DeviceAuthEndpoint.IsHttpsRequired

Is HTTPS required at the device authorization endpoint

This test checks whether the device authorization endpoint enforces HTTPS connections.

View source code on BitBucket

Documents

This test is part of the following document(s):

• RFC8628 - OAuth 2.0 Device Authorization Grant (RFC8628), section 3.1 (must)

Back to the test case overview or the threat overview