Test Summary

Test Results

Expand All Collapse All
All times are UTC
2023-02-20 22:24:44 INFO
TEST-RUNNER
Test instance K7LXuqt5QtFxBjM created
baseUrl
https://www.certification.openid.net/test/a/cdr-mdh
variant
{
  "client_auth_type": "private_key_jwt",
  "fapi_auth_request_method": "pushed",
  "fapi_profile": "consumerdataright_au",
  "fapi_response_mode": "jarm"
}
alias
cdr-mdh
description
Mock Data Holder
planId
BGnDgdFgYro9d
config
{
  "alias": "cdr-mdh",
  "description": "Mock Data Holder",
  "server": {
    "discoveryUrl": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
    "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "e": "AQAB",
          "use": "sig",
          "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
          "kty": "RSA",
          "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
          "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
        },
        {
          "alg": "RSA-OAEP",
          "e": "AQAB",
          "use": "enc",
          "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
          "kty": "RSA",
          "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
          "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
        }
      ]
    },
    "certificate": "MIIFRjCCBC6gAwIBAgIQMvz4FnEt8qSeBEtNM6HRdjANBgkqhkiG9w0BAQsFADCB\nsDELMAkGA1UEBhMCQVUxNzA1BgNVBAoTLkF1c3RyYWxpYW4gQ29tcGV0aXRpb24g\nYW5kIENvbnN1bWVyIENvbW1pc3Npb24xHDAaBgNVBAsTE0NvbnN1bWVyIERhdGEg\nUmlnaHQxHzAdBgNVBAsTFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxKTAnBgNVBAMT\nIENEUiBURVNUIEJhbmtpbmcgSW50ZXJtZWRpYXRlIENBMB4XDTIyMTAwNjAwMDAw\nMFoXDTIzMDIwMzIzNTk1OVowgY0xHDAaBgNVBAsME0NvbnN1bWVyIERhdGEgUmln\naHQxHzAdBgNVBAsMFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxGTAXBgNVBAsMEFRl\nc3QgRW52aXJvbm1lbnQxEjAQBgNVBAoMCUFEUl9CcmFuZDEdMBsGA1UEAwwUQUND\nQy1URVNUSU5HLUNUUy1QSTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB\nAQC4WyzqskX3P8wAsiibaqr7oH5CjjWaUV/0/xJ+emdHj8bvgHfpYPUaAB7jMGY9\n1o2G6CESLF2wFbwfCj/A6m4UN8f1nfin4nknj7AHM5wk4cLdQstoTERG52zgUe0i\nFsJjyIsQ1BXq+YhdR/ef5agIYVW2MYxLSDu2eTBINwIWrS29AWsBkP2x6xktRnbf\nwKyAYM1vAm8DX3r5YlTQMtThTR0wu1Q9HGt2jnEMymb9IU9m8X0g31Ji2CqHcgDh\nq40YdvT6Oh/opVXshUP94iWxxdlsDrgH8yX7yeHgJxY+niK78tSHx0LSX2pkPXWI\nu0Yqt4HdMqZNsEnuJvqzouzXAgMBAAGjggF7MIIBdzAMBgNVHRMBAf8EAjAAMA4G\nA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUEN9c\nDEn+81/Z/BmHksdARdrI0g4wLgYKYIZIAYb4RQEQAwQgMB4GE2CGSAGG+EUBEAED\nAQQBhJvEtH4WBzExMzAyMjAwOQYKYIZIAYb4RQEQBQQrMCkCAQAWJGFIUjBjSE02\nTHk5d2Eya3RjbUV1YzNsdFlYVjBhQzVqYjIwPTA4BggrBgEFBQcBAQQsMCowKAYI\nKwYBBQUHMAGGHGh0dHA6Ly9wa2ktb2NzcC5kaWdpY2VydC5jb20wHwYDVR0jBBgw\nFoAUSTaRAgiZKmzkKWCekX67k63mXkswXQYDVR0fBFYwVDBSoFCgToZMaHR0cDov\nL3BraS1jcmwuc3ltYXV0aC5jb20vY2FfZGY1ZDQ5M2Q1YjQ3ODQ5MjZjZGZlNmFk\nZTllMDAzZmMvTGF0ZXN0Q1JMLmNybDANBgkqhkiG9w0BAQsFAAOCAQEAPe/J5tR0\npLVZnXt4H2HcbP/BYyFFgT87R3nTUfbtdwpOAaLORMrq/2bipVOOYS9NVF6jLALT\n1uBEtK1OBu5OVn1Ga2GGFX0R3v1O5zxgGOeN2udtnVK8aKmKmiQ9xUjssPitAosc\nfkc9JjLKVN2jwxzyFb4GLSujwTEON/O/VuuDKm5OR6TPAvX+kq81deNKc26eM7tM\n9K8tDKXbhj5ool/roWWmv+ot4hSwPfgkzbOF6UFhTDlza2Y/uhcu1tTZk5IsIgpk\ny2+mTKCDcqOQqA8ALVKtFhAQAfMuSXWINzjJ2Cj7XvKmtziImWiZmB6hPN2VbeG0\ng5tgoQYni+4OGQ\u003d\u003d"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIDvzCCAqegAwIBAgIIMANxYwAAAAAwDQYJKoZIhvcNAQELBQAwajELMAkGA1UE\nBhMCQVUxDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjEYMBYGA1UECwwPQ0RS\nIFNhbmRib3ggZGV2MSQwIgYDVQQDDBtDRFIgU2FuZGJveCBJbnRlcm1lZGlhdGUg\nQ0EwHhcNMjIxMTEyMTQ0NjA3WhcNMjMxMTEzMTQ0NjA3WjBeMQswCQYDVQQGEwJB\nVTEYMBYGA1UECxMPQ0RSIFNhbmRib3ggZGV2MR0wGwYDVQQKExRLZW5vYnkgQmFu\nayAoS2Vub2J5KTEWMBQGA1UEAxMNRkFQSSBDbGllbnQgMTCCASIwDQYJKoZIhvcN\nAQEBBQADggEPADCCAQoCggEBAKChIsI2pFBjArD5nemjbBznsipr1CrCaCJK5w4c\neA3zN0h3y6Dr4ykYp6QWN/d0KBQ/gbyomuvbiiouwCzXyrJMhtEIkxguXaWmisRC\n5CXGKAS28AoTAV3MtxxkH0blB/9zeokEkM6SHXXBzWkMmDZZ9B5dRExvHvAeTV5z\nhZj4jRBnQaF7fm73qZ+eEZf2U/SjipztmwtEj66Mg8fnXgVejXIHdqQ5eJpjKOEY\n7YCwVEUeLHL35yEwaK9D7v5qaovKTRKKCcLFSFPF83jqaLfvhllJy+jAtmvfnymm\ne83QBJJnNQQCM4ex0wxbAPeKNMq58arOXTFgQ8RB9SXy7nsCAwEAAaN1MHMwDAYD\nVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAU4KJgrpAfQQqy\nwrXq4djKu921yyAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0OBBYEFB3Syrax\nfgiFNGYvORkiMzHuT0J/MA0GCSqGSIb3DQEBCwUAA4IBAQAvjXHEBT17OIyIzBvt\n5/kVK+V/DoUVA/+OxcCa3l8yvOyvfFePNJbRn98ZE0LRYN87p5j+w8q0/OWetBTi\nHlUnNwRKKl/S1VlTDJ/PJTdhC5e4pMF/iQdJCzlD5QYsRyiGiG2oMjWH2a2I+XNN\nTPuKuWdVdes4ip+N5U3mfBrg8RspnVbCld/mvkZHYCETrgsyu9eA+IiCXGTYOH9p\n9NPB+Au4I8oxgNOyR7pu5xf77Nm3D1RcK7rd88ZkSoERAl20mf91/4AKgLVWGGFr\ndgwh9CY60uuhxL/ESMzKz3XlPc66qAnJtDaje/u3QoEYqW/e6o3Mwqu2VTp8Orkn\n/VxW\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----\nMIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQCgoSLCNqRQYwKw\n+Z3po2wc57Iqa9QqwmgiSucOHHgN8zdId8ug6+MpGKekFjf3dCgUP4G8qJrr24oq\nLsAs18qyTIbRCJMYLl2lporEQuQlxigEtvAKEwFdzLccZB9G5Qf/c3qJBJDOkh11\nwc1pDJg2WfQeXURMbx7wHk1ec4WY+I0QZ0Ghe35u96mfnhGX9lP0o4qc7ZsLRI+u\njIPH514FXo1yB3akOXiaYyjhGO2AsFRFHixy9+chMGivQ+7+amqLyk0SignCxUhT\nxfN46mi374ZZScvowLZr358ppnvN0ASSZzUEAjOHsdMMWwD3ijTKufGqzl0xYEPE\nQfUl8u57AgMBAAECggEASFuN3tLifdu8EKDBQ8f8IaE1nupn7sMYSapYHwEwC4iu\nNJTSQ7E+6PpUOhRQLcZDb6uT87o331tMB+h7ZTfn9R2H9Y3ZRSFNyhsVk4dWYrW6\nvTTzOHaLPQfEzKNFe5gcXDRW1HYcDRHA95TPxSyJPKKU10DITW4ZD612yL9dRSSr\nHEom+l3tZcXErshFDGHTKSe6RkPj+u5C5p42Fn+DqeTgt89a43Be7mTgYNZIKLSw\nvBp8YPG7why/HRgQ5ui/VnfG3uEuRQXOdR5EvTELhfvOs626bufP72MjuYdhJowq\nboTC3mh6CQsU44Nz841ClsxtJ1EnWYEMok4+pB39AQKBgQDOrxx3+b0ZiZzboKYX\n4lh+Ixhvt9JZk4FFaeUh9V5EZPsCOA6Q6nPHTfOB6f0uaC/YRRH3bwbOU8+XuaXY\nK8NPt69DGdBywyvgHPTqd/Qdwu+g6UBiZKGMKjZXwp7JIYNYkWBbRS6bxjpm7SZg\nZXL1gs5EuYObGq3jey4FMJkOQQKBgQDG9N6/R5YXTlJfPSKSQLeX8pL3ZNYSh9IE\nCeu5iYH0ERQ2MBGa5q3/sxu9dizAVfm3f0PtDAFbyEHz0fwbB1x1WTQWhbA7ZBV7\nwG1L/LKUXGv0W2mGrnihW5jYb6hFV+oV9rtlgKPlTOlvkWgAd/8WUPcAPkHxL8ED\nLS7Grc5FuwKBgF1nM3Vgrj2JPBLg8c6fYqB2Wce7CdujVms5JOyIx3YfMHRbQvHo\nkjQCnUYbqWg8e0rARBNO4IODyq/lnPYpKNWwzAqF8va6Duz0CRag6Pg+LS7J2mfc\n1EjUlsRoVnvMol/3KtV0WVDab3AuQgaUMjSTTYYvVDNXBjhkZXLA+JpBAoGBAJx/\ne0Nc7QwSGKs/rJT8gS3tqnsdf2J+Ic35e8mrB2TTlmF1eDOvZoju+1ARx+vW9SHI\n4sZwnhTzNiWzNCqSpMDN1TIuIMzm0htQ5uhRsqsO8//3c890KAFMyrLdSbCaEdEL\nDqcuBD3XPPv8laFgwm9sao5vanFsjdeQz+2KQ+oHAoGAVYOBjIksPPklnshVdBdj\nJOaqSiXTSbGr2LqToF8Irxz/kJKldV7TPpS6GR/ab5XnkPFDYwqeI2OTHMQSitnT\nUkwrM8dsaAokdhqTw137/4Wfpy0OZNVrNOGpenTl4ri2rRjcp4BzukULvz2mfZtN\n4wzqWfBISEdH+5JCa7LeG2o\u003d\n-----END PRIVATE KEY-----\n"
  },
  "client2": {
    "client_id": "7f1fcf6a-2b4e-4e49-841f-c1aae1b7be75",
    "scope": "openid profile common:customer.basic:read bank:accounts.basic:read",
    "jwks": {
      "keys": [
        {
          "alg": "PS256",
          "e": "AQAB",
          "use": "sig",
          "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
          "kty": "RSA",
          "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
          "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
        },
        {
          "alg": "RSA-OAEP",
          "e": "AQAB",
          "use": "enc",
          "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
          "kty": "RSA",
          "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
