On 30 November 2016 at 15:52, Richard Barnes wrote:
> So, dear HTTP editor, which code should we use?
No need to be facetious :)
I was agreeing with Ted, if that wasn't clear. 400 is your grab bag
for "requests you don't like". 403 is generally used for cases where
authentication
So, dear HTTP editor, which code should we use?
On Nov 29, 2016 8:09 PM, "Martin Thomson" wrote:
> On 30 November 2016 at 09:38, Ted Hardie wrote:
> > That's a lot of different bike sheds covered with the same paint. Maybe
> > that uniformity is
Taking a look at this, I wonder a bit if we are not over-using 403. At the
moment we use 403 and a reason for pre-auth failure, ToS failure, and now
for algorithm signature mismatch.
That's a lot of different bike sheds covered with the same paint. Maybe
that uniformity is good, but , especially
One more minor fix:
https://github.com/ietf-wg-acme/acme/pull/219
In some cases, it might be important for a client to know that a server has
or has not processed an extension field. For example, if we had an
extension that requested some higher level of assurance, then a client
would want to
Could you please click the button on GH to indicate that? :)
On Tue, Nov 29, 2016 at 4:01 PM, Jacob Hoffman-Andrews wrote:
> On 11/29/2016 01:00 PM, Richard Barnes wrote:
> > Updated:
> >
> > https://github.com/ietf-wg-acme/acme/pull/208
> LGTM
>
On 11/29/2016 01:00 PM, Richard Barnes wrote:
> Updated:
>
> https://github.com/ietf-wg-acme/acme/pull/208
LGTM
___
Acme mailing list
Acme@ietf.org
https://www.ietf.org/mailman/listinfo/acme