Re: [Webpush] WGLC for draft-ietf-webpush-protocol-05

Richard Maher <maherrj@googlemail.com> Tue, 31 May 2016 06:58 UTC

Return-Path: <maherrj@googlemail.com>
X-Original-To: webpush@ietfa.amsl.com
Delivered-To: webpush@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3EF312B029 for <webpush@ietfa.amsl.com>; Mon, 30 May 2016 23:58:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=googlemail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M29GYqAEp3uL for <webpush@ietfa.amsl.com>; Mon, 30 May 2016 23:58:12 -0700 (PDT)
Received: from mail-qg0-x22f.google.com (mail-qg0-x22f.google.com [IPv6:2607:f8b0:400d:c04::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4B1E12B04A for <webpush@ietf.org>; Mon, 30 May 2016 23:58:11 -0700 (PDT)
Received: by mail-qg0-x22f.google.com with SMTP id e93so86888156qgf.2 for <webpush@ietf.org>; Mon, 30 May 2016 23:58:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc; bh=EYZcmng+A2VE3Td8agmzAFwJ2d8gohdFZ4ixqwp7q4o=; b=njb4FNfCrnI9H9fY6fb1GM46Z3B0JO+85BVpB7buKNC2Se0c8vnJ34PN+JuA1I3tSu n+6wOV2bKYDpfvvY+0mc60LitW+chDkW0UGkCdeD+ton10sq/rCrGlhhCKw3Dh+KPeKV P2mBj9XMVLk7xGPoUb3BzQt2n/yOAh0ojugrnAp28wIpfk8If90eRZBlhr04F3e/YT6V XQmjplTi+8YLRGuvTnlfmbyEzOr308y1mLzhhPVJNSmLmd4WOSZifkordhDnteCFa73k Ds+HxlRKDEN/XPIYfIz13sFbBZL6tDlM7HDzQDU7bbZLNeAT55IA1SHeXnxrbGwcaKcv +8RA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc; bh=EYZcmng+A2VE3Td8agmzAFwJ2d8gohdFZ4ixqwp7q4o=; b=PzhJEnr/GaLdOTo9yIm9CS0nDE2e8oVldimKeyMZ+U25aqzBxIIUY5xf0eTmUUvYHP 5eGFPUgH0XuU32rHv2Y9GVnM3ZxR2nxiiIOW2mFobbsBk6U2p3wd/v2FWHlawx+0cvMG 30cmjRfWz/mCOcqh2rE7s2pyiTjo9kL36ygC6hdyfr1rB2qqbU02ppcXRRrDnUeK7R1T JaGTKFuNzXfk8b8U+AjsIgwFatwQlP2dCGGVHyei+VxEIrT1Sjk8htOI8qcJGOFb44UB Js8FbKQpTMUZ6Pn0WDEApFsuWxuMqGxaKIrghU7owwXLZIiSU1oTLm/CRmQSNq/lAsay o9Rw==
X-Gm-Message-State: ALyK8tKpEncwX8jSvD6NZQh2inw+XPLrtDV9nT88ZkQaj1AiSbBMTDWwYuSb7UNRqmW6s4Yz+ZnQKBdyKOCTYQ==
MIME-Version: 1.0
X-Received: by 10.140.134.134 with SMTP id 128mr30870064qhg.63.1464677890988; Mon, 30 May 2016 23:58:10 -0700 (PDT)
Received: by 10.55.104.194 with HTTP; Mon, 30 May 2016 23:58:10 -0700 (PDT)
In-Reply-To: <4B69453E-54AD-414A-BDC3-18E175AA25BC@ntt-at.com>
References: <DA2216E6-CE23-47A0-AA7A-5E19DAF043AF@ntt-at.com> <CABvL1xrKExY4FXXmNogGKq2=PUd5HtZed09BOW1h33TXE79PNA@mail.gmail.com> <7BE6135D-961D-4D6E-B6FC-99BA27B1B0C4@ntt-at.com> <CABvL1xpiMcrtVj=ZCcesxsQJjUBJV23U5zbr5QKPeQDxQadOWg@mail.gmail.com> <CAP8-Fqmnd_pvR32BY0AE6xwvPJ1B35ieDqHsCo=c3eV0o1soKA@mail.gmail.com> <4B69453E-54AD-414A-BDC3-18E175AA25BC@ntt-at.com>
Date: Tue, 31 May 2016 14:58:10 +0800
Message-ID: <CABvL1xr0FvcbQRLFmyuSwAbhwKNnMurGOrc2UqWJ59=mRxzs2Q@mail.gmail.com>
From: Richard Maher <maherrj@googlemail.com>
To: Shida Schubert <shida@ntt-at.com>
Content-Type: multipart/alternative; boundary=001a1136f98867249905341de596
Archived-At: <http://mailarchive.ietf.org/arch/msg/webpush/L7FfoHoEA06bmEcaxKUXdee8NhM>
Cc: Costin Manolache <costin@gmail.com>, webpush@ietf.org
Subject: Re: [Webpush] WGLC for draft-ietf-webpush-protocol-05
X-BeenThere: webpush@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Discussion of potential IETF work on a web push protocol <webpush.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/webpush>, <mailto:webpush-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/webpush/>
List-Post: <mailto:webpush@ietf.org>
List-Help: <mailto:webpush-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/webpush>, <mailto:webpush-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 06:58:15 -0000

