IETF Logo Mail Archive

Re: [Wish] Authentication for resource url

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Thu, 16 September 2021 18:11 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: wish@ietfa.amsl.com
Delivered-To: wish@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D22A03A31D6 for <wish@ietfa.amsl.com>; Thu, 16 Sep 2021 11:11:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cuAS6MhdTD8d for <wish@ietfa.amsl.com>; Thu, 16 Sep 2021 11:11:11 -0700 (PDT)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CB4A3A31D5 for <wish@ietf.org>; Thu, 16 Sep 2021 11:11:10 -0700 (PDT)
Received: by mail-pl1-x62f.google.com with SMTP id n4so4396366plh.9 for <wish@ietf.org>; Thu, 16 Sep 2021 11:11:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=N2dLvn0DEo6CLlf8MVnWkBeZdgbEMUb/0d9QgCccpqw=; b=avWqtFv/atgcZzwmXSAGb8qHfnMahS0yQY/Dfvs6Woh8SFLfNXOoUJVeR+noA6tubC 44Lk7d72f69BvEUPGhyEOS+Kj4eeR8CPnQW31bFHnpwSiW1EPHlOhLIjgAdGlg0sTQzo 1XO4TSZUVQ73UjbT1iufoP65rbUxXSasMJiTZWjWmw8PkEOOeE2oAPRKU3JQ64WMKYTk R3dGGfQSQqo5uLnEOpe7Kl8kKuHvScaJRL4yNlXWtX7T2oKnfWT2mOqctBBne4q0bncb aBTtLKtSD21Wd7TCwjmCEpQTLeAhVGcSiEYuWjA9TXrUra5GhjeZbazrhCoHjANABLBP gAOw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=N2dLvn0DEo6CLlf8MVnWkBeZdgbEMUb/0d9QgCccpqw=; b=24gsqi5K7kexyMWfF5SpFqFf3Liv8pf1lhNobS8rSsHm2fzd9KsPJmPYM5Y4bLvMI1 CPbdrRYb9ExjyDaL8kpQrx8gylr+popRhhpbGgppUhWPesx0SNcBwNXrW/9foQmD6XWd rA+RDIY8u7SEZKlDOIYhrO27trpDkuaTThZcwLl0Y/tQaiKBO6r4UuCFnFCq1rSayB70 8+gTir0eo8QfQ+PXR/b0znB0LC8DunIdj7COf3NPfcj0gyLe2Vxx40iVStbggbZPIhPi 9sRBZsH8i38MEIV0WLClmp6ygxV24HYrNDPx+IxwetBC/JR4b5J5N5IHjy/NR9H5i4D+ NzDA==
X-Gm-Message-State: AOAM530FtxjX0Ypat5p3p9A+Q3UWlI4QOp8NKzy9DTkypJZQGe+d+I37 Gmr9ZEoZU3iyrfKf7yn1yypbqlZpgAJwkWv56+Q=
X-Google-Smtp-Source: ABdhPJzW46ERXSC+C5fp7PkAcMoFTiIXCpL/hui55t0KYAGcWKBI6KKR2T6AGy/NxJTjYz7kNg2ijh2lyDdT3ACZ00E=
X-Received: by 2002:a17:902:d2c8:b0:13a:54b2:81c9 with SMTP id n8-20020a170902d2c800b0013a54b281c9mr5753977plc.21.1631815869241; Thu, 16 Sep 2021 11:11:09 -0700 (PDT)
MIME-Version: 1.0
References: <CA+ag07bjtS1Ucw1BZ5qQ_jJFfXbfQ3-hzDgxfkV1APhV1JZMnQ@mail.gmail.com> <CAABnt0M2Vg-9=SwX=O1mFbyYTS4b7ewmevW2qzMf17fsagoc2Q@mail.gmail.com> <CA+ag07aJKFy2s_UD0L-PaGHNwA9XH6Khz+0tReOMMcweJ0Q0hQ@mail.gmail.com> <CAABnt0MSUuxYK1CvOQUmC-a4b_U9m7YQ+vhXfjaaDxFZE+_JOQ@mail.gmail.com> <CA+ag07bb5WfoUJRkQt37nYtkmtEi=Kpp44ihVNGRd=OytakADg@mail.gmail.com> <CAABnt0PXKPejtywBDizx_Og0d0qPp6qa6cXXsCjBrbTQHN9pKg@mail.gmail.com> <CAMyc9bXUXR5nrxoQsQwDqE46sHWN_8vicG_c53ZruRbC0gfeMw@mail.gmail.com> <877dfk9fil.wl-jch@irif.fr> <CA+ag07ZxJF95xd7y_ToRRNJmbRboRR56t=mnW+nGYFqpAkH61g@mail.gmail.com> <8735q72yo4.wl-jch@irif.fr> <CA+ag07Z6_Nd2VvWG4HyuXK=E3u2xn8a2a_xVCEWk3_yyfQSp3A@mail.gmail.com> <87r1dr89mr.wl-jch@irif.fr> <a12adb1d-da65-8290-7d91-d911aa0aa6cc@nostrum.com> <87ee9qyyum.wl-jch@irif.fr> <87bl4uyxr4.wl-jch@irif.fr> <20210915121851.67088a25@lminiero> <HE1PR07MB4441791F1620CB6B6B9C5D8893DB9@HE1PR07MB4441.eurprd07.prod.outlook.com> <87y27xd6tl.wl-jch@irif.fr> <bd8bab3f-2bc9-1827-0184-2b5d1a5fb68e@nostrum.com> <CAABnt0MKd-MH1L4V=hVuhYJHHHv-nco98-0pTDzVhS04Wk2o2w@mail.gmail.com> <CA+ag07bzhoFfX4vMxPOtXvNK+f=zirCbDHa13Ucctx0oiMD88Q@mail.gmail.com> <CAABnt0PzPJiMxUj+yNr29YB8VfS41501B0c4gDZaqzLxh-u=Hw@mail.gmail.com>
In-Reply-To: <CAABnt0PzPJiMxUj+yNr29YB8VfS41501B0c4gDZaqzLxh-u=Hw@mail.gmail.com>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Thu, 16 Sep 2021 20:10:57 +0200
Message-ID: <CA+ag07Z8ReKUiPzRTgaxHhD4F2ZtNBRdCwCb6mJOnUYgC8qH-w@mail.gmail.com>
To: Matt Ward <mattward@mux.com>
Cc: Adam Roach <adam@nostrum.com>, WISH List <wish@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000399ef305cc20bd40"
Archived-At: <https://mailarchive.ietf.org/arch/msg/wish/oRtv3Qv7Am_5-hW2-DE-KBqDp8U>
Subject: Re: [Wish] Authentication for resource url
X-BeenThere: wish@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: WebRTC Ingest Signaling over HTTPS <wish.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wish>, <mailto:wish-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wish/>
List-Post: <mailto:wish@ietf.org>
List-Help: <mailto:wish-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wish>, <mailto:wish-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Sep 2021 18:11:17 -0000

Because if not it won't be implemented by clients, and we won't be able to
use it in our servers even if we want it

El jue., 16 sept. 2021 19:49, Matt Ward <mattward@mux.com> escribió:

> Why must it be mandated?
>
> On Thu, Sep 16, 2021 at 10:48 AM Sergio Garcia Murillo <
> sergio.garcia.murillo@gmail.com> wrote:
>
>> I think that the spec must mandate authentication to be supported on the
>> client side and that its usage is optional. Meaning that all clients must
>> implement it, but allow the token to not be set (and therefore the header
>> not be sent).
>>
>> Best regards
>> Sergio
>>
>> El jue, 16 sept 2021 a las 19:43, Matt Ward (<mattward@mux.com>)
>> escribió:
>>
>>> I would still reiterate that I strongly recommend that the spec does not
>>> prohibit the lack of an Authentication header and therefore in some way
>>> permits building an experience really close to that of RTMP such that we do
>>> not have to retrain broadcasters. I think keeping things close to RTMP will
>>> help this spec see better adoption in the ecosystem. I really do want this
>>> spec to succeed and I do believe that keeping the requirements as minimal
>>> as possible will help speed up adoption.
>>>
>>> The question here I think should be, is WHIP as a spec actually
>>> incomplete and not independently useful without a specification of
>>> authentication? Can (and should) that be covered in optional extensions of
>>> the base spec that makes no mention of authentication?
>>>
>>> On Wed, Sep 15, 2021 at 12:11 PM Adam Roach <adam@nostrum.com> wrote:
>>>
>>>> On 9/15/21 13:36, Juliusz Chroboczek wrote:
>>>> > if we expect WHIP to run in cleartext
>>>>
>>>>
>>>> We can't. Our charter doesn't let us define WHIP over HTTP. We're only
>>>> allowed to define WHIP over HTTPS.
>>>>
>>>> /a
>>>>
>>>> --
>>>> Wish mailing list
>>>> Wish@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/wish
>>>>
>>> --
>>> Wish mailing list
>>> Wish@ietf.org
>>> https://www.ietf.org/mailman/listinfo/wish
>>>
>>

v2.8.7 | Report a Bug | By Email