Re: [art] Reminder: WHATWG Bar BoF
=JeffH <Jeff.Hodges@KingsMountain.com> Mon, 19 March 2018 17:40 UTC
Return-Path: <Jeff.Hodges@kingsmountain.com>
X-Original-To: art@ietfa.amsl.com
Delivered-To: art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37CB912895E for <art@ietfa.amsl.com>; Mon, 19 Mar 2018 10:40:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NyLXpw0cO3Mm for <art@ietfa.amsl.com>; Mon, 19 Mar 2018 10:40:12 -0700 (PDT)
Received: from qproxy2.mail.unifiedlayer.com (qproxy2-pub.mail.unifiedlayer.com [69.89.16.161]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1AEB3126C25 for <art@ietf.org>; Mon, 19 Mar 2018 10:40:11 -0700 (PDT)
Received: from cmgw4 (unknown [10.0.90.85]) by qproxy2.mail.unifiedlayer.com (Postfix) with ESMTP id 8F9BE35C04 for <art@ietf.org>; Mon, 19 Mar 2018 11:40:11 -0600 (MDT)
Received: from box514.bluehost.com ([74.220.219.114]) by cmgw4 with id Ptg71x00k2UhLwi01tgAxJ; Mon, 19 Mar 2018 11:40:11 -0600
X-Authority-Analysis: v=2.2 cv=G85sK5s5 c=1 sm=1 tr=0 a=9W6Fsu4pMcyimqnCr1W0/w==:117 a=9W6Fsu4pMcyimqnCr1W0/w==:17 a=IkcTkHD0fZMA:10 a=v2DPQv5-lfwA:10 a=wvn1p7I7AAAA:8 a=ekYV4lpRAAAA:8 a=48vgC7mUAAAA:8 a=ieNpE_y6AAAA:8 a=SSmOFEACAAAA:8 a=1XWaLZrsAAAA:8 a=9NGZVl_YAAAA:8 a=UJ5Y5Z__AAAA:8 a=gJ0omQkn2m4NszwyzCgA:9 a=wS13NwyabOCyGLk3:21 a=UdflgbEPMTx8Oj5u:21 a=QEXdDO2ut3YA:10 a=SYQW5X1n0iMA:10 a=BzEbElt3aKsA:10 a=rQQfR2Jt2InWGHXpCHHi:22 a=mrCxpU6zTNQDHnudu_9Q:22 a=w1C3t2QeGrPiZgrLijVG:22 a=lOZzU2MLX5qQKtuoMSD9:22 a=D7JCScNmnv7i29dlldji:22 a=-nuATAkMhhWPdIrRzIKU:22
Received: from dhcp-9ad7.meeting.ietf.org ([31.133.154.215]:54985) by box514.bluehost.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.89_1) (envelope-from <Jeff.Hodges@KingsMountain.com>) id 1exylT-001K9x-5l for art@ietf.org; Mon, 19 Mar 2018 11:40:07 -0600
To: Applications and Real-Time Area Discussion <art@ietf.org>
From: =JeffH <Jeff.Hodges@KingsMountain.com>
Message-ID: <f4ee248e-cfd4-9e8d-cb91-ec05825e588e@KingsMountain.com>
Date: Mon, 19 Mar 2018 17:40:03 +0000
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - box514.bluehost.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - KingsMountain.com
X-BWhitelist: no
X-Source-IP: 31.133.154.215
X-Exim-ID: 1exylT-001K9x-5l
X-Source:
X-Source-Args:
X-Source-Dir:
X-Source-Sender: dhcp-9ad7.meeting.ietf.org [31.133.154.215]:54985
X-Source-Auth: jeff.hodges+kingsmountain.com
X-Email-Count: 1
X-Source-Cap: a2luZ3Ntb3U7a2luZ3Ntb3U7Ym94NTE0LmJsdWVob3N0LmNvbQ==
X-Local-Domain: no
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/7s37SgBVCCweNRUSziYVxfF_7FM>
Subject: Re: [art] Reminder: WHATWG Bar BoF
X-BeenThere: art@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/art>, <mailto:art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art/>
List-Post: <mailto:art@ietf.org>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/art>, <mailto:art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2018 17:40:15 -0000
On Sat, Mar 17, 2018 at 1:12 PM Mark Nottingham <mnot@mnot.net> wrote: > .... is tomorrow (Sunday) at 7pm, in the IAB room (Hilton Meeting > Rooms 5-6, on the Tower Wing 3rd Floor). did anyone take notes of yesterday evening's discussion that are more detailed (eg who's doing what...) than what I've got here... Maciej noted that there's (at least) 4 WHATWG specs of interest to IETF: https://encoding.spec.whatwg.org/ https://fetch.spec.whatwg.org/ https://mimesniff.spec.whatwg.org/ https://url.spec.whatwg.org/ we discussed encoding & Mime-sniff, mostly figured out paths fwd on them (who? what?). wrt Fetch, I will reveiw and comment on @vanupam's TokBind PR. also, IIRC, there was some discussion of Fetch perhaps being factored into what is useful to HTTP-speakers in general, and what is browser specific... RFC6454 Web Origin Concept was mentioned in passing and some wondered whether it is another candidate for "harmonizing"... [1] no one seemed to want to discuss the URL tar-baby... [1] HtH, =JeffH [1] From: apps-discuss <apps-discuss-bounces@ietf.org> on behalf of =JeffH <jeff.hodges@kingsmountain.com> Date: Monday, July 18, 2016 at 4:28 PM To: "apps-discuss@ietf.org" <apps-discuss@ietf.org> Subject: [apps-discuss] RFC6454 "the web origin concept" obsoleted? [This is more-or-less a heads-up public service announcement/query wrt process...] In the below relatively recent exchange on the HTTP WG's list ietf-http-wg@.. https://lists.w3.org/Archives/Public/ietf-http-wg/2016JanMar/0323.html On 3/3/16, 3:10 AM, "Anne van Kesteren" <annevk@annevk.nl> wrote: > On Mon, Feb 22, 2016 at 1:45 PM, Mike West <mkwst@google.com> wrote: > >> I think we need precision somewhere. I'm fairly agnostic about where >> that somewhere might be. Adding Anne, who might be interested in >> defining terms like these in Fetch? > > Seems fine. (Though note that the Origin RFC comparison does not quite > fly, it's made obsolete by the combination of HTML, Fetch, and URL > Standards.) ..Anne notes that (in the WhatWG's (and others?) view), RFC6454 "The Web Origin Concept" is obsoleted by the combination of (the present, and intended on-going state of) [HTML], [FETCH], and [URL]. This seems to beg some questions for the HTTP WG and the IETF at large (and perhaps the WhatWG, as well as the W3C), since [HTML] and [FETCH] are implemented by browsers and browser-like HTTP clients (e.g., crawlers/spiders), but not necessarily other types of HTTP clients, [URL] is intended (by its author(s)) to obsolete RFC3986 & RFC3987 [URLgoals], and RFC6454 is referenced by nine RFCs [0] and several I-Ds [1]: * Should some I-D appear that is intended to obsolete RFC6454 and points to [HTML], [FETCH], and [URL] as the present specs addressing the Web Origin Concept? * Or should some I-D appear stating that for browsers and browser-like HTTP clients, see [HTML][FETCH][URL] for the Web Origin Concept, and for other HTTP clients, see RFC6454? * Plus, should the change(s) to the functionality & definitions in RFC6454 be back-ported to a rfc6454bis ? * Are the changes to RFC3986 & RFC3987 evidenced in [URL] widely applicable to all URL-utilizing specs and if so, do we obsolete them and point to [URL], or backport the changes to RFC3986bis & RFC3987bis? Or do something else, or do nothing? The above questions and the issues they beg are just off the top of my head, need refinement, etc. Perhaps the duplication between "orgs" doesn't matter and everyone can figure out what specs to pay attention to given their context? I don't know the answers but thought I'd toss out the questions... HTH, =JeffH ps: note also that [HTML] and [FETCH] are referenced by draft-ietf-httpbis-cookie-same-site: https://lists.w3.org/Archives/Public/ietf-http-wg/2016AprJun/0432.html [FETCH] https://fetch.spec.whatwg.org/ [HTML] https://html.spec.whatwg.org/ [URL] https://url.spec.whatwg.org/ [URLgoals] https://url.spec.whatwg.org/#goals [0] RFC6454 is ref'd By 6555, 6690, 6787, 6797, 6920, 7030, 7034, 7395, 7486 [1] (some of the below may be expired, I didn't check) grep -li rfc6454 *txt draft-dejong-remotestorage-07.txt draft-ietf-appsawg-file-scheme-11.txt draft-ietf-core-coap-tcp-tls-03.txt draft-ietf-httpauth-mutual-08.txt draft-ietf-httpbis-alt-svc-14.txt draft-ietf-httpbis-cache-digest-00.txt draft-ietf-httpbis-cookie-same-site-00.txt draft-ietf-httpbis-http2-encryption-06.txt draft-ietf-httpbis-origin-frame-00.txt draft-ietf-rtcweb-security-08.txt draft-ietf-rtcweb-security-arch-12.txt draft-ietf-tram-stun-origin-06.txt