Test Summary

Test Results

Expand All Collapse All
All times are UTC
2022-03-25 03:28:54 INFO
TEST-RUNNER
Test instance tpFJv42SUCfpENZ created
baseUrl
https://www.certification.openid.net/test/a/xp
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "openbanking_brazil",
  "fapi_jarm_type": "oidc",
  "fapi_response_mode": "plain_response"
}
alias
xp
description
Banco XP - Iniciação de Pagamentos
planId
n7Q3vTHR1mt5V
config
{
  "alias": "xp",
  "description": "Banco XP - Iniciação de Pagamentos",
  "server": {
    "jwks": {
      "keys": [
        {
          "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
          "kty": "RSA",
          "alg": "PS256",
          "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
          "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
          "e": "AQAB",
          "use": "sig",
          "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
          "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
          "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
          "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
          "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
          "x5c": [
            "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\u003d\u003d"
          ]
        },
        {
          "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
          "kty": "RSA",
          "alg": "RSA-OAEP",
          "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
          "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
          "e": "AQAB",
          "use": "enc",
          "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
          "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
          "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
          "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
          "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
        }
      ]
    }
  },
  "client": {
    "client_id": "xp-bank",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
          "e": "AQAB",
          "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
          "e": "AQAB",
          "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
        }
      ]
    },
    "certificate": "-----BEGIN CERTIFICATE-----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\nfbOrwrlnb+zmXKEMfbgZJNjAT3yNU+ZtAamq7lC/hjG5LqTeVg\u003d\u003d\n-----END CERTIFICATE-----"
  },
  "client2": {
    "client_id": "xp-bank-two",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "id_token_encrypted_response_alg": "RSA-OAEP",
    "id_token_encrypted_response_enc": "A256GCM",
    "certificate": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
    "jwks": {
      "keys": [
        {
          "kty": "RSA",
          "use": "sig",
          "alg": "PS256",
          "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
          "e": "AQAB",
          "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
        },
        {
          "kty": "RSA",
          "use": "enc",
          "alg": "RSA-OAEP",
          "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
          "e": "AQAB",
          "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
        }
      ]
    }
  },
  "directory": {
    "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/"
  }
}
testName
fapi1-advanced-final-client-test-encrypted-idtoken
2022-03-25 03:28:54 SUCCESS
FAPIBrazilGenerateServerConfiguration
Created server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true
}
issuer
https://www.certification.openid.net/test/a/xp/
discoveryUrl
https://www.certification.openid.net/test/a/xp/.well-known/openid-configuration
2022-03-25 03:28:54 SUCCESS
LoadServerJWKs
Parsed public and private JWK sets
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_encryption_keys
{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
server_public_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:54
SetServerSigningAlgToPS256
Successfully set signing algorithm to PS256
2022-03-25 03:28:54
FAPIBrazilSetGrantTypesSupportedInServerConfiguration
Successfully set grant_types_supported
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}
2022-03-25 03:28:54
AddClaimsParameterSupportedTrueToServerConfiguration
Successfully added claims_parameter_supported to server configuration
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}
2022-03-25 03:28:54
FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration
Added open banking Brazil specific server settings
server
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}
2022-03-25 03:28:54
SetTokenEndpointAuthMethodsSupportedToPrivateKeyJWTOnly
Changed token_endpoint_auth_methods_supported to private_key_jwt only in server configuration
server_configuration
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ]
}
2022-03-25 03:28:54
AddPushedAuthorizationRequestEndpointToServerConfig
Added pushed_authorization_request_endpoint to server configuration
endpoint
https://www.certification.openid.net/test/a/xp/par
2022-03-25 03:28:54
AddRequirePushedAuthorizationRequestsToServerConfig
Added require_pushed_authorization_requests to server configuration
value
true
2022-03-25 03:28:54 SUCCESS
AddResponseTypeCodeIdTokenToServerConfiguration
Added code id_token as response type supported
response_types_supported
[
  "code id_token"
]
2022-03-25 03:28:54 SUCCESS
FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer
Set token_endpoint_auth_signing_alg_values_supported
values
[
  "PS256"
]
2022-03-25 03:28:54 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2022-03-25 03:28:54 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
LoadUserInfo
Added user information
user_info
{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}
Verify configuration of first client
2022-03-25 03:28:54 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
xp-bank
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:54 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:54 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:28:54 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:28:54 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "uEKxEU50B_axhkUdW_8ga6ijE4pAP2Al2nc9-DAQKY_DBrnIBf78-eT2bUA4a-oX5wDrSK916zqOGHiPu4flOuSsv0qf4AluK8ceVCyTzqZjAS3RXACj3d8wUmy8q_EHN25jK3cC8P5Rpi3vEUZJQ64jIXacnHLBToY-7VKBzPJXSnGTmBKZu2tjE161o2Oc33q5lJTuRIMWuzDrcfhFbE-gNWhGfY93x0zXpFBG8XWqHkpA0gUlGk7D2iJpmESaeKnH4Zf1V0JtKZ5DrjGDUGPvEcQoX6v-LJu9ZLJthvP8TOy8E8rXYWUrlLZ6OORCgy-6cokI2UR8lpPsIjCHjQ",
      "e": "AQAB",
      "kid": "15a63bcc71f57382bce6802c6fc38a4f4fb37188627fc047957492a910d24ded"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "vgOYeechKwQbNww_1P5uoUkVfAIRp7j4wmJNSRsnC5LCsBPNZO_5dhvzJz1AtCCrTcwSy5HzpmtMbC0V9eXXIlWB_HKx0Ge-WK-m979kYFRTl_mntUe8M5JBSsozfaRmisK40dPHdt6mopyZAqcG0f05W7rKq-0WGdDS-h9JHAUxztRc8JX8xConlDKH4B506fVn5N8ahk6EZuMWRTDEsUCAB-lOT-JiAjMCuFvLPhPkApwnwps_oyoIZKInRgQuXjms1QdoyVyQcA50ZyfLMz0ekr3LySVd6KiIHF_UcNgObJ98ZFBaiet184dYSo79IA35GY_USm4OO0dICVMCNQ",
      "e": "AQAB",
      "kid": "1977947890e65b99342b1c82d19f51dcfe12e05ebc32d6dc85298e2bd4d2f753"
    }
  ]
}
Verify configuration of second client
2022-03-25 03:28:54 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
xp-bank-two
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
ValidateClientJWKsPublicPart
Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2022-03-25 03:28:54 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2022-03-25 03:28:54 SUCCESS
EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2022-03-25 03:28:54 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "012Bdbiby0gag3vEL_kwWLsBWExuJWPf6h6icbjEAKqLUW1TkFA6JQGXCUm3sYPVTqyh7P2a3ogy1t7xjE73ybPRxxcUY4ta7Pjbf38R7t4wwC9vvDvlZ5kS_samRUSxWv-I9JT0PZ78fR09NGtyEjI1zgN-dzqQIWOIbQBLTWNl_6HqrtiTwWojhdhxROywj_nBNW_LB7oXxisQRD2So0KstLnGtKeMHiRJvEFwv7R7H6sLYe0uj9jt2tkdI702EQi4vhMc_M5q7hID1_9gDcP9HWbTt8-QVMC_DDG6lLnp3FyU-LlblSSfWt-vNVn4Szo1LdOl8ywqMoS5uE_Ujw",
      "e": "AQAB",
      "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "pzC_7Y7yQ0X-UNUIvgO5sLXj7wiuYyAR55_0HhPkgMKJs2NlliJdei8TkHvCUXX2vuOD-c2wYZ4Ym9h9etVXHPiEEW1432GY533d-cogn2Y1QdBsDc7iNPriK7uENoQwNusN1CrDz7kAh4YzQfGqlvM9fAyxOCsCfViq7ZM82S88_uwcmm2kB5Ns8NulKGLyxZhB1g0xqVjDtVlkArAGaoTsIRjRJsECcPTrjQn1155eBe3KyTiyny7iMM2-Xh4lcVUQQXquykT9y0Wzmxf40VPfQ4GwM4KpurRyPsZs6qAeJUxCAJqVJvhzP1lh_7_STmLB0fgVEsn_3howRYLNmQ",
      "e": "AQAB",
      "kid": "a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69"
    }
  ]
}
2022-03-25 03:28:54 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsNotRSA1_5
Id token encryption algorithm is not RSA1_5
alg
RSA-OAEP
2022-03-25 03:28:54 SUCCESS
FAPIEnsureClientJwksContainsAnEncryptionKey
Found an encryption key in client jwks
kid
a8a613c7223bba1f4a2a0aacbb07cb9551c850a69473202971112d233c873d69
algorithm
RSA-OAEP
2022-03-25 03:28:54 SUCCESS
EnsureIdTokenEncryptedResponseAlgIsSetIfEncIsSet
id_token_encrypted_response_alg is set
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
2022-03-25 03:28:54
fapi1-advanced-final-client-test-encrypted-idtoken
Setup Done
2022-03-25 03:28:55 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "7752634593387978768",
  "x-datadog-parent-id": "6074456457876339769",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:28:55 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:55 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:28:56 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "7752634593387978768",
  "x-datadog-parent-id": "7624480252103108999",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1049"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "client_credentials",
  "scope": "payments",
  "client_id": "xp-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzUsImV4cCI6MTY0ODE3ODk5NSwianRpIjoieUJxODhwaUZVWDV5Ul9sMTRxcHJjRk96RTVLV0xMYXpDVFZoU2NhRmxJQSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.qYwdTu4uYogyI7gDSPXSAY9u0C3f5tjM94J9ncmmZdk2SNceVHvMUd-erCwaXhTvsijY8ORrd_yhHYFJO_-m2N3n23cCT2xt2Oqj6Vnbrm4z0aQWVhLnZ-SD3XTk59SaToZNB9gTAZdG2UepaiCCPvapiWlOLXg_C14gUcE2QzLE3uKOuScTfXgXUxNylVkJRiGKDProET5zpyWuY0PgT8zKuRRXki266sc5bKhKqNpMJ82SalzAMkulBYFLg9DFYH56OxKd0ZkOTqgME6P52J23NlYR7ldSgSM1OYzIb3YwFIaHGL73ie1H3sHTdmRD-k00QeSEXZBkxESusj0XsA",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=client_credentials&scope=payments&client_id=xp-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzUsImV4cCI6MTY0ODE3ODk5NSwianRpIjoieUJxODhwaUZVWDV5Ul9sMTRxcHJjRk96RTVLV0xMYXpDVFZoU2NhRmxJQSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.qYwdTu4uYogyI7gDSPXSAY9u0C3f5tjM94J9ncmmZdk2SNceVHvMUd-erCwaXhTvsijY8ORrd_yhHYFJO_-m2N3n23cCT2xt2Oqj6Vnbrm4z0aQWVhLnZ-SD3XTk59SaToZNB9gTAZdG2UepaiCCPvapiWlOLXg_C14gUcE2QzLE3uKOuScTfXgXUxNylVkJRiGKDProET5zpyWuY0PgT8zKuRRXki266sc5bKhKqNpMJ82SalzAMkulBYFLg9DFYH56OxKd0ZkOTqgME6P52J23NlYR7ldSgSM1OYzIb3YwFIaHGL73ie1H3sHTdmRD-k00QeSEXZBkxESusj0XsA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:28:56 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:28:56 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank-two
