IETF Logo Mail Archive

Re: [regext] WGLC: draft-ietf-regext-org-02

"Gould, James" <jgould@verisign.com> Wed, 25 April 2018 12:30 UTC

Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3630C1252BA for <regext@ietfa.amsl.com>; Wed, 25 Apr 2018 05:30:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.29
X-Spam-Level:
X-Spam-Status: No, score=-4.29 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FE-ONr6XjJP6 for <regext@ietfa.amsl.com>; Wed, 25 Apr 2018 05:29:56 -0700 (PDT)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 64666120454 for <regext@ietf.org>; Wed, 25 Apr 2018 05:29:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=71588; q=dns/txt; s=VRSN; t=1524659396; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=iJimsOSrZsDvyDtGz+lHyhxTddgkkjo5cmPawKb+3UA=; b=lGMtAV+KKXa4/mVr0pEl/5wv2qjOpLKu6p1ZHW3GZcqzyHoEjOG691Cc VGVpeWRRA2mRd1t2fGmWHQtoJThgUkoG7CegYALSBEks6ofcjLTEv73qL TerEApolx8T5GV+rnAs/Fwt49bfOvItNyqgdunMfvVZw5hT4A5TstiRaX Zt3E5EkBn7kvie1/p1AsdQYUNCzI3z91BAgsEA6BOGR3/FXRmGXHjkCjs kO96W55sWu0nlUY/kGXb7srpoNM1yp3hIPS/4qM0E549qNk6Js00k0wxZ LmCUTyEdXNLnNrrTL4Nit60fGpjN7peS+CKE9bjTc12MOw57wIydlYDnW Q==;
X-IronPort-AV: E=Sophos;i="5.49,326,1520899200"; d="xsd'?scan'208,217";a="4231078"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2GyAAAbdOBa//SZrQpYAxkBAQEBAQEBAQEBAQEHAQEBAQGCTUeBEBeBCwqDYJZMIRF+kyGBKRcgAQMIAxgBCguDeEYCGoMQOBQBAgEBAQEBAQIBAQKBBAyCNSQBDi8cIQgBBQEBAQEBAScBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEIAggHLxIBARkBAQECAQEBGAkKQRALAgEGAg0rAQkCAgIlCyUCBAEJCQ6EHF0Xiz6bQYIchFiDbIIwD4ZugnY+gQ8jDIFdf4MRAQEDAYEpARIBBwIiCwoLG4I5MIIkAowMOYQrhxMDBQKDPoFST4oYPIMjgluEYoc7gX4ChlUCBAsCEwGBJTOBA3FwFRohKgGCGAmCFxeDRYUUhT5vDSONMA0egQGBGAEB
Received: from brn1wnexcas02.vcorp.ad.vrsn.com (brn1wnexcas02 [10.173.152.206]) by brn1lxmailout01.verisign.com (8.13.8/8.13.8) with ESMTP id w3PCTrS1017492 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Wed, 25 Apr 2018 08:29:53 -0400
Received: from BRN1WNEXMBX02.vcorp.ad.vrsn.com ([::1]) by brn1wnexcas02.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0301.000; Wed, 25 Apr 2018 08:29:53 -0400
From: "Gould, James" <jgould@verisign.com>
To: James Galvin <galvin@elistx.com>, Registration Protocols Extensions <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] WGLC: draft-ietf-regext-org-02
Thread-Index: AQHT2KxAc8BgPiUEDkeH3n3nxXsX9aQRcNKA
Date: Wed, 25 Apr 2018 12:29:52 +0000
Message-ID: <8D375F69-9657-4724-AAC9-26EBBCB3D077@verisign.com>
References: <80ED56C6-75F7-4DED-927B-E0AB528A71EE@elistx.com> <A7E1EA0B-AA90-4A55-8D7F-ECEA202A3F3B@elistx.com>
In-Reply-To: <A7E1EA0B-AA90-4A55-8D7F-ECEA202A3F3B@elistx.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.c.0.180410
x-originating-ip: [10.173.153.48]
Content-Type: multipart/mixed; boundary="_004_8D375F6996574724AAC926EBBCB3D077verisigncom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/BtTJoolMbuwf3n4bdgPL7xVTQhY>
Subject: Re: [regext] WGLC: draft-ietf-regext-org-02
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Apr 2018 12:30:00 -0000

