You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
At this time, the CRL endpoint returns a JSON response as expected. It would be nice if it could also return raw response so that CFSSL can be used as a CRL Distribution Point in addition to being a OCSP responder.
A simple implementation would be adding a query parameter called "raw". When true the response header Content-Type is set to "application/pkix-crl" and browsers and other legacy applications can download a CRL file.
If a query parameter in the CRL Distribution Point URL is believed to cause issues, a separate endpoint can be developed that does not require query parameters.
The text was updated successfully, but these errors were encountered:
hag0p
linked a pull request
Mar 5, 2025
that will
close
this issue
At this time, the CRL endpoint returns a JSON response as expected. It would be nice if it could also return raw response so that CFSSL can be used as a CRL Distribution Point in addition to being a OCSP responder.
A simple implementation would be adding a query parameter called "raw". When true the response header Content-Type is set to "application/pkix-crl" and browsers and other legacy applications can download a CRL file.
If a query parameter in the CRL Distribution Point URL is believed to cause issues, a separate endpoint can be developed that does not require query parameters.
The text was updated successfully, but these errors were encountered: