Hello all (and a happy New Year),
I am looking at draft-ietf-acme-acme-01 as available on github right
now, more precisely at section 6.2 and the "directory" resource which
would allow a client to find out the URIs for other resources.
Since "directory" is there to help find URIs for resources, it must
itself be at a know URI.
draft-ietf-acme-acme-01 states:
In order to help clients configure themselves with the right
URIs for each ACME operation, ACME servers provide a directory
object. This should be the root URL with which clients are
configured.
The question is, what exactly is the "root URL"? At first thought it
would be the "/" path on the server.
But for "/", https://acme-v01.api.letsencrypt.org returns an HTML page
which, among other human-targeted information, mentions that the ACME
directory is at "/directory". Which makes acme-v01.api.letsencrypt.org
non-compliant to draft-ietf-acme-acme-01.
Keeping "/" as a browser-renderable "front page" for a server makes
sense, so my opinion is that placing the directory at a pre-decided,
non-root URL would be a sensible choice and draft-ietf-acme-acme-01
should specify the path where ACME clients would find the ACME
directory (and "/acme" might be a possible candidate IMO).
Or did I get the whole thing wrong?
Amicalement,
--
Albert.
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
