Test detail

Test Name	fapi1-advanced-final-client-test-invalid-null-alg
Variant	client_auth_type=mtls, fapi_jarm_type=oidc, fapi_auth_request_method=pushed, fapi_profile=openbanking_brazil, fapi_response_mode=plain_response
Test ID	8nVoOB5S0UFpPL7 https://www.certification.openid.net/log-detail.html?public=true&log=8nVoOB5S0UFpPL7
Created	2022-06-22T21:05:35.370454Z
Description	SumUp - Recepção de dados
Test Version	4.1.43
Test Owner	112635894686881875468 https://accounts.google.com
Plan ID	HeWWLoNCYjw96 https://www.certification.openid.net/plan-detail.html?public=true&plan=HeWWLoNCYjw96
Exported From	https://www.certification.openid.net
Exported By	110782487620937766860 https://accounts.google.com
Suite Version	4.1.44
Exported	2022-07-06 23:02:06 (UTC)

2022-06-22 21:05:35

(7) More

INFO

TEST-RUNNER

Test instance 8nVoOB5S0UFpPL7 created

baseUrl	https://www.certification.openid.net/test/a/sumup
variant	{ "client_auth_type": "mtls", "fapi_auth_request_method": "pushed", "fapi_profile": "openbanking_brazil", "fapi_jarm_type": "oidc", "fapi_response_mode": "plain_response" }
alias	sumup
description	SumUp - Recepção de dados
planId	HeWWLoNCYjw96
config	{ "alias": "sumup", "description": "SumUp - Recepção de dados", "server": { "jwks": { "keys": [ { "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc", "kty": "RSA", "alg": "PS256", "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00", "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q", "e": "AQAB", "use": "sig", "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM", "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg", "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE", "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk", "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w", "x5c": [ "MIIGqzCCBZOgAwIBAgIUdUCw8bQZidnZ6uERKJuN9u4RGvcwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwxFTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNBTkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMDgxNjA5NTUwMFoXDTIyMDkxNTA5NTUwMFowgacxCzAJBgNVBAYTAkJSMRMwEQYDVQQKEwpJQ1AtQnJhc2lsMS8wDAYDVQQLEwUxMjM0NTAOBgNVBAsTB2NlcnRtYW4wDwYDVQQLEwhhZ29vZG9uZTEcMBoGA1UEAxMTT3BlbiBCYW5raW5nIEJyYXNpbDE0MDIGCgmSJomT8ixkAQETJDc0ZTkyOWQ5LTMzYjYtNGQ4NS04YmE3LWMxNDZjODY3YTgxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyF1agPcwq5ms99Flo82XsXUroWoD/6FX4AfmOUu113h4VOLYaO3N8HDYbKxgii2En/+O61e/Ptjn4T2PVq0iVcqiF6Gp4sKE5w/bKZRfdCe8qIPS4D+JKpFpesJvIHUeQvlAuBp5dA9nGSpxOjGe5P2+ZzNGXwvux/2ztdweGmKbtOvbYe4RVhiu6bOubog8XEBmD96EnqmoROasH1Hn9kDJIclbTP51j/TlQMzhrSfJJuE3Qq6vWhe/DaPbtmELmlDiYHjp8CjAY5oBMHLmkHvQxEBV4cwbUZj5ZpdqU8tkA78XtR4DkzrJ4fYoBb1+9ABq6GNzxWPpSQMQuBXdsCAwEAAaOCAwIwggL+MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJwv7oHX2exZL304ru+4eGVypHlxMB8GA1UdIwQYMBaAFIZ/WK0X9YK2TrQFs/uwzhFD30y+MEwGCCsGAQUFBwEBBEAwPjA8BggrBgEFBQcwAYYwaHR0cDovL29jc3Auc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyMEsGA1UdHwREMEIwQKA+oDyGOmh0dHA6Ly9jcmwuc2FuZGJveC5wa2kub3BlbmJhbmtpbmdicmFzaWwub3JnLmJyL2lzc3Vlci5jcmwwXgYDVR0RBFcwVaAZBgVgTAEDAqAQDA5NaWNoYWVsIEZyYXNlcqAYBgVgTAEDA6APDA0xMzM1MzIzNjAwMTg5oA0GBWBMAQMEoAQMAm5voA8GBWBMAQMHoAYMBGFsb3QwDgYDVR0PAQH/BAQDAgbAMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QBMIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNvbGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBvdGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyByZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kgYW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRwOi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xpY2llczANBgkqhkiG9w0BAQsFAAOCAQEAtKn/QnJqKLp52YB14x+M21qwz67utFkWjhauQe0elXupjY5NWZb5wLrGYNOZQzRe2JRzcBbGN6P7lCweRfxMkSGh9YrXbrkBXLEPtLHpTVEy65v1tWl02lC+ooVPyQpSjAQL0L69OQ7s7rnIXyb3rkSUzuGSxsLU1AXpWj0oYFB4wdeIdPAVPs83frC5s4kz42JruSAE2vsbvQURTVPChh+hO6+R6Irz+ZEZ1NSgjQkxvOXHW53CkXZSjjHbAB/nbJYi7YyK7kck99r38Ba/WBfIfywdFVVYfiiW5TS6XbQeVeilmmt5MLxBz96FxR6E6WR+cQwybEe94Fb/jD6xHA\u003d\u003d" ] }, { "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic", "kty": "RSA", "alg": "RSA-OAEP", "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs", "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ", "e": "AQAB", "use": "enc", "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996", "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8", "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8", "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM", "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q" } ] } }, "client": { "client_id": "sumup-bank", "redirect_uri": "https://sumup.com.br/openfinance/callback", "jwks": { "keys": [ { "kty": "RSA", "use": "sig", "alg": "PS256", "n": "vfi_KOFqkbvsF-kMho2lMNJsPVh5BWf4Z33VOfDo-EuSDLq_H_2ufe5ECiz0izAUHWMhquUpJ93FhyaX3I1NH-D2uhtp-upvqYt5or_nhkSA6vsArk_o4LAZ8ORpI7YvSDOc7lUuovSq_OYhNSmaydY8NSRDb8yQLryn193wJKXa89RgpPnSXUFwlqf-louBiVBu8ybucINM9EC156F6P-pMywcIx9PPPsc3QpKAyINMqW9AHXO3uU6eS3x9w7OsUlDHX5DXcgZ7srjH0ZG4h3SJwg5gp10Q3PEPRVmmvZrS2w9lblwG89SVsP8Cn4OStHRo2VESTaF9ZMedgbcFxQ", "e": "AQAB", "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8" }, { "kty": "RSA", "use": "enc", "alg": "RSA-OAEP", "n": "x8sKZdmotzSivNjtFGrJx_d4OH34Waav5n68oQ1rI1IHSEkN7pmAW-9fMY78EAxeOjIxV-4dAegav0pQXdTJIMmHtBmqH-D6qIW1fIKguz5Pgt9CfqksWu4qRBlFVqu-LybUkFv6REaFhS5feDUXPz5trEMY4Raf5WScbzGDlSg7GZPAC-BwHOgEf4p_-uNx-w0Jnz1pmABI1liNf0w83Qh8ErwJAL_mqiAZp_uuPSjRv3NGxZp7sp1cnh26lkNKWeSNtVpe3jlRQq4-dg8DPncy86IusTr1WWmisKPA2l_Dua9Kclihn9LwixbGG5aIPBf69T_wBl656uo9VctXcQ", "e": "AQAB", "kid": "521d3af19082369cf0712ec56c83119f610fbcaa52a70295671fc313c401baa0" } ] }, "certificate": "-----BEGIN CERTIFICATE-----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\nzkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d\n-----END CERTIFICATE-----" }, "client2": { "client_id": "sumup-bank-two", "redirect_uri": "https://sumup.com.br/openfinance/callback", "id_token_encrypted_response_alg": "RSA-OAEP", "id_token_encrypted_response_enc": "A256GCM", "certificate": "-----BEGIN CERTIFICATE-----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\nMLBqZHnF++AW1bm7PMvLvS50MBcs73syLrF0Rn4pyswzd0vkByqtoA\u003d\u003d\n-----END CERTIFICATE-----", "jwks": { "keys": [ { "kty": "RSA", "use": "sig", "alg": "PS256", "n": "4oFR7ZAJbnop8oulyJOG6_eUuYDysT0-pODsky77kl27YRGlVRcwCW2S3McLsIEBImmpcqyix2NmTumFIbgSayRk-Q63eYXMtPx8g_PB0w6HahqHkc2xnAnKToxJ5buo9p43G9NG6j0Bitj_yYvficgCPB3mwh3eMhNFX7ZlEDOQt0J5WRlhyC48XrOJ6_AJFue5cO5eZUhXQ3n_S1dZew6h-bJmcskTj-eKxfGIPfd0BgSsgOxT1c42pVyACBCX77mukA-FajPgfwwCyBHDXg4miyj2-yDZZNmf6QMFgWdr_tAiJppHy_XOniOtTv4gQGTTZg95TQfMLPjNdD6Bsw", "e": "AQAB", "kid": "d519e0e6d08a3c7e10fca2a27ca37f9c83b823ba23e7a665b5f07d9b4a1a220b" }, { "kty": "RSA", "use": "enc", "alg": "RSA-OAEP", "n": "uQV_d-teq7OjXCDpkQUN7zDjrNMvlx1fTwSiz3vk3PlhYVJGwuvurBvlbh0MWG7iZTKv0LHebGyrbBNFhD6zVpGUYEfah2GV-4OjX1dFVoYF7OlFXvPv5q3vXj0wRFuHGzpX3sjJw1dgfOtY2tIirCXOF8Ahrz5peSXovyKYJCeiv2rbvheJ7WnR4uBmRkUdFI-p-B7jt8-jugqMEP5vZ1qfjMI5WSUBntKYZMVVG6eMEoIMTcQAbiEYhP53NWfmeVjvx0HlYpBYUTYzl4_OICJA5IPEdGTe5R1WVcC4W8IwDZ30FBFT6pmGxx3TXqmI0WvtnZAMQVUT_QAAdhevUQ", "e": "AQAB", "kid": "ee4d1fc97ea9012a907eb32dc4a3a98b099e834d8a932fc43a5a4f02c6787f1f" } ] } }, "directory": { "keystore": "https://keystore.sandbox.directory.openbankingbrasil.org.br/" } }
testName	fapi1-advanced-final-client-test-invalid-null-alg

2022-06-22 21:05:35

(3) More

SUCCESS

GenerateServerConfigurationMTLS

Created server configuration

server

{
  "issuer": "https://www.certification.openid.net/test/a/sumup/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo"
  }
}

issuer

https://www.certification.openid.net/test/a/sumup/

discoveryUrl

https://www.certification.openid.net/test/a/sumup/.well-known/openid-configuration

2022-06-22 21:05:35

(3) More

SUCCESS

LoadServerJWKs

Parsed public and private JWK sets

server_jwks

{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}

server_encryption_keys

{
  "keys": [
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}

server_public_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "alg": "RSA-OAEP",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}

2022-06-22 21:05:35	SUCCESS RFC7517-1.1	ValidateServerJWKs Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url

2022-06-22 21:05:35		SetServerSigningAlgToPS256 Successfully set signing algorithm to PS256

2022-06-22 21:05:35

(1) More

FAPIBrazilSetGrantTypesSupportedInServerConfiguration

Successfully set grant_types_supported

server

{
  "issuer": "https://www.certification.openid.net/test/a/sumup/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo"
  },
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ]
}

2022-06-22 21:05:35

(1) More

AddClaimsParameterSupportedTrueToServerConfiguration

Successfully added claims_parameter_supported to server configuration

server

{
  "issuer": "https://www.certification.openid.net/test/a/sumup/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo"
  },
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true
}

2022-06-22 21:05:35

(1) More

FAPIBrazilAddBrazilSpecificSettingsToServerConfiguration

Added open banking Brazil specific server settings

server

{
  "issuer": "https://www.certification.openid.net/test/a/sumup/",
  "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize",
  "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token",
  "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks",
  "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register",
  "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo",
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token",
    "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register",
    "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo"
  },
  "grant_types_supported": [
    "authorization_code",
    "implicit",
    "client_credentials",
    "refresh_token"
  ],
  "claims_parameter_supported": true,
  "request_object_encryption_alg_values_supported": [
    "RSA-OAEP"
  ],
  "request_object_encryption_enc_values_supported": [
    "A256GCM"
  ],
  "claims_supported": [
    "cpf",
    "cnpj",
    "acr"
  ],
  "acr_values_supported": [
    "urn:brasil:openbanking:loa2",
    "urn:brasil:openbanking:loa3"
  ],
  "request_object_signing_alg_values_supported": [
    "PS256"
  ],
  "scopes_supported": [
    "openid",
    "phone",
    "profile",
    "email",
    "address",
    "offline_access",
    "consents",
    "resources",
    "payments"
  ]
}

2022-06-22 21:05:35

(1) More

SUCCESS

AddIdTokenSigningAlgsToServerConfiguration

Added 'id_token_signing_alg_values_supported' to server metadata as 'alg' from server jwks

value

[
  "PS256"
]

2022-06-22 21:05:35	SUCCESS FAPI2-4.3.1-9	AddTlsCertificateBoundAccessTokensTrueSupportedToServerConfiguration Added 'tls_client_certificate_bound_access_tokens' as 'true' to server metadata

2022-06-22 21:05:35	SUCCESS	AddTLSClientAuthToServerConfiguration Added tls_client_auth for token_endpoint_auth_methods_supported

2022-06-22 21:05:35

(1) More

AddPushedAuthorizationRequestEndpointToServerConfig

Added pushed_authorization_request_endpoint to server configuration

endpoint

https://www.certification.openid.net/test/a/sumup/par

2022-06-22 21:05:35

(1) More

AddRequirePushedAuthorizationRequestsToServerConfig

Added require_pushed_authorization_requests to server configuration

value

true

2022-06-22 21:05:35

(1) More

SUCCESS

FAPI1-ADV-5.2.2-2

AddResponseTypeCodeIdTokenToServerConfiguration

Added code id_token as response type supported

response_types_supported

[
  "code id_token"
]

2022-06-22 21:05:35

(1) More

SUCCESS

FAPIBrazilAddTokenEndpointAuthSigningAlgValuesSupportedToServer

Set token_endpoint_auth_signing_alg_values_supported

values

[
  "PS256"
]

2022-06-22 21:05:35

(1) More

SUCCESS

CheckServerConfiguration

Found required server configuration keys

required

[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]

2022-06-22 21:05:35

(1) More

SUCCESS

FAPI1-BASE-5.2.2-6 FAPI1-BASE-5.2.2-5

FAPIEnsureMinimumServerKeyLength

Validated minimum key lengths for server_jwks

server_jwks

{
  "keys": [
    {
      "d": "ZvivfZxJMbbdTQmxyE0lmE6ZuH8cMQOLyZxdaA5pNwm7ZEnPBEftZs8aR9ijhCDWMieui3h--rXwlXqbEm3g1sVgQ-WKTFV-NLKaJC1h-EU5HKdlOflstr7x57zhKp60ZIK69GyEXyJccUfzcD32u8raec9NplQ2MqS5MA1lnQFlocFoX1RNU4tSpEdJQq2UzqtX5WPhc88A6fTc1xu2fA5wyxzZu7fUjIETzLimcu-dDaEvvgm7c_A1ulm8EQuCN10k3FrIIe9RfuXHyxh9Rcd0aiIP9qwitxd5Cl0io7zby8MBIAaSei2co7y4tciBt4AfnzpBlGbtjgfr2gxD0Q",
      "e": "AQAB",
      "use": "sig",
      "kid": "X5d4vFYfLxaG1gg8_l3bFYFhUaUVmE6PaEsRWX2EYqM",
      "x5c": [
        "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\u003d\u003d"
      ],
      "dp": "bQ9aXj8tHnj0qO8aAWapGokWX78OlvNzytYg4JSGyJ7pUQnRB4Ds2Lai6kgjniUiu5MX2kdceDbHykG5R-WDj0Ztv6UPV3jA3cOjDwVzwmiwBVmVQNRxzK31Ra8f4YJs9_o0bjmVvXQRchY9l9_Xkk_Hev2F2A540Fhk0tlbUBE",
      "dq": "XPYDZ_kxwZjtQb-XUBLBcvNV1jcDhba2stysXGv0SfvsxOg6G3qZ5xtsiyQxzAYen0LRttCBXkZXEtXXAodLRvJMwUXuYWtNCrBqxYDHkJogUDPnBXq-Hig6x8fsDJunH8JooCc-3WcFpHQcIZZdcwyXPVi59eAfWCwJlgHYYHk",
      "n": "3IXVqA9zCrmaz30WWjzZexdSuhagP_oVfgB-Y5S7XXeHhU4tho7c3wcNhsrGCKLYSf_47rV78-2OfhPY9WrSJVyqIXoaniwoTnD9splF90J7yog9LgP4kqkWl6wm8gdR5C-UC4Gnl0D2cZKnE6MZ7k_b5nM0ZfC-7H_bO13B4aYpu069th7hFWGK7ps65uiDxcQGYP3oSeqahE5qwfUef2QMkhyVtM_nWP9OVAzOGtJ8km4TdCrq9aF78No9u2YQuaUOJgeOnwKMBjmgEwcuaQe9DEQFXhzBtRmPlml2pTy2QDvxe1HgOTOsnh9igFvX70AGroY3PFY-lJAxC4Fd2w",
      "p": "_QaFFuyZriEWtbiKexy7pIYicgU0ePMepvyNuiiFqlsUFQ24q9gp_iWECDhi8qqss__i1LW_eHQATKWfqUc6HdDY-ickJXvVktrQiT-buvJ24iTtK_NooPMKQW976NIX39_sEPJ6ceo9ZDFxTTCkmJus3eXDJmRZT2YzSZJcvcc",
      "kty": "RSA",
      "q": "3x1_dyovnWXSr7y7ufe6AHUV0kHBYVrGW2vdNZxKrrgBW5r2mm93NnHsrG-mJlzW7kG_jR41bWf74sucGdwXTx96riRVy8bov9SzPCDl9_QCHzPpqZOxjngfzQYq1L1qJA2BAie0Sq6YZhgLJ1fWPLutEO5soIYAkLXSJ9IVb00",
      "qi": "eHhOb5NUDfMGXwNscjEcMrMFS425qsoJAXfGJ10hm8svZOkNYgVpb7Hs7oT8XytanRl0Gk8gKH0yhvya65B5ipyby17uBMkikNN-EeYoY2AkvEfM_nO0dvHbDdF11rkM5Q_SEDlGmojxnx4_Euj8WeuSgcwiCQkR23aZlQGx1Mg",
      "alg": "PS256"
    },
    {
      "p": "6-RGunw1LGXpsGIabzcG8n_ITbahS9waTzjcwLkzjWjyR5hxnTSrCMas9EsOuIt3qvkdf02psgwi-J0ZX680ujaXdeiPAeuOUbsLPBOhRuu-ySXxMTT7uiwWJmF5LtBx8Qd3hRV2sd9zOhYzSohcmWp8w_uKTOYrFzGtWMvlGic",
      "kty": "RSA",
      "q": "vn3cUU9RFc7pB3fjiEPGwYGA_h8f2X6dOqy-JYIMIiuYhPq6cT8xIlE-sHs58kZzC1QbOBc4y-qRyqj1L4StPaYH4mtJU0s_6A_b9Cai96yzYYmMr92be2nCFMxBpmpBhN21AIdGc640OxgWMdz5OVo455v1uIEQGPr2aDpOzVs",
      "d": "QrIJ9tPG7pSrt1KKSU-9EbAq-hU92FzEV9GwzuG_dbBPyRLYNVfAz-Yb8ug3YLuqec_kcB5JCep7QkYHgpNdX5WXFxARCpXa-J7Xq50oBdiAS2ehLpnYHXpJI7HqOcH9ASZML_MXjI8e_EpsI7Yk6xJ9qxk8bXGupw0C6anwL3NBe232zA7I1FnwL9tpZVOLPupeok7HMRbFc6QSR3dA54zJmkyEbyOSqzRqCK_g7AB_RcMImN0SoCg0epxZjrculIXPG0Gl1T3TG3WY-CBUtAkI1chFMGCgYF_v-FMSun8N6igilPC5O683BMcJoTK745khMCv7FcSCSFVh0H5vKQ",
      "e": "AQAB",
      "use": "enc",
      "kid": "0fe502dd-14f0-4f45-80f9-feb9a216f996",
      "qi": "W6TMI3L-Ob-Jx61TdYqN5gBoBsWF6KWuCmiE9ZiwJiMVCv5ddEbFafBuiIQgRnby1VpnH9j5KVb5PT_V78ohKFmpfL7ErXQerf_pJkEtvgK9lQta1EM1HMoShrJ4GdHPym_BZzDDmt6njvwTfSg95y28h-j5epuywcwu6TwAUA8",
      "dp": "a9rjD-8srNEoKVKhvYoObiBI6GeBllrb2K8qGCBV1ulOJbgo8nUbYpbci5Ip9-0k2RKwDv3mghcUglHqQRqt5BqD5BBiGsGmP-5is6RSEEhH4lar0hDkq_nuYrwcmXALOOZuGnZ239tIJx3xc7mnhSnwQ_emA4UV3LQFC12mse8",
      "alg": "RSA-OAEP",
      "dq": "Qk8TiyY-BoZg7Z2ZEYzuOdu3qD3zW0VMu-j3w5yyVo6wZ9HTZqplkxmO5eXvNNu7Hj1nwC2tMqZzm4UW3DSmDWinI_TOsHToSQKEQUfVwLtYMeKsm2dbwSj-SzkSvTgNmI-IeyebqZcBTXTD_RV7l7BFULIkZdZfYSKy9XMejTM",
      "n": "r4dl-ApW6c-fvDbfSVxHpdV8zi8VQW4b9-uHMRq7dzqCkvP8OAG1R3plSr1N6fL_YLiIr9y621XkyRiMEKR7-DeqGsLf2ZTaqrZ1LfYgjsc2i9o3NSOeSgBwKGmT7h1OgxZSbhLzo7Xaktu3CCUZCOWLzs7LKo_CvKkcTF7tPhK9jYjdTsdsnS0RJOPjYQe7JO83Mvhd1Ty3F-Qycd-cKKMSjcQRiHt9jKd09kA2fKVlFwbm2M1PM3NdtnMaOUw31-XC4ixay47XTMqnmX7-op7qYV9wXbeZmjTsAKFuTGwJiGJrOTfqciDLBW8IpGC2BzFJ5rYmRu0kAttpvkOG3Q"
    }
  ]
}

2022-06-22 21:05:35

(1) More

SUCCESS

LoadUserInfo

Added user information

user_info

{
  "sub": "user-subject-1234531",
  "name": "Demo T. User",
  "email": "user@example.com",
  "email_verified": false
}

Verify configuration of first client

2022-06-22 21:05:35

(4) More

SUCCESS

GetStaticClientConfiguration

Found a static client object

client_id	sumup-bank
redirect_uri	https://sumup.com.br/openfinance/callback
jwks	{ "keys": [ { "kty": "RSA", "use": "sig", "alg": "PS256", "n": "vfi_KOFqkbvsF-kMho2lMNJsPVh5BWf4Z33VOfDo-EuSDLq_H_2ufe5ECiz0izAUHWMhquUpJ93FhyaX3I1NH-D2uhtp-upvqYt5or_nhkSA6vsArk_o4LAZ8ORpI7YvSDOc7lUuovSq_OYhNSmaydY8NSRDb8yQLryn193wJKXa89RgpPnSXUFwlqf-louBiVBu8ybucINM9EC156F6P-pMywcIx9PPPsc3QpKAyINMqW9AHXO3uU6eS3x9w7OsUlDHX5DXcgZ7srjH0ZG4h3SJwg5gp10Q3PEPRVmmvZrS2w9lblwG89SVsP8Cn4OStHRo2VESTaF9ZMedgbcFxQ", "e": "AQAB", "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8" }, { "kty": "RSA", "use": "enc", "alg": "RSA-OAEP", "n": "x8sKZdmotzSivNjtFGrJx_d4OH34Waav5n68oQ1rI1IHSEkN7pmAW-9fMY78EAxeOjIxV-4dAegav0pQXdTJIMmHtBmqH-D6qIW1fIKguz5Pgt9CfqksWu4qRBlFVqu-LybUkFv6REaFhS5feDUXPz5trEMY4Raf5WScbzGDlSg7GZPAC-BwHOgEf4p_-uNx-w0Jnz1pmABI1liNf0w83Qh8ErwJAL_mqiAZp_uuPSjRv3NGxZp7sp1cnh26lkNKWeSNtVpe3jlRQq4-dg8DPncy86IusTr1WWmisKPA2l_Dua9Kclihn9LwixbGG5aIPBf69T_wBl656uo9VctXcQ", "e": "AQAB", "kid": "521d3af19082369cf0712ec56c83119f610fbcaa52a70295671fc313c401baa0" } ] }
certificate	-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA== -----END CERTIFICATE-----

2022-06-22 21:05:35	SUCCESS RFC7517-1.1	ValidateClientJWKsPublicPart Valid client JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url

2022-06-22 21:05:35

(2) More

SUCCESS

ExtractJWKsFromStaticClientConfiguration

Extracted client JWK

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "vfi_KOFqkbvsF-kMho2lMNJsPVh5BWf4Z33VOfDo-EuSDLq_H_2ufe5ECiz0izAUHWMhquUpJ93FhyaX3I1NH-D2uhtp-upvqYt5or_nhkSA6vsArk_o4LAZ8ORpI7YvSDOc7lUuovSq_OYhNSmaydY8NSRDb8yQLryn193wJKXa89RgpPnSXUFwlqf-louBiVBu8ybucINM9EC156F6P-pMywcIx9PPPsc3QpKAyINMqW9AHXO3uU6eS3x9w7OsUlDHX5DXcgZ7srjH0ZG4h3SJwg5gp10Q3PEPRVmmvZrS2w9lblwG89SVsP8Cn4OStHRo2VESTaF9ZMedgbcFxQ",
      "e": "AQAB",
      "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "x8sKZdmotzSivNjtFGrJx_d4OH34Waav5n68oQ1rI1IHSEkN7pmAW-9fMY78EAxeOjIxV-4dAegav0pQXdTJIMmHtBmqH-D6qIW1fIKguz5Pgt9CfqksWu4qRBlFVqu-LybUkFv6REaFhS5feDUXPz5trEMY4Raf5WScbzGDlSg7GZPAC-BwHOgEf4p_-uNx-w0Jnz1pmABI1liNf0w83Qh8ErwJAL_mqiAZp_uuPSjRv3NGxZp7sp1cnh26lkNKWeSNtVpe3jlRQq4-dg8DPncy86IusTr1WWmisKPA2l_Dua9Kclihn9LwixbGG5aIPBf69T_wBl656uo9VctXcQ",
      "e": "AQAB",
      "kid": "521d3af19082369cf0712ec56c83119f610fbcaa52a70295671fc313c401baa0"
    }
  ]
}

public_client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8",
      "alg": "PS256",
      "n": "vfi_KOFqkbvsF-kMho2lMNJsPVh5BWf4Z33VOfDo-EuSDLq_H_2ufe5ECiz0izAUHWMhquUpJ93FhyaX3I1NH-D2uhtp-upvqYt5or_nhkSA6vsArk_o4LAZ8ORpI7YvSDOc7lUuovSq_OYhNSmaydY8NSRDb8yQLryn193wJKXa89RgpPnSXUFwlqf-louBiVBu8ybucINM9EC156F6P-pMywcIx9PPPsc3QpKAyINMqW9AHXO3uU6eS3x9w7OsUlDHX5DXcgZ7srjH0ZG4h3SJwg5gp10Q3PEPRVmmvZrS2w9lblwG89SVsP8Cn4OStHRo2VESTaF9ZMedgbcFxQ"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "521d3af19082369cf0712ec56c83119f610fbcaa52a70295671fc313c401baa0",
      "alg": "RSA-OAEP",
      "n": "x8sKZdmotzSivNjtFGrJx_d4OH34Waav5n68oQ1rI1IHSEkN7pmAW-9fMY78EAxeOjIxV-4dAegav0pQXdTJIMmHtBmqH-D6qIW1fIKguz5Pgt9CfqksWu4qRBlFVqu-LybUkFv6REaFhS5feDUXPz5trEMY4Raf5WScbzGDlSg7GZPAC-BwHOgEf4p_-uNx-w0Jnz1pmABI1liNf0w83Qh8ErwJAL_mqiAZp_uuPSjRv3NGxZp7sp1cnh26lkNKWeSNtVpe3jlRQq4-dg8DPncy86IusTr1WWmisKPA2l_Dua9Kclihn9LwixbGG5aIPBf69T_wBl656uo9VctXcQ"
    }
  ]
}

2022-06-22 21:05:35

(1) More

SUCCESS

RFC7517-4.5

CheckDistinctKeyIdValueInClientJWKs

Distinct 'kid' value in all keys of client_jwks

see	https://bitbucket.org/openid/connect/issues/1127

2022-06-22 21:05:35	SUCCESS	EnsureClientJwksDoesNotContainPrivateOrSymmetricKeys Jwks does not contain any private or symmetric keys

2022-06-22 21:05:35

(1) More

SUCCESS

FAPI1-BASE-5.2.4-3 FAPI1-BASE-5.2.4-2

FAPIEnsureMinimumClientKeyLength

Validated minimum key lengths for client_jwks

client_jwks

{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "alg": "PS256",
      "n": "vfi_KOFqkbvsF-kMho2lMNJsPVh5BWf4Z33VOfDo-EuSDLq_H_2ufe5ECiz0izAUHWMhquUpJ93FhyaX3I1NH-D2uhtp-upvqYt5or_nhkSA6vsArk_o4LAZ8ORpI7YvSDOc7lUuovSq_OYhNSmaydY8NSRDb8yQLryn193wJKXa89RgpPnSXUFwlqf-louBiVBu8ybucINM9EC156F6P-pMywcIx9PPPsc3QpKAyINMqW9AHXO3uU6eS3x9w7OsUlDHX5DXcgZ7srjH0ZG4h3SJwg5gp10Q3PEPRVmmvZrS2w9lblwG89SVsP8Cn4OStHRo2VESTaF9ZMedgbcFxQ",
      "e": "AQAB",
      "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8"
    },
    {
      "kty": "RSA",
      "use": "enc",
      "alg": "RSA-OAEP",
      "n": "x8sKZdmotzSivNjtFGrJx_d4OH34Waav5n68oQ1rI1IHSEkN7pmAW-9fMY78EAxeOjIxV-4dAegav0pQXdTJIMmHtBmqH-D6qIW1fIKguz5Pgt9CfqksWu4qRBlFVqu-LybUkFv6REaFhS5feDUXPz5trEMY4Raf5WScbzGDlSg7GZPAC-BwHOgEf4p_-uNx-w0Jnz1pmABI1liNf0w83Qh8ErwJAL_mqiAZp_uuPSjRv3NGxZp7sp1cnh26lkNKWeSNtVpe3jlRQq4-dg8DPncy86IusTr1WWmisKPA2l_Dua9Kclihn9LwixbGG5aIPBf69T_wBl656uo9VctXcQ",
      "e": "AQAB",
      "kid": "521d3af19082369cf0712ec56c83119f610fbcaa52a70295671fc313c401baa0"
    }
  ]
}

