TokenEndpoint.ClientSecretEntropySugReq

Is the client secret secure (160 bits)

This test calculates the entropy of the client secret and verifies that it conforms to the suggested minimum length of 160 bits

View source code on GitHub

Documents

This test is part of the following document(s):

• The OAuth 2.0 Authorization Framework (RFC6749), section 10.10 (must)

Back to the test case overview or the threat overview