IETF Logo Mail Archive

Re: [regext] WGLC: draft-ietf-regext-org-02

"Gould, James" <jgould@verisign.com> Fri, 27 April 2018 21:52 UTC

Return-Path: <jgould@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E0DFF12D88C for <regext@ietfa.amsl.com>; Fri, 27 Apr 2018 14:52:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.29
X-Spam-Level:
X-Spam-Status: No, score=-4.29 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MGI3C_4ekMr3 for <regext@ietfa.amsl.com>; Fri, 27 Apr 2018 14:52:14 -0700 (PDT)
Received: from mail3.verisign.com (mail3.verisign.com [72.13.63.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2593E1289B0 for <regext@ietf.org>; Fri, 27 Apr 2018 14:52:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=115924; q=dns/txt; s=VRSN; t=1524865934; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=dU1+IiufQSDdQh9XqteNJ7M3Nz9oKs8bqaBXcSZGq0o=; b=jtsLKHwkMJiV/eHc7UAg2/DbXE2c1X/72mVpfhhb5mhieldsJM4PIOUB WMGS6sbheZRi+ODo6NXX2aRgDXcxMrLJpZ34DjKRCNo1UnzX6ZI3OFfNs dTP2dcR3jxFwvFXYtzgh/ZNo2OsCLlCRDiLH0L6/SHu9VudgB633McWdg ERz7nJ9v5QiY98BYbt/KwGdtd8N6Q9Gp1AntDd/QzyN3ILv4TsvUxOp7o cZgJ9AZh6Ir9DJBclB1LmzRzA7HJEkafmjDSghMTsuwMveR5tc5NcNgCL stS0o+kGudFTeTb9bXBb6zNLe2F29AFrtdTejFzYw4n04oshkhez8FGb8 Q==;
X-IronPort-AV: E=Sophos;i="5.49,336,1520899200"; d="png'150?scan'150,208,217,150";a="4506541"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2GyAAAMm+Na//WZrQpYAxkBAQEBAQEBAQEBAQEHAQEBAQGCTUeBEBeBCwqDYZZwEX6BZ5EtFIEpFx0EAwgBAhgBCguDeEYCGoJWNhYBAgEBAQEBAQIBAQKBBAyCNSQBDi8cIQgBBQEBAQEBAScBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEIAggHNRIBARgBAQEBAgEBAQMBFAEIAggBQBALAgEGAg0EAwECBgEBARgBCQICAgUQAQ4BCx0IAgQBCQgBBgiEeReNBJtBghyEWINtgigPiWk+gQ8jgWl/gxEBAQMBgSkBEgEHAiILCQELG4I5MIIkAogZg3SEZYQXgwQDBQKFEwFOihs8gySCW4Rlhz2BfQKGVwIECwITAYElIwhQO3FwFRohKgGCGAmCFxeDRYUUhT5vDSOORw0egQGBGAEB
Received: from BRN1WNEXCHM01.vcorp.ad.vrsn.com (brn1wnexchm01 [10.173.152.255]) by brn1lxmailout02.verisign.com (8.13.8/8.13.8) with ESMTP id w3RLq9eY031173 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Fri, 27 Apr 2018 17:52:09 -0400
Received: from BRN1WNEXMBX02.vcorp.ad.vrsn.com ([::1]) by BRN1WNEXCHM01.vcorp.ad.vrsn.com ([::1]) with mapi id 14.03.0301.000; Fri, 27 Apr 2018 17:52:08 -0400
From: "Gould, James" <jgould@verisign.com>
To: James Galvin <galvin@elistx.com>, Registration Protocols Extensions <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] WGLC: draft-ietf-regext-org-02
Thread-Index: AQHT2KxAc8BgPiUEDkeH3n3nxXsX9aQRcNKAgAPBzAA=
Date: Fri, 27 Apr 2018 21:52:07 +0000
Message-ID: <F4DD6F15-8CC9-4F28-BF8F-4B70AA4E83AE@verisign.com>
References: <80ED56C6-75F7-4DED-927B-E0AB528A71EE@elistx.com> <A7E1EA0B-AA90-4A55-8D7F-ECEA202A3F3B@elistx.com> <8D375F69-9657-4724-AAC9-26EBBCB3D077@verisign.com>
In-Reply-To: <8D375F69-9657-4724-AAC9-26EBBCB3D077@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.c.0.180410
x-originating-ip: [10.173.153.49]
Content-Type: multipart/related; boundary="_004_F4DD6F158CC94F28BF8F4B70AA4E83AEverisigncom_"; type="multipart/alternative"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/FCO8c2OQxfItEpPbHEOO79XhUds>
Subject: Re: [regext] WGLC: draft-ietf-regext-org-02
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Apr 2018 21:52:19 -0000

