Does the sharing is allowed, at least for authorization objects in “pending” or
“valid” status? Or does it need to be decided by the server policy?
If pre-authorization is supported, the ACME server will certainly need to check
existing authorization objects, at least for the ones in “valid”
Excuse me if it has been discussed before.
It looks like that there is no URL defined to fetch the list of existing
authorization objects associated with an account, especially for ACME servers
supporting pre-authorization
Does this mean that it is up to the specific ACME server implementation
In Section 7.4, the following two statements seem to in conflict with each
other:
A request to finalize an order will result in error if the order indicated does
not have status “pending”, if the CSR and order identifiers differ, or if the
account is not authorized for the identifiers
I have a few questions related to Account Objects.
Section 7.1.2 indicates that the “orders” field is a required field. However,
the response example in Section 7.3 does not have the “orders” field. I am
wondering if the “orders” field would be optional for “newAccount” response.