API TLS certificate authority change (No action required)
Complete·Under maintenance

The change has been rolled out successfully. The API endpoint (api.gocardless.com) is now using the new TLS certificate.

Tue, Jul 18, 2023, 10:42 AM
(1 year ago)
·
Affected components
Live
Updates

Complete

The change has been rolled out successfully. The API endpoint (api.gocardless.com) is now using the new TLS certificate.

Tue, Jul 18, 2023, 10:42 AM

Complete

System is available.

Tue, Jul 18, 2023, 10:32 AM

Complete

This change has been completed successfully.

Tue, Jul 18, 2023, 10:30 AM

In progress

Starting change

Tue, Jul 18, 2023, 10:03 AM(27 minutes earlier)

In progress

Scheduled maintenance is currently in progress. We will provide updates as necessary.

Tue, Jul 18, 2023, 10:00 AM

Scheduled

From Tuesday 18th July 2023, GoCardless will begin transitioning the api.gocardless.com endpoint to a new TLS certificate.

This change will be transparent and therefore not result in any interruption of service, as long as your GoCardless integration does not perform any certificate "pinning". Pinning is not a supported configuration, as per: https://developer.gocardless.com/api-reference#appendix-public-certificate-policy

The new chain of trust will begin with the following root certificate authority: 'GlobalSign nv-sa': https://valid.r1.roots.globalsign.com/ https://crt.sh/?id=88. This root CA has been distributed for 20+ years, but if you have concerns about your systems' ability to verify this chain then you must ensure that your configuration is updated.

Email communications have also been sent out to all integrators who could be affected by this change.

Tue, Jul 4, 2023, 09:32 AM(2 weeks earlier)