IETF Logo Mail Archive

Re: [OAUTH-WG] Error Registry: Conclusion

Mike Jones <Michael.Jones@microsoft.com> Thu, 14 June 2012 22:00 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E568421F84B6 for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 15:00:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NqXUwWx+V76J for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 15:00:04 -0700 (PDT)
Received: from va3outboundpool.messaging.microsoft.com (va3ehsobe004.messaging.microsoft.com [216.32.180.14]) by ietfa.amsl.com (Postfix) with ESMTP id A6F6C21F84A7 for <oauth@ietf.org>; Thu, 14 Jun 2012 15:00:03 -0700 (PDT)
Received: from mail220-va3-R.bigfish.com (10.7.14.251) by VA3EHSOBE001.bigfish.com (10.7.40.21) with Microsoft SMTP Server id 14.1.225.23; Thu, 14 Jun 2012 21:58:54 +0000
Received: from mail220-va3 (localhost [127.0.0.1]) by mail220-va3-R.bigfish.com (Postfix) with ESMTP id 6854220212; Thu, 14 Jun 2012 21:58:54 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:131.107.125.8; KIP:(null); UIP:(null); IPV:NLI; H:TK5EX14HUBC105.redmond.corp.microsoft.com; RD:none; EFVD:NLI
X-SpamScore: -29
X-BigFish: VS-29(zzbb2dI9371I14ffI542Mc85dh1432Izz1202hzz8275ch1033IL8275bh8275dhz2fh2a8h668h839hd25hf0ah)
Received-SPF: pass (mail220-va3: domain of microsoft.com designates 131.107.125.8 as permitted sender) client-ip=131.107.125.8; envelope-from=Michael.Jones@microsoft.com; helo=TK5EX14HUBC105.redmond.corp.microsoft.com ; icrosoft.com ;
Received: from mail220-va3 (localhost.localdomain [127.0.0.1]) by mail220-va3 (MessageSwitch) id 1339711132863696_24539; Thu, 14 Jun 2012 21:58:52 +0000 (UTC)
Received: from VA3EHSMHS019.bigfish.com (unknown [10.7.14.239]) by mail220-va3.bigfish.com (Postfix) with ESMTP id D0CABC00045; Thu, 14 Jun 2012 21:58:52 +0000 (UTC)
Received: from TK5EX14HUBC105.redmond.corp.microsoft.com (131.107.125.8) by VA3EHSMHS019.bigfish.com (10.7.99.29) with Microsoft SMTP Server (TLS) id 14.1.225.23; Thu, 14 Jun 2012 21:58:51 +0000
Received: from TK5EX14MBXC284.redmond.corp.microsoft.com ([169.254.1.189]) by TK5EX14HUBC105.redmond.corp.microsoft.com ([157.54.80.48]) with mapi id 14.02.0309.003; Thu, 14 Jun 2012 21:59:58 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Eran Hammer <eran@hueniverse.com>, William Mills <wmills@yahoo-inc.com>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
Thread-Topic: [OAUTH-WG] Error Registry: Conclusion
Thread-Index: AQHNMuF2SEvCPjHVP0qi3ETkqD5Qwpb6hReggAAD6oCAAAFYAIAAAfdH
Date: Thu, 14 Jun 2012 21:59:57 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739436653949A@TK5EX14MBXC284.redmond.corp.microsoft.com>
References: <42B29A82-D8BA-40B8-9569-B209CBBBC3B7@gmx.net> <4E1F6AAD24975D4BA5B1680429673943665393AB@TK5EX14MBXC284.redmond.corp.microsoft.com> <1339710487.34288.YahooMailNeo@web31813.mail.mud.yahoo.com>, <0CBAEB56DDB3A140BA8E8C124C04ECA201073323@P3PWEX2MB008.ex2.secureserver.net>
In-Reply-To: <0CBAEB56DDB3A140BA8E8C124C04ECA201073323@P3PWEX2MB008.ex2.secureserver.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: multipart/alternative; boundary="_000_4E1F6AAD24975D4BA5B16804296739436653949ATK5EX14MBXC284r_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
Cc: "oauth@ietf.org WG" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Error Registry: Conclusion
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jun 2012 22:00:05 -0000

Yes, we already have multiple registries, but only one for errors.  When an error code can be used in more than one usage location, having one will make the registrations simpler and it may be somewhat more apparent how the error code is used.

