Are authentication parameters in the URI allowed

This test checks if the authentication parameters can be passed via the URI (instead of the request body or the Authorization header).

View source code on GitHub


This test is part of the following document(s):

Back to the test case overview or the threat overview