IETF Logo Mail Archive

Re: Adding user@ to HTTP[S] URIs

Michael Toomim <toomim@gmail.com> Sat, 25 January 2020 00:01 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D7C8120047 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 24 Jan 2020 16:01:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.752
X-Spam-Level:
X-Spam-Status: No, score=-2.752 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TkgL5WXcu5zG for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 24 Jan 2020 16:01:12 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BC4B1200C4 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 24 Jan 2020 16:01:12 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1iv8qq-0000n6-N9 for ietf-http-wg-dist@listhub.w3.org; Fri, 24 Jan 2020 23:59:00 +0000
Resent-Date: Fri, 24 Jan 2020 23:59:00 +0000
Resent-Message-Id: <E1iv8qq-0000n6-N9@frink.w3.org>
Received: from mimas.w3.org ([2603:400a:ffff:804:801e:34:0:4f]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <toomim@gmail.com>) id 1iv8qp-0000mL-A4 for ietf-http-wg@listhub.w3.org; Fri, 24 Jan 2020 23:58:59 +0000
Received: from mail-pj1-x1033.google.com ([2607:f8b0:4864:20::1033]) by mimas.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from <toomim@gmail.com>) id 1iv8qi-0007Sx-EQ for ietf-http-wg@w3.org; Fri, 24 Jan 2020 23:58:59 +0000
Received: by mail-pj1-x1033.google.com with SMTP id m13so530560pjb.2 for <ietf-http-wg@w3.org>; Fri, 24 Jan 2020 15:58:51 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=VJOgGYTgBbvumiAL9o0lgdcRPPwOz4Wlbt/TocB1kpM=; b=qlPvamBRSubSa6LjnOhzn26oKjN36M9lXMHl5D88ztDXaY14KCbrY4XCLGmG1jd0Uo +FkVF/+8WZkFsm+x7qtReDW2PsXMglYP4XYhzOnmraqputNhBOO/6eSzXYroTiVUp9D/ Z8zIKAWPD7Ic+3PZyRy1c+w3/EgVy2Z+VUsNwKzQLETltUAeM0PP6ZuHW58Uu06pcGbV AAZ3cWfVsFN+bZcV3AUFJZuPcMYV1Bavg+77v+eTKwcgeto8qL/bCAREX+MG+G07WS1g OyqqYM0Ip6HLS/u3BkiPw1J2TC9pnh8MLDwvcGRJRKSBIIYyRQv1jJ1Cf5UP3XiJHiFy 5Vvg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=VJOgGYTgBbvumiAL9o0lgdcRPPwOz4Wlbt/TocB1kpM=; b=OlOYmgADJ/iu4FQefsdOVlJgH6HTPIFSywqVsgi/IC2uPrdlisFYLUkOzHx7iWGJ9S G7okkQzgHhoqoo5nMgT6xIxkqAI5/tXh3Bh0b20Zx0FcPc07Xcv1J+O/Kh3XqJv3OraC WWVWo/T18pSGoZ62oMsb3cotuzxF2vA6xejyVoDUi63lL+7qGctieWQVVKFl2Jhhn3vM uRN8QfeM8y0q1dTXoURtE+5+WirbILWtoBMWD8WPmO55uKADxMK4pI2uUmQavnm+TcrJ rpe46DzBllyEv0rF7YFrlU4CdIUzEeP8wzSnWYWDGJL5B7HEQ/3VIuX7Llp+S5FavgMf 6OBQ==
X-Gm-Message-State: APjAAAW9oDSegUgSiYmtCUbGPBqYKUwvyJk8g6CPV4uprL9CepM8tnpw ENGd8MlzYBBBQSGcXFSV6cGn/+ze
X-Google-Smtp-Source: APXvYqzMN03Wy0KEePksZLy8u1O03X/+UklaCJKIvE1IAfHI+Pq4ySD2MntsYiJVnvDTDA4QmpOdhw==
X-Received: by 2002:a17:902:9a4c:: with SMTP id x12mr5963980plv.297.1579910330325; Fri, 24 Jan 2020 15:58:50 -0800 (PST)
Received: from [172.16.103.246] (c-71-202-89-74.hsd1.ca.comcast.net. [71.202.89.74]) by smtp.gmail.com with ESMTPSA id e16sm7588671pgk.77.2020.01.24.15.58.49 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 24 Jan 2020 15:58:49 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Michael Toomim <toomim@gmail.com>
In-Reply-To: <5E2B76EC.5000300@openfortress.nl>
Date: Fri, 24 Jan 2020 15:58:50 -0800
Cc: "HTTPbis WG (IETF)" <ietf-http-wg@w3.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <BB50C7B7-3861-4054-AFB7-6F1C287AFEE6@gmail.com>
References: <5E2B76EC.5000300@openfortress.nl>
To: Rick van Rein <rick@openfortress.nl>
X-Mailer: Apple Mail (2.3124)
Received-SPF: pass client-ip=2607:f8b0:4864:20::1033; envelope-from=toomim@gmail.com; helo=mail-pj1-x1033.google.com
X-W3C-Hub-Spam-Status: No, score=-4.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1iv8qi-0007Sx-EQ 0f901d8fb9e97cc607f47b050dc2fa03
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Adding user@ to HTTP[S] URIs
Archived-At: <https://www.w3.org/mid/BB50C7B7-3861-4054-AFB7-6F1C287AFEE6@gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37276
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Hi Rick!  I find this interesting, so thank you for the proposal.

