On 10/28/2016 03:18 PM, Richard Barnes wrote: > I think the crux of our disagreement is actually above. You seem to > be arguing that authz for different identifier types are as different > from one another as OOB is from DNS-name. I'm saying that the > identifier validation process is going to be the same for many > different identifiers, so the "authorization" abstraction is meaningful. Can you give an example of how they will be the same? The currently defined dns-01, http-01, and tls-sni-02 challenges can only be used for DNS identifiers.
The "oob" challenges can be used by what you propose currently fill the "requirements" niche. Specifically, you would have an authorization of type "oob", containing a single challenge of type "oob." _______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
