IETF Logo Mail Archive

Re: Review of draft-ietf-httpbis-bcp56bis-09

Mark Nottingham <mnot@mnot.net> Thu, 21 November 2019 00:46 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 177071208CC for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 20 Nov 2019 16:46:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=ozo/gowu; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=Hpx5oeFB
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JFVanHQWbSQg for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 20 Nov 2019 16:46:26 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A710E12006B for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 20 Nov 2019 16:46:26 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1iXaab-0001tL-W0 for ietf-http-wg-dist@listhub.w3.org; Thu, 21 Nov 2019 00:44:54 +0000
Resent-Date: Thu, 21 Nov 2019 00:44:53 +0000
Resent-Message-Id: <E1iXaab-0001tL-W0@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mnot@mnot.net>) id 1iXaaZ-0001sZ-TB for ietf-http-wg@listhub.w3.org; Thu, 21 Nov 2019 00:44:51 +0000
Received: from new1-smtp.messagingengine.com ([66.111.4.221]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <mnot@mnot.net>) id 1iXaaY-00023A-9Z for ietf-http-wg@w3.org; Thu, 21 Nov 2019 00:44:51 +0000
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailnew.nyi.internal (Postfix) with ESMTP id C28F128E8; Wed, 20 Nov 2019 19:44:47 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Wed, 20 Nov 2019 19:44:47 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm1; bh=k j2KdEAhudXYpw6LmNTsin98q328p0udUa8kayy4wos=; b=ozo/gowu4y9sTwh0O /KjsPyZQir1wnAK2Bso5JyQmP5hbdNGmZG0vzf9vwz2klb83h0w0LOxzSHe4nuK1 6dQLttNtBJAqaPrITgCj/qoQ88zJd+S72cGZfH/clP0avWP9T6GJn6FxYuEAIq3j 1trSc5lXa1+wmRAru2P4OStKGtfDtT0PM0czbYMx16vrGUHpYV0kzz4Lo/gBIaVh ShI0GbPL2Ue9fRYd3xgJB3QS0mHv3clzWl4pY0ve3j+5ZZkh3erc6COHGCnnGkW5 CbDPzfF8vRlWy1+PMPnqkaGSUULxkL7FHwdBDIgZzVBgO69gg13vVC+YeTMiepr3 CvjOg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; bh=kj2KdEAhudXYpw6LmNTsin98q328p0udUa8kayy4w os=; b=Hpx5oeFBPbXlN+JcNbhQcRqj82RcdqlDp3aTTOLb/W2loPsxuFH2yTksG VeZZe8/3FDmcMUgPsALQkUdA+m8tflate16NhwA6+oNBbqRSK46boSgV3FbhaEKd LvNFQsHfJXE9fdRvdYgHCBx+G4gyEo3hemamrVM9LKgC6SRhnQyzQy/H5B/r+eL7 Bq/ENmdR89aRpzK9OQiDTmipAcP6Tot+Py0yFD3xp2+y3rIVoHll6cNKL/HP/mVF pw0Ltc8DvR0Ue0rbIvMsPgg4S97ETG6VfYeIS9whw4ytHNC8RmQ3iU3jSZ/YbFgm T17q0Yb0TJCp7JRa7Nk6iX9a3wmOA==
X-ME-Sender: <xms:_93VXSDK6MZy8mrSh4Z5mLzNAW6ZVi9aoO1NVBaw06R8PCn9aA0LRg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrudehuddgvdeiucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucgogfegtdelqddukeculddvtddtmdenucfjughrpe gtggfuhfgjfffgkfhfvffosehtqhhmtdhhtddvnecuhfhrohhmpeforghrkhcupfhothht ihhnghhhrghmuceomhhnohhtsehmnhhothdrnhgvtheqnecuffhomhgrihhnpehhthhtph drihhmpdhmnhhothdrnhgvthdpvgigrghmphhlvgdrtghomhenucfkphepfedurddufeef rddufeejrddvfeegnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmnhhothesmhhnohhtrd hnvghtnecuvehluhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:_93VXdXzUt8L97LLD-3UIIPxSj8gukr77KCmv-qIgFkitvIJxBJ27g> <xmx:_93VXUJwB8ImpmMF2mnd_W9OapMSPxclPl6Kp882igcnYqi0ZoxfjA> <xmx:_93VXWlEZ3aBAs7nIib-zW9jlHNP2YTcLKScSG49b6AJvBxmXuK_Nw> <xmx:_93VXQb4s4cpoXLb00BYJb0eeC6-tG6kE7d-eS12oJt261AVeEHuhw>
Received: from dhcp-89ea.meeting.ietf.org (dhcp-89ea.meeting.ietf.org [31.133.137.234]) by mail.messagingengine.com (Postfix) with ESMTPA id C81BD80060; Wed, 20 Nov 2019 19:44:45 -0500 (EST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3601.0.10\))
From: Mark Nottingham <mnot@mnot.net>
In-Reply-To: <371380E9-7204-41EC-8F32-653E9B5272D8@iii.ca>
Date: Thu, 21 Nov 2019 08:44:43 +0800
Cc: ietf-http-wg@w3.org, draft-ietf-httpbis-bcp56bis.all@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <C75AF744-44EA-4AAF-B074-50FF842D6E95@mnot.net>
References: <371380E9-7204-41EC-8F32-653E9B5272D8@iii.ca>
To: Cullen Jennings <fluffy@iii.ca>
X-Mailer: Apple Mail (2.3601.0.10)
Received-SPF: pass client-ip=66.111.4.221; envelope-from=mnot@mnot.net; helo=new1-smtp.messagingengine.com
X-W3C-Hub-Spam-Status: No, score=-9.8
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1iXaaY-00023A-9Z 4904a38769df0f3e45b3cde3a20afe81
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Review of draft-ietf-httpbis-bcp56bis-09
Archived-At: <https://www.w3.org/mid/C75AF744-44EA-4AAF-B074-50FF842D6E95@mnot.net>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37160
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Hi Cullen,

> On 20 Nov 2019, at 5:39 pm, Cullen Jennings <fluffy@iii.ca> wrote:
> 
> Lets say I have registered the ./well-known/fluffy space and I want to define a protocol for IOT devices to get a random number that changes each day by doing a GET of https://example.com/.well-known/fluffy/v1/rand (and the spec for this has all the appropriate info about catch control etc ) 
> 
> It seems like the last paragraph of 4.4.1 says this is allowed.

It is.


> I think this example is illustrative of the main things people have been complain with about the BCP 56 (the current version, not the bis draft here ) 

Honestly, I don't know that people have thought about or referred to the original BCP56 for several years, but OK. (Are you thinking about 7320, perhaps?)


> Let us start by if we agree the above is allowed or not. If I am wrong that this is not allowed, then ignore the rest of this email and we can talk about why it is not allowed. 
> 
> Section 4.4.1 of the drafts say 
> 
>   Applications MUST NOT define a fixed prefix for its URL paths; for
>   reasons explained in [RFC7320], this is bad practice.
> 
> This seems wrong and needs to call out the exception for the .well-known space 

It is excepted in the next statement, starting with "Instead, a specification for such an application..."

If you're saying that the link between these sentences isn't strong / obvious enough, I'm happy to take that as editorial feedback.


> Section 3.2 seems to forbid the .well-known space at all so I think this section needs to specifically mention and carve out the .well-known space. 

3.2 doesn't forbid anything; it's explaining a pattern for use that gets utility out of HTTP. 

(I'm starting to wonder which revision of the draft you looked at; some of this changed in -09)


> Section 4.4, last paragraph - This seems not true for example above so this seems wrong 

That paragraph in -09 is:

> Therefore, the specification writer needs some mechanism to allow clients to discovery an application's URLs.  Additionally, they need to specify what URL scheme(s) the application should be used with, and whether to use a dedicated port, or reuse HTTP's port(s).

Can you explain why this isn't true for your example?


> Section 4.4.1 says 
> 
>   The most straightforward mechanism for URL discovery is to configure
>   the client with (or otherwise convey to it) a full URL.  This might
>   be done in a configuration document, in DNS or mDNS, or through
>   another discovery mechanism.
> 
> What's the advice on how to do the full URL in DNS ?

I don't know that the HTTP WG should give advice about how to do things in DNS. If there's a consensus way to do this, we can refer to it -- but the intent here was to have a hanging reference for others (including application authors, if need be) fill in.

Cheers,


--
Mark Nottingham   https://www.mnot.net/

v2.23.0 | Report a Bug | By Email