IETF Logo Mail Archive

Re: Bikeshed: "context" parameter for signatures

"Backman, Annabelle" <richanna@amazon.com> Fri, 23 September 2022 16:54 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5210AC1522B4 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 23 Sep 2022 09:54:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.331
X-Spam-Level:
X-Spam-Status: No, score=-3.331 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.571, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazon.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pB9JnVz1vVv8 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 23 Sep 2022 09:54:07 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 69431C14CF02 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 23 Sep 2022 09:54:06 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1obltc-00GCkN-Qj for ietf-http-wg-dist@listhub.w3.org; Fri, 23 Sep 2022 16:51:24 +0000
Resent-Date: Fri, 23 Sep 2022 16:51:24 +0000
Resent-Message-Id: <E1obltc-00GCkN-Qj@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <prvs=2589ecbe5=richanna@amazon.com>) id 1oblta-00GCjX-FY for ietf-http-wg@listhub.w3.org; Fri, 23 Sep 2022 16:51:22 +0000
Received: from smtp-fw-6001.amazon.com ([52.95.48.154]) by titan.w3.org with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <prvs=2589ecbe5=richanna@amazon.com>) id 1obltY-003B2x-ND for ietf-http-wg@w3.org; Fri, 23 Sep 2022 16:51:22 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=amazon.com; i=@amazon.com; q=dns/txt; s=amazon201209; t=1663951881; x=1695487881; h=from:to:cc:date:message-id:references:in-reply-to: mime-version:subject; bh=G1ZCUkYai7dQzhBsBUQDj1gDVH86hqErx06MsR/7SvI=; b=tsx7VaC5KZbyJFGRzipkWzOK+PM5B8MN4QyPy3G5xC23Kv2tkEasSEhz Sgk/EzyfhFNdt1vMinO8FZYk+T6L5XzswtcmebyzVdbPweJLU2PGcC6TN Z0sNBpsyuTHe/DiAtVKfVMhHEkSXrFhuhxznNToAnAzhUlYeYqMFtEgJj g=;
Thread-Topic: Bikeshed: "context" parameter for signatures
Received: from iad12-co-svc-p1-lb1-vlan2.amazon.com (HELO email-inbound-relay-pdx-2c-388992e0.us-west-2.amazon.com) ([10.43.8.2]) by smtp-border-fw-6001.iad6.amazon.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 23 Sep 2022 16:51:09 +0000
Received: from EX13MTAUWB001.ant.amazon.com (pdx1-ws-svc-p6-lb9-vlan3.pdx.amazon.com [10.236.137.198]) by email-inbound-relay-pdx-2c-388992e0.us-west-2.amazon.com (Postfix) with ESMTPS id 64C87A2641; Fri, 23 Sep 2022 16:51:08 +0000 (UTC)
Received: from EX19D001UWA001.ant.amazon.com (10.13.138.214) by EX13MTAUWB001.ant.amazon.com (10.43.161.207) with Microsoft SMTP Server (TLS) id 15.0.1497.38; Fri, 23 Sep 2022 16:51:08 +0000
Received: from EX19D001UWA002.ant.amazon.com (10.13.138.236) by EX19D001UWA001.ant.amazon.com (10.13.138.214) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA) id 15.2.1118.12; Fri, 23 Sep 2022 16:51:07 +0000
Received: from EX19D001UWA002.ant.amazon.com ([fe80::40ae:d398:f3aa:1590]) by EX19D001UWA002.ant.amazon.com ([fe80::40ae:d398:f3aa:1590%5]) with mapi id 15.02.1118.012; Fri, 23 Sep 2022 16:51:07 +0000
From: "Backman, Annabelle" <richanna@amazon.com>
To: Tyler Ham <tyler@thamtech.com>
CC: Justin Richer <jricher@mit.edu>, HTTP Working Group <ietf-http-wg@w3.org>
Thread-Index: AQHYzy7W9ZWC5jlYUEWTgmJUuahYSq3tOvuA
Date: Fri, 23 Sep 2022 16:51:07 +0000
Message-ID: <8FD4B671-76CB-4FC4-89A0-5FD125E843D5@amazon.com>
References: <54FD011B-AD69-4354-A1A1-D6F019DCB541@mit.edu> <CAGQ3E+eLfq5rLVnmjaLVh1oepTVD+Mgtko4mUpvigWRxEwvBpA@mail.gmail.com>
In-Reply-To: <CAGQ3E+eLfq5rLVnmjaLVh1oepTVD+Mgtko4mUpvigWRxEwvBpA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3696.120.41.1.1)
x-originating-ip: [10.43.162.65]
Content-Type: multipart/alternative; boundary="_000_8FD4B67176CB4FC489A05FD125E843D5amazoncom_"
MIME-Version: 1.0
Received-SPF: pass client-ip=52.95.48.154; envelope-from=prvs=2589ecbe5=richanna@amazon.com; helo=smtp-fw-6001.amazon.com
X-W3C-Hub-DKIM-Status: validation passed: (address=prvs=2589ecbe5=richanna@amazon.com domain=amazon.com), signature is good
X-W3C-Hub-DKIM-Status: validation passed: (address=prvs=2589ecbe5=richanna@amazon.com domain=@amazon.com), signature is good
X-W3C-Hub-Spam-Status: No, score=-14.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, USER_IN_DEF_SPF_WL=-7.5, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1obltY-003B2x-ND 343999bf1f12b93354154a02d1425dd0
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Bikeshed: "context" parameter for signatures
Archived-At: <https://www.w3.org/mid/8FD4B671-76CB-4FC4-89A0-5FD125E843D5@amazon.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40404
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

"appdata" doesn't address the structured data concerns Justin raised, which I agree with.

I like "tag" or "label", as they capture both the variable, application-defined meaning of this parameter's value, and its optionality.

—
Annabelle Backman (she/her)
richanna@amazon.com<mailto:richanna@amazon.com>




On Sep 22, 2022, at 11:53 AM, Tyler Ham <tyler@thamtech.com<mailto:tyler@thamtech.com>> wrote:


CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you can confirm the sender and know the content is safe.


My first thought when I see the labels "app" and "application" is that the value is meant to be the name of an application.

How about something like "appdata"? This changes the noun to a generic "data", but it keeps "app" in there as an adjective to indicate that this parameter is for something application-specific.

Tyler


On Thu, Sep 22, 2022, 8:43 AM Justin Richer <jricher@mit.edu<mailto:jricher@mit.edu>> wrote:
I missed an issue that had been filed (but not tagged) prior to the publication of signatures-12, and it asks a pretty simple question:

We added a “context” parameter to allow applications to put a specific string that the application can recognize into the signature parameter set, so that (for example) an authz protocol can declare that a specific value be used or a cloud deployment can have all of its proxies use the same value. However, the term “context” is used in other ways in the spec, so it’s not the best term to use for this new parameter. The proposal is to change “context” to “application” or even the shorter “app”:

https://github.com/httpwg/http-extensions/issues/2249


I’d like to do a quick bike shed on this parameter name here, for anyone who has an opinion. Since it’s newer, existing libraries mostly don’t have it supported yet so if we’re going to change it we should change it right now.


Thanks,
 — Justin

v2.23.0 | Report a Bug | By Email