> On Jan 21, 2020, at 7:13 AM, Owen Friel (ofriel) <ofr...@cisco.com> wrote: > >> >> Will this document eventually also describe subdomain authz via the standard >> ACME workflow? >> >> <snip> > > [ofriel] That’s the exact workflow that the document is attempting to > describe, so maybe it needs to be clarified. > The example section > https://tools.ietf.org/html/draft-friel-acme-subdomains-01#section-4.2 (and I > realise now looking at it that I messed up the numbered steps - they are all > '1') outlines a client authorizing for "example.com" and getting certs for > "sub0.example.com", "sub1.example.com" and "sub2.example.com". If its not > clear, I can try reword in an update.
Your document seems to confine itself to the pre-authorization workflow, though (as per section 4’s 2nd paragraph, anyhow); I’m thinking applicability to 8555’s default/standard/order-then-authz workflow. -FG _______________________________________________ Acme mailing list Acme@ietf.org https://www.ietf.org/mailman/listinfo/acme