRnIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiM1F4SEhvdVhoRjhHdmNhTGlUSUdtUSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjIyLCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjJ9.VxCr_tXFaT0RGsSdoNbyaLWzkpoJ1SQwYqhPdFFkz_G7S9QfFCXT3hTz5Dw2IjaP2pAVicrCKuFFuWuZJn8Hi7YDke7Wfgvaojwf3hx_XYBHmHmZu3sQ7nZveLNQEOvaTyOl6326nUdwMYnfiUM9s60sVyWrM3Gj-UFGHw9WIpQhuAzTZQp8NHVlf-SZ-ZCj54B2wAhSvLWgwR5GaAW2kzPnp0A4Y-dFegy0hGtn1L28DT3qlO4xIfC4d5Hy4w645atosOcmjpCVVJkPakYlLp31OXIHGmh0io4GjveihhsJ7lvK3HrKGnPVqsBYYo_bg1xL0B1iyEIglqgnIkfQQA
2022-03-25 03:28:42 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://openbanking-redirect-hml.xpi.com.br/#state=rWboqr5YHCX6nNMrJAL0JNYoFSH682KDjzgkh3dUi1Q&code=APQVsKiYoHntDn5N0FPERSwYM4wKXNMx&id_token=eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmsiLCJjX2hhc2giOiJlbHU1UjBZTkt1elJldVNzZDh5ZzRnIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIiwic19oYXNoIjoiM1F4SEhvdVhoRjhHdmNhTGlUSUdtUSIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjIyLCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjJ9.VxCr_tXFaT0RGsSdoNbyaLWzkpoJ1SQwYqhPdFFkz_G7S9QfFCXT3hTz5Dw2IjaP2pAVicrCKuFFuWuZJn8Hi7YDke7Wfgvaojwf3hx_XYBHmHmZu3sQ7nZveLNQEOvaTyOl6326nUdwMYnfiUM9s60sVyWrM3Gj-UFGHw9WIpQhuAzTZQp8NHVlf-SZ-ZCj54B2wAhSvLWgwR5GaAW2kzPnp0A4Y-dFegy0hGtn1L28DT3qlO4xIfC4d5Hy4w645atosOcmjpCVVJkPakYlLp31OXIHGmh0io4GjveihhsJ7lvK3HrKGnPVqsBYYo_bg1xL0B1iyEIglqgnIkfQQA]
outgoing_path
authorize
2022-03-25 03:28:43 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3717420765204813336",
  "x-datadog-parent-id": "1085592993621986273",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:28:43 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:43 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:28:43 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test/a/xp/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3717420765204813336",
  "x-datadog-parent-id": "8019797351489940424",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:28:43 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:43 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-03-25 03:28:44 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3717420765204813336",
  "x-datadog-parent-id": "6724237859168542015",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1182"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "APQVsKiYoHntDn5N0FPERSwYM4wKXNMx",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "code_verifier": "Oln8-wd8GYQFMDe4hbL-8V6CXsnT1lSKMRr8jzm5hoE",
  "client_id": "xp-bank",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjQsImV4cCI6MTY0ODE3ODk4NCwianRpIjoieTA1Y0ZBeE1WN0pLSGJRZFhUR1NCZ1E2c0thNkQzNnBVUmhjZFN5UGhOSSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cFsJfxCIymg6WhdE2B-ZfrOfugJ_ucLXmWAaxTF0qmrOTCadErMs4E5_o5mvGBqpBvUAEJmfqmFncJWBW_u0X0bVOfwfPOxg9dCc1NqqZkiBIJ0GbrgAkuYCWRyZ56QXKpQtT_fxYcuH5yg2IrtmMptkdJBIth4jkXCLNFFE2fevYNFPN_R1q_qDHAa2M2_TIrUiezQPv_YoJAJo4uWgsL4d80XNlioZzLXOFRy6isemS8nTzzobJQj1QxHtFIvDmskL-wzPR8bIIrf6prawB6tufdWxIwOJEWCdHv-SSpCGThcbuLJ7LiIUo2t-1ttjGYanaIGD0yxI7_jA-kCK8g",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=APQVsKiYoHntDn5N0FPERSwYM4wKXNMx&redirect_uri=https%3A%2F%2Fopenbanking-redirect-hml.xpi.com.br%2F&code_verifier=Oln8-wd8GYQFMDe4hbL-8V6CXsnT1lSKMRr8jzm5hoE&client_id=xp-bank&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjQsImV4cCI6MTY0ODE3ODk4NCwianRpIjoieTA1Y0ZBeE1WN0pLSGJRZFhUR1NCZ1E2c0thNkQzNnBVUmhjZFN5UGhOSSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cFsJfxCIymg6WhdE2B-ZfrOfugJ_ucLXmWAaxTF0qmrOTCadErMs4E5_o5mvGBqpBvUAEJmfqmFncJWBW_u0X0bVOfwfPOxg9dCc1NqqZkiBIJ0GbrgAkuYCWRyZ56QXKpQtT_fxYcuH5yg2IrtmMptkdJBIth4jkXCLNFFE2fevYNFPN_R1q_qDHAa2M2_TIrUiezQPv_YoJAJo4uWgsL4d80XNlioZzLXOFRy6isemS8nTzzobJQj1QxHtFIvDmskL-wzPR8bIIrf6prawB6tufdWxIwOJEWCdHv-SSpCGThcbuLJ7LiIUo2t-1ttjGYanaIGD0yxI7_jA-kCK8g&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:28:44 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:28:44 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank
2022-03-25 03:28:44 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:44 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:44 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:44 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjQsImV4cCI6MTY0ODE3ODk4NCwianRpIjoieTA1Y0ZBeE1WN0pLSGJRZFhUR1NCZ1E2c0thNkQzNnBVUmhjZFN5UGhOSSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cFsJfxCIymg6WhdE2B-ZfrOfugJ_ucLXmWAaxTF0qmrOTCadErMs4E5_o5mvGBqpBvUAEJmfqmFncJWBW_u0X0bVOfwfPOxg9dCc1NqqZkiBIJ0GbrgAkuYCWRyZ56QXKpQtT_fxYcuH5yg2IrtmMptkdJBIth4jkXCLNFFE2fevYNFPN_R1q_qDHAa2M2_TIrUiezQPv_YoJAJo4uWgsL4d80XNlioZzLXOFRy6isemS8nTzzobJQj1QxHtFIvDmskL-wzPR8bIIrf6prawB6tufdWxIwOJEWCdHv-SSpCGThcbuLJ7LiIUo2t-1ttjGYanaIGD0yxI7_jA-kCK8g",
  "header": {
    "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank",
    "exp": 1648178984,
    "iat": 1648178924,
    "jti": "y05cFAxMV7JKHbQdXTGSBgQ6sKa6D36pURhcdSyPhNI"
  }
}
2022-03-25 03:28:44
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:28:44 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IjE1YTYzYmNjNzFmNTczODJiY2U2ODAyYzZmYzM4YTRmNGZiMzcxODg2MjdmYzA0Nzk1NzQ5MmE5MTBkMjRkZWQifQ.eyJpYXQiOjE2NDgxNzg5MjQsImV4cCI6MTY0ODE3ODk4NCwianRpIjoieTA1Y0ZBeE1WN0pLSGJRZFhUR1NCZ1E2c0thNkQzNnBVUmhjZFN5UGhOSSIsImlzcyI6InhwLWJhbmsiLCJzdWIiOiJ4cC1iYW5rIiwiYXVkIjpbImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0L2EveHAvIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC90b2tlbiIsImh0dHBzOi8vd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldC90ZXN0LW10bHMvYS94cC90b2tlbiJdfQ.cFsJfxCIymg6WhdE2B-ZfrOfugJ_ucLXmWAaxTF0qmrOTCadErMs4E5_o5mvGBqpBvUAEJmfqmFncJWBW_u0X0bVOfwfPOxg9dCc1NqqZkiBIJ0GbrgAkuYCWRyZ56QXKpQtT_fxYcuH5yg2IrtmMptkdJBIth4jkXCLNFFE2fevYNFPN_R1q_qDHAa2M2_TIrUiezQPv_YoJAJo4uWgsL4d80XNlioZzLXOFRy6isemS8nTzzobJQj1QxHtFIvDmskL-wzPR8bIIrf6prawB6tufdWxIwOJEWCdHv-SSpCGThcbuLJ7LiIUo2t-1ttjGYanaIGD0yxI7_jA-kCK8g
2022-03-25 03:28:44 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:28:44 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:28:44 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
APQVsKiYoHntDn5N0FPERSwYM4wKXNMx
2022-03-25 03:28:44 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:28:44 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
Oln8-wd8GYQFMDe4hbL-8V6CXsnT1lSKMRr8jzm5hoE
code_challenge
2-tbmj5K9kMHo4wMyjGIV5jyqrVbe8Sf7k-x7u2MFqQ
2022-03-25 03:28:44 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw
2022-03-25 03:28:44 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
YuiUgDFyciAsMucju2hq1g
2022-03-25 03:28:44
CreateRefreshToken
Created refresh token
refresh_token
AsqAnTpupLVdXayFReFnIGfNnnhjKUoZgpckouuRhyWrGJyMrI3544565711;={=/
