Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.2.0.CD14
Affects Version/s: None
Component/s: Security
Labels:
None

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.2.0.CD14
Git Pull Request:
https://github.com/jbossas/wildfly-core-eap/pull/589

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

For ~~ELY-1629~~, AcmeClientSpi.changeAccountKey() was updated to include both newKey and oldKey in the inner payload for the account key change request to prepare for the ACME v2 key rollover breaking change. Currently, specifying both works fine since Let's Encrypt's staging server will expect oldKey and ignore newKey and Let's Encrypt's production server will expect newKey and ignore oldKey. However, once the new ACME v2 key rollover changes are available in Let's Encrypt's production server on Aug. 23rd, we can update this method to only include the oldKey in the inner payload.

clones

ELY-1640 Update AcmeClientSpi.changeAccountKey() to no longer send the newKey once the new ACME v2 changes are in production

Resolved

is incorporated by

JBEAP-15431 Upgrade WildFly Elytron to 1.6.1.Final

Closed

Assignee:: Farah Juma

Reporter:: Farah Juma

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2018/09/13 11:21 AM

Updated:: 2024/09/02 3:27 PM

Resolved:: 2018/09/21 10:58 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates