Boulder recently added support for deactivating existing valid or pending authorizations and Let’s Encrypt has enabled this feature on both the staging and production endpoints.
This allows you to deactivate a authorization that has just been created or already exists and has been validated. Deactivating an authorization prevents it’s further use for any validation or issuance.
In order to deactivate an authorization a signed message with the content {"resource": "authz", "status":"deactivated"} needs to be POST’d to the URI of the authorization (i.e. .../acme/authz/id). Currently there are no clients that support this feature but a few are working on it.
then I get a 202 response and that the ... "status": "valid" ... and any other challenge type (such as "authz" ) tells me that the challenge type is incorrect.
Hey! Glad you figured it out, I’ll update my original post to be a little more descriptive, I realize now I totally forgot to include the resource in my original example.