IETF Logo Mail Archive

Re: [Uri-review] Registration request for "at" URI scheme

Melvin Carvalho <melvincarvalho@gmail.com> Sun, 07 May 2023 07:26 UTC

Return-Path: <melvincarvalho@gmail.com>
X-Original-To: uri-review@ietfa.amsl.com
Delivered-To: uri-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 430BBC14CE2B for <uri-review@ietfa.amsl.com>; Sun, 7 May 2023 00:26:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id erAXt7NEfHPZ for <uri-review@ietfa.amsl.com>; Sun, 7 May 2023 00:26:24 -0700 (PDT)
Received: from mail-yb1-xb29.google.com (mail-yb1-xb29.google.com [IPv6:2607:f8b0:4864:20::b29]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C1FDC14F736 for <uri-review@ietf.org>; Sun, 7 May 2023 00:26:24 -0700 (PDT)
Received: by mail-yb1-xb29.google.com with SMTP id 3f1490d57ef6-b9a6eec8611so20447715276.0 for <uri-review@ietf.org>; Sun, 07 May 2023 00:26:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1683444383; x=1686036383; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=VB3lqMuWLZUBWDP271rxGTleJ8YDBqnbFvc/i4ZebHE=; b=KPx7JvRHbdTcuY8cV5pjdmZQoN4MTxCmH855zDsGYL2NiQiK3PasoYyCmf0ri286qb N8g1C4yOEpqUQ/q9C4ZeAH+wadjFP+Kgk1GTnCGeYGekfWZjTOtzxG9Xw/Vs1+JhvVQS gzpEFkkfAdpyEOE/Bpisq/vMF5qSc7SzeSIB3e8NRa2XHAdWemjrZtOdD2zCxaGRnPWJ aBrPmnETava/sBrjLg9vIgwml0C4YZoYxHoJZD28/9EVmLibI4x2bTHckwPC9vcVtexV bvLeYmTL3AdRfQ2X9Gj/siAx/HjKLr1fkrYI5bf3ogFG607HdanN5koTvsysSFlZW2sG 0w2Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1683444383; x=1686036383; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=VB3lqMuWLZUBWDP271rxGTleJ8YDBqnbFvc/i4ZebHE=; b=Ii3GUDAz9gE8SUfr0GdDjFm3gT1XjQJj2lwDWNp4VvqWiY4DqHQA/Bnwpkh8be/p5A BKbSQegQ//tXRjsX7jI4F0rxzeIJzO4M2w/6DSIMqx5BlT6+0wsA2POrDjb9k5+H9pWl 2k0K5jquqm8AwV5lY2X0aOe/Jx6s1TUW6Qrv3HHTHodR+nbKuWZuP5ucT2Cjtjn0qjfA 7W+i9wmMMwiGKlCsazjis1nUfsb/mKICEo++JE8BZky7MStkCbQjRn/OohvEsNy+kVP3 tCPblWtHGrfscPEJLGvMcItJ2cATi4IUABOYhDJONFOX7r5gcnebKYtWemUD9Sd/DWLJ PUFw==
X-Gm-Message-State: AC+VfDxnFK0y4eI+1miS/g5hJs59O0g/wKj3HrmytD73cuT3pue60jjH pX4I4DX3D2Z8mFC1sUXVSvvLn2yqYzdoWt4laTJajTPFeaI=
X-Google-Smtp-Source: ACHHUZ49zc96lKlAdx/l3kZMslwPKV+3sqg8zpShl8MwIx4dsxqCsxFvANmgguwV6Efoyp6SRoh0gTYK05q2RwFNXQQ=
X-Received: by 2002:a05:6902:729:b0:b9e:6c09:2d96 with SMTP id l9-20020a056902072900b00b9e6c092d96mr8437818ybt.12.1683444383087; Sun, 07 May 2023 00:26:23 -0700 (PDT)
MIME-Version: 1.0
References: <f456a86-b079-2bec-f698-f2fc4fb7e76b@robocracy.org> <CAKaEYhKaB9=NVGY_eQk3vq4zGEy_N7FNy9yj02wdz0DuHS2wqw@mail.gmail.com> <CABFYohi+CD33Hn9SnPk3Fk+_W3=8pwtnHeGF1KWVQZG4bV_hnA@mail.gmail.com>
In-Reply-To: <CABFYohi+CD33Hn9SnPk3Fk+_W3=8pwtnHeGF1KWVQZG4bV_hnA@mail.gmail.com>
From: Melvin Carvalho <melvincarvalho@gmail.com>
Date: Sun, 07 May 2023 09:26:11 +0200
Message-ID: <CAKaEYhK=snie3_nAz3CdJoMDh=fx6zmGwbcc9m_jESdjV2ym3w@mail.gmail.com>
To: Bryan Newbold <bryan@blueskyweb.xyz>
Cc: bnewbold@robocracy.org, uri-review@ietf.org, Paul Frazee <pfrazee@gmail.com>, Devin Ivy <devin@blueskyweb.xyz>, Jay Graber <jay@blueskyweb.xyz>
Content-Type: multipart/alternative; boundary="00000000000074027a05fb157052"
Archived-At: <https://mailarchive.ietf.org/arch/msg/uri-review/GGkMvZyWR9Qh-PYDtmm2SdpZg4g>
Subject: Re: [Uri-review] Registration request for "at" URI scheme
X-BeenThere: uri-review@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Proposed URI Schemes <uri-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uri-review>, <mailto:uri-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uri-review/>
List-Post: <mailto:uri-review@ietf.org>
List-Help: <mailto:uri-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uri-review>, <mailto:uri-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 May 2023 07:26:28 -0000

