Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-6914

ACME draft-12 update: Wildcard certificate issuance

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.14.0
    • Component/s: None
    • Labels:
      None
    • Stakeholder:
      R&D
    • Epic Link:
    • Sprint:
      EJBCA Sprint 14

      Description

      Wildcard certificate issuance is now allowed (unless pre-authorization is used).

      Not everyone running EJBCA will want to allow this. → Config

      Affects AcmeAuthorization object among others.

      We will also need tests of this.

      Order Objects 7.1.3

      Any identifier of type "dns" in a new-order request MAY have a  wildcard domain name as its value.  A wildcard domain name consists of a single asterisk character followed by a single full stop character ("*.") followed by a domain name as defined for use in the Subject Alternate Name Extension by RFC 5280 [RFC5280].  An authorization returned by the server for a wildcard domain name identifier MUST NOT include the asterisk and full stop ("*.") prefix in the authorization identifier value.  The returned authorization MUST include the optional "wildcard" field, with a value of true.
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                amin Amin Khorsandi
                Reporter:
                johan Johan Eklund
                Verified by:
                Ulf Undmark
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2 days Original Estimate - 2 days
                  2d
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 3 days
                  3d