Please also take the time to make submissions to the European Commission on
the lack of plug-n-play specification with WebPush facilitating the abuse
of monopoly positions by respective browser manufacturers to suppress
competition from third party Push Notification Services.

I've attached my submission to this case: -
http://ec.europa.eu/competition/elojade/isef/case_details.cfm?proc_code=1_40099

Each browser user must be unencumbered in their choice of Cloud Service
Provider(s) as they are for browsers, and search engines.

On Tue, May 31, 2016 at 11:52 AM, Shida Schubert <shida@ntt-at.com> wrote:

> All;
>
> We have heard very little regarding the actual contents of the draft and
> WGLC is over this week.
>
> As noted when I started the last call, please show your support by
> providing acknowledgement(s) if you are happy with the draft as is.
>
> Thanks!
> Shida
>
> On May 24, 2016, at 11:11 AM, Costin Manolache <costin@gmail.com> wrote:
>
> +1 - we discussed my concerns on flow control for push promises, and I
> think it's reasonable to have them addressed either
> as part of http2 or as a separate document.
>
> Other than that I think it's reasonable and stable base - extensions and
> features can be added on top of it.
>
> Costin
>
>
> On Mon, May 23, 2016 at 5:53 PM Richard Maher <maherrj@googlemail.com>
> wrote:
>
>> Please see embedded comments: -
>>
>> On Tue, May 24, 2016 at 8:03 AM, Shida Schubert <shida@ntt-at.com> wrote:
>>
>>>
>>> Hi Richard;
>>>
>>> Thank you for your feedback.
>>>
>>> Currently developers need to either deal with different spec/api for
>>> each of the push notification providers (GCM, Azure, APN etc.) to
>>> communicate to their subscribers or use third party service (urban airship
>>> etc.), which is fine for native apps but gets a little more complicated
>>> with the browser.
>>>
>>
>> Inconvenient but feature detection is not the end of the world.
>>
>>
>>> The IETF has agreed that we need a standardized protocol for this and
>>> that’s what we are chartered to work on.
>>>
>>
>> A much better idea especially considering the number of Push Services
>> that don't happen to also manufacture a browser. But let's get it as
>> fit-for-purpose and as extensive as we can, eh? How many different
>> specifications have there been so far dealing with Server Push, Simple
>> Push, etc. Each time with developers having to deprecate and re-tool :-(
>>
>>
>>>
>>> As for Broadcasting, from my shallow understanding isn’t it merely the
>>> same payload sent to set or all of subscribers?
>>>
>>
>> I find that level of naivety astounding in anyone who is involved in
>> formulation of this standard. Why do you seek to deliberately ignore the
>> client-based subscription feature where any and all client-to-topic mapping
>> is maintained solely by the Push Service and where the Application Server
>> is oblivious to consumers and freed the need for a local mapping database?
>> The Use-Cases are clear: - Sports results, Weather Updates, Stock Prices,
>> Security Alerts, just to name a few. The strategy for encrypting an
>> authenticating the payload/body is also clear(ish): -
>> https://github.com/slightlyoff/ServiceWorker/issues/901
>>
>> Why do you people continue to say "What elephant?"
>>
>> In which case, I believe it can be handled as an implementation matter
>>> likely at the application side.
>>>
>>
>>  For some other use cases, managing subscriptions on the server is indeed
>> an option. Horses for courses: -
>>
>> https://developers.google.com/cloud-messaging/topic-messaging#managing_topic_subscriptions_from_the_server
>>
>>
>> The protocol can be extended at later stage if wg agrees it is something
>>> that is necessary but I haven’t heard anybody else at the meeting or on the
>>> mailing list expressing this feature is a show-stopper.
>>>
>>
>> I sorry to appear blunt but if the other members of the cloistered star
