Test Summary

Test Results

Expand All Collapse All
All times are UTC
2023-02-20 22:24:29 INFO
TEST-RUNNER
Test instance veYKF0onWTfWNbe created
baseUrl
https://www.certification.openid.net/test/a/cdr-mdh
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "consumerdataright_au",
  "fapi_response_mode": "jarm"
}
alias
cdr-mdh
description
Mock Data Holder
planId
BGnDgdFgYro9d
config
{
  "alias": "cdr-mdh",
  "description": "Mock Data Holder",
  "server": {
    "discoveryUrl": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
    "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "e": "AQAB",
          "use": "sig",
          "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
          "kty": "RSA",
          "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
          "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
        },
        {
          "alg": "RSA-OAEP",
          "e": "AQAB",
          "use": "enc",
          "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
          "kty": "RSA",
          "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
          "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
        }
      ]
    },
    "certificate": "MIIFRjCCBC6gAwIBAgIQMvz4FnEt8qSeBEtNM6HRdjANBgkqhkiG9w0BAQsFADCB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\ng5tgoQYni+4OGQ\u003d\u003d"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIDvzCCAqegAwIBAgIIMANxYwAAAAAwDQYJKoZIhvcNAQELBQAwajELMAkGA1UE\nBhMCQVUxDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjEYMBYGA1UECwwPQ0RS\nIFNhbmRib3ggZGV2MSQwIgYDVQQDDBtDRFIgU2FuZGJveCBJbnRlcm1lZGlhdGUg\nQ0EwHhcNMjIxMTEyMTQ0NjA3WhcNMjMxMTEzMTQ0NjA3WjBeMQswCQYDVQQGEwJB\nVTEYMBYGA1UECxMPQ0RSIFNhbmRib3ggZGV2MR0wGwYDVQQKExRLZW5vYnkgQmFu\nayAoS2Vub2J5KTEWMBQGA1UEAxMNRkFQSSBDbGllbnQgMTCCASIwDQYJKoZIhvcN\nAQEBBQADggEPADCCAQoCggEBAKChIsI2pFBjArD5nemjbBznsipr1CrCaCJK5w4c\neA3zN0h3y6Dr4ykYp6QWN/d0KBQ/gbyomuvbiiouwCzXyrJMhtEIkxguXaWmisRC\n5CXGKAS28AoTAV3MtxxkH0blB/9zeokEkM6SHXXBzWkMmDZZ9B5dRExvHvAeTV5z\nhZj4jRBnQaF7fm73qZ+eEZf2U/SjipztmwtEj66Mg8fnXgVejXIHdqQ5eJpjKOEY\n7YCwVEUeLHL35yEwaK9D7v5qaovKTRKKCcLFSFPF83jqaLfvhllJy+jAtmvfnymm\ne83QBJJnNQQCM4ex0wxbAPeKNMq58arOXTFgQ8RB9SXy7nsCAwEAAaN1MHMwDAYD\nVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAU4KJgrpAfQQqy\nwrXq4djKu921yyAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0OBBYEFB3Syrax\nfgiFNGYvORkiMzHuT0J/MA0GCSqGSIb3DQEBCwUAA4IBAQAvjXHEBT17OIyIzBvt\n5/kVK+V/DoUVA/+OxcCa3l8yvOyvfFePNJbRn98ZE0LRYN87p5j+w8q0/OWetBTi\nHlUnNwRKKl/S1VlTDJ/PJTdhC5e4pMF/iQdJCzlD5QYsRyiGiG2oMjWH2a2I+XNN\nTPuKuWdVdes4ip+N5U3mfBrg8RspnVbCld/mvkZHYCETrgsyu9eA+IiCXGTYOH9p\n9NPB+Au4I8oxgNOyR7pu5xf77Nm3D1RcK7rd88ZkSoERAl20mf91/4AKgLVWGGFr\ndgwh9CY60uuhxL/ESMzKz3XlPc66qAnJtDaje/u3QoEYqW/e6o3Mwqu2VTp8Orkn\n/VxW\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\n4wzqWfBISEdH+5JCa7LeG2o\u003d\n-----END PRIVATE KEY-----\n"
  },
  "client2": {
    "client_id": "7f1fcf6a-2b4e-4e49-841f-c1aae1b7be75",
    "scope": "openid profile common:customer.basic:read bank:accounts.basic:read",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "e": "AQAB",
          "use": "sig",
          "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
          "kty": "RSA",
          "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
          "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
        },
        {
          "alg": "RSA-OAEP",
          "e": "AQAB",
          "use": "enc",
          "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
          "kty": "RSA",
          "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
          "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
        }
      ]
    }
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----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\nDCIz\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\npJL0vlhirnD0LXEIHrHcDbo\u003d\n-----END PRIVATE KEY-----\n"
  },
  "resource": {
    "resourceUrl": "https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer",
    "cdrVersion": "1"
  },
  "consent": {}
}
testName
fapi1-advanced-final-ensure-pkce-code-verifier-required
2023-02-20 22:24:29 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
2023-02-20 22:24:29
GetDynamicServerConfiguration
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2023-02-20 22:24:30 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:30 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"issuer":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm","jwks_uri":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks","registration_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/register","authorization_endpoint":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize","pushed_authorization_request_endpoint":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par","token_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token","userinfo_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/userinfo","introspection_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/introspect","cdr_arrangement_revocation_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/arrangements/revoke","revocation_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/revocation","scopes_supported":["profile","openid","common:customer.basic:read","common:customer.detail:read","energy:electricity.servicepoints.basic:read","energy:electricity.servicepoints.detail:read","energy:electricity.usage:read","energy:electricity.der:read","energy:accounts.basic:read","energy:accounts.detail:read","energy:accounts.paymentschedule:read","energy:accounts.concessions:read","energy:billing:read","admin:metrics.basic:read","admin:metadata:update","cdr:registration"],"claims_supported":["name","given_name","family_name","sharing_duration","iss","sub","aud","acr","exp","iat","nonce","auth_time","updated_at"],"grant_types_supported":["authorization_code","refresh_token","client_credentials"],"subject_types_supported":["pairwise"],"response_modes_supported":["fragment","form_post","jwt"],"response_types_supported":["code","code id_token"],"code_challenge_methods_supported":["S256"],"require_pushed_authorization_requests":true,"request_parameter_supported":false,"request_uri_parameter_supported":true,"request_object_signing_alg_values_supported":["PS256","ES256"],"tls_client_certificate_bound_access_tokens":true,"claims_parameter_supported":true,"acr_values_supported":["urn:cds.au:cdr:2"],"token_endpoint_auth_signing_alg_values_supported":["PS256","ES256"],"token_endpoint_auth_methods_supported":["private_key_jwt"],"id_token_signing_alg_values_supported":["PS256","ES256"],"id_token_encryption_alg_values_supported":["RSA-OAEP","RSA-OAEP-256"],"id_token_encryption_enc_values_supported":["A128CBC-HS256","A256GCM"],"authorization_signing_alg_values_supported":["PS256","ES256"]}
2023-02-20 22:24:30 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
jwks_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
registration_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/register
authorization_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize
pushed_authorization_request_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par
token_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
userinfo_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/userinfo
introspection_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/introspect
cdr_arrangement_revocation_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/arrangements/revoke
revocation_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/revocation
scopes_supported
[
  "profile",
  "openid",
  "common:customer.basic:read",
  "common:customer.detail:read",
  "energy:electricity.servicepoints.basic:read",
  "energy:electricity.servicepoints.detail:read",
  "energy:electricity.usage:read",
  "energy:electricity.der:read",
  "energy:accounts.basic:read",
  "energy:accounts.detail:read",
  "energy:accounts.paymentschedule:read",
  "energy:accounts.concessions:read",
  "energy:billing:read",
  "admin:metrics.basic:read",
  "admin:metadata:update",
  "cdr:registration"
]
claims_supported
[
  "name",
  "given_name",
  "family_name",
  "sharing_duration",
  "iss",
  "sub",
  "aud",
  "acr",
  "exp",
  "iat",
  "nonce",
  "auth_time",
  "updated_at"
]
grant_types_supported
[
  "authorization_code",
  "refresh_token",
  "client_credentials"
]
subject_types_supported
[
  "pairwise"
]
response_modes_supported
[
  "fragment",
  "form_post",
  "jwt"
]
response_types_supported
[
  "code",
  "code id_token"
]
code_challenge_methods_supported
[
  "S256"
]
require_pushed_authorization_requests
true
request_parameter_supported
false
request_uri_parameter_supported
true
request_object_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
tls_client_certificate_bound_access_tokens
true
claims_parameter_supported
true
acr_values_supported
[
  "urn:cds.au:cdr:2"
]
token_endpoint_auth_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
token_endpoint_auth_methods_supported
[
  "private_key_jwt"
]
id_token_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
id_token_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A256GCM"
]
authorization_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:30 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
2023-02-20 22:24:30 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2023-02-20 22:24:30
FetchServerKeys
Fetching server key
jwks_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
2023-02-20 22:24:30
FetchServerKeys
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2023-02-20 22:24:31 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:31 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","kid":"7C5716553E9B132EF325C49CA2079737196C03DB","x5t":"fFcWVT6bEy7zJcScogeXNxlsA9s","e":"AQAB","n":"muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn","x5c":["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"],"alg":"PS256"},{"kty":"EC","use":"sig","kid":"ED5CB45701699B64B4D562AE39BC652515090198","x5t":"7Vy0VwFpm2S01WKuObxlJRUJAZg","x5c":["MIICFTCCAbugAwIBAgIUU5JJVsT64GvIYcC38ngd4OURvZkwCgYIKoZIzj0EAwIwXzELMAkGA1UEBhMCQVUxDDAKBgNVBAgMA0FDVDERMA8GA1UEBwwIQ2FuYmVycmExDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjESMBAGA1UEAwwJbWRoLWVzMjU2MCAXDTIyMDUxMzAzMzE1NFoYDzQ0ODYwNjI0MDMzMTU0WjBfMQswCQYDVQQGEwJBVTEMMAoGA1UECAwDQUNUMREwDwYDVQQHDAhDYW5iZXJyYTENMAsGA1UECgwEQUNDQzEMMAoGA1UECwwDQ0RSMRIwEAYDVQQDDAltZGgtZXMyNTYwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAR684b1T+WTEWrCRgild1cQEEp10BHCuhAK6pFUSNShn6IVgctQqdBTGE14BGpPli0mRQFCDAlUwkot3bUp0K+go1MwUTAdBgNVHQ4EFgQUXT33/36K2py+/xeQD8uTJSZyRp4wHwYDVR0jBBgwFoAUXT33/36K2py+/xeQD8uTJSZyRp4wDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiBNvruyt6BqJVBz8v2MW+VyEUpyCzbDoNmwH24Zovo+ywIhAPGnC+M2SSngIOlDy8XGCCSXEHlKDOQf1vjuXDDo00iZ"],"alg":"ES256","x":"evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8","y":"ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A","crv":"P-256"}]}
2023-02-20 22:24:31
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","kid":"7C5716553E9B132EF325C49CA2079737196C03DB","x5t":"fFcWVT6bEy7zJcScogeXNxlsA9s","e":"AQAB","n":"muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn","x5c":["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"],"alg":"PS256"},{"kty":"EC","use":"sig","kid":"ED5CB45701699B64B4D562AE39BC652515090198","x5t":"7Vy0VwFpm2S01WKuObxlJRUJAZg","x5c":["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"],"alg":"ES256","x":"evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8","y":"ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A","crv":"P-256"}]}