          "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
        }
      ]
    }
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----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\nDCIz\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\npJL0vlhirnD0LXEIHrHcDbo\u003d\n-----END PRIVATE KEY-----\n"
  },
  "resource": {
    "resourceUrl": "https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer",
    "cdrVersion": "1"
  },
  "consent": {}
}
testName
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
2023-02-20 22:24:44 SUCCESS
CreateRedirectUri
Created redirect URI
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
2023-02-20 22:24:44
GetDynamicServerConfiguration
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2023-02-20 22:24:45 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:44 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"issuer":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm","jwks_uri":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks","registration_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/register","authorization_endpoint":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize","pushed_authorization_request_endpoint":"https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par","token_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token","userinfo_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/userinfo","introspection_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/introspect","cdr_arrangement_revocation_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/arrangements/revoke","revocation_endpoint":"https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/revocation","scopes_supported":["profile","openid","common:customer.basic:read","common:customer.detail:read","energy:electricity.servicepoints.basic:read","energy:electricity.servicepoints.detail:read","energy:electricity.usage:read","energy:electricity.der:read","energy:accounts.basic:read","energy:accounts.detail:read","energy:accounts.paymentschedule:read","energy:accounts.concessions:read","energy:billing:read","admin:metrics.basic:read","admin:metadata:update","cdr:registration"],"claims_supported":["name","given_name","family_name","sharing_duration","iss","sub","aud","acr","exp","iat","nonce","auth_time","updated_at"],"grant_types_supported":["authorization_code","refresh_token","client_credentials"],"subject_types_supported":["pairwise"],"response_modes_supported":["fragment","form_post","jwt"],"response_types_supported":["code","code id_token"],"code_challenge_methods_supported":["S256"],"require_pushed_authorization_requests":true,"request_parameter_supported":false,"request_uri_parameter_supported":true,"request_object_signing_alg_values_supported":["PS256","ES256"],"tls_client_certificate_bound_access_tokens":true,"claims_parameter_supported":true,"acr_values_supported":["urn:cds.au:cdr:2"],"token_endpoint_auth_signing_alg_values_supported":["PS256","ES256"],"token_endpoint_auth_methods_supported":["private_key_jwt"],"id_token_signing_alg_values_supported":["PS256","ES256"],"id_token_encryption_alg_values_supported":["RSA-OAEP","RSA-OAEP-256"],"id_token_encryption_enc_values_supported":["A128CBC-HS256","A256GCM"],"authorization_signing_alg_values_supported":["PS256","ES256"]}
2023-02-20 22:24:45 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
jwks_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
registration_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/register
authorization_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize
pushed_authorization_request_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par
token_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
userinfo_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/userinfo
introspection_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/introspect
cdr_arrangement_revocation_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/arrangements/revoke
revocation_endpoint
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/revocation
scopes_supported
[
  "profile",
  "openid",
  "common:customer.basic:read",
  "common:customer.detail:read",
  "energy:electricity.servicepoints.basic:read",
  "energy:electricity.servicepoints.detail:read",
  "energy:electricity.usage:read",
  "energy:electricity.der:read",
  "energy:accounts.basic:read",
  "energy:accounts.detail:read",
  "energy:accounts.paymentschedule:read",
  "energy:accounts.concessions:read",
  "energy:billing:read",
  "admin:metrics.basic:read",
  "admin:metadata:update",
  "cdr:registration"
]
claims_supported
[
  "name",
  "given_name",
  "family_name",
  "sharing_duration",
  "iss",
  "sub",
  "aud",
  "acr",
  "exp",
  "iat",
  "nonce",
  "auth_time",
  "updated_at"
]
grant_types_supported
[
  "authorization_code",
  "refresh_token",
  "client_credentials"
]
subject_types_supported
[
  "pairwise"
]
response_modes_supported
[
  "fragment",
  "form_post",
  "jwt"
]
response_types_supported
[
  "code",
  "code id_token"
]
code_challenge_methods_supported
[
  "S256"
]
require_pushed_authorization_requests
true
request_parameter_supported
false
request_uri_parameter_supported
true
request_object_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
tls_client_certificate_bound_access_tokens
true
claims_parameter_supported
true
acr_values_supported
[
  "urn:cds.au:cdr:2"
]
token_endpoint_auth_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
token_endpoint_auth_methods_supported
[
  "private_key_jwt"
]
id_token_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
id_token_encryption_alg_values_supported
[
  "RSA-OAEP",
  "RSA-OAEP-256"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A256GCM"
]
authorization_signing_alg_values_supported
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:45 SUCCESS
AddMTLSEndpointAliasesToEnvironment
Added mtls_endpoint_aliases to environment
2023-02-20 22:24:45 SUCCESS
CheckServerConfiguration
Found required server configuration keys
required
[
  "authorization_endpoint",
  "token_endpoint",
  "issuer"
]
2023-02-20 22:24:45
FetchServerKeys
Fetching server key
jwks_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
2023-02-20 22:24:45
FetchServerKeys
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/.well-known/openid-configuration/jwks
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2023-02-20 22:24:45 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:45 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"keys":[{"kty":"RSA","use":"sig","kid":"7C5716553E9B132EF325C49CA2079737196C03DB","x5t":"fFcWVT6bEy7zJcScogeXNxlsA9s","e":"AQAB","n":"muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn","x5c":["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"],"alg":"PS256"},{"kty":"EC","use":"sig","kid":"ED5CB45701699B64B4D562AE39BC652515090198","x5t":"7Vy0VwFpm2S01WKuObxlJRUJAZg","x5c":["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"],"alg":"ES256","x":"evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8","y":"ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A","crv":"P-256"}]}
2023-02-20 22:24:45