2022-03-25 03:28:44 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank
nonce
JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs
iat
1648178924
exp
1648179224
2022-03-25 03:28:44 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178924,
  "exp": 1648179224
}
2022-03-25 03:28:44 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
YuiUgDFyciAsMucju2hq1g
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178924,
  "exp": 1648179224,
  "at_hash": "YuiUgDFyciAsMucju2hq1g"
}
2022-03-25 03:28:44 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank",
  "nonce": "JyL9_Va8hRVWtI2jsOVZCa9f0yfRBZ2HjKgcW0iyVqs",
  "iat": 1648178924,
  "exp": 1648179224,
  "at_hash": "YuiUgDFyciAsMucju2hq1g",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:28:44 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiWXVpVWdERnljaUFzTXVjanUyaHExZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjI0LCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjR9.jtBKgfQkudX86RjUggVKssKXkvG5YuLoNQW7mDpKAogLR2R93H2zDo14ZqeNm5VNmQmLsvf8ltkv6JRFBhFFfLPOGVqFJHqwWxqzlNKGftwVZI5kLCPs1a1iAL0YKKnMbxeXm3t3N28osMUx5uaTrryDbwVStT_zqRJ5V3eXDYDRX8AMz40g31X4UHxxqeg5yxGkFIc0xiD7VRhT3CJ5MbOpKq7iFP5UROo4u3upjaNd2JgDkxsr_7_1yppCygWjkYOsdFqZSQWN0cMNWrRxDOu261F2q9CPiMRdcVE48TU1muuIZjJt0bTcJdjC1NIfQn-kFreXrMMvu7RJhyKEcg
2022-03-25 03:28:44 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw
token_type
Bearer
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiWXVpVWdERnljaUFzTXVjanUyaHExZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjI0LCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjR9.jtBKgfQkudX86RjUggVKssKXkvG5YuLoNQW7mDpKAogLR2R93H2zDo14ZqeNm5VNmQmLsvf8ltkv6JRFBhFFfLPOGVqFJHqwWxqzlNKGftwVZI5kLCPs1a1iAL0YKKnMbxeXm3t3N28osMUx5uaTrryDbwVStT_zqRJ5V3eXDYDRX8AMz40g31X4UHxxqeg5yxGkFIc0xiD7VRhT3CJ5MbOpKq7iFP5UROo4u3upjaNd2JgDkxsr_7_1yppCygWjkYOsdFqZSQWN0cMNWrRxDOu261F2q9CPiMRdcVE48TU1muuIZjJt0bTcJdjC1NIfQn-kFreXrMMvu7RJhyKEcg
refresh_token
AsqAnTpupLVdXayFReFnIGfNnnhjKUoZgpckouuRhyWrGJyMrI3544565711;={=/
scope
openid consent:urn:conformance:oidf:g5O9QlaAr5 payments
2022-03-25 03:28:44 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiWXVpVWdERnljaUFzTXVjanUyaHExZyIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuayIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC94cFwvIiwiZXhwIjoxNjQ4MTc5MjI0LCJub25jZSI6Ikp5TDlfVmE4aFJWV3RJMmpzT1ZaQ2E5ZjB5ZlJCWjJIaktnY1cwaXlWcXMiLCJpYXQiOjE2NDgxNzg5MjR9.jtBKgfQkudX86RjUggVKssKXkvG5YuLoNQW7mDpKAogLR2R93H2zDo14ZqeNm5VNmQmLsvf8ltkv6JRFBhFFfLPOGVqFJHqwWxqzlNKGftwVZI5kLCPs1a1iAL0YKKnMbxeXm3t3N28osMUx5uaTrryDbwVStT_zqRJ5V3eXDYDRX8AMz40g31X4UHxxqeg5yxGkFIc0xiD7VRhT3CJ5MbOpKq7iFP5UROo4u3upjaNd2JgDkxsr_7_1yppCygWjkYOsdFqZSQWN0cMNWrRxDOu261F2q9CPiMRdcVE48TU1muuIZjJt0bTcJdjC1NIfQn-kFreXrMMvu7RJhyKEcg",
  "refresh_token": "AsqAnTpupLVdXayFReFnIGfNnnhjKUoZgpckouuRhyWrGJyMrI3544565711;\u003d{\u003d/",
  "scope": "openid consent:urn:conformance:oidf:g5O9QlaAr5 payments"
}
outgoing_path
token
2022-03-25 03:28:45 INCOMING
fapi1-advanced-final-client-test
Incoming HTTP request to /test-mtls/a/xp/payments/v1/pix/payments
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/jwt",
  "x-idempotency-key": "c29955a3-f393-4c9a-a817-c4b1c189fad3",
  "authorization": "Bearer 2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "591859e6-d93b-4e52-aa32-3079c776903f",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003dD0F07EBA37F954AC19A7E55C99E04256",
