acme-tiny needs to support POST-as-GET, otherwise it will stop working in November 2019

diafygi / acme-tiny

A tiny script to issue and renew TLS certs from Let's Encrypt

MIT License

4.73k stars 572 forks source link

acme-tiny needs to support POST-as-GET, otherwise it will stop working in November 2019 #226

Closed felixfontein closed 5 years ago

felixfontein commented 5 years ago

I just noticed that acme-tiny still uses a regular GET to get challenges info, retrieve the certificate, and poll authorization state. This will stop working in November 2019; from then on signed POST-as-GET requests have to be used (see https://tools.ietf.org/html/rfc8555#section-6.3).

See https://community.letsencrypt.org/t/acme-v2-scheduled-deprecation-of-unauthenticated-resource-gets/74380 for Let's Encrypt's deprecation deadline (November 1st).

diafygi commented 5 years ago

@felixfontein fixed in proposed 4.1.0 release #227 (commit diafygi/acme-tiny@1b6c6bc0e67aa28fac259c3077883594d3c871d5). Thoughts?

diafygi commented 5 years ago

Released in 4.1.0 (also in pypi)