Re: [regext] REGEXT Interim Meeting (Validate Draft)
Pieter Vandepitte <pieter.vandepitte@dnsbelgium.be> Mon, 11 June 2018 18:40 UTC
Return-Path: <pieter.vandepitte@dnsbelgium.be>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 052BB130E9E for <regext@ietfa.amsl.com>; Mon, 11 Jun 2018 11:40:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=dnsbelgium.be
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 57C8FjUh1zBo for <regext@ietfa.amsl.com>; Mon, 11 Jun 2018 11:40:15 -0700 (PDT)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-ve1eur01on0127.outbound.protection.outlook.com [104.47.1.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BC789130E7D for <regext@ietf.org>; Mon, 11 Jun 2018 11:40:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dnsbelgium.be; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KI3JPb4iAioNd0/V045oeXx21qv+fdJcRXCNXG+siCU=; b=0PrvGbgugTNMJ4TeygDMM+n0rwwZPcnxwc1vLiS2GOWVskPpzjuZfzW8GtydfkasoGrShLuQ3s+spd2W6lG8cv68yRkKzYJQTUN921X5Z05YQzX8/zmX69n5+IS9dk9OAavhBfY6bAWUaPH2VVWNBuZn6q54MJDeV/zletVI1eo=
Received: from HE1PR0601MB1930.eurprd06.prod.outlook.com (10.166.123.140) by HE1PR0601MB2266.eurprd06.prod.outlook.com (10.168.185.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.841.17; Mon, 11 Jun 2018 18:40:10 +0000
Received: from HE1PR0601MB1930.eurprd06.prod.outlook.com ([fe80::3838:9cfc:cc58:cf84]) by HE1PR0601MB1930.eurprd06.prod.outlook.com ([fe80::3838:9cfc:cc58:cf84%2]) with mapi id 15.20.0841.019; Mon, 11 Jun 2018 18:40:09 +0000
From: Pieter Vandepitte <pieter.vandepitte@dnsbelgium.be>
To: Roger D Carney <rcarney@godaddy.com>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [regext] REGEXT Interim Meeting (Validate Draft)
Thread-Index: AdQBmBgT+Dq0C5tzSiCBBvvaUFm08QALEseA
Date: Mon, 11 Jun 2018 18:40:09 +0000
Message-ID: <FE257397-4BE6-4AEA-8401-337BEDA9B167@dnsbelgium.be>
References: <MW2PR02MB3899A5E749EDB5F4A0BAADB1B1780@MW2PR02MB3899.namprd02.prod.outlook.com>
In-Reply-To: <MW2PR02MB3899A5E749EDB5F4A0BAADB1B1780@MW2PR02MB3899.namprd02.prod.outlook.com>
Accept-Language: nl-BE, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pieter.vandepitte@dnsbelgium.be;
x-originating-ip: [2a02:1802:5f:fff1::100]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR0601MB2266; 7:GhtC6t357AVYK2+yCAFaNgmpG3pUQf6VoHvO/b8XAuxuB88YuSMCeawZgcPDxNHW8KVRDePs1HVOzTxJTLPjjX8fEYZ+kzg+YzFNKhtiapuQ2dKxIKSkd+/n/NblQr3iRIp/hYdInJFvBNcBTcbiwhL+qHcItDhldjlxBa+yxYgSZuH8BhA1Q+9hotzhOJz4lVzCJo/aTmSAfaQooq2wNibkLPgUUmW6OEyGs2iSq1dVxBwGoFmaAZRurUW3in6b
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(7021125)(5600026)(4534165)(7022125)(4603075)(4627221)(201702281549075)(7048125)(7024125)(7027125)(7028125)(7023125)(2017052603328)(7153060)(49563074)(7193020); SRVR:HE1PR0601MB2266;
x-ms-traffictypediagnostic: HE1PR0601MB2266:
x-microsoft-antispam-prvs: <HE1PR0601MB22664C7D1BEDE772AEF830DAE2780@HE1PR0601MB2266.eurprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(131327999870524)(246761809553906)(21748063052155);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(102415395)(6040522)(2401047)(8121501046)(5005006)(10201501046)(93006095)(93001095)(3002001)(3231254)(944501410)(52105095)(149027)(150027)(6041310)(20161123560045)(20161123564045)(20161123558120)(2016111802025)(20161123562045)(6072148)(6043046)(201708071742011)(7699016); SRVR:HE1PR0601MB2266; BCL:0; PCL:0; RULEID:; SRVR:HE1PR0601MB2266;
x-forefront-prvs: 070092A9D3
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39830400003)(366004)(396003)(39380400002)(376002)(346002)(469094003)(49754004)(53484002)(189003)(199004)(81156014)(446003)(476003)(10710500007)(486006)(14454004)(44832011)(81166006)(2616005)(8676002)(86362001)(6116002)(11346002)(8936002)(7736002)(97736004)(6306002)(25786009)(2501003)(966005)(99936001)(478600001)(5660300001)(5250100002)(606006)(33656002)(59450400001)(3660700001)(102836004)(6246003)(54896002)(6512007)(6436002)(733005)(316002)(54556002)(8666007)(3280700002)(110136005)(82746002)(229853002)(76176011)(2420400007)(36756003)(53936002)(15650500001)(2900100001)(236005)(53546011)(6506007)(99286004)(53376002)(53946003)(83716003)(46003)(68736007)(106356001)(186003)(53386004)(2906002)(74482002)(105586002)(6486002); DIR:OUT; SFP:1102; SCL:1; SRVR:HE1PR0601MB2266; H:HE1PR0601MB1930.eurprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: dnsbelgium.be does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 0AMQFyMxG5iD1l2fyJ48dZhnSxqRvd3DdqL8mBKzqhng0ski+m03lj7FqxT/v4VvRdAk0e//fFLpgWOfNK6i35sbPc5MjQr07nSrf8j1SLmA+akVe2o2O6xwfe9nqLJGDYNpQK/ILwOlshPAOdS6jYsA+se5G51c9W4iEPx+oVvrUsP9h0qBWi7yYB0ZxpKbm7Rd7KWe0yHluqyIddyrFg==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/related; boundary="_004_FE2573974BE64AEA8401337BEDA9B167dnsbelgiumbe_"; type="multipart/alternative"
MIME-Version: 1.0
X-MS-Office365-Filtering-Correlation-Id: 1b7831e3-7c99-41f2-6f80-08d5cfcac27b
X-OriginatorOrg: dnsbelgium.be
X-MS-Exchange-CrossTenant-Network-Message-Id: 1b7831e3-7c99-41f2-6f80-08d5cfcac27b
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jun 2018 18:40:09.4514 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 695195de-c0cb-4478-9204-2a861e60e59c
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0601MB2266
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/aeEVkHlYFUw0Y-GxfOAxmczefT4>
Subject: Re: [regext] REGEXT Interim Meeting (Validate Draft)
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jun 2018 18:40:20 -0000
Thanks, Roger, It now makes much more sense to me. Kind regards Pieter -- Pieter Vandepitte Product Expert +32 16 28 49 70 www.dnsbelgium.be<http://www.dnsbelgium.be> [DNS_PUNT_Belgium_RGB] From: regext <regext-bounces@ietf.org> on behalf of Roger D Carney <rcarney@godaddy.com> Date: Monday 11 June 2018 at 17:44 To: "regext@ietf.org" <regext@ietf.org> Subject: Re: [regext] REGEXT Interim Meeting (Validate Draft) Good Morning, I will be sending out minutes/notes of the Interim meeting later this week. I agree with what Jim proposed during the meeting and here in reference to providing ids for new/existing contacts, as well as the one to one matching of the check/response items. Just for a little color/background on the issues/goals of this draft. From a registrar standpoint we have run into difficult customer registration processing flows when we go to do a domain create and assign “roles” to contacts. Registrars can create “valid” contacts at a registry only to find out later (during domain create) that the “valid” contact created earlier is not valid for a specific contact type/role. Many registries have different policies around different contact types/roles (e.g. either the Registrant or Admin must have a postal address from a certain country but both are not required to), but you can only confirm this on a domain create when the contact type/role is being assigned. This is a huge headache for customers. They have already selected a domain name, provided contacts, provided payment and now find out they may not be eligible for the domain (and now wait for a refund) or have to edit contacts again because the registrar was not able to validate the contact information for the contact type/role earlier in the process. I hope this helps explain the issue/goal for this draft more clearly. Thanks Roger From: regext [mailto:regext-bounces@ietf.org] On Behalf Of Gould, James Sent: Monday, June 11, 2018 9:27 AM To: Pieter Vandepitte <pieter.vandepitte@dnsbelgium.be>; Gould, James <jgould=40verisign.com@dmarc.ietf.org>; Patrick Mevzek <pm@dotandco.com>; regext@ietf.org Subject: Re: [regext] REGEXT Interim Meeting Pieter, Regardless of that, I’m still trying to figure out the use of this extension. Will a client first check whether a contact can be created, then interpret the response of the check, and finally create the command. Or will the client just try to create the contact, and in case of error interpret the error message? Maybe there’s a need for better, more structured and machine interpretable responses, but I don’t think the extra check step is the way to go. Just my 2 cents… Based on my deep dive into draft-ietf-regext-validate, my take of the draft is that it’s used to validate the use of an existing or new contact as a contact type for a domain name of a tld. A little of the confusion discussed during the REGEXT Interim Meeting was how the client specifies the use of an existing or new contact. One assumption that I made was the reference to an existing contact was made by only including a contact id (<validate:id>) and definition of a new contact to validate was made by the inclusion of the additional contact attributes (<contact:postalInfo>, etc.). That was not the case, since the extension supported reuse of new contact attributes for a different contact type and tld by referencing a contact id included earlier in the check command. Take a look at the use of the “sh8013” contact id in the check command example, where it’s fully defined for the “registrant” type and the “COM” tld, but only referenced by contact ID for the subsequent “tech” type and “COM” tld. Also notice that the contacts are consolidated in the check response by contact ID. In the validate check command there are 4 contacts and the validate check response has only two. My recommendation was to support referencing an existing contact by only supplying the contact ID, don’t create dependencies between check items to reduce the amount of duplicate information provided, and ensure that the number of items in the check response match the number of items in the check command. — JG James Gould Distinguished Engineer jgould@Verisign.com<mailto:jgould@Verisign.com> 703-948-3271 12061 Bluemont Way Reston, VA 20190 Verisign.com <http://verisigninc.com/> On 6/11/18, 4:53 AM, "Pieter Vandepitte" <pieter.vandepitte@dnsbelgium.be<mailto:pieter.vandepitte@dnsbelgium.be>> wrote: Maybe I’m missing something, but this draft is about validating contacts, so I don't see an issue in referring to the contact RFC. There’s no point in validating contacts, but not creating them, so the client needs to support the contact xsd anyway. Regardless of that, I’m still trying to figure out the use of this extension. Will a client first check whether a contact can be created, then interpret the response of the check, and finally create the command. Or will the client just try to create the contact, and in case of error interpret the error message? Maybe there’s a need for better, more structured and machine interpretable responses, but I don’t think the extra check step is the way to go. Just my 2 cents… Kind regards -- Pieter Vandepitte Product Expert +32 16 28 49 70 www.dnsbelgium.be<http://www.dnsbelgium.be> On 06/06/18 14:22, "regext on behalf of Gould, James" <regext-bounces@ietf.org on behalf of jgould=40verisign.com@dmarc.ietf.org<mailto:regext-bounces@ietf.org%20on%20behalf%20of%20jgould=40verisign.com@dmarc.ietf.org>> wrote: Patrick, The base EPP protocol is defined using epp and eppcom, where extensions (object or command / response) would naturally be dependent on the base schemas. Creating dependencies across extensions does not allow them to stand on their own, so my preference would be to copy and paste the elements from sibling extension XML schemas unless there is a large advantage with creating the dependency. There are examples of cross extension dependencies that exist today, like the inclusion of the host XML schema within the domain XML schema of RFC 5731. This dependency does require ensuring that the host XML schema is loaded ahead of the domain XML schema when pre-caching the XML schemas. The contact reference in the validate extension takes it one step further by referencing complex types that requires the use of the contact namespace directly within the XML, so it's more than just ensuring that the contact XML schema is loaded ahead of the validate XML schema. It is not hard to overcome, but I believe the priority should be to have the extensions stand on their own and only be dependent on the base XML schemas of epp and eppcom unless there is an overriding reason to add the cross-extension dependency. — JG James Gould Distinguished Engineer jgould@Verisign.com<mailto:jgould@Verisign.com> 703-948-3271 12061 Bluemont Way Reston, VA 20190 Verisign.com <http://verisigninc.com/> On 6/5/18, 8:09 PM, "regext on behalf of Patrick Mevzek" <regext-bounces@ietf.org on behalf of pm@dotandco.com<mailto:regext-bounces@ietf.org%20on%20behalf%20of%20pm@dotandco.com>> wrote: On Mon, Jun 4, 2018, at 19:56, Gould, James wrote: > 4. I don’t recommend directly referencing the > urn:ietf:params:xml:ns:contact-1.0 elements, since it adds a direct > dependency to inclusion of the contact XML schema and namespace for a > subset of the elements that are really specific to the validate mapping. > I would prefer for the validate XML schema to stand on its own by only > referring to epp and eppcom, with no cross references to contact. This > would mean copying and pasting elements directly from the contact XML > schema into the validate XML schema, which is an inconvenient, but makes > it easier to implement. I am sure that not all elements of epp/eppcom namespaces are used either so under symmetry and consistency I would find more logical that all schemas are treated the same, either all referenced, or all copied (for the parts needed). And I see no problems in referencing the contact-1.0 one. Using epp/eppcom as references already make the schema dependent on other resources and not "standing on its own". I am not sure this has a huge consequence on implementations, especially if taking into account multiple ways to implement things (and especially doing validation or not). -- Patrick Mevzek _______________________________________________ regext mailing list regext@ietf.org<mailto:regext@ietf.org> https://www.ietf.org/mailman/listinfo/regext _______________________________________________ regext mailing list regext@ietf.org<mailto:regext@ietf.org> https://www.ietf.org/mailman/listinfo/regext _______________________________________________ regext mailing list regext@ietf.org<mailto:regext@ietf.org> https://www.ietf.org/mailman/listinfo/regext
- Re: [regext] REGEXT Interim Meeting (Validate Dra… Roger D Carney
- Re: [regext] REGEXT Interim Meeting (Validate Dra… Pieter Vandepitte