From nobody Mon Jul 4 21:24:27 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6AC912B02B for ; Mon, 4 Jul 2016 21:24:25 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3UWqpsBAueXu for ; Mon, 4 Jul 2016 21:24:23 -0700 (PDT) Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0089.outbound.protection.outlook.com [104.47.93.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B5DE12D0B4 for ; Mon, 4 Jul 2016 21:24:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=ivE9qS1G/ihyRp+eANoHRqpAayz+zQjgJVAcwaSUFeo=; b=WPCVYngyEZUFQYjj/Tonmifk+K6LwP4YdaC0xWU+qRoH9HzEDHe49hNosZSiNI+d/mSZv90Fe+ocGe5JzQYbaz/BGJnKQOihw76SSo3UJtfbMK3MhIUfGFYWmCklRQdev5P/kxpbX8OQjIE7nIiHkb1ZTkz/o/fnRZ4ZxAMVXuQ= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0585.jpnprd01.prod.outlook.com (10.167.157.15) with Microsoft SMTP Server (TLS) id 15.1.534.14; Tue, 5 Jul 2016 04:24:19 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.015; Tue, 5 Jul 2016 04:24:19 +0000 From: =?iso-2022-jp?B?GyRCQmc0ZDQyGyhC?= To: Julian Reschke , Yoav Nir , httpauth mailing list Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/A= Date: Tue, 5 Jul 2016 04:24:19 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> In-Reply-To: <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [218.42.152.147] x-ms-office365-filtering-correlation-id: 58a28af5-fc08-4bcb-b340-08d3a48c3be4 x-microsoft-exchange-diagnostics: 1; TY1PR01MB0585; 6:SK8goANn6y5VallodpQqfdpzmGrqOFkW8jsKq+SvIVDUHwUV6Lna0IJmZu/s18/hLltbbiq+xZDDz7M2X7S+PDief+Nw62XBoWaUen+zBm/qKtm5tTCqFp3yJ/yUpfAGyLsYozCoqCK+N2rLMuqdR7ZiruOZsAAVP7AkonOAOd9aUgU6XriDmKiYRuo0bzydyNsemQCKMTK0wajs9fQx68uAPIY912QJOx+Y3xDClmjfby7nQpsNGo88epnR4Q1KzDbWPcZCslVK4sJbOw5kJFpC0KPs0nGniGbmHuw1pNNnDv/ogEotV7SwCaxJoZYlZ3YG+kbGZ+S1kPujDCCVCA==; 5:5sHyEn775hyKdaFpyAFQRzdL4XRjH02BdQ0XTJmjkXc+9d5ElzfaVcfjVBFf0miftQ0is7kDu5Ly8eKY31Ha5ytKyGDiKZUPU98ZanL26/y71SgfUdULoHIjUHgkei3lqBWHiyE4ues4cqV2isnc7A==; 24:s5xlebG6w/64/zh4t5S30nEYulHNP3m3HVZD8ya1V7c0LRScIzmYeCK7Oi+r4A1lnMoLgpuolhtAOg/GTb7VEZdHuE3TEcVK/1NiSimZC8g=; 7:w6cfLlCe+z4bRROhghU5rfi6id/LDkqxcenPcmHGlunIdNSiRDhzM9ZbpyC9AuuG1+1BFj1Lzz7EvTnkJYxsuwOsMmKjTt4bwcs4rYAbXyxu/a8ndllUIBRkl1nH2KPaG5lwoHXe6m2zelKHQaVwxWd1aDU+SZF3urDGG7AbGkW820pEjtS38IGz0+FuhEchUBc9ifQzoTm+azy08Necahm7b93LKuzRuZ4Vn+1iyJl18lFIXncPSf7MmZCtRcc5 x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0585; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(275740015457677); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0585; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0585; x-forefront-prvs: 0994F5E0C5 x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(45984002)(51444003)(199003)(69234005)(189002)(74482002)(5002640100001)(97736004)(106356001)(106116001)(105586002)(3280700002)(3660700001)(189998001)(107886002)(8936002)(92566002)(3846002)(74316002)(305945005)(102836003)(6116002)(586003)(85182001)(77096005)(87936001)(68736007)(15975445007)(7846002)(101416001)(86362001)(2950100001)(2900100001)(9686002)(66066001)(7696003)(7736002)(5003600100003)(11100500001)(10400500002)(19580395003)(2906002)(5001770100001)(19580405001)(76576001)(122556002)(8676002)(54356999)(76176999)(81166006)(81156014)(50986999)(8666005)(33656002)(7059030); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0585; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Jul 2016 04:24:19.5381 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0585 Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 04:24:26 -0000 Dear Julian, Thank you very much for very valuable comments. I reflected most of your comments into the draft and the draft is now on=20 https://raw.githubusercontent.com/yoiwa/httpauth-mutual/master/http-auth-ex= tension.txt I'll submit it to IETF around tomorrow. About three points which seems important... [1] > b) this introduces a syntax for private extensions that is awfully simila= r to > the "x-" convention that we just deprecated a few years ago... I'm of course aware of the discussion on "x-dash-considered-harmful", and the current specification carefully follows the practice defined in RFC6648 (BCP178). In particular, it treats domain-based keywords "just as a namespace", which is similar to the SSH algorithm specifiers. The revised draft clarifies that the "official" extensions can also use domain-based keywords if they want. ("x-" is especially considered harmful when it requires to=20 handle them specially, differently from non-x things.) I think that, as an extension point, it is important for developers to easily deploy their experimental ideas to try. Another idea is to lower the IANA registry barrier to just "first-come-first-serve", but it may let IANA process many trivial (almost garbage-like) registrations. [2] > I'm not totally convinced that a new header field is needed here? Is > there a reason why sending "WWW-Authenticate" with a 2xx response > wouldn't work? >=20 > (And yes, we probably discussed this several times already, but it would > be good to summarize the outcome over here) I'll add some text regarding this. [3] > FYI: I'm in the process of revising RFC 5987, and that ABNF production > is going to be removed. Seems we need to coordinate here. Can you tell us some more detail about this? May be we also need to coordinate with the Chairs about the scheduling. --=20 Yutaka OIWA, Ph.D. Leader, Cyber Physical Architecture Research Group Information Technology Research Institute National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: , OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5= ] From nobody Tue Jul 5 03:08:59 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CBC512D0DA for ; Tue, 5 Jul 2016 03:08:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0Uap1vnmZr2V for ; Tue, 5 Jul 2016 03:08:57 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B1A2D12D17B for ; Tue, 5 Jul 2016 03:08:48 -0700 (PDT) Received: from [192.168.1.123] ([5.10.171.186]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0LhNwC-1bgHta3bc0-00mXhi; Tue, 05 Jul 2016 12:08:43 +0200 To: =?UTF-8?B?5aSn5bKp5a+b?= , Yoav Nir , httpauth mailing list References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> From: Julian Reschke Message-ID: <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> Date: Tue, 5 Jul 2016 12:08:48 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=iso-2022-jp; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:6xV2A1Gr6ZvlZywXzOn9grYkhEfR+yvmGL/wIrGIOJ9YKsxxk2i QOxGvTmyVjdosJUVlNRMwuCdJ0/jiqHSvneyhyFuqSGOkoT8xGkbqBpfEcQEf89dA62uhVY LaKceamM9i5KFI7DjLFvHOk25rFmv1cOL4P17U6xkKFc3BktdGYTAwtYpeC2dWWPUcfySVJ yMXwGbLkqTqRuvw48ljcA== X-UI-Out-Filterresults: notjunk:1;V01:K0:4kCqX/Gijj0=:t6ZiUH6iAq3jXMhlmya1T8 yaOQW53DMNQ4uOA6E1XKJIGF9y+19LVQx09jECSlydHq58VjLQXpT4lyqIqT+qc4t0RNv14R/ n88JmRrW54tZdZBG3+zuplKUylvhqnLhz8Ue9tRKVvNnQgrZQ/eGSnqyBmxxnYv3mfRLxmqiY eMjVXV0ojTT+KZn42+Jq0TPsKU21hHihaepTuKw0Ksxz/e6sX50VEVnrQiBdD0IbKCTf+zAzH 78X1OhGsyyLYCZUxBpwh4uEo5I8HAVl/PbHxzXzwGKJdY5E0z5AuGVd+YAYzJ03fVmeUqWrFq /bo2VZ3IGAuPmvoELo7ogXnegHP+Qj3cOGz/k6F6MaoWxgRU2vHgV5T+0/qdl/g/vc05Ce1ug Md3tQR3E6OgJbQ/KHaV6etKFHg5ySslgddS566SOjz58xMS6jcMAdwOTm0mT3O27bxByLugcI siJw/fIjZsmorXIoYPhq65H1v2rpmlynAZMp3tR3l2kfNmqmwQobZRU6lBl+RNfhgrhRpAnY2 wh7hmdVXdRSJ4zUnaUDETyXRO8UMQ6hwJi+kDSHxcicn42S8T3rU38QWeUbBqDhGKuUNxax+N OyBOBaKtAdj4P3AaKRwpE5cvpBltNEog9LOdb9QMixgO9Hx/0hhaHJz3tY/zoGiwQpR0Td5Q3 wyquRS3FjPpVZF9hg0rdkvCjCfCuKG3UnGCtFOfMFhRimigj3e8HeglVOo2WmOKNueA9yF8Vu Zw08rEM2YdzzQYig685qorfMqZkSU1eUFtSCkrtZVEZGd6k8VM01w3Otk1gwC01mSfosHtFRv 2FftR33 Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 10:08:58 -0000 On 2016-07-05 06:24, $BBg4d42(B wrote: > ... > [3] >> FYI: I'm in the process of revising RFC 5987, and that ABNF production >> is going to be removed. Seems we need to coordinate here. > > Can you tell us some more detail about this? > May be we also need to coordinate with the Chairs about the scheduling. > ... When I wrote RFC 5987, I put too much emphasis in being consistent with RFC 2231 and in the ABNF. The plan for RFC 5987bis is that it'll just define the grammar for the field *value*. I'll stay away from defining and redefining parameters in general. Best regards, Julian From nobody Tue Jul 5 04:26:19 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9222C12B050 for ; Tue, 5 Jul 2016 04:26:18 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id U83Dp7VBq62w for ; Tue, 5 Jul 2016 04:26:17 -0700 (PDT) Received: from mail-wm0-x22f.google.com (mail-wm0-x22f.google.com [IPv6:2a00:1450:400c:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C838212B019 for ; Tue, 5 Jul 2016 04:26:16 -0700 (PDT) Received: by mail-wm0-x22f.google.com with SMTP id a66so148325741wme.0 for ; Tue, 05 Jul 2016 04:26:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=yzawFNGi2PtW0LwOH/7w3n7jX36+rwcpaOEmxpt8s44=; b=Z/03M06JjrKXqLS99JEkdODEMCWK9YjuEtST4JbY3kL+55nbGWvN21oY1DTueV+TNS p6oRG99y+rvyHwQ+U2nLrBIe1ERCoee4fdyLFO7qp9j8Jl8nnaRI/9HjS5K5jow8Bcut IGGpEQRcaCQbR2mlWyUoFgD1I00qRPAUIdnmBPEEgpHCYCTrpWXjaKdsKuY05FO3xusN 6cbAo8uw1IWERR2/5enKIh7BStXQeTS1N0owjaQ4IF7NIBtYnbvAuR+6BEj9glLEp2sK Vc3wikUfU6JUY0k4DFGJfHNdVIdC9+1Cxs/dtLdQGgmAkXqpgqWKmQZYOkVj90YNBQIu P2MQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=yzawFNGi2PtW0LwOH/7w3n7jX36+rwcpaOEmxpt8s44=; b=EgXnqhUJzEjQekiE2UMcZp8rPkRQhq1XlCoEiyFANEjXOIx8cjMn8ECwasnsBXSo/8 G1rXDTZEerT1ibyAnlU/vVMrKzuDZhzyO7Otj4PSOBQr649NnqTgQU1Gn6efgynrfXs8 9w0+spRU98MHTxJQzRAE5e9ralZPv8rWLCAW9YkHidqVyNIkqVRXro+BoybdslKRGapr lrzKu53a1BeDB2CKcwIXQWGH8C4CXhuWbl43jbdji5Pyfp9xvZTDw44hLQ/P5Nw4aEfn I7WiuHY75LJh/KA+lI+wteeWYbvuO9ScasPjjVBo7cPrtvCPrvJp2sdt5vLF3q2y0z+Y TMGQ== X-Gm-Message-State: ALyK8tI1fHkmCarW0RmlOAUXremRqfxpHFYYvTCrWhSb6peo2X8R1VUBHKfLYYaZueUXHw== X-Received: by 10.28.14.75 with SMTP id 72mr14698144wmo.85.1467717975340; Tue, 05 Jul 2016 04:26:15 -0700 (PDT) Received: from [172.24.249.249] (dyn32-131.checkpoint.com. [194.29.32.131]) by smtp.gmail.com with ESMTPSA id e16sm3076135wma.12.2016.07.05.04.26.13 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 05 Jul 2016 04:26:14 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Yoav Nir In-Reply-To: <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> Date: Tue, 5 Jul 2016 14:26:12 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> To: Julian Reschke X-Mailer: Apple Mail (2.3124) Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 11:26:19 -0000 Hi, Julian > On 5 Jul 2016, at 1:08 PM, Julian Reschke = wrote: >=20 > On 2016-07-05 06:24, =E5=A4=A7=E5=B2=A9=E5=AF=9B wrote: >> ... >> [3] >>> FYI: I'm in the process of revising RFC 5987, and that ABNF = production >>> is going to be removed. Seems we need to coordinate here. >>=20 >> Can you tell us some more detail about this? >> May be we also need to coordinate with the Chairs about the = scheduling. >> ... >=20 > When I wrote RFC 5987, I put too much emphasis in being consistent = with RFC 2231 and in the ABNF. >=20 > The plan for RFC 5987bis is that it'll just define the grammar for the = field *value*. I'll stay away from defining and redefining parameters in = general. >=20 I=E2=80=99m not sure I follow what kind of coordination is needed here. = IMO the -extension document is ready to go to IETF LC (after the authors = make the necessary changes you=E2=80=99ve already discussed). I think = it=E2=80=99s going to be past the IESG before 5987bis is ready. Do you = see any need to make this document depend on 5987bis instead of 5987? = Will making this change require any changes to the ABNF in the document? If not, I think we can proceed with a reference to 5987, and then when = 5987bis obsoletes 5987 it will still be fine. Am I missing something? Thanks Yoav From nobody Tue Jul 5 04:39:08 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF04812D0C9 for ; Tue, 5 Jul 2016 04:39:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vNR8PvPfQEtc for ; Tue, 5 Jul 2016 04:39:05 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA36612B050 for ; Tue, 5 Jul 2016 04:39:04 -0700 (PDT) Received: from [192.168.1.123] ([5.10.171.186]) by mail.gmx.com (mrgmx102) with ESMTPSA (Nemesis) id 0MLR30-1bJqj90BBi-000a6q; Tue, 05 Jul 2016 13:39:01 +0200 To: Yoav Nir References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> From: Julian Reschke Message-ID: <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> Date: Tue, 5 Jul 2016 13:39:07 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K0:WB9bk6lJEFfwDAfbt0U4kfx65KIIw9/lBHfxUxMmHIyLM1OFhJX ZmC038r1TTrNHCtWJn//wIQI5n+SxWKCV7Va2MWTxoIQ4w/EDc7+wtqtDRT1tSmMYbxvTwi OB3gLr/Nz7qwlp9DfWl9WaVK65xYhiJBUTOe3O+t0MYAKHEy5mS2wweQqK5RxwtmiiclA6h LZ24cW2r2wwqkWs4SRcHg== X-UI-Out-Filterresults: notjunk:1;V01:K0:BftBqdjuuLA=:Tn2iZvdHOiG8cPfihlZqZd eosTPF2kaQlDLIMhjimNGeJAphn5yJhCwTf2Ky7/QFKeWeuFtbspRTX9/Af7zaA4QEPdhJHZ0 WAwA5eV1Vt8Xx4nI5UYTf+A8cr4fCYBc6FE3Y7s0bIffXZ5GyNZCbEBaoEZndI3LZUkI72d44 gBWwMVNWSZg4V7T3/PEH+DtX9Uxv/rsIhbDe4ZyFEJONVPuX1Wsokd2CdDmXEviq3noOTiCw6 6FP6UAco0KnowfYXKzfpKSJSaGJiHzcaxKQkP/HXUoMIrCT/s6h1WVqFh8pYoBAEJMCjj5LN4 D+eiUqfOzLSysZIIRRP2FmxCLL66fRcLRIIYONHt+nhAh0LvHWvaX4atIjseF4w2muSbVx4Nk g/xCa+YjOuFrhK6M+7KTLOj3+gP0E84gMTuKpYcDHkpHbIPxzaeyPE3bicobGxKV3ESXzKT4t Bu9hbdzn7k0KxYWCz3BsF0yS/Nsj3WXEhvGmKtK/JD5It04oMzN+41y/NXDrx0CuLIxIKXqsM k/ZWcjH6uvf/mwKeD5MaCZX3HbEll2NWnZZrtixuYcUm4Riq8W8kgYz+rcLa3rYvEqMd4QPSb HvFk07QBLDOmb5AZZ0sHrTKD9E8fQNoSvUvK5ycMltfGK/3a/+jxV8YKV0SNnSchgZtroKTQa f55n5LvzGsK1KDyikxIcBYUiM9kLWpZGXdLgyynEZIkRxprKlmYkF8fp6TYSzKbvYC+mckeTY deudLZHLmPEPWJm0Hr5HqD2g+Vs80QIzK/fF0TTjEWchvkNMY6At1Ezdhgx8TT/ff1Vmxuv32 Pe4iaPo Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 11:39:07 -0000 On 2016-07-05 13:26, Yoav Nir wrote: > I’m not sure I follow what kind of coordination is needed here. IMO the -extension document is ready to go to IETF LC (after the authors make the necessary changes you’ve already discussed). I think it’s going to be past the IESG before 5987bis is ready. Do you see any need to make this document depend on 5987bis instead of 5987? Will making this change require any changes to the ABNF in the document? Yes, IMHO it would require changes. > If not, I think we can proceed with a reference to 5987, and then when 5987bis obsoletes 5987 it will still be fine. Am I missing something? Technically it would still be fine, but it would have a normative reference on an obsoleted spec. I think it would be better to coordinate, and have this new document reference 5987bis. Best regards, Julian From nobody Tue Jul 5 08:09:49 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC25912D626 for ; Tue, 5 Jul 2016 08:09:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yjih2w4nOaA4 for ; Tue, 5 Jul 2016 08:09:46 -0700 (PDT) Received: from mail-wm0-x229.google.com (mail-wm0-x229.google.com [IPv6:2a00:1450:400c:c09::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D22ED12D629 for ; Tue, 5 Jul 2016 08:09:44 -0700 (PDT) Received: by mail-wm0-x229.google.com with SMTP id r201so156914735wme.1 for ; Tue, 05 Jul 2016 08:09:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=bpQ301HoiSarLQa4uHmuh17QUqsF4L2veh+PbrOCtmg=; b=wf7bhBbEQJNJa8cVYrdROnPzcXyzNarSCtp2U8Kl5XRfz9idNFoUuBUxQBZ+dVRxKn RbYwH3U3TjVzCyFj4qWRoM17t1qYPfTrudX+K/RrLXFUuFQa6W5YyhmmpldroA8hQaMB DRW+K/qpY8Qw6LSbHvMh7A9krayAlXCl29a1C1fu8L1DnoYLzBqaWklT/Aj+JnV52p97 yXNGflWl7zZJa8WQoC4wLZgG8Mjtp0X028zS3BYRSP3AvfM4KjK1dLvo4NzlTn4/gJEQ Mrv7U/Cs4q1Lz5xcN6VMg7wRTVwSLjBMn32SPlX5NvR6veJiUcs7/HLhxx28WrzzW2+S 9eCg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=bpQ301HoiSarLQa4uHmuh17QUqsF4L2veh+PbrOCtmg=; b=QxPNHFMzPKrO59VazyxvbmoUXVPwOtdfCgUHEteFAM8eig4R0JsorXrqiDSG8nAmZa LM0LsoyuMfP6NZf9/D89EONMYXc581hdkNYFev2EFo/mIdhJL7ZKOU+TTNaNL0/WMuAf iK45EIyWCpEJHhqsKhbqp2JvTVYPj14mYGPDdz6FLlhi5/2TWK9lfPcSK4OnEtSEnHij tvleUwWrMcKl7KRQIqvXxvy2h9OSyFN+XK8EAa4bqK2NLCEiz2N2VWpPYUfPuS6egqbq SRS01qfRNJ6hFsL5bXfvUNVbT5YaT44q4Fi5BhypjuaO8Mx4gFbnCrRTb05q9zpDUAWX XvfQ== X-Gm-Message-State: ALyK8tI8/Cx3UlEWP30aED5FcH/6MouImKTb4xtQIZRSMHQomj1SQ+ialdGvMJ+hHEpP3A== X-Received: by 10.194.177.230 with SMTP id ct6mr15683051wjc.170.1467731383182; Tue, 05 Jul 2016 08:09:43 -0700 (PDT) Received: from [172.24.249.249] (dyn32-131.checkpoint.com. [194.29.32.131]) by smtp.gmail.com with ESMTPSA id r190sm3249766wme.17.2016.07.05.08.09.41 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 05 Jul 2016 08:09:42 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Yoav Nir In-Reply-To: <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> Date: Tue, 5 Jul 2016 18:09:40 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> To: Julian Reschke X-Mailer: Apple Mail (2.3124) Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 15:09:49 -0000 > On 5 Jul 2016, at 2:39 PM, Julian Reschke = wrote: >=20 > On 2016-07-05 13:26, Yoav Nir wrote: >> I=E2=80=99m not sure I follow what kind of coordination is needed = here. IMO the -extension document is ready to go to IETF LC (after the = authors make the necessary changes you=E2=80=99ve already discussed). I = think it=E2=80=99s going to be past the IESG before 5987bis is ready. Do = you see any need to make this document depend on 5987bis instead of = 5987? Will making this change require any changes to the ABNF in the = document? >=20 > Yes, IMHO it would require changes. OK. Any chance you and the authors can get the changes done before = Friday=E2=80=99s deadline? >=20 >> If not, I think we can proceed with a reference to 5987, and then = when 5987bis obsoletes 5987 it will still be fine. Am I missing = something? >=20 > Technically it would still be fine, but it would have a normative = reference on an obsoleted spec. >=20 > I think it would be better to coordinate, and have this new document = reference 5987bis. >=20 > Best regards, Julian >=20 >=20 >=20 From nobody Tue Jul 5 08:17:14 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54A9612D62D for ; Tue, 5 Jul 2016 08:17:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rruqmFq2wGmB for ; Tue, 5 Jul 2016 08:17:11 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45CA312D629 for ; Tue, 5 Jul 2016 08:17:10 -0700 (PDT) Received: from [192.168.1.123] ([5.10.171.186]) by mail.gmx.com (mrgmx102) with ESMTPSA (Nemesis) id 0M9NIY-1bA1Qj34kI-00Chiy; Tue, 05 Jul 2016 17:17:07 +0200 To: Yoav Nir References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> From: Julian Reschke Message-ID: Date: Tue, 5 Jul 2016 17:17:13 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.1.1 MIME-Version: 1.0 In-Reply-To: <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K0:kg3AIMRJHW8I6uwHxiAwtx/jRt6bdguBkQh+2+TSDJ08c89ZTJb QGld4Y+bRUwoSD5ewDNha7x9/ry1z9Pay9Po6xOKoMEl4c9XzYDoTWqKhjyEObpy7J5/md2 56elqJs9mkvd5J2Rw1YdJeHAffdKtl9GpAQ/QoofL+GVMAF1mEOquXuJZyh2uzwk1Gpb8PW 6WnawiuZBsLsJNv0lFY8Q== X-UI-Out-Filterresults: notjunk:1;V01:K0:rYb/RIN5mbw=:Wv1SPAywEy6zkkLIlw71mM jRY0y2ERAHKHv1P3hHaOZ71+EK3v47zbRGd9kwGSgKrBeWuzLwgTeSLNAbSNn4/EnpVWSgi8Z q/9DwFj6VsZShb/1PTQDS7iMGpIaegMg7v2Gc8AuobWNvyvPs7g5YShkbVBdbMwuTCtDDUE29 U7tRFzuJVRdFbK5JlxPg6wXBOaBogbh478ZUXTaF3MdEzSrZQaUfYXllEx5z7f+OMTsdHX6lx mMkr6fTeWznVipwhaEWFmTX9UHqdrn0PCdP1gV+xMPqcHgJWZyxCxIVAQDgEX2odPLNqLz2Pi x94nLP4Y7bPlglh0mFogUgOA2ZYvJs5Gld1h5pwRjf6FngzzOty02vC8ex6evq5OAlh2z9R2q TRSGJSrwRYRbhRxcwSM+NiQ1cAhNR9kgntxcWBiq1IgUM2tA3qW0Zc2HC2gBiszk2mqUTw5IL 4ZiiqQ8tF3lrx9Mzj8sxEbu+OcMgdT8+oG5xXSTKqbh1yvfM5OBelPeQ3WdiFIXHKF91hejyE K4cbo7webNhFd6QSWwZNQeioR4T8Sb+wyuHF8tAWA/iwKVRcF61YsIhy3hXPm+bowUdVNVN9F YLgVCOLoIegfgIsXkhdIhabvWQbPJ7UlH+wq3B+UrbSjBdgEkU2WGnBpgMLrUcrax/h1syE9k eu3yVqfhSgFgNnpbpXB/oiLysxf5i8WmyM0fm+I/+FtlVACblfbzKSNgvS+RvEsCCGlsloZcx mNREMipVtgjct8vftrbrT47mSqGU417UTv/38kBNhAiythavKyu/DTp5hQTVX2HHAHWvPeiYi OHt5/W0 Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 15:17:13 -0000 On 2016-07-05 17:09, Yoav Nir wrote: > >> On 5 Jul 2016, at 2:39 PM, Julian Reschke wrote: >> >> On 2016-07-05 13:26, Yoav Nir wrote: >>> I’m not sure I follow what kind of coordination is needed here. IMO the -extension document is ready to go to IETF LC (after the authors make the necessary changes you’ve already discussed). I think it’s going to be past the IESG before 5987bis is ready. Do you see any need to make this document depend on 5987bis instead of 5987? Will making this change require any changes to the ABNF in the document? >> >> Yes, IMHO it would require changes. > > OK. Any chance you and the authors can get the changes done before Friday’s deadline? Very unlikely on my side. > ... Best regards, Julian From nobody Tue Jul 5 12:15:31 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDD6A12D1A3 for ; Tue, 5 Jul 2016 12:15:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KhiSQnn5lnUI for ; Tue, 5 Jul 2016 12:15:27 -0700 (PDT) Received: from mail-wm0-x22f.google.com (mail-wm0-x22f.google.com [IPv6:2a00:1450:400c:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5A5912D54C for ; Tue, 5 Jul 2016 12:15:26 -0700 (PDT) Received: by mail-wm0-x22f.google.com with SMTP id z126so87121773wme.0 for ; Tue, 05 Jul 2016 12:15:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=rvW86j0nk+LprMhIr9VWRs7ztu/nmfw5Ps/HmwcXph4=; b=Tw/EhHeUn5m4vLGiE/nubBeonkyGCyAc35WKhgmD1vkdS5SejmzfDd37+l36soys80 bfrWzM8qohLY1vpqTen/MU2S3KB6hQpkZ/Y3z0N4Id6lRydn4opVIyluzr+kXTAafHgF sBxmR482UzY0PEDo3uYyec0VQmv5amdSNgGvei7uoARJs0AyfcSZwlTkgWUsYo7nFp7W yXCmuSP9ywsRQ2Jllngq88SD7pKoDjmgacnCeue7uVGFedHc0F+9evUZU4NGjOBWdro7 u5EVcAGipadkc3cTpl2rEqbtrrUyHWien+rPouOWE0YTKRyVAJEr71crnWQqEq1w3yqa BahQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=rvW86j0nk+LprMhIr9VWRs7ztu/nmfw5Ps/HmwcXph4=; b=RIs1BVOaEh7MlmnIwV20slpB0zdBwE4PUBS6/Oqtjm5nxlzLRwFju5So+EDtDou6Ec vrFgEsxT0QGyD+5IfHpd6VPvDUow/vzcqT+m/+wbqL7cRSs3rACWR2vQuIXbm3pm0vc8 Iv+TB/I0RSsbuP2CsxbMXFoy4C8lVnE0Wga3/6W1zJbELab6BDu+JC1SBKkUDWFwmdlW AFdwmc32DEMhimYuMWUxOPp530AYJFV8/GFdPsV4NKYxwddoIi6oVDTW4EJLR3fnUtwX 4edogCLfJd7tXVWJDq0UhcF4Dq3qtclAUcKikORVfNyg5cOqgCS+U4J/Exj9oTbRrIIY fRcw== X-Gm-Message-State: ALyK8tK1Pv0GQAofrt1Gq8etSeLZFslbKl43l120eevDy0tgfihj8spUwqhaMl0BuIm2rA== X-Received: by 10.28.141.4 with SMTP id p4mr18397458wmd.46.1467746125248; Tue, 05 Jul 2016 12:15:25 -0700 (PDT) Received: from [192.168.1.14] ([46.120.57.147]) by smtp.gmail.com with ESMTPSA id z1sm2631345wjh.14.2016.07.05.12.15.23 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 05 Jul 2016 12:15:24 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Yoav Nir In-Reply-To: Date: Tue, 5 Jul 2016 22:15:22 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: <24F1DDCD-43CC-4FCD-9D4A-4EFF3DBFE981@gmail.com> References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> To: Julian Reschke X-Mailer: Apple Mail (2.3124) Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jul 2016 19:15:29 -0000 > On 5 Jul 2016, at 6:17 PM, Julian Reschke = wrote: >=20 > On 2016-07-05 17:09, Yoav Nir wrote: >>=20 >>> On 5 Jul 2016, at 2:39 PM, Julian Reschke = wrote: >>>=20 >>> On 2016-07-05 13:26, Yoav Nir wrote: >>>> I=E2=80=99m not sure I follow what kind of coordination is needed = here. IMO the -extension document is ready to go to IETF LC (after the = authors make the necessary changes you=E2=80=99ve already discussed). I = think it=E2=80=99s going to be past the IESG before 5987bis is ready. Do = you see any need to make this document depend on 5987bis instead of = 5987? Will making this change require any changes to the ABNF in the = document? >>>=20 >>> Yes, IMHO it would require changes. >>=20 >> OK. Any chance you and the authors can get the changes done before = Friday=E2=80=99s deadline? >=20 > Very unlikely on my side. So what kind of changes are we talking about? Just the ABNF block, or a = bunch of surrounding text? The reason I=E2=80=99m asking is that I think if it=E2=80=99s just the = ABNF we can progress the document with a note to the AD that the ABNF = will need an update, and finish that during IETF last call. Otherwise = we=E2=80=99re delaying by another 3-4 weeks. Of course, considering how = long this has been in process 3-4 extra weeks are no big deal, but why = procrastinate if we don=E2=80=99t have to? Regards, Yoav From nobody Thu Jul 7 06:32:36 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E07E612D75E for ; Thu, 7 Jul 2016 06:32:33 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6n8kBC16i52t for ; Thu, 7 Jul 2016 06:32:21 -0700 (PDT) Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0045.outbound.protection.outlook.com [104.47.93.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0C17F12D10D for ; Thu, 7 Jul 2016 06:32:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Fg1xjHGAyiBLo2DeSL/BzNbVpDFWp8ALcrNeG4GvOZ0=; b=BdIuWmUt9Cj9mfI8RUcj2o37Rzn2PcnC+yu114UO8NbkBVlRDQFrcQLkHkfSMzSQoVIVkLWxEMBd/SEcNmO04nhVBH7cRLIXV0pvEbb1kqU4cIBQMIvsYfbC22kVQ6gfPWFJv/lMPMNaOj7iSdWLgRAG2nUb4ehXeX3v5ZOlWXQ= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0586.jpnprd01.prod.outlook.com (10.167.157.16) with Microsoft SMTP Server (TLS) id 15.1.534.14; Thu, 7 Jul 2016 13:32:15 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.020; Thu, 7 Jul 2016 13:32:15 +0000 From: =?iso-2022-jp?B?GyRCQmc0ZDQyGyhC?= To: Julian Reschke , Yoav Nir , httpauth mailing list Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/CAAGU6AIADSHMw Date: Thu, 7 Jul 2016 13:32:15 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> In-Reply-To: <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [219.67.14.212] x-ms-office365-filtering-correlation-id: 4137af40-5245-4c1e-8b57-08d3a66b1c85 x-microsoft-exchange-diagnostics: 1; TY1PR01MB0586; 6:qOlcvDvr5BVhbUMG91VlJzMxDK9GK3iLbbdYZed+SAsZWUz1lU/QvinBhq74jLhyzU/5fGbPweFuZpJmsU0KmarVhDdOwqCP3VFAfE2YUaZ5/VStGOYjcyVECZzHwaU/JCLbL/ulOZeKN0SfTS4S0Gl3oO29dNq/3h7vtmbwaU5dlaIL5gbkwrlEaMq6l2XpQykFzRrhcirOb6vT7M3NhSE1js6Z9x3GqPsxNlCJjxTcdo3M6Qmloigb7+LH6AHK779Ag7WO87xiQJ9sB4za8R/+jo9EeEY5zvnVZUWtoxErIqxPeFUR/9Ij0cXCYs54dnbzXkqbSfIirBSgNXGtQQ==; 5:dH+/q91Rs6zyGDOB9VDuSz2CwAlOq/ELhRoYtfbBSDTrZTXIhysnT0wqi/p/kSeKSuDzITE/tp4VM1THc2HQ0513aEKPgFKoWroCgiBBvrBlMyX4pwUEzvfckni0WcqS5juBWnNTKSV9Uk8GDlpjlA==; 24:92loPXlQHvKbeUiJeO93gi48La66i78tAUdC0R8PzKLilk3l1vSOyygCoz/5lj0NqQmxX1EGld84TqsV06y4ywpWOwrjyuXobVfLNNi7V4E=; 7:QfTPH1Fl1hVN3mR+PU/eVaWKIcfBV1iyl2jZaf8Wkf3f8UE7WKj5NwSoccgbd1e03ISolJb+SP5rm3yzHFFMzA1YXwNrImgaO8Y6OEpq9rvAKDQL+4RUBtzw1IlzIoYpgojlcqxiJZ8p3sBPFRYb7G3B58EPT3gSPsckf2IYK5caKYTRGyPl/0DARn2oETBu3Hb84WgAJ6A0u1R6im2n6OSEVpqmNlhNw1AcCm+63H9yxe347WceBJ1/puvoiFxl x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0586; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(26323138287068); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0586; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0586; x-forefront-prvs: 0996D1900D x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(377424004)(24454002)(377454003)(13464003)(189002)(69234005)(199003)(74482002)(93886004)(9686002)(7736002)(5003600100003)(7846002)(8666005)(92566002)(3660700001)(3280700002)(76576001)(2900100001)(11100500001)(7696003)(87936001)(189998001)(2950100001)(102836003)(6116002)(3846002)(586003)(5001770100001)(19580405001)(10400500002)(81156014)(8676002)(68736007)(19580395003)(8936002)(81166006)(97736004)(2906002)(74316002)(107886002)(86362001)(66066001)(50986999)(54356999)(76176999)(305945005)(105586002)(101416001)(106356001)(106116001)(85182001)(33656002)(122556002)(77096005)(5002640100001)(7059030); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0586; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2016 13:32:15.1670 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0586 Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 13:32:34 -0000 Dear Julian, My understanding of your message is that you'll just define the value encoding of I18n string, and all RFCs referring it must say, for example, "the value of parameter foo will be encoded by RFC5987bis, like foo=3DUTF-8''caf%C3%89 ." Is it right? If not, please forgive me and skip the rest of my message. If it's true, in that case, I'm *not in favor* of "obsoleting" or "replacin= g" the current 5987 by it, as it simply drops the current feature, not replaci= ng it. Both defining the value encoding=20 And defining the general parameter extension framework is definitely the two existing features of current 5987. I'm relying basically on *the latter feature*. The most important value of the current 5987 is that non-percent-encoded ASCII parameters and percent-encoded 5987-style parameters can co-exist and deterministically distinguished, while keeping ASCII-only use cases wire-compatible. Yes, it's a bit tricky encoding, but it works. If I need to say "this parameter will be 5987bis-value-encoded (so %20 MUST be treated as a space, not percent-two-zero)", it's no better than simple percent-encoded UTF-8, especially with cryptographic operations (which requires binary-to-binary equivalence and thus denies almost all kinds of character encoding negotiations). The reason I accepted to adopt RFC5987 in Fall 2014 is that consistent support of it would make better promotion for some future "common libraries", you favorite term,=20 to transparently support internationalized HTTP authentication. It's not only for "my" proposals but also for all future proposals. Without the tag extension framework part, I find little value for it. More to say, should you say it, I strongly think that you should=20 say it before I *did* accept the proposed use of 5987 (it was proposed by y= ou!). If I knew your plan at that point, and if only the value encoding part is defined in 5987bis, I have no reason to adopt RFC 5987 *and 5987bis*. I'd simply chose to use simple percent-encoded UTF-8, without any charset t= ag, It's much simpler and much much easier to deploy with existing libraries. --=20 Yutaka OIWA, Ph.D. Leader, Cyber Physical Architecture Research Group Information Technology Research Institute National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: , OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5= ] > -----Original Message----- > From: Julian Reschke [mailto:julian.reschke@gmx.de] > Sent: Tuesday, July 5, 2016 7:09 PM > To: =1B$BBg4d42=1B(B ; Yoav Nir ;= httpauth > mailing list > Subject: Re: [http-auth] WGLC on the MutualAuth drafts >=20 > On 2016-07-05 06:24, =1B$BBg4d42=1B(B wrote: > > ... > > [3] > >> FYI: I'm in the process of revising RFC 5987, and that ABNF > >> production is going to be removed. Seems we need to coordinate here. > > > > Can you tell us some more detail about this? > > May be we also need to coordinate with the Chairs about the scheduling. > > ... >=20 > When I wrote RFC 5987, I put too much emphasis in being consistent with R= FC > 2231 and in the ABNF. >=20 > The plan for RFC 5987bis is that it'll just define the grammar for the fi= eld > *value*. I'll stay away from defining and redefining parameters in genera= l. >=20 > Best regards, Julian >=20 From nobody Thu Jul 7 06:47:28 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19EEA12D0CF for ; Thu, 7 Jul 2016 06:47:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zcc8re2tP17l for ; Thu, 7 Jul 2016 06:47:26 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0B24312B005 for ; Thu, 7 Jul 2016 06:47:25 -0700 (PDT) Received: from [192.168.1.123] ([5.10.171.186]) by mail.gmx.com (mrgmx103) with ESMTPSA (Nemesis) id 0LxPgU-1bMssn3PuU-016xqT; Thu, 07 Jul 2016 15:47:19 +0200 To: =?UTF-8?B?5aSn5bKp5a+b?= , Yoav Nir , httpauth mailing list References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> From: Julian Reschke Message-ID: Date: Thu, 7 Jul 2016 15:47:27 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=iso-2022-jp; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:DUkORn9H4gQg/IBF4GToNi1ek1imttIQmYTRMQVJAqPbXhjRthl aXUsssalZ+KsIIZDsrDIZg5++dh2Ri0a+pknvH45TYRLvcwauWeT/FDc5Cz0oHV00NNkXT1 B3MQDt0Ld+Qt/XcFGv6T6S1nfGydcSof9YugS3LLoJTB8SHcyB+3wcqWXWVpbQ1elx6Xkr4 3V7O2zf6rn4C0TD0+iJOA== X-UI-Out-Filterresults: notjunk:1;V01:K0:9ZmGD7za3gs=:UbDGqs5GCyJdRafFIFSBGi ZGVy9+i5JouBgtUw9eb/v2KBxh+Ikeicz+YmIr92fU3R3CyYmQNkkEmEGLGVdn08wt45qbuyV mwexVsc2iN516g2CFt+GQ3Eu92wb0suyU8UV8tWNmvMHbRABRbYd69BTsIJhXtE51fd4M5Rao EHcMKyQAEUNqGJnNU7clbUFFbSVNNBTXtIATQDvJJXZih6kuLwBnI1wHUVofF4aj912HepG8X KSWFNACU0nHyOOpCZ4MGAFq8AEqr7Bz1DjzwDNvSLn+2RPZLTSu715AtmzcY/bLOojTz5fU8m 3tsCWqKVHh/5M9m7IA39LJE21PZQRWlinE6DfuLlj+LhlyS0v0WRNkwyf2CsX47SclXsprgxT E5xLSrge6sAXRX27Kqy29V4HA12naYJw0+UQAIY1cxQfb63y7GcaOmfLVMFWEZAyZZg4V+ltY w8zVRjYNgXQy6VM7ePTyhOGj1x7fa2i0e1oqhmYrdL8TVPvIYyL+3hr8hLT4z9gbwuv6EPSHR NGQ4a7U8J/TQ7ZbouXA9XHjUqoPU4VrEU4/pSr3pfnoZiOw/xd3skpXlyvWzYWT9z2QaZXlrL hyltEVRf6DCdH1y5l6+vfSCUMTkWw8WPMAYAW7RJd3o+SXKlczriZfiR5MGhRgLrw+gXf56yF C4qYy11PA0CWuC0MFLf8A7TVYwbO9QXs6HztxLOUSLvUU5PPkITUwD2O/CUui352rmNyf27YI cfiOsHPF7+ynKYpX2t3yLhcPFVqHGa/FjoDyhzyxqtRRgti89hV5q/9ZaQWXT2BlMCPS0Zqtc iTcQtoY Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 13:47:28 -0000 On 2016-07-07 15:32, $BBg4d42(B wrote: > Dear Julian, > > My understanding of your message is that you'll just define the > value encoding of I18n string, and all RFCs referring it must say, > for example, "the value of parameter foo will be encoded by RFC5987bis, > like foo=UTF-8''caf%C3%89 ." > Is it right? If not, please forgive me and skip the rest of my message. Something like that. (did you want to say "foo*" here?) > If it's true, in that case, I'm *not in favor* of "obsoleting" or "replacing" > the current 5987 by it, as it simply drops the current feature, not replacing it. > > Both defining the value encoding > And defining the general parameter extension framework > is definitely the two existing features of current 5987. > I'm relying basically on *the latter feature*. The problem is that there isn't a generic parameter framework. For instance, header fields differ in whitespace and error handling. (I agree that it would be good if there was something like that, but that's a separate discussion) > The most important value of the current 5987 is that non-percent-encoded > ASCII parameters and percent-encoded 5987-style parameters > can co-exist and deterministically distinguished, > while keeping ASCII-only use cases wire-compatible. > Yes, it's a bit tricky encoding, but it works. > If I need to say "this parameter will be 5987bis-value-encoded > (so %20 MUST be treated as a space, not percent-two-zero)", > it's no better than simple percent-encoded UTF-8, > especially with cryptographic operations > (which requires binary-to-binary equivalence and thus denies > almost all kinds of character encoding negotiations). We'll keep the recommendation to mark the use of the encoding by appending "*" to the parameter name, if that's what you're concerned about. > ... Best regards, Julian From nobody Thu Jul 7 07:14:50 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6D24512D56C for ; Thu, 7 Jul 2016 07:14:49 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kvLmhPm5eCYs for ; Thu, 7 Jul 2016 07:14:47 -0700 (PDT) Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0081.outbound.protection.outlook.com [104.47.93.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E73B012D561 for ; Thu, 7 Jul 2016 07:14:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=vDg5G7KKwPC4NMLt+uMVI/cHXShVqfZJYKtiVwsLnf8=; b=a8Jxon+s+4SoztX3E7A0/e98JAcKm37RE8ownkVuoUBnRRln2X/7UChQoidX6VHfMntlvAZsPcxbUo/WFUMuo2Ln0ehVwW3CwlL55WLcHmKnsFXOzsDLjGFTz2Ck+/4d0UkupnxYx5sP/46rssvpgttJFHemzvxDbB5cr8TwCc8= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) with Microsoft SMTP Server (TLS) id 15.1.534.14; Thu, 7 Jul 2016 14:14:43 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.020; Thu, 7 Jul 2016 14:14:43 +0000 From: =?iso-2022-jp?B?GyRCQmc0ZDQyGyhC?= To: Julian Reschke , Yoav Nir , httpauth mailing list Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/CAAGU6AIADSHMwgAAZToCAAACtUA== Date: Thu, 7 Jul 2016 14:14:43 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> In-Reply-To: Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [219.67.14.212] x-ms-office365-filtering-correlation-id: f9a49a8d-d49b-4b74-4f14-08d3a6710ae1 x-microsoft-exchange-diagnostics: 1; TY1PR01MB0588; 6:Di7NBRvo/W53IgOCzYQPYyqC4BIymBwQn58Rn8kAeOuBE/sGW2+D/fA3tKk5d5WFrAabZ/YQr+aK4sweH/2YI1tUhJEJYXPSoumPjLkhLmwEyoTTBzBYJqELuIg3WWSVsTmgbjz9BnvnscL/OvQ+aGp9BUOBHk40b7nn8mUIU+MkAmCiDjQk/eGMmebQGkHo/5DyZwR0szSNx1AE9gTDMQCiAcBnCeo4p8ZE2y+PSlFtXf3fIRSrpACfdn8VKGKzGe23qzZNV5gPCKAqCTk5IaKBpf019kiyW3fv4Etou3F7s2HhQsNGiKCOw1U6LE9cqLT8wEDE3hKJ9ikRhGW6lQ==; 5:2/CNpcvez3myAY+Qck946BCRNItWghIXKupuppqJx0Ex2sed7SYu4OjfjgfakAVYEo+icWLB5kTuObLo2w+uuSwtHU5fQn3ZAJhZ73s+Rklo8S2lOuGHe9zs1yhvEH24xR4RWhGyUo9cdVYOFEB5sg==; 24:4S3mi2k0sFgrmbcnklv2iQCVEoF3iAfpN21xsouIRdBSMm2jAdcY2BX2tIiWFqV/jLRrIc+ZLtcfi3ucczNMSPT0IqNDUkH7ZQKIlQtxYmA=; 7:lbhEaBZMqNuM/zzr5yi9IZJI2Zk69GSqzqn0TBaOz2F6rBsny972ngX2wG4NooVXPmFQ6YxJzRJtpEU6jhMlS+gdsDjb1M7Ea8qDe37LOf18/H3YFubH2eaIrjjwqGr/GPvaiJTEveJUK2wk0n5IjH0g47WlyW+o9nZx6qiqUpkMLc3pRlzaNolzGGqLkG2mT85XR3qOnR7agA1ykXbEu6l3j3Lj8UlPguUWjXV+nbiYuxlrhBaIkwz6adbHoxRZ x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0588; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0588; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0588; x-forefront-prvs: 0996D1900D x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(199003)(189002)(107886002)(85182001)(189998001)(87936001)(86362001)(2906002)(93886004)(3846002)(586003)(101416001)(102836003)(6116002)(106116001)(5002640100001)(105586002)(33656002)(50986999)(66066001)(106356001)(74482002)(97736004)(5001770100001)(10400500002)(122556002)(7846002)(81166006)(76176999)(54356999)(7696003)(8676002)(7736002)(5003600100003)(11100500001)(19580395003)(3660700001)(19580405001)(77096005)(81156014)(74316002)(2900100001)(76576001)(8666005)(9686002)(305945005)(2950100001)(8936002)(92566002)(3280700002)(68736007)(7059030); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0588; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2016 14:14:43.2354 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0588 Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 14:14:49 -0000 Dear Julian, > > Dear Julian, > > > > My understanding of your message is that you'll just define the value > > encoding of I18n string, and all RFCs referring it must say, for > > example, "the value of parameter foo will be encoded by RFC5987bis, > > like foo=3DUTF-8''caf%C3%89 ." > > Is it right? If not, please forgive me and skip the rest of my message. >=20 > Something like that. >=20 > (did you want to say "foo*" here?) Dropping of * is intentional, to mean "someone only uses encoded values, without the field extending mechanism by appending *." > The problem is that there isn't a generic parameter framework. For instan= ce, > header fields differ in whitespace and error handling. >=20 > (I agree that it would be good if there was something like that, but that= 's > a separate discussion) (I agree it, as it was really tricky to write my draft regarding it :-) > > The most important value of the current 5987 is that ... > > denies almost all kinds of character encoding negotiations). >=20 > We'll keep the recommendation to mark the use of the encoding by appendin= g "*" > to the parameter name, if that's what you're concerned about. Hmm, what a "recommendation" means for me is important. Restructuring the definitions is no matter and OK for me. It can be optional (as it is currently), but at least I need to be possible to say implementers, showing printed paper of RFC5987= bis, "OK, it's the "common" way written here, so let's implement=20 this translation as a common utility function." If it looks like "someone invented to append *, it might be interesting", it's too weak. --=20 Yutaka OIWA, Ph.D. Leader, Cyber Physical Architecture Research Group Information Technology Research Institute National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: , OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5= ] From nobody Thu Jul 7 07:23:59 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2702112D73A for ; Thu, 7 Jul 2016 07:23:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hgHtKCmo9f48 for ; Thu, 7 Jul 2016 07:23:56 -0700 (PDT) Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0069.outbound.protection.outlook.com [104.47.93.