Re: [OAUTH-WG] Encoding of Errors in the Base and in the Bearer Spec
William Mills <wmills@yahoo-inc.com> Wed, 09 May 2012 22:18 UTC
Return-Path: <wmills@yahoo-inc.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E6AA221F84D6 for <oauth@ietfa.amsl.com>; Wed, 9 May 2012 15:18:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.207
X-Spam-Level:
X-Spam-Status: No, score=-17.207 tagged_above=-999 required=5 tests=[AWL=0.391, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_DEF_WHITELIST=-15]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EIVsFYVw9WLj for <oauth@ietfa.amsl.com>; Wed, 9 May 2012 15:18:24 -0700 (PDT)
Received: from nm7-vm0.bullet.mail.bf1.yahoo.com (nm7-vm0.bullet.mail.bf1.yahoo.com [98.139.213.151]) by ietfa.amsl.com (Postfix) with SMTP id BC09B21F84CE for <oauth@ietf.org>; Wed, 9 May 2012 15:18:17 -0700 (PDT)
Received: from [98.139.214.32] by nm7.bullet.mail.bf1.yahoo.com with NNFMP; 09 May 2012 22:18:17 -0000
Received: from [98.139.212.220] by tm15.bullet.mail.bf1.yahoo.com with NNFMP; 09 May 2012 22:18:17 -0000
Received: from [127.0.0.1] by omp1029.mail.bf1.yahoo.com with NNFMP; 09 May 2012 22:18:17 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 168511.36664.bm@omp1029.mail.bf1.yahoo.com
Received: (qmail 27766 invoked by uid 60001); 9 May 2012 22:18:16 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo-inc.com; s=ginc1024; t=1336601896; bh=rGujQfXIFi4drCSzV46So7PcgQprfjDxHqWe3MO7QnQ=; h=X-YMail-OSG:Received:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=mjrAWIxdKYJXCD68Rl1shqGVMIa7EfFRYcnFkD7Z9+INWzBYNFZjLizh37m3+tDj+V3xaeXYSPzjXqHFVZMCb0NKBdAU/D1/+YwjNR32RyQeWUmk8cAVbYvNKVjBmgVegmT/kv7TjAHrI7uU07hCQItnbyXp6fiLy2qbsNS6nIA=
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=ginc1024; d=yahoo-inc.com; h=X-YMail-OSG:Received:X-RocketYMMF:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=n5PEhB+WX7Z4Zbi8eyikLQFKp7FLlwh19VanZnSE5k/Z726EFLSdwc1gOiBZglnqDmKkXrCXLU2BOIIZ05Dw1D6a3aE/37Z78nHAZg4lKg65q1Wll+ShribpzSkA0jOpD81degztuwbnXPfMzkjVbpgnTtlCoxTj/M1oJgJT34s=;
X-YMail-OSG: okRrCdMVM1lkLNl2WfH1v_xOE3.4k7T4_d7Y0kOpCgptlOI POFSXeeJAVYwKtju7r6lQOMiCtBL598a0h8WDRA_MCp.poZJpWJhW2yZTYFm G.Wx4hEflCYrLsqjfaDTKE4ky.8VVgTJleCQ8o5n88ZG24pG.4cYhbaYlfM3 pGZJAd5nXOWKkHu1O_p2a7OTRRbS4P1rwqWv2wshfhnWEhgQcTHLsPq9k_eQ iE_l3iLSsVn.70oZo4JvmEtLWA7Lf.8YxCMTFFBvo7dQ9C_kNZN5Tcs_bg2t 4U0UBd4Xr3RXpBWvqkCb7uF.VJ8CJdbrCoVaqtjtjzNwTt5kIsoLxu3jtHu4 TSYiXMUG0H_c2rEx9.1dNliLMqZ5yN_JLijcejPEcEbkn8_g0GUCfco9Gt3L zQ5ZJbzAwk9Pi1D8N7IEgf54oztcVucS2uBImrZhsnkJpl7xJ1w--
Received: from [209.131.62.120] by web31807.mail.mud.yahoo.com via HTTP; Wed, 09 May 2012 15:18:16 PDT
X-RocketYMMF: william_john_mills
X-Mailer: YahooMailWebService/0.8.118.349524
References: <7D98C51F-84D8-48AA-B94D-EABE4D0921DB@gmx.net> <4E1F6AAD24975D4BA5B1680429673943664CE2AE@TK5EX14MBXC283.redmond.corp.microsoft.com>
Message-ID: <1336601896.10694.YahooMailNeo@web31807.mail.mud.yahoo.com>
Date: Wed, 09 May 2012 15:18:16 -0700
From: William Mills <wmills@yahoo-inc.com>
To: Mike Jones <Michael.Jones@microsoft.com>, Hannes Tschofenig <hannes.tschofenig@gmx.net>, "oauth@ietf.org WG" <oauth@ietf.org>
In-Reply-To: <4E1F6AAD24975D4BA5B1680429673943664CE2AE@TK5EX14MBXC283.redmond.corp.microsoft.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="-125733401-1044875231-1336601896=:10694"
Subject: Re: [OAUTH-WG] Encoding of Errors in the Base and in the Bearer Spec
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: William Mills <wmills@yahoo-inc.com>
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 May 2012 22:18:25 -0000