2023-02-20 22:24:31 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "MIICFTCCAbugAwIBAgIUU5JJVsT64GvIYcC38ngd4OURvZkwCgYIKoZIzj0EAwIwXzELMAkGA1UEBhMCQVUxDDAKBgNVBAgMA0FDVDERMA8GA1UEBwwIQ2FuYmVycmExDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjESMBAGA1UEAwwJbWRoLWVzMjU2MCAXDTIyMDUxMzAzMzE1NFoYDzQ0ODYwNjI0MDMzMTU0WjBfMQswCQYDVQQGEwJBVTEMMAoGA1UECAwDQUNUMREwDwYDVQQHDAhDYW5iZXJyYTENMAsGA1UECgwEQUNDQzEMMAoGA1UECwwDQ0RSMRIwEAYDVQQDDAltZGgtZXMyNTYwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAR684b1T+WTEWrCRgild1cQEEp10BHCuhAK6pFUSNShn6IVgctQqdBTGE14BGpPli0mRQFCDAlUwkot3bUp0K+go1MwUTAdBgNVHQ4EFgQUXT33/36K2py+/xeQD8uTJSZyRp4wHwYDVR0jBBgwFoAUXT33/36K2py+/xeQD8uTJSZyRp4wDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiBNvruyt6BqJVBz8v2MW+VyEUpyCzbDoNmwH24Zovo+ywIhAPGnC+M2SSngIOlDy8XGCCSXEHlKDOQf1vjuXDDo00iZ"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "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"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2023-02-20 22:24:31 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2023-02-20 22:24:31 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2023-02-20 22:24:31 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "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"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
certificate
MIIFRjCCBC6gAwIBAgIQMvz4FnEt8qSeBEtNM6HRdjANBgkqhkiG9w0BAQsFADCB
sDELMAkGA1UEBhMCQVUxNzA1BgNVBAoTLkF1c3RyYWxpYW4gQ29tcGV0aXRpb24g
YW5kIENvbnN1bWVyIENvbW1pc3Npb24xHDAaBgNVBAsTE0NvbnN1bWVyIERhdGEg
UmlnaHQxHzAdBgNVBAsTFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxKTAnBgNVBAMT
IENEUiBURVNUIEJhbmtpbmcgSW50ZXJtZWRpYXRlIENBMB4XDTIyMTAwNjAwMDAw
MFoXDTIzMDIwMzIzNTk1OVowgY0xHDAaBgNVBAsME0NvbnN1bWVyIERhdGEgUmln
aHQxHzAdBgNVBAsMFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxGTAXBgNVBAsMEFRl
c3QgRW52aXJvbm1lbnQxEjAQBgNVBAoMCUFEUl9CcmFuZDEdMBsGA1UEAwwUQUND
Qy1URVNUSU5HLUNUUy1QSTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC4WyzqskX3P8wAsiibaqr7oH5CjjWaUV/0/xJ+emdHj8bvgHfpYPUaAB7jMGY9
1o2G6CESLF2wFbwfCj/A6m4UN8f1nfin4nknj7AHM5wk4cLdQstoTERG52zgUe0i
FsJjyIsQ1BXq+YhdR/ef5agIYVW2MYxLSDu2eTBINwIWrS29AWsBkP2x6xktRnbf
wKyAYM1vAm8DX3r5YlTQMtThTR0wu1Q9HGt2jnEMymb9IU9m8X0g31Ji2CqHcgDh
q40YdvT6Oh/opVXshUP94iWxxdlsDrgH8yX7yeHgJxY+niK78tSHx0LSX2pkPXWI
u0Yqt4HdMqZNsEnuJvqzouzXAgMBAAGjggF7MIIBdzAMBgNVHRMBAf8EAjAAMA4G
A1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUEN9c
DEn+81/Z/BmHksdARdrI0g4wLgYKYIZIAYb4RQEQAwQgMB4GE2CGSAGG+EUBEAED
AQQBhJvEtH4WBzExMzAyMjAwOQYKYIZIAYb4RQEQBQQrMCkCAQAWJGFIUjBjSE02
THk5d2Eya3RjbUV1YzNsdFlYVjBhQzVqYjIwPTA4BggrBgEFBQcBAQQsMCowKAYI
KwYBBQUHMAGGHGh0dHA6Ly9wa2ktb2NzcC5kaWdpY2VydC5jb20wHwYDVR0jBBgw
FoAUSTaRAgiZKmzkKWCekX67k63mXkswXQYDVR0fBFYwVDBSoFCgToZMaHR0cDov
L3BraS1jcmwuc3ltYXV0aC5jb20vY2FfZGY1ZDQ5M2Q1YjQ3ODQ5MjZjZGZlNmFk
ZTllMDAzZmMvTGF0ZXN0Q1JMLmNybDANBgkqhkiG9w0BAQsFAAOCAQEAPe/J5tR0
pLVZnXt4H2HcbP/BYyFFgT87R3nTUfbtdwpOAaLORMrq/2bipVOOYS9NVF6jLALT
1uBEtK1OBu5OVn1Ga2GGFX0R3v1O5zxgGOeN2udtnVK8aKmKmiQ9xUjssPitAosc
fkc9JjLKVN2jwxzyFb4GLSujwTEON/O/VuuDKm5OR6TPAvX+kq81deNKc26eM7tM
9K8tDKXbhj5ool/roWWmv+ot4hSwPfgkzbOF6UFhTDlza2Y/uhcu1tTZk5IsIgpk
y2+mTKCDcqOQqA8ALVKtFhAQAfMuSXWINzjJ2Cj7XvKmtziImWiZmB6hPN2VbeG0
g5tgoQYni+4OGQ==
2023-02-20 22:24:31
ValidateMTLSCertificatesHeader
No certificate authority found for MTLS
2023-02-20 22:24:31 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2023-02-20 22:24:31
ExtractMTLSCertificatesFromConfiguration
No certificate authority found for MTLS
2023-02-20 22:24:31 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
2023-02-20 22:24:31 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2023-02-20 22:24:31 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "alg": "PS256",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "alg": "RSA-OAEP",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2023-02-20 22:24:31 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2023-02-20 22:24:31 SUCCESS
FAPICheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:31 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
Verify configuration of second client
2023-02-20 22:24:31 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
7f1fcf6a-2b4e-4e49-841f-c1aae1b7be75
scope
openid profile common:customer.basic:read bank:accounts.basic:read
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
2023-02-20 22:24:31
ValidateMTLSCertificates2Header
No certificate authority found for MTLS
2023-02-20 22:24:31 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2023-02-20 22:24:31
ExtractMTLSCertificates2FromConfiguration
No certificate authority found for MTLS
2023-02-20 22:24:31 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
MIIDvzCCAqegAwIBAgIIPwNxYwAAAAAwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCQVUxDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjEYMBYGA1UECwwPQ0RSIFNhbmRib3ggZGV2MSQwIgYDVQQDDBtDRFIgU2FuZGJveCBJbnRlcm1lZGlhdGUgQ0EwHhcNMjIxMTEyMTQ0NjIzWhcNMjMxMTEzMTQ0NjIzWjBeMQswCQYDVQQGEwJBVTEYMBYGA1UECxMPQ0RSIFNhbmRib3ggZGV2MR0wGwYDVQQKExRLZW5vYnkgQmFuayAoS2Vub2J5KTEWMBQGA1UEAxMNRmFwaSBDbGllbnQgMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL4Ebv0wI4CvgyPVTdvva2ENOUSo1ksuC4OUQyjs3uxRjmrd3xlL+4AKOsTdzDhmlz36MHmwSNuQcTX9uzk4qJLxBkIFQLVREDtSik6WIO/bhKpjMwEAieJx6Q0bIrzjRe2n19ShCeP9Q9UOeT6aEU2sdvxf20yRn6D3JEI5SR9JSjkKBwEl/J/JdyYjsNBVQB8B8/MKoz+OMHBAxg1hWP/Q8Stv1CNKfyN+PrF9JkIKOYHc33pp2bHVnuXW7AcFkFE3YoYmvZp6zpFKIMRohGovhqA20NifK0uYEwdirBaoggivRbmS5iWJ3P0s3v6/s/fmXEP9IVChDKDHRGtCy8UCAwEAAaN1MHMwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAU4KJgrpAfQQqywrXq4djKu921yyAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0OBBYEFJt4yzIeYv4Lc6LsTF2sknHY8bS0MA0GCSqGSIb3DQEBCwUAA4IBAQARt5rR4F0Mq8q4O8QC2Ev6Fh+NTU1X8urWnMyioout0qCFXOWd+A9ggmqlxP8z8syu4TN9/1fQEqDiNB2MzdCNCUbZQy25YY7D91mI3nRfGUFUICbVvxPVwQZo1k34MJitojXIfvjTU8qQCaRQI18MOv66v+p2rvphuM0iEYamrJ2vCHLJ7rCz5po4I8qraFbV7Wgzt8L1Ll4/gwh8wD3i5a56Kubihs0tH5LQoKli57bqjSU4YPtJKJ0KRO4lABdpFjihG9Yce/JIQ3bVt3ZOrLeCdaeLz0dme0V0gfP3bBb78Y2gdipOOX4LwqcONxrNh4g7BUb0MKQuMOseDCIz