The two structures are equivalent, but it seems to me that having one is more convenient and simpler than having four.

-- Mike

________________________________
From: Eran Hammer
Sent: 6/14/2012 2:53 PM
To: William Mills; Mike Jones; Hannes Tschofenig
Cc: oauth@ietf.org WG
Subject: RE: [OAUTH-WG] Error Registry: Conclusion

We already have multiple registries. This one is about error codes only. I don't think the overlap is clear at this point between errors on the core endpoints vs error on the bearer and future auth schemes opting into this registry. So it is hard to tell which format would be better. The main question if we split the error registry into multiple tables is how registrations are done because currently, the template is used as-is to insert a single record into the IANA table.

EH


> -----Original Message-----
> From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf
> Of William Mills
> Sent: Thursday, June 14, 2012 2:48 PM
> To: Mike Jones; Hannes Tschofenig
> Cc: oauth@ietf.org WG
> Subject: Re: [OAUTH-WG] Error Registry: Conclusion
>
> We might be able to combine these, but to me it really does make sense to
> have one registry for OAuth 2 core extensions to the frameowrk and one for
> the auth profiles.  The downside of this would be duplication between the
> two.  If we think there will be significant overlap then I think they should be
> merged, if they are mostly distinct then I would somewhat prefer separate
> registries but I can live with either.
>
> My tuppence.
>
> -bill
>
>
>
> ----- Original Message -----
> > From: Mike Jones <Michael.Jones@microsoft.com>
> > To: Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
> > Cc: "oauth@ietf.org WG" <oauth@ietf.org>
> > Sent: Thursday, June 14, 2012 2:40 PM
> > Subject: Re: [OAUTH-WG] Error Registry: Conclusion
> >
> > Hi Hannes,
> >
> > You stated a preference for separate registries below, but that was a
> > larger change to the OAuth Core spec than the current draft, which
> > added a fourth error usage location "resource access error response"
> > to the registry.  To my knowledge, the consensus call didn't ask
> > people to express a preference between having four separate OAuth
> > Errors registries versus one OAuth Errors registry allowing any
> > combination of a set of four usage locations to be specified.
> >
> > Given that the two choices are completely equivalent, and we had
> > previously established the single OAuth Errors registry with three
> > possible usage locations, extending it to a fourth seemed to be both
> > more natural and easier for people to understand.
> >
> > Therefore, I'd like to ask you to withdraw your suggestion and allow
> > the existing structure of the OAuth Errors registry to remain.
> >
> >                 Thank you,
> >                 -- Mike
> >
> > -----Original Message-----
> > From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf
> > Of Hannes Tschofenig
> > Sent: Tuesday, May 15, 2012 2:27 PM
> > To: oauth@ietf.org WG
> > Subject: [OAUTH-WG] Error Registry: Conclusion
> >
> > Hi all,
> >
> > on May 8th we called for consensus on an open issue regarding the
> > location of the error registry. Here is the call for comments:
> > http://www.ietf.org/mail-archive/web/oauth/current/msg08952.html.
> >
> > Thank you all for the feedback. The consensus is to create the
> > registry in the core document.
> >
> > Section 11.4.1 already sort-of creates sub-registries to illustrate
> > where the different errors can be used. This is needed since some of
> > the errors may only appear in certain error responses. Hence, we need
> > add another one to this list
> > (suggestion: 'resource access error response'). In fact, I would
> > prefer IANA to create separate tables for each of these sub-registries
> > to avoid confusion for the reader (instead of putting everything into a
> single table).
> >
> > We believe that these changes are really minor and address IESG feedback.
> >
> > Ciao
> > Hannes & Derek
> >
> >
> > _______________________________________________
> > OAuth mailing list
> > OAuth@ietf.org
> > https://www.ietf.org/mailman/listinfo/oauth
> >
> >
> > _______________________________________________
> > OAuth mailing list
> > OAuth@ietf.org
> > https://www.ietf.org/mailman/listinfo/oauth
> >
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email