OK, that wasn't clear to me in the context. Maybe change to:
The server MUST return an error if it cannot fulfill the request as
specified (including the CSR any other fields), and MUST NOT issue a
certificate with contents other than those requested.
On 30/05/17 18:53, Richard Barnes wrote:
"""
The server MUST return an error if it cannot fulfill the request as
specified, and MUST NOT issue a certificate with contents other than
those requested.
"""
https://ietf-wg-acme.github.io/acme/#rfc.section.7.4
On Tue, May 30, 2017 at 11:51 AM, Yaron Sheffer <[email protected]
<mailto:[email protected]>> wrote:
In the "Applying for Certificate Issuance" section: the notBefore
and notAfter fields are not part of the CSR, and it is not clear
if the server is allowed to change them according to its own
policy. E.g. for a shorter period than requested.
Thanks,
Yaron
_______________________________________________
Acme mailing list
[email protected] <mailto:[email protected]>
https://www.ietf.org/mailman/listinfo/acme
<https://www.ietf.org/mailman/listinfo/acme>
_______________________________________________
Acme mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/acme
