NixOS ACME / LetsEncrypt - Public Room Timeline

	NixOS ACME / LetsEncrypt	109 Members
	Another day, another cert renewal	47 Servers

Sender	Message	Time
5 Mar 2022
Winter (she/her)	* so is that for if the certificate doesn't have to be renewed, but the group changed?	19:53:41
m1cr0man	that description might be a bit misleading I agree. It shuold maybe indicate that group will own the certs	19:53:41
m1cr0man	yeah exacrly	19:53:46
Winter (she/her)	got it	19:53:48
m1cr0man	* yeah exactly	19:53:49
Winter (she/her)	Secondly there was in the past some concern raised around granting acme group to other services because it would grant that service access to more certs than you may want. You might get some backlash in that regard. In reality, this is hard to operate around and for wildcard certs you're likely to only have 1 cert shared across multiple services anyway. so the thing about this point is that, like, if you set a specific group for a cert (that isn't `acme`), then its not like granting the `acme` group will give you access to those...	19:54:47
Winter (she/her)	it'll just give the `acme` owned ones	19:54:55
Winter (she/her)	like, i get the issue in theory, and i agree with it but not practically?	19:55:08