Re: [netconf] Adoption call for draft-kwatsen-netconf-http-client-server-04

Kent Watsen <> Thu, 07 November 2019 00:04 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 2907C1200CC; Wed, 6 Nov 2019 16:04:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id ruzEMpshpT_Z; Wed, 6 Nov 2019 16:04:14 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 7D4CC120169; Wed, 6 Nov 2019 16:04:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=6gbrjpgwjskckoa6a5zn6fwqkn67xbtw;; t=1573085053; h=From:Message-Id:Content-Type:Mime-Version:Subject:Date:In-Reply-To:Cc:To:References:Feedback-ID; bh=zRVeprWI7wdNZZThSoObf5qiTa87Tcq+6la5CsLOFVk=; b=OC4vNq9qYLg4riinEP2CIGwZaHwZDHBkfUgsaRmMy30bel5i48UN9EoECzFrr9kb dVQO8v2Z+hzkqu9X1Z66pWUnXQ/cORCj26fE8d0/YYMRo6xtx6aa8YC6dPihM7OqC5e mY2c0mgm2qPJ/+05w3Dz93TdZgsBd6aRtUSnGH7s=
From: Kent Watsen <>
Message-ID: <>
Content-Type: multipart/alternative; boundary="Apple-Mail=_28247C3C-B748-4374-BC1D-DC8B54B5ED39"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Thu, 07 Nov 2019 00:04:13 +0000
In-Reply-To: <>
Cc: Mahesh Jethanandani <>,, "" <>
To: Martin Bjorklund <>
References: <> <>
X-Mailer: Apple Mail (2.3445.104.11)
X-SES-Outgoing: 2019.11.07-
Archived-At: <>
Subject: Re: [netconf] Adoption call for draft-kwatsen-netconf-http-client-server-04
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 07 Nov 2019 00:04:16 -0000

Hi Martin,

> In principle I wouldn't mind a document like this.  But if the HTTP
> experts have concerns, and based on the contents of the model (*)
> perhaps it is better to add the necessary nodes directly to the
> higher-level modules (e.g, ietf-restconf-server for the server nodes).

Adding the nodes into the higher-level modules seems incorrect, as it would effectively cause the same content to be replicated into a multiplicity of higher-level modules leading to user-confusion and maintenance-complexity.

It seems more appropriate to understand what the concerns are and try to address them.   

Noteworthily, the HTTP experts additionally said that they would have no issue if the module were called something else (ietf-restful-http-client/server?) as then it wouldn't appear to intending to be an all-encompassing HTTP definition and it would no longer require involvement of the HTTP experts to ensure correctness.

> (*) The grouping for the server doesn't really add much, imo.
> Basically it has a seemingly arbitrary selection of headers to control
> (in fact just 'Server'), which protocol version to support, and a
> per-server list of "basic" username/passwords (which is probably not
> a common way to configure authentication).

True, but it is still meaningful, even if only for the protocol version, and providing a target for higher-level modules to augment into.

> The client grouping also doens't add much, with the possible exception
> of the proxy settings; perhaps these nodes could be specified in a
> generic grouping.

The "client-identity" container is important.  Note that "basic-auth" is under an "if-feature" statement in anticipation that higher-level models will want to augment into the "auth-type" choice statement other (potentially proprietary) auth schemes.

Kent // contributor