Chaos and Order

Chaos and Order https://www.youngju.dev/blog 천천히 올바르게. AI Researcher & DevOps Engineer Youngju's tech blog. GPU/CUDA, LLM, MLOps, Kubernetes AI workloads, distributed training, and data engineering. ko fjvbn2003@gmail.com (Youngju Kim) fjvbn2003@gmail.com (Youngju Kim) Fri, 12 Jun 2026 00:00:00 GMT https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security.en FAPI 2.0 — A Complete Guide to the Financial-grade API Security Profile https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security.en A thorough walkthrough of FAPI 2.0 Security Profile, the standard of the open banking and open data era. Covers the simplification from FAPI 1.0 to 2.0, the core requirements of PAR, PKCE, and sender-constrained tokens, DPoP vs mTLS, Message Signing, FAPI 2.0 Final support and client policies configuration in Keycloak 26.6, and conformance testing. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) fapioauthoidckeycloaksecurityopenbankingdevops https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security.ja FAPI 2.0 — 金融グレード API セキュリティプロファイル完全ガイド https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security.ja オープンバンキングとオープンデータ時代の標準である FAPI 2.0 Security Profile を整理します。FAPI 1.0 から 2.0 への簡素化、PAR/PKCE/sender-constrained token の中核要件、DPoP と mTLS の比較、Message Signing、Keycloak 26.6 の FAPI 2.0 Final サポートと client policies 設定、適合性テストまで扱います。 Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) fapioauthoidckeycloaksecurityopenbankingdevops https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security FAPI 2.0 — 금융급 API 보안 프로파일 완전 정리 https://www.youngju.dev/blog/devops/2026-06-12-fapi2-financial-grade-api-security 오픈뱅킹과 마이데이터 시대의 표준인 FAPI 2.0 Security Profile을 정리합니다. FAPI 1.0에서 2.0으로의 단순화, PAR/PKCE/sender-constrained token 핵심 요구사항, DPoP vs mTLS 비교, Message Signing, Keycloak 26.6의 FAPI 2.0 Final 지원과 client policies 설정, 적합성 테스트까지 다룹니다. Fri, 12 Jun 2026 00:00:00 GMT fjvbn2003@gmail.com (Youngju Kim) fapioauthoidckeycloaksecurityopenbankingdevops