History

Aaron Gable 69aed25cc6 WFE: Return bare expired certs with no issuer (#5362 ) When we receive a request for a certificate for which the WFE no longer has the issuer configured in its certificate chains, and the requested certificate is expired, return just the bare cert rather than returning a 500 error. To enable this, refactor the chain-construction logic to occur inside a closure, so that both error-path and non-error-path early returns are possible. This also simplifies the chain construction logic to be more straight-line and readable, despite taking place inside a closure. Fixes #5345		2021-03-29 09:50:04 -07:00
..
test	Fix various WFE2 bugs. (#3292 )	2017-12-19 13:13:29 -08:00
README.md	Duplicate WFE to WFE2. (#2839 )	2017-07-05 13:32:45 -07:00
stale.go	core: move to proto3 (#5063 )	2020-08-31 17:58:32 -07:00
stale_test.go	core: move to proto3 (#5063 )	2020-08-31 17:58:32 -07:00
stats.go	Switch away from old style statsd metrics wrappers (#4606 )	2019-12-18 11:08:25 -05:00
verify.go	Use error wrapping for berrors and tests (#5169 )	2020-11-06 13:17:11 -08:00
verify_test.go	Limit request body size. (#4866 )	2020-06-12 12:02:49 -07:00
wfe.go	WFE: Return bare expired certs with no issuer (#5362 )	2021-03-29 09:50:04 -07:00
wfe_test.go	wfe2: Check signatures before serving cert chains (#5273 )	2021-02-09 09:09:49 -08:00

README.md

WFE v2

The wfe2 package is copied from the wfe package in order to implement the "ACME v2" API. This design choice was made to facilitate a clean separation between v1 and v2 code and to support running a separate API process on a different port alongside the v1 API process.