Re: [ogpx] Informal draft for discussion -- client sidecapabilitiesand setup flows
Infinity Linden <infinity@lindenlab.com> Thu, 25 June 2009 18:15 UTC
Return-Path: <infinity@lindenlab.com>
X-Original-To: ogpx@core3.amsl.com
Delivered-To: ogpx@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix)
with ESMTP id 9424E3A6F91 for <ogpx@core3.amsl.com>;
Thu, 25 Jun 2009 11:15:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.683
X-Spam-Level:
X-Spam-Status: No, score=-1.683 tagged_above=-999 required=5 tests=[AWL=0.294,
BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I7LfSAP16cRg for
<ogpx@core3.amsl.com>; Thu, 25 Jun 2009 11:15:03 -0700 (PDT)
Received: from an-out-0708.google.com (an-out-0708.google.com
[209.85.132.245]) by core3.amsl.com (Postfix) with ESMTP id ACA123A659B for
<ogpx@ietf.org>; Thu, 25 Jun 2009 11:15:03 -0700 (PDT)
Received: by an-out-0708.google.com with SMTP id c37so494872anc.4 for
<ogpx@ietf.org>; Thu, 25 Jun 2009 11:13:29 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.11.14 with SMTP id 14mr3709890ank.81.1245953609726;
Thu, 25 Jun 2009 11:13:29 -0700 (PDT)
In-Reply-To: <4A43ABDF.1010800@lindenlab.com>
References: <4A3BE302.5070405@isode.com>
<OF68EA1CF7.7097A5B8-ON852575DF.005D4F02-852575DF.005DFB80@us.ibm.com>
<4A43ABDF.1010800@lindenlab.com>
Date: Thu, 25 Jun 2009 11:13:29 -0700
Message-ID: <3a880e2c0906251113t380353caw17dba4d5537abd90@mail.gmail.com>
From: Infinity Linden <infinity@lindenlab.com>
To: Joshua Bell <josh@lindenlab.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: ogpx@ietf.org
Subject: Re: [ogpx] Informal draft for discussion -- client
sidecapabilitiesand setup flows
X-BeenThere: ogpx@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Virtual Worlds and the Open Grid Protocol <ogpx.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ogpx>,
<mailto:ogpx-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ogpx>
List-Post: <mailto:ogpx@ietf.org>
List-Help: <mailto:ogpx-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ogpx>,
<mailto:ogpx-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jun 2009 18:15:04 -0000
i think the idea is that there might be a trust relationship between two domains (where a domain is a collection of machines administered by a distinct entity) where the first domain provides an event queue to a client and the second domain has need to send a message to the client. the event queue uri scheme provides an addressing mechanism for the first domain to identify the client-server connection to the second domain. trust is an important part of this equation, but is addressed in the URI scheme only to the degree you can select an eq: or eqs: scheme (the latter indicating the mandatory use of TLS.) david and i are working on the PKIX profile for inter-domain trust, so we expect service consumers and providers who are in different domains to implement a security policy in line with their own security requirements. for instance, a large public grid operator might require all incoming event queue requests to be made via TLS with a trusted client certificate while small experimental grids might be promiscuous when honoring connection requests. the utility of this scheme is more apparent when we consider client side capabilities. in some cases, it is useful for a client application to generate a capability and pass it to the domain host managing an event queue. the domain host may then pass this capability off to a third party for processing. the advantage is we can avoid the confused deputy problem while supporting flexible deployment. (i.e. - we can use this to build an ecosystem of service providers that rely on client capabilities.) so yeah. we think it's good for it to be normative. that being said, if your service doesn't use it and won't honor requests, then you may choose not to deploy code that supports it. with respect to JSON vs. XML, i have no personal preference per se. however, if XML examples lead people to believe we're using a fixed XML schema, then JSON examples may lead other people to believe our system is stock 4627 JSON, which it isn't. maybe both? On Thu, Jun 25, 2009 at 9:54 AM, Joshua Bell<josh@lindenlab.com> wrote: > Still digesting, but some quick feedback: > > * Re: the eventq(s) schemes - am I correct in my interpretation that these > URIs would not be exposed outside of a single (agent, region) domain? If so, > would these be considered a "best practice"/"implementation detail" rather > than something normative? (The document is clearly discussing patterns so > it's within scope for the document.) If not, then I'm misinterpreting > something. > > * For *examples* in documents, could we informally standardize on using JSON > serialization of LLSD rather than the XML serialization? I realize that XML > is more expressive (e.g. you can distinguish strings vs. UUIDs) but JSON is > more compact and it avoids having non-LLSD-savvy XML-centric users readers > from gagging at the seemingly crazy implied schema. (Formal interface > specifications should use LLIDL.) > > [stuff removed]
- [ogpx] Greetings from the Area Director sponsorin… Alexey Melnikov
- [ogpx] Informal draft for discussion -- client si… David W Levine
- Re: [ogpx] Informal draft for discussion -- clien… Joshua Bell
- Re: [ogpx] Informal draft for discussion -- clien… Infinity Linden
- [ogpx] LLSD JSON compatibility Hurliman, John
- Re: [ogpx] Informal draft for discussion -- clien… Infinity Linden
- Re: [ogpx] Informal draft for discussion -- clien… Alexey Melnikov
- Re: [ogpx] LLSD JSON compatibility Infinity Linden
- Re: [ogpx] Greetings from the Area Director spons… Alexey Melnikov