I'm a co-author on this draft, but I did a re-read and I have the following items that need to be addressed.  Some of this is based on the experience of implementing draft-ietf-regext-org-02 in the Verisign EPP SDK that includes a full XML namespace aware and validating client and server.



  1.  Section 3.2.3 “Example of Organization Roles”
     *   I don’t believe the example warrants creating its own section.  I recommend moving the example of “Organization Roles” into section 3.2.2 Role Identifier, rename it to “Example of organization role identifier:”.  I also recommend removing the “S: “ prefix for the organization role identifier example and indenting the <org:type> and <org:roleid> elements under the <org:role> element.
  2.  Section 3.4 “Organization Status Values”
     *   There is no definition of what statuses can be set or removed by the client versus the server.  I believe the setting of the statuses prefixed with “client” or “server” can match the description in RFC 5731:

                                                               i.      Status values that can be added or removed by a client are prefixed with "client".  Corresponding status values that can be added or removed by a server are prefixed with "server".

b.       I believe the sentence from RFC 5731 ‘Status values that do not begin with either "client" or "server" are server-managed’ can be modified in draft-ietf-regext-org to read ‘The “hold” and “terminated” are server-managed when the organization has no parent identifier [section 3.6] and otherwise MAY be client-managed based on server policy’.

  1.  Section 3.8 is missing the title “Dates and Times”
  2.  Section 4.1.2 “EPP <info> Command”
     *   I believe that the “roleStatus” attribute of the <org:type> element needs to be moved to its own <org:status> element of the <org:role>, since there can be many statuses set per role.  The “Example of organization role identifier” in section 3.2.3 would need to be updated along with the XML schema, text, and examples in section 4.1.2.  I noticed that the “roleId” is defined as a “positiveInteger”.  My suggestion is to define it as a “token” type, since it’s hard to say what a role identifier may be for different types of roles.  The “roleType” type could be defined as:
<complexType name=”roleType”>
   <sequence>
      <element name=”type” type=”token”/>
      <element name=”status” type=”org:roleStatusType” minOccurs=”0” maxOccurs=”3”/>
      <element name=”roleId” type=”token” minOccurs=”0”/>
</complexType>

Note – the minOccurs=”0” and maxOccurs=”3” for the status element is defined to support use of the “roleType” in the create where no status may be explicitly set (minOccurs=”0”), and in the info response where the maximum number of role statuses is 3.

The example in section 4.1.2 could defined as:
<org:role>
   <org:type>registrar</org:type>
   <org:status>ok</org:status>
   <org:status>linked</org:status>
   <org:roleId>1362</org:roleId>
</org:role>.
     *   The <org:role> element in the XML schema infDataType type needs to set maxOccurs=”unbounded”.
     *   The <org:status> element in the XML schema infDataType type needs to set maxOccurs=”9”.  I believe the maximum number of client and server defined organization statuses to be “9”.
     *   Did we want to make the <org:postalInfo> element optional?  If so, I would define the <org:postalInfo> element as “Zero to two <org:postalInfo> elements…” and include minOccurs=”0” for the “postalInfo” element of the “infDataType” type.
     *   I would update the examples based on the above proposed change to the definition of the <org:role> element.
     *   The “contact” element of the “infDataType” type and the “createType” should be defined as below.  Currently, the “infDataType” refers to “domain:contactType”, which needs to be “org:contactType” and I propose setting maxOccurs=”unbounded” since there is the support for custom types.  There is a similar issue where the “addRemType” references “domain:contactType” instead of “org:contactType”.