+1 >________________________________ > From: Mike Jones <Michael.Jones@microsoft.com> >To: Hannes Tschofenig <hannes.tschofenig@gmx.net>; "oauth@ietf.org WG" <oauth@ietf.org> >Sent: Wednesday, May 9, 2012 3:15 PM >Subject: Re: [OAUTH-WG] Encoding of Errors in the Base and in the Bearer Spec > >2) Consistent syntax across both OAuth specs. > > -- Mike > >-----Original Message----- >From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf Of Hannes Tschofenig >Sent: Wednesday, May 09, 2012 3:07 PM >To: oauth@ietf.org WG >Subject: [OAUTH-WG] Encoding of Errors in the Base and in the Bearer Spec > >Hi all, > >another issue that came up in Sean's IESG review was about the encoding of the error / error_description / error_uri in the base and in the bearer specification. > >As mentioned in my earlier mail about the registry for the error codes there are three error fields defined in the two specification and the error / error_description / error_uri fields are allowed to appear in different parts of an HTTP message. >Depending on where they show up different encoding restrictions apply. > >For the core specification these error fields may appear in the >* body of the HTTP message (encoded in JSON) >* parameters to the query component of the redirection URI (using the > "application/x-www-form-urlencoded" format) > >For the bearer specification these error fields appear in the HTTP header. Consequently, http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-19 says 'values for the "error" and "error_description" attributes MUST NOT include characters outside the set %x20-21 / %x23-5B / %x5D-7E.' > >Now, here is the question. While these errors are essentially copied over from one spec to the other the different encoding restrictions make them different. Do we want different encodings of errors in the two documents? > >So, I see two options: > >1) Leave the encoding as it is. This means the encoding of the error / error_description / error_uri in the two specifications is different. > >2) Harmonize the encoding between the two specifications by incorporating the restrictions from the bearer specification into the base specification. > >Please indicate your preference by the end of next week (18th May 2012). > >Ciao >Hannes > >_______________________________________________ >OAuth mailing list >OAuth@ietf.org >https://www.ietf.org/mailman/listinfo/oauth > > >_______________________________________________ >OAuth mailing list >OAuth@ietf.org >https://www.ietf.org/mailman/listinfo/oauth > > >
- [OAUTH-WG] Encoding of Errors in the Base and in … Hannes Tschofenig
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Mike Jones
- Re: [OAUTH-WG] Encoding of Errors in the Base and… William Mills
- Re: [OAUTH-WG] Encoding of Errors in the Base and… John Bradley
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Eran Hammer
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Mike Jones
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Mike Jones
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Nat Sakimura
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Eran Hammer
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Mike Jones
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Eran Hammer
- Re: [OAUTH-WG] Encoding of Errors in the Base and… George Fletcher
- Re: [OAUTH-WG] Encoding of Errors in the Base and… SM
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Eran Hammer
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Murray S. Kucherawy
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Eran Hammer
- Re: [OAUTH-WG] Encoding of Errors in the Base and… Hannes Tschofenig