[scim] Multi-Valued Display Attribute's Mutability Characteristic

Shelley <randomshelley@gmail.com> Wed, 04 March 2020 16:19 UTC

Return-Path: <randomshelley@gmail.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5BDD33A124B for <scim@ietfa.amsl.com>; Wed, 4 Mar 2020 08:19:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hAyyT6NgzyBa for <scim@ietfa.amsl.com>; Wed, 4 Mar 2020 08:19:40 -0800 (PST)
Received: from mail-ua1-x936.google.com (mail-ua1-x936.google.com [IPv6:2607:f8b0:4864:20::936]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B7B303A122E for <scim@ietf.org>; Wed, 4 Mar 2020 08:19:40 -0800 (PST)
Received: by mail-ua1-x936.google.com with SMTP id z26so892900uap.6 for <scim@ietf.org>; Wed, 04 Mar 2020 08:19:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=k2nr99D3+tKyXmVcakDWulRGJo+LnqUvEE+ZIJ0NS2c=; b=pUktq+SLwDgR7abtbeozNBfPjwvkOWohjHBTLopbRZRNJk5/3p/Nx2Uaj1SmX+o4RH AtwXMMkZBhRe7xKVGG8DEP7DhaU3xnytApQQMmCaCv7uy3g8NMxr1qivzj6bkEHeASdd CIqDpdzeL+S/ksI3+RrejyS+GzflETUYk5xogsKpK0sXkNzDde7Fp4ppfgzLVMT7la2m mGt1k8O3hPrBPd0D8Y8V6rnRX/QPS0We//s8NY8t7eDac45nmi3laiN2CpmeJRja/8f3 dJNtZBMgS/Qn/plyPipzUSaqDuoiB/z72vbF0scr/kpZ66I1A6FdYUcCS9dTOZA4CXxR O+5Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=k2nr99D3+tKyXmVcakDWulRGJo+LnqUvEE+ZIJ0NS2c=; b=tYENs+715hP/P1o04RcZwEM82FxLmtgTrnb2WLEiuRAvC+VHOvI+x+/EL2JPemIAPE sCOSOXdnRXtgTcsG/C57ar7H2IagHBqTm3BfMAQtd9/n7RZ+H+caieGTMHN/CsYd9Tpv o7MBSNIrvw5wskLjd7mPTu8yCjZC9gFAn/DmjfRo51stgcxAJU8EyqCjChU/sb6XIeri em2RIWt7yuz2IQE218mPbqY5m3MB5W+ELYld+RousdIkiSNXzBG7ocLF6FfdUwhvrx+K QayZoS4yhTez7UDEHugF0Zctow6fzG8+IdgET8Twusg4xEiUongKgqUtbvqQZGxs3Zbf +STA==
X-Gm-Message-State: ANhLgQ21uq1CfDh9hw4Yw0c+GydOcY1pYYzOPjBQ8odkTlBIc+GXGNGO gBQ8iSwZxkJir7D8Pqc4A9zxisSHGSpmvDR0c99rxOJm
X-Google-Smtp-Source: =?utf-8?q?ADFU+vsQgzgT8ng0UKmFYxTc7V9vvC7vuzMli577Xgkx?= =?utf-8?q?s4onMFCiZqppZCDwwffeYQG8kflqca//oslI4vXZpJ4si9g=3D?=
X-Received: by 2002:ab0:6029:: with SMTP id n9mr1940946ual.35.1583338779432; Wed, 04 Mar 2020 08:19:39 -0800 (PST)
MIME-Version: 1.0
From: Shelley <randomshelley@gmail.com>
Date: Wed, 4 Mar 2020 10:19:28 -0600
Message-ID: <CAGUsYPwSchi7R-i7HnJJKWnqRjLEqqi4XTf63bY4W-jftLzZ6w@mail.gmail.com>
To: scim@ietf.org
Content-Type: multipart/alternative; boundary="00000000000081d9b105a009c941"
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/qI6J6ZwnlowstviRBMox41J_yo4>
Subject: [scim] Multi-Valued Display Attribute's Mutability Characteristic
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Mar 2020 16:19:46 -0000

Multi-valued attributes' "display" sub-attribute is documented in Section
2.4 to be "immutable" by default:

   display [1]
      A human-readable name, primarily used for display purposes and
      having a mutability of "*immutable*".

However, nearly all of "display" subattributes in Section 8.7.1 (user
emails, phoneNumbers, ims, photos, entitlements, roles, x509Certificates)
specify a mutability of "readWrite", despite the fact that the description
indicates that they are "READ-ONLY" [2]:

          {
            "name" : "display",
            "type" : "string",
            "multiValued" : false,
            "description" : "A human-readable name, primarily used
for display purposes.  *READ-ONLY*.",
            "required" : false,
            "caseExact" : false,
            "mutability" : "*readWrite*",
            "returned" : "default",
            "uniqueness" : "none"
          },

Which of these is the expected mutability characteristic of the "display"
attribute in these cases?

   - the attribute's definition of "immutable" [1]
   - the "description" of "readOnly" [2]
   - the "mutability" of "readWrite" [2]


My understanding is that the "display" attribute is primarily intended for
use by Service Providers to optionally return a suitable human-readable
display name for the attribute, which has potentially been canonicalized
(whereas the "value" may remain the raw value provided by the client).
Given this, "readOnly" seems to be the most appropriate "mutability"
characteristic (assuming my understanding of "readOnly" is correct, such
that it means that the client cannot provide this value, but the service
provider may update and return a value). Alternatively, if either clients
or service providers are allowed to provide "display" values, "readWrite"
seems appropriate. In none of the cases for "display" does "immutable" seem
like the correct choice, though.

[1] https://tools.ietf.org/html/rfc7643#section-2.4
[2] https://tools.ietf.org/html/rfc7643#section-8.7.1