  "connection": "close",
  "content-length": "1046"
}
incoming_path
/test-mtls/a/xp/payments/v1/pix/payments
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.SPK-0N-fQcqlfWIJUWeXKAcJtwCq6d4YgX0eNrnC8s-hCzz8rusqLghtb_ldVPUfYI6klbn-5AqQgRiBh3CQZhKnIYlmtmvwUWtDBeU8ARyjo124vMVjO5-A_W_nO-4ZR7pEAA4pjypYsRT4Cy-GUPIxNUsHN7aFg5EfeZN0if3YhbkUhRHSVbFmHenKV6feZd1_dXbBCc97Pkhan4XoLln5a1XNLugUweVhR20sv40KaMwnTgxGOy_Kqvy1vQsJHNZVdCjNJlxdx76wv2ixDCRjsmReL1E5lRkrmHREDnVf321z-0A05yHFtdBO15yrl3WHDb8E88Kyk-mCEYnAVQ
2022-03-25 03:28:45 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:45 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUVTan/A52h2NWYMtXiUI/KsGJIeEwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDMwMFoXDTIzMDQwOTE0 NDMwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQwNjc0YWVkMC1jZDQzLTQ5ODAtOThjNC1iMjBjMjE5ZTU2ZGEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmQXmkidOfL8Rie4T0kWoND/awUt5x 4NOa7EhiXBomwDqaL+e7HiGM8r9JpMrE8HzYiAzbg5lZBEB1FJ9M9j5JgVo+Q3rV 0v/BKix6YLotBY3G5JKqdwGW5PQDcfszAu5vYLM5tnysnohCiRuBr5s2gZhTJ1Ab kV9V/+PXXNfDLVvVV3KqZCK7iEkvxmeZy0ImiK5SuQCCT80AeyHJTepxWaRtqYY4 dR/tkKtLDoCYepQcPYn5nFbIcdATC49Z02R9yxgEjRAyvT/pU7MQv6VD2prl1cr+ iH+YV+qqxxExRr7Lf3Pf4gXgijSF3xxyBJ4ObA0v53suNIpNLXUnZOaNAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRh7YIK0Ug6ujrJIn34QRkt NHPVWTAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEAK8zudMELp+lFVDrYifGUBSGKdRv9ZOyui/IV fl1EBP2zmTj5MMuo+LxBDv0OC5S1pp74F7DxbMOyfm9duG16MR7xb0Lm9vqkYA3G MfZZMGfMTY9+JDNcyQiIZ5KsRJ6gMPxHaIA2mbr+jxuThfVyPXaPt4k/OEnjXTzk gJxXk8Qo1IhWqR+loAPsSu7mQ/Kce/alcUn4guRf0ZGk+v4o2SG560Lhga7OCBJA x9I5dJKNbw9il/6ln6UKhLNMwdvU4VkWopZ7DGSkO4jE2ATdV3iL2mIOGnbQSwlf fbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:45 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:45 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Payment initiation endpoint
2022-03-25 03:28:45 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:28:45 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:28:45 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw
2022-03-25 03:28:45 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
2twhFtrx9wTY8sbFJ9o9nvXIx4SYr5IVYaxPX8XLLs2GGR4trw
2022-03-25 03:28:45 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:28:45 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:28:45 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:28:45 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainPayments
'payments' was included in authorization request scopes
actual
openid consent:urn:conformance:oidf:g5O9QlaAr5 payments
expected
payments
2022-03-25 03:28:45 SUCCESS
FAPIBrazilExtractPaymentInitiationRequest
Parsed payment initiation request
payment_initiation_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments",
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108"
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178925,
  "jti": "2eaf8204-aa51-409d-a2fa-4a1ae279cddb"
}
2022-03-25 03:28:45 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.SPK-0N-fQcqlfWIJUWeXKAcJtwCq6d4YgX0eNrnC8s-hCzz8rusqLghtb_ldVPUfYI6klbn-5AqQgRiBh3CQZhKnIYlmtmvwUWtDBeU8ARyjo124vMVjO5-A_W_nO-4ZR7pEAA4pjypYsRT4Cy-GUPIxNUsHN7aFg5EfeZN0if3YhbkUhRHSVbFmHenKV6feZd1_dXbBCc97Pkhan4XoLln5a1XNLugUweVhR20sv40KaMwnTgxGOy_Kqvy1vQsJHNZVdCjNJlxdx76wv2ixDCRjsmReL1E5lRkrmHREDnVf321z-0A05yHFtdBO15yrl3WHDb8E88Kyk-mCEYnAVQ
