[Privacy-pass] HTTP status code in batched, public metadata, and rate-limited issuance protocols

Fernando Virdia <f.virdia@campus.fct.unl.pt> Fri, 14 June 2024 13:58 UTC

Return-Path: <f.virdia@campus.fct.unl.pt>
X-Original-To: privacy-pass@ietfa.amsl.com
Delivered-To: privacy-pass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7ECB5C14F698 for <privacy-pass@ietfa.amsl.com>; Fri, 14 Jun 2024 06:58:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.007
X-Spam-Level:
X-Spam-Status: No, score=-2.007 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=campus.fct.unl.pt
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AN0pgV9Ag-UX for <privacy-pass@ietfa.amsl.com>; Fri, 14 Jun 2024 06:58:47 -0700 (PDT)
Received: from mail-wr1-x432.google.com (mail-wr1-x432.google.com [IPv6:2a00:1450:4864:20::432]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EDA50C14F691 for <privacy-pass@ietf.org>; Fri, 14 Jun 2024 06:58:47 -0700 (PDT)
Received: by mail-wr1-x432.google.com with SMTP id ffacd0b85a97d-35f1c209893so2490042f8f.2 for <privacy-pass@ietf.org>; Fri, 14 Jun 2024 06:58:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=campus.fct.unl.pt; s=google; t=1718373526; x=1718978326; darn=ietf.org; h=content-transfer-encoding:subject:to:from:content-language :user-agent:mime-version:date:message-id:from:to:cc:subject:date :message-id:reply-to; bh=xF6Lsh9mUNQgP9kXsCi3zTy5w7zv7oEcMViqZXXfowY=; b=gKWBKV7JzcZh6zV+4nDMOQ2p0IcIPx/J5rQL6RtFLnwrdLLgtICwd48kD8lUMAu8FP 7677ejhkEsopLEzz6Gd9eoMyD3wSILKEKIX4JuIve4WR3rsRdjBL66TtpV/4lgY3fQbb BFMiHclYt+5QVsiln0OZ/l4zfyFbBepolQMgauBt5S0uRrBFauCECsslMVBIG/zwdbpY IwpMq0cNQEotdtB/vR/61kQ+sa97q1kWYjpOtrTAOOCoBhX0vypTwdvFuhAc8CP8y1zd JhUhVQFk/jLs98LGLq/K3/bYuz9z5UeMVPnrXXbiMgCGH8tJO4pfgMLVsl4qMoNWUabQ lMzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1718373526; x=1718978326; h=content-transfer-encoding:subject:to:from:content-language :user-agent:mime-version:date:message-id:x-gm-message-state:from:to :cc:subject:date:message-id:reply-to; bh=xF6Lsh9mUNQgP9kXsCi3zTy5w7zv7oEcMViqZXXfowY=; b=lY6agMqW9ZnwETRw72wm27ZIor0fm1PWOCyBvvgwwD2IJOo7X9qYZ9J8PUcP/bWtLp HTx+Yeke3KZ4//dyHdPDW58WQQtYxH/+cErYqVAD1G/KqtzXFR45rf/apIBCOVRdq1HX GfBE3VfCJrtN6MvHCsqVTXoZMEFQdwkXXqD0p86cyNLIhX+P5B7RMzgPDZjOK6/tVxCp GH7f1surYboKdDs/ddjfpygvO8MklDXydzWRFOF+3VSO40ffewCY8J7NF3UaiM7oRyk0 FSFw6kBkTo5tdwzIjp3H2BYdo5j2PeakPHrVKlvHVXZGyzNswMcuuWDF/6VuN9LbIPzP pmMA==
X-Gm-Message-State: AOJu0YyX6EQuw7ahLj2Hz6KYCTkS5IgoKkE74hAHjOwrlbzg4H6p2C7s HIdIpP0gR36n6e7nJQkHRZ+VCZY5cPt0e8inl7pPqC8PHgWuhd3JZ2GCss3IiSD2qJnMLsLasbB X
X-Google-Smtp-Source: AGHT+IFGUiZxqN1e08L7nEbvrBcm0Q/6b9EMkSM5y0WhCleK/9M0ajrEUoIHorNwk67Gd6CN5X8JFw==
X-Received: by 2002:adf:cd8c:0:b0:360:79ae:dd26 with SMTP id ffacd0b85a97d-3607a742763mr2727143f8f.7.1718373525912; Fri, 14 Jun 2024 06:58:45 -0700 (PDT)
Received: from [192.168.78.68] (87-196-75-57.net.novis.pt. [87.196.75.57]) by smtp.gmail.com with ESMTPSA id ffacd0b85a97d-360750ad1absm4375189f8f.62.2024.06.14.06.58.44 for <privacy-pass@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 14 Jun 2024 06:58:45 -0700 (PDT)
Message-ID: <26c8ff77-17b2-4f54-902e-9b17f31b1859@campus.fct.unl.pt>
Date: Fri, 14 Jun 2024 14:58:39 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-GB
From: Fernando Virdia <f.virdia@campus.fct.unl.pt>
To: privacy-pass@ietf.org
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Message-ID-Hash: WX22CFEASK2RX3XDBJBE57BCOIA3CNXO
X-Message-ID-Hash: WX22CFEASK2RX3XDBJBE57BCOIA3CNXO
X-MailFrom: f.virdia@campus.fct.unl.pt
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Privacy-pass] HTTP status code in batched, public metadata, and rate-limited issuance protocols
List-Id: Privacy Pass Protocol <privacy-pass.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/Um62XLoPSm5ctshGd6y0BFjr7us>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Owner: <mailto:privacy-pass-owner@ietf.org>
List-Post: <mailto:privacy-pass@ietf.org>
List-Subscribe: <mailto:privacy-pass-join@ietf.org>
List-Unsubscribe: <mailto:privacy-pass-leave@ietf.org>

Hi there,

I've been reading through the PrivacyPass drafts in detail this week, 
and spotted a minor inconsistency in HTTP status responses between 
protocols that I figured was worth pointing out.

In particular, Privacy Pass Issuance Protocol has the Issuer return 
status 422 (Unprocessable Content) to Client if something goes during 
TokenRequest validation.

Batched Token Issuance Protocol, Issuance Protocols with Public Metadata 
and Rate-Limited Token Issuance Protocol have the Issuer return a more 
generic 400 (Bad Request) in the equivalent step.

Rate-Limited Token Issuance Protocol also has some status 400 responses 
returned by Attester, albeit these clearly are not part of the other drafts.

Cheers

Fernando