IETF Logo Mail Archive

Re: I-D draft-petersson-forwarded-for-01.txt

"Darrel Miller" <darrel@tavis.ca> Tue, 11 October 2011 18:34 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5FF8621F8F4F for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 11 Oct 2011 11:34:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.299
X-Spam-Level:
X-Spam-Status: No, score=-9.299 tagged_above=-999 required=5 tests=[AWL=1.300, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q58uCKtx+6ym for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 11 Oct 2011 11:34:30 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id BBA7A21F8F4A for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 11 Oct 2011 11:34:30 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.69) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1RDh8n-00020X-6a for ietf-http-wg-dist@listhub.w3.org; Tue, 11 Oct 2011 18:33:25 +0000
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.69) (envelope-from <ylafon@w3.org>) id 1RDh8m-0001zj-8k for ietf-http-wg@listhub.w3.org; Tue, 11 Oct 2011 18:33:24 +0000
Received: from jay.w3.org ([128.30.52.169]) by maggie.w3.org with esmtp (Exim 4.72) (envelope-from <ylafon@w3.org>) id 1RDh8m-0006ug-2X for ietf-http-wg@w3.org; Tue, 11 Oct 2011 18:33:24 +0000
Received: from ylafon by jay.w3.org with local (Exim 4.69) (envelope-from <ylafon@w3.org>) id 1RDh8m-0008Tn-1W for ietf-http-wg@w3.org; Tue, 11 Oct 2011 14:33:24 -0400
X-Return-path: <listmaster@w3.org>
X-Received: from maggie.w3.org ([128.30.52.39]) by jay.w3.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.69) (envelope-from <listmaster@w3.org>) id 1RDRHK-0003E6-LV for ylafon@jay.w3.org; Mon, 10 Oct 2011 21:37:10 -0400
X-Received: from frink.w3.org ([128.30.52.56]) by maggie.w3.org with esmtp (Exim 4.72) (envelope-from <listmaster@w3.org>) id 1RDRHK-0001Cd-EX for ylafon@w3.org; Tue, 11 Oct 2011 01:37:10 +0000
X-Received: from lists by frink.w3.org with local (Exim 4.69) (envelope-from <listmaster@w3.org>) id 1RDRHK-0004vj-BS for ylafon@w3.org; Tue, 11 Oct 2011 01:37:10 +0000
X-From_: darrel@tavis.ca Tue Oct 11 01:37:05 2011
X-Received: from aji.keio.w3.org ([133.27.228.206]) by frink.w3.org with esmtp (Exim 4.69) (envelope-from <darrel@tavis.ca>) id 1RDRHE-0004qZ-Pd for ietf-http-wg@listhub.w3.org; Tue, 11 Oct 2011 01:37:05 +0000
X-Received: from mout.perfora.net ([74.208.4.194]) by aji.keio.w3.org with esmtp (Exim 4.72) (envelope-from <darrel@tavis.ca>) id 1RDRHA-0004Uw-Gs for ietf-http-wg@w3.org; Tue, 11 Oct 2011 01:37:03 +0000
X-Received: from Graphite (bas3-montreal50-2925371852.dsl.bell.ca [174.93.161.204]) by mrelay.perfora.net (node=mrus2) with ESMTP (Nemesis) id 0MQzlG-1RggCb0P0A-00UciI; Mon, 10 Oct 2011 21:36:28 -0400
From: Darrel Miller <darrel@tavis.ca>
To: ietf-http-wg@w3.org
Old-Date: Mon, 10 Oct 2011 21:36:26 -0400
Message-ID: <0e1301cc87b6$322847c0$9678d740$@tavis.ca>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AcyHiTkjrSiGeHUcRuaggz/qksto8g==
Content-Language: en-us
X-Provags-ID: V02:K0:HBbSVeNYDa7aO9MrXNghOAI9tF9753eztqWbZWMP7nd VSu7tyDcZmA1iO7muLAvUwYsU4IEzt3dRYKimVfxaFC3hPjK8Z FAxTN2bAxDJtmmpXjYbgztMgaAAzqVrQ4qLNsE92UbxjQAe6ds /MEt+2Fvh2986Ec9jbKMbjVMIisaSKDaLZ7i1crzDjs1PRhxWS IYFP/nJCgd8U2K+pnaelDqlQrcumXlmcrgqTLb+PrpcS1SI5px xpwFM8sCLci+NdhpSS5Vxeep1oVwE9G7oZAQpOS3Wsb2XrCngM DbWNcCeX2C+PQGP69DUkyqunSmsUMScTV7bZnzYM4vugy+sLa8 eNLjN0jy6g+n7L6CCqCA=
Received-SPF: none client-ip=74.208.4.194; envelope-from=darrel@tavis.ca; helo=mout.perfora.net
X-W3C-Hub-Spam-Status: No, score=-1.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001
X-W3C-Scan-Sig: aji.keio.w3.org 1RDRHA-0004Uw-Gs 3ef48faef192a948f654108ce6ed0918
Old-X-Envelope-To: ietf-http-wg
Date: Tue, 11 Oct 2011 01:37:10 +0000
X-DSPAM-Result: Innocent
X-DSPAM-Processed: Mon Oct 10 21:37:11 2011
X-DSPAM-Confidence: 0.9991
X-DSPAM-Improbability: 1 in 114039 chance of being spam
X-DSPAM-Probability: 0.0000
X-DSPAM-Signature: 4e939dc7124121804284693
ReSent-Date: Tue, 11 Oct 2011 14:33:22 -0400
ReSent-From: Yves Lafon <ylafon@w3.org>
ReSent-To: ietf-http-wg@w3.org
ReSent-Subject: [Moderator Action] Re: I-D draft-petersson-forwarded-for-01.txt
ReSent-User-Agent: Alpine 1.10 (DEB 962 2008-03-14)
X-Original-To: ietf-http-wg@w3.org
Subject: Re: I-D draft-petersson-forwarded-for-01.txt
Archived-At: <http://www.w3.org/mid/0e1301cc87b6$322847c0$9678d740$@tavis.ca>
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/11392
X-Loop: ietf-http-wg@w3.org
Sender: ietf-http-wg-request@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Resent-Message-Id: <E1RDh8n-00020X-6a@frink.w3.org>