so 6. 5. 2023 v 21:22 odesílatel Bryan Newbold <bryan@blueskyweb.xyz>
napsal:

> Hi Melvin! Thanks for your comments. Reply in-line below.
>
> On Sat, May 6, 2023 at 8:24 AM Melvin Carvalho <melvincarvalho@gmail.com>
> wrote:
>
>> The JSON objects already have 7 different types of identifiers, and
>> there's more (e.g. CID) and when you replace did:plc it will be at least
>> 9.  See:
>>
>
> This JSON document is a DID document, in W3C specification. I'm not sure
> why the number of identifier types is relevant to this URI scheme request.
>
> At the level of the at:// URI scheme, we specify that a DID be used, not
> that did:plc specifically is required. It is true that there are a large
> number of DID resolution methods, and that from a pragmatic standpoint we
> strongly recommend only using did:plc and did:web in the AT Protocol
> ecosystem, but this is not a constraint at the URI scheme level.
>
> We will also take this as a reminder to finish formalizing and register
> the did:plc resolution mechanism with W3C.
>
> I think it ought not be an issue to register "at", but I really think you
>> might be saving yourself some trouble if you hold off for a bit and
>> complete the protocol.  at:// likely is not needed at all.
>>
>
> Some aspects of the protocol are still under development, but our use of
> the at:// URI schema is stable. There are third party implementations of
> the protocol under development, and several independent parties handling
> real-world data with AT URIs embedded in them. This seems like an
> appropriate time to provisionally register the URI scheme, and progress to
> "permanent" registration when the protocol specification matures.
>
>
>> The HTTP identifiers can be done with http:// and the did identifers can
>> be done with did:, which is part of the design of URIs.  There's not a huge
>> need to put at:// in front of either, IMHO
>>
>
>  There are several good reasons to have a URI scheme distinct from HTTP in
> AT Protocol, here are two:
>
> Accounts ("repos") in AT Protocol are easy to migrate between service
> providers. This means that the *location* of the current authoritative host
> for a repo changes over time. An HTTP URL would indicate one specific
> location for the repo and would go stale after a migration. As you note
> above, we *do* use an HTTP URL for the *current* location of the PDS, in
> the DID document, but this value changes over time, while the AT URIs are
> intended to be stable.
>
> Content in AT Protocol is re-distributable between multiple services and
> actors, and the mechanism for transportation is flexible. The current
> protocol uses HTTP and WebSocket, but content can also stored in plan files
> on disk, etc. There is a need to reference specific records ("resources")
> regardless of location and transportation mechanism. This is what AT URIs
> are for.
>

Thank you for the additional information. As a casual observer of this
list, I believe there should be no issue with this being a provisional URI
scheme. I happen to chair the W3C Nostr Community Group [1], and I'm aware
that BlueSky aims to interoperate with Nostr and other protocols. Please
feel free to join us for further discussion.

Regarding the at:// protocol, designers must determine when to reuse
existing protocols and when to create new ones. The examples provided for
the at URI scheme [2] initially seemed quite similar to the http protocol.
While the hostnames like alice.host.com look like http, you point out that
the authority may change over time and hence require a lookup.  That might
work, albeit with some added complexity.

A minor note of caution is to ensure that the resulting URI adheres to
RFC3986, which does not allow for two hashes in the identifier. Be mindful
of this when designing the authority part or any other components.

I'm excited to see how this project evolves, especially in the free
software community. There is hope is that the client-side app might be
open-sourced, since it has received much praise.

[1] https://www.w3.org/community/nostr/
[2] https://atproto.com/specs/at-uri-scheme


> Cheers,
>
> --bryan
>

v2.23.0 | Report a Bug | By Email