Hi,

In reviewing the draft-ietf-regext-org changes in draft-ietf-regext-org-03, I found the following issues:


  1.  In section 3.2.2. “Role Status”
     *   Change “The values of role status are defined in section 3.5.” to “The values of the role status are defined in section 3.5.”.
  2.  In section 3.4. “Organization Status Values”
     *   Change “The “hold” and “terminated” are server-managed…” to “The “hold” and “terminated” status values are server-managed…”.
  3.  In section 4.1.2. “EPP <info> Command”
     *   Change “One or more <org:role> elements that contains the role type, role status and optional role id of the organization” to “One or more <org:role> elements that contain the role type, role statuses and optional role id of the organization”.
     *   Change “Zero or more <org:status> elements of role.  The values of role status are defined in section 3.5.” to “One or more <org:status> elements that contain the role statuses.  The values of the role status are defined in section 3.5”.  Note, the XML schema will support zero or more role statuses in support of a create or update, but there should be at least one role status returned per role in the info response.
  4.  In section 4.2 “EPP Transform Commands”
     *   Change “EPP provides three commands…” to “This document provides three commands…”.
  5.  In section 4.2.1 “EPP <create> Command”
     *   Change “Zero or more <org:status> elements of role.  The values of role status are defined in section 3.5.” to “Zero or more <org:status> elements that contain the role statuses.  The values of the role status are defined in section 3.5”.
     *   I would remove setting of the “ok” role status in the “Example <create> command”, since the server should set the status to “ok” by default.
  6.  In section 4.2.5. “EPP <update> Command”
     *   Change “The <org:add> and <org:rem> elements contain the following child element:” to “The OPTIONAL <org:add> and <org:rem> elements contain the following child elements:”.
     *   Change “Zero or more <org:status> elements of role.  The values of role status are defined in section 3.5.” to “Zero or more <org:status> elements that contain the role statuses.  The values of the role status are defined in section 3.5”.
     *   Change “A <org:chg> element contains the following OPTIONAL child elements.” To “An OPTIONAL <org:chg> element contains the following child elements, where at least one child element MUST be present:”.  I would remove the sentence “At least one child element MUST be present:”.
     *   I would explicitly specify that the sub-elements of <org:chg> are OPTIONAL, as in:

                                                              i.      An OPTIONAL <org:parentId> element…”.

                                                            ii.      Zero to two <org:postalInfo> elements…”.

                                                          iii.      An OPTIONAL <org:voice> element…”.

                                                          iv.      An OPTIONAL <org:fax> element…”

                                                            v.      An OPTIONAL <org:email> element…”

                                                          vi.      An OPTIONAL <org:url> element…”.

—

JG

[cid:image001.png@01D255E2.EB933A30]

James Gould
Distinguished Engineer
jgould@Verisign.com

703-948-3271
12061 Bluemont Way
Reston, VA 20190

Verisign.com<http://verisigninc.com/>
From: James Gould <jgould@verisign.com>
Date: Wednesday, April 25, 2018 at 8:29 AM
To: James Galvin <galvin@elistx.com>, Registration Protocols Extensions <regext@ietf.org>
Subject: Re: [EXTERNAL] Re: [regext] WGLC: draft-ietf-regext-org-02


I'm a co-author on this draft, but I did a re-read and I have the following items that need to be addressed.  Some of this is based on the experience of implementing draft-ietf-regext-org-02 in the Verisign EPP SDK that includes a full XML namespace aware and validating client and server.


1.       Section 3.2.3 “Example of Organization Roles”
a.       I don’t believe the example warrants creating its own section.  I recommend moving the example of “Organization Roles” into section 3.2.2 Role Identifier, rename it to “Example of organization role identifier:”.  I also recommend removing the “S: “ prefix for the organization role identifier example and indenting the <org:type> and <org:roleid> elements under the <org:role> element.
2.       Section 3.4 “Organization Status Values”
a.       There is no definition of what statuses can be set or removed by the client versus the server.  I believe the setting of the statuses prefixed with “client” or “server” can match the description in RFC 5731:

                                                                                      i.      Status values that can be added or removed by a client are prefixed with "client".  Corresponding status values that can be added or removed by a server are prefixed with "server".

b.      I believe the sentence from RFC 5731 ‘Status values that do not begin with either "client" or "server" are server-managed’ can be modified in draft-ietf-regext-org to read ‘The “hold” and “terminated” are server-managed when the organization has no parent identifier [section 3.6] and otherwise MAY be client-managed based on server policy’.
3.       Section 3.8 is missing the title “Dates and Times”
4.       Section 4.1.2 “EPP <info> Command”
a.       I believe that the “roleStatus” attribute of the <org:type> element needs to be moved to its own <org:status> element of the <org:role>, since there can be many statuses set per role.  The “Example of organization role identifier” in section 3.2.3 would need to be updated along with the XML schema, text, and examples in section 4.1.2.  I noticed that the “roleId” is defined as a “positiveInteger”.  My suggestion is to define it as a “token” type, since it’s hard to say what a role identifier may be for different types of roles.  The “roleType” type could be defined as:
<complexType name=”roleType”>
   <sequence>
      <element name=”type” type=”token”/>
      <element name=”status” type=”org:roleStatusType” minOccurs=”0” maxOccurs=”3”/>
      <element name=”roleId” type=”token” minOccurs=”0”/>
</complexType>