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"RSA","use":"sig","kid":"7C5716553E9B132EF325C49CA2079737196C03DB","x5t":"fFcWVT6bEy7zJcScogeXNxlsA9s","e":"AQAB","n":"muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn","x5c":["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"],"alg":"PS256"},{"kty":"EC","use":"sig","kid":"ED5CB45701699B64B4D562AE39BC652515090198","x5t":"7Vy0VwFpm2S01WKuObxlJRUJAZg","x5c":["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"],"alg":"ES256","x":"evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8","y":"ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A","crv":"P-256"}]}
2023-02-20 22:24:45 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "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"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "MIICFTCCAbugAwIBAgIUU5JJVsT64GvIYcC38ngd4OURvZkwCgYIKoZIzj0EAwIwXzELMAkGA1UEBhMCQVUxDDAKBgNVBAgMA0FDVDERMA8GA1UEBwwIQ2FuYmVycmExDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjESMBAGA1UEAwwJbWRoLWVzMjU2MCAXDTIyMDUxMzAzMzE1NFoYDzQ0ODYwNjI0MDMzMTU0WjBfMQswCQYDVQQGEwJBVTEMMAoGA1UECAwDQUNUMREwDwYDVQQHDAhDYW5iZXJyYTENMAsGA1UECgwEQUNDQzEMMAoGA1UECwwDQ0RSMRIwEAYDVQQDDAltZGgtZXMyNTYwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAR684b1T+WTEWrCRgild1cQEEp10BHCuhAK6pFUSNShn6IVgctQqdBTGE14BGpPli0mRQFCDAlUwkot3bUp0K+go1MwUTAdBgNVHQ4EFgQUXT33/36K2py+/xeQD8uTJSZyRp4wHwYDVR0jBBgwFoAUXT33/36K2py+/xeQD8uTJSZyRp4wDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiBNvruyt6BqJVBz8v2MW+VyEUpyCzbDoNmwH24Zovo+ywIhAPGnC+M2SSngIOlDy8XGCCSXEHlKDOQf1vjuXDDo00iZ"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2023-02-20 22:24:45 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2023-02-20 22:24:45 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2023-02-20 22:24:45 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "use": "sig",
      "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
      "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
      "e": "AQAB",
      "n": "muidQL6h9QizbiZxZi3rpwNVDy7mXjtcl-C2rpI4JZzo0n2x-3KAHoCuuR7ZcX3b2DgfkI2IB9NsspdtZsAgKO0MYDROCn8TrIPKlvP4M8YwNQ1modLS9IfVqZU6Tp_mWpn89po7oZiTGq-qihv-xBUQwHM9FHplPP6DvA5Yl5UUHDdN2s9qnodjBI3SAyuVOY6s9X9iv-wDBYvI_981nEYA7Ndgm-QxW6qH0FgA8OC4yLE8e2QDEjL31JAXAJDcUTRTwiQL5jv_hd9Wze6_Oe19mcl1RKn1-z_96riylD3VrwqAR5KkmkyI35WBytAdUU1jpyT1D-RVxX-G3FHoUCgXPDSyvul9Djet65KZE1mkzZfCmo_2s44XcF_Mv4cBfayMdNkodu2EgTsBzgd7lmGszlDhEMZeLDELOIXdQRs5b6g7pt6YRRcGfDo6eRBuR6n9VCES5L9RNizUI--LISnM-W9tWxReGDoj6-YwLFq7bHNt42psvxJO96f3ISwn",
      "x5c": [
        "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\u003d\u003d"
      ],
      "alg": "PS256"
    },
    {
      "kty": "EC",
      "use": "sig",
      "kid": "ED5CB45701699B64B4D562AE39BC652515090198",
      "x5t": "7Vy0VwFpm2S01WKuObxlJRUJAZg",
      "x5c": [
        "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"
      ],
      "alg": "ES256",
      "x": "evOG9U_lkxFqwkYIpXdXEBBKddARwroQCuqRVEjUoZ8",
      "y": "ohWBy1Cp0FMYTXgEak-WLSZFAUIMCVTCSi3dtSnQr6A",
      "crv": "P-256"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
certificate
MIIFRjCCBC6gAwIBAgIQMvz4FnEt8qSeBEtNM6HRdjANBgkqhkiG9w0BAQsFADCB
sDELMAkGA1UEBhMCQVUxNzA1BgNVBAoTLkF1c3RyYWxpYW4gQ29tcGV0aXRpb24g
YW5kIENvbnN1bWVyIENvbW1pc3Npb24xHDAaBgNVBAsTE0NvbnN1bWVyIERhdGEg
UmlnaHQxHzAdBgNVBAsTFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxKTAnBgNVBAMT
IENEUiBURVNUIEJhbmtpbmcgSW50ZXJtZWRpYXRlIENBMB4XDTIyMTAwNjAwMDAw
MFoXDTIzMDIwMzIzNTk1OVowgY0xHDAaBgNVBAsME0NvbnN1bWVyIERhdGEgUmln
aHQxHzAdBgNVBAsMFkZvciBURVNUIFB1cnBvc2VzIE9OTFkxGTAXBgNVBAsMEFRl
c3QgRW52aXJvbm1lbnQxEjAQBgNVBAoMCUFEUl9CcmFuZDEdMBsGA1UEAwwUQUND
Qy1URVNUSU5HLUNUUy1QSTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC4WyzqskX3P8wAsiibaqr7oH5CjjWaUV/0/xJ+emdHj8bvgHfpYPUaAB7jMGY9
1o2G6CESLF2wFbwfCj/A6m4UN8f1nfin4nknj7AHM5wk4cLdQstoTERG52zgUe0i
FsJjyIsQ1BXq+YhdR/ef5agIYVW2MYxLSDu2eTBINwIWrS29AWsBkP2x6xktRnbf
wKyAYM1vAm8DX3r5YlTQMtThTR0wu1Q9HGt2jnEMymb9IU9m8X0g31Ji2CqHcgDh
q40YdvT6Oh/opVXshUP94iWxxdlsDrgH8yX7yeHgJxY+niK78tSHx0LSX2pkPXWI
u0Yqt4HdMqZNsEnuJvqzouzXAgMBAAGjggF7MIIBdzAMBgNVHRMBAf8EAjAAMA4G
A1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDAjAdBgNVHQ4EFgQUEN9c
DEn+81/Z/BmHksdARdrI0g4wLgYKYIZIAYb4RQEQAwQgMB4GE2CGSAGG+EUBEAED
AQQBhJvEtH4WBzExMzAyMjAwOQYKYIZIAYb4RQEQBQQrMCkCAQAWJGFIUjBjSE02
THk5d2Eya3RjbUV1YzNsdFlYVjBhQzVqYjIwPTA4BggrBgEFBQcBAQQsMCowKAYI
KwYBBQUHMAGGHGh0dHA6Ly9wa2ktb2NzcC5kaWdpY2VydC5jb20wHwYDVR0jBBgw
FoAUSTaRAgiZKmzkKWCekX67k63mXkswXQYDVR0fBFYwVDBSoFCgToZMaHR0cDov
L3BraS1jcmwuc3ltYXV0aC5jb20vY2FfZGY1ZDQ5M2Q1YjQ3ODQ5MjZjZGZlNmFk
ZTllMDAzZmMvTGF0ZXN0Q1JMLmNybDANBgkqhkiG9w0BAQsFAAOCAQEAPe/J5tR0
pLVZnXt4H2HcbP/BYyFFgT87R3nTUfbtdwpOAaLORMrq/2bipVOOYS9NVF6jLALT
1uBEtK1OBu5OVn1Ga2GGFX0R3v1O5zxgGOeN2udtnVK8aKmKmiQ9xUjssPitAosc
fkc9JjLKVN2jwxzyFb4GLSujwTEON/O/VuuDKm5OR6TPAvX+kq81deNKc26eM7tM
9K8tDKXbhj5ool/roWWmv+ot4hSwPfgkzbOF6UFhTDlza2Y/uhcu1tTZk5IsIgpk
y2+mTKCDcqOQqA8ALVKtFhAQAfMuSXWINzjJ2Cj7XvKmtziImWiZmB6hPN2VbeG0
g5tgoQYni+4OGQ==
2023-02-20 22:24:45
ValidateMTLSCertificatesHeader
No certificate authority found for MTLS
2023-02-20 22:24:45 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2023-02-20 22:24:45
ExtractMTLSCertificatesFromConfiguration
No certificate authority found for MTLS
2023-02-20 22:24:45 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
2023-02-20 22:24:45 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2023-02-20 22:24:45 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "alg": "PS256",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "alg": "RSA-OAEP",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2023-02-20 22:24:45 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2023-02-20 22:24:45 SUCCESS
FAPICheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:45 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "e2c6eaff7fad081c78b22d63bbb567e86070e51eb1476abca6a233bce8ca14ba",
      "kty": "RSA",
      "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw",
      "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
Verify configuration of second client
2023-02-20 22:24:45 SUCCESS
GetStaticClient2Configuration
Found a static second client object
client_id
7f1fcf6a-2b4e-4e49-841f-c1aae1b7be75
scope
openid profile common:customer.basic:read bank:accounts.basic:read
jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
2023-02-20 22:24:45
ValidateMTLSCertificates2Header
No certificate authority found for MTLS
2023-02-20 22:24:45 SUCCESS
ValidateMTLSCertificates2Header
MTLS certificates header is valid
2023-02-20 22:24:45
ExtractMTLSCertificates2FromConfiguration
No certificate authority found for MTLS
2023-02-20 22:24:45 SUCCESS
ExtractMTLSCertificates2FromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
2023-02-20 22:24:45 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2023-02-20 22:24:45 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "alg": "PS256",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
    },
    {
      "kty": "RSA",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "alg": "RSA-OAEP",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2023-02-20 22:24:45 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2023-02-20 22:24:45 SUCCESS
