AuthEndpoint.HasValidCertificate

Trusted authorization certificate

This test determines whether the certificate that is being used by the authorization server is widely trusted.

View source code on GitHub

Documents

This test is part of the following document(s):

• The OAuth 2.0 Authorization Framework (RFC6749), section 10.9 (must)
• The OAuth 2.0 Authorization Framework: Bearer Token Usage (RFC6750), section 5.2 (must)
• Proof Key for Code Exchange by OAuth Public Clients (RFC7636), section 7.5 (must)
• OAuth 2.0 Threat Model and Security Considerations (RFC6819), section 5.1.2 (should)

Back to the test case overview or the threat overview