> Most protocols support users under domain names, but HTTP does not.

Well, it *does* support users within the "path" part of the URL.  For instance, here's a page I just made for you, that's scoped to my user account:

    https://invisible.college/@toomim/hello-rick

> Usage patterns in the wild do suggest a desire to have this facility.

I didn't see any example usage patterns in the internet draft.  Can you provide some of them, so that we know what we are working with?

Thank you!

Michael

> On Jan 24, 2020, at 2:59 PM, Rick van Rein <rick@openfortress.nl> wrote:
> 
> Hello,
> 
> I wrote a draft to support http://user@host.name in HTTP / HTTPS URIs.
> The user is part of resource name space selection, and is not related to
> client authentication.  It is given its own "User" header field.
> 
> I am aware that this URI form is banned in RFC 7321, Section 2.7.1, last
> paragraph, but explain in issue #278 that this is unjustified:
> http://github.com/httpwg/http-core/issues/278
> 
> 
> Feedback welcomed.
> 
> Rick van Rein
> InternetWide.org
> 
> 
> -------- Original Message --------
> Subject: New Version Notification for draft-vanrein-http-unauth-user-02.txt
> Date: Fri, 24 Jan 2020 13:54:31 -0800
> From: internet-drafts@ietf.org
> To: Rick van Rein <rick@openfortress.nl>
> 
> 
> A new version of I-D, draft-vanrein-http-unauth-user-02.txt
> has been successfully submitted by Rick van Rein and posted to the
> IETF repository.
> 
> Name:		draft-vanrein-http-unauth-user
> Revision:	02
> Title:		User Names for HTTP Resources
> Document date:	2020-01-24
> Group:		Individual Submission
> Pages:		5
> URL:
> https://www.ietf.org/internet-drafts/draft-vanrein-http-unauth-user-02.txt
> Status:
> https://datatracker.ietf.org/doc/draft-vanrein-http-unauth-user/
> Htmlized:
> https://tools.ietf.org/html/draft-vanrein-http-unauth-user-02
> Htmlized:
> https://datatracker.ietf.org/doc/html/draft-vanrein-http-unauth-user
> Diff:
> https://www.ietf.org/rfcdiff?url2=draft-vanrein-http-unauth-user-02
> 
> Abstract:
>   Most protocols support users under domain names, but HTTP does not.
>   Usage patterns in the wild do suggest a desire to have this facility.
>   This specification defines a header for user names, orthogonal to any
>   authentication or authorisation concerns.
>

v2.23.0 | Report a Bug | By Email