The CAA approach is very interesting and something to consider in the far off future. Rather than purely trying to prevent people from wandering around the process, I was curious if the Boulder API would consider accounts that "demonstrate control over the domain" (aka would have the ability to execute that revocation for example) the ability to see what other accounts and authorizations are in the system. Probably also something that doesn't exist based on comments so far, but just maybe a different perspective on utilization of the service. Thanks for the feedback.
1 Like