draft-ietf-webpush-protocol-07.txt draft-ietf-webpush-vapid-01.txt draft-kazuho-h2-cache-digest-01.txt draft-nottingham-httpbis-origin-frame-01.txt draft-pd-dispatch-msrp-websocket-12.txt draft-reschke-http-oob-encoding-07.txt draft-savolainen-core-coap-websockets-07.txt draft-sheffer-tls-pinning-ticket-02.txt draft-thomson-http-scd-01.txt draft-thomson-webpush-vapid-02.txt From: apps-discuss <apps-discuss-bounces@ietf.org> on behalf of John C Klensin <john-ietf@jck.com> Date: Monday, July 18, 2016 at 11:04 PM To: Daniel Stenberg <daniel@haxx.se> Cc: "apps-discuss@ietf.org" <apps-discuss@ietf.org> Subject: Re: [apps-discuss] RFC6454 "the web origin concept" obsoleted? Hi. One, possibly-useful addition to what Daniel has written below. According to RFC 3986, but completely ignored or rejected by the WHATWG URL spec, one of the reasons the terminology was switched to focus on the term "URI" is that there are URIs that are not URLs or even "locators" but "names". In retrospect, that switch might have been a mistake but it affects today's reality. In particular, the most important name-type URIs are URNs (or, because there is even more confusion, more precisely URIs of scheme "urn:"). URNs of that variety (specified by RFC 2141) never use "://", a typical one might look like "urn:ietf:rfc:3986" or "urn:issn:2070-1721". Independent of the [URL] document, many people have argued strongly that, for example, the piece of HTML that allows URLs in <a> elements is required to accept [generalized] URIs (not just HTTP and HTTPS URLs) and process them in some way, making the above distinctions either important or troublesome, depending on how one looks at the issue. "Argued strongly" is not intended as any disrespect -- it is hard to read the HTML specs in any other way. The URNBIS WG is in the process of updating RFC 2141 and some related specs to allow more capabilities and to better reflect contemporary practice and requirements. I'd recommend its mailing list, discussions, and documents to anyone interested in seeing another direction for where these discussions lead. best, john > On Monday, July 18, 2016 23:00 +0200 Daniel Stenberg > <daniel@haxx.se> wrote: > > On Mon, 18 Jul 2016, jeff.hodges@kingsmountain.com wrote: > > * Are the changes to RFC3986 & RFC3987 evidenced in [URL] >> widely applicable to all URL-utilizing specs and if so, do >> we obsolete them and point to [URL], or backport the changes >> to RFC3986bis & RFC3987bis? Or do something else, or do >> nothing? > > The [URL] spec is mostly followed by browsers while the rest > of the URL parsing world is all over the place but very few > non-browsers implement the [URL] spec and instead do various > mixes of what the RFCs say and the browsers do. I blogged > about this exact issue a short while ago [1] after having > realized the [URL] spec says eight thousand slashes in a HTTP > URL is fine and should be parsed. > > I personally am not a fan of neither the [URL] spec style (I > find it very hard to read), how it is being written or what it > says a URL can look like. But I know I get a lot of objections > and "web compatibility" arguments thrown at me when I say so... > So the RFCs are currently lacking a lot when it comes to > parsing modern URLs, but the [URL] spec is not even trying to > make a spec for an entire web infrastructure so it isn't a > generic solution either. I don't have a good answer for where > we should go from here. > > [1] > https://daniel.haxx.se/blog/2016/05/11/my-url-isnt-your-url/ --- end
- [art] Reminder: WHATWG Bar BoF Mark Nottingham
- Re: [art] Reminder: WHATWG Bar BoF Barry Leiba
- Re: [art] Reminder: WHATWG Bar BoF Delfi Ramirez
- Re: [art] Reminder: WHATWG Bar BoF =JeffH