>> chamber that is adjudicating on this are equally ignorant of the business
>> requirements then there is no surprise they haven't come up with a solution.
>>
>> But *please* don't listen to me. Just look at what solutions that are
>> already in the wild with native apps. Why won't you let HTML5 Web App
>> developers compete on an even playing field and create Apps that satisfy
>> these common requirements?
>>
>> The MBONE people seem to have made progress over the years and we all
>> know that your Application Servers with simply be overwhelmed if you tickle
>> potentially millions of clients so let's get on with the solution?
>>
>>
>>>
>>> Anyway, I would very much appreciate it, if you can refrain the comments
>>> to the technical contents of the draft.
>>>
>>
>> Are you telling me that pointing out omissions and scope deficiencies is
>> not welcomed?
>>
>> Either way 5.4 is completely wrong. You've been told.
>>
>>
>>>
>>> Thanks
>>> Shida
>>>
>>> On May 16, 2016, at 6:50 PM, Richard Maher <maherrj@googlemail.com>
>>> wrote:
>>>
>>> "5.4 Updating Push Messages" is based on the misconception that "Topics"
>>> are "Collapse Keys". The standard as proposed has been superseded by event
>>> on the ground by established, successful, and more importantly scalable
>>> solutions: -
>>>
>>> Google Cloud Messaging: -
>>> https://developers.google.com/cloud-messaging/topic-messaging
>>>
>>> Azure Notification Hubs: -
>>>
>>> https://blogs.windows.com/buildingapps/2013/09/16/delivering-push-notifications-to-millions-of-devices-with-windows-azure-notification-hubs/
>>>
>>> Whether the Topics are identified via HTTP headers or JSON Tokens is the
>>> only moot point. What is clear is that the proposed protocol attempts to
>>> conflate the Topic and Collapse Key features: -
>>>
>>> https://developers.google.com/cloud-messaging/concept-options#collapsible_and_non-collapsible_messages
>>>
>>> The fact that quintessential Push Notification feature "Broadcasting"
>>> has been descoped from this protocol must be sufficient to reject the
>>> proposal.
>>>
>>> Please do not make the same mistake that you made with Geofences. IETF
>>> and W3C credibility has already suffered enough.
>>>
>>> On Tue, May 17, 2016 at 2:32 AM, Shida Schubert <shida@ntt-at.com>
>>> wrote:
>>>
>>>> All;
>>>>
>>>> As discussed at the IETF 95, as last issue surrounding the subscription
>>>> re-use is addressed, we are starting a Working Group Last Call for the
>>>> webpush protocol.
>>>>
>>>> https://tools.ietf.org/html/draft-ietf-webpush-protocol-05
>>>>
>>>> If you have any issues or questions regarding the draft please submit
>>>> it to the list, when raising issues please provide constructive resolution
>>>> when possible.
>>>>
>>>> Please acknowledge on the list even when you are content/happy with the
>>>> status of the draft.
>>>>
>>>> The Working Group Last Call will end on June 6th (3 weeks).
>>>>
>>>> Shida
>>>> As co-chair
>>>>
>>>> _______________________________________________
>>>> Webpush mailing list
>>>> Webpush@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/webpush
>>>>
>>>>
>>> _______________________________________________
>>> Webpush mailing list
>>> Webpush@ietf.org
>>> https://www.ietf.org/mailman/listinfo/webpush
>>>
>>>
>>>
>>> _______________________________________________
>>> Webpush mailing list
>>> Webpush@ietf.org
>>> https://www.ietf.org/mailman/listinfo/webpush
>>>
>>> _______________________________________________
>> Webpush mailing list
>> Webpush@ietf.org
>> https://www.ietf.org/mailman/listinfo/webpush
>>
> _______________________________________________
> Webpush mailing list
> Webpush@ietf.org
> https://www.ietf.org/mailman/listinfo/webpush
>
>
>
> _______________________________________________
> Webpush mailing list
> Webpush@ietf.org
> https://www.ietf.org/mailman/listinfo/webpush
>
>