Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-8341

Update ACME order resources to RFC 8555 compliance

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 7.3.0
    • Component/s: None
    • Labels:
      None

      Description

      For list orders

      Path: '/acct/${accountId}/orders'

      1. Change request type from GET to POST-as-GET.

       

      For receive order.

      Path: '/acct/${accountId}/orders/${orderId}' 

      1. Change request type from GET to POST-as-GET.

       

      For order finalization.

      Path: '/acct/${accountId}/orders/${orderId}/finalize' 

      1. Implement new error type 'urn:ietf:params:acme:error:orderNotReady' and return HTTP 403 (Forbidden) with this new error type in the problem document, if the order is not in state "ready".

      2. Ensure responses for errors of order finalizations with error type 'urn:ietf:params:acme:error:badCSR' are returned in a HTTP 403 (Forbidden) response and that the problem document contains a meaningful error description (see ch. 7.4).

      3. Return HTTP 200 (OK) if a request to finalize an order is successful, and return the updated order object in JWS message (see ch. 7.4, was done already).

        Attachments

          Activity

            People

            Assignee:
            anjakobs Andres Jakobs
            Reporter:
            anjakobs Andres Jakobs
            Verified by:
            Jekaterina Bunina
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: