ApiEndpoint.HasValidCertificate

Trusted API certificate

This test determines whether the certificate that is being used by the API server is widely trusted.

View source code on GitHub

Documents

This test is part of the following document(s):

• The OAuth 2.0 Authorization Framework: Bearer Token Usage (RFC6750), section 5.2 (must)
• OAuth 2.0 Threat Model and Security Considerations (RFC6819), section 5.1.2 (should)
• Financial-grade API Security Profile (FAPI) 1.0 – Part 1: Baseline (FAPI1Base), section 7.1 (must)
• Financial-grade API Security Profile (FAPI) 1.0 – Part 2: Advanced (FAPI1Adv), section 8.5 (must)

Back to the test case overview or the threat overview