IETF Logo Mail Archive

Re: [Wish] Authentication for resource url

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Thu, 16 September 2021 17:48 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: wish@ietfa.amsl.com
Delivered-To: wish@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 733973A311F for <wish@ietfa.amsl.com>; Thu, 16 Sep 2021 10:48:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cuf2BOTQhl5H for <wish@ietfa.amsl.com>; Thu, 16 Sep 2021 10:48:22 -0700 (PDT)
Received: from mail-pj1-x1036.google.com (mail-pj1-x1036.google.com [IPv6:2607:f8b0:4864:20::1036]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3278D3A311E for <wish@ietf.org>; Thu, 16 Sep 2021 10:48:22 -0700 (PDT)
Received: by mail-pj1-x1036.google.com with SMTP id n13-20020a17090a4e0d00b0017946980d8dso8064444pjh.5 for <wish@ietf.org>; Thu, 16 Sep 2021 10:48:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=5UA00ixudNnCV+WZeO+/i5H75nstMf0B4NZ5/pQT5K0=; b=ATRNXkPFaVg106yad31jciWaDkyHFNZN5RGDprgJYBZTqJtHdZNgXacgm/JIm/lE04 7B0EgTrlewsrg7thSLrwQypDKiOupbVP5G3iH0o2jk2B/efwOrTplE3J5M2oFaIYYX0D 3RIN110OsHnO/QL+SZeV+jEQ3lKVKmCEZKJ4FSCfyJ6MobFmZhG6WlG+gZ8ilEabx5dg IWJ2/z+WU3H/7av5TxvKuHpjtz3ECDqjZcTErVTCqs2NmbyXEsUls1q3jx97tPdkdc/0 8A1W4ydS6W2gTYbAdj55wWh4Q8i890W03AmKqQdzgd+BK4uglBAoBcfZdXs593Cad3tL sVdQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=5UA00ixudNnCV+WZeO+/i5H75nstMf0B4NZ5/pQT5K0=; b=V8XHyTA5ZMqZvfvLMEiWhbiLMZywCq5GVyuZieMwUSpeY5gNXg13dUCxeo7APWNPzT 553ONDjnjKW4e/CQ3Mzp4ad0J1oBDF0MuuMrHlY4ZTauAUvya7rZAlN0jnxLmYhTYoQl MvzEdswiHeFKCq/5uEgO6UoVy1tv9077FWwvU0nM4+4opmZOEeeG2GAogYMZO/LZOiWJ 0XtapDUvYDEvtzdWyaiiUc6IAwxdpEeVaz/8OMJHZAZJGNe5krbruPzyrrch11pMXcfB A8C/CCqLL5xDzAnB0JksHk2/sQ5j0FhJm5M/Uy53bimk+TwIga8PcD/Ayc/5dmj1s+tT UT0Q==
X-Gm-Message-State: AOAM533/8BpyXaUm/bvBs039MNdYTDG0IWEKTLQZqZve7yIxyJxFQIki RlmvCba3xRGpzc3OfLRaWicE+pDt1y37pnGwcGQyikO1
X-Google-Smtp-Source: ABdhPJwgw/55GtiFuZX2Svzop1ZrU/87KxhQC6TvOti5V3IxZSbromc4l8EQzJS8wpRotwcTe1GWDocSAIbnqcQr1/g=
X-Received: by 2002:a17:902:d2c8:b0:13a:54b2:81c9 with SMTP id n8-20020a170902d2c800b0013a54b281c9mr5670785plc.21.1631814500963; Thu, 16 Sep 2021 10:48:20 -0700 (PDT)
MIME-Version: 1.0
References: <CA+ag07bjtS1Ucw1BZ5qQ_jJFfXbfQ3-hzDgxfkV1APhV1JZMnQ@mail.gmail.com> <CAABnt0M2Vg-9=SwX=O1mFbyYTS4b7ewmevW2qzMf17fsagoc2Q@mail.gmail.com> <CA+ag07aJKFy2s_UD0L-PaGHNwA9XH6Khz+0tReOMMcweJ0Q0hQ@mail.gmail.com> <CAABnt0MSUuxYK1CvOQUmC-a4b_U9m7YQ+vhXfjaaDxFZE+_JOQ@mail.gmail.com> <CA+ag07bb5WfoUJRkQt37nYtkmtEi=Kpp44ihVNGRd=OytakADg@mail.gmail.com> <CAABnt0PXKPejtywBDizx_Og0d0qPp6qa6cXXsCjBrbTQHN9pKg@mail.gmail.com> <CAMyc9bXUXR5nrxoQsQwDqE46sHWN_8vicG_c53ZruRbC0gfeMw@mail.gmail.com> <877dfk9fil.wl-jch@irif.fr> <CA+ag07ZxJF95xd7y_ToRRNJmbRboRR56t=mnW+nGYFqpAkH61g@mail.gmail.com> <8735q72yo4.wl-jch@irif.fr> <CA+ag07Z6_Nd2VvWG4HyuXK=E3u2xn8a2a_xVCEWk3_yyfQSp3A@mail.gmail.com> <87r1dr89mr.wl-jch@irif.fr> <a12adb1d-da65-8290-7d91-d911aa0aa6cc@nostrum.com> <87ee9qyyum.wl-jch@irif.fr> <87bl4uyxr4.wl-jch@irif.fr> <20210915121851.67088a25@lminiero> <HE1PR07MB4441791F1620CB6B6B9C5D8893DB9@HE1PR07MB4441.eurprd07.prod.outlook.com> <87y27xd6tl.wl-jch@irif.fr> <bd8bab3f-2bc9-1827-0184-2b5d1a5fb68e@nostrum.com> <CAABnt0MKd-MH1L4V=hVuhYJHHHv-nco98-0pTDzVhS04Wk2o2w@mail.gmail.com>
In-Reply-To: <CAABnt0MKd-MH1L4V=hVuhYJHHHv-nco98-0pTDzVhS04Wk2o2w@mail.gmail.com>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Thu, 16 Sep 2021 19:48:09 +0200
Message-ID: <CA+ag07bzhoFfX4vMxPOtXvNK+f=zirCbDHa13Ucctx0oiMD88Q@mail.gmail.com>
To: Matt Ward <mattward@mux.com>
Cc: Adam Roach <adam@nostrum.com>, WISH List <wish@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000ab5bb305cc206bd9"
Archived-At: <https://mailarchive.ietf.org/arch/msg/wish/KWfIGmxKrudMTJ-ryaR38R9kkPU>
Subject: Re: [Wish] Authentication for resource url
X-BeenThere: wish@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: WebRTC Ingest Signaling over HTTPS <wish.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wish>, <mailto:wish-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wish/>
List-Post: <mailto:wish@ietf.org>
List-Help: <mailto:wish-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wish>, <mailto:wish-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Sep 2021 17:48:28 -0000

I think that the spec must mandate authentication to be supported on the
client side and that its usage is optional. Meaning that all clients must
implement it, but allow the token to not be set (and therefore the header
not be sent).

Best regards
Sergio

El jue, 16 sept 2021 a las 19:43, Matt Ward (<mattward@mux.com>) escribió:

> I would still reiterate that I strongly recommend that the spec does not
> prohibit the lack of an Authentication header and therefore in some way
> permits building an experience really close to that of RTMP such that we do
> not have to retrain broadcasters. I think keeping things close to RTMP will
> help this spec see better adoption in the ecosystem. I really do want this
> spec to succeed and I do believe that keeping the requirements as minimal
> as possible will help speed up adoption.
>
> The question here I think should be, is WHIP as a spec actually incomplete
> and not independently useful without a specification of authentication? Can
> (and should) that be covered in optional extensions of the base spec
> that makes no mention of authentication?
>
> On Wed, Sep 15, 2021 at 12:11 PM Adam Roach <adam@nostrum.com> wrote:
>
>> On 9/15/21 13:36, Juliusz Chroboczek wrote:
>> > if we expect WHIP to run in cleartext
>>
>>
>> We can't. Our charter doesn't let us define WHIP over HTTP. We're only
>> allowed to define WHIP over HTTPS.
>>
>> /a
>>
>> --
>> Wish mailing list
>> Wish@ietf.org
>> https://www.ietf.org/mailman/listinfo/wish
>>
> --
> Wish mailing list
> Wish@ietf.org
> https://www.ietf.org/mailman/listinfo/wish
>

v2.8.7 | Report a Bug | By Email