RA: Pass requested new-order profile through to SA #7608
Conversation
(Please wait, DeMorganing...)
This seems like the wrong logic. The logic we have is that there's a default profile that gets assigned if the order request didn't request one. I think we need to do this defaulting first. For instance, imagine |
|
In the current implementation plan (which we can change), if they do not request a specific profile, then the defaulting only happens at issuance time, not at new-order time. The idea is that we don't store a profile name at all for orders that don't request one. So under the current plan, we can't do the defaulting "first". Also, we won't be advertising (at least not at the API level, maybe in external documentation) which profile is the "default" profile. This is because we'll have different defaults for different orders (e.g. any order with an IP Address will default to the short-lived profile). My logic was that, since order reuse is a thing that only happens before orders are finalized, receiving a request with no profile specified means "pick whichever profile you want", and therefore picking a profile which this client had previously requested for this set of names is a reasonable choice. But the logic of "clearly they've changed something between then and now, we should respect that" also makes sense. I'm happy to change this to a strict equality check, only matching new-order requests that have no profile with previously-created orders that also have no profile. |
|
Yeah, let's do a strict equality check. That also has the advantage of being simpler! |
When receiving a NewOrder request from the WFE, pass the specified profile name (if any) through to the SA for storage. Also, when retrieving previous orders for potential re-use, don't reuse them unless they have the same profile name (including the empty/default profile name).
Fixes #7607