letsencrypt · jprenken · Nov 23, 2024 · jsha · Nov 25, 2024
@@ -1416,8 +1416,10 @@ func (wfe *WebFrontEndImpl) Account(
 		return
 	}
 
-	// If the body was not empty, then this is an account update request.
-	if string(body) != "" {
+	// If the body was not either completely empty or an empty JSON object, then
+	// this is an account update request. Treating the empty JSON object like a
+	// POST-as-GET is a holdover from ACMEv1.
+	if string(body) != "" && string(body) != "{}" {
-	// If the body was not either completely empty or an empty JSON object, then
-	// this is an account update request. Treating the empty JSON object like a
-	// POST-as-GET is a holdover from ACMEv1.
-	if string(body) != "" && string(body) != "{}" {
+	// An empty string means POST-as-GET (i.e. no update). A body of "{}" means
+	// an update of zero fields, returning the unchanged object. This was the
+	// recommended way to fetch the account object in ACMEv1.
-	// If the body was not either completely empty or an empty JSON object, then
-	// this is an account update request. Treating the empty JSON object like a
-	// POST-as-GET is a holdover from ACMEv1.
-	if string(body) != "" && string(body) != "{}" {
+	// An empty string means POST-as-GET (i.e. no update). A body of "{}" means
+	// an update of zero fields, returning the unchanged object. This was the
+	// recommended way to fetch the account object in ACMEv1.
 		currAcct, prob = wfe.updateAccount(ctx, body, currAcct)
 		if prob != nil {
 			wfe.sendError(response, logEvent, prob, nil)