Re: [Webpush] Mirja Kühlewind's No Objection on draft-ietf-webpush-protocol-11: (with COMMENT)
Martin Thomson <martin.thomson@gmail.com> Wed, 12 October 2016 15:49 UTC
Return-Path: <martin.thomson@gmail.com>
X-Original-To: webpush@ietfa.amsl.com
Delivered-To: webpush@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 598B3129428;
Wed, 12 Oct 2016 08:49:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7,
SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key)
header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id q4qgHUz8MgsX; Wed, 12 Oct 2016 08:49:02 -0700 (PDT)
Received: from mail-qk0-x236.google.com (mail-qk0-x236.google.com
[IPv6:2607:f8b0:400d:c09::236])
(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 5A0261200DF;
Wed, 12 Oct 2016 08:49:01 -0700 (PDT)
Received: by mail-qk0-x236.google.com with SMTP id o68so84387376qkf.3;
Wed, 12 Oct 2016 08:49:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
h=mime-version:in-reply-to:references:from:date:message-id:subject:to
:cc; bh=JM9E4xK1COKJc8xTJur4i7DSCjua4P5BUAbLeHLxTbM=;
b=UBQAf0cYK01vLUeYG499fjBrS2Cg0KUJ0lchLvRbUwWUto8WOhWMc6wFUG2w/ZmPao
pQVbPmMNO18xP4mdcbbKcXqAb0baOHBRrPQpfO/K8t2gXlWGL585EL1CdbLYoxsdmTAa
gJwFFV6yknyM4E9tnbWokUy/JWnq6nORpHXg/SjROpZLURXesRIHa4zhkZks1DnAIraJ
LtXxgeZVPr9bGnswclIaDZYhkBjBlbt/yoSmXv6bK25BkpdLiK/hpVi0XZf8MoeCYlsR
S3JC6cn9D5Jvg7iOoM0isUtwBk2lpCKqIhl0y9lKZujQI/siUP4jE4gxNH5KAYrG/dmQ
KVXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20130820;
h=x-gm-message-state:mime-version:in-reply-to:references:from:date
:message-id:subject:to:cc;
bh=JM9E4xK1COKJc8xTJur4i7DSCjua4P5BUAbLeHLxTbM=;
b=D9ojZ1AmIfeRfGljgGalrBOLnm3VcZtEdYKadUI/cSvrEW72pMsThzXN4DIpcwJ7p6
LldUdJs+opPRZglRzh/tWJi8rh6xSED6kGqwVOQf8i4qmYgr6Ov1UCYdUV40IX6+Ik6s
GhwlJEcvo0jaBsoUTm85r3XsdV8YPUTzBVYQI+izCJKGf5WJGeE1C7NB+QCSXAVUSXPm
f+1lpGSR+um+ixwiycj7assuqtzM3inGjDnAyq7ek4Gk7p1A/neP8g567Y8wdKTQ7k3m
enSc3AwfPFnEZn5MmjKUK24V3mX4U/1BzigDk56veRmMe9QZwEMX69IGFCk7c/iRmxwS
zlAg==
X-Gm-Message-State: AA6/9RlCEgiRyNbu4LqFY599SoPq2dMN/D+QSsV/P7rpfGgColg2yy7S4r9qgNRKFq37h25VFdDxvqJ1VphmvA==
X-Received: by 10.55.71.3 with SMTP id u3mr2034804qka.144.1476287340536; Wed,
12 Oct 2016 08:49:00 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.140.85.7 with HTTP; Wed, 12 Oct 2016 08:48:59 -0700 (PDT)
In-Reply-To: <147628669208.6293.5760415846814077051.idtracker@ietfa.amsl.com>
References: <147628669208.6293.5760415846814077051.idtracker@ietfa.amsl.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Thu, 13 Oct 2016 02:48:59 +1100
Message-ID: <CABkgnnW82V4XBMbg+nvGKxgNOF=ua+SSfLLb5uxBc-Jvz+5NkA@mail.gmail.com>
To: Mirja Kuehlewind <ietf@kuehlewind.net>
Content-Type: text/plain; charset=UTF-8
Archived-At: <https://mailarchive.ietf.org/arch/msg/webpush/AmwKBXI8qfzXc63rjv4AVyzFkoY>
Cc: draft-ietf-webpush-protocol@ietf.org, Shida Schubert <shida@ntt-at.com>,
webpush-chairs@ietf.org, The IESG <iesg@ietf.org>,
"webpush@ietf.org" <webpush@ietf.org>
Subject: Re: [Webpush]
=?utf-8?q?Mirja_K=C3=BChlewind=27s_No_Objection_on_draf?=
=?utf-8?q?t-ietf-webpush-protocol-11=3A_=28with_COMMENT=29?=
X-BeenThere: webpush@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of potential IETF work on a web push protocol
<webpush.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/webpush>,
<mailto:webpush-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/webpush/>
List-Post: <mailto:webpush@ietf.org>
List-Help: <mailto:webpush-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/webpush>,
<mailto:webpush-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Oct 2016 15:49:04 -0000
On 13 October 2016 at 02:38, Mirja Kuehlewind <ietf@kuehlewind.net> wrote: > 1) Would it be possible for a user agent to use the same push service > with multiple application servers? Or is this the case where a > subscription set should be used? What happens in this case? Also, is > there a possibility for different user agents to use the same push > service if they would need to receive the same message from the same > server...? Just thinking... A UA can use the same push service for multiple subscriptions. Subscription sets help with that by aggregating push messages (you only have to make one request to retrieve messages for multiple subscriptions). Different user agents cannot get the same message from the service unless it is sent to them separately. Every message is encrypted toward a specific recipient and the push service treats different clients as completely independent. This is in contrast to a centralized pub-sub system where a "channel" might be read from by multiple subscribers. This would be a feature some proprietary push services have more or less, but the privacy and security properties of that feature - frankly - stink. > 2) section 8.4 says: > "To address this case, the W3C Push API [API] has adopted Voluntary > Application Server Identification [I-D.ietf-webpush-vapid], which > allows a user agent to restrict a subscription to a specific > application server. " > How does the user agent signal to the push service which application > servers should be accepted? Did I miss that? All the details are in the referenced draft. > Nit?: > - In the Figure at the beginning of section 2 (which doesn't have a > caption btw.) I guess you should use "application server" instead of > "application" otherwise the previous definition is confusing... > > Also here in section 8 (s/application/application server): > "This includes any communications > between user agent and push service, plus communications between the > application and the push service. " Thanks for picking these out, we try to be consistent, but often fail: https://github.com/webpush-wg/webpush-protocol/pull/137
- [Webpush] Mirja Kühlewind's No Objection on draft… Mirja Kuehlewind
- Re: [Webpush] Mirja Kühlewind's No Objection on d… Martin Thomson