API TLS certificate authority change (No action required)

Scheduled Maintenance Report for GoCardless

Completed

The change has been rolled out successfully. The API endpoint (api.gocardless.com) is now using the new TLS certificate.

Posted Jul 18, 2023 - 11:42 BST

In progress

Scheduled maintenance is currently in progress. We will provide updates as necessary.

Posted Jul 18, 2023 - 11:00 BST

Scheduled

From Tuesday 18th July 2023, GoCardless will begin transitioning the api.gocardless.com endpoint to a new TLS certificate.

This change will be transparent and therefore not result in any interruption of service, as long as your GoCardless integration does not perform any certificate "pinning". Pinning is not a supported configuration, as per: https://developer.gocardless.com/api-reference#appendix-public-certificate-policy

The new chain of trust will begin with the following root certificate authority: 'GlobalSign nv-sa': https://valid.r1.roots.globalsign.com/ https://crt.sh/?id=88. This root CA has been distributed for 20+ years, but if you have concerns about your systems' ability to verify this chain then you must ensure that your configuration is updated.

Email communications have also been sent out to all integrators who could be affected by this change.

Posted Jul 04, 2023 - 10:32 BST

This scheduled maintenance affected: API (Live).