Re: [OAUTH-WG] Error Registry: Conclusion
Eran Hammer <eran@hueniverse.com> Thu, 14 June 2012 22:02 UTC
Return-Path: <eran@hueniverse.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F20EE21F8547 for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 15:02:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ca4YapmMf8qY for <oauth@ietfa.amsl.com>; Thu, 14 Jun 2012 15:02:30 -0700 (PDT)
Received: from p3plex2out01.prod.phx3.secureserver.net (p3plex2out01.prod.phx3.secureserver.net [184.168.131.12]) by ietfa.amsl.com (Postfix) with ESMTP id D594C21F8546 for <oauth@ietf.org>; Thu, 14 Jun 2012 15:02:29 -0700 (PDT)
Received: from P3PWEX2HT001.ex2.secureserver.net ([184.168.131.9]) by p3plex2out01.prod.phx3.secureserver.net with bizsmtp id NN2V1j0020CJzpC01N2Vi6; Thu, 14 Jun 2012 15:02:29 -0700
Received: from P3PWEX2MB008.ex2.secureserver.net ([169.254.8.66]) by P3PWEX2HT001.ex2.secureserver.net ([184.168.131.9]) with mapi id 14.02.0247.003; Thu, 14 Jun 2012 15:02:29 -0700
From: Eran Hammer <eran@hueniverse.com>
To: Mike Jones <Michael.Jones@microsoft.com>, William Mills <wmills@yahoo-inc.com>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
Thread-Topic: [OAUTH-WG] Error Registry: Conclusion
Thread-Index: AQHNMuF2SEvCPjHVP0qi3ETkqD5Qwpb6hReggAB5QoD//4tzgIAAd9yA//+K8uA=
Date: Thu, 14 Jun 2012 22:02:28 +0000
Message-ID: <0CBAEB56DDB3A140BA8E8C124C04ECA2010733C3@P3PWEX2MB008.ex2.secureserver.net>
References: <42B29A82-D8BA-40B8-9569-B209CBBBC3B7@gmx.net> <4E1F6AAD24975D4BA5B1680429673943665393AB@TK5EX14MBXC284.redmond.corp.microsoft.com> <1339710487.34288.YahooMailNeo@web31813.mail.mud.yahoo.com>, <0CBAEB56DDB3A140BA8E8C124C04ECA201073323@P3PWEX2MB008.ex2.secureserver.net> <4E1F6AAD24975D4BA5B16804296739436653949A@TK5EX14MBXC284.redmond.corp.microsoft.com>
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739436653949A@TK5EX14MBXC284.redmond.corp.microsoft.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [37.46.45.194]
Content-Type: multipart/alternative; boundary="_000_0CBAEB56DDB3A140BA8E8C124C04ECA2010733C3P3PWEX2MB008ex2_"
MIME-Version: 1.0
Cc: "oauth@ietf.org WG" <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Error Registry: Conclusion
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Jun 2012 22:02:31 -0000
It seems to me that a single table is a better way to accomplish the goals set by the working group. The entire reason for adding the new location was based on the assumption that there will be overlap. EH From: Mike Jones [mailto:Michael.Jones@microsoft.com] Sent: Thursday, June 14, 2012 3:00 PM To: Eran Hammer; William Mills; Hannes Tschofenig Cc: oauth@ietf.org WG Subject: RE: [OAUTH-WG] Error Registry: Conclusion Yes, we already have multiple registries, but only one for errors. When an error code can be used in more than one usage location, having one will make the registrations simpler and it may be somewhat more apparent how the error code is used. The two structures are equivalent, but it seems to me that having one is more convenient and simpler than having four. -- Mike ________________________________ From: Eran Hammer Sent: 6/14/2012 2:53 PM To: William Mills; Mike Jones; Hannes Tschofenig Cc: oauth@ietf.org<mailto:oauth@ietf.org> WG Subject: RE: [OAUTH-WG] Error Registry: Conclusion We already have multiple registries. This one is about error codes only. I don't think the overlap is clear at this point between errors on the core endpoints vs error on the bearer and future auth schemes opting into this registry. So it is hard to tell which format would be better. The main question if we split the error registry into multiple tables is how registrations are done because currently, the template is used as-is to insert a single record into the IANA table. EH > -----Original Message----- > From: oauth-bounces@ietf.org<mailto:oauth-bounces@ietf.org> [mailto:oauth-bounces@ietf.org] On Behalf > Of William Mills > Sent: Thursday, June 14, 2012 2:48 PM > To: Mike Jones; Hannes Tschofenig > Cc: oauth@ietf.org<mailto:oauth@ietf.org> WG > Subject: Re: [OAUTH-WG] Error Registry: Conclusion > > We might be able to combine these, but to me it really does make sense to > have one registry for OAuth 2 core extensions to the frameowrk and one for > the auth profiles. The downside of this would be duplication between the > two. If we think there will be significant overlap then I think they should be > merged, if they are mostly distinct then I would somewhat prefer separate > registries but I can live with either. > > My tuppence. > > -bill > > > > ----- Original Message ----- > > From: Mike Jones <Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com>> > > To: Hannes Tschofenig <Hannes.Tschofenig@gmx.net<mailto:Hannes.Tschofenig@gmx.net>> > > Cc: "oauth@ietf.org WG<mailto:oauth@ietf.org%20WG>" <oauth@ietf.org<mailto:oauth@ietf.org>> > > Sent: Thursday, June 14, 2012 2:40 PM > > Subject: Re: [OAUTH-WG] Error Registry: Conclusion > > > > Hi Hannes, > > > > You stated a preference for separate registries below, but that was a > > larger change to the OAuth Core spec than the current draft, which > > added a fourth error usage location "resource access error response" > > to the registry. To my knowledge, the consensus call didn't ask > > people to express a preference between having four separate OAuth > > Errors registries versus one OAuth Errors registry allowing any > > combination of a set of four usage locations to be specified. > > > > Given that the two choices are completely equivalent, and we had > > previously established the single OAuth Errors registry with three > > possible usage locations, extending it to a fourth seemed to be both > > more natural and easier for people to understand. > > > > Therefore, I'd like to ask you to withdraw your suggestion and allow > > the existing structure of the OAuth Errors registry to remain. > > > > Thank you, > > -- Mike > > > > -----Original Message----- > > From: oauth-bounces@ietf.org<mailto:oauth-bounces@ietf.org> [mailto:oauth-bounces@ietf.org] On Behalf > > Of Hannes Tschofenig > > Sent: Tuesday, May 15, 2012 2:27 PM > > To: oauth@ietf.org<mailto:oauth@ietf.org> WG > > Subject: [OAUTH-WG] Error Registry: Conclusion > > > > Hi all, > > > > on May 8th we called for consensus on an open issue regarding the > > location of the error registry. Here is the call for comments: > > http://www.ietf.org/mail-archive/web/oauth/current/msg08952.html. > > > > Thank you all for the feedback. The consensus is to create the > > registry in the core document. > > > > Section 11.4.1 already sort-of creates sub-registries to illustrate > > where the different errors can be used. This is needed since some of > > the errors may only appear in certain error responses. Hence, we need > > add another one to this list > > (suggestion: 'resource access error response'). In fact, I would > > prefer IANA to create separate tables for each of these sub-registries > > to avoid confusion for the reader (instead of putting everything into a > single table). > > > > We believe that these changes are really minor and address IESG feedback. > > > > Ciao > > Hannes & Derek > > > > > > _______________________________________________ > > OAuth mailing list > > OAuth@ietf.org<mailto:OAuth@ietf.org> > > https://www.ietf.org/mailman/listinfo/oauth > > > > > > _______________________________________________ > > OAuth mailing list > > OAuth@ietf.org<mailto:OAuth@ietf.org> > > https://www.ietf.org/mailman/listinfo/oauth > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org<mailto:OAuth@ietf.org> > https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] Error Registry: Conclusion Hannes Tschofenig
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones
- Re: [OAUTH-WG] Error Registry: Conclusion William Mills
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones
- Re: [OAUTH-WG] Error Registry: Conclusion Eran Hammer
- Re: [OAUTH-WG] Error Registry: Conclusion Hannes Tschofenig
- Re: [OAUTH-WG] Error Registry: Conclusion Mike Jones