Support getting certificate without opening an unencrypted HTTP port (RFC 8737) #75

natemcmaster · 2020-05-13T05:38:05Z

It appears ACME supports verifying domain ownership via a TLS-ALPN negotiation and a self-signed SSL cert. I think it should be possible in .NET Core 3.1 to implement this using the HttpsConnectionAdapterOptions.OnAuthenticate callback

https://tools.ietf.org/html/rfc8737

natemcmaster · 2020-05-13T09:14:56Z

Beta build available for testing:

https://www.nuget.org/packages/McMaster.AspNetCore.LetsEncrypt/0.5.0-beta.185

natemcmaster added the enhancement New feature or request label May 13, 2020

natemcmaster changed the title ~~Support getting certificate without opening a HTTP port (RFC 8738)~~ Support getting certificate without opening an unencrypted HTTP port (RFC 8737) May 13, 2020

natemcmaster added this to the 0.5.0 milestone May 13, 2020

natemcmaster self-assigned this May 13, 2020

natemcmaster mentioned this issue May 13, 2020

Implement TLS-ALPN-01 challenge verification #76

Merged

natemcmaster closed this as completed in #76 May 13, 2020

This was referenced May 13, 2020

Failed to validate ownership of domainName #65

Closed

Support wildcard domains #1

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Support getting certificate without opening an unencrypted HTTP port (RFC 8737) #75

Support getting certificate without opening an unencrypted HTTP port (RFC 8737) #75

natemcmaster commented May 13, 2020

natemcmaster commented May 13, 2020 •

edited

Loading

Support getting certificate without opening an unencrypted HTTP port (RFC 8737) #75

Support getting certificate without opening an unencrypted HTTP port (RFC 8737) #75

Comments

natemcmaster commented May 13, 2020

natemcmaster commented May 13, 2020 • edited Loading

natemcmaster commented May 13, 2020 •

edited

Loading