2022-03-25 03:28:56 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:56 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:56 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----
MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL
BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx
FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB
TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0
NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp
byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3
MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku
Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0
ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is
ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p
f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X
9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy
FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe
q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c
jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj
ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz
sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB
AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i
YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js
LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js
MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM
MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB
gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs
eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl
ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2
aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl
aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m
IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k
IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v
Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll
czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/
/LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb
U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV
Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN
DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE
G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A==
-----END CERTIFICATE-----
2022-03-25 03:28:56 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzUsImV4cCI6MTY0ODE3ODk5NSwianRpIjoieUJxODhwaUZVWDV5Ul9sMTRxcHJjRk96RTVLV0xMYXpDVFZoU2NhRmxJQSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.qYwdTu4uYogyI7gDSPXSAY9u0C3f5tjM94J9ncmmZdk2SNceVHvMUd-erCwaXhTvsijY8ORrd_yhHYFJO_-m2N3n23cCT2xt2Oqj6Vnbrm4z0aQWVhLnZ-SD3XTk59SaToZNB9gTAZdG2UepaiCCPvapiWlOLXg_C14gUcE2QzLE3uKOuScTfXgXUxNylVkJRiGKDProET5zpyWuY0PgT8zKuRRXki266sc5bKhKqNpMJ82SalzAMkulBYFLg9DFYH56OxKd0ZkOTqgME6P52J23NlYR7ldSgSM1OYzIb3YwFIaHGL73ie1H3sHTdmRD-k00QeSEXZBkxESusj0XsA",
  "header": {
    "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank-two",
    "exp": 1648178995,
    "iat": 1648178935,
    "jti": "yBq88piFUX5yR_l14qprcFOzE5KWLLazCTVhScaFlIA"
  }
}
2022-03-25 03:28:56
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:28:56 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzUsImV4cCI6MTY0ODE3ODk5NSwianRpIjoieUJxODhwaUZVWDV5Ul9sMTRxcHJjRk96RTVLV0xMYXpDVFZoU2NhRmxJQSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.qYwdTu4uYogyI7gDSPXSAY9u0C3f5tjM94J9ncmmZdk2SNceVHvMUd-erCwaXhTvsijY8ORrd_yhHYFJO_-m2N3n23cCT2xt2Oqj6Vnbrm4z0aQWVhLnZ-SD3XTk59SaToZNB9gTAZdG2UepaiCCPvapiWlOLXg_C14gUcE2QzLE3uKOuScTfXgXUxNylVkJRiGKDProET5zpyWuY0PgT8zKuRRXki266sc5bKhKqNpMJ82SalzAMkulBYFLg9DFYH56OxKd0ZkOTqgME6P52J23NlYR7ldSgSM1OYzIb3YwFIaHGL73ie1H3sHTdmRD-k00QeSEXZBkxESusj0XsA
2022-03-25 03:28:56 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:28:56 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:28:56 SUCCESS
FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant
Found 'payments' scope in request
actual
[
  "payments"
]
expected
payments
2022-03-25 03:28:56 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr
2022-03-25 03:28:56 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr
token_type
Bearer
2022-03-25 03:28:56
CopyAccessTokenToClientCredentialsField
Condition ran but did not log anything
2022-03-25 03:28:56 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr",
  "token_type": "Bearer"
}
outgoing_path
token
2022-03-25 03:28:57 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/xp/payments/v1/consents
incoming_headers
{
  "host": "www.certification.openid.net",
  "accept": "application/json, text/plain, */*",
  "content-type": "application/jwt",
  "authorization": "Bearer YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr",
  "x-idempotency-key": "f5737380-01fe-4633-bc10-19330ca44cdc",
  "user-agent": "axios/0.24.0",
  "x-datadog-trace-id": "7752634593387978768",
  "x-datadog-parent-id": "3648031743418247025",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1401"
}
incoming_path
/test-mtls/a/xp/payments/v1/consents
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.eyJkYXRhIjp7ImxvZ2dlZFVzZXIiOnsiZG9jdW1lbnQiOnsiaWRlbnRpZmljYXRpb24iOiI1Nzc4NDUxODA2NCIsInJlbCI6IkNQRiJ9fSwiY3JlZGl0b3IiOnsiY3BmQ25waiI6IjU1MTU1MTE0ODQ1IiwibmFtZSI6IkhPTU9MT0dBQ0FPIFBJWCIsInBlcnNvblR5cGUiOiJQRVNTT0FfTkFUVVJBTCJ9LCJwYXltZW50Ijp7ImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCIsImRhdGUiOiIyMDIxLTExLTExIiwiZGV0YWlscyI6eyJjcmVkaXRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjkyODk0OTIyIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjEwMTczNzIyIn0sImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJwcm94eSI6IjU1MTU1MTE0ODQ1In0sImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJ0eXBlIjoiUElYIn0sImRlYnRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjM3MjQxMjMwIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjQyNjEwNzM1NzMifX0sImlhdCI6MTY0ODE3ODkzNiwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3BheW1lbnRzL3YxL2NvbnNlbnRzIiwiaXNzIjoiNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzIiwianRpIjoiYjgwNDVlZjYtOGVlNC00MGYyLWFhOGEtMzdjODBkY2ExZWM4In0.Kx30Wb8TcJltLpxhiTxBz7JDHAOGem1oYTBS5XY_6WTioR_-pPThaQgxW1Ta9sCQ6a2aYtfX0_uol4tZCViH-ZJp-IxEgzGnNa2ZAtiyqbj16o5z8HDDCgaUTiet83ly6FGpwRIsz7SCrAZDjPwnSfanWncCRk7VBY2bQ-baGlb3qBOB22na9MlKE0Bm3gHcUuQyuvQvnQfJQEUOZsTGzyEivtHWeDBGpNPdHQwrk4x8POugH0Wy_aALzy11IpIfefcUYekGxCLiD73ZYgSVoy_pWJUgeq7faV19HofcvB4UkkQICHfeUz2WNUqpZg5Zdld-67QLWMP9YIXYESOgFQ
2022-03-25 03:28:57 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
New consent endpoint
2022-03-25 03:28:57 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----\nMIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL\nBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx\nFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB\nTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0\nNDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp\nbyBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3\nMTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku\nY29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0\nZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is\nZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G\nCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p\nf2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X\n9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy\nFGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe\nq0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c\njsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj\nggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz\nsDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB\nAQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i\nYW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js\nLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js\nMBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM\nMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB\ngDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs\neSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl\nciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2\naWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl\naXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m\nIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k\nIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v\nY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll\nczANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/\n/LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb\nU930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV\nSvi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN\nDTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:57 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:57 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:57 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:28:57 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:28:57 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr
2022-03-25 03:28:57 SUCCESS
RequireBearerClientCredentialsAccessToken
Found access token in request
actual
YuNGEFe8afFyrvjlyUia2fSaavrkQ5YtERHRU0836d1q9IEipr
2022-03-25 03:28:57 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:28:57 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:28:57 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:28:57 SUCCESS
FAPIBrazilExtractCertificateSubjectFromServerJwks
Extracted subject from the certificate included in server jwks
subjectdn
UID=74e929d9-33b6-4d85-8ba7-c146c867a817,CN=Open Banking Brasil,OU=12345+OU=certman+OU=agoodone,O=ICP-Brasil,C=BR
ou
12345
brazil_software_id
74e929d9-33b6-4d85-8ba7-c146c867a817
2022-03-25 03:28:57 SUCCESS
FAPIBrazilEnsureClientCredentialsScopeContainedPayments
The token request which was used to obtain the access token contained 'payments' scope
actual
[
  "payments"
]
2022-03-25 03:28:57 SUCCESS
FAPIBrazilExtractPaymentsConsentRequest
Parsed payments consent request
payments_consent_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents",
  "data": {
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    }
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178936,
  "jti": "b8045ef6-8ee4-40f2-aa8a-37c80dca1ec8"
}
2022-03-25 03:28:57 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:28:57 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
f5737380-01fe-4633-bc10-19330ca44cdc
2022-03-25 03:28:57 SUCCESS
FAPIBrazilValidatePaymentConsentRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/consents
2022-03-25 03:28:57 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
6ab7e84d-a489-479e-9b8d-f52a768f5ce3
2022-03-25 03:28:57 SUCCESS
FAPIBrazilEnsureConsentRequestIssEqualsOrganizationId
iss claim in consent request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:28:57 SUCCESS
FAPIBrazilEnsureConsentRequestJtiIsUUIDv4
jti claim in consent request is a UUIDv4
jti
b8045ef6-8ee4-40f2-aa8a-37c80dca1ec8
2022-03-25 03:28:57 SUCCESS
FAPIBrazilValidateConsentRequestIat
iat claim in consent request is valid
iat
1648178936
2022-03-25 03:28:57
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Fetching client organization keys
jwks_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
2022-03-25 03:28:57
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP request
request_uri
https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/application.jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2022-03-25 03:28:57 RESPONSE
FAPIBrazilFetchClientOrganizationJwksFromDirectory
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "content-type": "application/jwk-set+json",
  "content-length": "8964",
  "connection": "keep-alive",
  "x-amz-replication-status": "COMPLETED",
  "last-modified": "Thu, 10 Mar 2022 14:55:40 GMT",
  "x-amz-version-id": "6PRpK8NBC.5muY.MLRUAjkn40qtnhX9N",
  "accept-ranges": "bytes",
  "server": "AmazonS3",
  "date": "Fri, 25 Mar 2022 03:28:41 GMT",
  "etag": "\"dd439665e3119a15a2072315d0a724f1\"",
  "x-xss-protection": "1; mode\u003dblock",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "strict-origin-when-cross-origin",
  "x-content-type-options": "nosniff",
  "strict-transport-security": "max-age\u003d31536000",
  "x-cache": "Hit from cloudfront",
  "via": "1.1 eb5404df751050cb794699dc9d953726.cloudfront.net (CloudFront)",
  "x-amz-cf-pop": "MIA3-P2",
  "x-amz-cf-id": "F6HDRnML1LQUOtT559jojjKioYVARYDiUDJF_-W872_CisYYW0WeTA\u003d\u003d",
  "age": "17"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:28:57
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","x5c":["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"],"n":"zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ","e":"AQAB","kid":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem","x5t#256":"tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"},{"kty":"RSA","use":"sig","x5c":["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"],"n":"zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew","e":"AQAB","kid":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem","x5t#256":"CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"},{"kty":"RSA","use":"sig","x5c":["MIIGyjCCBbKgAwIBAgIUMKsNYCFNllXyex8gdurSW50eLr4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NTEwMFoXDTIzMDQwOTE0NTEwMFowgbgxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMUgwEwYDVQQLEwxGaW5hbnN5c3RlY2gwFQYDVQQLEw40MjIyMjkxNTAwMDE5MTAaBgNVBAsTE0NlcnRpZmljYWRvIERpZ2l0YWwxFDASBgNVBAMTC0JDTyBYUCBTLkEuMTQwMgYKCZImiZPyLGQBARMkNzk3MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs/vRWhEb6M6foZIxYKQON7uDn+hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC/uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn/1GRFn13MaY5UtV+ds8p/uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC+fSQIDAQABo4IDEDCCAwwwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUINMH8Nt4e4d64L95J1SsnBnCIzMwHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUHAQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2NybC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNybDBsBgNVHREEZTBjoBcGBWBMAQMCoA4MDFdlc2xleSBTaWx2YaAZBgVgTAEDA6AQDA4zMzI2NDY2ODAwMDEwM6AWBgVgTAEDBKANDAszMDkzMjc0MzAzMKAVBgVgTAEDB6AMDAoxMjM0NTY2Nzg5MA4GA1UdDwEB/wQEAwIGwDCCAaEGA1UdIASCAZgwggGUMIIBkAYKKwYBBAGDui9kATCCAYAwggE2BggrBgEFBQcCAjCCASgMggEkVGhpcyBDZXJ0aWZpY2F0ZSBpcyBzb2xlbHkgZm9yIHVzZSB3aXRoIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZCBhbmQgb3RoZXIgcGFydGljaXBhdGluZyBvcmdhbmlzYXRpb25zIHVzaW5nIFJhaWRpYW0gU2VydmljZXMgTGltaXRlZHMgVHJ1c3QgRnJhbWV3b3JrIFNlcnZpY2VzLiBJdHMgcmVjZWlwdCwgcG9zc2Vzc2lvbiBvciB1c2UgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgUmFpZGlhbSBTZXJ2aWNlcyBMdGQgQ2VydGljaWNhdGUgUG9saWN5IGFuZCByZWxhdGVkIGRvY3VtZW50cyB0aGVyZWluLjBEBggrBgEFBQcCARY4aHR0cDovL2Nwcy5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvcG9saWNpZXMwDQYJKoZIhvcNAQELBQADggEBAMctaE4siLeds6YXgyedgGczn4GLGrflicwZ47NB7a88EjaSlx54GwPGyePqQEJJ2atWnldN4v6L+PzDA2b9VN1t4L5KDWabb36ln/gCuAWti0mYGKiI1AfZdjXNP6DlEwiUsKAyyLb39tVbkm65kxEleMUGHHJsxTYS+ztgpYtfQEqPiwAvPOQNvdk3pbg6ChqpuhpPR7nHRHCmmiSkZPDOqcW8e85vawNrojM1mKbqXmwydOoWqJb38UCj7ZEMHZcPliaK1vyAGPblpPyRfnFAiX7W9vJ7IIkEznHtRJeRUEhAeFBRGgbRhfHYNkIuT/+nUgGfiTD8e/Wsv35FYHE="],"n":"xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ","e":"AQAB","kid":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0","x5u":"https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem","x5t#256":"GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"}]}
2022-03-25 03:28:57 SUCCESS
FAPIBrazilFetchClientOrganizationJwksFromDirectory
Downloaded and added client organization JWK set to environment
client_organization_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zWiyxqXG_9IfRmEWPBpjHCxXTkAV1Oetq3_l1TsDxHaZWVH11UkIOnDrxVg4JSbvK4oeHjOyTCZSiOK4YjV32RfxTwcA7pMvBQlp1XbXl8aX9TGSytniuVavdTxQG-xHZeGg51zt212GcRzfRyg13hKSkHDUI2ie_9j_2DmGRc6ECKtWhbTgTnZr5dZP8N3pY3N8W-rDOmmX4wXOyazo-BSaRyideHHmxlVBYu7179kzsninSelRlr8R00Ubv0sg-rJyrQG7gM-xyOnqcmhavjG8FlZ_bO-4bYwbfPXxRna3KjkZPt9LfRvPL5E61aJVMin_5flJ9WJG1HUUiM62sQ",
      "e": "AQAB",
      "kid": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34.pem",
      "x5t#256": "tBN8DUOUXjcconeKq-Pvoaxoey6I-WTZ-_EfpqZ3C34"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "zLbDdPsZVR1DZzNuwDltUD5XATgZBBxaccp_OeYl_RtVBrGh6AFicXS2TCp-A-7Cj6cY9VA6aTw27yhOOSTnksY_mvFK4bphxOHSkX9Nq6aoN1g1JIlHAg4Qi4yBs00tuLxXpqFuI0iqL9ASLgl3QzJPsN6skuzvljrOJchg-zWrijvhG0YGFi7A-fnRpxwEOjQwic6y21hCyk8_eBt780ZBHvxwpnHDCU2dnam-85xrIlapUd8NwLmhukB642plKm9t_XphIMsymk0EDxNsyS5ciKwA_n3-AnOgZxXZ8UFc-KFDZ4YHHfQ_QIv24Yoi1a0LG7DUGphlqUM4RcxQew",
      "e": "AQAB",
      "kid": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4.pem",
      "x5t#256": "CjjIK21J9a4HDZax0rWEdX4HQVuS8xj5IPAAyv-Yxq4"
    },
    {
      "kty": "RSA",
      "use": "sig",
      "x5c": [
        "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\u003d"
      ],
      "n": "xvEQ23n3N7dcQUAVoZMivpE7czR3FYkwnFuA6LifYreMTEBrwt5Jrjrgtp3cFu1jc7fQ0niGr33OHHgJgIvcGjAnnlpDTWm6YoxTJmimq0aUAs_vRWhEb6M6foZIxYKQON7uDn-hP9s8LCxSnNEK0C7KQOQWGd49mJX16X8Kcgx5lqytdMdfUT7hdC_uooJi0CLMv2mqffOjAjuLjRDvbCVN47KmycDhwPNH0sw6g4nEL9fC1nIAdf7kuaPht6EsGiBVqbSGgy6wvjQYn_1GRFn13MaY5UtV-ds8p_uCICxIyOWHj6wYt9TAlQYpWrHSqALu7s1sNTcihdWsBC-fSQ",
      "e": "AQAB",
      "kid": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0",
      "x5u": "https://keystore.sandbox.directory.openbankingbrasil.org.br/79717d71-0cf4-58f6-b2d0-370d5404d383/GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0.pem",
      "x5t#256": "GTX-wqvqeNWafv50wP6qXPC1_g2gCSQw3lL-mDR-TK0"
    }
  ]
}
2022-03-25 03:28:57 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.Kx30Wb8TcJltLpxhiTxBz7JDHAOGem1oYTBS5XY_6WTioR_-pPThaQgxW1Ta9sCQ6a2aYtfX0_uol4tZCViH-ZJp-IxEgzGnNa2ZAtiyqbj16o5z8HDDCgaUTiet83ly6FGpwRIsz7SCrAZDjPwnSfanWncCRk7VBY2bQ-baGlb3qBOB22na9MlKE0Bm3gHcUuQyuvQvnQfJQEUOZsTGzyEivtHWeDBGpNPdHQwrk4x8POugH0Wy_aALzy11IpIfefcUYekGxCLiD73ZYgSVoy_pWJUgeq7faV19HofcvB4UkkQICHfeUz2WNUqpZg5Zdld-67QLWMP9YIXYESOgFQ
2022-03-25 03:28:57 SUCCESS
CreateFapiInteractionIdIfNeeded
Created new FAPI interaction ID
fapi_interaction_id
ab62fbfe-26d3-4820-bae8-5fcdf7fe08af
2022-03-25 03:28:57 SUCCESS
FAPIBrazilGenerateNewPaymentsConsentResponse
Created consent response
headers
{
  "x-fapi-interaction-id": "ab62fbfe-26d3-4820-bae8-5fcdf7fe08af"
}
consentId
urn:conformance:oidf:WtGqNMBpf2
consent_response
{
  "data": {
    "consentId": "urn:conformance:oidf:WtGqNMBpf2",
    "creationDateTime": "2022-03-25T03:28:57Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-03-25T03:28:57Z",
    "expirationDateTime": "2022-03-25T05:28:57Z",
    "transactionFromDateTime": "2022-03-25T03:23:57Z",
    "transactionToDateTime": "2022-03-25T05:28:57Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:28:57Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178937,
  "jti": "1c3c2a08-1759-493c-840b-7ed8137f5a70",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:28:57 SUCCESS
FAPIBrazilSignPaymentConsentResponse
Signed the payment consent response
signed_consent_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.C99nFEOYmyT86OUWmvGeSGDFCoa5a94sfrjYFCx4RW4oU3jTlLEZTO6w8UuWqxsu0MWXKEw0mh2nAUMEA8nZayqxFRgxvuWks36-7Fe3C1EzwbOvQpmOgAd2f7IsaW139be89AZj6HDhhfri2uc1pnd00rQCsMUtQIXGq3BzJss-WkrhTwJKDULvpbhIOINRClWyQEOmVlMHKggo_9quvjmUF6ces7fiAzIG1YIs0Od4P1HmdbBgeXpDUH2hWFrp1d_SfxNI8MsL-g2h_F1lmrGiEvXdwmfkKa8RzxQY84yrKLyghkz3-amzT69wi806aC2-NfO3pASBF2RnLnsraw
2022-03-25 03:28:57
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:28:57 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "ab62fbfe-26d3-4820-bae8-5fcdf7fe08af"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.C99nFEOYmyT86OUWmvGeSGDFCoa5a94sfrjYFCx4RW4oU3jTlLEZTO6w8UuWqxsu0MWXKEw0mh2nAUMEA8nZayqxFRgxvuWks36-7Fe3C1EzwbOvQpmOgAd2f7IsaW139be89AZj6HDhhfri2uc1pnd00rQCsMUtQIXGq3BzJss-WkrhTwJKDULvpbhIOINRClWyQEOmVlMHKggo_9quvjmUF6ces7fiAzIG1YIs0Od4P1HmdbBgeXpDUH2hWFrp1d_SfxNI8MsL-g2h_F1lmrGiEvXdwmfkKa8RzxQY84yrKLyghkz3-amzT69wi806aC2-NfO3pASBF2RnLnsraw
outgoing_path
payments/v1/consents
2022-03-25 03:28:58 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/xp/par
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "7752634593387978768",
  "x-datadog-parent-id": "4564712034989980686",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "2430"
}
incoming_path
/test-mtls/a/xp/par
incoming_body_form_params
{
  "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJkZWFmOTRjYjdjYjliOTdiZTMwZDNjYzI4OWJmYTdjOWQ3NDI1MDMwMTY0ZGEyYTJlYThlMjQyODc1NjkyZmI0In0.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.bREOgv0mgbUSE-yJ3pLHyHGlX08ERg7PgGZDSXCUSXjfSKQ4KURn75vCjM4vj0t3Ve5RciysK_mug5Xfn0-Xq4T7DZxxjTViQiOWZu9Nmr2G2a9iHfhypFeYkJxCWmYPipi76DSqTAmJmcxRUleZ0AdArE7hGprLEISzFqtjHNPPudG4EgNi6r4_PdA6aXE8OU7bQNGlZ_LYX3g5lePvQ2URBmydF2GwdTsUunIim-zM_3ivnLYlXrREomMPyPXj9J8hxROl6DJT-Oa7cg5ATKx2gvlj3PBi5RNI8rbRwXq3ttEnpl7JP_sOlxQgYN5jbdF3nSISXLW8gd8CEV0Cqg",
  "client_id": "xp-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzcsImV4cCI6MTY0ODE3ODk5NywianRpIjoiaW9zS3ZDU2N4cXNPVkZDREQ5TUJGN05ETm5CSU4yRzNQR2RaZ1owWlN5SSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.dQn6awK7eVB32TxzlaWG9UY_yYtCgVewtwkGXoJCJUxtO4HAQCL8mtn4NEsdGBO-ZrS5x7RjfWTrxQZP2fDo5qQG5Yasl3JvVGISnH7-JR_bcxKkCnc-WvJm8TGyLed_Uk5I3OnWqgj2S_wRfhBPAoWk3FGxds8v_XCY0Fsoivbj1xRde0v0c48eNLcESqz_1NFDfRLEHKzpkx5KaianRYI3gi85YDZx-5TsgcCMYx7QdzPxU6lrnGbl1ARQS9kXSIetu7LEfYxTwGIC6s_IgfeOXYjXsHsdqfzoRNLcv3RE3jcbBoy6id5g_N8vXwo1-_FY3rDZSntnOywkkiJYvQ",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJkZWFmOTRjYjdjYjliOTdiZTMwZDNjYzI4OWJmYTdjOWQ3NDI1MDMwMTY0ZGEyYTJlYThlMjQyODc1NjkyZmI0In0.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.bREOgv0mgbUSE-yJ3pLHyHGlX08ERg7PgGZDSXCUSXjfSKQ4KURn75vCjM4vj0t3Ve5RciysK_mug5Xfn0-Xq4T7DZxxjTViQiOWZu9Nmr2G2a9iHfhypFeYkJxCWmYPipi76DSqTAmJmcxRUleZ0AdArE7hGprLEISzFqtjHNPPudG4EgNi6r4_PdA6aXE8OU7bQNGlZ_LYX3g5lePvQ2URBmydF2GwdTsUunIim-zM_3ivnLYlXrREomMPyPXj9J8hxROl6DJT-Oa7cg5ATKx2gvlj3PBi5RNI8rbRwXq3ttEnpl7JP_sOlxQgYN5jbdF3nSISXLW8gd8CEV0Cqg&client_id=xp-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzcsImV4cCI6MTY0ODE3ODk5NywianRpIjoiaW9zS3ZDU2N4cXNPVkZDREQ5TUJGN05ETm5CSU4yRzNQR2RaZ1owWlN5SSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.dQn6awK7eVB32TxzlaWG9UY_yYtCgVewtwkGXoJCJUxtO4HAQCL8mtn4NEsdGBO-ZrS5x7RjfWTrxQZP2fDo5qQG5Yasl3JvVGISnH7-JR_bcxKkCnc-WvJm8TGyLed_Uk5I3OnWqgj2S_wRfhBPAoWk3FGxds8v_XCY0Fsoivbj1xRde0v0c48eNLcESqz_1NFDfRLEHKzpkx5KaianRYI3gi85YDZx-5TsgcCMYx7QdzPxU6lrnGbl1ARQS9kXSIetu7LEfYxTwGIC6s_IgfeOXYjXsHsdqfzoRNLcv3RE3jcbBoy6id5g_N8vXwo1-_FY3rDZSntnOywkkiJYvQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:28:58 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
PAR endpoint
2022-03-25 03:28:58 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:28:58 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:28:58 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:28:58 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzcsImV4cCI6MTY0ODE3ODk5NywianRpIjoiaW9zS3ZDU2N4cXNPVkZDREQ5TUJGN05ETm5CSU4yRzNQR2RaZ1owWlN5SSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.dQn6awK7eVB32TxzlaWG9UY_yYtCgVewtwkGXoJCJUxtO4HAQCL8mtn4NEsdGBO-ZrS5x7RjfWTrxQZP2fDo5qQG5Yasl3JvVGISnH7-JR_bcxKkCnc-WvJm8TGyLed_Uk5I3OnWqgj2S_wRfhBPAoWk3FGxds8v_XCY0Fsoivbj1xRde0v0c48eNLcESqz_1NFDfRLEHKzpkx5KaianRYI3gi85YDZx-5TsgcCMYx7QdzPxU6lrnGbl1ARQS9kXSIetu7LEfYxTwGIC6s_IgfeOXYjXsHsdqfzoRNLcv3RE3jcbBoy6id5g_N8vXwo1-_FY3rDZSntnOywkkiJYvQ",
  "header": {
    "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank-two",
    "exp": 1648178997,
    "iat": 1648178937,
    "jti": "iosKvCScxqsOVFCDD9MBF7NDNnBIN2G3PGdZgZ0ZSyI"
  }
}
2022-03-25 03:28:58
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:28:58 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5MzcsImV4cCI6MTY0ODE3ODk5NywianRpIjoiaW9zS3ZDU2N4cXNPVkZDREQ5TUJGN05ETm5CSU4yRzNQR2RaZ1owWlN5SSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.dQn6awK7eVB32TxzlaWG9UY_yYtCgVewtwkGXoJCJUxtO4HAQCL8mtn4NEsdGBO-ZrS5x7RjfWTrxQZP2fDo5qQG5Yasl3JvVGISnH7-JR_bcxKkCnc-WvJm8TGyLed_Uk5I3OnWqgj2S_wRfhBPAoWk3FGxds8v_XCY0Fsoivbj1xRde0v0c48eNLcESqz_1NFDfRLEHKzpkx5KaianRYI3gi85YDZx-5TsgcCMYx7QdzPxU6lrnGbl1ARQS9kXSIetu7LEfYxTwGIC6s_IgfeOXYjXsHsdqfzoRNLcv3RE3jcbBoy6id5g_N8vXwo1-_FY3rDZSntnOywkkiJYvQ
2022-03-25 03:28:58 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:28:58 SUCCESS
ValidateClientAssertionClaimsForPAREndpoint
Client Assertion passed all validation checks
2022-03-25 03:28:58 SUCCESS
ExtractRequestObjectFromPAREndpointRequest
Parsed request object
request_object
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJkZWFmOTRjYjdjYjliOTdiZTMwZDNjYzI4OWJmYTdjOWQ3NDI1MDMwMTY0ZGEyYTJlYThlMjQyODc1NjkyZmI0In0.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.bREOgv0mgbUSE-yJ3pLHyHGlX08ERg7PgGZDSXCUSXjfSKQ4KURn75vCjM4vj0t3Ve5RciysK_mug5Xfn0-Xq4T7DZxxjTViQiOWZu9Nmr2G2a9iHfhypFeYkJxCWmYPipi76DSqTAmJmcxRUleZ0AdArE7hGprLEISzFqtjHNPPudG4EgNi6r4_PdA6aXE8OU7bQNGlZ_LYX3g5lePvQ2URBmydF2GwdTsUunIim-zM_3ivnLYlXrREomMPyPXj9J8hxROl6DJT-Oa7cg5ATKx2gvlj3PBi5RNI8rbRwXq3ttEnpl7JP_sOlxQgYN5jbdF3nSISXLW8gd8CEV0Cqg",
  "header": {
    "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "xp-bank-two",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
    "client_id": "xp-bank-two",
    "aud": "https://www.certification.openid.net/test/a/xp/",
    "nbf": 1648178937,
    "scope": "openid consent:urn:conformance:oidf:WtGqNMBpf2 payments",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY",
    "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
    "exp": 1648179237,
    "iat": 1648178937,
    "code_challenge": "eJNiM3RkMsBVd3zetuGkanIdxQ2JI6egslXVB6yRubc",
    "jti": "cSK6m9q0_TlObHaI-hguie4JIp_qkJvdR9hgMnQ2YZY"
  }
}
2022-03-25 03:28:58 SUCCESS
EnsurePAREndpointRequestDoesNotContainRequestUriParameter
PAR endpoint request does not contain a request_uri parameter
2022-03-25 03:28:58 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:28:58 SUCCESS
FAPIValidateRequestObjectSigningAlg
Request object was signed with a permitted algorithm
alg
PS256
2022-03-25 03:28:58 SUCCESS
FAPIBrazilValidateRequestObjectIdTokenACRClaims
Acr value in request object is as expected
received
[
  "urn:brasil:openbanking:loa3"
]
2022-03-25 03:28:58 SUCCESS
FAPIValidateRequestObjectExp
Request object contains a valid exp claim, expiry time
exp
"Mar 25, 2022, 3:33:57 AM"
2022-03-25 03:28:58 SUCCESS
FAPI1AdvancedValidateRequestObjectNBFClaim
nbf claim is valid
nbf
"Mar 25, 2022, 3:28:57 AM"
now
"Mar 25, 2022, 3:28:58 AM"
2022-03-25 03:28:58
ValidateRequestObjectClaims
Request object does not contain a max_age claim
2022-03-25 03:28:58 SUCCESS
ValidateRequestObjectClaims
Request object claims passed all validation checks
2022-03-25 03:28:58 SUCCESS
EnsureNumericRequestObjectClaimsAreNotNull
None of the claims expected to have numeric values, have null values
numeric_claims
[
  "max_age"
]
2022-03-25 03:28:58 SUCCESS
EnsureRequestObjectDoesNotContainRequestOrRequestUri
Request object does not contain request or request_uri
2022-03-25 03:28:58 SUCCESS
EnsureRequestObjectDoesNotContainSubWithClientId
Request object does not contain Client Id in sub
2022-03-25 03:28:58 SUCCESS
ValidateRequestObjectSignature
Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg
request_object
eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiJkZWFmOTRjYjdjYjliOTdiZTMwZDNjYzI4OWJmYTdjOWQ3NDI1MDMwMTY0ZGEyYTJlYThlMjQyODc1NjkyZmI0In0.eyJub25jZSI6Ill2Qlc3OVItOUV3S25QXzRwVENEdWVYV0xucU9jaXRmaHA2MzRsTFdIT0EiLCJzdGF0ZSI6ImtuelBZc3Y2dHF6QTN3N25tMGVwWDBaQVlGMjVFYjJsOTBiajRhZmVKZFkiLCJzY29wZSI6Im9wZW5pZCBjb25zZW50OnVybjpjb25mb3JtYW5jZTpvaWRmOld0R3FOTUJwZjIgcGF5bWVudHMiLCJyZXNwb25zZV90eXBlIjoiY29kZSBpZF90b2tlbiIsInJlZGlyZWN0X3VyaSI6Imh0dHBzOi8vb3BlbmJhbmtpbmctcmVkaXJlY3QtaG1sLnhwaS5jb20uYnIvIiwiY2xhaW1zIjp7ImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZXMiOlsidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EzIl0sImVzc2VudGlhbCI6dHJ1ZX19fSwiY29kZV9jaGFsbGVuZ2UiOiJlSk5pTTNSa01zQlZkM3pldHVHa2FuSWR4UTJKSTZlZ3NsWFZCNnlSdWJjIiwiY29kZV9jaGFsbGVuZ2VfbWV0aG9kIjoiUzI1NiIsImlzcyI6InhwLWJhbmstdHdvIiwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJjbGllbnRfaWQiOiJ4cC1iYW5rLXR3byIsImp0aSI6ImNTSzZtOXEwX1RsT2JIYUktaGd1aWU0SklwX3FrSnZkUjloZ01uUTJZWlkiLCJpYXQiOjE2NDgxNzg5MzcsImV4cCI6MTY0ODE3OTIzNywibmJmIjoxNjQ4MTc4OTM3fQ.bREOgv0mgbUSE-yJ3pLHyHGlX08ERg7PgGZDSXCUSXjfSKQ4KURn75vCjM4vj0t3Ve5RciysK_mug5Xfn0-Xq4T7DZxxjTViQiOWZu9Nmr2G2a9iHfhypFeYkJxCWmYPipi76DSqTAmJmcxRUleZ0AdArE7hGprLEISzFqtjHNPPudG4EgNi6r4_PdA6aXE8OU7bQNGlZ_LYX3g5lePvQ2URBmydF2GwdTsUunIim-zM_3ivnLYlXrREomMPyPXj9J8hxROl6DJT-Oa7cg5ATKx2gvlj3PBi5RNI8rbRwXq3ttEnpl7JP_sOlxQgYN5jbdF3nSISXLW8gd8CEV0Cqg
request_object_signing_alg
PS256
jwk
Sun RSA public key, 2048 bits
  params: null
  modulus: 26682391728276967194954540950724524766209086808905294588982397069936121562333243663764934195647992343177478262727950898924397071202064562861206174158180200480594996725014075862466053567784281183219703630991981300831241081699301237024475570008190972241380552880852780083495508447044517459224554822510775003365910458994533288189492336450582750156012542850962347524024401052699960522810025005147790986998717668357969776801050900287236559832040317568496341942344842285320185599735791731780123979954387030411843226462141502492679161635325436143104264759677865307365533990321146732182660048619467029047252683002320354530447
  public exponent: 65537
2022-03-25 03:28:58 SUCCESS
EnsureMatchingRedirectUriInRequestObject
Redirect URI matched
actual
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:28:58 SUCCESS
EnsureRequestObjectContainsCodeChallengeWhenUsingPAR
Found required PKCE parameters in request
code_challenge_method
S256
code_challenge
eJNiM3RkMsBVd3zetuGkanIdxQ2JI6egslXVB6yRubc
2022-03-25 03:28:58 SUCCESS
CreatePAREndpointResponse
Created PAR endpoint response
request_uri
urn:ietf:params:oauth:request_uri:51bdea90-555b-42fd-accf-4da628903a93
expires_in
600
2022-03-25 03:28:58 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
201
outgoing_headers
{}
outgoing_body
{
  "request_uri": "urn:ietf:params:oauth:request_uri:51bdea90-555b-42fd-accf-4da628903a93",
  "expires_in": 600
}
outgoing_path
par
2022-03-25 03:28:58 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/xp/authorize
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "274bd412-aa29-45a5-a1ad-bb7baa773324",
  "accept-encoding": "gzip, deflate, br",
  "connection": "close"
}
incoming_path
/test/a/xp/authorize
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{
  "client_id": "xp-bank-two",
  "scope": "openid consent:urn:conformance:oidf:WtGqNMBpf2 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "request_uri": "urn:ietf:params:oauth:request_uri:51bdea90-555b-42fd-accf-4da628903a93"
}
incoming_body
2022-03-25 03:28:59 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Authorization endpoint
2022-03-25 03:28:59 SUCCESS
EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR
Request does not contain a request parameter
2022-03-25 03:28:59 INFO
ValidateEncryptedRequestObjectHasKid
Skipped evaluation due to missing required element: authorization_request_object jwe_header
path
jwe_header
mapped
object
authorization_request_object
2022-03-25 03:28:59 SUCCESS
CreateEffectiveAuthorizationRequestParameters
Merged http request parameters with request object claims
