IETF Logo Mail Archive

Re: [scim] Proposed Detail Errors

Phil Hunt <phil.hunt@oracle.com> Mon, 30 June 2014 19:35 UTC

Return-Path: <phil.hunt@oracle.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59F801A0659 for <scim@ietfa.amsl.com>; Mon, 30 Jun 2014 12:35:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.249
X-Spam-Level:
X-Spam-Status: No, score=-4.249 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, HTML_MESSAGE=0.001, J_CHICKENPOX_37=0.6, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kj0EmgX9yWlV for <scim@ietfa.amsl.com>; Mon, 30 Jun 2014 12:35:15 -0700 (PDT)
Received: from aserp1040.oracle.com (aserp1040.oracle.com [141.146.126.69]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D824E1A037F for <scim@ietf.org>; Mon, 30 Jun 2014 12:35:14 -0700 (PDT)
Received: from acsinet21.oracle.com (acsinet21.oracle.com [141.146.126.237]) by aserp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id s5UJZDLr021837 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 30 Jun 2014 19:35:14 GMT
Received: from userz7022.oracle.com (userz7022.oracle.com [156.151.31.86]) by acsinet21.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id s5UJZCWB025064 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 30 Jun 2014 19:35:13 GMT
Received: from abhmp0001.oracle.com (abhmp0001.oracle.com [141.146.116.7]) by userz7022.oracle.com (8.14.5+Sun/8.14.4) with ESMTP id s5UJZBax022631; Mon, 30 Jun 2014 19:35:11 GMT
Received: from [192.168.1.125] (/174.7.250.104) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 30 Jun 2014 12:35:10 -0700
References: <348F75D5-7C0F-4B93-A7B7-88E0B2FFD4ED@oracle.com> <232fc398cb76462088c589f6244f3bf9@BN1PR04MB392.namprd04.prod.outlook.com> <42A78180-7AA1-40FD-B257-DD6ECF06784E@oracle.com> <9075316269e949418386ee90ebedee42@BN1PR04MB392.namprd04.prod.outlook.com> <A1CE5912-0C8B-4A2D-A1A3-FECF6189DD21@oracle.com> <BE5B1DCB-B1FD-428F-8A3F-3B5B8AA4F94C@oracle.com> <d6d14699caab45d98a7f660659a78e8d@BLUPR03MB309.namprd03.prod.outlook.com>
Mime-Version: 1.0 (1.0)
In-Reply-To: <d6d14699caab45d98a7f660659a78e8d@BLUPR03MB309.namprd03.prod.outlook.com>
Content-Type: multipart/alternative; boundary="Apple-Mail-8F946159-9531-48FE-85D8-815ECB7FCACF"
Content-Transfer-Encoding: 7bit
Message-Id: <3B339C76-F410-41EF-A574-EA3FA85D8590@oracle.com>
X-Mailer: iPhone Mail (11D201)
From: Phil Hunt <phil.hunt@oracle.com>
Date: Mon, 30 Jun 2014 12:35:01 -0700
To: Anthony Nadalin <tonynad@microsoft.com>
X-Source-IP: acsinet21.oracle.com [141.146.126.237]
Archived-At: http://mailarchive.ietf.org/arch/msg/scim/iJRsWJVvdq1tOxnpsuw_w7Z6PZ8
Cc: Scim WG <scim@ietf.org>, Kelly Grizzle <kelly.grizzle@sailpoint.com>
Subject: Re: [scim] Proposed Detail Errors
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Jun 2014 19:35:19 -0000

How so?

Phil

> On Jun 30, 2014, at 12:24, Anthony Nadalin <tonynad@microsoft.com> wrote:
> 
> Isn’t this going to be a continued problems with IANA updates ?
>  
> From: scim [mailto:scim-bounces@ietf.org] On Behalf Of Phil Hunt
> Sent: Monday, June 30, 2014 11:14 AM
> To: Kelly Grizzle
> Cc: Scim WG
> Subject: Re: [scim] Proposed Detail Errors
>  
> After thinking about this a bit, I think URIs for scimType is the best way to go. While having a URI means a new IANA registry, it is probably simpler to implement and allows for the capability for SPs to extend errors as Kelly and David have requested.  It is also in line with: http://tools.ietf.org/html/draft-nottingham-http-problem-06
>  
> As many are off-line much of the week due to Canadian and US holidays, and the window for submissions for IETF90 closes Friday, I will start work amending the API draft to include the error codes listed at the start of this thread but with URIs and will add the IANA registry for errors.
>  
> Phil
>  
> @independentid
> www.independentid.com
> phil.hunt@oracle.com
>  
>  
>  
> On Jun 30, 2014, at 8:56 AM, Phil Hunt <phil.hunt@oracle.com> wrote:
> 
> 
> David had a similar comment. 
>  
> What if there was a separate attribute: spCode that allows the service provider to indicate non-protocol errors?
> 
> Phil
> 
> On Jun 30, 2014, at 7:46, Kelly Grizzle <kelly.grizzle@sailpoint.com> wrote:
> 
> I remember that one of the initial drivers for this ticket was the ability for service providers to send back error codes that are specific to the service provider.
>  
> An example on a user creation might be “error 28738” … “client has exceeded the maximum number of users in their organization”.  Ideally the SP would be able to communicate back the general HTTP error code, a provider-specific error code, and a human readable description.
>  
> I think that scimType would allow for this if the list were extensible.
>  
> --Kelly
>  
> From: Phil Hunt [mailto:phil.hunt@oracle.com] 
> Sent: Sunday, June 29, 2014 3:27 PM
> To: Kelly Grizzle
> Cc: Scim WG
> Subject: Re: [scim] Proposed Detail Errors
>  
> Could be if we use URIs for codes 
> 
> Phil
> 
> On Jun 29, 2014, at 13:09, Kelly Grizzle <kelly.grizzle@sailpoint.com> wrote:
> 
> I like these, Phil.  Should this list of error codes be extensible?
>  
>  
> From: scim [mailto:scim-bounces@ietf.org] On Behalf Of Phil Hunt
> Sent: Friday, June 27, 2014 1:47 PM
> To: Scim WG
> Subject: [scim] Proposed Detail Errors
>  
> After reviewing the API and Schema docs, here is a first cut of the detailed error codes.
>  
> For HTTP Status 400 (Bad Request) responses, the following detail
>    error types are defined:
>  
> +--------------+------------------------------+---------------------+
> | scimType     | Description                  | Applicability       |
> +--------------+------------------------------+---------------------+
> | invalidFilte | The specified filter syntax  | GET(Section 3.2.2), |
> | r            | was invalid (does not comply | POST (Search -      |
> |              | with Figure 1) or the        | Section 3.2.3),     |
> |              | specified attribute and      | PATCH (Path Filter  |
> |              | filter comparison            | - Section 3.3.2)    |
> |              | combination is not           |                     |
> |              | supported.                   |                     |
> | uniqueness   | One or more of attribute     | POST (Create -      |
> |              | values is already in use or  | Section 3.1), PUT   |
> |              | is reserved.                 | (Section 3.3.1),    |
> |              |                              | PATCH (Section      |
> |              |                              | 3.3.2)              |
> | mutability   | The attempted modification   | PUT (Section        |
> |              | is not compatible with the   | 3.3.1), PATCH       |
> |              | target attributes mutability | (Section 3.3.2)     |
> |              | or current state (e.g.       |                     |
> |              | modification of an immutable |                     |
> |              | attribute with an existing   |                     |
> |              | value).                      |                     |
> | invalidSynta | The request body message     | POST (Search -      |
> | x            | structure was invalid or did | Section 3.2.2,      |
> |              | not conform to the request   | Create - Section    |
> |              | schema.                      | 3.1, Bulk - Section |
> |              |                              | 3.5), PUT (Section  |
> |              |                              | 3.3.1)              |
> | invalidPath  | The path attribute was       | PATCH (Section      |
> |              | invalid or malformed (see    | 3.3.2)              |
> |              | Figure 4).                   |                     |
> | noTarget     | The specified "path" did not | PATCH (Section      |
> |              | yield an attribute or        | 3.3.2)              |
> |              | attribute value that could   |                     |
> |              | be operated on. This occurs  |                     |
> |              | when the specified "path"    |                     |
> |              | value contains a filter that |                     |
> |              | yields no match.             |                     |
> | invalidValue | A required value was         | GET (Section        |
> |              | missing, or the value        | 3.2.2), POST        |
> |              | specified was not compatible | (Create - Section   |
> |              | with the operation or        | 3.1, Search -       |
> |              | attribute type (see Section  | Section 3.2.2), PUT |
> |              | 2.1 [I-D.ietf-scim-core-sche | (Section 3.3.1),    |
> |              | ma]).                        | PATCH (Section      |
> |              |                              | 3.3.2)              |
> | invalidVers  | The specified API version is | GET (Section        |
> |              | not supported (see Section   | 3.2.2), POST (ALL), |
> |              | 3.11).                       | PUT (Section        |
> |              |                              | 3.3.1), PATCH       |
> |              |                              | (Section 3.3.2),    |
> |              |                              | DELETE (Section     |
> |              |                              | 3.4)                |
> +--------------+------------------------------+---------------------+
> I plan to put these into draft 07 of the API and will publish over the weekend.
>  
> As always, feedback welcome!
>  
> Phil
>  
> @independentid
> www.independentid.com
> phil.hunt@oracle.com
>  
>  
>  
> _______________________________________________
> scim mailing list
> scim@ietf.org
> https://www.ietf.org/mailman/listinfo/scim
> _______________________________________________
> scim mailing list
> scim@ietf.org
> https://www.ietf.org/mailman/listinfo/scim
> _______________________________________________
> scim mailing list
> scim@ietf.org
> https://www.ietf.org/mailman/listinfo/scim
>

v2.23.0 | Report a Bug | By Email