ACME-Server-ADCS icon indicating copy to clipboard operation
ACME-Server-ADCS copied to clipboard
verified publisher icon glatzert

TOS agreement ist never checked

Open glatzert opened this issue 10 months ago • 2 comments

Neither during account creation nor order creation a TOS agreement is checked.

glatzert avatar Feb 08 '25 09:02 glatzert

I noticed that when setting the TOS variable to "true," that the payload contains a TOS key and the URL as the value, however that is all that it does.

Is it meant to do more?

madtempest avatar Mar 09 '25 10:03 madtempest

Essentially TOS just forces the client to have -agreeToTOS (or whatever a switch is called in your client). It's little more than including the link in the directory metadata.

Also if TOS are updated, clients are forced to re-Agree to TOS by calling update account with the same switch as above. I'd wager most users aren't aware of the TOS and don't care.

Nevertheless - from the server side, that's a oversight with regards to RFC 8555 compliance.

glatzert avatar Mar 10 '25 08:03 glatzert

TOS-Agreement is checked in V2.1 and V3.0

glatzert avatar Apr 29 '25 10:04 glatzert