Re: [apps-discuss] Webfinger: acct "link relation"
"Paul E. Jones" <paulej@packetizer.com> Thu, 15 March 2012 01:49 UTC
Return-Path: <paulej@packetizer.com>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D98721F84E0 for <apps-discuss@ietfa.amsl.com>; Wed, 14 Mar 2012 18:49:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.226
X-Spam-Level:
X-Spam-Status: No, score=-2.226 tagged_above=-999 required=5 tests=[AWL=-0.229, BAYES_00=-2.599, HS_INDEX_PARAM=0.001, HTML_MESSAGE=0.001, J_CHICKENPOX_34=0.6]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9jprdbwTXqaD for <apps-discuss@ietfa.amsl.com>; Wed, 14 Mar 2012 18:49:14 -0700 (PDT)
Received: from dublin.packetizer.com (dublin.packetizer.com [75.101.130.125]) by ietfa.amsl.com (Postfix) with ESMTP id 1BBA621F844F for <apps-discuss@ietf.org>; Wed, 14 Mar 2012 18:49:12 -0700 (PDT)
Received: from sydney (rrcs-98-101-148-48.midsouth.biz.rr.com [98.101.148.48]) (authenticated bits=0) by dublin.packetizer.com (8.14.5/8.14.5) with ESMTP id q2F1n99s018431 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Wed, 14 Mar 2012 21:49:10 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=packetizer.com; s=dublin; t=1331776151; bh=GAYUlNS4pgWmq//vZx/H6unag56lAQsbJO6Swv5ePeU=; h=From:To:Cc:References:In-Reply-To:Subject:Date:Message-ID: MIME-Version:Content-Type; b=pdE2mWMiC2Ri5tbllH8kMaPhpCfIzKRL6kSxmx3mVHlwJlLbUUdZf3QSesmGMYzne y86fv7fQyJ6IBPJ1PSa2bshuZXWUC3cjhrdLK2VVlPtJwx1HTHgRecx70PmLUAhbzL 4OeAUo0MWDMPCx6i+v7SZFV9Bf8vCpSkkkLSXT/w=
From: "Paul E. Jones" <paulej@packetizer.com>
To: 'Bob Wyman' <bob@wyman.us>
References: <05d001cd01a7$3cbb0c70$b6312550$@packetizer.com> <CAA1s49Um890zy=Vb58YORFEwdBUsRSqk-14knhCdJKyp_rH4qA@mail.gmail.com> <017201cd021a$02320450$06960cf0$@packetizer.com> <CAA1s49UaT-3h1zhRTQ=E67fMAsKs+hyoCQYsjZ0bvEp7zGZs6w@mail.gmail.com>
In-Reply-To: <CAA1s49UaT-3h1zhRTQ=E67fMAsKs+hyoCQYsjZ0bvEp7zGZs6w@mail.gmail.com>
Date: Wed, 14 Mar 2012 21:49:12 -0400
Message-ID: <000001cd024d$d2eb5d70$78c21850$@packetizer.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0001_01CD022C.4BDC0760"
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQIpr5CrRpL27TKx2eu4GfpqVU03ngIPbM1eAcMbrxwBYFZBKJWHnBMA
Content-Language: en-us
Cc: webfinger@googlegroups.com, apps-discuss@ietf.org
Subject: Re: [apps-discuss] Webfinger: acct "link relation"
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Mar 2012 01:49:19 -0000
Bob, I used an example wherein the client makes an assumption. However, I feel a little nervous about putting in normative statements that declare that this is the way it must work. My email client also makes the assumption when I type an address that looks like an email address that it is one. Such client-side "intelligent" assumptions are reasonable to make life easier for users, but I think it is best to leave that as non-normative. What I want to do is split section 6 into 6.1 and 6.2. In 6.1, I'll introduce the purpose for the "acct" URI, void of any example usage. In 6.2, I'll have a non-normative example (one like what is there presently.) Paul From: bobwyman@gmail.com [mailto:bobwyman@gmail.com] On Behalf Of Bob Wyman Sent: Wednesday, March 14, 2012 4:01 PM To: Paul E. Jones Cc: apps-discuss@ietf.org; webfinger@googlegroups.com Subject: Re: [apps-discuss] Webfinger: acct "link relation" Paul, If one may assume that mailto:user@example.com and acct:user@example.com <mailto:acct%3Auser@example.com> are associated with the same user, shouldn't it be stated in the RFC that clients MAY assume this and that servers MUST NOT allow for the assumption to be invalid? Certainly, allowing the two identifiers to be associated with different people will cause never-ending confusion, however, if we want to prevent the confusion, then we should explicitly state that this situation should not arise. Note: I support your efforts to clarify the situation where a mailto: corresponds to a dissimilar acct:. Also, allowing user editing of WebFinger data, will drastically increase the utility of the protocol. bob wyman On Wed, Mar 14, 2012 at 3:38 PM, Paul E. Jones <paulej@packetizer.com> wrote: Bob, I want to improve the language in the introduction of that section, but I do think it is reasonable to assume that a user with a given email address may have an account with the same name on the server. There are instances where that would not be the case, but a 404 would be returned in that instance. It has been suggested that perhaps making this assumption would lead to returning information for the wrong person. That's possible, but I believe Webfinger might help to encourage domain owners from putting themselves in that situation. If user@example.com is a non-email account at that domain, there should not be a real user account with the same name, but belonging to a different person. It's simply poor practice. It confuses humans. We could get this straight in protocol, but it would never address the confusion in the human mind. In any case, I want the "acct" link relation to refer to other accounts, not necessarily the "right" account. The wording was not clear on that. Here's the proposed wording changes for the first 3 paragraphs (now reduced to two): Users of some services might have an acct URI that looks significantly different from their email address, perhaps using entirely different domain names. It is also possible that a user has multiple accounts that a Webfinger client may want to query. As such, it is useful to allow one user account to refer to one or more other account identifiers. To make a reference to other user accounts, one uses the "acct" link relation. Consider the