Re: [DNSOP] Review of draft-manderson-rdns-xml-01
Jay Daley <jay@nzrs.net.nz> Tue, 13 August 2013 00:17 UTC
Return-Path: <jay@nzrs.net.nz>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A37411E80F4 for <dnsop@ietfa.amsl.com>; Mon, 12 Aug 2013 17:17:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.496
X-Spam-Level:
X-Spam-Status: No, score=-2.496 tagged_above=-999 required=5 tests=[AWL=0.103, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OrgTqXakkho8 for <dnsop@ietfa.amsl.com>; Mon, 12 Aug 2013 17:17:24 -0700 (PDT)
Received: from srsomail.nzrs.net.nz (srsomail.nzrs.net.nz [202.46.183.22]) by ietfa.amsl.com (Postfix) with ESMTP id 71C8811E80FD for <dnsop@ietf.org>; Mon, 12 Aug 2013 17:17:06 -0700 (PDT)
Received: from localhost (localhost.localdomain [127.0.0.1]) by srsomail.nzrs.net.nz (Postfix) with ESMTP id 18ED04B2714; Tue, 13 Aug 2013 12:17:06 +1200 (NZST)
X-Virus-Scanned: Debian amavisd-new at srsomail.office.nzrs.net.nz
Received: from srsomail.nzrs.net.nz ([202.46.183.22]) by localhost (srsomail.office.nzrs.net.nz [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WthztwHcWpHG; Tue, 13 Aug 2013 12:16:59 +1200 (NZST)
Received: from [192.168.1.230] (121-74-100-115.telstraclear.net [121.74.100.115]) (Authenticated sender: jay) by srsomail.nzrs.net.nz (Postfix) with ESMTPSA id D23244B25B0; Tue, 13 Aug 2013 12:16:58 +1200 (NZST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Jay Daley <jay@nzrs.net.nz>
In-Reply-To: <CE2FAAC8.17F15%terry.manderson@icann.org>
Date: Tue, 13 Aug 2013 12:16:57 +1200
Content-Transfer-Encoding: quoted-printable
Message-Id: <772E8104-9C1B-4372-B404-3C9C854B601F@nzrs.net.nz>
References: <CE2FAAC8.17F15%terry.manderson@icann.org>
To: Terry Manderson <terry.manderson@icann.org>
X-Mailer: Apple Mail (2.1508)
Cc: dnsop WG <dnsop@ietf.org>
Subject: Re: [DNSOP] Review of draft-manderson-rdns-xml-01
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Aug 2013 00:17:28 -0000
Hi Terry
For most of the things that we disagree about I'll just leave it there, but I would like to correct what I think are misconceptions about EPP:
> EPP was considered, and this document should not be "why we didn't use
> EPP", but the end consideration was that the objects in question did not
> fall into the classical registry/registrar approach as the rights of
> assignment of the overarching objects (the IP address blocks) fall in a
> process and policy that sits on a level well above the provisioning of
> DNSSEC records.
EPP is used extensively in scenarios where the request is queued and processed offline by a higher order process that determines rights to the resource. It was designed with that in mind.
> Also EPP, while extensible, was also considered waaaaaay to heavy for the
> slim function that was being targeted.
I would be interested to know what you think is heavy about EPP?
I've heard it said that EPP is heavy because of the use of a schema to define the message format, but then your draft also does. I've also heard it said that EPP is heavy because it uses XML but again your draft does that.
At its core EPP is a simple set of verbs that can carry any data payload. Your application clearly doesn't need the data that would come in the standard domain name payload or all the verbs but it is easy to define a new payload format that has just the data you need and the verbs you want. This would then be as short as your relaxNG but much cleaner in terms of separation of layers and better supported by libraries and the wider registry community.
cheers
Jay
>
>>
>>
>> 2. Unless I'm being dumb (and my RelaxNG is not very good) I can't see
>> any definition of either
>>
>> - responses to non-queued requests
>> - errors
>>
>> other than the implicit standard HTTP response/error codes.
>
> Correct, the service is a RESTFUL application, and with that the HTTP
> error codes are considered the most atomic feature, and the item that
> should be passed back first and foremost.
>
>>
>>
>> 3. It's too tightly bound to the underlying HTTP interface. The
>> response/errors is one example, another is the queue element field:
>>
>> # The HTTP method used to update
>> attribute method { "PUT" | "DELETE" },
>>
>> That would be better as a logical operation code (i.e. Add, Delete) that
>> were mapped onto HTTP operations.
>
> "too tightly"? I think "intended". :-)
>
> While it is possible to abstract such items in the XML, the underlying
> statement is that this system will not (ever) operate on anything other
> than HTTPS.
>
> It's also note worthy that the HTTP method describes precisely the
> operation undertaken.
>
>>
>>
>> 4. Some of the key data elements that need to be provisioning are
>> defined the most loosely - name the rdata field.
>
> Yes. The RDATA is one part I was never really super-duper ecstatic about.
> But it stuck.
> (perfect was the enemy of good)
>
>>
>> So overall I'm pretty surprised that this path was chosen in 2011 rather
>> than EPP which the rest of the known universe uses for this sort of
>> thing. I realise ICANN is very much taken with lightweight REST but this
>> seems to be forcing the solution onto every problem, even then solved
>> ones. However, this is indeed ICANN's choice, it is a trivial protocol
>> and is working in production. But what it isn't is a candidate for
>> becoming an RFC.
>
> I think, Jay, you might be one step removed from what the problem was. It
> wasn't "how can we use EPP here", nor was it "how can we use REST there".
>
> In terms of a candidate becoming an RFC, please cast your eyes over
> http://www.rfc-editor.org/indsubs.html and if you still feel that way,
> drop me a personal note and we can discuss why/why-not offline.
>
>>
>> If the authors are interested in doing this in EPP then I would be
>> willing to help.
>
> The system is implemented, it has been for a number of years, and operates
> precisely as designed.
> Should someone, amongst the 'customers' of the system, request ICANN to
> make this system EPP and provide good reason - then I will certainly put
> you on the top on my "to call" list.
>
> Cheers
> Terry
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop
--
Jay Daley
Chief Executive
.nz Registry Services (New Zealand Domain Name Registry Limited)
desk: +64 4 931 6977
mobile: +64 21 678840
linkedin: www.linkedin.com/in/jaydaley
- [DNSOP] Review of draft-manderson-rdns-xml-01 Jay Daley
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 Joe Abley
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 Jay Daley
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 Terry Manderson
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 George Michaelson
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 Jay Daley
- Re: [DNSOP] Review of draft-manderson-rdns-xml-01 Terry Manderson