                                                               i.      <element name=”contact” type=”org:contactType” minOccurs=”0” maxOccurs=”unbounded”/>

     *   The <org:email> element is defined as optional but the XML schema defines it as required.   I recommend setting minOccurs=”0” for the “email” element of “infDataType”.
  1.  Section 4.2 “EPP Transform Commands”
     *   I would remove “<transfer> to manage organization-object sponsorship changes”, since the <transfer> command is not supported.
     *   I would revise “Once the action has been completed, all clients involved in the transaction MUST…” to “Once the action has been completed, the client MUST…”.
  2.  Section 4.2.1 “EPP <create> Command”
     *   I believe that the <org:role> element should include maxOccurs=”unbounded”, since one or more roles can be defined on the create.
     *   The same comment related to supporting zero or more optional role statuses by moving the “roleStatus” status to its own <org:status> element that is defined.  If the role <org:status> is not defined by the client, the server will set the status to “ok”.
     *   I believe that the <org:status> would need to be defined as OPTIONAL and allow a list of statuses.  The default value assigned by the server would be “ok”, so I don’t believe a default should be set in the XML schema.  Specifically, in the “createType” of the XML schema, the status element should be defined as <element name=”status” type=”org:statusType” minOccurs=”0” maxOccurs=”4”/>.  I believe the only statuses that a client can set on create include “hold” or “terminated”, “clientDeleteProhibited”, “clientUpdateProhibited”, and “clientLinkProhibited”.
     *   I would remove setting of the “ok” status in the Example <create> command.
     *   Did we want to make the <org:postalInfo> element optional?  If so, I would define the <org:postalInfo> element as “Zero to two <org:postalInfo> elements…” and include minOccurs=”0” for the “postalInfo” element of the “createType” type.
     *   The <org:email> element is defined as optional but the XML schema defines it as required.   I recommend setting minOccurs=”0” for the “email” element of “createType”.
  3.  Section 4.2.5 “EPP <update> Command”
     *   The <org:role> elements would be best suited to be contained under the <org:add> and <org:rem> instead of the <org:chg>, since the roles are contained a list.  I recommend moving the <org:role> element after the <org:contact> element and define it as “Zero or more <org:role> elements…” that matches supports role statuses like in the info response and the create command.
     *   The <org:status> elements would be best suited to be contained under the <org:add> and <org:rem> instead of the <org:chg>, since the statuses are contained in a list.  I recommend moving the <org:status> element after the <org:role> element and define it as “Zero or more <org:status> elements…”.
     *   The “contact” element in “addRemType” type needs to be defined with maxOccurs=”unbounded”, since it is describes as zero to many.
     *   The same feedback as with the info response and the create command on the makeup of the <org:role> in specifying the “roleStatus” using <org:status> elements.
     *   The “addRemType” could be defined as based on 7.a., 7.b., and 7.c. above:
<complexType name="addRemType">
   <sequence>
      <element name="contact" type="org:contactType" minOccurs="0" maxOccurs="unbounded"/>
      <element name="role" type="org:roleType" minOccurs="0" maxOccurs="unbounded"/>
      <element name="status" type="org:statusType" minOccurs="0" maxOccurs="9"/>
   </sequence>
</complexType>
     *   I recommend revising the <update> command example to reflect removing the “billing” contact “sh8014”, adding the role “privacyproxy” with the role status “clientLinkProhibited”, removing the role “reseller”, adding the status “clientLinkProhibited”, and removing the status “clientDeleteProhibited”,.  The exact types and values are not important, but it’s important to reflect adding / removing contacts, adding / removing roles, adding / removing statuses, and including the supported change elements.
     *   There is no mechanism available to delete the change elements of parentId, voice, fax, email, and url once they are set.  I believe an empty postalInfo element could be used to delete the postal information.
  4.  Section 5 “Formal Syntax”
     *   Overall, much of the feedback is associated with referencing contact XML schema types.  Although I’m not crazy about copying elements over, I believe it’s the cleanest thing to do in this case.  I believe that the org mapping should stand on its own and only reference up to the epp and eppcom schemas and not sideways to another object mapping like contact or domain.  I attach a version of the org-1.0.xsd that does not include any contact or domain references, so all of the examples can continue to reference the “urn:ietf:params:xml:ns:org-1.0” XML namespace.
     *   The use of the “contact:chkDataType” for the “chkData” element does not match the example response, since the org namespace is referenced instead of the contact namespace for the sub-elements of the <org:chkData> element in the example.  I recommend copying the contact:creDataType into the org schema directly directly to use the org namespace for the <org:chkData> sub-elements.
     *   The use of the “contact:creDataType” for the “creData” element does not match the example response, since the org namespace is referenced instead of the contact namespace for the sub-elements of the <org:creData> element in the example.  I recommend copying the contact:creDataType definition into the org schema directly to use the org namespace for the <org:creData> sub-elements.
     *   The use of the “contact:addrType” does not match the info response example, since the <org:addr> does reference the org namespace, but the <org:addr> sub-elements need to reference the contact namespace.  My recommendation is to copy all of the referenced contact elements into the org schema to remove the namespace mixing including the simple types: “contact:e164Type”, “contact:e164StringType”,  “contact:postalLineType”, “contact:postalLineType”, “contact:postalInfoEnumType”, “contact:pcType”, and “contact:ccType”.   The namespace mixing causes a bigger issue for references to complex elements, but I believe it’s best for the org extension to stand on its own without a direct dependency to the contact XML schema.
     *   If the contact XML schema references can be removed, the contact namespace reference and import can be removed.
     *   I would remove the import of the domain namespace, since it’s not needed.