key
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
2023-02-20 22:24:31 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2023-02-20 22:24:31 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "alg": "PS256",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "alg": "RSA-OAEP",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2023-02-20 22:24:31 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2023-02-20 22:24:31 SUCCESS
FAPICheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:31 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
2023-02-20 22:24:31 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2023-02-20 22:24:31 SUCCESS
ValidateClientPrivateKeysAreDifferent
Client signing JWKs have different thumbprints
jwk1
{
  "kty": "RSA",
  "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256",
  "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
}
jwk2
{
  "kty": "RSA",
  "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
  "alg": "PS256",
  "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
}
2023-02-20 22:24:31 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer
cdrVersion
1
2023-02-20 22:24:31 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer
2023-02-20 22:24:31 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
2023-02-20 22:24:31 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
2023-02-20 22:24:31
fapi1-advanced-final-ensure-pkce-code-verifier-required
Setup Done
Make request to authorization endpoint
2023-02-20 22:24:31 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
2023-02-20 22:24:31 SUCCESS
AddCdrAcrClaimToAuthorizationEndpointRequest
Added acr claim to authorization_endpoint_request
authorization_endpoint_request
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    }
  }
}
2023-02-20 22:24:31 SUCCESS
AddCdrSharingDurationClaimToAuthorizationEndpointRequest
Added sharing_duration claim to authorization_endpoint_request
authorization_endpoint_request
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  }
}
2023-02-20 22:24:31
CreateRandomStateValue
Created state value
requested_state_length
10
state
LPrLuwbNnP
2023-02-20 22:24:31 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
LPrLuwbNnP
2023-02-20 22:24:31
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
OBmeOWGuDx
2023-02-20 22:24:31 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
LPrLuwbNnP
nonce
OBmeOWGuDx
2023-02-20 22:24:31 SUCCESS
SetAuthorizationEndpointRequestResponseTypeToCode
Added response_type parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
LPrLuwbNnP
nonce
OBmeOWGuDx
response_type
code
2023-02-20 22:24:31 SUCCESS
SetAuthorizationEndpointRequestResponseModeToJWT
Added response_mode parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
LPrLuwbNnP
nonce
OBmeOWGuDx
response_type
code
response_mode
jwt
2023-02-20 22:24:31
CreateRandomCodeVerifier
Created code_verifier value
code_verifier
I00lrKJgg9WojdhJylas_khIGg1REgZRXDJWWJnuJRyBr~wS0uM-Lj-pLGRTtaE7OcD6DD-1.AV37gQWHqpox.VzilJNfB6~RN8VRAn7ykqVA__ItNuqR7Gzw3ijxybo
2023-02-20 22:24:31
CreateS256CodeChallenge
Created code_challenge value
code_challenge
U2J2M3tGK6PHB1THkpv1NDxWk3ghFPzaslF5lRKHuCs
2023-02-20 22:24:31 SUCCESS
AddCodeChallengeToAuthorizationEndpointRequest
Added code_challenge and code_challenge_method parameters to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
LPrLuwbNnP
nonce
OBmeOWGuDx
response_type
code
response_mode
jwt
code_challenge
U2J2M3tGK6PHB1THkpv1NDxWk3ghFPzaslF5lRKHuCs
code_challenge_method
S256
2023-02-20 22:24:31 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  },
  "state": "LPrLuwbNnP",
  "nonce": "OBmeOWGuDx",
  "response_type": "code",
  "response_mode": "jwt",
  "code_challenge": "U2J2M3tGK6PHB1THkpv1NDxWk3ghFPzaslF5lRKHuCs",
  "code_challenge_method": "S256"
}
2023-02-20 22:24:31 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.676931871E9
2023-02-20 22:24:31 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.676932171E9
2023-02-20 22:24:31 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
2023-02-20 22:24:31 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
2023-02-20 22:24:31 SUCCESS
AddClientIdToRequestObject
Added client_id to request object claims
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
2023-02-20 22:24:31 SUCCESS
SignRequestObject
Signed the request object
claims
{
  "iss": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "response_type": "code",
  "code_challenge_method": "S256",
  "nonce": "OBmeOWGuDx",
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "response_mode": "jwt",
  "aud": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm",
  "nbf": 1676931871,
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "sharing_duration": 7776000,
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    }
  },
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "state": "LPrLuwbNnP",
  "exp": 1676932171,
  "code_challenge": "U2J2M3tGK6PHB1THkpv1NDxWk3ghFPzaslF5lRKHuCs"
}
header
{
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256"
}
request_object
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV90eXBlIjoiY29kZSIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJub25jZSI6Ik9CbWVPV0d1RHgiLCJjbGllbnRfaWQiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV9tb2RlIjoiand0IiwiYXVkIjoiaHR0cHM6XC9cL2RoLXRlc3QuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtIiwibmJmIjoxNjc2OTMxODcxLCJzY29wZSI6Im9wZW5pZCBwcm9maWxlIGNvbW1vbjpjdXN0b21lci5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5jb25jZXNzaW9uczpyZWFkIiwiY2xhaW1zIjp7InNoYXJpbmdfZHVyYXRpb24iOjc3NzYwMDAsImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZSI6InVybjpjZHMuYXU6Y2RyOjIiLCJlc3NlbnRpYWwiOnRydWV9fX0sInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9jZHItbWRoXC9jYWxsYmFjayIsInN0YXRlIjoiTFByTHV3Yk5uUCIsImV4cCI6MTY3NjkzMjE3MSwiY29kZV9jaGFsbGVuZ2UiOiJVMkoyTTN0R0s2UEhCMVRIa3B2MU5EeFdrM2doRlB6YXNsRjVsUktIdUNzIn0.BwNzURIkwszJrPp79h8YzKMhoK2PPjUe7EFzMyjcuGx0gCbSNqGcqZIG6P5h3AkMph-QYeZ0zr_V64MBTX04Y3FYTSNPLnBd3gH-2WIFEMRS6wxgoJsJ_ANtkkqqHmJbCUAmOPgZrwcBH3C63hDpOMdBi5G-LL1cQSg4EEDsOIbqmDaaq03RU6lJr0SeqR1yGwTDeMzNo4qVzjXx3YN6esXW_i_HJ2Wv4_6T70js-bQIGonQ-UwAbKGHkZy9RzB0LZ1fcGGdKR93AC7CEMiJrpNyjsnXdgwP_tqAkQ16WgGXODWI1m8_Vm31yKos6ZqH3abrHcLk3jIbs00lp06ZkQ
key
{
  "kty": "RSA",
  "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256",
  "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
}
2023-02-20 22:24:31 SUCCESS
BuildRequestObjectPostToPAREndpoint
request
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV90eXBlIjoiY29kZSIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJub25jZSI6Ik9CbWVPV0d1RHgiLCJjbGllbnRfaWQiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV9tb2RlIjoiand0IiwiYXVkIjoiaHR0cHM6XC9cL2RoLXRlc3QuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtIiwibmJmIjoxNjc2OTMxODcxLCJzY29wZSI6Im9wZW5pZCBwcm9maWxlIGNvbW1vbjpjdXN0b21lci5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5jb25jZXNzaW9uczpyZWFkIiwiY2xhaW1zIjp7InNoYXJpbmdfZHVyYXRpb24iOjc3NzYwMDAsImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZSI6InVybjpjZHMuYXU6Y2RyOjIiLCJlc3NlbnRpYWwiOnRydWV9fX0sInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9jZHItbWRoXC9jYWxsYmFjayIsInN0YXRlIjoiTFByTHV3Yk5uUCIsImV4cCI6MTY3NjkzMjE3MSwiY29kZV9jaGFsbGVuZ2UiOiJVMkoyTTN0R0s2UEhCMVRIa3B2MU5EeFdrM2doRlB6YXNsRjVsUktIdUNzIn0.BwNzURIkwszJrPp79h8YzKMhoK2PPjUe7EFzMyjcuGx0gCbSNqGcqZIG6P5h3AkMph-QYeZ0zr_V64MBTX04Y3FYTSNPLnBd3gH-2WIFEMRS6wxgoJsJ_ANtkkqqHmJbCUAmOPgZrwcBH3C63hDpOMdBi5G-LL1cQSg4EEDsOIbqmDaaq03RU6lJr0SeqR1yGwTDeMzNo4qVzjXx3YN6esXW_i_HJ2Wv4_6T70js-bQIGonQ-UwAbKGHkZy9RzB0LZ1fcGGdKR93AC7CEMiJrpNyjsnXdgwP_tqAkQ16WgGXODWI1m8_Vm31yKos6ZqH3abrHcLk3jIbs00lp06ZkQ
2023-02-20 22:24:31 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
aud
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
jti
kP2lOtiJ3p4WcMpfvtef
iat
1676931871
exp
1676931931
2023-02-20 22:24:31 SUCCESS
UpdateClientAuthenticationAssertionClaimsWithISSAud
Updated audience in client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
jti
kP2lOtiJ3p4WcMpfvtef
iat
1676931871
exp
1676931931
aud
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
2023-02-20 22:24:31 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5MzEsImlhdCI6MTY3NjkzMTg3MSwianRpIjoia1AybE90aUozcDRXY01wZnZ0ZWYifQ.N2dSgXx8HmkE8Ub9IUtLPUJQa-KystRKzvZnuz1iQ3cnmFimn5HLR0bt16nsbyxbHB90hLx3ozmhbBmBWmK7ihPWgFsAcfXbabnFeXD6LC3h5VR69LzuXfDd0K0Wsx3GUyDTr22JzJN9MJHN6IMAm0z1ii27q92r7LwTQvBRZTvaING8Wqais0VK-pJXz3_D4d8foqOSkZk6NSN5bxz_KqNJJfyqwsbav_T4cbLaJJlV-OuIHMpuK6kInMVrF6iSPh3WrZdpQUuWL0-YlXdKvn4JBqYnTLVh830ya2kRnyOIHli7xaIRRr5-O-yENnnCuGdbdZSbrELYUUf68MX6WQ
2023-02-20 22:24:31 SUCCESS
AddClientAssertionToPAREndpointParameters
Added client assertion to request
request
{
  "request": "eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.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.BwNzURIkwszJrPp79h8YzKMhoK2PPjUe7EFzMyjcuGx0gCbSNqGcqZIG6P5h3AkMph-QYeZ0zr_V64MBTX04Y3FYTSNPLnBd3gH-2WIFEMRS6wxgoJsJ_ANtkkqqHmJbCUAmOPgZrwcBH3C63hDpOMdBi5G-LL1cQSg4EEDsOIbqmDaaq03RU6lJr0SeqR1yGwTDeMzNo4qVzjXx3YN6esXW_i_HJ2Wv4_6T70js-bQIGonQ-UwAbKGHkZy9RzB0LZ1fcGGdKR93AC7CEMiJrpNyjsnXdgwP_tqAkQ16WgGXODWI1m8_Vm31yKos6ZqH3abrHcLk3jIbs00lp06ZkQ",
  "client_assertion": "eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5MzEsImlhdCI6MTY3NjkzMTg3MSwianRpIjoia1AybE90aUozcDRXY01wZnZ0ZWYifQ.N2dSgXx8HmkE8Ub9IUtLPUJQa-KystRKzvZnuz1iQ3cnmFimn5HLR0bt16nsbyxbHB90hLx3ozmhbBmBWmK7ihPWgFsAcfXbabnFeXD6LC3h5VR69LzuXfDd0K0Wsx3GUyDTr22JzJN9MJHN6IMAm0z1ii27q92r7LwTQvBRZTvaING8Wqais0VK-pJXz3_D4d8foqOSkZk6NSN5bxz_KqNJJfyqwsbav_T4cbLaJJlV-OuIHMpuK6kInMVrF6iSPh3WrZdpQUuWL0-YlXdKvn4JBqYnTLVh830ya2kRnyOIHli7xaIRRr5-O-yENnnCuGdbdZSbrELYUUf68MX6WQ",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
2023-02-20 22:24:31
CallPAREndpoint
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par
request_method
POST
request_headers
{
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "2162"
}
request_body
request=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.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.BwNzURIkwszJrPp79h8YzKMhoK2PPjUe7EFzMyjcuGx0gCbSNqGcqZIG6P5h3AkMph-QYeZ0zr_V64MBTX04Y3FYTSNPLnBd3gH-2WIFEMRS6wxgoJsJ_ANtkkqqHmJbCUAmOPgZrwcBH3C63hDpOMdBi5G-LL1cQSg4EEDsOIbqmDaaq03RU6lJr0SeqR1yGwTDeMzNo4qVzjXx3YN6esXW_i_HJ2Wv4_6T70js-bQIGonQ-UwAbKGHkZy9RzB0LZ1fcGGdKR93AC7CEMiJrpNyjsnXdgwP_tqAkQ16WgGXODWI1m8_Vm31yKos6ZqH3abrHcLk3jIbs00lp06ZkQ&client_assertion=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5MzEsImlhdCI6MTY3NjkzMTg3MSwianRpIjoia1AybE90aUozcDRXY01wZnZ0ZWYifQ.N2dSgXx8HmkE8Ub9IUtLPUJQa-KystRKzvZnuz1iQ3cnmFimn5HLR0bt16nsbyxbHB90hLx3ozmhbBmBWmK7ihPWgFsAcfXbabnFeXD6LC3h5VR69LzuXfDd0K0Wsx3GUyDTr22JzJN9MJHN6IMAm0z1ii27q92r7LwTQvBRZTvaING8Wqais0VK-pJXz3_D4d8foqOSkZk6NSN5bxz_KqNJJfyqwsbav_T4cbLaJJlV-OuIHMpuK6kInMVrF6iSPh3WrZdpQUuWL0-YlXdKvn4JBqYnTLVh830ya2kRnyOIHli7xaIRRr5-O-yENnnCuGdbdZSbrELYUUf68MX6WQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d"
}
2023-02-20 22:24:32 RESPONSE
CallPAREndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:32 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"request_uri":"urn:106ea14b-9c87-45c5-9038-f77acedeadaf","expires_in":90}
2023-02-20 22:24:32 SUCCESS
CallPAREndpoint
Parsed pushed authorization request endpoint response
request_uri
urn:106ea14b-9c87-45c5-9038-f77acedeadaf
expires_in
90
2023-02-20 22:24:32 SUCCESS
CheckPAREndpointResponse201WithNoError
pushed authorization request endpoint correct response.
