Re: [netconf] Adoption Call for draft-mahesh-netconf-https-notif-00

Balázs Lengyel <balazs.lengyel@ericsson.com> Wed, 18 September 2019 07:33 UTC

Return-Path: <balazs.lengyel@ericsson.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B790120129 for <netconf@ietfa.amsl.com>; Wed, 18 Sep 2019 00:33:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lTSkOpQYBuvh for <netconf@ietfa.amsl.com>; Wed, 18 Sep 2019 00:33:50 -0700 (PDT)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10074.outbound.protection.outlook.com [40.107.1.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 662EA120098 for <netconf@ietf.org>; Wed, 18 Sep 2019 00:33:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EV5Z/fXvID7A/KucVe4Bjxsz5s85tJNB69/vCvCn3IZ8W/q+uYmQ38pWKA/iEjVlRyELURO0oxFonRiw4ErklUzakP3KMELi/4nYDRlzIzRZyflHKe+8Lm6FGbPYFjZ1B7jc80Gc366fbvk757lVGTvyZOle/HGVYAFAw5e+m4d8R3FrkHu/4oEgNUO5zBCL7ONzjcTf3RPwxDAYzUB3xPCXAOxR/hBt9TOsqF3AsWmD3XMoLx05RYT+J2YABvj0JZN9oTqSAKJOR4a951q61p7t2hAKhyGHm5Pc1JFTBvb25oZueVegZQS/YaRUaVwjZG3c+gRg3sOVlpCjt06yRQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IlfnWVpXvm2cRYfFZP1vJG+m8pVMFrv7aVhcS02oCxM=; b=UPZ2comAX5fQB2/rqHHCCd42q/SNSdQtYWDI/LovJW+8y0dkH/5QzQ/Imekd6IaOwTi9h81dnzdhobVShAfMZZF3xOZwbbTPWnMxiQPiDGg4M8gwS3oyQ/QPcJe3O5nQIsdphcQLehVWEpN3h1pyqRSrsJ6InUBF8YCkDJ+WEQh7vxv3GJOWaIAAhzdQYkWQzK3Pbr+dEjHInI5sO2BbgIqmROyZtRXhwTfZzSOlfhAu2xaFYp0fqliA5SJmuJUdkvwBfoAS7SCS4umSbpr1GpgXZLR4yZoEOAbmqmGOx1EeGssDa4G2Ea7WOz2RtNQyEAVK/wUthpEY6l6gDLtxUA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IlfnWVpXvm2cRYfFZP1vJG+m8pVMFrv7aVhcS02oCxM=; b=S99TsDVYqZbYtSlqWgIUmk8Se2jOYNbXozvdhHx8s2s4rn2k2Kck5eqRuFEPkKSOmHKLgQpaW1s0Ec6rAM5RDlyRCpzHRa0+GLXhBvzKB7I9A0hiWgb/XmCiSzknWM0M3rKT16shqtW0iH787YY70OySvYF/7hTfGS3T9dkADHY=
Received: from VI1PR0701MB2286.eurprd07.prod.outlook.com (10.169.137.153) by VI1PR0701MB2399.eurprd07.prod.outlook.com (10.168.139.10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2284.13; Wed, 18 Sep 2019 07:33:46 +0000
Received: from VI1PR0701MB2286.eurprd07.prod.outlook.com ([fe80::f44b:854c:51cf:c69f]) by VI1PR0701MB2286.eurprd07.prod.outlook.com ([fe80::f44b:854c:51cf:c69f%7]) with mapi id 15.20.2284.009; Wed, 18 Sep 2019 07:33:46 +0000
From: =?iso-8859-1?Q?Bal=E1zs_Lengyel?= <balazs.lengyel@ericsson.com>
To: Kent Watsen <kent+ietf@watsen.net>, Martin Bjorklund <mbj@tail-f.com>
CC: "netconf@ietf.org" <netconf@ietf.org>
Thread-Topic: [netconf] Adoption Call for draft-mahesh-netconf-https-notif-00
Thread-Index: AQHVXFoK0TesLYidkkOIF6piEQcN7acOlbeAgBWZTACAAGVCgIAKAaAAgAA6YgCAATeLgIABJTgQ
Date: Wed, 18 Sep 2019 07:33:46 +0000
Message-ID: <VI1PR0701MB22864D8027D054D7FAE8EAAFF08E0@VI1PR0701MB2286.eurprd07.prod.outlook.com>
References: <0100016d18b462b3-38420cd3-1259-47ea-aa1b-f250a8238c9b-000000@email.amazonses.com> <20190910.090803.448863675820254782.mbj@tail-f.com> <0100016d3aca212d-1791071e-66b5-4730-9cf2-6b4f16217d21-000000@email.amazonses.com> <20190916.212526.427039138127777720.mbj@tail-f.com> <0100016d3f864f24-aeab9f9b-fd8f-4688-89ba-a66f7571c943-000000@email.amazonses.com>
In-Reply-To: <0100016d3f864f24-aeab9f9b-fd8f-4688-89ba-a66f7571c943-000000@email.amazonses.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=balazs.lengyel@ericsson.com;
x-originating-ip: [89.135.192.225]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: dd1f7a4d-3f5d-46b2-75e2-08d73c0a8a59
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600167)(711020)(4605104)(1401327)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(49563074)(7193020); SRVR:VI1PR0701MB2399;
x-ms-traffictypediagnostic: VI1PR0701MB2399:
x-microsoft-antispam-prvs: <VI1PR0701MB239935938EB8BCE14DCC41D1F08E0@VI1PR0701MB2399.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 01644DCF4A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(346002)(376002)(136003)(366004)(396003)(39860400002)(189003)(199004)(186003)(7736002)(316002)(476003)(446003)(11346002)(110136005)(14444005)(256004)(486006)(33656002)(26005)(6506007)(53546011)(7696005)(14454004)(76176011)(102836004)(99286004)(66476007)(66556008)(64756008)(66446008)(66946007)(66616009)(6436002)(86362001)(45776006)(55016002)(6306002)(54896002)(9686003)(74316002)(8936002)(81166006)(76116006)(8676002)(81156014)(5660300002)(52536014)(71200400001)(478600001)(99936001)(71190400001)(2906002)(3846002)(790700001)(6116002)(66066001)(25786009)(229853002)(4326008)(6246003); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0701MB2399; H:VI1PR0701MB2286.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: OW9n9V+4c3vQnaRNPuDQw40NQ263UTeKAGpcpSRCb6Y2Lut2gvhMZA9V9L2d06xPmoTzLZH0qDpwB/H6YY4T+qF7gWLB+UEIj/zhdvOC+h5MNFBS45M7DDEjFjygL1fzXwXogweXBw3KGz0BP8JOBKnfX+UsStrB+zh4jL9x3gMLmIbFUyvp7jqO6Yt15w7ROT+RpEzWBqhhBSdloZH7W5YOJYcH+hBcZkhxnMOth5mqqqdS77mJcKXh2ns2fh3NJL+uNWv7xw/6s4ftg2+W3acL7uYiGOMwruNwC4aS/pCTwk9oBHeSKaVEX24zS4C9ELwiI0AjTgYglc8IlgIXAruCTogM89uiZyxC6fxzUR0q7OEbZZ4nsNViwpkV7c1GS5GFVSUzaW5fQE5f8N0Uucn57mC3zlVbukvcBz/40HQ=
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=SHA1; boundary="----=_NextPart_000_0168_01D56E04.2A31F7E0"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dd1f7a4d-3f5d-46b2-75e2-08d73c0a8a59
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Sep 2019 07:33:46.4102 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: YTuWqYrdE84nDc6ITF/LETFnWANTE0mFAjh+f45mAeZnAm9lAcMj6AaJihEWyAaoW1HJHbXjXbLEyZCOpCrZr30bb98gd9N9uEaY9i5p/AQ=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0701MB2399
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/YldXh8HDCJmQN9QaZnC58UukcI4>
Subject: Re: [netconf] Adoption Call for draft-mahesh-netconf-https-notif-00
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Sep 2019 07:33:53 -0000

Maybe we could use as userId which configured the receiver as the userId of
the publisher. After all he is the one that decides to send the
notifications, if he has the correct rights, he can share the information
with whoever he wants.

Regards Balazs

 

From: netconf <netconf-bounces@ietf.org> On Behalf Of Kent Watsen
Sent: 2019. szeptember 17., kedd 16:00
To: Martin Bjorklund <mbj@tail-f.com>
Cc: netconf@ietf.org
Subject: Re: [netconf] Adoption Call for draft-mahesh-netconf-https-notif-00

 

 

Do you mean to add to the draft a new section called something like
"Authorization" that mimics what's in the SN draft regarding, e.g.,
NACM?


No I mean that when the device generates a notification, NACM needs a
user name to find the access control rules.  What is the user name
with this new protocol?

 

Now I understand.   There isn't a set answer for this yet.   Two approaches:

 

1) We could claim that it is the "system" that is the publisher (effectively
no NACM)

2) We could have an explicit field for the "send as" user.  (default to
"system"?)