following example. I welcome any textual changes to make this clearer. Paul From: bobwyman@gmail.com [mailto:bobwyman@gmail.com] On Behalf Of Bob Wyman Sent: Wednesday, March 14, 2012 11:26 AM To: Paul E. Jones Cc: apps-discuss@ietf.org; webfinger@googlegroups.com Subject: Re: [apps-discuss] Webfinger: acct "link relation" Thanks for mentioning section 6. I have been puzzling over this for some time now. It seems to me that if Alice receives an email from "bob@example.net" then, because there is no certain equivalence of mailto: and acct: identifiers, Alice should query for "mailto:bob@example.net" in order to discover "acct:bob@example.com <mailto:acct%3Abob@example.com> " rather than assuming similarity between the mailto: and acct: identifiers and first querying for "acct:bob@example.net <mailto:acct%3Abob@example.net> ." It must be remembered that WebFinger acct: identifiers need not be the same as or even similar to mailto: identifiers. Additionly, similar identifiers, such as "mailto:bob@example.net" and "acct:bob@example.net <mailto:acct%3Abob@example.net> ," need not identify the same person or entity. (although it would be really, really smart if they did...) Given that in most cases, "acct:xxx" and "mailto:xxx" will, in fact, be associated with the same entity, it would be a bit of a nuisance to require the multi-step discovery process outlined above. Especially since we know that mapping from mailto: to acct: will be a very, very common requirement. Thus, it seems reasonable to me that we would add a few new rules: 1) If the server responding to a request for mailto: information is also the authoritative server for the WebFinger acct information, it may provide that information as long as it also provides a link with rel=acct element to identify the acct:. In this case, it should be understood that any information provided (other than the link that shows the relationship between the identifiers) is associated with the acct: identifier, not with the mailto: identifier. This server-side automatic mapping rule could, of course, be generalized to say that whenever the server knows the exact mapping from any URI, no matter what scheme it uses, to a corresponding acct: URI, it may perform the translation as long as it provides an appropriate link with (rel=acct) in its response. 2) To enable clients to do URI translations, it would be useful for servers to be able to describe those translations which are easily performed. For instance, for servers that maintain a one-to-one relationship between mailto: and acct: URIs, it should be possible for the server to publish in its host metadata the mapping between the two identifiers. Thus, we might have an XRD like the following: <XRD xmlns="http://docs.oasis-open.org/ns/xri/xrd-1.0"> <Link rel="lrdd" type="application/xrd+xml" template="https://example.com/lrdd/?uri={uri} <https://example.com/lrdd/?uri=%7buri%7d> "/> <Link rel="mailto2acct" template="acct:{mailto_id}"/> </XRD> The XRD above not only describes the general template for forming queries, it gives specific instructions re optional pre-translation for mailto: URIs. Clearly, more complex template mappings would be interesting and often useful, but perhaps too complex. bob wyman On Wed, Mar 14, 2012 at 1:56 AM, Paul E. Jones <paulej@packetizer.com> wrote: > Folks, > > > > In the latest Webfinger draft, we introduced a "acct" link relation named > "acct" (see Section 6). The intent with that link relation was to allow for > one to inform a webfinger client that a user's account information may be > retrieved elsewhere. I believe this will be important, since a user might > have more than one account and this might serve as a means of associating > them. Certainly, it would be a way of retrieving information from those > other accounts automatically. > > > > Perhaps calling the new link relation "acct" is too restrictive, though. If > one used Webfinger to query other kinds of information other than a user's > account, there may still be a need/desire to refer the Webfinger client to > other resources. > > > > What do you think about changing this section such that the link relation is > renamed to "seealso"? This would still be useful when querying an acct URI, > but would also be useful when querying any URI since it is more generic. > > > > Do note that "seealso" would be different than the "alternate" link > relation. It would not refer to alternative information, but would refer to > supplemental information. In practice, the supplemental information may be > the more informative since the bulk of the information related to a user > might be held under a different account. > > > > Your thoughts? > > > > Paul > > > > > > > > > _______________________________________________ > apps-discuss mailing list > apps-discuss@ietf.org > https://www.ietf.org/mailman/listinfo/apps-discuss >
- Re: [apps-discuss] Webfinger: acct "link relation" Michiel de Jong
- [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- [apps-discuss] R: Webfinger: acct "link relation" Goix Laurent Walter
- Re: [apps-discuss] Webfinger: acct "link relation" Melvin Carvalho
- Re: [apps-discuss] Webfinger: acct "link relation" Bob Wyman
- Re: [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- Re: [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- Re: [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- Re: [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- Re: [apps-discuss] Webfinger: acct "link relation" Bob Wyman
- Re: [apps-discuss] Webfinger: acct "link relation" Paul E. Jones
- Re: [apps-discuss] Webfinger: acct "link relation" Michiel de Jong