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79F7912B02E for ; Thu, 7 Jul 2016 07:23:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=ga4ym1QrQaJltiYDN5AkEfvfBkYsgBZ+h3uh5WJ/Ito=; b=K+w+LHwCV9nXPHez0Wsy3jHT1gZm8noq2zbFZfM5ylrCzwIoVWiGzP4fSy1vAAy32Y977UD6PyAMpcHBYctr7pZZzHYU+ieoH0kl+X5rDdtPWbWFKGAADpVlIRjLYhnqxOawgT3/uMMbYhF+55XwJSB7pu6Yz+6Wwg4LnHtPjpc= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0586.jpnprd01.prod.outlook.com (10.167.157.16) with Microsoft SMTP Server (TLS) id 15.1.534.14; Thu, 7 Jul 2016 14:23:51 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.020; Thu, 7 Jul 2016 14:23:51 +0000 From: =?utf-8?B?5aSn5bKp5a+b?= To: Yoav Nir Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/CAAGU6AIAAFaAAgAADnICAADrUAIAAAhyAgABCigCAAsUN4A== Date: Thu, 7 Jul 2016 14:23:51 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> <24F1DDCD-43CC-4FCD-9D4A-4EFF3DBFE981@gmail.com> In-Reply-To: <24F1DDCD-43CC-4FCD-9D4A-4EFF3DBFE981@gmail.com> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [219.67.14.212] x-ms-office365-filtering-correlation-id: d426428b-cdec-412b-2c19-08d3a67251df x-microsoft-exchange-diagnostics: 1; TY1PR01MB0586; 6:QsWCz3naAsHOgpAkr7yXLmeVi9W2tnBC6v+ZNTCMuXPj3oM2F4IJpf3u6E9DEUE6NfiGTd50Pzd3nO9R7GFBALVBTEBQq16XncpOHJGSdrbraE+gZ9tz24+i1QyqE0Y5/7uVg/mw0xT+4zZtF/C5n6862pAORt2oW7l+vQe2TrsD7PzXk4DbTWbP1Dh6rWZhcS39fv89yjCSpwJTyKdduZpCSc6HHWJudjpgbw5Nkisylx3mlK1AaoaUtfYRbslkOkByc74YPXfB0yq/oBZJs9eUi2oqC1oVY/k3gYStGKeT48IfADMvv7JNYfAyz3GBSYXt5ORB8pkKG22TbNgO6g==; 5:G50yl7lZlQci0U4C5mrhzoHQYBLfXrN6RyUwm3IARz5khd40oDgtHS3AXoIqWICdvRSVUgWwuHpO9Qw6rNkowow7JoLz7nF01jwWWoPfPokvenGPFDJ5NBLl01CGZSr0u43gEE8agv51sMfiFzhFAQ==; 24:lY+LCMKKD9W1t5PtfzgxUy3PCvBc06HXPeuqLjJPFlpwO3ixkcbIj2QOg9o6oAsSJ+3a7n7aO5PNxpq50T0FVOgFCDnyds3hCAByg6AW6/U=; 7:ibkxyfMCWJtxa4KtwtRubK8y4QE0SHisQ4BeMfnMg48m9pU1nXxJDKmng3sIGvbdoJDslHpvZvX2zOoWMZl0fsFyBfh8jpDJFoi0wDfKryQEreVnL0MWYSYkyNy9KLkE0vZsKv4IH1q7wXE46F2+6/nYwoor7AeY1c6IOMN/o1BSO0NAifR1yzWzzUj3SJmTC7D4uzBCE7vpd1awBJTTEbWJhXcT3iWzb2ii9UocNj6NXDreJW78RJErnbuKVaYf x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0586; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(26323138287068); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0586; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0586; x-forefront-prvs: 0996D1900D x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(13464003)(377424004)(24454002)(377454003)(189002)(199003)(74482002)(93886004)(9686002)(7736002)(7846002)(5003600100003)(92566002)(4326007)(3660700001)(3280700002)(76576001)(2900100001)(11100500001)(7696003)(87936001)(189998001)(2950100001)(102836003)(3846002)(6116002)(586003)(19580405001)(81156014)(10400500002)(8676002)(19580395003)(68736007)(8936002)(81166006)(97736004)(110136002)(2906002)(74316002)(50986999)(66066001)(54356999)(76176999)(101416001)(305945005)(105586002)(106356001)(106116001)(85182001)(33656002)(15975445007)(122556002)(77096005)(5002640100001)(86362001); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0586; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2016 14:23:51.8293 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0586 Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 14:23:58 -0000 RGVhciBZb2F2LA0KDQpJIGhhdmUgbm90IHlldCBoYXZlIGVub3VnaCBpbmZvcm1hdGlvbiB0byBk aXNjb3ZlciBob3cgd2Ugc2hvdWxkIGRvIHdpdGgNClJGQzU5ODdiaXMsIGluY2x1ZGluZyB0aHJl ZSBvcHRpb25zOg0KIDEpIEtlZXAgcmVmZXJyaW5nIHRvIGN1cnJlbnQgUkZDNTk4NyB1bnRpbCBu ZXh0IHBvc3NpYmxlIHJldmlzaW9uLA0KIDIpIFdhaXQgZm9yIGJpcywgb3IgZm9sbG93IGl0IGlu IElFVEYgTEMsDQpvciB1bmxpa2VseSAoaG9wZWZ1bGx5LCkNCiAzKSBSZXRoaW5rIG9mIHRoZSBX RyBkZWNpc2lvbiBvbiBSRkM1OTg3IGFuZCBnbyBiYWNrIHRvIFdHIGRpc2N1c3Npb24uDQpIb3dl dmVyLCBub3RoaW5nIG9mIGFib3ZlIHBsYW5zIHdpbGwgcHJvaGliaXQgbWUgdG8gc3VibWl0IHRo ZSANCnJldmlzZWQgZHJhZnRzIGJlZm9yZSB0aGUgInN1Ym1pc3Npb24gbG9ja291dCBwZXJpb2Qi Lg0KU28sIEknbGwgc3VibWl0IHRoZSByZXZpc2VkIGRyYWZ0cw0Kd2l0aCBrZWVwaW5nIHJlZmVy ZW5jZXMgdG8gUkZDNTk4NyBhcyBpdCBpcyBjdXJyZW50bHkuDQpJZiB3ZSBsYXRlciBkZWNpZGUg dG8gbWFrZSBjaGFuZ2UgYXQgdGhpcyBtb21lbnQgKHdpdGggYSBmZXcgd2Vla3MgZGVsYXkpLA0K bGV0IHVzIGNvbnNpZGVyIGl0IGp1c3QgYXMgaW50ZXJtZWRpYXRlIGRyYWZ0cywgYW5kIEknbGwg cmUtc3VibWl0IHRoZQ0KbW9yZS1yZXZpc2VkIGRyYWZ0cyBqdXN0IGFmdGVyIHRoZSBsb2Nrb3V0 IHBlcmlvZC4NCg0KVGhhbmtzLA0KDQotLSANCll1dGFrYSBPSVdBLCBQaC5ELiAgICAgICBMZWFk ZXIsIEN5YmVyIFBoeXNpY2FsIEFyY2hpdGVjdHVyZSBSZXNlYXJjaCBHcm91cA0KICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgIEluZm9ybWF0aW9uIFRlY2hub2xvZ3kgUmVzZWFyY2gg SW5zdGl0dXRlDQogICAgTmF0aW9uYWwgSW5zdGl0dXRlIG9mIEFkdmFuY2VkIEluZHVzdHJpYWwg U2NpZW5jZSBhbmQgVGVjaG5vbG9neSAoQUlTVCkNCiAgICAgICAgICAgICAgICAgICAgICBNYWls IGFkZHJlc3NlczogPHkub2l3YUBhaXN0LmdvLmpwPiwgPHl1dGFrYUBvaXdhLmpwPg0KT3BlblBH UDogaWRbNDQwNTQ2QjVdIGZwWzdDOUYgNzIzQSA3NTU5IDMyNDYgMjI5RCAgMzEzOSA4Njc3IDlC RDIgNDQwNSA0NkI1XQ0KDQoNCj4gLS0tLS1PcmlnaW5hbCBNZXNzYWdlLS0tLS0NCj4gRnJvbTog aHR0cC1hdXRoIFttYWlsdG86aHR0cC1hdXRoLWJvdW5jZXNAaWV0Zi5vcmddIE9uIEJlaGFsZiBP ZiBZb2F2IE5pcg0KPiBTZW50OiBXZWRuZXNkYXksIEp1bHkgNiwgMjAxNiA0OjE1IEFNDQo+IFRv OiBKdWxpYW4gUmVzY2hrZSA8anVsaWFuLnJlc2Noa2VAZ214LmRlPg0KPiBDYzogaHR0cGF1dGgg bWFpbGluZyBsaXN0IDxodHRwLWF1dGhAaWV0Zi5vcmc+DQo+IFN1YmplY3Q6IFJlOiBbaHR0cC1h dXRoXSBXR0xDIG9uIHRoZSBNdXR1YWxBdXRoIGRyYWZ0cw0KPiANCj4gDQo+ID4gT24gNSBKdWwg MjAxNiwgYXQgNjoxNyBQTSwgSnVsaWFuIFJlc2Noa2UgPGp1bGlhbi5yZXNjaGtlQGdteC5kZT4g d3JvdGU6DQo+ID4NCj4gPiBPbiAyMDE2LTA3LTA1IDE3OjA5LCBZb2F2IE5pciB3cm90ZToNCj4g Pj4NCj4gPj4+IE9uIDUgSnVsIDIwMTYsIGF0IDI6MzkgUE0sIEp1bGlhbiBSZXNjaGtlIDxqdWxp YW4ucmVzY2hrZUBnbXguZGU+IHdyb3RlOg0KPiA+Pj4NCj4gPj4+IE9uIDIwMTYtMDctMDUgMTM6 MjYsIFlvYXYgTmlyIHdyb3RlOg0KPiA+Pj4+IEnigJltIG5vdCBzdXJlIEkgZm9sbG93IHdoYXQg a2luZCBvZiBjb29yZGluYXRpb24gaXMgbmVlZGVkIGhlcmUuIElNTyB0aGUNCj4gLWV4dGVuc2lv biBkb2N1bWVudCBpcyByZWFkeSB0byBnbyB0byBJRVRGIExDIChhZnRlciB0aGUgYXV0aG9ycyBt YWtlIHRoZQ0KPiBuZWNlc3NhcnkgY2hhbmdlcyB5b3XigJl2ZSBhbHJlYWR5IGRpc2N1c3NlZCku IEkgdGhpbmsgaXTigJlzIGdvaW5nIHRvIGJlIHBhc3QNCj4gdGhlIElFU0cgYmVmb3JlIDU5ODdi aXMgaXMgcmVhZHkuIERvIHlvdSBzZWUgYW55IG5lZWQgdG8gbWFrZSB0aGlzIGRvY3VtZW50DQo+ IGRlcGVuZCBvbiA1OTg3YmlzIGluc3RlYWQgb2YgNTk4Nz8gV2lsbCBtYWtpbmcgdGhpcyBjaGFu Z2UgcmVxdWlyZSBhbnkgY2hhbmdlcw0KPiB0byB0aGUgQUJORiBpbiB0aGUgZG9jdW1lbnQ/DQo+ ID4+Pg0KPiA+Pj4gWWVzLCBJTUhPIGl0IHdvdWxkIHJlcXVpcmUgY2hhbmdlcy4NCj4gPj4NCj4g Pj4gT0suIEFueSBjaGFuY2UgeW91IGFuZCB0aGUgYXV0aG9ycyBjYW4gZ2V0IHRoZSBjaGFuZ2Vz IGRvbmUgYmVmb3JlIEZyaWRheeKAmXMNCj4gZGVhZGxpbmU/DQo+ID4NCj4gPiBWZXJ5IHVubGlr ZWx5IG9uIG15IHNpZGUuDQo+IA0KPiBTbyB3aGF0IGtpbmQgb2YgY2hhbmdlcyBhcmUgd2UgdGFs a2luZyBhYm91dD8gIEp1c3QgdGhlIEFCTkYgYmxvY2ssIG9yIGEgYnVuY2gNCj4gb2Ygc3Vycm91 bmRpbmcgdGV4dD8NCj4gDQo+IFRoZSByZWFzb24gSeKAmW0gYXNraW5nIGlzIHRoYXQgSSB0aGlu ayBpZiBpdOKAmXMganVzdCB0aGUgQUJORiB3ZSBjYW4gcHJvZ3Jlc3MNCj4gdGhlIGRvY3VtZW50 IHdpdGggYSBub3RlIHRvIHRoZSBBRCB0aGF0IHRoZSBBQk5GIHdpbGwgbmVlZCBhbiB1cGRhdGUs IGFuZCBmaW5pc2gNCj4gdGhhdCBkdXJpbmcgSUVURiBsYXN0IGNhbGwuIE90aGVyd2lzZSB3ZeKA mXJlIGRlbGF5aW5nIGJ5IGFub3RoZXIgMy00IHdlZWtzLg0KPiBPZiBjb3Vyc2UsIGNvbnNpZGVy aW5nIGhvdyBsb25nIHRoaXMgaGFzIGJlZW4gaW4gcHJvY2VzcyAzLTQgZXh0cmEgd2Vla3MgYXJl DQo+IG5vIGJpZyBkZWFsLCBidXQgd2h5IHByb2NyYXN0aW5hdGUgaWYgd2UgZG9u4oCZdCBoYXZl IHRvPw0KPiANCj4gUmVnYXJkcywNCj4gDQo+IFlvYXYNCj4gDQo+IF9fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fDQo+IGh0dHAtYXV0aCBtYWlsaW5nIGxpc3QN Cj4gaHR0cC1hdXRoQGlldGYub3JnDQo+IGh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlz dGluZm8vaHR0cC1hdXRoDQo= From nobody Thu Jul 7 07:24:17 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C77D712B02E for ; Thu, 7 Jul 2016 07:24:15 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l93g-1fMgHe4 for ; Thu, 7 Jul 2016 07:24:14 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.20]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51D7B12D568 for ; Thu, 7 Jul 2016 07:24:04 -0700 (PDT) Received: from [192.168.1.123] ([5.10.171.186]) by mail.gmx.com (mrgmx101) with ESMTPSA (Nemesis) id 0MFgxF-1b77JT2RBl-00Ee71; Thu, 07 Jul 2016 16:23:58 +0200 To: =?UTF-8?B?5aSn5bKp5a+b?= , Yoav Nir , httpauth mailing list References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> From: Julian Reschke Message-ID: <9fea24ee-51c7-f49d-851a-803cf47523e5@gmx.de> Date: Thu, 7 Jul 2016 16:24:05 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:JexS6cSR61F/cfusTv9fOL8Jfk+Kstq2szVaTH64hrr6l7OG0hH uyJTlSscK24iH2AdYSM32VmU7qccy0yxo1nSuy3knYRy0XgdEwvrIv4j4f9D1MubrCB3xlY 7E+c3i3V6zS8cQYfmOPFUF6aemYEt9EeXJLj+PylpHHSvDtj5YsCJg9FJ7NG6XAK3d3PkzA 1asXDb56mTFF5XYVP8rDA== X-UI-Out-Filterresults: notjunk:1;V01:K0:qzXhjy6S3aE=:37T1ur+O0IkoUN8DRna2QN XCNjxZungrFGmypkSxqzSAnn4gmLqEFOvzWRZM4Ex3xsEtqAMuwTf/7Hk8D1mMPr7BZ7+HdyE oNADIPFUJihrsM3h4OL7g2BJK50Ke4a20tSCXq8gXg5Hk48Nw4NZjY9ghEuhx0GD8IL+hGesY rY6jryNi2BabJUDdULK8weaddJpmYk8hv5Bv45T6zKCsNAM+tLcJ7u7UNHFZVTrsYEWD3Rzj6 8zaJOWL8sej/E1iZUWq5y4R3liTd/TsHE8uVoij1deBv6hfo5j4v9Stgm2MirANBhgxD43H/F 0PHWnkAPWmjX1TQOyPe1BnAAWZ9eWpi9vUdy7g4blTxSj2/onxMFj4H3dstu+SqJvqBX2Wnmn bcyEiC5zl8rkOyoKBDbK2wWA4C1/zzfyQTsj02TY61EhMoO0sQl8og+aoFiUk/UQLsxH1fo6f 2xpVEFnd75/wACynRMoFrg5wAfKem0SxCp2iWuDs0QlgDgcMtY6ceKh1QiM6Sqiz5o3Ku/3N4 mGlG24dHFRGOV6OGXKVRjvfCVHAuQOFBYpOzoZz623Gp6KSBhwoKv0s17xD2sXSbGrhlyiteh MphJJDu27DjKg4Zxw3rJgt5uPbvOwk7eQC/3CJDiLaQQQ1fCMkqTYsf9pvNP4FeqV18Mi5BsD ToEdSkYe0M++aRetxMvCNBT48vTFK1EayiZfiiNg6NcTVKc5jrZ9cqIi5tUxl8/LaX8UEdbSR t9H7ieua5SgalI0CheRpWOSrCbvwsSf19Gm7vjEpQwCQxgAqbpZQHv7wpuDSd0jqimBsHTP01 sDDW1Zs Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 14:24:16 -0000 On 2016-07-07 16:14, 大岩寛 wrote: > Dear Julian, > >>> Dear Julian, >>> >>> My understanding of your message is that you'll just define the value >>> encoding of I18n string, and all RFCs referring it must say, for >>> example, "the value of parameter foo will be encoded by RFC5987bis, >>> like foo=UTF-8''caf%C3%89 ." >>> Is it right? If not, please forgive me and skip the rest of my message. >> >> Something like that. >> >> (did you want to say "foo*" here?) > > Dropping of * is intentional, to mean "someone only uses encoded values, > without the field extending mechanism by appending *." OK, not sure this is a good idea, though. >> The problem is that there isn't a generic parameter framework. For instance, >> header fields differ in whitespace and error handling. >> >> (I agree that it would be good if there was something like that, but that's >> a separate discussion) > > (I agree it, as it was really tricky to write my draft regarding it :-) > >>> The most important value of the current 5987 is that > ... >>> denies almost all kinds of character encoding negotiations). >> >> We'll keep the recommendation to mark the use of the encoding by appending "*" >> to the parameter name, if that's what you're concerned about. > > Hmm, what a "recommendation" means for me is important. > Restructuring the definitions is no matter and OK for me. > > It can be optional (as it is currently), but at least > I need to be possible to say implementers, showing printed paper of RFC5987bis, > "OK, it's the "common" way written here, so let's implement > this translation as a common utility function." > If it looks like "someone invented to append *, it might be interesting", > it's too weak. Well, feel free to provide feedback on rfc5987bis so we can get this right. Best regards, Julian From nobody Thu Jul 7 07:35:13 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D32212D768 for ; Thu, 7 Jul 2016 07:35:12 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cHnDeHJ0iB_n for ; Thu, 7 Jul 2016 07:35:10 -0700 (PDT) Received: from mail-wm0-x22b.google.com (mail-wm0-x22b.google.com [IPv6:2a00:1450:400c:c09::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC21812D759 for ; Thu, 7 Jul 2016 07:35:09 -0700 (PDT) Received: by mail-wm0-x22b.google.com with SMTP id n127so18926181wme.1 for ; Thu, 07 Jul 2016 07:35:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=aUBEWVOB7PAD0yJyyislEZW2ekqyZPT5bb1498bCELc=; b=bRlgJJAwJwcUqcwgtMsp/J6zreXU8qPiYNpgdDdBW0iY6s5VB5bM6ErQEE+8JovKc5 i7spiHTgkRVBX3wMMr7C663M8xrkj7knikPDqHq9WWgRvqnn34cJHsqmL2VcyKUcIVb5 QXj6NA4aWxxqs0Cpu1jnHZpPbqPN2vi4RZSbRqOjI5xydbj5KV+ves1eaKEjaJYy7HfJ w/6tmV6NhMLKbbpQjW3aLyp3CrnK769A6dbkPJfsnzN+7dxVPqUf9+5Ht9UsMccIv3Tw xZsoTMoDg0QYo6HPDGAi4P4UnqszomWoJ26Gq6EpEd+uTIU/D7MuIHD7l821GHesSEDI ZNfw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=aUBEWVOB7PAD0yJyyislEZW2ekqyZPT5bb1498bCELc=; b=Oi3Qckh2/Y0upyQ2bKF9BKSS4Xx0o1LznJq6V3iEDwSRbK1dnMgzeUk+86XAocVar6 uWlzE/GncgyaQeM8WQX+WwMa8/ESdrqV/drluZX+NLUGRNgeGpXUW+cOMwfWHfqJPkA5 V/prSG2glYLP45yi9jojgqcAK1DCnGuXXwFe1MTq7QaZYr3qkaqK+701xzE7IjssCUUS UXYpr10hSLP1pRXs1o6XCLJwjdkZfh9CVQig3hNlRBUwnueF53pjH9NSG96Fd248WFMM LVi+IvBLYdoFPxeeIPhLsiQ9vxx83QeywaIiLcTg80LO/yjy78M1VYHAinVz57x169Sa tfUw== X-Gm-Message-State: ALyK8tIKx3poP1FgEeombYHoDbz3LeVtjsWwJjM0dwmTQwmdi/bilQxqX28/mrtgkKwB7A== X-Received: by 10.28.48.130 with SMTP id w124mr3140820wmw.44.1467902107594; Thu, 07 Jul 2016 07:35:07 -0700 (PDT) Received: from [172.24.250.175] (dyn32-131.checkpoint.com. [194.29.32.131]) by smtp.gmail.com with ESMTPSA id a4sm3325874wjq.40.2016.07.07.07.35.06 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 07 Jul 2016 07:35:06 -0700 (PDT) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Yoav Nir In-Reply-To: Date: Thu, 7 Jul 2016 17:35:04 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: <79D64C1B-5A5F-4AFB-854D-99CCC94A2459@gmail.com> References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> <24F1DDCD-43CC-4FCD-9D4A-4EFF3DBFE981@gmail.com> To: =?utf-8?B?5aSn5bKp5a+b?= X-Mailer: Apple Mail (2.3124) Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 14:35:12 -0000 Hi. Definitely submit the revised draft. At the conclusion of this thread, = we can decide whether to proceed with RFC 5987, wait for 5987bis with = the document in the working group, or proceed with the document and have = it wait for the 5987bis in the RFC editor=E2=80=99s queue. Just one question: This thread has been about the -extension document. = The base mutual document also references RFC 5987. Will that need any = updates (except changing the RFC number in the reference), or is that = document fine the way it is? Thanks Yoav > On 7 Jul 2016, at 5:23 PM, =E5=A4=A7=E5=B2=A9=E5=AF=9B = wrote: >=20 > Dear Yoav, >=20 > I have not yet have enough information to discover how we should do = with > RFC5987bis, including three options: > 1) Keep referring to current RFC5987 until next possible revision, > 2) Wait for bis, or follow it in IETF LC, > or unlikely (hopefully,) > 3) Rethink of the WG decision on RFC5987 and go back to WG discussion. > However, nothing of above plans will prohibit me to submit the=20 > revised drafts before the "submission lockout period". > So, I'll submit the revised drafts > with keeping references to RFC5987 as it is currently. > If we later decide to make change at this moment (with a few weeks = delay), > let us consider it just as intermediate drafts, and I'll re-submit the > more-revised drafts just after the lockout period. >=20 > Thanks, >=20 > --=20 > Yutaka OIWA, Ph.D. Leader, Cyber Physical Architecture Research = Group > Information Technology Research = Institute > National Institute of Advanced Industrial Science and Technology = (AIST) > Mail addresses: , = > OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 = 46B5] >=20 >=20 >> -----Original Message----- >> From: http-auth [mailto:http-auth-bounces@ietf.org] On Behalf Of Yoav = Nir >> Sent: Wednesday, July 6, 2016 4:15 AM >> To: Julian Reschke >> Cc: httpauth mailing list >> Subject: Re: [http-auth] WGLC on the MutualAuth drafts >>=20 >>=20 >>> On 5 Jul 2016, at 6:17 PM, Julian Reschke = wrote: >>>=20 >>> On 2016-07-05 17:09, Yoav Nir wrote: >>>>=20 >>>>> On 5 Jul 2016, at 2:39 PM, Julian Reschke = wrote: >>>>>=20 >>>>> On 2016-07-05 13:26, Yoav Nir wrote: >>>>>> I=E2=80=99m not sure I follow what kind of coordination is needed = here. IMO the >> -extension document is ready to go to IETF LC (after the authors make = the >> necessary changes you=E2=80=99ve already discussed). I think it=E2=80=99= s going to be past >> the IESG before 5987bis is ready. Do you see any need to make this = document >> depend on 5987bis instead of 5987? Will making this change require = any changes >> to the ABNF in the document? >>>>>=20 >>>>> Yes, IMHO it would require changes. >>>>=20 >>>> OK. Any chance you and the authors can get the changes done before = Friday=E2=80=99s >> deadline? >>>=20 >>> Very unlikely on my side. >>=20 >> So what kind of changes are we talking about? Just the ABNF