effective_authorization_endpoint_request
{
  "client_id": "xp-bank-two",
  "scope": "openid consent:urn:conformance:oidf:WtGqNMBpf2 payments",
  "response_type": "code id_token",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "iss": "xp-bank-two",
  "code_challenge_method": "S256",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "aud": "https://www.certification.openid.net/test/a/xp/",
  "nbf": 1648178937,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY",
  "exp": 1648179237,
  "iat": 1648178937,
  "code_challenge": "eJNiM3RkMsBVd3zetuGkanIdxQ2JI6egslXVB6yRubc",
  "jti": "cSK6m9q0_TlObHaI-hguie4JIp_qkJvdR9hgMnQ2YZY"
}
2022-03-25 03:28:59 SUCCESS
EnsureClientIdInAuthorizationRequestParametersMatchRequestObject
client_id http request parameter value matches client_id in request object
2022-03-25 03:28:59 SUCCESS
ExtractRequestedScopes
Requested scopes
scope
openid consent:urn:conformance:oidf:WtGqNMBpf2 payments
2022-03-25 03:28:59 SUCCESS
FAPIBrazilValidateConsentScope
Found consent scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:WtGqNMBpf2",
  "payments"
]
expected
consent:urn:conformance:oidf:WtGqNMBpf2
2022-03-25 03:28:59 SUCCESS
EnsureScopeContainsPayments
Found payments scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:WtGqNMBpf2",
  "payments"
]
2022-03-25 03:28:59 SUCCESS
EnsureResponseTypeIsCodeIdToken
Response type is expected value
expected
code id_token
2022-03-25 03:28:59 SUCCESS
EnsureOpenIDInScopeRequest
Found 'openid' scope in request
actual
[
  "openid",
  "consent:urn:conformance:oidf:WtGqNMBpf2",
  "payments"
]
expected
openid
2022-03-25 03:28:59 SUCCESS
EnsureMatchingClientId
Client ID matched
client_id
xp-bank-two
2022-03-25 03:28:59 SUCCESS
CreateAuthorizationCode
Created authorization code
authorization_code
2wCrppy61zxpuAArj1LJNW4xyIcACdXd
2022-03-25 03:28:59 SUCCESS
ExtractNonceFromAuthorizationRequest
Extracted nonce
nonce
YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA
2022-03-25 03:28:59 SUCCESS
CalculateCHash
Successful c_hash encoding
c_hash
DLyrGdCAMw6elQYYW-TTnw
2022-03-25 03:28:59 SUCCESS
CalculateSHash
Successful s_hash encoding
s_hash
bhX98My8NrTzcHSh26wkew
2022-03-25 03:28:59 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank-two
nonce
YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA
iat
1648178939
exp
1648179239
2022-03-25 03:28:59 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178939,
  "exp": 1648179239
}
2022-03-25 03:28:59 SUCCESS
AddCHashToIdTokenClaims
Added c_hash to ID token claims
c_hash
DLyrGdCAMw6elQYYW-TTnw
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178939,
  "exp": 1648179239,
  "c_hash": "DLyrGdCAMw6elQYYW-TTnw"
}
2022-03-25 03:28:59 SUCCESS
AddSHashToIdTokenClaims
Added s_hash to ID token claims
s_hash
bhX98My8NrTzcHSh26wkew
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178939,
  "exp": 1648179239,
  "c_hash": "DLyrGdCAMw6elQYYW-TTnw",
  "s_hash": "bhX98My8NrTzcHSh26wkew"
}
2022-03-25 03:28:59 INFO
AddAtHashToIdTokenClaims
Skipped evaluation due to missing required string: at_hash
expected
at_hash
2022-03-25 03:28:59 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178939,
  "exp": 1648179239,
  "c_hash": "DLyrGdCAMw6elQYYW-TTnw",
  "s_hash": "bhX98My8NrTzcHSh26wkew",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:28:59 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InhwLWJhbmstdHdvIiwiY19oYXNoIjoiREx5ckdkQ0FNdzZlbFFZWVctVFRudyIsImFjciI6InVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyIsInNfaGFzaCI6ImJoWDk4TXk4TnJUemNIU2gyNndrZXciLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBcLyIsImV4cCI6MTY0ODE3OTIzOSwibm9uY2UiOiJZdkJXNzlSLTlFd0tuUF80cFRDRHVlWFdMbnFPY2l0ZmhwNjM0bExXSE9BIiwiaWF0IjoxNjQ4MTc4OTM5fQ.JXVP78l739QOpXvdLerspFxOFN22hi-prlPNjO19dHqtXQz8WOPhqIGIby6NDS5Qoo9n-Pn-dkrjCZzwFebrv4pbzgRBU0az6kWevA0PJBLIEqcIMiuoO605cjGWogWer1QrGRy5EV3VQ9WinruXJNnZyAgdtCaDEwxLCDu8ndtqNDq_hob4u1iEqsYpQEiChpzaLhIZfWSPf8rKYjenfT4kPQ-nEh_2HtIw2EY-7zHdZvlaCWTLAevz3b-HwTJSHa4H2Gr4uvr0V1OJIYLaLsfFBLpWIkcsWRmg2arR8eT9EOITpdrNJHY5p_mK4B1V0kqLODBYFn3nov2YYCAwYA
2022-03-25 03:28:59
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.TbKZvd3KgV-NoLFqnnGdwUMqXWhGeTRrP6ToMumTaR68mVLEqR8FtxblSyNkurGwfmUrLhlUS8nZjWNw7BKjRDnsgnt5H-qUufv6Cq_e-iSo-2lKKDuDjNcLnryueAYfKMU1bue3unEN9urQ8FnUZpdJI3yjg7_cusFubw5akcH4F5qV8OtTYD_89bQDQsLbr1aT6Ng2-LPDJsevT05gZi-mjjQNHahAZ4Z0hiZeeiDXDpXp6KYl36JFK_Lp_RP5ZLLhE8xrEiO3wqwqPxKT-RGlVRjQjr3mo1XF3LQNML0clqbqKzoZT09buypZ-klq5LKy8L4VHmVwxcHAxsc7sg.hBiskN7qhbiymEyK.RxPrFZQaMDhlQnmuGITtNE2oio5PkjZlzR3nYU6EkfxNUmDtJ0I5O9wCzsDCdLu6kyNZHiu-DVQFJeHXAlNvs4T-d8V2R6M5zsl4Lu4ViYbnde2_n0AIGEf1fnzhndPxgFPzEX7hoTTss1N9gvm-0tl_RgzIm13fjSIC_v1glbj5hnYKQB4NG4LBlcMzTWVObp6a2Qe4VFGmR9i0o2l64VV86GClnoS5bV-o5ktaLhvOK_S0iYhfMhP25fWwRhtLh-gNFwiw8QiXw21U_USySiVv3uqUKEfhePiv9I60u8YGTIQbC645yAT6lFoid0QEe8iAEsSwiJ1TncXH8NITZoW_-lGNpz-bV6zxtQTtfkLKnFksau3F4rM0g848b4oksHWpT0lVBuWZpMjqugziaygMilraA289yxgbyyTEtMFxhjhmUAnTy5clomLg3kizVKwGZHxkKZZEcbTiWWHrc12RlOXnnrMUtwsk7rmj9O3vE85JG76nVNV1_qkWUHRM74JgxwUBWg9ZPyg95KHpa-UitJs1yXMwk9lZ7rfUfq0KKjcgV8y2cxBtfzJUzZWzmokY9Royb43EwWpDFuoNZ-fak4LHxqb81mMFgPAPoa2GAiSk00rU3eNQD9RhOcUI-YTcLcvwWHKOWXxfsERnyDh3fzusXMuPb2TUsiGwOVY65VKXOSERxgdclgT9phTn9bSr3LN6WtTbLVwJd4qrW19EqTxao1caAYvmedU5dWJkTfp0vNh-LOcLzLYoXXaV5FkVo0fziwRpHY4NRl_LBvj6xHJpGLf9KXzmDIguwiM1vpCe11q_vbrbsshSF_YWu_NSjnZjj7-lCfg5bc_MSAOHhRCZ0_WuUUXPiKSNdHVYs95Bn-naC8dcZmxBp2nUNq-txCSLR2dAbAv-wC1QbRbGTQpvUFtP8SPmAJ3XpzlV79A4s5dHKNWaOU2vVHsuW1lmPPMbQYB0s4Xo1GMW3yvnGprh0CbaZWEZYCGItmcsIUjQHx2MzgHeG4mfx-vPhRsdUc8hWj3H_zagNTyS0p0H-IkrbcZBvxTITDOrbiL965s-Wu8nnEb_YjowuFaOWCHgf13O1SB5ir8BetsmioGP254RHJJ7.DyBmIpesZ1wo94jSj3PRgQ
2022-03-25 03:28:59 SUCCESS
FAPIBrazilChangeConsentStatusToAuthorized
Changed consent status to AUTHORISED
consent
{
  "data": {
    "consentId": "urn:conformance:oidf:WtGqNMBpf2",
    "creationDateTime": "2022-03-25T03:28:57Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-03-25T03:28:59Z",
    "expirationDateTime": "2022-03-25T05:28:57Z",
    "transactionFromDateTime": "2022-03-25T03:23:57Z",
    "transactionToDateTime": "2022-03-25T05:28:57Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/xppayments/v1/consents"
    },
    "meta": {
      "totalRecords": 1,
      "totalPages": 1,
      "requestDateTime": "2022-03-25T03:28:57Z"
    },
    "creditor": {
      "name": "HOMOLOGACAO PIX",
      "cpfCnpj": "55155114845",
      "personType": "PESSOA_NATURAL"
    },
    "loggedUser": {
      "document": {
        "identification": "57784518064",
        "rel": "CPF"
      }
    },
    "payment": {
      "date": "2021-11-11",
      "amount": "1.15",
      "currency": "BRL",
      "details": {
        "proxy": "55155114845",
        "localInstrument": "DICT",
        "creditorAccount": {
          "number": "10173722",
          "accountType": "CACC",
          "ispb": "92894922",
          "issuer": "0001"
        }
      },
      "ibgeTownCode": "5300108",
      "type": "PIX"
    },
    "debtorAccount": {
      "number": "4261073573",
      "accountType": "CACC",
      "ispb": "37241230",
      "issuer": "0001"
    }
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178937,
  "jti": "1c3c2a08-1759-493c-840b-7ed8137f5a70",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:28:59 SUCCESS
CreateAuthorizationEndpointResponseParams
Added authorization_endpoint_response_params to environment
params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY"
}
2022-03-25 03:28:59 SUCCESS
AddCodeToAuthorizationEndpointResponseParams
Added code to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY",
  "code": "2wCrppy61zxpuAArj1LJNW4xyIcACdXd"
}
2022-03-25 03:28:59 SUCCESS
AddIdTokenToAuthorizationEndpointResponseParams
Added id_token to authorization endpoint response params
authorization_endpoint_response_params
{
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "state": "knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY",
  "code": "2wCrppy61zxpuAArj1LJNW4xyIcACdXd",
  "id_token": "eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.TbKZvd3KgV-NoLFqnnGdwUMqXWhGeTRrP6ToMumTaR68mVLEqR8FtxblSyNkurGwfmUrLhlUS8nZjWNw7BKjRDnsgnt5H-qUufv6Cq_e-iSo-2lKKDuDjNcLnryueAYfKMU1bue3unEN9urQ8FnUZpdJI3yjg7_cusFubw5akcH4F5qV8OtTYD_89bQDQsLbr1aT6Ng2-LPDJsevT05gZi-mjjQNHahAZ4Z0hiZeeiDXDpXp6KYl36JFK_Lp_RP5ZLLhE8xrEiO3wqwqPxKT-RGlVRjQjr3mo1XF3LQNML0clqbqKzoZT09buypZ-klq5LKy8L4VHmVwxcHAxsc7sg.hBiskN7qhbiymEyK.RxPrFZQaMDhlQnmuGITtNE2oio5PkjZlzR3nYU6EkfxNUmDtJ0I5O9wCzsDCdLu6kyNZHiu-DVQFJeHXAlNvs4T-d8V2R6M5zsl4Lu4ViYbnde2_n0AIGEf1fnzhndPxgFPzEX7hoTTss1N9gvm-0tl_RgzIm13fjSIC_v1glbj5hnYKQB4NG4LBlcMzTWVObp6a2Qe4VFGmR9i0o2l64VV86GClnoS5bV-o5ktaLhvOK_S0iYhfMhP25fWwRhtLh-gNFwiw8QiXw21U_USySiVv3uqUKEfhePiv9I60u8YGTIQbC645yAT6lFoid0QEe8iAEsSwiJ1TncXH8NITZoW_-lGNpz-bV6zxtQTtfkLKnFksau3F4rM0g848b4oksHWpT0lVBuWZpMjqugziaygMilraA289yxgbyyTEtMFxhjhmUAnTy5clomLg3kizVKwGZHxkKZZEcbTiWWHrc12RlOXnnrMUtwsk7rmj9O3vE85JG76nVNV1_qkWUHRM74JgxwUBWg9ZPyg95KHpa-UitJs1yXMwk9lZ7rfUfq0KKjcgV8y2cxBtfzJUzZWzmokY9Royb43EwWpDFuoNZ-fak4LHxqb81mMFgPAPoa2GAiSk00rU3eNQD9RhOcUI-YTcLcvwWHKOWXxfsERnyDh3fzusXMuPb2TUsiGwOVY65VKXOSERxgdclgT9phTn9bSr3LN6WtTbLVwJd4qrW19EqTxao1caAYvmedU5dWJkTfp0vNh-LOcLzLYoXXaV5FkVo0fziwRpHY4NRl_LBvj6xHJpGLf9KXzmDIguwiM1vpCe11q_vbrbsshSF_YWu_NSjnZjj7-lCfg5bc_MSAOHhRCZ0_WuUUXPiKSNdHVYs95Bn-naC8dcZmxBp2nUNq-txCSLR2dAbAv-wC1QbRbGTQpvUFtP8SPmAJ3XpzlV79A4s5dHKNWaOU2vVHsuW1lmPPMbQYB0s4Xo1GMW3yvnGprh0CbaZWEZYCGItmcsIUjQHx2MzgHeG4mfx-vPhRsdUc8hWj3H_zagNTyS0p0H-IkrbcZBvxTITDOrbiL965s-Wu8nnEb_YjowuFaOWCHgf13O1SB5ir8BetsmioGP254RHJJ7.DyBmIpesZ1wo94jSj3PRgQ"
}
2022-03-25 03:28:59
SendAuthorizationResponseWithResponseModeFragment
Redirecting back to client
uri
https://openbanking-redirect-hml.xpi.com.br/#state=knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY&code=2wCrppy61zxpuAArj1LJNW4xyIcACdXd&id_token=eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.TbKZvd3KgV-NoLFqnnGdwUMqXWhGeTRrP6ToMumTaR68mVLEqR8FtxblSyNkurGwfmUrLhlUS8nZjWNw7BKjRDnsgnt5H-qUufv6Cq_e-iSo-2lKKDuDjNcLnryueAYfKMU1bue3unEN9urQ8FnUZpdJI3yjg7_cusFubw5akcH4F5qV8OtTYD_89bQDQsLbr1aT6Ng2-LPDJsevT05gZi-mjjQNHahAZ4Z0hiZeeiDXDpXp6KYl36JFK_Lp_RP5ZLLhE8xrEiO3wqwqPxKT-RGlVRjQjr3mo1XF3LQNML0clqbqKzoZT09buypZ-klq5LKy8L4VHmVwxcHAxsc7sg.hBiskN7qhbiymEyK.RxPrFZQaMDhlQnmuGITtNE2oio5PkjZlzR3nYU6EkfxNUmDtJ0I5O9wCzsDCdLu6kyNZHiu-DVQFJeHXAlNvs4T-d8V2R6M5zsl4Lu4ViYbnde2_n0AIGEf1fnzhndPxgFPzEX7hoTTss1N9gvm-0tl_RgzIm13fjSIC_v1glbj5hnYKQB4NG4LBlcMzTWVObp6a2Qe4VFGmR9i0o2l64VV86GClnoS5bV-o5ktaLhvOK_S0iYhfMhP25fWwRhtLh-gNFwiw8QiXw21U_USySiVv3uqUKEfhePiv9I60u8YGTIQbC645yAT6lFoid0QEe8iAEsSwiJ1TncXH8NITZoW_-lGNpz-bV6zxtQTtfkLKnFksau3F4rM0g848b4oksHWpT0lVBuWZpMjqugziaygMilraA289yxgbyyTEtMFxhjhmUAnTy5clomLg3kizVKwGZHxkKZZEcbTiWWHrc12RlOXnnrMUtwsk7rmj9O3vE85JG76nVNV1_qkWUHRM74JgxwUBWg9ZPyg95KHpa-UitJs1yXMwk9lZ7rfUfq0KKjcgV8y2cxBtfzJUzZWzmokY9Royb43EwWpDFuoNZ-fak4LHxqb81mMFgPAPoa2GAiSk00rU3eNQD9RhOcUI-YTcLcvwWHKOWXxfsERnyDh3fzusXMuPb2TUsiGwOVY65VKXOSERxgdclgT9phTn9bSr3LN6WtTbLVwJd4qrW19EqTxao1caAYvmedU5dWJkTfp0vNh-LOcLzLYoXXaV5FkVo0fziwRpHY4NRl_LBvj6xHJpGLf9KXzmDIguwiM1vpCe11q_vbrbsshSF_YWu_NSjnZjj7-lCfg5bc_MSAOHhRCZ0_WuUUXPiKSNdHVYs95Bn-naC8dcZmxBp2nUNq-txCSLR2dAbAv-wC1QbRbGTQpvUFtP8SPmAJ3XpzlV79A4s5dHKNWaOU2vVHsuW1lmPPMbQYB0s4Xo1GMW3yvnGprh0CbaZWEZYCGItmcsIUjQHx2MzgHeG4mfx-vPhRsdUc8hWj3H_zagNTyS0p0H-IkrbcZBvxTITDOrbiL965s-Wu8nnEb_YjowuFaOWCHgf13O1SB5ir8BetsmioGP254RHJJ7.DyBmIpesZ1wo94jSj3PRgQ
