[http-auth] Question regarding RFC 7617

Enrico Bonato <enrico.bonato@vantea.com> Wed, 07 March 2018 11:02 UTC

Return-Path: <enrico.bonato@vantea.com>
X-Original-To: http-auth@ietfa.amsl.com
Delivered-To: http-auth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4356126579 for <http-auth@ietfa.amsl.com>; Wed, 7 Mar 2018 03:02:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=vantea.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2OehcHwwlK4f for <http-auth@ietfa.amsl.com>; Wed, 7 Mar 2018 03:01:58 -0800 (PST)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-db5eur03on071d.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0a::71d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4583F126CE8 for <http-auth@ietf.org>; Wed, 7 Mar 2018 03:01:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=vantea.onmicrosoft.com; s=selector1-vantea-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=yp6XMIKP3flPe52y179gq9WNA3qb9fv4v2VJsBSl1dI=; b=Oqg8uNDHp3U33UJ7ZjXU4W6NyS3W12W6WknzCWJTJB1jqQ6W/NULa3n+8nQqa3++KmFB+aOrLKGxJjzb/XfBGVXnCpDS9K5JMh532MEIFvsx6ZQRwmUCE7KkxUwXlJkPS/7cCl9l80MCxCDSO+8WggVE/gE/sRccq8WF8icLclQ=
Received: from AM3PR07MB1156.eurprd07.prod.outlook.com (10.163.188.18) by AM3PR07MB339.eurprd07.prod.outlook.com (10.242.109.24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.567.6; Wed, 7 Mar 2018 11:01:55 +0000
Received: from AM3PR07MB1156.eurprd07.prod.outlook.com ([fe80::cc94:6af:8fb3:2762]) by AM3PR07MB1156.eurprd07.prod.outlook.com ([fe80::cc94:6af:8fb3:2762%2]) with mapi id 15.20.0588.001; Wed, 7 Mar 2018 11:01:54 +0000
From: Enrico Bonato <enrico.bonato@vantea.com>
To: "http-auth@ietf.org" <http-auth@ietf.org>
Thread-Topic: Question regarding RFC 7617
Thread-Index: AQHTtgMmEsBW3xz9yEGOG19Coc9DzQ==
Date: Wed, 7 Mar 2018 11:01:54 +0000
Message-ID: <AM3PR07MB11569E88DECD42A21FC6B09E97D80@AM3PR07MB1156.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [85.158.227.32]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM3PR07MB339; 7:hwWY0Cw7DKGNyqjdZxXU0Il19zKp69gP+LUXA9gAMht5Wy/+H6gXrXKPEg7zPIhoDHOrD8lXAfhmyACBu6/o8sn9WCI4bm8rj0ucA0q/PSNGvdaDY57+fI4LAnANW5ouCSPdEXBJ1Dj7nreybvIDQTdr5QkREatB9P80dlR4UyQ3eAqfKi7BxHqhK1Zu/Hw5Kgvik1EMa/iIc8dHIo6wrHCr/aiu5EtNZoJTfx/D61PLSe/WUgBNqUtbat3uQ+Iu
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 3cdfd222-e128-44e5-dd2b-08d5841ad6c1
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:AM3PR07MB339;
x-ms-traffictypediagnostic: AM3PR07MB339:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=enrico.bonato@vantea.com;
x-microsoft-antispam-prvs: <AM3PR07MB339277E82C9823A571329E897D80@AM3PR07MB339.eurprd07.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040501)(2401047)(5005006)(8121501046)(3002001)(3231220)(944501244)(52105095)(10201501046)(93006095)(93001095)(6041288)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123558120)(20161123564045)(6072148)(201708071742011); SRVR:AM3PR07MB339; BCL:0; PCL:0; RULEID:; SRVR:AM3PR07MB339;
x-forefront-prvs: 0604AFA86B
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39380400002)(39840400004)(396003)(366004)(346002)(376002)(189003)(199004)(25786009)(3846002)(6436002)(106356001)(74316002)(7116003)(8676002)(66066001)(26005)(2900100001)(478600001)(102836004)(59450400001)(186003)(6506007)(2906002)(33656002)(6116002)(81156014)(5660300001)(305945005)(7736002)(8936002)(3280700002)(6916009)(2501003)(2351001)(81166006)(105586002)(551544002)(5640700003)(316002)(97736004)(53936002)(3660700001)(5250100002)(7696005)(14454004)(9686003)(55016002)(99286004)(86362001)(68736007); DIR:OUT; SFP:1102; SCL:1; SRVR:AM3PR07MB339; H:AM3PR07MB1156.eurprd07.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: vantea.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: djMvOvaCio3+33BmVpn7wQ3FxOH+VOLDdq2ksXGo08cgnTO/hxwlr2L/4W9gE8gIZ/6A1s5HHGa6DqL4rYwoj5FmGYvvXet2YmDa9gN8ZDvPElhAQMJSKCdlncoMGG6bLiVQJC5pfeC7xyC8TkbooU6Yz6+rd8SWLEO1JUsbytuDMu1iY1UgCQ2lcrGJAtXCkYuveNDnTRUVzB24ClOm9Yi9w4ptk57kd2NOf0hooImqWZ2NhCyM5YFO2NDMxszSgF3V6PK7EuorzS5wlEJgTHRBXvWOl8U/E0eCMtjkuqhaHLk4YOV3VypKE4CBp8mxP87aCC5EOStpemEU7rhdwA==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: vantea.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3cdfd222-e128-44e5-dd2b-08d5841ad6c1
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Mar 2018 11:01:54.8744 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0e3e2d14-1a92-4f85-bd5e-e11f4b89d98b
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM3PR07MB339
Archived-At: <https://mailarchive.ietf.org/arch/msg/http-auth/jDAagXRbgegjZjsomyB8VTyybBI>
X-Mailman-Approved-At: Wed, 07 Mar 2018 10:09:38 -0800
Subject: [http-auth] Question regarding RFC 7617
X-BeenThere: http-auth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: HTTP authentication methods <http-auth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/http-auth>, <mailto:http-auth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/http-auth/>
List-Post: <mailto:http-auth@ietf.org>
List-Help: <mailto:http-auth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-auth>, <mailto:http-auth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Mar 2018 11:09:02 -0000

Greetings
the proposed standard in the Subject marks usernames containing ":" as invalid. 
Quoting section 2:

"Furthermore, a user-id containing a colon character is invalid, as
   the first colon in a user-pass string separates user-id and password
   from one another"

This is totally understandable, but limits interoperability with systems (e.g. LDAP's DNs - rfc2253) which allows such character.

What if a username contains (one or more) colon characters already? Shouldn't this character be escapable as "special" character? 

Best regards
Enrico Bonato