Inline.

Andreas Petersson wrote 
> I was not aware of draft-saintandre-xdash when I wrote this draft.
> It seems appropriate to include a reference to this.
> As draft-saintandre-xdash is only a draft yet, how can I update
> draft-petersson-forwarded-for to take this x- deprecation into account?
> Suggested formulations are welcome.

I would second Martin Thomson's suggestion that you just don't mention it.

> Darrel Miller wrote
>> Also, it would be nice to have a "from" parameter, as alternative to the
>>From Http header, that allowed the use of a URN to identify the requesting
>> user rather than being limited to an email address.
>> 
 Andreas Petersson wrote  
>I don't see the usecase for it, containing an URN.

It is often the case that an origin server that returns a composite resource
may authenticate a user and then make a request on behalf of that user to a
second server that wishes to log the identity of the user.   The origin
server may not have access to the email address of the requesting user.  The
best it can do is use some identifier based on the authentication
credentials.  A URN seemed like the most generic type of identifier we could
use.

The current alternatives for this situation as I see them are: 
1) use the Http From header and ignore the requirement to be an email
address
2) use the Http From header and create a fake email address that can be
parsed to identify the user
3) use some custom header for the purpose. 

When I read your spec it seemed a good opportunity to be able to address
this scenario.

>More important, I don't think it
>would be appropriate to divert the semantics, or syntax of the field
>from the definition in RFC2616 / draft-ietf-httpbis-p2-semantics.

Yes, I understand the danger in having the Forward: from have different
requirements than the Http From but that is also the advantage, in that we
have a chance to provide a capability that was previously unavailable.
Unless I am missing a more obvious solution.

Darrel Miller

v2.23.0 | Report a Bug | By Email