2022-03-25 03:28:59 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing
org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://openbanking-redirect-hml.xpi.com.br/#state=knzPYsv6tqzA3w7nm0epX0ZAYF25Eb2l90bj4afeJdY&code=2wCrppy61zxpuAArj1LJNW4xyIcACdXd&id_token=eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.TbKZvd3KgV-NoLFqnnGdwUMqXWhGeTRrP6ToMumTaR68mVLEqR8FtxblSyNkurGwfmUrLhlUS8nZjWNw7BKjRDnsgnt5H-qUufv6Cq_e-iSo-2lKKDuDjNcLnryueAYfKMU1bue3unEN9urQ8FnUZpdJI3yjg7_cusFubw5akcH4F5qV8OtTYD_89bQDQsLbr1aT6Ng2-LPDJsevT05gZi-mjjQNHahAZ4Z0hiZeeiDXDpXp6KYl36JFK_Lp_RP5ZLLhE8xrEiO3wqwqPxKT-RGlVRjQjr3mo1XF3LQNML0clqbqKzoZT09buypZ-klq5LKy8L4VHmVwxcHAxsc7sg.hBiskN7qhbiymEyK.RxPrFZQaMDhlQnmuGITtNE2oio5PkjZlzR3nYU6EkfxNUmDtJ0I5O9wCzsDCdLu6kyNZHiu-DVQFJeHXAlNvs4T-d8V2R6M5zsl4Lu4ViYbnde2_n0AIGEf1fnzhndPxgFPzEX7hoTTss1N9gvm-0tl_RgzIm13fjSIC_v1glbj5hnYKQB4NG4LBlcMzTWVObp6a2Qe4VFGmR9i0o2l64VV86GClnoS5bV-o5ktaLhvOK_S0iYhfMhP25fWwRhtLh-gNFwiw8QiXw21U_USySiVv3uqUKEfhePiv9I60u8YGTIQbC645yAT6lFoid0QEe8iAEsSwiJ1TncXH8NITZoW_-lGNpz-bV6zxtQTtfkLKnFksau3F4rM0g848b4oksHWpT0lVBuWZpMjqugziaygMilraA289yxgbyyTEtMFxhjhmUAnTy5clomLg3kizVKwGZHxkKZZEcbTiWWHrc12RlOXnnrMUtwsk7rmj9O3vE85JG76nVNV1_qkWUHRM74JgxwUBWg9ZPyg95KHpa-UitJs1yXMwk9lZ7rfUfq0KKjcgV8y2cxBtfzJUzZWzmokY9Royb43EwWpDFuoNZ-fak4LHxqb81mMFgPAPoa2GAiSk00rU3eNQD9RhOcUI-YTcLcvwWHKOWXxfsERnyDh3fzusXMuPb2TUsiGwOVY65VKXOSERxgdclgT9phTn9bSr3LN6WtTbLVwJd4qrW19EqTxao1caAYvmedU5dWJkTfp0vNh-LOcLzLYoXXaV5FkVo0fziwRpHY4NRl_LBvj6xHJpGLf9KXzmDIguwiM1vpCe11q_vbrbsshSF_YWu_NSjnZjj7-lCfg5bc_MSAOHhRCZ0_WuUUXPiKSNdHVYs95Bn-naC8dcZmxBp2nUNq-txCSLR2dAbAv-wC1QbRbGTQpvUFtP8SPmAJ3XpzlV79A4s5dHKNWaOU2vVHsuW1lmPPMbQYB0s4Xo1GMW3yvnGprh0CbaZWEZYCGItmcsIUjQHx2MzgHeG4mfx-vPhRsdUc8hWj3H_zagNTyS0p0H-IkrbcZBvxTITDOrbiL965s-Wu8nnEb_YjowuFaOWCHgf13O1SB5ir8BetsmioGP254RHJJ7.DyBmIpesZ1wo94jSj3PRgQ]
outgoing_path
authorize
2022-03-25 03:28:59 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/xp/.well-known/openid-configuration
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3108805346993594346",
  "x-datadog-parent-id": "8219437966699699211",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/.well-known/openid-configuration
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:28:59 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:28:59 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "issuer": "https://www.certification.openid.net/test/a/xp/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/xp/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/xp/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/xp/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/xp/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/xp/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/userinfo",
    "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/xp/par"
  },
  "tls_client_certificate_bound_access_tokens": true,
  "request_parameter_supported": true,
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "id_token_signing_alg_values_supported": [
    "PS256"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ],
  "token_endpoint_auth_methods_supported": [
    "private_key_jwt"
  ],
  "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/xp/par",
  "require_pushed_authorization_requests": true,
  "response_types_supported": [
    "code id_token"
  ],
  "token_endpoint_auth_signing_alg_values_supported": [
    "PS256"
  ]
}
outgoing_path
.well-known/openid-configuration
2022-03-25 03:29:00 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test/a/xp/jwks
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3108805346993594346",
  "x-datadog-parent-id": "6841434984443098836",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close"
}
incoming_path
/test/a/xp/jwks
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
incoming_body_json
incoming_query_string_params
{}
incoming_body
2022-03-25 03:29:00 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:29:00 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}
outgoing_path
jwks
2022-03-25 03:29:01 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/xp/token
incoming_headers
{
  "host": "www.certification.openid.net",
  "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)",
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded",
  "accept-encoding": "gzip, deflate, br",
  "x-datadog-trace-id": "3108805346993594346",
  "x-datadog-parent-id": "2457563079415248248",
  "x-datadog-sampling-priority": "2",
  "x-datadog-tags": "_dd.p.upstream_services\u003db3BlbmJhbmtpbmctbWFuYWdlbWVudC1zZXJ2aWNlcw\u003d\u003d|2|3|1",
  "connection": "close",
  "content-length": "1196"
}
incoming_path
/test-mtls/a/xp/token
incoming_body_form_params
{
  "grant_type": "authorization_code",
  "code": "2wCrppy61zxpuAArj1LJNW4xyIcACdXd",
  "redirect_uri": "https://openbanking-redirect-hml.xpi.com.br/",
  "code_verifier": "a0wXKLW-gEfEnH8Uwz2aUZnpitCtPfSprLB1t2I30UI",
  "client_id": "xp-bank-two",
  "client_assertion": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5NDAsImV4cCI6MTY0ODE3OTAwMCwianRpIjoic3Y0S2VBUGlvTkc0SFcxZDVOS3ROb1FYV0FNU0VNbjJHVGl4LW85Z2JLTSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.kCEAq77Ua3exMUEqw6dYoixvG7AExRI4rWluPbs6lchaOkLHqx3bFY3QpSDafE3Gf_NMUwveVRxNDZ0P7ppLGgNsOndIGQGgbAPSF1zUs7_U3aqZN45zOvhItN9-WLcIrtzlZ07ldvCpavtmwuIoRgRNtB-FnbKlkpU167ET-8CT4_2mZHxHOkl6REB9U2Sx_a2B4L4O5Rf6TyViO5u4pYureowJsf0_qkII3vU2CIJCFK-__LnVAZBZNhqovgDNte7mBd5GOhrFsC-X_QNz3CqLWdHNlY1JDNYvQe-9hVP-XwYsLU-bVvDgg1guxb-KkYHVILdcSiayYOlVeubl5Q",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
grant_type=authorization_code&code=2wCrppy61zxpuAArj1LJNW4xyIcACdXd&redirect_uri=https%3A%2F%2Fopenbanking-redirect-hml.xpi.com.br%2F&code_verifier=a0wXKLW-gEfEnH8Uwz2aUZnpitCtPfSprLB1t2I30UI&client_id=xp-bank-two&client_assertion=eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5NDAsImV4cCI6MTY0ODE3OTAwMCwianRpIjoic3Y0S2VBUGlvTkc0SFcxZDVOS3ROb1FYV0FNU0VNbjJHVGl4LW85Z2JLTSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.kCEAq77Ua3exMUEqw6dYoixvG7AExRI4rWluPbs6lchaOkLHqx3bFY3QpSDafE3Gf_NMUwveVRxNDZ0P7ppLGgNsOndIGQGgbAPSF1zUs7_U3aqZN45zOvhItN9-WLcIrtzlZ07ldvCpavtmwuIoRgRNtB-FnbKlkpU167ET-8CT4_2mZHxHOkl6REB9U2Sx_a2B4L4O5Rf6TyViO5u4pYureowJsf0_qkII3vU2CIJCFK-__LnVAZBZNhqovgDNte7mBd5GOhrFsC-X_QNz3CqLWdHNlY1JDNYvQe-9hVP-XwYsLU-bVvDgg1guxb-KkYHVILdcSiayYOlVeubl5Q&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2022-03-25 03:29:01 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
Token endpoint
2022-03-25 03:29:01 SUCCESS
CheckClientIdMatchesOnTokenRequestIfPresent
Extracted client_id matches the expected value
client_id
xp-bank-two
2022-03-25 03:29:01 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:29:01 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:29:01 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
2022-03-25 03:29:01 SUCCESS
ExtractClientAssertion
Parsed client assertion
client_assertion
{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5NDAsImV4cCI6MTY0ODE3OTAwMCwianRpIjoic3Y0S2VBUGlvTkc0SFcxZDVOS3ROb1FYV0FNU0VNbjJHVGl4LW85Z2JLTSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.kCEAq77Ua3exMUEqw6dYoixvG7AExRI4rWluPbs6lchaOkLHqx3bFY3QpSDafE3Gf_NMUwveVRxNDZ0P7ppLGgNsOndIGQGgbAPSF1zUs7_U3aqZN45zOvhItN9-WLcIrtzlZ07ldvCpavtmwuIoRgRNtB-FnbKlkpU167ET-8CT4_2mZHxHOkl6REB9U2Sx_a2B4L4O5Rf6TyViO5u4pYureowJsf0_qkII3vU2CIJCFK-__LnVAZBZNhqovgDNte7mBd5GOhrFsC-X_QNz3CqLWdHNlY1JDNYvQe-9hVP-XwYsLU-bVvDgg1guxb-KkYHVILdcSiayYOlVeubl5Q",
  "header": {
    "kid": "deaf94cb7cb9b97be30d3cc289bfa7c9d7425030164da2a2ea8e242875692fb4",
    "typ": "JWT",
    "alg": "PS256"
  },
  "claims": {
    "sub": "xp-bank-two",
    "aud": [
      "https://www.certification.openid.net/test/a/xp/",
      "https://www.certification.openid.net/test/a/xp/token",
      "https://www.certification.openid.net/test-mtls/a/xp/token"
    ],
    "iss": "xp-bank-two",
    "exp": 1648179000,
    "iat": 1648178940,
    "jti": "sv4KeAPioNG4HW1d5NKtNoQXWAMSEMn2GTix-o9gbKM"
  }
}
2022-03-25 03:29:01
EnsureClientAssertionSignatureAlgorithmMatchesRegistered
token_endpoint_auth_signing_alg is not set for the client, any supported algorithm can be used
2022-03-25 03:29:01 SUCCESS
ValidateClientAssertionSignature
client_assertion signature validated
client_assertion
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRlYWY5NGNiN2NiOWI5N2JlMzBkM2NjMjg5YmZhN2M5ZDc0MjUwMzAxNjRkYTJhMmVhOGUyNDI4NzU2OTJmYjQifQ.eyJpYXQiOjE2NDgxNzg5NDAsImV4cCI6MTY0ODE3OTAwMCwianRpIjoic3Y0S2VBUGlvTkc0SFcxZDVOS3ROb1FYV0FNU0VNbjJHVGl4LW85Z2JLTSIsImlzcyI6InhwLWJhbmstdHdvIiwic3ViIjoieHAtYmFuay10d28iLCJhdWQiOlsiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS94cC8iLCJodHRwczovL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXQvdGVzdC9hL3hwL3Rva2VuIiwiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3Rva2VuIl19.kCEAq77Ua3exMUEqw6dYoixvG7AExRI4rWluPbs6lchaOkLHqx3bFY3QpSDafE3Gf_NMUwveVRxNDZ0P7ppLGgNsOndIGQGgbAPSF1zUs7_U3aqZN45zOvhItN9-WLcIrtzlZ07ldvCpavtmwuIoRgRNtB-FnbKlkpU167ET-8CT4_2mZHxHOkl6REB9U2Sx_a2B4L4O5Rf6TyViO5u4pYureowJsf0_qkII3vU2CIJCFK-__LnVAZBZNhqovgDNte7mBd5GOhrFsC-X_QNz3CqLWdHNlY1JDNYvQe-9hVP-XwYsLU-bVvDgg1guxb-KkYHVILdcSiayYOlVeubl5Q
2022-03-25 03:29:01 SUCCESS
EnsureClientAssertionTypeIsJwt
Found JWT assertion type
assertion type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2022-03-25 03:29:01 SUCCESS
ValidateClientAssertionClaims
Client Assertion passed all validation checks
2022-03-25 03:29:01 SUCCESS
ValidateAuthorizationCode
Found authorization code
authorization_code
2wCrppy61zxpuAArj1LJNW4xyIcACdXd
2022-03-25 03:29:01 SUCCESS
ValidateRedirectUri
Found redirect uri
redirect_uri
https://openbanking-redirect-hml.xpi.com.br/
2022-03-25 03:29:01 SUCCESS
ValidateCodeVerifierWithS256
Validated code_verifier successfully
code_challenge_method
S256
code_verifier
