I can’t ask this on StackOverflow, because they require questions to be about specific lines of code. I thought I might be able to ask here.
I’ve got SSL enabled on a site. I can access the REST endpoints on that site via Postman, just by copying the security certificate to Postman.
How does SSL insure security when it is so easy to hit the REST endpoints via Postman? Is it very difficult for hackers to obtain the security certificate?