2023-02-20 22:24:32 SUCCESS
CheckForRequestUriValue
Found valid request_uri
request_uri
urn:106ea14b-9c87-45c5-9038-f77acedeadaf
2023-02-20 22:24:32 SUCCESS
CheckForPARResponseExpiresIn
Found expires_in
expires_in
90
2023-02-20 22:24:32 SUCCESS
ExtractRequestUriFromPARResponse
Extracted the request_uri: urn:106ea14b-9c87-45c5-9038-f77acedeadaf
2023-02-20 22:24:32 SUCCESS
EnsureMinimumRequestUriEntropy
Calculated shannon entropy seems sufficient
actual
166.6124612890041
expected
128.0
value
urn:106ea14b-9c87-45c5-9038-f77acedeadaf
2023-02-20 22:24:32 SUCCESS
BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize?request_uri=urn:106ea14b-9c87-45c5-9038-f77acedeadaf&client_id=3e6c5f3d-bd58-4aaa-8c23-acfec837b506&redirect_uri=https://www.certification.openid.net/test/a/cdr-mdh/callback&scope=openid%20profile%20common:customer.basic:read%20energy:accounts.basic:read%20energy:accounts.concessions:read&response_type=code
2023-02-20 22:24:32 REDIRECT
fapi1-advanced-final-ensure-pkce-code-verifier-required
Redirecting to authorization endpoint
redirect_to
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize?request_uri=urn:106ea14b-9c87-45c5-9038-f77acedeadaf&client_id=3e6c5f3d-bd58-4aaa-8c23-acfec837b506&redirect_uri=https://www.certification.openid.net/test/a/cdr-mdh/callback&scope=openid%20profile%20common:customer.basic:read%20energy:accounts.basic:read%20energy:accounts.concessions:read&response_type=code
2023-02-20 22:24:37 INCOMING
fapi1-advanced-final-ensure-pkce-code-verifier-required
Incoming HTTP request to /test/a/cdr-mdh/callback
incoming_headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://dh-test.idp.dev.cdrsandbox.gov.au/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "connection": "close"
}
incoming_path
/test/a/cdr-mdh/callback
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{
  "response": "eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiODRiYTVkMzctODg3OS00OGI2LWEzYWMtZDM2MWYzYzk5NDNiIiwic3RhdGUiOiJMUHJMdXdiTm5QIiwibmJmIjoxNjc2OTMxODc2LCJleHAiOjE2NzY5MzIxNzYsImlhdCI6MTY3NjkzMTg3NiwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.ZqNPQnwHndKOIufGCGzD5tkMjKiwn7UhUa-nghNHbttIql14Z5v-8p8ypvcbEhKEmnOW3y_0jBIOTaN7pHDdi0h5grDajCfXnX1YRXg_qkKLcn3-Xz5NX4POdiRWHQeWBPyEOFOTgLZ-LCFHGQRnzYqwaORNT4TG6EaGMksFK-5PlBuBDLq57QG1krnpAhTQSbaD_qGMKB9XE0MUC-NVgpSemQEWpAr3DgjjfYYFiuit9w3SEIwfTnlHmK8tHQlxIZdc9GS6TnC8K-xGGHNmuTFenb3Q-d5LtzVxbFqZ_n_z8gszAEEwxzl_P15zYrNzBqDnRR_2CQC6cKc5-pMnjhmTovI1f_EGZiSz_vNt5FPc9m_Dxot-2xNyoBrmTfy_ROYgApQbKjvwE1rMYBpd1SkZIkE-ipjnTgkQhxXzjxsDIrNBT3OgcfS_x51GN5AQ2yjAXmk-8X-n19Xt8m_t7U_uCVzCJP4XGfGL_QYUriBqfX37Tx2NCe0_tsLx1hv2"
}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2023-02-20 22:24:37 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/59uytBoKLmjnWzTZYz5U",
  "fullUrl": "https://www.certification.openid.net/test/a/cdr-mdh/implicit/59uytBoKLmjnWzTZYz5U"
}
2023-02-20 22:24:37 OUTGOING
fapi1-advanced-final-ensure-pkce-code-verifier-required
Response to HTTP request to test instance veYKF0onWTfWNbe
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/cdr-mdh/implicit/59uytBoKLmjnWzTZYz5U, returnUrl=/log-detail.html?log=veYKF0onWTfWNbe}]
outgoing_path
callback
2023-02-20 22:24:37 INCOMING
fapi1-advanced-final-ensure-pkce-code-verifier-required
Incoming HTTP request to /test/a/cdr-mdh/implicit/59uytBoKLmjnWzTZYz5U
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "accept": "*/*",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "sec-ch-ua-platform": "\"Windows\"",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/cdr-mdh/callback?response\u003deyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiODRiYTVkMzctODg3OS00OGI2LWEzYWMtZDM2MWYzYzk5NDNiIiwic3RhdGUiOiJMUHJMdXdiTm5QIiwibmJmIjoxNjc2OTMxODc2LCJleHAiOjE2NzY5MzIxNzYsImlhdCI6MTY3NjkzMTg3NiwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.ZqNPQnwHndKOIufGCGzD5tkMjKiwn7UhUa-nghNHbttIql14Z5v-8p8ypvcbEhKEmnOW3y_0jBIOTaN7pHDdi0h5grDajCfXnX1YRXg_qkKLcn3-Xz5NX4POdiRWHQeWBPyEOFOTgLZ-LCFHGQRnzYqwaORNT4TG6EaGMksFK-5PlBuBDLq57QG1krnpAhTQSbaD_qGMKB9XE0MUC-NVgpSemQEWpAr3DgjjfYYFiuit9w3SEIwfTnlHmK8tHQlxIZdc9GS6TnC8K-xGGHNmuTFenb3Q-d5LtzVxbFqZ_n_z8gszAEEwxzl_P15zYrNzBqDnRR_2CQC6cKc5-pMnjhmTovI1f_EGZiSz_vNt5FPc9m_Dxot-2xNyoBrmTfy_ROYgApQbKjvwE1rMYBpd1SkZIkE-ipjnTgkQhxXzjxsDIrNBT3OgcfS_x51GN5AQ2yjAXmk-8X-n19Xt8m_t7U_uCVzCJP4XGfGL_QYUriBqfX37Tx2NCe0_tsLx1hv2",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "connection": "close",
  "content-length": "0"
}
incoming_path
/test/a/cdr-mdh/implicit/59uytBoKLmjnWzTZYz5U
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2023-02-20 22:24:37 OUTGOING
fapi1-advanced-final-ensure-pkce-code-verifier-required
Response to HTTP request to test instance veYKF0onWTfWNbe
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/59uytBoKLmjnWzTZYz5U
2023-02-20 22:24:37 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2023-02-20 22:24:37 REDIRECT-IN
fapi1-advanced-final-ensure-pkce-code-verifier-required
Authorization endpoint response captured
url_query
{
  "response": "eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiODRiYTVkMzctODg3OS00OGI2LWEzYWMtZDM2MWYzYzk5NDNiIiwic3RhdGUiOiJMUHJMdXdiTm5QIiwibmJmIjoxNjc2OTMxODc2LCJleHAiOjE2NzY5MzIxNzYsImlhdCI6MTY3NjkzMTg3NiwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.ZqNPQnwHndKOIufGCGzD5tkMjKiwn7UhUa-nghNHbttIql14Z5v-8p8ypvcbEhKEmnOW3y_0jBIOTaN7pHDdi0h5grDajCfXnX1YRXg_qkKLcn3-Xz5NX4POdiRWHQeWBPyEOFOTgLZ-LCFHGQRnzYqwaORNT4TG6EaGMksFK-5PlBuBDLq57QG1krnpAhTQSbaD_qGMKB9XE0MUC-NVgpSemQEWpAr3DgjjfYYFiuit9w3SEIwfTnlHmK8tHQlxIZdc9GS6TnC8K-xGGHNmuTFenb3Q-d5LtzVxbFqZ_n_z8gszAEEwxzl_P15zYrNzBqDnRR_2CQC6cKc5-pMnjhmTovI1f_EGZiSz_vNt5FPc9m_Dxot-2xNyoBrmTfy_ROYgApQbKjvwE1rMYBpd1SkZIkE-ipjnTgkQhxXzjxsDIrNBT3OgcfS_x51GN5AQ2yjAXmk-8X-n19Xt8m_t7U_uCVzCJP4XGfGL_QYUriBqfX37Tx2NCe0_tsLx1hv2"
}
headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://dh-test.idp.dev.cdrsandbox.gov.au/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "x-forwarded-proto": "https",
  "x-forwarded-port": "443",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2023-02-20 22:24:37 SUCCESS
ExtractJARMFromURLQuery
Found and parsed the jarm_response from callback_query_params
value
eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiODRiYTVkMzctODg3OS00OGI2LWEzYWMtZDM2MWYzYzk5NDNiIiwic3RhdGUiOiJMUHJMdXdiTm5QIiwibmJmIjoxNjc2OTMxODc2LCJleHAiOjE2NzY5MzIxNzYsImlhdCI6MTY3NjkzMTg3NiwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.ZqNPQnwHndKOIufGCGzD5tkMjKiwn7UhUa-nghNHbttIql14Z5v-8p8ypvcbEhKEmnOW3y_0jBIOTaN7pHDdi0h5grDajCfXnX1YRXg_qkKLcn3-Xz5NX4POdiRWHQeWBPyEOFOTgLZ-LCFHGQRnzYqwaORNT4TG6EaGMksFK-5PlBuBDLq57QG1krnpAhTQSbaD_qGMKB9XE0MUC-NVgpSemQEWpAr3DgjjfYYFiuit9w3SEIwfTnlHmK8tHQlxIZdc9GS6TnC8K-xGGHNmuTFenb3Q-d5LtzVxbFqZ_n_z8gszAEEwxzl_P15zYrNzBqDnRR_2CQC6cKc5-pMnjhmTovI1f_EGZiSz_vNt5FPc9m_Dxot-2xNyoBrmTfy_ROYgApQbKjvwE1rMYBpd1SkZIkE-ipjnTgkQhxXzjxsDIrNBT3OgcfS_x51GN5AQ2yjAXmk-8X-n19Xt8m_t7U_uCVzCJP4XGfGL_QYUriBqfX37Tx2NCe0_tsLx1hv2
header
{
  "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
  "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "aud": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "code": "84ba5d37-8879-48b6-a3ac-d361f3c9943b",
  "nbf": 1676931876,
  "iss": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm",
  "state": "LPrLuwbNnP",
  "exp": 1676932176,
  "iat": 1676931876
}
2023-02-20 22:24:37 SUCCESS
RejectNonJarmResponsesInUrlQuery
Authorization endpoint response only includes the JARM JWT.
2023-02-20 22:24:37 SUCCESS
ExtractAuthorizationEndpointResponseFromJARMResponse
Extracted the authorization response
code
84ba5d37-8879-48b6-a3ac-d361f3c9943b
iss
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
state
LPrLuwbNnP
2023-02-20 22:24:37 SUCCESS
ValidateJARMResponse
JARM response standard JWT claims are valid
2023-02-20 22:24:37 SUCCESS
FAPI1ValidateJarmSigningAlg
JARM response was signed with a permitted algorithm
permitted
[
  "PS256",
  "ES256"
]
alg
PS256
2023-02-20 22:24:37 SUCCESS
ValidateJARMExpRecommendations
JARM response 'exp' is less than 10 minutes
now
"Feb 20, 2023, 10:24:37 PM"
expiration
"Feb 20, 2023, 10:29:36 PM"
2023-02-20 22:24:37 SUCCESS
ValidateJARMSignatureUsingKid
jarm_response signature validated
jarm_response
eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiODRiYTVkMzctODg3OS00OGI2LWEzYWMtZDM2MWYzYzk5NDNiIiwic3RhdGUiOiJMUHJMdXdiTm5QIiwibmJmIjoxNjc2OTMxODc2LCJleHAiOjE2NzY5MzIxNzYsImlhdCI6MTY3NjkzMTg3NiwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.ZqNPQnwHndKOIufGCGzD5tkMjKiwn7UhUa-nghNHbttIql14Z5v-8p8ypvcbEhKEmnOW3y_0jBIOTaN7pHDdi0h5grDajCfXnX1YRXg_qkKLcn3-Xz5NX4POdiRWHQeWBPyEOFOTgLZ-LCFHGQRnzYqwaORNT4TG6EaGMksFK-5PlBuBDLq57QG1krnpAhTQSbaD_qGMKB9XE0MUC-NVgpSemQEWpAr3DgjjfYYFiuit9w3SEIwfTnlHmK8tHQlxIZdc9GS6TnC8K-xGGHNmuTFenb3Q-d5LtzVxbFqZ_n_z8gszAEEwxzl_P15zYrNzBqDnRR_2CQC6cKc5-pMnjhmTovI1f_EGZiSz_vNt5FPc9m_Dxot-2xNyoBrmTfy_ROYgApQbKjvwE1rMYBpd1SkZIkE-ipjnTgkQhxXzjxsDIrNBT3OgcfS_x51GN5AQ2yjAXmk-8X-n19Xt8m_t7U_uCVzCJP4XGfGL_QYUriBqfX37Tx2NCe0_tsLx1hv2
2023-02-20 22:24:37 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2023-02-20 22:24:37 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2023-02-20 22:24:37 SUCCESS
RejectStateInUrlQueryForHybridFlow
state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)
2023-02-20 22:24:37 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2023-02-20 22:24:37 SUCCESS
ValidateSuccessfulJARMResponseFromAuthorizationEndpoint
authorization endpoint response does not include unexpected parameters
code
84ba5d37-8879-48b6-a3ac-d361f3c9943b
iss
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
state
LPrLuwbNnP
2023-02-20 22:24:37 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
LPrLuwbNnP
2023-02-20 22:24:37 SUCCESS
ValidateIssInAuthorizationResponse
'iss' parameter in authorization response matches server's issuer value.
2023-02-20 22:24:37 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
84ba5d37-8879-48b6-a3ac-d361f3c9943b
2023-02-20 22:24:37 SUCCESS
EnsureMinimumAuthorizationCodeLength
Authorization code is of sufficient length
actual
288
required
128
2023-02-20 22:24:37 SUCCESS
EnsureMinimumAuthorizationCodeEntropy
Calculated shannon entropy seems sufficient
actual
131.48810956883253
expected
96.0
value
84ba5d37-8879-48b6-a3ac-d361f3c9943b
2023-02-20 22:24:37 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
Created token endpoint request
grant_type
authorization_code
code
84ba5d37-8879-48b6-a3ac-d361f3c9943b
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
2023-02-20 22:24:37 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
aud
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
jti
NGOdNkvJoTWLJO6gxGAA
iat
1676931877
exp
1676931937
2023-02-20 22:24:37 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTkzNywiaWF0IjoxNjc2OTMxODc3LCJqdGkiOiJOR09kTmt2Sm9UV0xKTzZneEdBQSJ9.Pooa0GCOaQsXHEyI73KvX9zdP-Kki38k7DTYwg7m-jTL0MjqhhiFtfmHvm9TYkmO9UxQzyfsPftdfUs_zbsgwYMXGBf6ZOpW_c2-f8uaVHQJRIqsErL6P49gk4doXBJ4N3loeKSLGWnHknqkLkGzdR2yFVQDMn7fxNupEsfNJGHFAVoIt8wQrgo9WJ2-3zFac4bYgibAg_oopF3q8Q3iEjGDd5bS1UXiZFTZca6-mtQDDmMWIKPG-8waXY7kmu2YOUx67laRoluvx72K4D_CHKiz-UW1FXxks_BmOlDa_dt38oKYFK1jjTIcaoHWMCqdm7CBy8Bajwu8t_vEUbXnlw
2023-02-20 22:24:37
AddClientAssertionToTokenEndpointRequest
Added client assertion
grant_type
authorization_code
code
84ba5d37-8879-48b6-a3ac-d361f3c9943b
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTkzNywiaWF0IjoxNjc2OTMxODc3LCJqdGkiOiJOR09kTmt2Sm9UV0xKTzZneEdBQSJ9.Pooa0GCOaQsXHEyI73KvX9zdP-Kki38k7DTYwg7m-jTL0MjqhhiFtfmHvm9TYkmO9UxQzyfsPftdfUs_zbsgwYMXGBf6ZOpW_c2-f8uaVHQJRIqsErL6P49gk4doXBJ4N3loeKSLGWnHknqkLkGzdR2yFVQDMn7fxNupEsfNJGHFAVoIt8wQrgo9WJ2-3zFac4bYgibAg_oopF3q8Q3iEjGDd5bS1UXiZFTZca6-mtQDDmMWIKPG-8waXY7kmu2YOUx67laRoluvx72K4D_CHKiz-UW1FXxks_BmOlDa_dt38oKYFK1jjTIcaoHWMCqdm7CBy8Bajwu8t_vEUbXnlw
client_assertion_type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2023-02-20 22:24:37
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
request_method
POST
request_headers
{
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "1014"
}
request_body
grant_type=authorization_code&code=84ba5d37-8879-48b6-a3ac-d361f3c9943b&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fcdr-mdh%2Fcallback&client_assertion=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTkzNywiaWF0IjoxNjc2OTMxODc3LCJqdGkiOiJOR09kTmt2Sm9UV0xKTzZneEdBQSJ9.Pooa0GCOaQsXHEyI73KvX9zdP-Kki38k7DTYwg7m-jTL0MjqhhiFtfmHvm9TYkmO9UxQzyfsPftdfUs_zbsgwYMXGBf6ZOpW_c2-f8uaVHQJRIqsErL6P49gk4doXBJ4N3loeKSLGWnHknqkLkGzdR2yFVQDMn7fxNupEsfNJGHFAVoIt8wQrgo9WJ2-3zFac4bYgibAg_oopF3q8Q3iEjGDd5bS1UXiZFTZca6-mtQDDmMWIKPG-8waXY7kmu2YOUx67laRoluvx72K4D_CHKiz-UW1FXxks_BmOlDa_dt38oKYFK1jjTIcaoHWMCqdm7CBy8Bajwu8t_vEUbXnlw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d"
}
2023-02-20 22:24:38 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:38 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "cache-control": "no-store,no-cache",
  "pragma": "no-cache",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"error":"invalid_grant","error_description":"ERR-TKN-006: code_verifier is missing"}
2023-02-20 22:24:38 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
invalid_grant
error_description
ERR-TKN-006: code_verifier is missing
2023-02-20 22:24:38 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2023-02-20 22:24:38 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2023-02-20 22:24:38 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidGrant
Token Endpoint response error returned expected 'error' of 'invalid_grant'
expected
[
  "invalid_grant"
]
2023-02-20 22:24:38 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_grant
2023-02-20 22:24:38 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
ERR-TKN-006: code_verifier is missing
2023-02-20 22:24:38 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response error returned valid 'error_description' field
error_description
ERR-TKN-006: code_verifier is missing
2023-02-20 22:24:38 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2023-02-20 22:24:38 FINISHED
fapi1-advanced-final-ensure-pkce-code-verifier-required
Test has run to completion
testmodule_result
PASSED
2023-02-20 22:24:44
TEST-RUNNER
Alias has now been claimed by another test
alias
cdr-mdh
new_test_id
K7LXuqt5QtFxBjM
Test Results