Note – the minOccurs=”0” and maxOccurs=”3” for the status element is defined to support use of the “roleType” in the create where no status may be explicitly set (minOccurs=”0”), and in the info response where the maximum number of role statuses is 3.

The example in section 4.1.2 could defined as:
<org:role>
   <org:type>registrar</org:type>
   <org:status>ok</org:status>
   <org:status>linked</org:status>
   <org:roleId>1362</org:roleId>
</org:role>.
b.       The <org:role> element in the XML schema infDataType type needs to set maxOccurs=”unbounded”.
c.       The <org:status> element in the XML schema infDataType type needs to set maxOccurs=”9”.  I believe the maximum number of client and server defined organization statuses to be “9”.
d.       Did we want to make the <org:postalInfo> element optional?  If so, I would define the <org:postalInfo> element as “Zero to two <org:postalInfo> elements…” and include minOccurs=”0” for the “postalInfo” element of the “infDataType” type.
e.       I would update the examples based on the above proposed change to the definition of the <org:role> element.
f.        The “contact” element of the “infDataType” type and the “createType” should be defined as below.  Currently, the “infDataType” refers to “domain:contactType”, which needs to be “org:contactType” and I propose setting maxOccurs=”unbounded” since there is the support for custom types.  There is a similar issue where the “addRemType” references “domain:contactType” instead of “org:contactType”.

                                                                                       i.      <element name=”contact” type=”org:contactType” minOccurs=”0” maxOccurs=”unbounded”/>
g.       The <org:email> element is defined as optional but the XML schema defines it as required.   I recommend setting minOccurs=”0” for the “email” element of “infDataType”.
5.       Section 4.2 “EPP Transform Commands”
a.       I would remove “<transfer> to manage organization-object sponsorship changes”, since the <transfer> command is not supported.
b.       I would revise “Once the action has been completed, all clients involved in the transaction MUST…” to “Once the action has been completed, the client MUST…”.
6.       Section 4.2.1 “EPP <create> Command”
a.       I believe that the <org:role> element should include maxOccurs=”unbounded”, since one or more roles can be defined on the create.
b.       The same comment related to supporting zero or more optional role statuses by moving the “roleStatus” status to its own <org:status> element that is defined.  If the role <org:status> is not defined by the client, the server will set the status to “ok”.
c.       I believe that the <org:status> would need to be defined as OPTIONAL and allow a list of statuses.  The default value assigned by the server would be “ok”, so I don’t believe a default should be set in the XML schema.  Specifically, in the “createType” of the XML schema, the status element should be defined as <element name=”status” type=”org:statusType” minOccurs=”0” maxOccurs=”4”/>.  I believe the only statuses that a client can set on create include “hold” or “terminated”, “clientDeleteProhibited”, “clientUpdateProhibited”, and “clientLinkProhibited”.
d.       I would remove setting of the “ok” status in the Example <create> command.
e.       Did we want to make the <org:postalInfo> element optional?  If so, I would define the <org:postalInfo> element as “Zero to two <org:postalInfo> elements…” and include minOccurs=”0” for the “postalInfo” element of the “createType” type.
f.        The <org:email> element is defined as optional but the XML schema defines it as required.   I recommend setting minOccurs=”0” for the “email” element of “createType”.
7.       Section 4.2.5 “EPP <update> Command”
a.       The <org:role> elements would be best suited to be contained under the <org:add> and <org:rem> instead of the <org:chg>, since the roles are contained a list.  I recommend moving the <org:role> element after the <org:contact> element and define it as “Zero or more <org:role> elements…” that matches supports role statuses like in the info response and the create command.
b.       The <org:status> elements would be best suited to be contained under the <org:add> and <org:rem> instead of the <org:chg>, since the statuses are contained in a list.  I recommend moving the <org:status> element after the <org:role> element and define it as “Zero or more <org:status> elements…”.
c.       The “contact” element in “addRemType” type needs to be defined with maxOccurs=”unbounded”, since it is describes as zero to many.
d.       The same feedback as with the info response and the create command on the makeup of the <org:role> in specifying the “roleStatus” using <org:status> elements.
e.       The “addRemType” could be defined as based on 7.a., 7.b., and 7.c. above:
<complexType name="addRemType">
   <sequence>
      <element name="contact" type="org:contactType" minOccurs="0" maxOccurs="unbounded"/>
      <element name="role" type="org:roleType" minOccurs="0" maxOccurs="unbounded"/>
      <element name="status" type="org:statusType" minOccurs="0" maxOccurs="9"/>
   </sequence>
</complexType>
f.        I recommend revising the <update> command example to reflect removing the “billing” contact “sh8014”, adding the role “privacyproxy” with the role status “clientLinkProhibited”, removing the role “reseller”, adding the status “clientLinkProhibited”, and removing the status “clientDeleteProhibited”,.  The exact types and values are not important, but it’s important to reflect adding / removing contacts, adding / removing roles, adding / removing statuses, and including the supported change elements.
g.       There is no mechanism available to delete the change elements of parentId, voice, fax, email, and url once they are set.  I believe an empty postalInfo element could be used to delete the postal information.
8.       Section 5 “Formal Syntax”
a.       Overall, much of the feedback is associated with referencing contact XML schema types.  Although I’m not crazy about copying elements over, I believe it’s the cleanest thing to do in this case.  I believe that the org mapping should stand on its own and only reference up to the epp and eppcom schemas and not sideways to another object mapping like contact or domain.  I attach a version of the org-1.0.xsd that does not include any contact or domain references, so all of the examples can continue to reference the “urn:ietf:params:xml:ns:org-1.0” XML namespace.
b.       The use of the “contact:chkDataType” for the “chkData” element does not match the example response, since the org namespace is referenced instead of the contact namespace for the sub-elements of the <org:chkData> element in the example.  I recommend copying the contact:creDataType into the org schema directly directly to use the org namespace for the <org:chkData> sub-elements.
c.       The use of the “contact:creDataType” for the “creData” element does not match the example response, since the org namespace is referenced instead of the contact namespace for the sub-elements of the <org:creData> element in the example.  I recommend copying the contact:creDataType definition into the org schema directly to use the org namespace for the <org:creData> sub-elements.
d.       The use of the “contact:addrType” does not match the info response example, since the <org:addr> does reference the org namespace, but the <org:addr> sub-elements need to reference the contact namespace.  My recommendation is to copy all of the referenced contact elements into the org schema to remove the namespace mixing including the simple types: “contact:e164Type”, “contact:e164StringType”,  “contact:postalLineType”, “contact:postalLineType”, “contact:postalInfoEnumType”, “contact:pcType”, and “contact:ccType”.   The namespace mixing causes a bigger issue for references to complex elements, but I believe it’s best for the org extension to stand on its own without a direct dependency to the contact XML schema.
e.       If the contact XML schema references can be removed, the contact namespace reference and import can be removed.
f.        I would remove the import of the domain namespace, since it’s not needed.





