Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Done
Priority: Major
Fix Version/s: 7.2.1.CR1, 7.2.1.GA
Affects Version/s: None
Component/s: Security
Labels:
- regression_test_only

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
QE Test Coverage:
-
Target Release:

7.2.z.GA
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/1219

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The ACME protocol has been updated to replace unauthenticated GET requests to resources with “POST-as-GET” requests (this change was made during the final stages of IETF review). Once support for "POST-as-GET" requests has been added to Let's Encrypt's staging and production endpoints, we'll need to update our AcmeClientSpi to make use of "POST-as-GET" requests. Let's Encrypt will be removing support for unauthenticated GET requests on Nov. 1, 2019. More details can be found here:

https://community.letsencrypt.org/t/acme-v2-scheduled-deprecation-of-unauthenticated-resource-gets/74380

clones

ELY-1693 Update AcmeClientSpi to make use of POST-as-GET instead of GET

Resolved

is incorporated by

JBEAP-16146 (7.2.z) Upgrade Elytron from 1.6.1.Final to 1.6.2.Final

Closed

relates to

JBEAP-16150 (7.2.z) ELY-1678 Avoid NPE in AcmeClientSpi#checkContentType() and ELY-1699 - Intermittently failing AcmeClientSpiTest

Closed

JBEAP-16151 (7.2.z) ELY-1702 - Update mockserver-netty to 5.4.1

Closed

Assignee:: Ilia Vassilev

Reporter:: Farah Juma

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2018/10/10 11:16 AM

Updated:: 2024/09/02 3:22 PM

Resolved:: 2019/02/14 4:32 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates