Re: [OAUTH-WG] Error Registry: Conclusion
Eran Hammer <eran@hueniverse.com> Thu, 14 June 2012 21:52 UTC
Return-Path: <eran@hueniverse.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BB7F21F85D0 for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 14:52:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id amQy-JW84SxF for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 14:52:58 -0700 (PDT)
Received: from p3plex2out02.prod.phx3.secureserver.net (p3plex2out02.prod.phx3.secureserver.net [184.168.131.14]) by ietfa.amsl.com (Postfix) with ESMTP id 58C4421F859A for <oauth@ietf.org>; Thu, 14 Jun 2012 14:52:58 -0700 (PDT)
Received: from P3PWEX2HT002.ex2.secureserver.net ([184.168.131.10]) by p3plex2out02.prod.phx3.secureserver.net with bizsmtp id NMsx1j00C0Dcg9U01MsxFk; Thu, 14 Jun 2012 14:52:57 -0700
Received: from P3PWEX2MB008.ex2.secureserver.net ([169.254.8.66]) by P3PWEX2HT002.ex2.secureserver.net ([184.168.131.10]) with mapi id 14.02.0247.003; Thu, 14 Jun 2012 14:52:57 -0700
From: Eran Hammer <eran@hueniverse.com>
To: William Mills <wmills@yahoo-inc.com>, Mike Jones <Michael.Jones@microsoft.com>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
Thread-Topic: [OAUTH-WG] Error Registry: Conclusion
Thread-Index: AQHNMuF2SEvCPjHVP0qi3ETkqD5Qwpb6hReggAB5QoD//4tzgA==
Date: Thu, 14 Jun 2012 21:52:56 +0000
Message-ID: <0CBAEB56DDB3A140BA8E8C124C04ECA201073323@P3PWEX2MB008.ex2.secureserver.net>
References: <42B29A82-D8BA-40B8-9569-B209CBBBC3B7@gmx.net> <4E1F6AAD24975D4BA5B1680429673943665393AB@TK5EX14MBXC284.redmond.corp.microsoft.com> <1339710487.34288.YahooMailNeo@web31813.mail.mud.yahoo.com>
In-Reply-To: <1339710487.34288.YahooMailNeo@web31813.mail.mud.yahoo.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [37.46.45.194]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "oauth@ietf.org WG" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Error Registry: Conclusion
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jun 2012 21:52:59 -0000
We already have multiple registries. This one is about error codes only. I don't think the overlap is clear at this point between errors on the core endpoints vs error on the bearer and future auth schemes opting into this registry. So it is hard to tell which format would be better. The main question if we split the error registry into multiple tables is how registrations are done because currently, the template is used as-is to insert a single record into the IANA table. EH > -----Original Message----- > From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf > Of William Mills > Sent: Thursday, June 14, 2012 2:48 PM > To: Mike Jones; Hannes Tschofenig > Cc: oauth@ietf.org WG > Subject: Re: [OAUTH-WG] Error Registry: Conclusion > > We might be able to combine these, but to me it really does make sense to > have one registry for OAuth 2 core extensions to the frameowrk and one for > the auth profiles. The downside of this would be duplication between the > two. If we think there will be significant overlap then I think they should be > merged, if they are mostly distinct then I would somewhat prefer separate > registries but I can live with either. > > My tuppence. > > -bill > > > > ----- Original Message ----- > > From: Mike Jones <Michael.Jones@microsoft.com> > > To: Hannes Tschofenig <Hannes.Tschofenig@gmx.net> > > Cc: "oauth@ietf.org WG" <oauth@ietf.org> > > Sent: Thursday, June 14, 2012 2:40 PM > > Subject: Re: [OAUTH-WG] Error Registry: Conclusion > > > > Hi Hannes, > > > > You stated a preference for separate registries below, but that was a > > larger change to the OAuth Core spec than the current draft, which > > added a fourth error usage location "resource access error response" > > to the registry. To my knowledge, the consensus call didn't ask > > people to express a preference between having four separate OAuth > > Errors registries versus one OAuth Errors registry allowing any > > combination of a set of four usage locations to be specified. > > > > Given that the two choices are completely equivalent, and we had > > previously established the single OAuth Errors registry with three > > possible usage locations, extending it to a fourth seemed to be both > > more natural and easier for people to understand. > > > > Therefore, I'd like to ask you to withdraw your suggestion and allow > > the existing structure of the OAuth Errors registry to remain. > > > > Thank you, > > -- Mike > > > > -----Original Message----- > > From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf > > Of Hannes Tschofenig > > Sent: Tuesday, May 15, 2012 2:27 PM > > To: oauth@ietf.org WG > > Subject: [OAUTH-WG] Error Registry: Conclusion > > > > Hi all, > > > > on May 8th we called for consensus on an open issue regarding the > > location of the error registry. Here is the call for comments: > > http://www.ietf.org/mail-archive/web/oauth/current/msg08952.html. > > > > Thank you all for the feedback. The consensus is to create the > > registry in the core document. > > > > Section 11.4.1 already sort-of creates sub-registries to illustrate > > where the different errors can be used. This is needed since some of > > the errors may only appear in certain error responses. Hence, we need > > add another one to this list > > (suggestion: 'resource access error response'). In fact, I would > > prefer IANA to create separate tables for each of these sub-registries > > to avoid confusion for the reader (instead of putting everything into a > single table). > > > > We believe that these changes are really minor and address IESG feedback. > > > > Ciao > > Hannes & Derek > > > > > > _______________________________________________ > > OAuth mailing list > > OAuth@ietf.org > > https://www.ietf.org/mailman/listinfo/oauth > > > > > > _______________________________________________ > > OAuth mailing list > > OAuth@ietf.org > > https://www.ietf.org/mailman/listinfo/oauth > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] Error Registry: Conclusion Hannes Tschofenig
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones
- Re: [OAUTH-WG] Error Registry: Conclusion William Mills
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Hannes Tschofenig
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones