Why doesn’t certbot support the certbot spec in terms of how certificates are generated?
Here’s the relevant part of the spec:
That section states that certificates do not have to be generated at the time of the new-cert request. If the certificate cannot be generated, the server should respond with an empty response along with the URL which can be polled in order to get the certificate.
I looked at the certbot code related to this and certbot doesn’t implement this. certbot only works when the certificate is downloaded at the time of the new-cert request.
Are there plans to add this support? This is a big departure from the letsencrypt acme spec, let alone the original acme spec.