FAPICheckKeyAlgInClientJWKs
Keys in client JWKS all have permitted 'alg'
permitted
[
  "PS256",
  "ES256"
]
2023-02-20 22:24:45 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "alg": "PS256",
      "e": "AQAB",
      "use": "sig",
      "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    },
    {
      "alg": "RSA-OAEP",
      "e": "AQAB",
      "use": "enc",
      "kid": "fd25607ef014cc95df22617d63603ee440ab6815ed22a89e4298671a92f76fa0",
      "kty": "RSA",
      "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw",
      "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ"
    }
  ]
}
2023-02-20 22:24:45 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2023-02-20 22:24:45 SUCCESS
ValidateClientPrivateKeysAreDifferent
Client signing JWKs have different thumbprints
jwk1
{
  "kty": "RSA",
  "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256",
  "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
}
jwk2
{
  "kty": "RSA",
  "d": "nilYQ70E6wuVSLeQUyQYFFS0ZTqmes9FjuPDis4t4DBU6GhB4Ruok74j0aROCf2f8kBQVCmVCuGJRDMzXeNVEWCUM8kqHZeN9FsURbBZBPBcXZqLxW3E-1X922LrPNml1Y1V9-OKJDB5oR9yrKOhgdSfjrG4JiUc9OAoZFrgpgu2CA2W7-mhF41_pets-twiD0gtCdVW8kXzS7FIeypXNSws37rusV68FFbCqUidxaZmL4Nmn3d98wbTSWvoNpoGzOsjo5NCZ_DPzg2XvpQatI11iCP5lKZhqmenyCY17f2XuPQLbpErDknCLysYvjXnbBLo1q2YEBtWi7Mp3Hh4EQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "71015BEA5C057C44E0AAC258D89DDE53A9807747",
  "alg": "PS256",
  "n": "6iAVK2ReBUm1fa7tMbl2gsP9WfAwgqrG18TByp270TMAIC3yppjb9JcCFg3u-oWvwKCfzXNYu25VQLZlAAKD2iuMxbdrgNJzPaawrU-TC7GrOy_qEsc8y7dbptdiBq2K4WyVSHd_TrTelOx409qW3mlNxhp29uCFj0NXn0rhgPL9UOzEUbDhDkwDLRNFu3MGa-ygS-WVrltqEGMR1PXjypGJ2fbWilay90wkhNSxgDzyL03g55-sVVw-NT9PlcGf3GTkwMmZ493HQo2wWS-_uAqYMxCTVUm6dYtAwTPC0nLq1MdPRaU_klC_LLnQoL750L5crMSRP_1nmQmtLJqkdw"
}
2023-02-20 22:24:45 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer
cdrVersion
1
2023-02-20 22:24:45 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/resource/cds-au/v1/common/customer
2023-02-20 22:24:45 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
2023-02-20 22:24:45 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
accounts_request_endpoint
{
  "testHost": "dh-test.secure.idp.dev.cdrsandbox.gov.au",
  "testPort": 443
}
2023-02-20 22:24:45
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Setup Done
Make request to authorization endpoint
2023-02-20 22:24:45 SUCCESS
CreateAuthorizationEndpointRequestFromClientInformation
Created authorization endpoint request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
2023-02-20 22:24:45 SUCCESS
AddCdrAcrClaimToAuthorizationEndpointRequest
Added acr claim to authorization_endpoint_request
authorization_endpoint_request
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    }
  }
}
2023-02-20 22:24:45 SUCCESS
AddCdrSharingDurationClaimToAuthorizationEndpointRequest
Added sharing_duration claim to authorization_endpoint_request
authorization_endpoint_request
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  }
}
2023-02-20 22:24:45
CreateRandomStateValue
Created state value
requested_state_length
10
state
WtcTF3gFZX
2023-02-20 22:24:45 SUCCESS
AddStateToAuthorizationEndpointRequest
Added state parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
WtcTF3gFZX
2023-02-20 22:24:45
CreateRandomNonceValue
Created nonce value
requested_nonce_length
10
nonce
j1bMxVZxNa
2023-02-20 22:24:45 SUCCESS
AddNonceToAuthorizationEndpointRequest
Added nonce parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
WtcTF3gFZX
nonce
j1bMxVZxNa
2023-02-20 22:24:45 SUCCESS
SetAuthorizationEndpointRequestResponseTypeToCode
Added response_type parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
WtcTF3gFZX
nonce
j1bMxVZxNa
response_type
code
2023-02-20 22:24:45 SUCCESS
SetAuthorizationEndpointRequestResponseModeToJWT
Added response_mode parameter to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
WtcTF3gFZX
nonce
j1bMxVZxNa
response_type
code
response_mode
jwt
2023-02-20 22:24:45
CreateRandomCodeVerifier
Created code_verifier value
code_verifier
.~SH.gG.vSI5D0FKFDtvMqweu~qdZhZHjl-JSiwu-ClgZRIb5vitXF7zdb3f95G9KJtu5R9kRm2ge0ekvOw.fOY.LoWKn.C96EgZswrWjBgUEP~anlf6gnyQg1sVqavt
2023-02-20 22:24:45
CreateS256CodeChallenge
Created code_challenge value
code_challenge
O591R8MraX7anLgzYcVKG6oaZMQZ3-nI7YFdvVQMqGM
2023-02-20 22:24:45 SUCCESS
AddCodeChallengeToAuthorizationEndpointRequest
Added code_challenge and code_challenge_method parameters to request
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
scope
openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read
claims
{
  "id_token": {
    "acr": {
      "value": "urn:cds.au:cdr:2",
      "essential": true
    }
  },
  "sharing_duration": 7776000
}
state
WtcTF3gFZX
nonce
j1bMxVZxNa
response_type
code
response_mode
jwt
code_challenge
O591R8MraX7anLgzYcVKG6oaZMQZ3-nI7YFdvVQMqGM
code_challenge_method
S256
2023-02-20 22:24:45 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    },
    "sharing_duration": 7776000
  },
  "state": "WtcTF3gFZX",
  "nonce": "j1bMxVZxNa",
  "response_type": "code",
  "response_mode": "jwt",
  "code_challenge": "O591R8MraX7anLgzYcVKG6oaZMQZ3-nI7YFdvVQMqGM",
  "code_challenge_method": "S256"
}
2023-02-20 22:24:45 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.676931885E9
2023-02-20 22:24:45 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.676932185E9
2023-02-20 22:24:45 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
2023-02-20 22:24:45 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
2023-02-20 22:24:45 SUCCESS
AddClientIdToRequestObject
Added client_id to request object claims
client_id
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
2023-02-20 22:24:45 SUCCESS
SignRequestObject
Signed the request object
claims
{
  "iss": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "response_type": "code",
  "code_challenge_method": "S256",
  "nonce": "j1bMxVZxNa",
  "client_id": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "response_mode": "jwt",
  "aud": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm",
  "nbf": 1676931885,
  "scope": "openid profile common:customer.basic:read energy:accounts.basic:read energy:accounts.concessions:read",
  "claims": {
    "sharing_duration": 7776000,
    "id_token": {
      "acr": {
        "value": "urn:cds.au:cdr:2",
        "essential": true
      }
    }
  },
  "redirect_uri": "https://www.certification.openid.net/test/a/cdr-mdh/callback",
  "state": "WtcTF3gFZX",
  "exp": 1676932185,
  "code_challenge": "O591R8MraX7anLgzYcVKG6oaZMQZ3-nI7YFdvVQMqGM"
}
header
{
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256"
}
request_object
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.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.rRG6b_3GxE0uonMPp3vKTevr7MVb92Ijj5D6gKdZSosr-HbiS6W-WQk3OEA64HXVupr59bqz_JBK74-0iQQ7GcWku0T8tEOwLmJSrpl22cXMmEK3Cp8EKyY8AyRys78oYue9ZnD-C7_w_0P11pzd1eoUdCQzmolEv2Frq_v9R9CrgoXfS2w-pGNWXU6fXEIKZvXx22cCH25focxvZOLOIPiCr2KO0ijnQyTolZVSr-4z0gkbZmEiB1RBNgxCXanw4SOr6GFR6kSxsQ36LZ3h4vCYpM41AadduhPCQGNeQTtcofUKJMBA-a5SaDfV9BB4RCMdclINgdprXGi_2KHH3w
key
{
  "kty": "RSA",
  "d": "Cx5XX9EVNxccl9E8YSBEjruSzpueMvtwMXTNsQ-ZifY_ao-OGjgcpv8L7tUjeUu88Bqolxit-fGMPiiYEQ0eeKGuJCNDc3I6RhmsMBdf3quAmpBUqFTtO2fSEWMRKXCjLejjMObSwow_oxSeGwcoDHam2v3y3Q43dxX1s4jjV_-HuwgwghOqd9gTWeu7tOQefYkJ4Tsj6UMrf42LbSazjQmz-4sABmYv1TiuGW9Uj-vBiV7Jozc9rVx4ZOhKrGxnM8kMsG6RWCfP5Nm3PUM_9tCzqNcPJCN3FyEcj2tfU_0ICBuUqXaX4V_usg-TOf2tO2n_5TIZQozUatOAhWeJcQ",
  "e": "AQAB",
  "use": "sig",
  "kid": "7EFA85C18FDE857949BC2EAA21C25E49627D4865",
  "alg": "PS256",
  "n": "wsfaGZ_bVTgF8tl8oy79iVmLZ_nCdAiz5cptwP69qRQB-K0J6DNiAB3DOZ-rlgPZHtWwVGTNvvVE48uY6zWvghj2M7FpxjjqVHCoL98mh5ZLAToucQT3MfVJ62laS4iy6nLnAh9RdUqIrdT4Pji8BajFva1TWWBRYpHPykDuv2ZClRglScrmuIlVOXwDWNCXvIGE4qGwEX2m3UGYFPEv3dkBinJxcsbmEfNcWnjneoyWemcw9x55d-3DxwpLKfjUEu0uxChYTDVk9Ii3uzZls9qHVBwOtrT6c9AKJmtC_slqMtaqxvgBETI8tH8Jl3-5jNoQg094xLdzXftHc06dsw"
}
2023-02-20 22:24:45 SUCCESS
BuildRequestObjectPostToPAREndpoint
request
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV90eXBlIjoiY29kZSIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJub25jZSI6ImoxYk14Vlp4TmEiLCJjbGllbnRfaWQiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV9tb2RlIjoiand0IiwiYXVkIjoiaHR0cHM6XC9cL2RoLXRlc3QuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtIiwibmJmIjoxNjc2OTMxODg1LCJzY29wZSI6Im9wZW5pZCBwcm9maWxlIGNvbW1vbjpjdXN0b21lci5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5jb25jZXNzaW9uczpyZWFkIiwiY2xhaW1zIjp7InNoYXJpbmdfZHVyYXRpb24iOjc3NzYwMDAsImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZSI6InVybjpjZHMuYXU6Y2RyOjIiLCJlc3NlbnRpYWwiOnRydWV9fX0sInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9jZHItbWRoXC9jYWxsYmFjayIsInN0YXRlIjoiV3RjVEYzZ0ZaWCIsImV4cCI6MTY3NjkzMjE4NSwiY29kZV9jaGFsbGVuZ2UiOiJPNTkxUjhNcmFYN2FuTGd6WWNWS0c2b2FaTVFaMy1uSTdZRmR2VlFNcUdNIn0.rRG6b_3GxE0uonMPp3vKTevr7MVb92Ijj5D6gKdZSosr-HbiS6W-WQk3OEA64HXVupr59bqz_JBK74-0iQQ7GcWku0T8tEOwLmJSrpl22cXMmEK3Cp8EKyY8AyRys78oYue9ZnD-C7_w_0P11pzd1eoUdCQzmolEv2Frq_v9R9CrgoXfS2w-pGNWXU6fXEIKZvXx22cCH25focxvZOLOIPiCr2KO0ijnQyTolZVSr-4z0gkbZmEiB1RBNgxCXanw4SOr6GFR6kSxsQ36LZ3h4vCYpM41AadduhPCQGNeQTtcofUKJMBA-a5SaDfV9BB4RCMdclINgdprXGi_2KHH3w
2023-02-20 22:24:45 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
aud
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
jti
Y4aKSwqz6CpQwP3zl1c1
iat
1676931885
exp
1676931945
2023-02-20 22:24:45 SUCCESS
UpdateClientAuthenticationAssertionClaimsWithISSAud
Updated audience in client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
jti
Y4aKSwqz6CpQwP3zl1c1
iat
1676931885
exp
1676931945
aud
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
2023-02-20 22:24:45 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5NDUsImlhdCI6MTY3NjkzMTg4NSwianRpIjoiWTRhS1N3cXo2Q3BRd1AzemwxYzEifQ.okwdlcZDosADcYYKZNUXbHpKW-c8F3X1vCUnNZb4qowMShzmVevStK-ACVGo-kz5NEB9FUdRTDgQbDUbmJxDf64eVcSRgG9dp7cq4pPo64XjooDJkUXi-YSNI5LR0zpwyr9UZC5_lQwTptBMLg_cRzCt97OnPKQRBqYDQ2ZDzwDM3PeIeiWZshmkfZ3yidq1WtJ2Pd9Axm4sSrtusFNRq3MGF1ZjXT7PmA1Hx8SUgOUbYQUlir-BAs0en6uhh-0LomQkxmi3H87G2VIJHLGlMgax__2q1-hUBO-jnM99Iz3xOTUhjifsCZ5KhVoqzEMDYYGy9w_IAFjrOt7P9zMycw
2023-02-20 22:24:45 SUCCESS
AddClientAssertionToPAREndpointParameters
Added client assertion to request
request
{
  "request": "eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV90eXBlIjoiY29kZSIsImNvZGVfY2hhbGxlbmdlX21ldGhvZCI6IlMyNTYiLCJub25jZSI6ImoxYk14Vlp4TmEiLCJjbGllbnRfaWQiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJyZXNwb25zZV9tb2RlIjoiand0IiwiYXVkIjoiaHR0cHM6XC9cL2RoLXRlc3QuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtIiwibmJmIjoxNjc2OTMxODg1LCJzY29wZSI6Im9wZW5pZCBwcm9maWxlIGNvbW1vbjpjdXN0b21lci5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5iYXNpYzpyZWFkIGVuZXJneTphY2NvdW50cy5jb25jZXNzaW9uczpyZWFkIiwiY2xhaW1zIjp7InNoYXJpbmdfZHVyYXRpb24iOjc3NzYwMDAsImlkX3Rva2VuIjp7ImFjciI6eyJ2YWx1ZSI6InVybjpjZHMuYXU6Y2RyOjIiLCJlc3NlbnRpYWwiOnRydWV9fX0sInJlZGlyZWN0X3VyaSI6Imh0dHBzOlwvXC93d3cuY2VydGlmaWNhdGlvbi5vcGVuaWQubmV0XC90ZXN0XC9hXC9jZHItbWRoXC9jYWxsYmFjayIsInN0YXRlIjoiV3RjVEYzZ0ZaWCIsImV4cCI6MTY3NjkzMjE4NSwiY29kZV9jaGFsbGVuZ2UiOiJPNTkxUjhNcmFYN2FuTGd6WWNWS0c2b2FaTVFaMy1uSTdZRmR2VlFNcUdNIn0.rRG6b_3GxE0uonMPp3vKTevr7MVb92Ijj5D6gKdZSosr-HbiS6W-WQk3OEA64HXVupr59bqz_JBK74-0iQQ7GcWku0T8tEOwLmJSrpl22cXMmEK3Cp8EKyY8AyRys78oYue9ZnD-C7_w_0P11pzd1eoUdCQzmolEv2Frq_v9R9CrgoXfS2w-pGNWXU6fXEIKZvXx22cCH25focxvZOLOIPiCr2KO0ijnQyTolZVSr-4z0gkbZmEiB1RBNgxCXanw4SOr6GFR6kSxsQ36LZ3h4vCYpM41AadduhPCQGNeQTtcofUKJMBA-a5SaDfV9BB4RCMdclINgdprXGi_2KHH3w",
  "client_assertion": "eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5NDUsImlhdCI6MTY3NjkzMTg4NSwianRpIjoiWTRhS1N3cXo2Q3BRd1AzemwxYzEifQ.okwdlcZDosADcYYKZNUXbHpKW-c8F3X1vCUnNZb4qowMShzmVevStK-ACVGo-kz5NEB9FUdRTDgQbDUbmJxDf64eVcSRgG9dp7cq4pPo64XjooDJkUXi-YSNI5LR0zpwyr9UZC5_lQwTptBMLg_cRzCt97OnPKQRBqYDQ2ZDzwDM3PeIeiWZshmkfZ3yidq1WtJ2Pd9Axm4sSrtusFNRq3MGF1ZjXT7PmA1Hx8SUgOUbYQUlir-BAs0en6uhh-0LomQkxmi3H87G2VIJHLGlMgax__2q1-hUBO-jnM99Iz3xOTUhjifsCZ5KhVoqzEMDYYGy9w_IAFjrOt7P9zMycw",
  "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer"
}
2023-02-20 22:24:45
CallPAREndpoint
HTTP request
request_uri
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/par
request_method
POST
request_headers
{
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "2162"
}
request_body
request=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.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.rRG6b_3GxE0uonMPp3vKTevr7MVb92Ijj5D6gKdZSosr-HbiS6W-WQk3OEA64HXVupr59bqz_JBK74-0iQQ7GcWku0T8tEOwLmJSrpl22cXMmEK3Cp8EKyY8AyRys78oYue9ZnD-C7_w_0P11pzd1eoUdCQzmolEv2Frq_v9R9CrgoXfS2w-pGNWXU6fXEIKZvXx22cCH25focxvZOLOIPiCr2KO0ijnQyTolZVSr-4z0gkbZmEiB1RBNgxCXanw4SOr6GFR6kSxsQ36LZ3h4vCYpM41AadduhPCQGNeQTtcofUKJMBA-a5SaDfV9BB4RCMdclINgdprXGi_2KHH3w&client_assertion=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5pZHAuZGV2LmNkcnNhbmRib3guZ292LmF1XC9mYXBpLWphcm0iLCJpc3MiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJleHAiOjE2NzY5MzE5NDUsImlhdCI6MTY3NjkzMTg4NSwianRpIjoiWTRhS1N3cXo2Q3BRd1AzemwxYzEifQ.okwdlcZDosADcYYKZNUXbHpKW-c8F3X1vCUnNZb4qowMShzmVevStK-ACVGo-kz5NEB9FUdRTDgQbDUbmJxDf64eVcSRgG9dp7cq4pPo64XjooDJkUXi-YSNI5LR0zpwyr9UZC5_lQwTptBMLg_cRzCt97OnPKQRBqYDQ2ZDzwDM3PeIeiWZshmkfZ3yidq1WtJ2Pd9Axm4sSrtusFNRq3MGF1ZjXT7PmA1Hx8SUgOUbYQUlir-BAs0en6uhh-0LomQkxmi3H87G2VIJHLGlMgax__2q1-hUBO-jnM99Iz3xOTUhjifsCZ5KhVoqzEMDYYGy9w_IAFjrOt7P9zMycw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
request_mutual_tls
{
  "cert": "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",
  "key": "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\u003d"
}
2023-02-20 22:24:46 RESPONSE
CallPAREndpoint
HTTP response
response_status_code
201 CREATED
response_status_text
Created
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:46 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"request_uri":"urn:7b799649-0070-456b-87df-4fd02b81faa4","expires_in":90}
2023-02-20 22:24:46 SUCCESS
CallPAREndpoint
Parsed pushed authorization request endpoint response
request_uri
urn:7b799649-0070-456b-87df-4fd02b81faa4
expires_in
90
2023-02-20 22:24:46 SUCCESS
CheckPAREndpointResponse201WithNoError
pushed authorization request endpoint correct response.
2023-02-20 22:24:46 SUCCESS
CheckForRequestUriValue
Found valid request_uri
request_uri
urn:7b799649-0070-456b-87df-4fd02b81faa4
2023-02-20 22:24:46 SUCCESS
CheckForPARResponseExpiresIn
Found expires_in
expires_in
90
2023-02-20 22:24:46 SUCCESS
ExtractRequestUriFromPARResponse
Extracted the request_uri: urn:7b799649-0070-456b-87df-4fd02b81faa4
2023-02-20 22:24:46 SUCCESS
EnsureMinimumRequestUriEntropy
Calculated shannon entropy seems sufficient
actual
158.61246128900407
expected
128.0
value
urn:7b799649-0070-456b-87df-4fd02b81faa4
2023-02-20 22:24:46 SUCCESS
BuildRequestObjectByReferenceRedirectToAuthorizationEndpoint
Sending to authorization endpoint
redirect_to_authorization_endpoint
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize?request_uri=urn:7b799649-0070-456b-87df-4fd02b81faa4&client_id=3e6c5f3d-bd58-4aaa-8c23-acfec837b506&redirect_uri=https://www.certification.openid.net/test/a/cdr-mdh/callback&scope=openid%20profile%20common:customer.basic:read%20energy:accounts.basic:read%20energy:accounts.concessions:read&response_type=code
2023-02-20 22:24:46 REDIRECT
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Redirecting to authorization endpoint
redirect_to
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/authorize?request_uri=urn:7b799649-0070-456b-87df-4fd02b81faa4&client_id=3e6c5f3d-bd58-4aaa-8c23-acfec837b506&redirect_uri=https://www.certification.openid.net/test/a/cdr-mdh/callback&scope=openid%20profile%20common:customer.basic:read%20energy:accounts.basic:read%20energy:accounts.concessions:read&response_type=code
2023-02-20 22:24:51 INCOMING
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Incoming HTTP request to /test/a/cdr-mdh/callback
incoming_headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://dh-test.idp.dev.cdrsandbox.gov.au/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "connection": "close"
}
incoming_path
/test/a/cdr-mdh/callback
incoming_body_form_params
incoming_method
GET
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{
  "response": "eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiZjVkMjIzNGYtNDQyNy00OTkwLWI5NzEtNDA1ZjRmZTMzOGMwIiwic3RhdGUiOiJXdGNURjNnRlpYIiwibmJmIjoxNjc2OTMxODkxLCJleHAiOjE2NzY5MzIxOTEsImlhdCI6MTY3NjkzMTg5MSwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.mj6LLp5Ds13n0Pkm3MIjRn2yDme49wrhX9i3CUi3MXTWcRxBiEMa5_ShBlZjLBgIV9nM0P-4WMUNiTVGH9ovQilG_7e_vvo5E8U39hn1urs0QOlfRTjk2Fu4GF4lAgXKXhdznXrcohG92rOV6D-eYw1fhyFtkyXUWIaEuFNI_JbEOA7ynPG2xaL6D3EMIt-ijqDEvul1FbMUJviZZDrcBjeVamUfMkMg1SNiDunksluSnk3uY8-cBt3Lx25CUKj1pHj7QWXdrotjsoHGlv_SpjC3VmAdDW_oIJ28xy7VL-SONMwclWP2f-XPGQi785BrdOrZ4JkVNcxL9ajNBtzIsSZ0OOfjbn2UYd6UxvKBjeRTBcRDxAnJ_OMIwkBEKIlwpBXTMxPlfK7Acz1o26QKoGZ7B-EI0PljYxC-jPBLJ5mLmDhRAZjcFCdc9Yap0oZIEcCD1bRNEVYxrPbw-mJ9N5GPx7sLm0E3dTros-KUwUS4qvp3VjvbJsUSAPEsAJMG"
}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2023-02-20 22:24:51 SUCCESS
CreateRandomImplicitSubmitUrl
Created random implicit submission URL
implicit_submit
{
  "path": "implicit/Nn4trwhzHjzvUTNL3TbV",
  "fullUrl": "https://www.certification.openid.net/test/a/cdr-mdh/implicit/Nn4trwhzHjzvUTNL3TbV"
}
2023-02-20 22:24:51 OUTGOING
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Response to HTTP request to test instance K7LXuqt5QtFxBjM
outgoing
ModelAndView [view="implicitCallback"; model={implicitSubmitUrl=https://www.certification.openid.net/test/a/cdr-mdh/implicit/Nn4trwhzHjzvUTNL3TbV, returnUrl=/log-detail.html?log=K7LXuqt5QtFxBjM}]
outgoing_path
callback
2023-02-20 22:24:52 INCOMING
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Incoming HTTP request to /test/a/cdr-mdh/implicit/Nn4trwhzHjzvUTNL3TbV
incoming_headers
{
  "host": "www.certification.openid.net",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "accept": "*/*",
  "content-type": "text/plain",
  "x-requested-with": "XMLHttpRequest",
  "sec-ch-ua-mobile": "?0",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "sec-ch-ua-platform": "\"Windows\"",
  "origin": "https://www.certification.openid.net",
  "sec-fetch-site": "same-origin",
  "sec-fetch-mode": "cors",
  "sec-fetch-dest": "empty",
  "referer": "https://www.certification.openid.net/test/a/cdr-mdh/callback?response\u003deyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiZjVkMjIzNGYtNDQyNy00OTkwLWI5NzEtNDA1ZjRmZTMzOGMwIiwic3RhdGUiOiJXdGNURjNnRlpYIiwibmJmIjoxNjc2OTMxODkxLCJleHAiOjE2NzY5MzIxOTEsImlhdCI6MTY3NjkzMTg5MSwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.mj6LLp5Ds13n0Pkm3MIjRn2yDme49wrhX9i3CUi3MXTWcRxBiEMa5_ShBlZjLBgIV9nM0P-4WMUNiTVGH9ovQilG_7e_vvo5E8U39hn1urs0QOlfRTjk2Fu4GF4lAgXKXhdznXrcohG92rOV6D-eYw1fhyFtkyXUWIaEuFNI_JbEOA7ynPG2xaL6D3EMIt-ijqDEvul1FbMUJviZZDrcBjeVamUfMkMg1SNiDunksluSnk3uY8-cBt3Lx25CUKj1pHj7QWXdrotjsoHGlv_SpjC3VmAdDW_oIJ28xy7VL-SONMwclWP2f-XPGQi785BrdOrZ4JkVNcxL9ajNBtzIsSZ0OOfjbn2UYd6UxvKBjeRTBcRDxAnJ_OMIwkBEKIlwpBXTMxPlfK7Acz1o26QKoGZ7B-EI0PljYxC-jPBLJ5mLmDhRAZjcFCdc9Yap0oZIEcCD1bRNEVYxrPbw-mJ9N5GPx7sLm0E3dTros-KUwUS4qvp3VjvbJsUSAPEsAJMG",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "connection": "close",
  "content-length": "0"
}
incoming_path
/test/a/cdr-mdh/implicit/Nn4trwhzHjzvUTNL3TbV
incoming_body_form_params
incoming_method
POST
incoming_tls_version
TLSv1.2
incoming_tls_cert
incoming_query_string_params
{}
incoming_body
incoming_tls_chain
[
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL",
  "CONFORMANCE_SUITE_JSON_NULL"
]
incoming_tls_cipher
ECDHE-RSA-AES128-GCM-SHA256
incoming_body_json
2023-02-20 22:24:52 OUTGOING
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Response to HTTP request to test instance K7LXuqt5QtFxBjM
outgoing_status_code
204
outgoing_headers
{}
outgoing_body

                                
outgoing_path
implicit/Nn4trwhzHjzvUTNL3TbV
2023-02-20 22:24:52 SUCCESS
ExtractImplicitHashToCallbackResponse
implicit_hash is empty
2023-02-20 22:24:52 REDIRECT-IN
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Authorization endpoint response captured
url_query
{
  "response": "eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiZjVkMjIzNGYtNDQyNy00OTkwLWI5NzEtNDA1ZjRmZTMzOGMwIiwic3RhdGUiOiJXdGNURjNnRlpYIiwibmJmIjoxNjc2OTMxODkxLCJleHAiOjE2NzY5MzIxOTEsImlhdCI6MTY3NjkzMTg5MSwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.mj6LLp5Ds13n0Pkm3MIjRn2yDme49wrhX9i3CUi3MXTWcRxBiEMa5_ShBlZjLBgIV9nM0P-4WMUNiTVGH9ovQilG_7e_vvo5E8U39hn1urs0QOlfRTjk2Fu4GF4lAgXKXhdznXrcohG92rOV6D-eYw1fhyFtkyXUWIaEuFNI_JbEOA7ynPG2xaL6D3EMIt-ijqDEvul1FbMUJviZZDrcBjeVamUfMkMg1SNiDunksluSnk3uY8-cBt3Lx25CUKj1pHj7QWXdrotjsoHGlv_SpjC3VmAdDW_oIJ28xy7VL-SONMwclWP2f-XPGQi785BrdOrZ4JkVNcxL9ajNBtzIsSZ0OOfjbn2UYd6UxvKBjeRTBcRDxAnJ_OMIwkBEKIlwpBXTMxPlfK7Acz1o26QKoGZ7B-EI0PljYxC-jPBLJ5mLmDhRAZjcFCdc9Yap0oZIEcCD1bRNEVYxrPbw-mJ9N5GPx7sLm0E3dTros-KUwUS4qvp3VjvbJsUSAPEsAJMG"
}
headers
{
  "host": "www.certification.openid.net",
  "cache-control": "max-age\u003d0",
  "upgrade-insecure-requests": "1",
  "user-agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36",
  "accept": "text/html,application/xhtml+xml,application/xml;q\u003d0.9,image/avif,image/webp,image/apng,*/*;q\u003d0.8,application/signed-exchange;v\u003db3;q\u003d0.7",
  "sec-fetch-site": "cross-site",
  "sec-fetch-mode": "navigate",
  "sec-fetch-user": "?1",
  "sec-fetch-dest": "document",
  "sec-ch-ua": "\"Chromium\";v\u003d\"110\", \"Not A(Brand\";v\u003d\"24\", \"Google Chrome\";v\u003d\"110\"",
  "sec-ch-ua-mobile": "?0",
  "sec-ch-ua-platform": "\"Windows\"",
  "referer": "https://dh-test.idp.dev.cdrsandbox.gov.au/",
  "accept-encoding": "gzip, deflate, br",
  "accept-language": "en-US,en;q\u003d0.9",
  "cookie": "__utma\u003d201319536.1165959377.1669587552.1669587552.1669587552.1; __utmz\u003d201319536.1669587552.1.1.utmcsr\u003dgoogle|utmccn\u003d(organic)|utmcmd\u003dorganic|utmctr\u003d(not%20provided); JSESSIONID\u003dD6C6C268DAAF4817A90BF632CEA67D51",
  "x-ssl-cipher": "ECDHE-RSA-AES128-GCM-SHA256",
  "x-ssl-protocol": "TLSv1.2",
  "x-forwarded-proto": "https",
  "x-forwarded-port": "443",
  "connection": "close",
  "x-forwarded-host": "www.certification.openid.net",
  "x-forwarded-server": "www.certification.openid.net"
}
http_method
GET
url_fragment
{}
post_body
Verify authorization endpoint response
2023-02-20 22:24:52 SUCCESS
ExtractJARMFromURLQuery
Found and parsed the jarm_response from callback_query_params
value
eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiZjVkMjIzNGYtNDQyNy00OTkwLWI5NzEtNDA1ZjRmZTMzOGMwIiwic3RhdGUiOiJXdGNURjNnRlpYIiwibmJmIjoxNjc2OTMxODkxLCJleHAiOjE2NzY5MzIxOTEsImlhdCI6MTY3NjkzMTg5MSwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.mj6LLp5Ds13n0Pkm3MIjRn2yDme49wrhX9i3CUi3MXTWcRxBiEMa5_ShBlZjLBgIV9nM0P-4WMUNiTVGH9ovQilG_7e_vvo5E8U39hn1urs0QOlfRTjk2Fu4GF4lAgXKXhdznXrcohG92rOV6D-eYw1fhyFtkyXUWIaEuFNI_JbEOA7ynPG2xaL6D3EMIt-ijqDEvul1FbMUJviZZDrcBjeVamUfMkMg1SNiDunksluSnk3uY8-cBt3Lx25CUKj1pHj7QWXdrotjsoHGlv_SpjC3VmAdDW_oIJ28xy7VL-SONMwclWP2f-XPGQi785BrdOrZ4JkVNcxL9ajNBtzIsSZ0OOfjbn2UYd6UxvKBjeRTBcRDxAnJ_OMIwkBEKIlwpBXTMxPlfK7Acz1o26QKoGZ7B-EI0PljYxC-jPBLJ5mLmDhRAZjcFCdc9Yap0oZIEcCD1bRNEVYxrPbw-mJ9N5GPx7sLm0E3dTros-KUwUS4qvp3VjvbJsUSAPEsAJMG
header
{
  "x5t": "fFcWVT6bEy7zJcScogeXNxlsA9s",
  "kid": "7C5716553E9B132EF325C49CA2079737196C03DB",
  "typ": "JWT",
  "alg": "PS256"
}
claims
{
  "aud": "3e6c5f3d-bd58-4aaa-8c23-acfec837b506",
  "code": "f5d2234f-4427-4990-b971-405f4fe338c0",
  "nbf": 1676931891,
  "iss": "https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm",
  "state": "WtcTF3gFZX",
  "exp": 1676932191,
  "iat": 1676931891
}
2023-02-20 22:24:52 SUCCESS
RejectNonJarmResponsesInUrlQuery
Authorization endpoint response only includes the JARM JWT.
