Here's my proposal that removes the STAR special-casing in ACME, making
certificate URLs behave the same way as all other fetchable resources:
https://github.com/ietf-wg-acme/acme/pull/459.
Sticking STAR concerns into the ACME draft so late in ACME development
is only going to cause issues. At
>The removed language is a non-normative statement of fact
You can't introduce a new authentication method in post-Last Call
revisions, and claim they are non-significant simply because they are
not formally normative.
> It seems like you're trying to get rid of a better option to maintain
t
On Fri, Oct 5, 2018 at 1:41 PM Adam Roach wrote:
> [as an individual]
>
> On 10/5/18 11:21 AM, Jacob Hoffman-Andrews wrote:
>
> In the rounds of reviews on https://github.com/ietf-wg-acme/acme/pull/445,
> I missed an addition: the suggestion to use capability URLs for access
> control on certific
[as an individual]
On 10/5/18 11:21 AM, Jacob Hoffman-Andrews wrote:
In the rounds of reviews on
https://github.com/ietf-wg-acme/acme/pull/445, I missed an addition:
the suggestion to use capability URLs for access control on
certificate URLs. We should definitely not introduce this into the
In the rounds of reviews on
https://github.com/ietf-wg-acme/acme/pull/445, I missed an addition: the
suggestion to use capability URLs for access control on certificate
URLs. We should definitely not introduce this into the spec: ACME has
one authentication model, based on JWS signing. We shoul
I want at first to say sorry that my last email wasn't sent to new thread.
Now for the suggestions, i will start with the reason behind them it
might be easier to convoy the idea, i believe that this draft is one of
the most important protocol drafts in this year, with all those consumer
route