2022-06-22 21:05:35		fapi1-advanced-final-client-test-invalid-null-alg Setup Done

2022-06-22 21:05:36

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test/a/sumup/.well-known/openid-configuration

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)", "accept": "application/json", "accept-encoding": "gzip, deflate, br", "connection": "close" }
incoming_path	/test/a/sumup/.well-known/openid-configuration
incoming_body_form_params
incoming_method	GET
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{}
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2022-06-22 21:05:36

(2) More

SUCCESS

FAPI1-ADV-8.5 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

2022-06-22 21:05:36

(4) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing_status_code	200
outgoing_headers	{}
outgoing_body	{ "issuer": "https://www.certification.openid.net/test/a/sumup/", "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize", "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token", "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks", "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register", "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo", "mtls_endpoint_aliases": { "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token", "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register", "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo", "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/par" }, "grant_types_supported": [ "authorization_code", "implicit", "client_credentials", "refresh_token" ], "claims_parameter_supported": true, "request_object_encryption_alg_values_supported": [ "RSA-OAEP" ], "request_object_encryption_enc_values_supported": [ "A256GCM" ], "claims_supported": [ "cpf", "cnpj", "acr" ], "acr_values_supported": [ "urn:brasil:openbanking:loa2", "urn:brasil:openbanking:loa3" ], "request_object_signing_alg_values_supported": [ "PS256" ], "scopes_supported": [ "openid", "phone", "profile", "email", "address", "offline_access", "consents", "resources", "payments" ], "id_token_signing_alg_values_supported": [ "PS256" ], "tls_client_certificate_bound_access_tokens": true, "token_endpoint_auth_methods_supported": [ "tls_client_auth" ], "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sumup/par", "require_pushed_authorization_requests": true, "response_types_supported": [ "code id_token" ], "token_endpoint_auth_signing_alg_values_supported": [ "PS256" ] }
outgoing_path	.well-known/openid-configuration

2022-06-22 21:05:37

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test-mtls/a/sumup/token

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)", "accept": "application/json", "content-type": "application/x-www-form-urlencoded", "accept-encoding": "gzip, deflate, br", "connection": "close", "content-length": "65" }
incoming_path	/test-mtls/a/sumup/token
incoming_body_form_params	{ "grant_type": "client_credentials", "scope": "consents", "client_id": "sumup-bank" }
incoming_method	POST
incoming_tls_version	TLSv1.2
incoming_tls_cert	-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA== -----END CERTIFICATE-----
incoming_query_string_params	{}
incoming_body	grant_type=client_credentials&scope=consents&client_id=sumup-bank
incoming_tls_chain	[ "(null)", "(null)", "(null)", "(null)", "(null)", "(null)" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-8.5-1 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

Token endpoint

2022-06-22 21:05:37

(1) More

SUCCESS

RFC6749-3.2.1

CheckClientIdMatchesOnTokenRequestIfPresent

Extracted client_id matches the expected value

client_id

sumup-bank

2022-06-22 21:05:37

(1) More

SUCCESS

ExtractClientCertificateFromTokenEndpointRequestHeaders

Extracted client certificate

client_certificate

{
  "cert": "-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d4be194d5-127c-45f3-bdc2-664edf9e42b4,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3337323431323330303030313532,CN\u003dsumup.com.br,OU\u003d50b67cd8-5f86-5f81-99b5-af83dae25c74,O\u003dSUMUP SCD S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "sumup.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}

2022-06-22 21:05:37	SUCCESS FAPI1-ADV-5.2.2-5	CheckForClientCertificate Found client certificate

2022-06-22 21:05:37

(1) More

SUCCESS

EnsureClientCertificateMatches

Presented certificate matches registered certificate

actual

2022-06-22 21:05:37	SUCCESS RFC8705-2	EnsureClientIdIsPresentOnTokenRequest Parameter client_id found on the request

2022-06-22 21:05:37	SUCCESS	EnsureNoClientAssertionSentToTokenEndpoint Client did not send a client_assertion to token endpoint

2022-06-22 21:05:37

(2) More

SUCCESS

FAPIBrazilExtractRequestedScopeFromClientCredentialsGrant

Found 'consents' scope in request

actual	[ "consents" ]
expected	consents

2022-06-22 21:05:37

(1) More

SUCCESS

GenerateBearerAccessToken

Generated access token

access_token

89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S

2022-06-22 21:05:37

(2) More

SUCCESS

CreateTokenEndpointResponse

Created token endpoint response

access_token	89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S
token_type	Bearer

2022-06-22 21:05:37		CopyAccessTokenToClientCredentialsField Condition ran but did not log anything

2022-06-22 21:05:37

(4) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing_status_code	200
outgoing_headers	{}
outgoing_body	{ "access_token": "89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S", "token_type": "Bearer" }
outgoing_path	token

2022-06-22 21:05:37

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test-mtls/a/sumup/consents/v1/consents

incoming_headers	{ "host": "www.certification.openid.net", "accept": "application/json, text/plain, /", "content-type": "application/json", "authorization": "Bearer 89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S", "user-agent": "axios/0.24.0", "connection": "close", "content-length": "1174" }
incoming_path	/test-mtls/a/sumup/consents/v1/consents
incoming_body_form_params
incoming_method	POST
incoming_tls_version	TLSv1.2
incoming_tls_cert	-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA== -----END CERTIFICATE-----
incoming_query_string_params	{}
incoming_body	{"data":{"loggedUser":{"document":{"identification":"57784518064","rel":"CPF"}},"permissions":["ACCOUNTS_READ","ACCOUNTS_OVERDRAFT_LIMITS_READ","ACCOUNTS_BALANCES_READ","ACCOUNTS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_READ","CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ","CREDIT_CARDS_ACCOUNTS_LIMITS_READ","CREDIT_CARDS_ACCOUNTS_READ","CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ","CUSTOMERS_PERSONAL_ADITTIONALINFO_READ","CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ","LOANS_READ","LOANS_WARRANTIES_READ","LOANS_SCHEDULED_INSTALMENTS_READ","LOANS_PAYMENTS_READ","FINANCINGS_READ","FINANCINGS_WARRANTIES_READ","FINANCINGS_SCHEDULED_INSTALMENTS_READ","FINANCINGS_PAYMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ","UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ","INVOICE_FINANCINGS_READ","INVOICE_FINANCINGS_WARRANTIES_READ","INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ","INVOICE_FINANCINGS_PAYMENTS_READ","RESOURCES_READ"],"expirationDateTime":"2021-12-31T00:00:00Z","transactionFromDateTime":"2021-08-10T00:00:00Z","transactionToDateTime":"2021-12-31T23:59:59Z"}}
incoming_tls_chain	[ "(null)", "(null)", "(null)", "(null)", "(null)", "(null)" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json	{ "data": { "loggedUser": { "document": { "identification": "57784518064", "rel": "CPF" } }, "permissions": [ "ACCOUNTS_READ", "ACCOUNTS_OVERDRAFT_LIMITS_READ", "ACCOUNTS_BALANCES_READ", "ACCOUNTS_TRANSACTIONS_READ", "CREDIT_CARDS_ACCOUNTS_BILLS_READ", "CREDIT_CARDS_ACCOUNTS_BILLS_TRANSACTIONS_READ", "CREDIT_CARDS_ACCOUNTS_LIMITS_READ", "CREDIT_CARDS_ACCOUNTS_READ", "CREDIT_CARDS_ACCOUNTS_TRANSACTIONS_READ", "CUSTOMERS_PERSONAL_ADITTIONALINFO_READ", "CUSTOMERS_PERSONAL_IDENTIFICATIONS_READ", "LOANS_READ", "LOANS_WARRANTIES_READ", "LOANS_SCHEDULED_INSTALMENTS_READ", "LOANS_PAYMENTS_READ", "FINANCINGS_READ", "FINANCINGS_WARRANTIES_READ", "FINANCINGS_SCHEDULED_INSTALMENTS_READ", "FINANCINGS_PAYMENTS_READ", "UNARRANGED_ACCOUNTS_OVERDRAFT_READ", "UNARRANGED_ACCOUNTS_OVERDRAFT_WARRANTIES_READ", "UNARRANGED_ACCOUNTS_OVERDRAFT_SCHEDULED_INSTALMENTS_READ", "UNARRANGED_ACCOUNTS_OVERDRAFT_PAYMENTS_READ", "INVOICE_FINANCINGS_READ", "INVOICE_FINANCINGS_WARRANTIES_READ", "INVOICE_FINANCINGS_SCHEDULED_INSTALMENTS_READ", "INVOICE_FINANCINGS_PAYMENTS_READ", "RESOURCES_READ" ], "expirationDateTime": "2021-12-31T00:00:00Z", "transactionFromDateTime": "2021-08-10T00:00:00Z", "transactionToDateTime": "2021-12-31T23:59:59Z" } }

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-8.5-1 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

New consent endpoint

2022-06-22 21:05:37

(1) More

SUCCESS

ExtractClientCertificateFromTokenEndpointRequestHeaders

Extracted client certificate

client_certificate

{
  "cert": "-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d4be194d5-127c-45f3-bdc2-664edf9e42b4,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3337323431323330303030313532,CN\u003dsumup.com.br,OU\u003d50b67cd8-5f86-5f81-99b5-af83dae25c74,O\u003dSUMUP SCD S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "sumup.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}

2022-06-22 21:05:37	SUCCESS FAPI1-ADV-5.2.2-5	CheckForClientCertificate Found client certificate

2022-06-22 21:05:37

(1) More

SUCCESS

EnsureClientCertificateMatches

Presented certificate matches registered certificate

actual

2022-06-22 21:05:37	SUCCESS	EnsureIncomingRequestMethodIsPost Client correctly used http POST method

2022-06-22 21:05:37	SUCCESS FAPI1-BASE-6.2.2-1	EnsureBearerAccessTokenNotInParams Client correctly did not send access token in query parameters or form body

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-BASE-6.2.2-1

ExtractBearerAccessTokenFromHeader

Found access token on incoming request

access_token

89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S

2022-06-22 21:05:37

(1) More

SUCCESS

RequireBearerClientCredentialsAccessToken

Found access token in request

actual

89HKCm3WXPQFnWmA1VsfVPLJmUPoBy4hUrjBOi1uZ6ySjjla9S

2022-06-22 21:05:37

(3) More

INFO

FAPI1-BASE-6.2.2-3

ExtractFapiDateHeader

Skipped evaluation due to missing required element: incoming_request headers.x-fapi-auth-date

path	headers.x-fapi-auth-date
mapped
object	incoming_request

2022-06-22 21:05:37

(3) More

INFO

FAPI1-BASE-6.2.2-4

ExtractFapiIpAddressHeader

Skipped evaluation due to missing required element: incoming_request headers.x-fapi-customer-ip-address

path	headers.x-fapi-customer-ip-address
mapped
object	incoming_request

2022-06-22 21:05:37

(3) More

INFO

FAPI1-BASE-6.2.2-5

ExtractFapiInteractionIdHeader

Skipped evaluation due to missing required element: incoming_request headers.x-fapi-interaction-id

path	headers.x-fapi-interaction-id
mapped
object	incoming_request

2022-06-22 21:05:37

(1) More

SUCCESS

FAPIBrazilEnsureClientCredentialsScopeContainedConsents

The token request which was used to obtain the access token contained 'consents' scope

actual

[
  "consents"
]

2022-06-22 21:05:37		FAPIBrazilExtractConsentRequest Condition ran but did not log anything

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-BASE-6.2.1-11

CreateFapiInteractionIdIfNeeded

Created new FAPI interaction ID

fapi_interaction_id

f6335606-fb9f-46d8-861e-73c01d5f593d

2022-06-22 21:05:37

(3) More

SUCCESS

BrazilOB-5.2.2.2

FAPIBrazilGenerateNewConsentResponse

Created consent response

headers

{
  "x-fapi-interaction-id": "f6335606-fb9f-46d8-861e-73c01d5f593d"
}

consentId

urn:conformance:oidf:Yg7wJplIF1

consent_response

{
  "data": {
    "consentId": "urn:conformance:oidf:Yg7wJplIF1",
    "creationDateTime": "2022-06-22T21:05:37Z",
    "status": "AWAITING_AUTHORISATION",
    "statusUpdateDateTime": "2022-06-22T21:05:37Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-06-22T23:05:37Z",
    "transactionFromDateTime": "2022-06-22T21:00:37Z",
    "transactionToDateTime": "2022-06-22T23:05:37Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/sumupconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-06-22T21:05:37Z"
  }
}

2022-06-22 21:05:37		ClearAccessTokenFromRequest Removed incoming access token from environment

2022-06-22 21:05:37

(4) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing_status_code	201
outgoing_headers	{ "x-fapi-interaction-id": [ "f6335606-fb9f-46d8-861e-73c01d5f593d" ] }
outgoing_body	{ "data": { "consentId": "urn:conformance:oidf:Yg7wJplIF1", "creationDateTime": "2022-06-22T21:05:37Z", "status": "AWAITING_AUTHORISATION", "statusUpdateDateTime": "2022-06-22T21:05:37Z", "permissions": [ "ACCOUNTS_READ", "ACCOUNTS_BALANCES_READ", "RESOURCES_READ" ], "expirationDateTime": "2022-06-22T23:05:37Z", "transactionFromDateTime": "2022-06-22T21:00:37Z", "transactionToDateTime": "2022-06-22T23:05:37Z", "links": { "self": "https://www.certification.openid.net/test/a/sumupconsents/v1/consents" } }, "meta": { "totalRecords": 1, "totalPages": 1, "requestDateTime": "2022-06-22T21:05:37Z" } }
outgoing_path	consents/v1/consents

2022-06-22 21:05:37

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test-mtls/a/sumup/par

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)", "accept": "application/json", "content-type": "application/x-www-form-urlencoded", "accept-encoding": "gzip, deflate, br", "connection": "close", "content-length": "1456" }
incoming_path	/test-mtls/a/sumup/par
incoming_body_form_params	{ "request": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI5MjE2NzA1MGZjOTk0OTA0ZDFlMTE2NTE2YTczYTUxNDdmODc2MzgxMmM1Y2JhYWI0ZDE3YzY0YmQ1MTk2NmQ4In0.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.eFH7bO9Bxbc6ol-NnliWaH8C7VCC-8_Rfsg0D0RarGQa2bJOWatf_Mizko4HnXscl-9vQOUsl7IQU4v4tq8CvE9fmWGhl4S3nHdhFLExc2SBxMT1VMjEeqV6lEjIZER8j2ILauHuxGN-rM6sizzX5Cms3Wc18zpBtn2Ur6rQDGJOc8GC5POLDnSKOixPtxNzxa409KC5nGei9S7rYx54b4PiGxqNWMZnFMYGBG_igkOBM3XLVV5tc4O5ZBkHf4DFETsOkEpeC9PtcP4ua2dQO0l-5p36PwYJkliGzKsZVPqiF9J6ICwYu179nD6i97naoN7h7evN0LbplX5LZOhAtQ", "client_id": "sumup-bank" }
incoming_method	POST
incoming_tls_version	TLSv1.2
incoming_tls_cert	-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA== -----END CERTIFICATE-----
incoming_query_string_params	{}
incoming_body	request=eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI5MjE2NzA1MGZjOTk0OTA0ZDFlMTE2NTE2YTczYTUxNDdmODc2MzgxMmM1Y2JhYWI0ZDE3YzY0YmQ1MTk2NmQ4In0.eyJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJzdGF0ZSI6IjJyLTZwQW8tei1XcmtjX0JNbmdNUGl3UzQ0UHZtTm81Wkp4UzM1T2lvTDgiLCJzY29wZSI6Im9wZW5pZCBjb25zZW50OnVybjpjb25mb3JtYW5jZTpvaWRmOllnN3dKcGxJRjEgYWNjb3VudHMgcmVzb3VyY2VzIiwicmVzcG9uc2VfdHlwZSI6ImNvZGUgaWRfdG9rZW4iLCJyZWRpcmVjdF91cmkiOiJodHRwczovL3N1bXVwLmNvbS5ici9vcGVuZmluYW5jZS9jYWxsYmFjayIsImNsYWltcyI6eyJpZF90b2tlbiI6eyJhY3IiOnsidmFsdWVzIjpbInVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMiIsInVybjpicmFzaWw6b3BlbmJhbmtpbmc6bG9hMyJdLCJlc3NlbnRpYWwiOnRydWV9fX0sImNvZGVfY2hhbGxlbmdlIjoiczlYa1hJLUJmbndpOUI5UllTTExuWlpzalpQV1pJS09xVllfU1BSUDBFbyIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJpc3MiOiJzdW11cC1iYW5rIiwiYXVkIjoiaHR0cHM6Ly93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0L3Rlc3QvYS9zdW11cC8iLCJjbGllbnRfaWQiOiJzdW11cC1iYW5rIiwianRpIjoiRzB2R29UeW5xM1B2amtLeTN1M1BiZlpNZ3Fia1lrcTZndThtMTJNM255TSIsImlhdCI6MTY1NTkzMTkzNywiZXhwIjoxNjU1OTMyMjM3LCJuYmYiOjE2NTU5MzE5Mzd9.eFH7bO9Bxbc6ol-NnliWaH8C7VCC-8_Rfsg0D0RarGQa2bJOWatf_Mizko4HnXscl-9vQOUsl7IQU4v4tq8CvE9fmWGhl4S3nHdhFLExc2SBxMT1VMjEeqV6lEjIZER8j2ILauHuxGN-rM6sizzX5Cms3Wc18zpBtn2Ur6rQDGJOc8GC5POLDnSKOixPtxNzxa409KC5nGei9S7rYx54b4PiGxqNWMZnFMYGBG_igkOBM3XLVV5tc4O5ZBkHf4DFETsOkEpeC9PtcP4ua2dQO0l-5p36PwYJkliGzKsZVPqiF9J6ICwYu179nD6i97naoN7h7evN0LbplX5LZOhAtQ&client_id=sumup-bank
incoming_tls_chain	[ "(null)", "(null)", "(null)", "(null)", "(null)", "(null)" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-8.5-1 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

PAR endpoint

2022-06-22 21:05:37

(1) More

SUCCESS

ExtractClientCertificateFromTokenEndpointRequestHeaders

Extracted client certificate

client_certificate

{
  "cert": "-----BEGIN CERTIFICATE----- MIIG5DCCBcygAwIBAgIUX8fwXt7t1PC1RauDIBUEX7tZEUcwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCQlIxHDAaBgNVBAoTE09wZW4gQmFua2luZyBCcmFzaWwx FTATBgNVBAsTDE9wZW4gQmFua2luZzEtMCsGA1UEAxMkT3BlbiBCYW5raW5nIFNB TkRCT1ggSXNzdWluZyBDQSAtIEcxMB4XDTIxMTAyMTE0MTAwMFoXDTIyMTEyMDE0 MTAwMFowggERMQswCQYDVQQGEwJCUjELMAkGA1UECBMCU1AxEzARBgNVBAcMClPD o28gUGF1bG8xFzAVBgNVBAoTDlNVTVVQIFNDRCBTLkEuMS0wKwYDVQQLEyQ1MGI2 N2NkOC01Zjg2LTVmODEtOTliNS1hZjgzZGFlMjVjNzQxFTATBgNVBAMTDHN1bXVw LmNvbS5icjEXMBUGA1UEBRMOMzcyNDEyMzAwMDAxNTIxHTAbBgNVBA8TFFByaXZh dGUgT3JnYW5pemF0aW9uMRMwEQYLKwYBBAGCNzwCAQMTAkJSMTQwMgYKCZImiZPy LGQBARMkNGJlMTk0ZDUtMTI3Yy00NWYzLWJkYzItNjY0ZWRmOWU0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu64vmIYg+rthw0MHP8YiWvD5OgJ/ wN1ibuCcfpjqsuy57IrDp7O0liMm/WmAqsDBIz03i50qwaezxUnZ0vzZBAj26fm+ j7a/9MszRmGMdyJCFuSyRkLwfTUGE3VWVPKmh0cTU4jB9xH+tFTzMhEzPvRSrM3o uGo9DHni4fh9UVSxNEp8t8GPOYfykblxslL9Erxg23qn30WzKDVj0truuRnBMIPo 8nPFToF8INGnTHaDX02e6CJ+2KW/czPicaB80FrGwdPm4axVpZFL4+IVED2RMpi0 ZDLLIasQPBn7t0wliB7GkckbGHHa9PkbdCsLhpJder3uIZoOw67klgh8WwIDAQAB o4IC0DCCAswwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUY8OhBEuMIn5TD19TjHAx YQoiMKowHwYDVR0jBBgwFoAUhn9YrRf1grZOtAWz+7DOEUPfTL4wTAYIKwYBBQUH AQEEQDA+MDwGCCsGAQUFBzABhjBodHRwOi8vb2NzcC5zYW5kYm94LnBraS5vcGVu YmFua2luZ2JyYXNpbC5vcmcuYnIwSwYDVR0fBEQwQjBAoD6gPIY6aHR0cDovL2Ny bC5zYW5kYm94LnBraS5vcGVuYmFua2luZ2JyYXNpbC5vcmcuYnIvaXNzdWVyLmNy bDAXBgNVHREEEDAOggxzdW11cC5jb20uYnIwDgYDVR0PAQH/BAQDAgWgMBMGA1Ud JQQMMAoGCCsGAQUFBwMCMIIBoQYDVR0gBIIBmDCCAZQwggGQBgorBgEEAYO6L2QB MIIBgDCCATYGCCsGAQUFBwICMIIBKAyCASRUaGlzIENlcnRpZmljYXRlIGlzIHNv bGVseSBmb3IgdXNlIHdpdGggUmFpZGlhbSBTZXJ2aWNlcyBMaW1pdGVkIGFuZCBv dGhlciBwYXJ0aWNpcGF0aW5nIG9yZ2FuaXNhdGlvbnMgdXNpbmcgUmFpZGlhbSBT ZXJ2aWNlcyBMaW1pdGVkcyBUcnVzdCBGcmFtZXdvcmsgU2VydmljZXMuIEl0cyBy ZWNlaXB0LCBwb3NzZXNzaW9uIG9yIHVzZSBjb25zdGl0dXRlcyBhY2NlcHRhbmNl IG9mIHRoZSBSYWlkaWFtIFNlcnZpY2VzIEx0ZCBDZXJ0aWNpY2F0ZSBQb2xpY3kg YW5kIHJlbGF0ZWQgZG9jdW1lbnRzIHRoZXJlaW4uMEQGCCsGAQUFBwIBFjhodHRw Oi8vY3BzLnNhbmRib3gucGtpLm9wZW5iYW5raW5nYnJhc2lsLm9yZy5ici9wb2xp Y2llczANBgkqhkiG9w0BAQsFAAOCAQEAjjAGdq+nXn7Q6ugYvV1naZAAfa6UbDxm BtgnHyThGCnfWXeGoCPdV73PpLB1kFl2DrUf9Lgx/Ao+FKFdA/vzYpi9mN5v/Vpu cZROMqPM8/FnMGtkTUYoM0rRJ66TVCVzdGYX0WU8v40Yask0L0vC8R9ngFQk+o84 A2m3dFA0zf71qVX4E13s29w2zegihr2ewOrgNfAKn5sVqgOrHoWewNTRXrMXfU97 3iZakuzMaU1g2DG7GrWyTxH+7m+61jWVlz1nk/TBn309zmaOyHepjoUAEr/DF+6H zkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d -----END CERTIFICATE-----",
  "pem": "-----BEGIN CERTIFICATE-----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\nzkMHkE9erum1+LCEp1gn7mErJfA6H+fNVEpykbrO/7KQRSuZ0uhAQA\u003d\u003d\n-----END CERTIFICATE-----",
  "subject": {
    "dn": "UID\u003d4be194d5-127c-45f3-bdc2-664edf9e42b4,1.3.6.1.4.1.311.60.2.1.3\u003d#13024252,2.5.4.15\u003d#131450726976617465204f7267616e697a6174696f6e,2.5.4.5\u003d#130e3337323431323330303030313532,CN\u003dsumup.com.br,OU\u003d50b67cd8-5f86-5f81-99b5-af83dae25c74,O\u003dSUMUP SCD S.A.,L\u003dSão Paulo,ST\u003dSP,C\u003dBR"
  },
  "sanDnsNames": [
    "sumup.com.br"
  ],
  "sanUris": [],
  "sanIPs": [],
  "sanEmails": []
}

2022-06-22 21:05:37	SUCCESS FAPI1-ADV-5.2.2-5	CheckForClientCertificate Found client certificate

2022-06-22 21:05:37

(1) More

SUCCESS

EnsureClientCertificateMatches

Presented certificate matches registered certificate

actual

2022-06-22 21:05:37	SUCCESS RFC8705-2	EnsureClientIdIsPresentOnTokenRequest Parameter client_id found on the request

2022-06-22 21:05:37	SUCCESS	EnsureNoClientAssertionSentToTokenEndpoint Client did not send a client_assertion to token endpoint

2022-06-22 21:05:37

(1) More

SUCCESS

PAR-2.1

ExtractRequestObjectFromPAREndpointRequest

Parsed request object

request_object

{
  "value": "eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI5MjE2NzA1MGZjOTk0OTA0ZDFlMTE2NTE2YTczYTUxNDdmODc2MzgxMmM1Y2JhYWI0ZDE3YzY0YmQ1MTk2NmQ4In0.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.eFH7bO9Bxbc6ol-NnliWaH8C7VCC-8_Rfsg0D0RarGQa2bJOWatf_Mizko4HnXscl-9vQOUsl7IQU4v4tq8CvE9fmWGhl4S3nHdhFLExc2SBxMT1VMjEeqV6lEjIZER8j2ILauHuxGN-rM6sizzX5Cms3Wc18zpBtn2Ur6rQDGJOc8GC5POLDnSKOixPtxNzxa409KC5nGei9S7rYx54b4PiGxqNWMZnFMYGBG_igkOBM3XLVV5tc4O5ZBkHf4DFETsOkEpeC9PtcP4ua2dQO0l-5p36PwYJkliGzKsZVPqiF9J6ICwYu179nD6i97naoN7h7evN0LbplX5LZOhAtQ",
  "header": {
    "kid": "92167050fc994904d1e116516a73a5147f8763812c5cbaab4d17c64bd51966d8",
    "typ": "oauth-authz-req+jwt",
    "alg": "PS256"
  },
  "claims": {
    "iss": "sumup-bank",
    "response_type": "code id_token",
    "code_challenge_method": "S256",
    "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
    "client_id": "sumup-bank",
    "aud": "https://www.certification.openid.net/test/a/sumup/",
    "nbf": 1655931937,
    "scope": "openid consent:urn:conformance:oidf:Yg7wJplIF1 accounts resources",
    "claims": {
      "id_token": {
        "acr": {
          "values": [
            "urn:brasil:openbanking:loa2",
            "urn:brasil:openbanking:loa3"
          ],
          "essential": true
        }
      }
    },
    "state": "2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8",
    "redirect_uri": "https://sumup.com.br/openfinance/callback",
    "exp": 1655932237,
    "iat": 1655931937,
    "code_challenge": "s9XkXI-Bfnwi9B9RYSLLnZZsjZPWZIKOqVY_SPRP0Eo",
    "jti": "G0vGoTynq3PvjkKy3u3PbfZMgqbkYkq6gu8m12M3nyM"
  }
}

2022-06-22 21:05:37	SUCCESS PAR-2.1	EnsurePAREndpointRequestDoesNotContainRequestUriParameter PAR endpoint request does not contain a request_uri parameter

2022-06-22 21:05:37

(3) More

INFO

OIDCC-10.2 OIDCC-10.2.1

ValidateEncryptedRequestObjectHasKid

Skipped evaluation due to missing required element: authorization_request_object jwe_header

path	jwe_header
mapped
object	authorization_request_object

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-ADV-8.6

FAPIValidateRequestObjectSigningAlg

Request object was signed with a permitted algorithm

alg

PS256

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-5.5.1.1 FAPI1-ADV-5.2.3-5 BrazilOB-5.2.2.4

FAPIBrazilValidateRequestObjectIdTokenACRClaims

Acr value in request object is as expected

received

[
  "urn:brasil:openbanking:loa2",
  "urn:brasil:openbanking:loa3"
]

2022-06-22 21:05:37

(1) More

SUCCESS

RFC7519-4.1.4 FAPI1-ADV-5.2.2-13

FAPIValidateRequestObjectExp

Request object contains a valid exp claim, expiry time

exp	"Jun 22, 2022, 9:10:37 PM"

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-5.2.2-17

FAPI1AdvancedValidateRequestObjectNBFClaim

nbf claim is valid

nbf	"Jun 22, 2022, 9:05:37 PM"
now	"Jun 22, 2022, 9:05:37 PM"

2022-06-22 21:05:37		ValidateRequestObjectClaims Request object does not contain a max_age claim

2022-06-22 21:05:37	SUCCESS	ValidateRequestObjectClaims Request object claims passed all validation checks

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-13.3

EnsureNumericRequestObjectClaimsAreNotNull

None of the claims expected to have numeric values, have null values

numeric_claims

[
  "max_age"
]

2022-06-22 21:05:37	SUCCESS OIDCC-6.1	EnsureRequestObjectDoesNotContainRequestOrRequestUri Request object does not contain request or request_uri

2022-06-22 21:05:37	SUCCESS JAR-10.8	EnsureRequestObjectDoesNotContainSubWithClientId Request object does not contain Client Id in sub

2022-06-22 21:05:37

(3) More

SUCCESS

FAPI1-ADV-5.2.2-1

ValidateRequestObjectSignature

Request object signature validated using a key in the client's JWKS and using the client's registered request_object_signing_alg

request_object	eyJhbGciOiJQUzI1NiIsInR5cCI6Im9hdXRoLWF1dGh6LXJlcStqd3QiLCJraWQiOiI5MjE2NzA1MGZjOTk0OTA0ZDFlMTE2NTE2YTczYTUxNDdmODc2MzgxMmM1Y2JhYWI0ZDE3YzY0YmQ1MTk2NmQ4In0.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.eFH7bO9Bxbc6ol-NnliWaH8C7VCC-8_Rfsg0D0RarGQa2bJOWatf_Mizko4HnXscl-9vQOUsl7IQU4v4tq8CvE9fmWGhl4S3nHdhFLExc2SBxMT1VMjEeqV6lEjIZER8j2ILauHuxGN-rM6sizzX5Cms3Wc18zpBtn2Ur6rQDGJOc8GC5POLDnSKOixPtxNzxa409KC5nGei9S7rYx54b4PiGxqNWMZnFMYGBG_igkOBM3XLVV5tc4O5ZBkHf4DFETsOkEpeC9PtcP4ua2dQO0l-5p36PwYJkliGzKsZVPqiF9J6ICwYu179nD6i97naoN7h7evN0LbplX5LZOhAtQ
request_object_signing_alg	PS256
jwk	Sun RSA public key, 2048 bits params: null modulus: 23981701216662403396475127793375539612407285659710524131700303722231451439256675205052397864504913823312087955430291148717036862805144826364665893104703039570624735223928996022191568034799930448720982541665016394866136318124430222518020873081465328114291146881833422633832526011564171362145278993696230357465646630873946524602944453316321270059747596773088054210252601901499194739445251560858991021825779323069784722616008749075469729437001741398960595039236015099147466609183201267763900639717539616293003511031844188771941323154133782410507857764558468525328807695056079197315862127553966171212191419066551956342213 public exponent: 65537

2022-06-22 21:05:37

(1) More

SUCCESS

EnsureMatchingRedirectUriInRequestObject

Redirect URI matched

actual

https://sumup.com.br/openfinance/callback

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-5.2.3-15

EnsureRequestObjectContainsCodeChallengeWhenUsingPAR

Found required PKCE parameters in request

code_challenge_method	S256
code_challenge	s9XkXI-Bfnwi9B9RYSLLnZZsjZPWZIKOqVY_SPRP0Eo

2022-06-22 21:05:37

(2) More

SUCCESS

PAR-2.2

CreatePAREndpointResponse

Created PAR endpoint response

request_uri	urn:ietf:params:oauth:request_uri:7e2f5fa4-a22b-4db9-b0c6-5ef7390fb423
expires_in	600

2022-06-22 21:05:37

(4) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing_status_code	201
outgoing_headers	{}
outgoing_body	{ "request_uri": "urn:ietf:params:oauth:request_uri:7e2f5fa4-a22b-4db9-b0c6-5ef7390fb423", "expires_in": 600 }
outgoing_path	par

2022-06-22 21:05:37

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test/a/sumup/authorize

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "PostmanRuntime/7.28.4", "accept": "/", "cache-control": "no-cache", "postman-token": "8e28cebf-8ce3-4286-94a0-42767f8fa157", "accept-encoding": "gzip, deflate, br", "connection": "close" }
incoming_path	/test/a/sumup/authorize
incoming_body_form_params
incoming_method	GET
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{ "client_id": "sumup-bank", "scope": "openid consent:urn:conformance:oidf:Yg7wJplIF1 accounts resources", "response_type": "code id_token", "redirect_uri": "https://sumup.com.br/openfinance/callback", "request_uri": "urn:ietf:params:oauth:request_uri:7e2f5fa4-a22b-4db9-b0c6-5ef7390fb423" }
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-8.5 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

Authorization endpoint

2022-06-22 21:05:37	SUCCESS	EnsureAuthorizationRequestDoesNotContainRequestWhenUsingPAR Request does not contain a request parameter

2022-06-22 21:05:37

(3) More

INFO

OIDCC-10.2 OIDCC-10.2.1

ValidateEncryptedRequestObjectHasKid

Skipped evaluation due to missing required element: authorization_request_object jwe_header

path	jwe_header
mapped
object	authorization_request_object

2022-06-22 21:05:37

(1) More

SUCCESS

CreateEffectiveAuthorizationRequestParameters

Merged http request parameters with request object claims

effective_authorization_endpoint_request

{
  "client_id": "sumup-bank",
  "scope": "openid consent:urn:conformance:oidf:Yg7wJplIF1 accounts resources",
  "response_type": "code id_token",
  "redirect_uri": "https://sumup.com.br/openfinance/callback",
  "iss": "sumup-bank",
  "code_challenge_method": "S256",
  "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
  "aud": "https://www.certification.openid.net/test/a/sumup/",
  "nbf": 1655931937,
  "claims": {
    "id_token": {
      "acr": {
        "values": [
          "urn:brasil:openbanking:loa2",
          "urn:brasil:openbanking:loa3"
        ],
        "essential": true
      }
    }
  },
  "state": "2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8",
  "exp": 1655932237,
  "iat": 1655931937,
  "code_challenge": "s9XkXI-Bfnwi9B9RYSLLnZZsjZPWZIKOqVY_SPRP0Eo",
  "jti": "G0vGoTynq3PvjkKy3u3PbfZMgqbkYkq6gu8m12M3nyM"
}

2022-06-22 21:05:37	SUCCESS FAPI1-ADV-5.2.3-16	EnsureClientIdInAuthorizationRequestParametersMatchRequestObject client_id http request parameter value matches client_id in request object

2022-06-22 21:05:37

(1) More

SUCCESS

ExtractRequestedScopes

Requested scopes

scope

openid consent:urn:conformance:oidf:Yg7wJplIF1 accounts resources

2022-06-22 21:05:37

(2) More

SUCCESS

FAPIBrazilValidateConsentScope

Found consent scope in request

actual	[ "openid", "consent:urn:conformance:oidf:Yg7wJplIF1", "accounts", "resources" ]
expected	consent:urn:conformance:oidf:Yg7wJplIF1

2022-06-22 21:05:37

(1) More

SUCCESS

EnsureScopeContainsAccounts

Found accounts scope in request

actual

[
  "openid",
  "consent:urn:conformance:oidf:Yg7wJplIF1",
  "accounts",
  "resources"
]

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-ADV-5.2.2-1 OIDCC-6.1

EnsureResponseTypeIsCodeIdToken

Response type is expected value

expected

code id_token

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-BASE-5.2.3-7

EnsureOpenIDInScopeRequest

Found 'openid' scope in request

actual	[ "openid", "consent:urn:conformance:oidf:Yg7wJplIF1", "accounts", "resources" ]
expected	openid

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-3.1.2.1

EnsureMatchingClientId

Client ID matched

client_id

sumup-bank

2022-06-22 21:05:37

(1) More

SUCCESS

CreateAuthorizationCode

Created authorization code

authorization_code

ZLxeJJfaH78qFaonfRxJDOSQ7MbITYuS

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-BASE-5.2.2.2

ExtractNonceFromAuthorizationRequest

Extracted nonce

nonce

qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-3.3.2.11

CalculateCHash

Successful c_hash encoding

c_hash

_VnhEiA2yusEyiD9OVic_A

2022-06-22 21:05:37

(1) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

CalculateSHash

Successful s_hash encoding

s_hash

YNXRaP10NjWo-vJK6OEtvQ

2022-06-22 21:05:37

(6) More

SUCCESS

GenerateIdTokenClaims

Created ID Token Claims

iss	https://www.certification.openid.net/test/a/sumup/
sub	user-subject-1234531
aud	sumup-bank
nonce	qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias
iat	1655931937
exp	1655932237

2022-06-22 21:05:37

(1) More

SUCCESS

BrazilOB-5.2.2.2 BrazilOB-5.2.2.3

FAPIBrazilAddCPFAndCPNJToIdTokenClaims

Added claims to id_token claims

id_token_claims

{
  "iss": "https://www.certification.openid.net/test/a/sumup/",
  "sub": "user-subject-1234531",
  "aud": "sumup-bank",
  "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
  "iat": 1655931937,
  "exp": 1655932237
}

2022-06-22 21:05:37

(2) More

SUCCESS

OIDCC-3.3.2.11

AddCHashToIdTokenClaims

Added c_hash to ID token claims

c_hash

_VnhEiA2yusEyiD9OVic_A

id_token_claims

{
  "iss": "https://www.certification.openid.net/test/a/sumup/",
  "sub": "user-subject-1234531",
  "aud": "sumup-bank",
  "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
  "iat": 1655931937,
  "exp": 1655932237,
  "c_hash": "_VnhEiA2yusEyiD9OVic_A"
}

2022-06-22 21:05:37

(2) More

SUCCESS

FAPI1-ADV-5.2.2.1-5

AddSHashToIdTokenClaims

Added s_hash to ID token claims

s_hash

YNXRaP10NjWo-vJK6OEtvQ

id_token_claims

{
  "iss": "https://www.certification.openid.net/test/a/sumup/",
  "sub": "user-subject-1234531",
  "aud": "sumup-bank",
  "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
  "iat": 1655931937,
  "exp": 1655932237,
  "c_hash": "_VnhEiA2yusEyiD9OVic_A",
  "s_hash": "YNXRaP10NjWo-vJK6OEtvQ"
}

2022-06-22 21:05:37

(1) More

INFO

OIDCC-3.3.2.11

AddAtHashToIdTokenClaims

Skipped evaluation due to missing required string: at_hash

expected

at_hash

2022-06-22 21:05:37

(2) More

SUCCESS

OIDCC-3.1.3.7-12

FAPIBrazilAddACRClaimToIdTokenClaims

Added acr value to id_token_claims

acr_value

urn:brasil:openbanking:loa2

claims

{
  "iss": "https://www.certification.openid.net/test/a/sumup/",
  "sub": "user-subject-1234531",
  "aud": "sumup-bank",
  "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
  "iat": 1655931937,
  "exp": 1655932237,
  "c_hash": "_VnhEiA2yusEyiD9OVic_A",
  "s_hash": "YNXRaP10NjWo-vJK6OEtvQ",
  "acr": "urn:brasil:openbanking:loa2"
}

2022-06-22 21:05:37

(1) More

SUCCESS

SignIdToken

Signed the ID token

id_token

eyJraWQiOiJYNWQ0dkZZZkx4YUcxZ2c4X2wzYkZZRmhVYVVWbUU2UGFFc1JXWDJFWXFNIiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InN1bXVwLWJhbmsiLCJjX2hhc2giOiJfVm5oRWlBMnl1c0V5aUQ5T1ZpY19BIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiWU5YUmFQMTBOaldvLXZKSzZPRXR2USIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9zdW11cFwvIiwiZXhwIjoxNjU1OTMyMjM3LCJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJpYXQiOjE2NTU5MzE5Mzd9.xR8XYqMN_upKPL-gAC8yFo-dFF06-vH1eDgMkPkP1emgMrLdrdi6oYVNe2jSqeyC0JadGPqi5kVXBA517ePp7bIxJcaugrNF3urUBi8RVX8fkIPGveTqVph3beul0M_rm2CEU4EKl6pQbY_2HXwmiAAqccHyPLZrS08vAOD44CNdbFGTp60a2pNFvWT0p2RhInRqv4HUVCTjOAwWxpmtK1fWhgVfAbVWR6JM-hmNzWcwoXLzEmcI36M3WvCe1k-HWsTRk2x3q6Dg_0LEwx6KK6Ft-qeSyuQYJBpwWvDahgiQJKWZV850_DZEcAtaOhcG5bUez5AugSmPGUvHHJOXbg

2022-06-22 21:05:37

(2) More

SUCCESS

OIDCC-3.1.3.7-7

SignIdTokenWithNullAlgorithm

Signed the id_token with null algorithm

id_token serialized

eyJhbGciOiJub25lIn0.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InN1bXVwLWJhbmsiLCJjX2hhc2giOiJfVm5oRWlBMnl1c0V5aUQ5T1ZpY19BIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiWU5YUmFQMTBOaldvLXZKSzZPRXR2USIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9zdW11cFwvIiwiZXhwIjoxNjU1OTMyMjM3LCJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJpYXQiOjE2NTU5MzE5Mzd9.

id_token

{
  "claimsSet": {
    "claims": {
      "sub": "user-subject-1234531",
      "aud": [
        "sumup-bank"
      ],
      "c_hash": "_VnhEiA2yusEyiD9OVic_A",
      "acr": "urn:brasil:openbanking:loa2",
      "s_hash": "YNXRaP10NjWo-vJK6OEtvQ",
      "iss": "https://www.certification.openid.net/test/a/sumup/",
      "exp": "Jun 22, 2022, 9:10:37 PM",
      "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
      "iat": "Jun 22, 2022, 9:05:37 PM"
    }
  },
  "header": {
    "alg": {
      "name": "none",
      "requirement": "REQUIRED"
    },
    "customParams": {}
  },
  "payload": {
    "origin": "JSON",
    "jsonObject": {
      "sub": "user-subject-1234531",
      "aud": "sumup-bank",
      "c_hash": "_VnhEiA2yusEyiD9OVic_A",
      "acr": "urn:brasil:openbanking:loa2",
      "s_hash": "YNXRaP10NjWo-vJK6OEtvQ",
      "iss": "https://www.certification.openid.net/test/a/sumup/",
      "exp": 1655932237,
      "nonce": "qZh8zF1epWV6iO_e3wCEpShepp1hsBFKIBf7kiXZias",
      "iat": 1655931937
    }
  }
}

2022-06-22 21:05:37

(1) More

SUCCESS

FAPIBrazilChangeConsentStatusToAuthorized

Changed consent status to AUTHORISED

consent

{
  "data": {
    "consentId": "urn:conformance:oidf:Yg7wJplIF1",
    "creationDateTime": "2022-06-22T21:05:37Z",
    "status": "AUTHORISED",
    "statusUpdateDateTime": "2022-06-22T21:05:37Z",
    "permissions": [
      "ACCOUNTS_READ",
      "ACCOUNTS_BALANCES_READ",
      "RESOURCES_READ"
    ],
    "expirationDateTime": "2022-06-22T23:05:37Z",
    "transactionFromDateTime": "2022-06-22T21:00:37Z",
    "transactionToDateTime": "2022-06-22T23:05:37Z",
    "links": {
      "self": "https://www.certification.openid.net/test/a/sumupconsents/v1/consents"
    }
  },
  "meta": {
    "totalRecords": 1,
    "totalPages": 1,
    "requestDateTime": "2022-06-22T21:05:37Z"
  }
}

2022-06-22 21:05:37

(1) More

SUCCESS

CreateAuthorizationEndpointResponseParams

Added authorization_endpoint_response_params to environment

params

{
  "redirect_uri": "https://sumup.com.br/openfinance/callback",
  "state": "2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8"
}

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-3.3.2.5

AddCodeToAuthorizationEndpointResponseParams

Added code to authorization endpoint response params

authorization_endpoint_response_params

{
  "redirect_uri": "https://sumup.com.br/openfinance/callback",
  "state": "2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8",
  "code": "ZLxeJJfaH78qFaonfRxJDOSQ7MbITYuS"
}

2022-06-22 21:05:37

(1) More

SUCCESS

OIDCC-3.3.2.5

AddIdTokenToAuthorizationEndpointResponseParams

Added id_token to authorization endpoint response params

authorization_endpoint_response_params

{
  "redirect_uri": "https://sumup.com.br/openfinance/callback",
  "state": "2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8",
  "code": "ZLxeJJfaH78qFaonfRxJDOSQ7MbITYuS",
  "id_token": "eyJhbGciOiJub25lIn0.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InN1bXVwLWJhbmsiLCJjX2hhc2giOiJfVm5oRWlBMnl1c0V5aUQ5T1ZpY19BIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiWU5YUmFQMTBOaldvLXZKSzZPRXR2USIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9zdW11cFwvIiwiZXhwIjoxNjU1OTMyMjM3LCJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJpYXQiOjE2NTU5MzE5Mzd9."
}

2022-06-22 21:05:37

(1) More

SendAuthorizationResponseWithResponseModeFragment

Redirecting back to client

uri

https://sumup.com.br/openfinance/callback#state=2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8&code=ZLxeJJfaH78qFaonfRxJDOSQ7MbITYuS&id_token=eyJhbGciOiJub25lIn0.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InN1bXVwLWJhbmsiLCJjX2hhc2giOiJfVm5oRWlBMnl1c0V5aUQ5T1ZpY19BIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiWU5YUmFQMTBOaldvLXZKSzZPRXR2USIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9zdW11cFwvIiwiZXhwIjoxNjU1OTMyMjM3LCJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJpYXQiOjE2NTU5MzE5Mzd9.

2022-06-22 21:05:38

(2) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing

org.springframework.web.servlet.view.RedirectView: [RedirectView]; URL [https://sumup.com.br/openfinance/callback#state=2r-6pAo-z-Wrkc_BMngMPiwS44PvmNo5ZJxS35OioL8&code=ZLxeJJfaH78qFaonfRxJDOSQ7MbITYuS&id_token=eyJhbGciOiJub25lIn0.eyJzdWIiOiJ1c2VyLXN1YmplY3QtMTIzNDUzMSIsImF1ZCI6InN1bXVwLWJhbmsiLCJjX2hhc2giOiJfVm5oRWlBMnl1c0V5aUQ5T1ZpY19BIiwiYWNyIjoidXJuOmJyYXNpbDpvcGVuYmFua2luZzpsb2EyIiwic19oYXNoIjoiWU5YUmFQMTBOaldvLXZKSzZPRXR2USIsImlzcyI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9zdW11cFwvIiwiZXhwIjoxNjU1OTMyMjM3LCJub25jZSI6InFaaDh6RjFlcFdWNmlPX2Uzd0NFcFNoZXBwMWhzQkZLSUJmN2tpWFppYXMiLCJpYXQiOjE2NTU5MzE5Mzd9.]

outgoing_path

authorize

2022-06-22 21:05:38

(11) More

INCOMING

fapi1-advanced-final-client-test-invalid-null-alg

Incoming HTTP request to /test/a/sumup/.well-known/openid-configuration

incoming_headers	{ "host": "www.certification.openid.net", "user-agent": "openid-client/4.7.4 (https://github.com/panva/node-openid-client)", "accept": "application/json", "accept-encoding": "gzip, deflate, br", "connection": "close" }
incoming_path	/test/a/sumup/.well-known/openid-configuration
incoming_body_form_params
incoming_method	GET
incoming_tls_version	TLSv1.2
incoming_tls_cert
incoming_query_string_params	{}
incoming_body
incoming_tls_chain	[ "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL", "CONFORMANCE_SUITE_JSON_NULL" ]
incoming_tls_cipher	ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json

2022-06-22 21:05:38

(2) More

SUCCESS

FAPI1-ADV-8.5 FAPI1-BASE-7.1

EnsureIncomingTls12WithSecureCipherOrTls13

TLS 1.2 in use and cipher is one recommended by BCP195

actual	ECDHE-RSA-AES128-GCM-SHA256
recommended	[ "DHE-RSA-AES128-GCM-SHA256", "ECDHE-RSA-AES128-GCM-SHA256", "DHE-RSA-AES256-GCM-SHA384", "ECDHE-RSA-AES256-GCM-SHA384" ]

2022-06-22 21:05:38

(4) More

OUTGOING

fapi1-advanced-final-client-test-invalid-null-alg

Response to HTTP request to test instance 8nVoOB5S0UFpPL7

outgoing_status_code	200
outgoing_headers	{}
outgoing_body	{ "issuer": "https://www.certification.openid.net/test/a/sumup/", "authorization_endpoint": "https://www.certification.openid.net/test/a/sumup/authorize", "token_endpoint": "https://www.certification.openid.net/test/a/sumup/token", "jwks_uri": "https://www.certification.openid.net/test/a/sumup/jwks", "registration_endpoint": "https://www.certification.openid.net/test/a/sumup/register", "userinfo_endpoint": "https://www.certification.openid.net/test/a/sumup/userinfo", "mtls_endpoint_aliases": { "token_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/token", "registration_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/register", "userinfo_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/userinfo", "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test-mtls/a/sumup/par" }, "grant_types_supported": [ "authorization_code", "implicit", "client_credentials", "refresh_token" ], "claims_parameter_supported": true, "request_object_encryption_alg_values_supported": [ "RSA-OAEP" ], "request_object_encryption_enc_values_supported": [ "A256GCM" ], "claims_supported": [ "cpf", "cnpj", "acr" ], "acr_values_supported": [ "urn:brasil:openbanking:loa2", "urn:brasil:openbanking:loa3" ], "request_object_signing_alg_values_supported": [ "PS256" ], "scopes_supported": [ "openid", "phone", "profile", "email", "address", "offline_access", "consents", "resources", "payments" ], "id_token_signing_alg_values_supported": [ "PS256" ], "tls_client_certificate_bound_access_tokens": true, "token_endpoint_auth_methods_supported": [ "tls_client_auth" ], "pushed_authorization_request_endpoint": "https://www.certification.openid.net/test/a/sumup/par", "require_pushed_authorization_requests": true, "response_types_supported": [ "code id_token" ], "token_endpoint_auth_signing_alg_values_supported": [ "PS256" ] }
outgoing_path	.well-known/openid-configuration

2022-06-22 21:05:43

(1) More

FINISHED

fapi1-advanced-final-client-test-invalid-null-alg

Test has run to completion

testmodule_result

PASSED

2022-06-22 21:05:44

(2) More

TEST-RUNNER

Alias has now been claimed by another test

alias	sumup
new_test_id	W4c9cEs9xK12sGc

Test Summary

Test Results