2022-03-25 03:28:45 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:28:45 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
c29955a3-f393-4c9a-a817-c4b1c189fad3
2022-03-25 03:28:45 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments
2022-03-25 03:28:45 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=0674aed0-cd43-4980-98c4-b20c219e56da,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
0674aed0-cd43-4980-98c4-b20c219e56da
2022-03-25 03:28:45 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestIssEqualsOrganizationId
iss claim in payment initiation request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:28:45 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestJtiIsUUIDv4
jti claim in payment initiation request is a UUIDv4
jti
2eaf8204-aa51-409d-a2fa-4a1ae279cddb
2022-03-25 03:28:45 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestIat
iat claim in payment initiation request is valid
iat
1648178925
2022-03-25 03:28:45 SUCCESS
FAPIBrazilGenerateNewPaymentInitiationResponse
Created payment initiation response
payment_initiation_response_headers
{
  "x-fapi-interaction-id": "d684baf5-7542-44f1-955b-f3b31d4e4dbf"
}
payment_initiation_response
{
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108",
    "paymentId": "4ad88403-a161-4b5d-8fde-cc7ece7d3e83",
    "consentId": "urn:conformance:oidf:g5O9QlaAr5",
    "creationDateTime": "2022-03-25T03:28:45Z",
    "statusUpdateDateTime": "2022-03-25T03:28:45Z",
    "status": "ACSP"
  },
  "links": {
    "self": "https://www.certification.openid.net/test/a/xppayments/v1/pix/payments"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-03-25T03:28:45Z"
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178925,
  "jti": "9bf27dd5-75e1-42bb-ab7c-034d9e0e14d8",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:28:45 SUCCESS
FAPIBrazilSignPaymentInitiationResponse
Signed the payment initiation response
signed_payment_initiation_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.BCZQJ0gCynE11nRIpzrxGPPT7WRAs3DWSpD4UDJkvVrAdoDgs8M4sH74trgWtQSI56ti23WYiVQb6wzDhRGMYCAVIvvwzOk9l_GzYqtT2w4k1_1-JF7fBnhWCqGPXtYmo0jI4Zy293A2TbVfZ-oYniPoF_tcylIZ2vo9UwTZHOa_kk-MYrVDm9ebYFw8_yGsEgjMeV2G23y82oVq6k5ggJloknsLbuRSINfX6qOikAWjc187i-pWzpKb_Bo9Omng19aTsGaqppwwPZ5U_XcCvMi8TZ7ECrm79yan3_jGMXRAvbj3VEY9Mz59FX2QxzhXuZOMl9mToChM1BYi7VFxxQ
2022-03-25 03:28:45
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:28:45 OUTGOING
fapi1-advanced-final-client-test
Response to HTTP request to test instance MuhIZ403LVVvYYd
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "d684baf5-7542-44f1-955b-f3b31d4e4dbf"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.BCZQJ0gCynE11nRIpzrxGPPT7WRAs3DWSpD4UDJkvVrAdoDgs8M4sH74trgWtQSI56ti23WYiVQb6wzDhRGMYCAVIvvwzOk9l_GzYqtT2w4k1_1-JF7fBnhWCqGPXtYmo0jI4Zy293A2TbVfZ-oYniPoF_tcylIZ2vo9UwTZHOa_kk-MYrVDm9ebYFw8_yGsEgjMeV2G23y82oVq6k5ggJloknsLbuRSINfX6qOikAWjc187i-pWzpKb_Bo9Omng19aTsGaqppwwPZ5U_XcCvMi8TZ7ECrm79yan3_jGMXRAvbj3VEY9Mz59FX2QxzhXuZOMl9mToChM1BYi7VFxxQ
outgoing_path
payments/v1/pix/payments
2022-03-25 03:28:45 FINISHED
fapi1-advanced-final-client-test
Test has run to completion
testmodule_result
PASSED
2022-03-25 03:28:47
TEST-RUNNER
Alias has now been claimed by another test
alias
xp
new_test_id
3JqrgMvFV2ZzYDq
Test Results