Use base64url(CertID) for path slug

aarongable / draft-acme-ari

Internet Draft for the Automated Certificate Management Environment (ACME) Renewal Information (ARI) Extension

Other

4 stars 7 forks source link

Use base64url(CertID) for path slug #21

Closed aarongable closed 2 years ago

aarongable commented 2 years ago

Change the format of the ARI request URL. The new format borrows more directly from OCSP, being simply a base64url-encoding of the CertID sequence from within an OCSP request, but doing so makes the specification of the format much simpler, and allows for algorithm agility.

Fixes #17 Fixes #18

andygabby commented 2 years ago

It certainly is nice to make this closer to OCSP, the downside is that server operators will have to be aware that base64 has forward slashes as a possible character and they may be prone to the problem of slash collapsing with GET requests and base64.

jsha commented 2 years ago

This specifies base64url, which is an encoding without slashes (for that exact reason).

andygabby commented 2 years ago

Ah, thanks for the clarification.