💾 Archived View for rawtext.club › ~sloum › geminilist › 000895.gmi captured on 2020-10-31 at 01:54:32. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2020-09-24)

-=-=-=-=-=-=-

<-- back to the mailing list

Underspecified part in the Specification

Felix Queißner felix at masterq32.de

Tue May 19 22:08:09 BST 2020

- - - - - - - - - - - - - - - - - - - 

Hey List and especially solderpunk!

I just started to read on the certificate stuff and looked atAstrobotany [0] as an example application using client certificates.

Their process looks like this:1. Generate private key2. Generate a certificate request3. Submit your CSR via HTTPS to astrobotany, they will then send you asigned certificate4. Use that certificate to authenticate at astrobotany

Now i wonder:Is this the planned way everyone should go? What about self-signedclient certificates?

I would expect Gemini to use self-signed client certificates foridentitiy management, and even more for transient certificates.

The documentation on client certificates is mainly §1.4.3 and the statuscodes 61 and 62, but no word about how to obtain these client certificates.

I think this needs some clarification on how to handle this

Regardsxq

[0] gemini://astrobotany.mozz.us/