a0wXKLW-gEfEnH8Uwz2aUZnpitCtPfSprLB1t2I30UI
code_challenge
eJNiM3RkMsBVd3zetuGkanIdxQ2JI6egslXVB6yRubc
2022-03-25 03:29:01 SUCCESS
GenerateBearerAccessToken
Generated access token
access_token
yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx
2022-03-25 03:29:01 SUCCESS
CalculateAtHash
Successful at_hash encoding
at_hash
LAi7mVjIU2Thyr83nmNWCA
2022-03-25 03:29:01
CreateRefreshToken
Created refresh token
refresh_token
ZggftkAHUmpoUNLaVaGMqAofKmUgIbHCZQGcQkeLomjFVFQleH3891410102@<>-:
2022-03-25 03:29:01 SUCCESS
GenerateIdTokenClaims
Created ID Token Claims
iss
https://www.certification.openid.net/test/a/xp/
sub
user-subject-1234531
aud
xp-bank-two
nonce
YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA
iat
1648178941
exp
1648179241
2022-03-25 03:29:01 SUCCESS
FAPIBrazilAddCPFAndCPNJToIdTokenClaims
Added claims to id_token claims
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178941,
  "exp": 1648179241
}
2022-03-25 03:29:01 SUCCESS
AddAtHashToIdTokenClaims
Added at_hash to ID token claims
at_hash
LAi7mVjIU2Thyr83nmNWCA
id_token_claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178941,
  "exp": 1648179241,
  "at_hash": "LAi7mVjIU2Thyr83nmNWCA"
}
2022-03-25 03:29:01 SUCCESS
FAPIBrazilAddACRClaimToIdTokenClaims
Added acr value to id_token_claims
acr_value
urn:brasil:openbanking:loa3
claims
{
  "iss": "https://www.certification.openid.net/test/a/xp/",
  "sub": "user-subject-1234531",
  "aud": "xp-bank-two",
  "nonce": "YvBW79R-9EwKnP_4pTCDueXWLnqOcitfhp634lLWHOA",
  "iat": 1648178941,
  "exp": 1648179241,
  "at_hash": "LAi7mVjIU2Thyr83nmNWCA",
  "acr": "urn:brasil:openbanking:loa3"
}
2022-03-25 03:29:01 SUCCESS
SignIdToken
Signed the ID token
id_token
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJhdF9oYXNoIjoiTEFpN21WaklVMlRoeXI4M25tTldDQSIsInN1YiI6InVzZXItc3ViamVjdC0xMjM0NTMxIiwiYXVkIjoieHAtYmFuay10d28iLCJhY3IiOiJ1cm46YnJhc2lsOm9wZW5iYW5raW5nOmxvYTMiLCJpc3MiOiJodHRwczpcL1wvd3d3LmNlcnRpZmljYXRpb24ub3BlbmlkLm5ldFwvdGVzdFwvYVwveHBcLyIsImV4cCI6MTY0ODE3OTI0MSwibm9uY2UiOiJZdkJXNzlSLTlFd0tuUF80cFRDRHVlWFdMbnFPY2l0ZmhwNjM0bExXSE9BIiwiaWF0IjoxNjQ4MTc4OTQxfQ.bCFw4gpUyZuuA4XEXqLKvo-Fm1IL1_NMX9i6LtQ3HrxlqgexoG3OZYN5GfvsLLiMkZXPE0VjlYLR1_hjX4SxhWby4Rouc_EgUzyCDE1CoC3-gE0fMl5NO66kTKQxr0HIgBF9b3FxBH0QTaK98Pzmr2WSWmy4FtS3gwCcyg5KaO54zlwWX6hiBnC7qM4EUWcyQiH_mgwyZYABbwNi4EUIoyKmefxPwAXpiHdM2LlVCkWmtNp-j-vlniTpzLrNr_a4XWOaQtBzec6AbQ2H40slGSg_KcAZSh0nQZRa8JF3223UQwuQUPk6z2-SRKdhQQ21iObWEMkWZRJ8WORGmG_02g
2022-03-25 03:29:01
EncryptIdToken
Encrypted the id token
id_token_encrypted_response_alg
RSA-OAEP
id_token_encrypted_response_enc
A256GCM
id_token
eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.EGn_6FaPJutDX4hvognPs6tpkYp0bRwYaliC4cwT84G3OS-ZDcGAcngRh1w8VzK1Up7O-XJaLKLiCtAde8hd_IrrKQba7hp-rSsrjdbFoIRbk1dStTLUEyv0yp6Ht3TEw1udRdatFCfQdyPumhc3kAp3y84HIfiOF3_iefd1tqDRB-VLEeDAnzvkolzmslYXiVNwigI31AsXbD2QL3durClEv7rXkNaAnr8jdPhddAVHZ42DDYgfk3ou5l3pYQ59-d3Jrf2muiPirPIFDNnZCUoJ1E-ABNmqTgOpGQTEXLghKlPzhZc86iPWgJ4hg3OAhIHpsdsygqRP03oLX9_aKA.zW6YxIx2aLXtWB0a.k3iJgKLUyzM6XkWGid1mqGIQMb3dc8kXEN44tuEUfoi4bRdlHIXsdpZMNISDr-hepX61_AekcM3EsPHLaYLO8ztPURjBQwX4sGEtp4vgyDobA-pB4FKnDCcxcWNiAe_Wm4VXRyV4QTghe-_2-mj_VoPhanK6-MZ77RPhJ51w0-CPuwHuhnjy9H4bID05q99lMU4Ycop-AdbxGJdcqg8tnX5dvdUPhnuvv5_c8q0pgHn1CNljQ0RDMsXDbk_8Ry5mykAVoj55zkZ4BIwGS10wjNvTaHvL8uC6VYaZbLxw2J1VorhnayQX_GTK0_WyZKPQ_2xO6k_cIxqa8NxbRBlcGnWaY61U50RhtP-BQnFWbjrtmlPXdWxwfYRcw1awBRPGBFlNAiR-UoGIFAHUpMs9jonJ3Dn523MNZbfEqMd37VgFtob0JK5iaxnNJVccQ6ZHUZQrCJPhqS1R45S3gy2pu8Vq5fDhzn8eXa1--oCAklQqAHIYSTuOb7r0HCdI6nzhpW9rH6lTVHx9NMRXEnEgY_5MWUdh6CBJebvQZuWyKK0u_N_0Yx-18KIoorLXeQfx8D8M5SFn8YVBcikYSNOHLIMTGH8OdecxXVz8g0l6RRwK1ew-8kTH05qgV4krqljFMYgMPn1FMaScOAGqPftbNzjJgdGAClGargKk-QD21OD1AJ2R3ENZvtD9Un4tzqBYcEiL3KxxrA-TjJmT-3YtRLnZu_ntHcuWSKDGb3ZWuGn18uaRHVVwCG-Iq10WsqhPQq0TFR9a-o43d5_DUd72tc0AdNcTBEKNfaczUXxIpavrqkk4pr8mG3dnAyutgJAGLFZbti6gt1arbMH3ohlT4gjTGQfYmD9wQUb0kMrsuwQpdv3xhWNtwAW7w1_yobAOlB_LF_8KYPOWa2fzpYLQ8OvdLqS0Zz_oRfYlzaYKBl-0qAQ92AekGQtfnD8HSuutsqB98UHqPUf018zrNfKkf-2InSHGyVHkK8TojPQ5D-yA2YW28r5WDZWs7dKFG0gM2Z7sK1djJRMa15gZ9pnUKIpxLL8P7GUmaD-unA.jDKb2MI0fGIwWNjHWpZyjg
2022-03-25 03:29:01 SUCCESS
CreateTokenEndpointResponse
Created token endpoint response
access_token
yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx
token_type
Bearer
id_token
eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.EGn_6FaPJutDX4hvognPs6tpkYp0bRwYaliC4cwT84G3OS-ZDcGAcngRh1w8VzK1Up7O-XJaLKLiCtAde8hd_IrrKQba7hp-rSsrjdbFoIRbk1dStTLUEyv0yp6Ht3TEw1udRdatFCfQdyPumhc3kAp3y84HIfiOF3_iefd1tqDRB-VLEeDAnzvkolzmslYXiVNwigI31AsXbD2QL3durClEv7rXkNaAnr8jdPhddAVHZ42DDYgfk3ou5l3pYQ59-d3Jrf2muiPirPIFDNnZCUoJ1E-ABNmqTgOpGQTEXLghKlPzhZc86iPWgJ4hg3OAhIHpsdsygqRP03oLX9_aKA.zW6YxIx2aLXtWB0a.k3iJgKLUyzM6XkWGid1mqGIQMb3dc8kXEN44tuEUfoi4bRdlHIXsdpZMNISDr-hepX61_AekcM3EsPHLaYLO8ztPURjBQwX4sGEtp4vgyDobA-pB4FKnDCcxcWNiAe_Wm4VXRyV4QTghe-_2-mj_VoPhanK6-MZ77RPhJ51w0-CPuwHuhnjy9H4bID05q99lMU4Ycop-AdbxGJdcqg8tnX5dvdUPhnuvv5_c8q0pgHn1CNljQ0RDMsXDbk_8Ry5mykAVoj55zkZ4BIwGS10wjNvTaHvL8uC6VYaZbLxw2J1VorhnayQX_GTK0_WyZKPQ_2xO6k_cIxqa8NxbRBlcGnWaY61U50RhtP-BQnFWbjrtmlPXdWxwfYRcw1awBRPGBFlNAiR-UoGIFAHUpMs9jonJ3Dn523MNZbfEqMd37VgFtob0JK5iaxnNJVccQ6ZHUZQrCJPhqS1R45S3gy2pu8Vq5fDhzn8eXa1--oCAklQqAHIYSTuOb7r0HCdI6nzhpW9rH6lTVHx9NMRXEnEgY_5MWUdh6CBJebvQZuWyKK0u_N_0Yx-18KIoorLXeQfx8D8M5SFn8YVBcikYSNOHLIMTGH8OdecxXVz8g0l6RRwK1ew-8kTH05qgV4krqljFMYgMPn1FMaScOAGqPftbNzjJgdGAClGargKk-QD21OD1AJ2R3ENZvtD9Un4tzqBYcEiL3KxxrA-TjJmT-3YtRLnZu_ntHcuWSKDGb3ZWuGn18uaRHVVwCG-Iq10WsqhPQq0TFR9a-o43d5_DUd72tc0AdNcTBEKNfaczUXxIpavrqkk4pr8mG3dnAyutgJAGLFZbti6gt1arbMH3ohlT4gjTGQfYmD9wQUb0kMrsuwQpdv3xhWNtwAW7w1_yobAOlB_LF_8KYPOWa2fzpYLQ8OvdLqS0Zz_oRfYlzaYKBl-0qAQ92AekGQtfnD8HSuutsqB98UHqPUf018zrNfKkf-2InSHGyVHkK8TojPQ5D-yA2YW28r5WDZWs7dKFG0gM2Z7sK1djJRMa15gZ9pnUKIpxLL8P7GUmaD-unA.jDKb2MI0fGIwWNjHWpZyjg
refresh_token
ZggftkAHUmpoUNLaVaGMqAofKmUgIbHCZQGcQkeLomjFVFQleH3891410102@<>-:
scope
openid consent:urn:conformance:oidf:WtGqNMBpf2 payments
2022-03-25 03:29:01 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
200
outgoing_headers
{}
outgoing_body
{
  "access_token": "yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx",
  "token_type": "Bearer",
  "id_token": "eyJraWQiOiJhOGE2MTNjNzIyM2JiYTFmNGEyYTBhYWNiYjA3Y2I5NTUxYzg1MGE2OTQ3MzIwMjk3MTExMmQyMzNjODczZDY5IiwiY3R5IjoiSldUIiwiZW5jIjoiQTI1NkdDTSIsImFsZyI6IlJTQS1PQUVQIn0.EGn_6FaPJutDX4hvognPs6tpkYp0bRwYaliC4cwT84G3OS-ZDcGAcngRh1w8VzK1Up7O-XJaLKLiCtAde8hd_IrrKQba7hp-rSsrjdbFoIRbk1dStTLUEyv0yp6Ht3TEw1udRdatFCfQdyPumhc3kAp3y84HIfiOF3_iefd1tqDRB-VLEeDAnzvkolzmslYXiVNwigI31AsXbD2QL3durClEv7rXkNaAnr8jdPhddAVHZ42DDYgfk3ou5l3pYQ59-d3Jrf2muiPirPIFDNnZCUoJ1E-ABNmqTgOpGQTEXLghKlPzhZc86iPWgJ4hg3OAhIHpsdsygqRP03oLX9_aKA.zW6YxIx2aLXtWB0a.k3iJgKLUyzM6XkWGid1mqGIQMb3dc8kXEN44tuEUfoi4bRdlHIXsdpZMNISDr-hepX61_AekcM3EsPHLaYLO8ztPURjBQwX4sGEtp4vgyDobA-pB4FKnDCcxcWNiAe_Wm4VXRyV4QTghe-_2-mj_VoPhanK6-MZ77RPhJ51w0-CPuwHuhnjy9H4bID05q99lMU4Ycop-AdbxGJdcqg8tnX5dvdUPhnuvv5_c8q0pgHn1CNljQ0RDMsXDbk_8Ry5mykAVoj55zkZ4BIwGS10wjNvTaHvL8uC6VYaZbLxw2J1VorhnayQX_GTK0_WyZKPQ_2xO6k_cIxqa8NxbRBlcGnWaY61U50RhtP-BQnFWbjrtmlPXdWxwfYRcw1awBRPGBFlNAiR-UoGIFAHUpMs9jonJ3Dn523MNZbfEqMd37VgFtob0JK5iaxnNJVccQ6ZHUZQrCJPhqS1R45S3gy2pu8Vq5fDhzn8eXa1--oCAklQqAHIYSTuOb7r0HCdI6nzhpW9rH6lTVHx9NMRXEnEgY_5MWUdh6CBJebvQZuWyKK0u_N_0Yx-18KIoorLXeQfx8D8M5SFn8YVBcikYSNOHLIMTGH8OdecxXVz8g0l6RRwK1ew-8kTH05qgV4krqljFMYgMPn1FMaScOAGqPftbNzjJgdGAClGargKk-QD21OD1AJ2R3ENZvtD9Un4tzqBYcEiL3KxxrA-TjJmT-3YtRLnZu_ntHcuWSKDGb3ZWuGn18uaRHVVwCG-Iq10WsqhPQq0TFR9a-o43d5_DUd72tc0AdNcTBEKNfaczUXxIpavrqkk4pr8mG3dnAyutgJAGLFZbti6gt1arbMH3ohlT4gjTGQfYmD9wQUb0kMrsuwQpdv3xhWNtwAW7w1_yobAOlB_LF_8KYPOWa2fzpYLQ8OvdLqS0Zz_oRfYlzaYKBl-0qAQ92AekGQtfnD8HSuutsqB98UHqPUf018zrNfKkf-2InSHGyVHkK8TojPQ5D-yA2YW28r5WDZWs7dKFG0gM2Z7sK1djJRMa15gZ9pnUKIpxLL8P7GUmaD-unA.jDKb2MI0fGIwWNjHWpZyjg",
  "refresh_token": "ZggftkAHUmpoUNLaVaGMqAofKmUgIbHCZQGcQkeLomjFVFQleH3891410102@\u003c\u003e-:",
  "scope": "openid consent:urn:conformance:oidf:WtGqNMBpf2 payments"
}
outgoing_path
token
2022-03-25 03:29:01 INCOMING
fapi1-advanced-final-client-test-encrypted-idtoken
Incoming HTTP request to /test-mtls/a/xp/payments/v1/pix/payments
incoming_headers
{
  "host": "www.certification.openid.net",
  "content-type": "application/jwt",
  "x-idempotency-key": "46f014e8-8e41-4bb3-b546-9d7ce614082c",
  "authorization": "Bearer yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx",
  "user-agent": "PostmanRuntime/7.28.4",
  "accept": "*/*",
  "cache-control": "no-cache",
  "postman-token": "80430e7e-66cb-4eea-b9fe-d23ae5e636ee",
  "accept-encoding": "gzip, deflate, br",
  "cookie": "JSESSIONID\u003dC8350C0A38DCCCECB0D88481C316DF16",
  "connection": "close",
  "content-length": "1046"
}
incoming_path
/test-mtls/a/xp/payments/v1/pix/payments
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_tls_cert
-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A== -----END CERTIFICATE-----
incoming_body_json
incoming_query_string_params
{}
incoming_body
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.eyJkYXRhIjp7ImxvY2FsSW5zdHJ1bWVudCI6IkRJQ1QiLCJwYXltZW50Ijp7ImFtb3VudCI6IjEuMTUiLCJjdXJyZW5jeSI6IkJSTCJ9LCJjcmVkaXRvckFjY291bnQiOnsiYWNjb3VudFR5cGUiOiJDQUNDIiwiaXNwYiI6IjkyODk0OTIyIiwiaXNzdWVyIjoiMDAwMSIsIm51bWJlciI6IjEwMTczNzIyIn0sImNucGpJbml0aWF0b3IiOiIyMDc0NzQzNjAwMDE1NiIsImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJwcm94eSI6IjU1MTU1MTE0ODQ1In0sImlhdCI6MTY0ODE3ODk0MSwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QtbXRscy9hL3hwL3BheW1lbnRzL3YxL3BpeC9wYXltZW50cyIsImlzcyI6Ijc5NzE3ZDcxLTBjZjQtNThmNi1iMmQwLTM3MGQ1NDA0ZDM4MyIsImp0aSI6IjQwM2YyMjI5LTcxOGEtNDQ4My04ZmNhLTRjZmY5MzEwZDQyNyJ9.S3AMVoJcJOQxSM-n9Iczl0Ai5kFXYs9bk4CPikKG-giLDrmlzFcnTrwgNiRPBuMe6YSy85J7h2ZHv-ivCt-fXDna3Dlvwejvf6cXRfAtQpgWIv4N2XrKvHZEm0mbJuQbY9noYkStwmiADoeYaG4sUy8ye5fslUMmy0qpv6F-wGPKXFOZxN8BPlIavfNTDkUZfVbJqciYCFoPCGStcmtPy048VSSYuyz_vIqn8O4s31kNgsAV10EmOg-JP8kDFK_f_39xNcku2WVzFVy2-G3cSTHLBfsukph8SHFYbMzJFg5Kzp9_bKcloMB5iBzvHMgVsGAOUk25SWq0-eZ62LmhXw
2022-03-25 03:29:01 SUCCESS
EnsureIncomingTls12WithSecureCipherOrTls13
TLS 1.2 in use and cipher is one recommended by BCP195
actual
ECDHE-RSA-AES128-GCM-SHA256
recommended
[
  "DHE-RSA-AES128-GCM-SHA256",
  "ECDHE-RSA-AES128-GCM-SHA256",
  "DHE-RSA-AES256-GCM-SHA384",
  "ECDHE-RSA-AES256-GCM-SHA384"
]
2022-03-25 03:29:01 SUCCESS
ExtractClientCertificateFromTokenEndpointRequestHeaders
Extracted client certificate
client_certificate
{
  "cert": "-----BEGIN CERTIFICATE----- MIIG4TCCBcmgAwIBAgIUMnxi2E7fyORb8/hfKsRfDVgTyAkwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIyMDMxMDE0NDYwMFoXDTIzMDQwOTE0 NDYwMFowggEQMQswCQYDVQQGEwJCUjELMAkGA1UECBMCUkoxFzAVBgNVBAcTDlJp byBkZSBKYW5laXJvMRQwEgYDVQQKEwtCQ08gWFAgUy5BLjEtMCsGA1UECxMkNzk3 MTdkNzEtMGNmNC01OGY2LWIyZDAtMzcwZDU0MDRkMzgzMRMwEQYDVQQDEwp4cGku Y29tLmJyMRcwFQYDVQQFEw4zMzI2NDY2ODAwMDEwMzEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEzARBgsrBgEEAYI3PAIBAxMCQlIxNDAyBgoJkiaJk/Is ZAEBEyQ2YWI3ZTg0ZC1hNDg5LTQ3OWUtOWI4ZC1mNTJhNzY4ZjVjZTMwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCleJvZUBcvtczbPO6jcLAjCzOexl7p f2KGDDPHZ+Ddp99fOVQRProFdWqbT3vjtSIxXMZRgscl+pucbcVnkTSMMh8+DI6X 9HasYOhw3GVPzj6zf1VEtXrgKc57gOt2462BFN6qsLQkZE+qgGhyfSiOdYUREmjy FGl7OPo/N5geErMTvDfnz2FXUbg1IfniIJI5+cI61U3pa2C67GZF24bHzkwjPPGe q0Y0fjK6itDPm1h9uW+fKvfVR5RGB8uwDJVOoiarlAOIuh5FhXW0ohsRUtel/r7c jsRtDVW5o2VOoVTCKinFEfu8xj7mXWjXrB7/mmE4/JXfImvoLwYQGu6DAgMBAAGj ggLOMIICyjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSjiVYxezINRKHAn1tneyOz sDeUBDAfBgNVHSMEGDAWgBSGf1itF/WCtk60BbP7sM4RQ99MvjBMBggrBgEFBQcB AQRAMD4wPAYIKwYBBQUHMAGGMGh0dHA6Ly9vY3NwLnNhbmRib3gucGtpLm9wZW5i YW5raW5nYnJhc2lsLm9yZy5icjBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3Js LnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9pc3N1ZXIuY3Js MBUGA1UdEQQOMAyCCnhwaS5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQM MAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIB gDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVs eSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhl ciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2 aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNl aXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9m IHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5k IHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8v Y3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2ll czANBgkqhkiG9w0BAQsFAAOCAQEA2lqeV/ACHCjugwoaW+s0VEf3Q303D6ev5MU/ /LsXp16CvAw5IGDM2zvxB6d6NEPalRQW6516LvuNd9smQSrsWceN84FUEV4cj+Mb U930QV0m5GPVtSDAxO6bijN1HCdUeWZSfQMVfgQdbjTb2QeHQuqXzg3mwNdNGFwV Svi7aeVjV9EF+U3/Q1UdTcg4E/ZYXPkV0dXHU5LRDIn2SEhpl2FkIFUzffeMo0LN DTPN+Py3X9yQqtu1lT/gnBFty70M8K3YOppM7yxyv6UU2MYVGUNEoSsmZsFQeHXE G4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nG4nQeYbVD/T4dNYqAAqgecF+/+MTq+ESI4liTH3BQR0FNNn41A\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3333323634363638303030313033,CN\u003dxpi.com.br,OU\u003d79717d71-0cf4-58f6-b2d0-370d5404d383,O\u003dBCO XP S.A.,L\u003dRio de Janeiro,ST\u003dRJ,C\u003dBR"
  },
  "sanDnsNames": [
    "xpi.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}
2022-03-25 03:29:01 SUCCESS
CheckForClientCertificate
Found client certificate
2022-03-25 03:29:01 SUCCESS
EnsureClientCertificateMatches
Presented certificate matches registered certificate
actual
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Payment initiation endpoint
2022-03-25 03:29:01 SUCCESS
EnsureIncomingRequestMethodIsPost
Client correctly used http POST method
2022-03-25 03:29:01 SUCCESS
EnsureBearerAccessTokenNotInParams
Client correctly did not send access token in query parameters or form body
2022-03-25 03:29:01 SUCCESS
ExtractBearerAccessTokenFromHeader
Found access token on incoming request
access_token
yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx
2022-03-25 03:29:01 SUCCESS
RequireBearerAccessToken
Found access token in request
actual
yX1vimcBPv7O7HaILrJcWmfDbMvWCmSG5JvIshgZJmCIRdihYx
2022-03-25 03:29:01 INFO
ExtractFapiDateHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date
path
headers.x-fapi-auth-date
mapped
object
incoming_request
2022-03-25 03:29:01 INFO
ExtractFapiIpAddressHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address
path
headers.x-fapi-customer-ip-address
mapped
object
incoming_request
2022-03-25 03:29:01 INFO
ExtractFapiInteractionIdHeader
Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id
path
headers.x-fapi-interaction-id
mapped
object
incoming_request
2022-03-25 03:29:01 SUCCESS
FAPIBrazilEnsureAuthorizationRequestScopesContainPayments
'payments' was included in authorization request scopes
actual
openid consent:urn:conformance:oidf:WtGqNMBpf2 payments
expected
payments
2022-03-25 03:29:01 SUCCESS
FAPIBrazilExtractPaymentInitiationRequest
Parsed payment initiation request
payment_initiation_request
{
  "aud": "https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments",
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108"
  },
  "iss": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178941,
  "jti": "403f2229-718a-4483-8fca-4cff9310d427"
}
2022-03-25 03:29:01 SUCCESS
FAPIBrazilValidateJwtSignatureUsingOrganizationJwks
jwt signature validated
jwt
eyJhbGciOiJQUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6IkNqaklLMjFKOWE0SERaYXgwcldFZFg0SFFWdVM4eGo1SVBBQXl2LVl4cTQifQ.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.S3AMVoJcJOQxSM-n9Iczl0Ai5kFXYs9bk4CPikKG-giLDrmlzFcnTrwgNiRPBuMe6YSy85J7h2ZHv-ivCt-fXDna3Dlvwejvf6cXRfAtQpgWIv4N2XrKvHZEm0mbJuQbY9noYkStwmiADoeYaG4sUy8ye5fslUMmy0qpv6F-wGPKXFOZxN8BPlIavfNTDkUZfVbJqciYCFoPCGStcmtPy048VSSYuyz_vIqn8O4s31kNgsAV10EmOg-JP8kDFK_f_39xNcku2WVzFVy2-G3cSTHLBfsukph8SHFYbMzJFg5Kzp9_bKcloMB5iBzvHMgVsGAOUk25SWq0-eZ62LmhXw
2022-03-25 03:29:01 SUCCESS
EnsureIncomingRequestContentTypeIsApplicationJwt
Client correctly used application/jwt content type
2022-03-25 03:29:01 SUCCESS
ExtractXIdempotencyKeyHeader
Found an x-idempotency-key header
idempotency_key
46f014e8-8e41-4bb3-b546-9d7ce614082c
2022-03-25 03:29:01 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestAud
aud claim matches the endpoint url
aud
https://www.certification.openid.net/test-mtls/a/xp/payments/v1/pix/payments
2022-03-25 03:29:01 SUCCESS
FAPIBrazilExtractCertificateSubjectFromIncomingMTLSCertifiate
Extracted subject from the mtls client certificate
subjectdn
UID=6ab7e84d-a489-479e-9b8d-f52a768f5ce3,1.3.6.1.4.1.311.60.2.1.3=#13024252,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,2.5.4.5=#130e3333323634363638303030313033,CN=xpi.com.br,OU=79717d71-0cf4-58f6-b2d0-370d5404d383,O=BCO XP S.A.,L=Rio de Janeiro,ST=RJ,C=BR
ou
79717d71-0cf4-58f6-b2d0-370d5404d383
brazil_software_id
6ab7e84d-a489-479e-9b8d-f52a768f5ce3
2022-03-25 03:29:01 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestIssEqualsOrganizationId
iss claim in payment initiation request matches organizationId in client certificate
iss
79717d71-0cf4-58f6-b2d0-370d5404d383
2022-03-25 03:29:01 SUCCESS
FAPIBrazilEnsurePaymentInitiationRequestJtiIsUUIDv4
jti claim in payment initiation request is a UUIDv4
jti
403f2229-718a-4483-8fca-4cff9310d427
2022-03-25 03:29:01 SUCCESS
FAPIBrazilValidatePaymentInitiationRequestIat
iat claim in payment initiation request is valid
iat
1648178941
2022-03-25 03:29:01 SUCCESS
FAPIBrazilGenerateNewPaymentInitiationResponse
Created payment initiation response
payment_initiation_response_headers
{
  "x-fapi-interaction-id": "ab62fbfe-26d3-4820-bae8-5fcdf7fe08af"
}
payment_initiation_response
{
  "data": {
    "proxy": "55155114845",
    "localInstrument": "DICT",
    "creditorAccount": {
      "number": "10173722",
      "accountType": "CACC",
      "ispb": "92894922",
      "issuer": "0001"
    },
    "cnpjInitiator": "20747436000156",
    "payment": {
      "amount": "1.15",
      "currency": "BRL"
    },
    "ibgeTownCode": "5300108",
    "paymentId": "03dc7425-e91b-4701-bcc8-0889d8ac4074",
    "consentId": "urn:conformance:oidf:WtGqNMBpf2",
    "creationDateTime": "2022-03-25T03:29:01Z",
    "statusUpdateDateTime": "2022-03-25T03:29:01Z",
    "status": "ACSP"
  },
  "links": {
    "self": "https://www.certification.openid.net/test/a/xppayments/v1/pix/payments"
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-03-25T03:29:01Z"
  },
  "aud": "79717d71-0cf4-58f6-b2d0-370d5404d383",
  "iat": 1648178941,
  "jti": "c467fa33-8d17-4c7a-bf5b-67fc23452cab",
  "iss": "74e929d9-33b6-4d85-8ba7-c146c867a817"
}
2022-03-25 03:29:01 SUCCESS
FAPIBrazilSignPaymentInitiationResponse
Signed the payment initiation response
signed_payment_initiation_response
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.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.ExjOX8m1T2xkib-s5WfeNrVPl9PyyxKVdWfE9iegKuKR9NvHbVDw3ehmFbMoECxN-X6Vw_pcwhTcNYgJWUK14HKmafqJ2XFuPXudt4MQW18KO8EctG6GJ9JPQv-bWn6MoOWJWTvWyHhtRQ54ohqjM66bV_MuywndxFoCkSkocyz0P2JpLV8WgUQUYIY0STO1dR7ofFQIUmyKpfNmzcWliLH9oQOvVjlyagTUp3Y8bdmaNBCEbP3XZh-BclMQrJ_7MmYNdH_SiTTBsB9a1Roms0-0WsHZY3wOdK_E67Bb-AtrCNlFHJbXURMn2684VRiiTLqzveR1MGlR8MPMfphthA
2022-03-25 03:29:01
ClearAccessTokenFromRequest
Condition ran but did not log anything
2022-03-25 03:29:01 OUTGOING
fapi1-advanced-final-client-test-encrypted-idtoken
Response to HTTP request to test instance tpFJv42SUCfpENZ
outgoing_status_code
201
outgoing_headers
{
  "x-fapi-interaction-id": [
    "ab62fbfe-26d3-4820-bae8-5fcdf7fe08af"
  ],
  "Content-Type": [
    "application/jwt"
  ]
}
outgoing_body
eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwidHlwIjoiSldUIiwiYWxnIjoiUFMyNTYifQ.eyJhdWQiOiI3OTcxN2Q3MS0wY2Y0LTU4ZjYtYjJkMC0zNzBkNTQwNGQzODMiLCJkYXRhIjp7InByb3h5IjoiNTUxNTUxMTQ4NDUiLCJjb25zZW50SWQiOiJ1cm46Y29uZm9ybWFuY2U6b2lkZjpXdEdxTk1CcGYyIiwibG9jYWxJbnN0cnVtZW50IjoiRElDVCIsInBheW1lbnRJZCI6IjAzZGM3NDI1LWU5MWItNDcwMS1iY2M4LTA4ODlkOGFjNDA3NCIsImNyZWRpdG9yQWNjb3VudCI6eyJudW1iZXIiOiIxMDE3MzcyMiIsImFjY291bnRUeXBlIjoiQ0FDQyIsImlzcGIiOiI5Mjg5NDkyMiIsImlzc3VlciI6IjAwMDEifSwic3RhdHVzVXBkYXRlRGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjI5OjAxWiIsImNucGpJbml0aWF0b3IiOiIyMDc0NzQzNjAwMDE1NiIsInBheW1lbnQiOnsiYW1vdW50IjoiMS4xNSIsImN1cnJlbmN5IjoiQlJMIn0sImliZ2VUb3duQ29kZSI6IjUzMDAxMDgiLCJjcmVhdGlvbkRhdGVUaW1lIjoiMjAyMi0wMy0yNVQwMzoyOTowMVoiLCJzdGF0dXMiOiJBQ1NQIn0sIm1ldGEiOnsidG90YWxSZWNvcmRzIjoxLCJyZXF1ZXN0RGF0ZVRpbWUiOiIyMDIyLTAzLTI1VDAzOjI5OjAxWiIsInRvdGFsUGFnZXMiOjF9LCJpc3MiOiI3NGU5MjlkOS0zM2I2LTRkODUtOGJhNy1jMTQ2Yzg2N2E4MTciLCJsaW5rcyI6eyJzZWxmIjoiaHR0cHM6XC9cL3d3dy5jZXJ0aWZpY2F0aW9uLm9wZW5pZC5uZXRcL3Rlc3RcL2FcL3hwcGF5bWVudHNcL3YxXC9waXhcL3BheW1lbnRzIn0sImlhdCI6MTY0ODE3ODk0MSwianRpIjoiYzQ2N2ZhMzMtOGQxNy00YzdhLWJmNWItNjdmYzIzNDUyY2FiIn0.ExjOX8m1T2xkib-s5WfeNrVPl9PyyxKVdWfE9iegKuKR9NvHbVDw3ehmFbMoECxN-X6Vw_pcwhTcNYgJWUK14HKmafqJ2XFuPXudt4MQW18KO8EctG6GJ9JPQv-bWn6MoOWJWTvWyHhtRQ54ohqjM66bV_MuywndxFoCkSkocyz0P2JpLV8WgUQUYIY0STO1dR7ofFQIUmyKpfNmzcWliLH9oQOvVjlyagTUp3Y8bdmaNBCEbP3XZh-BclMQrJ_7MmYNdH_SiTTBsB9a1Roms0-0WsHZY3wOdK_E67Bb-AtrCNlFHJbXURMn2684VRiiTLqzveR1MGlR8MPMfphthA
outgoing_path
payments/v1/pix/payments
2022-03-25 03:29:01 FINISHED
fapi1-advanced-final-client-test-encrypted-idtoken
Test has run to completion
testmodule_result
PASSED
2022-03-25 03:29:03
TEST-RUNNER
Alias has now been claimed by another test
alias
xp
new_test_id
2EVeVsdUvDexR6p
Test Results