13 lines
1 KiB
Text
13 lines
1 KiB
Text
|
[[_fapi-support]]
|
||
|
|
=== Financial-grade API (FAPI) Support
|
||
|
|
|
||
|
|
{project_name} makes it easier for administrators to make sure that their clients are compliant with
|
||
|
|
the https://openid.net/specs/openid-financial-api-part-1-1_0.html[Financial-grade API Security Profile 1.0 - Part 1: Baseline]
|
||
|
|
and https://openid.net/specs/openid-financial-api-part-2-1_0.html[Financial-grade API Security Profile 1.0 - Part 2: Advanced]. This compliance means that the {project_name} server will verify the requirements
|
||
|
|
for the authorization server, which are mentioned in the specifications. {project_name} adapters do not have any specific support for the FAPI, hence the required validations on the client (application)
|
||
|
|
side may need to be still done manually or through some other third-party solutions.
|
||
|
|
|
||
|
|
To make sure that your clients are FAPI compliant, you can configure Client Policies in your realm as described in the link:{adminguide_link}#_client_policies[{adminguide_name}]
|
||
|
|
and link them to the global client profiles for FAPI support, which are automatically available in each realm.
|
||
|
|
|