Not compliant with new authentication standards in ACMEv2 (POST-as-GET)

ocelotconsulting / node-acme-lambda

Use AWS Lambda to manage SSL certificates for ACME providers like Let's Encrypt.

http://www.ocelotconsulting.com/2016/10/07/letsencrypt-lambda.html

ISC License

123 stars 47 forks source link

Not compliant with new authentication standards in ACMEv2 (POST-as-GET) #31

Open mtunstill opened 4 years ago

mtunstill commented 4 years ago

Whilst experimenting with this project; I've hit a brick wall where v2 support will be totally broken for most actions when talking to ACME server (especially via Let's Encrypt's Boulder).

Unauthenticated GETs are now unsupported from ACME v2 STAGING and fully gone in v2 PRODUCTION by November 2020.

https://mailarchive.ietf.org/arch/msg/acme/sotffSQ0OWV-qQJodLwWYWcEVKI https://community.letsencrypt.org/t/acme-v2-scheduled-deprecation-of-unauthenticated-resource-gets/74380

larryboymi commented 4 years ago

Thanks for submitting this! Will check it out