W3C home > Mailing lists > Public > whatwg@whatwg.org > February 2014

[whatwg] <keygen> and X509 client cert mime type

From: <henry.story@bblfish.net>
Date: Tue, 25 Feb 2014 15:01:57 +0100
Message-Id: <2E519EB1-CB5D-48E1-8435-BEF2616E9F9C@bblfish.net>
To: whatwg@whatwg.org
Hi,

  The keygen form element does a great job of specifying how the browser
creates a public/private key pair, stores the private key in it's local
keystore. 

"When the control's form is submitted, the private key is stored in the local keystore,
 and the public key is packaged and sent to the server."

It is clear that the intention is for the server to send back a certificate built 
from the public key. What I can't find is what the mime type of the returned 
certificate should be. I have been using `application/x-x509-user-cert` which 
seems to work for Safari, Firefox, Opera . But I think that is not an officially
supported certificate type. application/pkix-cert seems to be that after looking it
up on iana.

I ended up posting a bug report for Android on that.
  http://code.google.com/p/android/issues/detail?id=66342

But now I have to check for each browser which is the type all browsers support.
To avoid people having to do this research again and again, perhaps it would
be worth specifying a mime type that all browsers do/must support in the HTML5
spec?

   Henry

Social Web Architect
http://bblfish.net/
Received on Tuesday, 25 February 2014 14:03:23 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 17:00:16 UTC