Re: [Captive-portals] CAPPORT support in iOS 14 and macOS Big Sur betas

Tommy Pauly <tpauly@apple.com> Thu, 02 July 2020 14:24 UTC

Return-Path: <tpauly@apple.com>
X-Original-To: captive-portals@ietfa.amsl.com
Delivered-To: captive-portals@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 841923A084B for <captive-portals@ietfa.amsl.com>; Thu, 2 Jul 2020 07:24:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 30UQHG-WaQat for <captive-portals@ietfa.amsl.com>; Thu, 2 Jul 2020 07:24:52 -0700 (PDT)
Received: from nwk-aaemail-lapp03.apple.com (nwk-aaemail-lapp03.apple.com [17.151.62.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE3FD3A0848 for <captive-portals@ietf.org>; Thu, 2 Jul 2020 07:24:51 -0700 (PDT)
Received: from pps.filterd (nwk-aaemail-lapp03.apple.com [127.0.0.1]) by nwk-aaemail-lapp03.apple.com (8.16.0.42/8.16.0.42) with SMTP id 062EHFmn052100; Thu, 2 Jul 2020 07:24:47 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=content-type : content-transfer-encoding : from : mime-version : subject : date : message-id : references : cc : in-reply-to : to; s=20180706; bh=xDcug4ZpS8wzbiwPfFcwKtPiCtKnIfZEBuWuXmxs0Jg=; b=r5ZtjsqUYvY/GpAqccY7C0s9WAVY8LPtgyI/JG4gFa9MsYzIxtURvwx6I2DovFYAGobP 8mPbOpOLIOKZWjfO2Vi3mBXdF9vCzJLkRFlLD20Eu9aiNADZTz/nleNkc62Ui0ZcfNhs 8W+3PJ/ILUYOesflKAt5QDRmCMaqkQHjsIN3eDBFcY93RwkEyTKbTuWp1hefZ7T+KVXp s5xmxqe1xnVaIxcDyxNF+8SBMfvnH+xa1qgoSL9RZtf3q76GxZLilJuZdtqfoWF+9jCn yO7P0lHrGmCNc81PEjMa2ucaf5HGjkZCooezxiLTadbXD6KQ/Xi9+UE4HQkfNhTlMU4/ QA==
Received: from rn-mailsvcp-mta-lapp01.rno.apple.com (rn-mailsvcp-mta-lapp01.rno.apple.com [10.225.203.149]) by nwk-aaemail-lapp03.apple.com with ESMTP id 31xntxkh10-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Thu, 02 Jul 2020 07:24:47 -0700
Received: from rn-mailsvcp-mmp-lapp03.rno.apple.com (rn-mailsvcp-mmp-lapp03.rno.apple.com [17.179.253.16]) by rn-mailsvcp-mta-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) with ESMTPS id <0QCU00C33IPB8G10@rn-mailsvcp-mta-lapp01.rno.apple.com>; Thu, 02 Jul 2020 07:24:47 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp03.rno.apple.com by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) id <0QCU00O00IPB1X00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Thu, 02 Jul 2020 07:24:47 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 720293186c9d2ba033a35fd035cc5a45
X-Va-E-CD: 4578b196c2d4921fe4a8c9a59c41a29a
X-Va-R-CD: e06bf14963a3da9ed87a944966f976f1
X-Va-CD: 0
X-Va-ID: f273c7da-139b-44d8-ab1d-1550b9ae268c
X-V-A:
X-V-T-CD: 720293186c9d2ba033a35fd035cc5a45
X-V-E-CD: 4578b196c2d4921fe4a8c9a59c41a29a
X-V-R-CD: e06bf14963a3da9ed87a944966f976f1
X-V-CD: 0
X-V-ID: edf4f8e8-4767-4026-9ec3-ed3927d83590
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-07-02_09:2020-07-02, 2020-07-02 signatures=0
Received: from [10.104.220.122] (unknown [10.104.220.122]) by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) with ESMTPSA id <0QCU00N09IP3VD00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Thu, 02 Jul 2020 07:24:41 -0700 (PDT)
Content-type: multipart/alternative; boundary=Apple-Mail-5B6D059A-6A6F-4597-A6C2-70321D17D833
Content-transfer-encoding: 7bit
From: Tommy Pauly <tpauly@apple.com>
MIME-version: 1.0 (1.0)
Date: Thu, 02 Jul 2020 07:24:38 -0700
Message-id: <4E013237-9B3C-426B-961A-878EDFCE4806@apple.com>
References: <CADo9JyUVZfRSpmjYLxBBH73hd7F-+1hwSbr2qDzriaQjLndmFA@mail.gmail.com>
Cc: Erik Kline <ek.ietf@gmail.com>, captive-portals <captive-portals@ietf.org>
In-reply-to: <CADo9JyUVZfRSpmjYLxBBH73hd7F-+1hwSbr2qDzriaQjLndmFA@mail.gmail.com>
To: David Bird <dbird@google.com>
X-Mailer: iPhone Mail (18A316a)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-07-02_09:2020-07-02, 2020-07-02 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/captive-portals/3F6VJJ8r6OlPxC-eoi8ujcc6a98>
Subject: Re: [Captive-portals] CAPPORT support in iOS 14 and macOS Big Sur betas
X-BeenThere: captive-portals@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>
List-Post: <mailto:captive-portals@ietf.org>
List-Help: <mailto:captive-portals-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jul 2020 14:24:54 -0000

Hi David,

One point I wanted to clarify: the iOS and macOS betas support for CAPPORT discovery and APIs still goes through the standard and existing UI flow for captive portals. The times in which the captive portal UI is shown is limited, for example to times when the user is in WiFi settings. Thus, while adoption should indeed be easy and only require adding a small bit of infrastructure in order to provide a flow that doesn’t require redirects, the set of circumstances in which a network can display content to the user is not increased.

Thanks,
Tommy

> On Jul 1, 2020, at 5:27 PM, David Bird <dbird@google.com> wrote:
> 
> 
> That's pretty cool! 
> 
> This will give new opportunities in monetizing WiFi for new iOS and macOS devices with only a DHCP server change and an API server!
> 
>> On Wed, Jul 1, 2020 at 4:22 PM Erik Kline <ek.ietf@gmail.com> wrote:
>> +1
>> 
>> Out of curiosity, does the implementation handle the 7710bis options'
>> urn:ietf:params:capport:unrestricted value?
>> 
>> On Mon, Jun 22, 2020 at 5:00 PM Martin Thomson <mt@lowentropy.net> wrote:
>> >
>> > Tommy, this is great!  Thanks for all your work here, it's good to see this turn into something concrete.
>> >
>> > On Tue, Jun 23, 2020, at 07:30, Tommy Pauly wrote:
>> > > Hello CAPPORT,
>> > >
>> > > I wanted to highlight an announcement we’ve made for the betas of iOS
>> > > and macOS released today:
>> > >
>> > > How to modernize your captive network
>> > > <https://developer.apple.com/news/?id=q78sq5rv>
>> > >
>> > > The betas for iOS and macOS support both draft-ietf-capport-rfc7710bis
>> > > and draft-ietf-capport-api by default. This doesn’t change the user
>> > > experience of logging onto captive networks, but the system will
>> > > request the DHCP options and handle the RA option, and will prefer
>> > > using the Captive Portal API Server interaction over having a probe
>> > > that is intercepted.
>> > >
>> > > If you have a portal system that is already implementing the CAPPORT
>> > > features, please test out these betas and let us know if you see any
>> > > issues! And if you have a captive portal solution, we’d encourage you
>> > > to start supporting this soon.
>> > >
>> > > Best,
>> > > Tommy
>> > > _______________________________________________
>> > > Captive-portals mailing list
>> > > Captive-portals@ietf.org
>> > > https://www.ietf.org/mailman/listinfo/captive-portals
>> > >
>> >
>> > _______________________________________________
>> > Captive-portals mailing list
>> > Captive-portals@ietf.org
>> > https://www.ietf.org/mailman/listinfo/captive-portals
>> 
>> _______________________________________________
>> Captive-portals mailing list
>> Captive-portals@ietf.org
>> https://www.ietf.org/mailman/listinfo/captive-portals