Certbot - How to request the account settings from ACME server?


#1

I want to request the account settings from the ACME server.

The ACME spec defines a flag for this operation (section “Account Creation”):
onlyReturnExisting (optional, boolean): If this field is present with the value “true”, then the server MUST NOT create a new account if one does not already exist. This allows a client to look up an account URL based on an account key.

Is there a Certbot option to set the flag?

Klaus


#2

@bmw @schoen Does Certbot support this? The only pieces of information useful to the end user are the account URL and the account’s contacts, can @toc-rox find that information somewhere locally instead of trying to use the ACME protocol feature for querying an account by key?


#3

There is a Certbot pull request to add a feature to query account settings from the CA, but it hasn’t been merged yet.

You can see all of the information that Certbot has about your account in /etc/letsencrypt/accounts; however it’s been pointed out that technically this information could be out-of-date if the account is somehow modified by other software or by other servers. (If you only ever use your account with Certbot and only use it on one machine, the information should presumably be current.)


#4

Existing pull request … that sounds promising.

I assume you mean this one:


#5

That’s right, that’s the one.


#6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.