Since w3 removed support for the keygen element, is it maybe a good idea to update solid/solid-spec/recommendations-client.md accordingly?
This whole thing is outdated:
Issuing the client certificate
Attention! Because creating client certificates requires the keygen HTML5
element,
which does not work with AJAX requests, the client must submit a form to the
account host URI -- i.e. https://user.example.org/. This restriction means
that a predefined set of form element names must be respected on the server.
Here is the minimum list of form element names (case sensitive!) that MUST
be sent by signup applications, in order to achieve interoperability:
spkac - contains the certificate signing request (CSR) generated by the
<keygen> element. (see SPKAC)
webid - the WebID of the user
name - the name (CN) that will be used in the certificate
The server will update the user's profile by adding a representation of the
public key (as modulus and exponent) it obtained from the certificate, according
to the WebID-TLS specification.
IMPORTANT Servers should only return the certificate in the response, while
also setting the Content-Type header to the proper mime type value (as seen
below), otherwise the certificate will fail to install in the browser.
Content-Type: application/x-x509-user-cert
Unfortunately, there is currently no browser API to discover whether or not a
certificate was properly installed in the browser.
Since w3 removed support for the keygen element, is it maybe a good idea to update solid/solid-spec/recommendations-client.md accordingly?
This whole thing is outdated: