[Acme] Example requests
Jörn Heissler <acme-specs@joern.heissler.de> Sun, 04 March 2018 21:36 UTC
Return-Path: <acme-specs@joern.heissler.de>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44AF5126B72 for <acme@ietfa.amsl.com>; Sun, 4 Mar 2018 13:36:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.05
X-Spam-Level:
X-Spam-Status: No, score=0.05 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_DYNAMIC_IPADDR=1.951, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lTNX-NhpnByi for <acme@ietfa.amsl.com>; Sun, 4 Mar 2018 13:36:27 -0800 (PST)
Received: from lvps87-230-93-31.dedicated.hosteurope.de (kappa.tutnicht.de [87.230.93.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79CDD1200FC for <acme@ietf.org>; Sun, 4 Mar 2018 13:36:26 -0800 (PST)
Received: from [10.255.0.6] (helo=carrot.tutnicht.de) by lvps87-230-93-31.dedicated.hosteurope.de with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.84_2) (envelope-from <acme-specs@joern.heissler.de>) id 1esbIu-000715-W5 for acme@ietf.org; Sun, 04 Mar 2018 22:36:25 +0100
Date: Sun, 04 Mar 2018 22:36:23 +0100
From: Jörn Heissler <acme-specs@joern.heissler.de>
To: ACME WG <acme@ietf.org>
Message-ID: <20180304213623.GJ2161@carrot.tutnicht.de>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="sMZCuqyhuhd4ycTi"
Content-Disposition: inline
User-Agent: Mutt/1.9.3 (2018-01-21)
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/3V9hmwnBxb9zoHdnZYEtSIROzB4>
Subject: [Acme] Example requests
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Mar 2018 21:36:29 -0000
Hello,
I'm not sure if this should be included, so not making a PR yet.
Complete examples for requests may help implementers (of both servers
and clients) to understand the specifications. All existing examples
have pseudo-code like base64url({...}) and no untruncated keys or
signatures.
I wrote two examples, one for account creation, another for key
roll-over to demonstrate nested JWS:
https://github.com/joernheissler/acme/commit/a8a303ddbe3280b49ce8f10508dcdf95a6dc6de9
That commit also adds "--- back" (Backmatter to get Appendices in the
rendered document) and I'm not happy with the wording on top.
To check correctness of the signatures and make the requests
human-readable, I also wrote a small test program:
https://gist.github.com/joernheissler/04d9dcfb3a99e318871e451c9043f2dc
Do you think those examples should be included? And if so, is there any
time left to actually do it?
Cheers
Joern Heissler
- [Acme] Example requests Jörn Heissler
- Re: [Acme] Example requests Richard Barnes
- Re: [Acme] Example requests Jacob Hoffman-Andrews