TokenEndpoint.HasValidCertificate

Trusted token certificate

This test determines whether the certificate that is being used by the token server is widely trusted.

View source code on GitHub

Documents

This test is part of the following document(s):

• The OAuth 2.0 Authorization Framework (RFC6749), section 10.9 (must)
• The OAuth 2.0 Authorization Framework: Bearer Token Usage (RFC6750), section 5.2 (must)
• RFC8628 - OAuth 2.0 Device Authorization Grant (RFC8628), section 3.4 (must)
• Proof Key for Code Exchange by OAuth Public Clients (RFC7636), section 7.5 (must)
• OAuth 2.0 Threat Model and Security Considerations (RFC6819), section 5.1.2 (should)

Back to the test case overview or the threat overview