IETF Logo Mail Archive

Re: Portal authorization (was: Re: multiplexing -- don't do it)

"Nicolas Mailhot" <nicolas.mailhot@laposte.net> Tue, 10 April 2012 07:04 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BBF3521F85DB for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 10 Apr 2012 00:04:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.448
X-Spam-Level:
X-Spam-Status: No, score=-10.448 tagged_above=-999 required=5 tests=[AWL=0.021, BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8, SARE_RMML_Stock10=0.13]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RURwW7d9U-RX for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 10 Apr 2012 00:04:50 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 770CC21F8566 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 10 Apr 2012 00:04:50 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.69) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1SHV81-0004Lo-9I for ietf-http-wg-dist@listhub.w3.org; Tue, 10 Apr 2012 07:04:37 +0000
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.69) (envelope-from <nicolas.mailhot@laposte.net>) id 1SHV7r-0004Kx-Tg for ietf-http-wg@listhub.w3.org; Tue, 10 Apr 2012 07:04:27 +0000
Received: from smtpout4.laposte.net ([193.253.67.229] helo=smtpout.laposte.net) by lisa.w3.org with esmtp (Exim 4.72) (envelope-from <nicolas.mailhot@laposte.net>) id 1SHV7l-00020e-OH for ietf-http-wg@w3.org; Tue, 10 Apr 2012 07:04:25 +0000
Received: from arekh.dyndns.org ([88.174.226.208]) by mwinf8508-out with ME id w73w1i0014WQcrc0373wGe; Tue, 10 Apr 2012 09:03:56 +0200
Received: from localhost (localhost.localdomain [127.0.0.1]) by arekh.dyndns.org (Postfix) with ESMTP id EA747232E; Tue, 10 Apr 2012 09:03:55 +0200 (CEST)
X-Virus-Scanned: amavisd-new at arekh.dyndns.org
Received: from arekh.dyndns.org ([127.0.0.1]) by localhost (arekh.okg [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CRJzd+uqCvnr; Tue, 10 Apr 2012 09:03:53 +0200 (CEST)
Received: from arekh.dyndns.org (localhost.localdomain [127.0.0.1]) by arekh.dyndns.org (Postfix) with ESMTP; Tue, 10 Apr 2012 09:03:53 +0200 (CEST)
Received: from 192.168.0.4 (SquirrelMail authenticated user nim) by arekh.dyndns.org with HTTP; Tue, 10 Apr 2012 09:03:53 +0200
Message-ID: <10d40fc93f14e0e75521e5653946ea4c.squirrel@arekh.dyndns.org>
In-Reply-To: <11509b6f410771fb81c08b9d7cfc2e12.squirrel@arekh.dyndns.org>
References: <4F763DD2.70604@isode.com> <em3e102790-aa55-4d0f-9ff3-39bf0ca77fd3@boist> <CABaLYCvGt=pqwVXaWMMUTyD1Gg=qizRG_WuekC33awBRu53AAQ@mail.gmail.com> <4F76AABF.3010201@gmx.de> <CABaLYCsB+outivXFwj8iFH+dM6XedxwR672Rw7pOhtzj7r6X-A@mail.gmail.com> <loom.20120406T155512-618@post.gmane.org> <CAA4WUYipNcFpigX4MHQHOtM-M0vFBSRjMJLZnpN6GXkPinVNMw@mail.gmail.com> <50b278cb647638c66ee1db0fe1bf8488.squirrel@arekh.dyndns.org> <20120407192933.GA3240@jl-vm1.vm.bytemark.co.uk> <502fe0631a8a28bce027c70c6e733c38.squirrel@arekh.dyndns.org> <20120409151210.GC3240@jl-vm1.vm.bytemark.co.uk> <4F838D59.50304@it.aoyama.ac.jp> <11509b6f410771fb81c08b9d7cfc2e12.squirrel@arekh.dyndns.org>
Date: Tue, 10 Apr 2012 09:03:53 +0200
From: Nicolas Mailhot <nicolas.mailhot@laposte.net>
To: Nicolas Mailhot <nicolas.mailhot@laposte.net>
Cc: "\"Martin J. Dürst\"" <duerst@it.aoyama.ac.jp>, Jamie Lokier <jamie@shareable.org>, Nicolas Mailhot <nicolas.mailhot@laposte.net>, "\"William Chan (陈智昌)\"" <willchan@chromium.org>, ietf-http-wg@w3.org
User-Agent: SquirrelMail/1.4.22-7.fc18
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Received-SPF: pass client-ip=193.253.67.229; envelope-from=nicolas.mailhot@laposte.net; helo=smtpout.laposte.net
X-W3C-Hub-Spam-Status: No, score=-1.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01
X-W3C-Scan-Sig: lisa.w3.org 1SHV7l-00020e-OH fd2a1a178bb5a456a859f704b650c5b9
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Portal authorization (was: Re: multiplexing -- don't do it)
Archived-At: <http://www.w3.org/mid/10d40fc93f14e0e75521e5653946ea4c.squirrel@arekh.dyndns.org>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/13417
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Resent-Message-Id: <E1SHV81-0004Lo-9I@frink.w3.org>
Resent-Date: Tue, 10 Apr 2012 07:04:37 +0000

Le Mar 10 avril 2012 09:00, Nicolas Mailhot a écrit :
>
> Le Mar 10 avril 2012 03:31, "Martin J. Dürst" a écrit :
>> Hello Jamie, others,
>>
>> Mark had a draft on this,
>> http://tools.ietf.org/html/draft-nottingham-http-portal-02. I'm not sure
>> why it didn't move forward.
>
> I think it morphed in http error 511 however:
>
> 1. error 511 does not return an url so it can't be handled by dumb web clients
> such as curl
> 2. browser people do not like it. Gateway auth really needs to be specified
> once and for all in a document with browser buy-in such as http/2

To clarify, unless hop-to-hop auth is clearly integrated from the start in the
protocol model, browser people will say it is bolted afterwards and breaks
this model, will try to get away not implementing it and things will continue
to be massively broken.

-- 
Nicolas Mailhot

v2.23.0 | Report a Bug | By Email