Closed aarongable closed 2 years ago
It certainly is nice to make this closer to OCSP, the downside is that server operators will have to be aware that base64 has forward slashes as a possible character and they may be prone to the problem of slash collapsing with GET requests and base64.
This specifies base64url, which is an encoding without slashes (for that exact reason).
Ah, thanks for the clarification.
Change the format of the ARI request URL. The new format borrows more directly from OCSP, being simply a base64url-encoding of the CertID sequence from within an OCSP request, but doing so makes the specification of the format much simpler, and allows for algorithm agility.
Fixes #17 Fixes #18