—

JG







James Gould

Distinguished Engineer

jgould@Verisign.com



703-948-3271

12061 Bluemont Way

Reston, VA 20190



Verisign.com <http://verisigninc.com/>

On 4/20/18, 9:34 AM, "regext on behalf of James Galvin" <regext-bounces@ietf.org on behalf of galvin@elistx.com> wrote:



    This is a reminder that this document is in working group last call.



    Please indicate your support for the publication of this document.



    If any working group member objects to the publication of this document

    please respond on the list by close of business everywhere, Friday, 27

    April 2018.  If there are no objections the document will be submitted

    to the IESG.



    During the last call the chairs are looking for a document shepherd for

    this document.  If you are interested in being the document shepherd

    please let the chairs know.  The document editors cannot be the document

    shepherd.



    Jim









    On 13 Apr 2018, at 9:21, James Galvin wrote:



    > The document editors have indicated that the following document is

    > ready for submission to the IESG to be considered for publication as a

    > Proposed Standard:

    >

    > Extensible Provisioning Protocol (EPP) Organization Mapping

    > https://datatracker.ietf.org/doc/draft-ietf-regext-org/

    >

    > Please indicate your support for the publication of this document.

    >

    > If any working group member objects to the publication of this

    > document please respond on the list by close of business everywhere,

    > Friday, 27 April 2018.  If there are no objections the document will

    > be submitted to the IESG.

    >

    > During the last call the chairs are looking for a document shepherd

    > for this document.  If you are interested in being the document

    > shepherd please let the chairs know.  The document editors cannot be

    > the document shepherd.

    >

    > If you’ve never been a document shepherd before don’t worry.

    > It’s a great way to understand the IETF process and your chairs

    > would be delighted to help you through it.

    >

    > Thanks,

    >

    > Antoin and Jim

    > WG Co-Chairs



    _______________________________________________

    regext mailing list

    regext@ietf.org

    https://www.ietf.org/mailman/listinfo/regext

v2.23.0 | Report a Bug | By Email