How could we validate a client side certificate sent to us via a REST API. I have a partner that is not using classic REST API auth logic, but instead relies on client side certs to perform this authentication, how could I validate that the certificate on a expose rest endpoint contains a signed certificate which I have a private key for?
Hi @André Pinho ,Unfortunately, this component is only targeting the use case of consuming external Rest APIs that require Mutual TLS.
I believe the platform has 2 public actions that could in theory be used to validate the client certificates sent to an exposed Rest endpoint.They can be found under "(System)":
However, in the past, when I tried to use them, I was never able to get any value returned because as far as I understand, the platform is not forcing the certificate validation on the exposed endpoints.Nevertheless, you may give it a try.Regards,