[CDNi] draft-ietf-cdni-edge-control-metadata-00 submitted. Response to comments
ALFONSO SILONIZ SANDINO <alfonso.siloniz.ext@telefonica.com> Wed, 18 October 2023 07:41 UTC
Return-Path: <alfonso.siloniz.ext@telefonica.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D598C1519AA for <cdni@ietfa.amsl.com>; Wed, 18 Oct 2023 00:41:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.109
X-Spam-Level:
X-Spam-Status: No, score=-7.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=telefonica.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AJj8FxOaiik2 for <cdni@ietfa.amsl.com>; Wed, 18 Oct 2023 00:41:45 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2114.outbound.protection.outlook.com [40.107.22.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9345C14CEED for <cdni@ietf.org>; Wed, 18 Oct 2023 00:41:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fsJHeRalu7F+ksXCM4loCLdVWywh2UA3XgyZVCS1a8+EH336WC7LbKd5BTJGqIvAtPwomgSrL7Tn2NoRDhd9wbWAFrf2rwsTOIlc+NkpQJzq8XRzPHhjtAfYBTYyXzkYr+xvZHPnZ5SQUIPIHrVf82E481uiStVXYLwlRicDozdhyOBkwV5ZJym1lAhAucG2zo7a8539ejWeuOteK2CfPQ/Zc+2aCDyeXaQ/jCpKv/xdsKSbPcbPcp4Fvm46AWQak88uRfVdnhPQImzHo7T8yByaqMLY3QB90YHaPXClNnhITTwe8TxDUq3Y++jTPEjYPewQV4CsKGTEynSg/CKkww==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=b7yH4GkbtjFEQPl3/uwYL/wMdvhSTqHnGUyA2Mw5C0I=; b=JfSIAmCGO6GzxEwKy0H+BkxZ90Jm6N+59CQv3GDL6iOpDIOyGlGOX/6uKDOXXehQKepALihdtZOD5/1HWwQUp3AEkTYhabdUi3ErBudOVnERKlXAtR8UiCjvlSRoaoE/3RJmvTF0ebW6z5rEw2d2LkjehfxOGos3aX3CK+mCEZGgoAv3M7ziJDcS6GNGgX6CawwEsE1bsP2UUGFJCF9eRt+La3olE+eBABaEAd5XzLqo9wdAsxUeA3249L9Y90hvuPRa3AHEvVGQ9X40//Ao+YbD3+1mv1HIgAC9q3QJEKFdgAjOqORWNZ6eiaorVMZlk6SfJq+SPSsdjuEAqC+L0Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=telefonica.com; dmarc=pass action=none header.from=telefonica.com; dkim=pass header.d=telefonica.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telefonica.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=b7yH4GkbtjFEQPl3/uwYL/wMdvhSTqHnGUyA2Mw5C0I=; b=fMi9crFckb01/7G8RldHHqwEM4FKvJayttDlYXXQdsAsBsVvx6e2b5LnpJpwssGg+4rCufCXowpstaAvyfXYY+QvMF0610NfE/CHS++o+VohChiuVGTLMeanHNASyEOCeW3f5zpMhn5il3xPLDvEFS3PO8agtQ9kQ7Nducz90g8=
Received: from AM8PR06MB7105.eurprd06.prod.outlook.com (2603:10a6:20b:1d4::22) by DBAPR06MB6631.eurprd06.prod.outlook.com (2603:10a6:10:187::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6907.21; Wed, 18 Oct 2023 07:41:40 +0000
Received: from AM8PR06MB7105.eurprd06.prod.outlook.com ([fe80::f32f:d0b0:1841:18c1]) by AM8PR06MB7105.eurprd06.prod.outlook.com ([fe80::f32f:d0b0:1841:18c1%4]) with mapi id 15.20.6886.034; Wed, 18 Oct 2023 07:41:40 +0000
From: ALFONSO SILONIZ SANDINO <alfonso.siloniz.ext@telefonica.com>
To: "<cdni@ietf.org>" <cdni@ietf.org>
Thread-Topic: draft-ietf-cdni-edge-control-metadata-00 submitted. Response to comments
Thread-Index: AdoBleIb+qiSu1eKSC6hwtCZHsvlEA==
Date: Wed, 18 Oct 2023 07:41:40 +0000
Message-ID: <AM8PR06MB71050D9581CDE47C6407AAF7DAD5A@AM8PR06MB7105.eurprd06.prod.outlook.com>
Accept-Language: es-ES, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=telefonica.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM8PR06MB7105:EE_|DBAPR06MB6631:EE_
x-ms-office365-filtering-correlation-id: b73a248b-1860-4808-8296-08dbcfadaabc
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM8PR06MB7105.eurprd06.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(346002)(376002)(366004)(136003)(39860400002)(396003)(230922051799003)(1800799009)(451199024)(64100799003)(186009)(82960400001)(122000001)(38070700005)(33656002)(8936002)(8676002)(52536014)(38100700002)(55016003)(166002)(41300700001)(5660300002)(86362001)(2906002)(66899024)(7696005)(9686003)(6506007)(478600001)(966005)(71200400001)(66574015)(26005)(66556008)(83380400001)(66946007)(76116006)(66476007)(66446008)(64756008)(316002)(9010500006)(15398625002)(491001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: eHM3u3iSWToRFj4Vxe+/2nJIUm4/AxXl2+OybsxznmRo6aY6Q8gUa2Lhz1W80KUbMmLrILAonyW2X4NarSukmA85OgztI/JzOuN6KKnA+kq9b7ghhXcOWTrogkXXmif7SRQ2JExVBGSe9WqvJFU+PrkAdfh11KCTzAqpl0K6FYvXEDnrE7Gon2I/sq72XnggQTs6ttYTn4tD+UDMQpW0L0kAxBEqtFQ5j3ol4rYbBNxwv130Gja1w5hHt5YMDhlo6lDJRYYazwjwEEy+tpd6HUova4FZk6ZcW2da1aeM3Q4sZd1NfEkwOJbf8v004jqhtuhETZjtBEQLE5j/vxkfyaCOW2bzjWOtrIfC7VcEojwxKY3OTHvuYYEWh0xshlkqrVJXWLOK6ld2kKQZp7yMQbfqjHX/kLLNKU0/+O9YEKAUa/oOnZnZ/pAXHH/K+e5ilglTV+YYJ8A4g6xpZVzJPoDY+EU1Tr/UxOFR2LP/q9M8eiF6E8Y8vhb8Zo/1+DcEYoQnMaJZLb8CxDNRIjWqmdLIHIuO1vY5UEFmcdxGO1Sy67p34//Z5yV7DiMKBuQyYidO4Ete4UQT1ZgbMx1x/AShyIoaQT/y4RW6th/nhd/lVmt5oEWq63MkVQP5KCD8Qv8uNN/PmzG82bCcxbRZITtRp3xCHAQ7Rkx6U9DD2uPJeOCelhG4wQVV+rjy7vxp8RzIsIE+YuvvNXk3LHgHgovmomOT71nO/hdnRKZK7XiZF61E8zlQsR4RqOcjSPMCxm1wAzaZNKo8CA3VaxXHUyrhbfrKCUu3yH4xi3EfT05PLop6rQubPKfFN7B9DH3HUEZwnCb6yqMbL3lWe6v3KwrDEDbtdMXRia1MFL6VxxNvAPIKOVq5r/FBqCP/0Zc4zwstnTYMlfBIaFM4Vk8cHUrpeoPiy55Xn55rxA8U+EKrKaj+ZydSFTVuMoCk0OQ2CzM9xXsaPsoCxzXecmOx9wOTz9srdmuX+S7bpRsNTGSFD7LN8FSwB3uwt2xP++JUoj8YZHWrhJEpJwhnibJJOwdINWI/U/1AHjUmxCVz+8pAOkH4KVGknFUIi1wEd1sNZjrtTS+Uems3makpKPFY9Z+L3AdO0hxUraQcfV1phlHfM6K91fZCANashaXhdTIBmaPD1wgt7l3L7kg050B/cs5C0fJ+fErCZE/KKsz1BXeobQuYdm8x8xzAPDu3eloVygeVX3YJMQqBXhiM1nFs7x6BVbSvfBzkfDVfey4si81rs4ADYuCYXNOKtuQNAAEIXYmp/4nqc15I+5Nzi/xZCjwcwr9fORZn+LBJRxKpGSGStgcW+x9TCRr5/pLnURScTKYWG5DFHjhp2nQiF7bXtvro6lCh5Wdl20uEqBDosPI8nwvM2uFfg5xZfhz/0Q0/BeppGIFINn5/D3xNbG7AYPtkgDwZAsASqz16N60kNsGk+TUJ+rpVEHR7G5RX28NvXF72EeRNv5yDgnFEvQ16fUACJuGfhjTBJf8JfpyOdsIu0OwtrlIGAA1LzO9a2rywdOFM527fUkg7V6rOo3lYLkn8F0Jd77GIJ1GPAIsaTbDGd1xOqr2aIpfTzCpgbGHQ+j3qrqNuPzBWHc8zX2/neA==
Content-Type: multipart/alternative; boundary="_000_AM8PR06MB71050D9581CDE47C6407AAF7DAD5AAM8PR06MB7105eurp_"
MIME-Version: 1.0
X-OriginatorOrg: telefonica.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM8PR06MB7105.eurprd06.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b73a248b-1860-4808-8296-08dbcfadaabc
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Oct 2023 07:41:40.3640 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9744600e-3e04-492e-baa1-25ec245c6f10
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: uRVzSRn+y9y12HeplWmr0TZnMmvaWO566WxgC3H8eoGTodaGSDwcbEsPic4IXPcEBO9J452fhL9nSq2uMOyFOdt+lond2v0yhuTaqD1HieI72fmrHkQDXyZDvzEpItV2
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DBAPR06MB6631
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/SBDIgTcOkeDlFGfApGvTzh67Ums>
Subject: [CDNi] draft-ietf-cdni-edge-control-metadata-00 submitted. Response to comments
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Oct 2023 07:41:49 -0000
Hello, Draft-ietf-cdni-edge-control-metadata-00 has just been submitted replacing draft-siloniz-cdni-edge-control-metadata after WG adoption. We have addressed all comments received in the list by Kevin Ma (thanks). This is the list of comments and how we have addressed them. section 1: spell out CORS on first use *** Response: FIXED section 3: remove duplicate sentence: "Set a default value for CORS response headers independent of the origin request header value." *** Response: FIXED *** section 3: it's not clear to what "the player" refers. this is the first mention of a "player". *** Response: FIXED: Changed "set to the URL domain of the webpage that the player runs" to "set to a URL domain of the webpage from which the User Agent made it. " section 3: remove duplicate sentence: "Validation of the origin header - Metadata can include a list of valid domains to validate the request origin header. If it does not match, the CORS header MUST NOT be included in the response." *** Response: FIXED section 3: "the OCN SHOULD" -> "the dCDN SHOULD" *** Response: FIXED section 3: remove duplicate phrase: "Allowed methods" *** Response: Fixed section 3: "for the specification of dynamically generated CORS headers" -> "specifying how to dynamically generate CORS headers" or "configuring..." *** Response: FIXED: Changed to "configuring dynamically generated CORS headers" section 3: "values the OCN will" -> "values the dCDN will" *** Response: FIXED section 3: when the MtS is "No", does the dCDN omit the header or include the header with no values? *** Response: FIXED Added the following in all the properties default: . "If not specified, the default behavior is to not add the header in the response" and in the "no-origin-response-headers" the following: "If not specified, the default behavior is to not add any CORS response headers" section 3, "allow-origin" type: add a reference for "MI.AccessControlAllowOrigin" *** Response: FIXED Added an internal reference. section 3, "no-origin-response-headers" type: add a reference for "MI.HTTPHeader" *** Response: FIXED As ProcessingStages is not yet a WG document, linked to SVTA document section 3: "apply-to-all-methods" -> "all-methods" ? *** Response: We changed the property name AND its meaning. Now it is called preflight-only section 3.1, "allow-list" description: "requests, and" -> "requests and" *** Response: FIXED section 3.1, "allow-list" description: "Permitted values are" -> "Permitted values are of the form" ? perhaps a reference to RFC3986 *** Response: FIXED Added reference to RFC3986 for schema://host[:port] section 3.1, "allow-list" type: why is this using PatternMatch objects? the description says "schema://hostname[:port]", but PatternMatch is only for uri paths (https://datatracker.ietf.org/doc/html/rfc8006#section-4.1.4)? Endpoint would be closer, but doesn't include schema (https://datatracker.ietf.org/doc/html/rfc8006#section-4.3.3). *** Response: FIXED. We have used a more simple definition for this. section 3.1, "wildcard-return" description: "the OCN will" -> "the dCDN MUST" *** Response: FIXED section 3.1: move examples to a separate section. *** Response: FIXED Added a subchapter for the examples, to separate from the previous section. section 3.1: is the allow-list safe-to-redistribute (per: https://datatracker.ietf.org/doc/html/rfc8006#section-3.2) ? *** Response: I don´t see any problem on it. The goal of this object in general is to allow a server in the Edge to generate headers responses. So the dCDN is the ultimate destination of this list. An intermediate CDN can be able to redistribute the list even if it does not support the property, so the default value of safe-to-redistribute is good. section 4, "allow-compress" description: "the dCDN will" -> "the dCDN MUST" *** Response: FIXED This option is a try. The dCDN can or can not do it depending of its implementation. Changed to SHOULD section 4, "allow-compress" type: can probably remove "The values are "True" or "False"." *** Response: FIXED section 4, examples: is the "Processing Stages" necessary? is it enough just to give an example of the "MI.AllowCompress" encoding? *** Response: FIXED Moved to a new section called Informative Examples, and referencing the SVTA document section 5: i don't understand this assertion: "Since the clients are typically owned/operated by a uCDN..." ? how are we defining "client" here? is it not just a web browser? there is a subsequent reference to "players", but that is not clearly defined. if the metadata itself is generic, and can be applied to anything, this discussion of players and ownership may not be necessary. *** Response: FIXED: Changed to: " In some use cases, like video streaming or other critical object delivery, UA applications connection to the cache server must be in control to have the best user experience possible. This metadata allows a uCDN to accommodate device-specific constraints and performance optimization" section 5: "how a dCDN manages" -> "how a dCDN SHOULD manage" ? *** Response: FIXED section 6: i don't think a conclusion is necessary. *** Response: removed section 8.1: this obviously needs to be filled out *** Response: Fixed ________________________________ Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción. The information contained in this transmission is confidential and privileged information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it. Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição ________________________________ Le informamos de que el responsable del tratamiento de sus datos es la entidad del Grupo Telefónica vinculada al remitente, con la finalidad de mantener el contacto profesional y gestionar la relación establecida con el destinatario o con la entidad a la que está vinculado. Puede contactar con el responsable del tratamiento y ejercitar sus derechos escribiendo a privacidad.web@telefonica.com<mailto:privacidad.web@telefonica.com>. Puede consultar información adicional sobre el tratamiento de sus datos en nuestra Política de Privacidad<https://www.telefonica.com/es/telefonica-politica-de-privacidad-de-terceros/>. We inform you that the data controller is the Telefónica Group entity linked to the sender, for the purpose of maintaining professional contact and managing the relationship established with the recipient or with the entity to which it is linked. You may contact the data controller and exercise your rights by writing to privacidad.web@telefonica.com<mailto:privacidad.web@telefonica.com>. You may consult additional information on the processing of your data in our Privacy Policy<https://www.telefonica.com/en/wp-content/uploads/sites/5/2022/12/Telefonica-Third-data-subjects-Privacy-Policy.pdf>. Informamos que o responsável pelo tratamento dos seus dados é a entidade do Grupo Telefónica vinculada ao remetente, a fim de manter o contato professional e administrar a relação estabelecida com o destinatário ou com a entidade à qual esteja vinculado. Você pode entrar em contato com o responsável do tratamento de dados e exercer os seus direitos escrevendo a privacidad.web@telefonica.com<mailto:privacidad.web@telefonica.com>. Você pode consultar informação adicional sobre o tratamento do seus dados na nossa Política de Privacidade<https://www.telefonica.com/es/politica-de-privacidade-de-terceiros/>.
- [CDNi] draft-ietf-cdni-edge-control-metadata-00 s… ALFONSO SILONIZ SANDINO