Re: [Acme] Example requests
Richard Barnes <rlb@ipv.sx> Sun, 04 March 2018 22:17 UTC
Return-Path: <rlb@ipv.sx>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06F5D126B72 for <acme@ietfa.amsl.com>; Sun, 4 Mar 2018 14:17:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ipv-sx.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hfyKrJ0KP_V9 for <acme@ietfa.amsl.com>; Sun, 4 Mar 2018 14:17:53 -0800 (PST)
Received: from mail-wm0-x233.google.com (mail-wm0-x233.google.com [IPv6:2a00:1450:400c:c09::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A678124217 for <acme@ietf.org>; Sun, 4 Mar 2018 14:17:52 -0800 (PST)
Received: by mail-wm0-x233.google.com with SMTP id z81so12346267wmb.4 for <acme@ietf.org>; Sun, 04 Mar 2018 14:17:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipv-sx.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=moWf0S3z4dVpkwQS32WD4mzgOWO3ocltcLsKl4kclrA=; b=FkW4mqq85oKWVlWDjko1buPX8bVkPdH7xk0kT9dwDQLtMAmDpk5lnWIVPb+1YctUSR 0JvbtgnhRvJ3W30MVpu1hsbDeSvw2U/eWevQztYWXaq4/HDsNEsOtfqEyi1syot3ys8H LrC+wWzsf/6OGI43mdIHtXGBeBn7mDelZidAga70pxT1R6xNkzaRdYwZullmb3rpT7T0 aiT3CGNJqp0V7UgBBxhZu1sxVEKv3NTUbipipN+shjRKE6JAEs08m3Yyhwpdns+wyeVU ttNActinbK6JchMjiesTjT1Vx+6j7aJH9n119tOAc6Jj4nmc2DyDzSW69DCtq42Rek5p gRVQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=moWf0S3z4dVpkwQS32WD4mzgOWO3ocltcLsKl4kclrA=; b=Mw5wWYkEsNJcHZ95FAKZv5i0cLzEpgteQhckQHtFnbcwSJf5iSNc+zCZtSusEMe1MB fGBxrjSg+iSJEvsgXgv+62M4tm7l4fVcc9drTQEJs4LuyOEdR3J5Fzxwr5/lGteadExt DElATiJWAxQE8poLaeebGMWp7QMx8DQDha9hXcRvD8slTcoRMLW+DIOKpjkBcNCrhmWc hCfCSDdo4fMt0wAURRolrmUwAR6WuMtmDZUjZ2DFnEOruNDdkDgV1Nu6geqaXyqtyRho 28UGpsCup5hP3XhVBpSOblzJLGSO1n+gyNZDiWHADcyOnr/3xfvl88tSN7O5+IxGiP7J aEIw==
X-Gm-Message-State: AElRT7HRcSK+jhNvrfFwoVkVI3Tis8cxV2E0dvOsuPk+L8pxKZVMy9ee rhkbrLIqFATNr+DfTyfnKEMyxS1vONv8wBLM2aa3fNI03/o=
X-Google-Smtp-Source: AG47ELuN10C6T5UDSSzotjvqBkB/0JzFIliscEYN8+Hh4ogqV7yMrDa/vy37bHfdYQUyod5uAO1V9TCMBKMmkDp1Txg=
X-Received: by 10.28.153.133 with SMTP id b127mr6156638wme.105.1520201871069; Sun, 04 Mar 2018 14:17:51 -0800 (PST)
MIME-Version: 1.0
Received: by 10.28.12.140 with HTTP; Sun, 4 Mar 2018 14:17:50 -0800 (PST)
In-Reply-To: <20180304213623.GJ2161@carrot.tutnicht.de>
References: <20180304213623.GJ2161@carrot.tutnicht.de>
From: Richard Barnes <rlb@ipv.sx>
Date: Sun, 04 Mar 2018 17:17:50 -0500
Message-ID: <CAL02cgSnmKHLUK-SM6tF7bOvkXfDdh5qmgQd+jf1Dcarz9_Z5w@mail.gmail.com>
To: Jörn Heissler <acme-specs@joern.heissler.de>
Cc: ACME WG <acme@ietf.org>
Content-Type: multipart/alternative; boundary="001a114b2f3683294105669d940f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/8gmqCrj6aNwCtcolKRCDDKvLTDk>
Subject: Re: [Acme] Example requests
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Mar 2018 22:17:55 -0000
Hey Joern, This is a probably a good thing to have. I think that rather than putting these in the main spec, it might be better to have them in a second draft. This is a pretty common pattern. For example, for TLS 1.3, there's a "test vectors" document separate from the main spec [0]. There are a few documents with example "call flows" for SIP [1][2]. ACME is probably somewhere in the middle of those two cases. --Richard [0] https://tools.ietf.org/html/draft-ietf-tls-tls13-vectors-03 [1] https://tools.ietf.org/html/rfc3665 [2] https://tools.ietf.org/html/rfc5589 On Sun, Mar 4, 2018 at 4:36 PM, Jörn Heissler <acme-specs@joern.heissler.de> wrote: > Hello, > > I'm not sure if this should be included, so not making a PR yet. > > Complete examples for requests may help implementers (of both servers > and clients) to understand the specifications. All existing examples > have pseudo-code like base64url({...}) and no untruncated keys or > signatures. > > I wrote two examples, one for account creation, another for key > roll-over to demonstrate nested JWS: > > https://github.com/joernheissler/acme/commit/ > a8a303ddbe3280b49ce8f10508dcdf95a6dc6de9 > > That commit also adds "--- back" (Backmatter to get Appendices in the > rendered document) and I'm not happy with the wording on top. > > To check correctness of the signatures and make the requests > human-readable, I also wrote a small test program: > > https://gist.github.com/joernheissler/04d9dcfb3a99e318871e451c9043f2dc > > Do you think those examples should be included? And if so, is there any > time left to actually do it? > > Cheers > Joern Heissler > > _______________________________________________ > Acme mailing list > Acme@ietf.org > https://www.ietf.org/mailman/listinfo/acme > >
- [Acme] Example requests Jörn Heissler
- Re: [Acme] Example requests Richard Barnes
- Re: [Acme] Example requests Jacob Hoffman-Andrews