2023-02-20 22:24:52 SUCCESS
ExtractAuthorizationEndpointResponseFromJARMResponse
Extracted the authorization response
code
f5d2234f-4427-4990-b971-405f4fe338c0
iss
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
state
WtcTF3gFZX
2023-02-20 22:24:52 SUCCESS
ValidateJARMResponse
JARM response standard JWT claims are valid
2023-02-20 22:24:52 SUCCESS
FAPI1ValidateJarmSigningAlg
JARM response was signed with a permitted algorithm
permitted
[
  "PS256",
  "ES256"
]
alg
PS256
2023-02-20 22:24:52 SUCCESS
ValidateJARMExpRecommendations
JARM response 'exp' is less than 10 minutes
now
"Feb 20, 2023, 10:24:52 PM"
expiration
"Feb 20, 2023, 10:29:51 PM"
2023-02-20 22:24:52 SUCCESS
ValidateJARMSignatureUsingKid
jarm_response signature validated
jarm_response
eyJhbGciOiJQUzI1NiIsImtpZCI6IjdDNTcxNjU1M0U5QjEzMkVGMzI1QzQ5Q0EyMDc5NzM3MTk2QzAzREIiLCJ4NXQiOiJmRmNXVlQ2YkV5N3pKY1Njb2dlWE54bHNBOXMiLCJ0eXAiOiJKV1QifQ.eyJjb2RlIjoiZjVkMjIzNGYtNDQyNy00OTkwLWI5NzEtNDA1ZjRmZTMzOGMwIiwic3RhdGUiOiJXdGNURjNnRlpYIiwibmJmIjoxNjc2OTMxODkxLCJleHAiOjE2NzY5MzIxOTEsImlhdCI6MTY3NjkzMTg5MSwiaXNzIjoiaHR0cHM6Ly9kaC10ZXN0LmlkcC5kZXYuY2Ryc2FuZGJveC5nb3YuYXUvZmFwaS1qYXJtIiwiYXVkIjoiM2U2YzVmM2QtYmQ1OC00YWFhLThjMjMtYWNmZWM4MzdiNTA2In0.mj6LLp5Ds13n0Pkm3MIjRn2yDme49wrhX9i3CUi3MXTWcRxBiEMa5_ShBlZjLBgIV9nM0P-4WMUNiTVGH9ovQilG_7e_vvo5E8U39hn1urs0QOlfRTjk2Fu4GF4lAgXKXhdznXrcohG92rOV6D-eYw1fhyFtkyXUWIaEuFNI_JbEOA7ynPG2xaL6D3EMIt-ijqDEvul1FbMUJviZZDrcBjeVamUfMkMg1SNiDunksluSnk3uY8-cBt3Lx25CUKj1pHj7QWXdrotjsoHGlv_SpjC3VmAdDW_oIJ28xy7VL-SONMwclWP2f-XPGQi785BrdOrZ4JkVNcxL9ajNBtzIsSZ0OOfjbn2UYd6UxvKBjeRTBcRDxAnJ_OMIwkBEKIlwpBXTMxPlfK7Acz1o26QKoGZ7B-EI0PljYxC-jPBLJ5mLmDhRAZjcFCdc9Yap0oZIEcCD1bRNEVYxrPbw-mJ9N5GPx7sLm0E3dTros-KUwUS4qvp3VjvbJsUSAPEsAJMG
2023-02-20 22:24:52 SUCCESS
RejectAuthCodeInUrlQuery
Authorization code is not present in URL query returned from authorization endpoint
2023-02-20 22:24:52 SUCCESS
CheckMatchingCallbackParameters
Callback parameters successfully verified
2023-02-20 22:24:52 SUCCESS
RejectStateInUrlQueryForHybridFlow
state is correctly not present in URL query returned from authorization endpoint (as in the hybrid flow it must be returned in the URL fragment/hash only)
2023-02-20 22:24:52 SUCCESS
CheckIfAuthorizationEndpointError
No error from authorization endpoint
2023-02-20 22:24:52 SUCCESS
ValidateSuccessfulJARMResponseFromAuthorizationEndpoint
authorization endpoint response does not include unexpected parameters
code
f5d2234f-4427-4990-b971-405f4fe338c0
iss
https://dh-test.idp.dev.cdrsandbox.gov.au/fapi-jarm
state
WtcTF3gFZX
2023-02-20 22:24:52 SUCCESS
CheckStateInAuthorizationResponse
State in response correctly returned
state
WtcTF3gFZX
2023-02-20 22:24:52 SUCCESS
ValidateIssInAuthorizationResponse
'iss' parameter in authorization response matches server's issuer value.
2023-02-20 22:24:52 SUCCESS
ExtractAuthorizationCodeFromAuthorizationResponse
Found authorization code
code
f5d2234f-4427-4990-b971-405f4fe338c0
2023-02-20 22:24:52 SUCCESS
EnsureMinimumAuthorizationCodeLength
Authorization code is of sufficient length
actual
288
required
128
2023-02-20 22:24:52 SUCCESS
EnsureMinimumAuthorizationCodeEntropy
Calculated shannon entropy seems sufficient
actual
131.58797503894243
expected
96.0
value
f5d2234f-4427-4990-b971-405f4fe338c0
2023-02-20 22:24:52 SUCCESS
CreateTokenEndpointRequestForAuthorizationCodeGrant
Created token endpoint request
grant_type
authorization_code
code
f5d2234f-4427-4990-b971-405f4fe338c0
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
2023-02-20 22:24:52 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
sub
3e6c5f3d-bd58-4aaa-8c23-acfec837b506
aud
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
jti
lQiqsYKAb9aPKoTTErnX
iat
1676931892
exp
1676931952
2023-02-20 22:24:52 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTk1MiwiaWF0IjoxNjc2OTMxODkyLCJqdGkiOiJsUWlxc1lLQWI5YVBLb1RURXJuWCJ9.UO3gZjBNb45KvYxPypc0i5Yj7baYMJTFklfe7zK1GiY4uyRcY6bH47AXdEcTcJfPTfuFe4zqGpk9IgOdRlX79rOjZmH5x2yTflZpLuGpwkB_y9N7Hrp1K3UCh1mmxMmdDGFmpsE_r3bktQ40E8CWXNxUs1DYi8YtuRbASkhDFT5eZAoocNMBhDp3A3y5QXZaGPX7hcl4CfiStt8XS3hA7V1VHaW2LG2KTkTFLVAGdjPQrgR4S6TehrvGgCGOL7qaqWYHCb375M7gpAPeKfQJqZgq-lltknqGYre_XRLOHWtw4zzvlTIR_WT103ekg29QkbsjVuUbPNW0TAW-R8d1Cw
2023-02-20 22:24:52
AddClientAssertionToTokenEndpointRequest
Added client assertion
grant_type
authorization_code
code
f5d2234f-4427-4990-b971-405f4fe338c0
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTk1MiwiaWF0IjoxNjc2OTMxODkyLCJqdGkiOiJsUWlxc1lLQWI5YVBLb1RURXJuWCJ9.UO3gZjBNb45KvYxPypc0i5Yj7baYMJTFklfe7zK1GiY4uyRcY6bH47AXdEcTcJfPTfuFe4zqGpk9IgOdRlX79rOjZmH5x2yTflZpLuGpwkB_y9N7Hrp1K3UCh1mmxMmdDGFmpsE_r3bktQ40E8CWXNxUs1DYi8YtuRbASkhDFT5eZAoocNMBhDp3A3y5QXZaGPX7hcl4CfiStt8XS3hA7V1VHaW2LG2KTkTFLVAGdjPQrgR4S6TehrvGgCGOL7qaqWYHCb375M7gpAPeKfQJqZgq-lltknqGYre_XRLOHWtw4zzvlTIR_WT103ekg29QkbsjVuUbPNW0TAW-R8d1Cw
client_assertion_type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2023-02-20 22:24:52
CreateRandomCodeVerifier
Created code_verifier value
code_verifier
eTRpOOJLJIpEfIs4BXwih5iZmCMap1Xjvv4xGeZjnVLzi.CqKQq7yX1JPDDsVqqpMLRI10t8rCIweb6I5dDicH3AISGE3eJfSQIA9lJK.5.iuxDJQAWqgY2hHElkX_M_
2023-02-20 22:24:52
AddCodeVerifierToTokenEndpointRequest
grant_type
authorization_code
code
f5d2234f-4427-4990-b971-405f4fe338c0
redirect_uri
https://www.certification.openid.net/test/a/cdr-mdh/callback
client_assertion
eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTk1MiwiaWF0IjoxNjc2OTMxODkyLCJqdGkiOiJsUWlxc1lLQWI5YVBLb1RURXJuWCJ9.UO3gZjBNb45KvYxPypc0i5Yj7baYMJTFklfe7zK1GiY4uyRcY6bH47AXdEcTcJfPTfuFe4zqGpk9IgOdRlX79rOjZmH5x2yTflZpLuGpwkB_y9N7Hrp1K3UCh1mmxMmdDGFmpsE_r3bktQ40E8CWXNxUs1DYi8YtuRbASkhDFT5eZAoocNMBhDp3A3y5QXZaGPX7hcl4CfiStt8XS3hA7V1VHaW2LG2KTkTFLVAGdjPQrgR4S6TehrvGgCGOL7qaqWYHCb375M7gpAPeKfQJqZgq-lltknqGYre_XRLOHWtw4zzvlTIR_WT103ekg29QkbsjVuUbPNW0TAW-R8d1Cw
client_assertion_type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
code_verifier
eTRpOOJLJIpEfIs4BXwih5iZmCMap1Xjvv4xGeZjnVLzi.CqKQq7yX1JPDDsVqqpMLRI10t8rCIweb6I5dDicH3AISGE3eJfSQIA9lJK.5.iuxDJQAWqgY2hHElkX_M_
2023-02-20 22:24:52
CallTokenEndpointAndReturnFullResponse
HTTP request
request_uri
https://dh-test.secure.idp.dev.cdrsandbox.gov.au/fapi-jarm/connect/token
request_method
POST
request_headers
{
  "accept": "application/json",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "1157"
}
request_body
grant_type=authorization_code&code=f5d2234f-4427-4990-b971-405f4fe338c0&redirect_uri=https%3A%2F%2Fwww.certification.openid.net%2Ftest%2Fa%2Fcdr-mdh%2Fcallback&client_assertion=eyJraWQiOiI3RUZBODVDMThGREU4NTc5NDlCQzJFQUEyMUMyNUU0OTYyN0Q0ODY1IiwiYWxnIjoiUFMyNTYifQ.eyJzdWIiOiIzZTZjNWYzZC1iZDU4LTRhYWEtOGMyMy1hY2ZlYzgzN2I1MDYiLCJhdWQiOiJodHRwczpcL1wvZGgtdGVzdC5zZWN1cmUuaWRwLmRldi5jZHJzYW5kYm94Lmdvdi5hdVwvZmFwaS1qYXJtXC9jb25uZWN0XC90b2tlbiIsImlzcyI6IjNlNmM1ZjNkLWJkNTgtNGFhYS04YzIzLWFjZmVjODM3YjUwNiIsImV4cCI6MTY3NjkzMTk1MiwiaWF0IjoxNjc2OTMxODkyLCJqdGkiOiJsUWlxc1lLQWI5YVBLb1RURXJuWCJ9.UO3gZjBNb45KvYxPypc0i5Yj7baYMJTFklfe7zK1GiY4uyRcY6bH47AXdEcTcJfPTfuFe4zqGpk9IgOdRlX79rOjZmH5x2yTflZpLuGpwkB_y9N7Hrp1K3UCh1mmxMmdDGFmpsE_r3bktQ40E8CWXNxUs1DYi8YtuRbASkhDFT5eZAoocNMBhDp3A3y5QXZaGPX7hcl4CfiStt8XS3hA7V1VHaW2LG2KTkTFLVAGdjPQrgR4S6TehrvGgCGOL7qaqWYHCb375M7gpAPeKfQJqZgq-lltknqGYre_XRLOHWtw4zzvlTIR_WT103ekg29QkbsjVuUbPNW0TAW-R8d1Cw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer&code_verifier=eTRpOOJLJIpEfIs4BXwih5iZmCMap1Xjvv4xGeZjnVLzi.CqKQq7yX1JPDDsVqqpMLRI10t8rCIweb6I5dDicH3AISGE3eJfSQIA9lJK.5.iuxDJQAWqgY2hHElkX_M_
request_mutual_tls
{
  "cert": "MIIDvzCCAqegAwIBAgIIMANxYwAAAAAwDQYJKoZIhvcNAQELBQAwajELMAkGA1UEBhMCQVUxDTALBgNVBAoMBEFDQ0MxDDAKBgNVBAsMA0NEUjEYMBYGA1UECwwPQ0RSIFNhbmRib3ggZGV2MSQwIgYDVQQDDBtDRFIgU2FuZGJveCBJbnRlcm1lZGlhdGUgQ0EwHhcNMjIxMTEyMTQ0NjA3WhcNMjMxMTEzMTQ0NjA3WjBeMQswCQYDVQQGEwJBVTEYMBYGA1UECxMPQ0RSIFNhbmRib3ggZGV2MR0wGwYDVQQKExRLZW5vYnkgQmFuayAoS2Vub2J5KTEWMBQGA1UEAxMNRkFQSSBDbGllbnQgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKChIsI2pFBjArD5nemjbBznsipr1CrCaCJK5w4ceA3zN0h3y6Dr4ykYp6QWN/d0KBQ/gbyomuvbiiouwCzXyrJMhtEIkxguXaWmisRC5CXGKAS28AoTAV3MtxxkH0blB/9zeokEkM6SHXXBzWkMmDZZ9B5dRExvHvAeTV5zhZj4jRBnQaF7fm73qZ+eEZf2U/SjipztmwtEj66Mg8fnXgVejXIHdqQ5eJpjKOEY7YCwVEUeLHL35yEwaK9D7v5qaovKTRKKCcLFSFPF83jqaLfvhllJy+jAtmvfnymme83QBJJnNQQCM4ex0wxbAPeKNMq58arOXTFgQ8RB9SXy7nsCAwEAAaN1MHMwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwHwYDVR0jBBgwFoAU4KJgrpAfQQqywrXq4djKu921yyAwEwYDVR0lBAwwCgYIKwYBBQUHAwIwHQYDVR0OBBYEFB3SyraxfgiFNGYvORkiMzHuT0J/MA0GCSqGSIb3DQEBCwUAA4IBAQAvjXHEBT17OIyIzBvt5/kVK+V/DoUVA/+OxcCa3l8yvOyvfFePNJbRn98ZE0LRYN87p5j+w8q0/OWetBTiHlUnNwRKKl/S1VlTDJ/PJTdhC5e4pMF/iQdJCzlD5QYsRyiGiG2oMjWH2a2I+XNNTPuKuWdVdes4ip+N5U3mfBrg8RspnVbCld/mvkZHYCETrgsyu9eA+IiCXGTYOH9p9NPB+Au4I8oxgNOyR7pu5xf77Nm3D1RcK7rd88ZkSoERAl20mf91/4AKgLVWGGFrdgwh9CY60uuhxL/ESMzKz3XlPc66qAnJtDaje/u3QoEYqW/e6o3Mwqu2VTp8Orkn/VxW",
  "key": "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\u003d"
}
2023-02-20 22:24:53 RESPONSE
CallTokenEndpointAndReturnFullResponse
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Mon, 20 Feb 2023 22:24:53 GMT",
  "content-type": "application/json; charset\u003dutf-8",
  "transfer-encoding": "chunked",
  "connection": "keep-alive",
  "cache-control": "no-store,no-cache",
  "pragma": "no-cache",
  "strict-transport-security": "max-age\u003d15724800; includeSubDomains"
}
response_body
{"error":"invalid_grant","error_description":"ERR-TKN-004: Invalid code_verifier"}
2023-02-20 22:24:53 SUCCESS
CallTokenEndpointAndReturnFullResponse
Parsed token endpoint response
error
invalid_grant
error_description
ERR-TKN-004: Invalid code_verifier
2023-02-20 22:24:53 SUCCESS
CheckTokenEndpointHttpStatus400
Token endpoint http status code was 400
2023-02-20 22:24:53 SUCCESS
CheckTokenEndpointReturnedJsonContentType
token_endpoint_response_headers Content-Type: header is application/json
2023-02-20 22:24:53 SUCCESS
CheckErrorFromTokenEndpointResponseErrorInvalidGrant
Token Endpoint response error returned expected 'error' of 'invalid_grant'
expected
[
  "invalid_grant"
]
2023-02-20 22:24:53 SUCCESS
ValidateErrorFromTokenEndpointResponseError
Token endpoint response error returned valid 'error' field
error
invalid_grant
2023-02-20 22:24:53 SUCCESS
CheckErrorDescriptionFromTokenEndpointResponseErrorContainsCRLFTAB
token_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
ERR-TKN-004: Invalid code_verifier
2023-02-20 22:24:53 SUCCESS
ValidateErrorDescriptionFromTokenEndpointResponseError
token_endpoint_response error returned valid 'error_description' field
error_description
ERR-TKN-004: Invalid code_verifier
2023-02-20 22:24:53 SUCCESS
ValidateErrorUriFromTokenEndpointResponseError
token_endpoint_response did not include optional 'error_uri' field
2023-02-20 22:24:53 FINISHED
fapi1-advanced-final-incorrect-pkce-code-verifier-rejected
Test has run to completion
testmodule_result
PASSED
2023-02-20 22:24:59
TEST-RUNNER
Alias has now been claimed by another test
alias
cdr-mdh
new_test_id
1TxPzd4lXMA7oIQ
Test Results