Certificate chain: Use new-cert headers instead of fetching issuer url from the certificate #295

New Issue

Closed

opened 2025-12-29 01:21:24 +01:00 by adam · 1 comment

adam commented 2025-12-29 01:21:24 +01:00

Owner

Copy Link

Originally created by @lukas2511 on GitHub (Mar 11, 2018).

As @cpu mentioned in https://github.com/lukas2511/dehydrated/issues/493#issuecomment-371925404 ACMEv1 has a path to the issuer certificate in the headers of the new-cert reply. This should be a more reliable way to get the issuer certificate.

Originally created by @lukas2511 on GitHub (Mar 11, 2018). As @cpu mentioned in https://github.com/lukas2511/dehydrated/issues/493#issuecomment-371925404 ACMEv1 has a path to the issuer certificate in the headers of the new-cert reply. This should be a more reliable way to get the issuer certificate.

adam closed this issue 2025-12-29 01:21:25 +01:00

adam commented 2025-12-29 01:21:25 +01:00

Author

Owner

Copy Link

@lukas2511 commented on GitHub (Apr 8, 2018):

No longer relevant as ACMEv2 delivers the full chain and chain-walking is no longer necessary.

@lukas2511 commented on GitHub (Apr 8, 2018): No longer relevant as ACMEv2 delivers the full chain and chain-walking is no longer necessary.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

sudo-env

testing

rfc8738

jsonsh

v0.7.2

v0.7.1

v0.7.0

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

v0.4.0

v0.3.1

v0.3.0

v0.2.0

v0.1.0

Labels

Clear labels

Complicated

bug

enhancement

help wanted

pull-request

Mirrored from GitHub Pull Request

suggestions wanted

testing

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

adam

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/dehydrated#295