—

JG







James Gould

Distinguished Engineer

jgould@Verisign.com



703-948-3271

12061 Bluemont Way

Reston, VA 20190



Verisign.com <http://verisigninc.com/>

On 4/20/18, 9:34 AM, "regext on behalf of James Galvin" <regext-bounces@ietf.org on behalf of galvin@elistx.com> wrote:



    This is a reminder that this document is in working group last call.



    Please indicate your support for the publication of this document.



    If any working group member objects to the publication of this document

    please respond on the list by close of business everywhere, Friday, 27

    April 2018.  If there are no objections the document will be submitted

    to the IESG.



    During the last call the chairs are looking for a document shepherd for

    this document.  If you are interested in being the document shepherd

    please let the chairs know.  The document editors cannot be the document

    shepherd.



    Jim









    On 13 Apr 2018, at 9:21, James Galvin wrote:



    > The document editors have indicated that the following document is

    > ready for submission to the IESG to be considered for publication as a

    > Proposed Standard:

    >

    > Extensible Provisioning Protocol (EPP) Organization Mapping

    > https://datatracker.ietf.org/doc/draft-ietf-regext-org/

    >

    > Please indicate your support for the publication of this document.

    >

    > If any working group member objects to the publication of this

    > document please respond on the list by close of business everywhere,

    > Friday, 27 April 2018.  If there are no objections the document will

    > be submitted to the IESG.

    >

    > During the last call the chairs are looking for a document shepherd

    > for this document.  If you are interested in being the document

    > shepherd please let the chairs know.  The document editors cannot be

    > the document shepherd.

    >

    > If you’ve never been a document shepherd before don’t worry.

    > It’s a great way to understand the IETF process and your chairs

    > would be delighted to help you through it.

    >

    > Thanks,

    >

    > Antoin and Jim

    > WG Co-Chairs



    _______________________________________________

    regext mailing list

    regext@ietf.org

    https://www.ietf.org/mailman/listinfo/regext

v2.23.0 | Report a Bug | By Email