block, = or a bunch >> of surrounding text? >>=20 >> The reason I=E2=80=99m asking is that I think if it=E2=80=99s just = the ABNF we can progress >> the document with a note to the AD that the ABNF will need an update, = and finish >> that during IETF last call. Otherwise we=E2=80=99re delaying by = another 3-4 weeks. >> Of course, considering how long this has been in process 3-4 extra = weeks are >> no big deal, but why procrastinate if we don=E2=80=99t have to? >>=20 >> Regards, >>=20 >> Yoav >>=20 >> _______________________________________________ >> http-auth mailing list >> http-auth@ietf.org >> https://www.ietf.org/mailman/listinfo/http-auth From nobody Thu Jul 7 08:01:09 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1DF712D759 for ; Thu, 7 Jul 2016 08:01:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DP53UDV4yHxM for ; Thu, 7 Jul 2016 08:01:06 -0700 (PDT) Received: from JPN01-OS2-obe.outbound.protection.outlook.com (mail-os2jpn01on0056.outbound.protection.outlook.com [104.47.92.56]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE7DD12D7D6 for ; Thu, 7 Jul 2016 08:00:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=iKc1fumfwupEiPVpn7gK+gg61Sa4v6StNRu09ub5C5k=; b=F/Zhyd3heX5lyg18qqpUWWqdERkZ8xbmGcLUG0kPmRM3r/uU6ZKBzlm0V32CNhGY/YPxmwFhGSmRCqJBXDKRJWBx9dqT9AVlDjB4eowKt1kwL/mCNHMmjH9aIrT/UCqQZhMaTjR2Yl+OA1lH3Ru6jF/ASsWryUdVOu6rhnV1FW4= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0587.jpnprd01.prod.outlook.com (10.167.157.17) with Microsoft SMTP Server (TLS) id 15.1.534.14; Thu, 7 Jul 2016 15:00:47 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.020; Thu, 7 Jul 2016 15:00:47 +0000 From: =?utf-8?B?5aSn5bKp5a+b?= To: Yoav Nir Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/CAAGU6AIAAFaAAgAADnICAADrUAIAAAhyAgABCigCAAsUN4IAAEUwAgAAGtIA= Date: Thu, 7 Jul 2016 15:00:47 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <2ae31156-2a49-3cf4-9ba2-36bb8d24abb1@gmx.de> <783B6CFB-2522-4144-B883-2D83F1689EFF@gmail.com> <24F1DDCD-43CC-4FCD-9D4A-4EFF3DBFE981@gmail.com> <79D64C1B-5A5F-4AFB-854D-99CCC94A2459@gmail.com> In-Reply-To: <79D64C1B-5A5F-4AFB-854D-99CCC94A2459@gmail.com> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [219.67.14.212] x-ms-office365-filtering-correlation-id: 02a34f8a-057e-4e6c-a838-08d3a6777a91 x-microsoft-exchange-diagnostics: 1; TY1PR01MB0587; 6:rB7rynG8Ay+WrsCIQy4fABGsNmUOwSTzdjGC4bpvTDP6Fw947xVcdyz5gqPS90C8+LsxkCV2nW2Lfmp/9GL9bxmHcr8WG5pEgTHvdBbkLnaao9S27Pf53gCHqtGjnRs+LqBmPRwtNkvHumlZ5U12Wq5mVCuhhp6I/3NjpX1ArSigiceRCtzIZKHBUMU+d5zGa1/eXy3Oj2HQh2Lcr8HygdCzGUvXtFaWo07/ruoLgyTU5RNAiMvnzeDPIMGR+ZMXysmxg8NBrMbN9M5eWcAM67wPmFFT2WFDcmtzSmsh/RoU8fPRByEiog2RCCUcKJlL45hVWyp39ZePSl5U8BmvWw==; 5:fPh/sjpJ3J9Fh5qLZkH1MycPm43PFr6QxqksQZ1cS/3sgotPggcT3TLKlhGu6vsDT3VHhXpghdDfsYNqJBPWXG7RcvlABqvny3wIpBktdWN8WlDALi3VrqPgZYOnJ/02dmP4ICroi5qI4+HrEOdLMA==; 24:T+X3Jdzqt61PIOiOdCP+gzqLEWUhzcsDAB8HWKYhoO0pmzKuvcSToqwI+I80A8a9BjzG7QdTvXCs+zTmoPIS3rxYLhv5vPF7fn4VSwpbmVI=; 7:QWTMffRZUnblQyihko+netlRrJcbdXAPxq4gYpZ4UgP3BiwfTUyeiYq8UN9Qg/dvjBQF5CSFtrGhu88p4/GrxO+dBbU01YL136/PKqYQuxLjIV6OiGOMJiBmZD+VnymXpxoveb4R2Vh+jjSlhoC2OLtdg3Q5kHqir7FGBcF+PFi8sz5IvSQskHSEYz6oSSgA8Al0aiGnn6tNgUX2pWCBVVk0wTEJDrERqz4iJBg7wPou5uJ/jKrlnZc/i+sVF63k x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0587; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(26323138287068); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0587; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0587; x-forefront-prvs: 0996D1900D x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(189002)(199003)(13464003)(377424004)(377454003)(24454002)(106356001)(106116001)(76176999)(54356999)(66066001)(50986999)(305945005)(105586002)(101416001)(86362001)(85182001)(5002640100001)(122556002)(77096005)(33656002)(15975445007)(11100500001)(7696003)(3280700002)(3660700001)(2900100001)(76576001)(2950100001)(189998001)(87936001)(93886004)(74482002)(4326007)(92566002)(9686002)(7736002)(7846002)(5003600100003)(2906002)(74316002)(19580405001)(81156014)(10400500002)(6116002)(102836003)(3846002)(586003)(81166006)(8936002)(110136002)(97736004)(8676002)(19580395003)(68736007); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0587; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2016 15:00:47.5365 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0587 Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 15:01:09 -0000 VGhlIHNpdHVhdGlvbiBpcyB0aGUgc2FtZSB3aXRoIHRoZSBtdXR1YWwgZG9jdW1lbnQuDQpJZiBh bnkgY2hhbmdlcyBhcmUgcmVxdWlyZWQgdG8gdGhlIGh0dHBhdXRoLWV4dGVuc2lvbi4NCnRoZSBz YW1lIGNoYW5nZXMgd2lsbCBiZSB0byB0aGUgYXV0aC1tdXR1YWwuDQoNCi0tIA0KWXV0YWthIE9J V0EsIFBoLkQuICAgICAgIExlYWRlciwgQ3liZXIgUGh5c2ljYWwgQXJjaGl0ZWN0dXJlIFJlc2Vh cmNoIEdyb3VwDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgSW5mb3JtYXRpb24g VGVjaG5vbG9neSBSZXNlYXJjaCBJbnN0aXR1dGUNCiAgICBOYXRpb25hbCBJbnN0aXR1dGUgb2Yg QWR2YW5jZWQgSW5kdXN0cmlhbCBTY2llbmNlIGFuZCBUZWNobm9sb2d5IChBSVNUKQ0KICAgICAg ICAgICAgICAgICAgICAgIE1haWwgYWRkcmVzc2VzOiA8eS5vaXdhQGFpc3QuZ28uanA+LCA8eXV0 YWthQG9pd2EuanA+DQpPcGVuUEdQOiBpZFs0NDA1NDZCNV0gZnBbN0M5RiA3MjNBIDc1NTkgMzI0 NiAyMjlEICAzMTM5IDg2NzcgOUJEMiA0NDA1IDQ2QjVdDQoNCg0KPiAtLS0tLU9yaWdpbmFsIE1l c3NhZ2UtLS0tLQ0KPiBGcm9tOiBZb2F2IE5pciBbbWFpbHRvOnluaXIuaWV0ZkBnbWFpbC5jb21d DQo+IFNlbnQ6IFRodXJzZGF5LCBKdWx5IDcsIDIwMTYgMTE6MzUgUE0NCj4gVG86IOWkp+WyqeWv myA8eS5vaXdhQGFpc3QuZ28uanA+DQo+IENjOiBodHRwYXV0aCBtYWlsaW5nIGxpc3QgPGh0dHAt YXV0aEBpZXRmLm9yZz4NCj4gU3ViamVjdDogUmU6IFtodHRwLWF1dGhdIFdHTEMgb24gdGhlIE11 dHVhbEF1dGggZHJhZnRzDQo+IA0KPiBIaS4NCj4gDQo+IERlZmluaXRlbHkgc3VibWl0IHRoZSBy ZXZpc2VkIGRyYWZ0LiBBdCB0aGUgY29uY2x1c2lvbiBvZiB0aGlzIHRocmVhZCwgd2UgY2FuDQo+ IGRlY2lkZSB3aGV0aGVyIHRvIHByb2NlZWQgd2l0aCBSRkMgNTk4Nywgd2FpdCBmb3IgNTk4N2Jp cyB3aXRoIHRoZSBkb2N1bWVudA0KPiBpbiB0aGUgd29ya2luZyBncm91cCwgb3IgcHJvY2VlZCB3 aXRoIHRoZSBkb2N1bWVudCBhbmQgaGF2ZSBpdCB3YWl0IGZvciB0aGUNCj4gNTk4N2JpcyBpbiB0 aGUgUkZDIGVkaXRvcuKAmXMgcXVldWUuDQo+IA0KPiBKdXN0IG9uZSBxdWVzdGlvbjogVGhpcyB0 aHJlYWQgaGFzIGJlZW4gYWJvdXQgdGhlIC1leHRlbnNpb24gZG9jdW1lbnQuIFRoZSBiYXNlDQo+ IG11dHVhbCBkb2N1bWVudCBhbHNvIHJlZmVyZW5jZXMgUkZDIDU5ODcuIFdpbGwgdGhhdCBuZWVk IGFueSB1cGRhdGVzIChleGNlcHQNCj4gY2hhbmdpbmcgdGhlIFJGQyBudW1iZXIgaW4gdGhlIHJl ZmVyZW5jZSksIG9yIGlzIHRoYXQgZG9jdW1lbnQgZmluZSB0aGUgd2F5DQo+IGl0IGlzPw0KPiAN Cj4gVGhhbmtzDQo+IA0KPiBZb2F2DQo+IA0KPiA+IE9uIDcgSnVsIDIwMTYsIGF0IDU6MjMgUE0s IOWkp+WyqeWvmyA8eS5vaXdhQGFpc3QuZ28uanA+IHdyb3RlOg0KPiA+DQo+ID4gRGVhciBZb2F2 LA0KPiA+DQo+ID4gSSBoYXZlIG5vdCB5ZXQgaGF2ZSBlbm91Z2ggaW5mb3JtYXRpb24gdG8gZGlz Y292ZXIgaG93IHdlIHNob3VsZCBkbw0KPiA+IHdpdGggUkZDNTk4N2JpcywgaW5jbHVkaW5nIHRo cmVlIG9wdGlvbnM6DQo+ID4gMSkgS2VlcCByZWZlcnJpbmcgdG8gY3VycmVudCBSRkM1OTg3IHVu dGlsIG5leHQgcG9zc2libGUgcmV2aXNpb24sDQo+ID4gMikgV2FpdCBmb3IgYmlzLCBvciBmb2xs b3cgaXQgaW4gSUVURiBMQywgb3IgdW5saWtlbHkgKGhvcGVmdWxseSwpDQo+ID4gMykgUmV0aGlu ayBvZiB0aGUgV0cgZGVjaXNpb24gb24gUkZDNTk4NyBhbmQgZ28gYmFjayB0byBXRyBkaXNjdXNz aW9uLg0KPiA+IEhvd2V2ZXIsIG5vdGhpbmcgb2YgYWJvdmUgcGxhbnMgd2lsbCBwcm9oaWJpdCBt ZSB0byBzdWJtaXQgdGhlIHJldmlzZWQNCj4gPiBkcmFmdHMgYmVmb3JlIHRoZSAic3VibWlzc2lv biBsb2Nrb3V0IHBlcmlvZCIuDQo+ID4gU28sIEknbGwgc3VibWl0IHRoZSByZXZpc2VkIGRyYWZ0 cw0KPiA+IHdpdGgga2VlcGluZyByZWZlcmVuY2VzIHRvIFJGQzU5ODcgYXMgaXQgaXMgY3VycmVu dGx5Lg0KPiA+IElmIHdlIGxhdGVyIGRlY2lkZSB0byBtYWtlIGNoYW5nZSBhdCB0aGlzIG1vbWVu dCAod2l0aCBhIGZldyB3ZWVrcw0KPiA+IGRlbGF5KSwgbGV0IHVzIGNvbnNpZGVyIGl0IGp1c3Qg YXMgaW50ZXJtZWRpYXRlIGRyYWZ0cywgYW5kIEknbGwNCj4gPiByZS1zdWJtaXQgdGhlIG1vcmUt cmV2aXNlZCBkcmFmdHMganVzdCBhZnRlciB0aGUgbG9ja291dCBwZXJpb2QuDQo+ID4NCj4gPiBU aGFua3MsDQo+ID4NCj4gPiAtLQ0KPiA+IFl1dGFrYSBPSVdBLCBQaC5ELiAgICAgICBMZWFkZXIs IEN5YmVyIFBoeXNpY2FsIEFyY2hpdGVjdHVyZSBSZXNlYXJjaCBHcm91cA0KPiA+ICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgIEluZm9ybWF0aW9uIFRlY2hub2xvZ3kgUmVzZWFyY2gN Cj4gSW5zdGl0dXRlDQo+ID4gICAgTmF0aW9uYWwgSW5zdGl0dXRlIG9mIEFkdmFuY2VkIEluZHVz dHJpYWwgU2NpZW5jZSBhbmQgVGVjaG5vbG9neSAoQUlTVCkNCj4gPiAgICAgICAgICAgICAgICAg ICAgICBNYWlsIGFkZHJlc3NlczogPHkub2l3YUBhaXN0LmdvLmpwPiwNCj4gPiA8eXV0YWthQG9p d2EuanA+DQo+ID4gT3BlblBHUDogaWRbNDQwNTQ2QjVdIGZwWzdDOUYgNzIzQSA3NTU5IDMyNDYg MjI5RCAgMzEzOSA4Njc3IDlCRDIgNDQwNQ0KPiA+IDQ2QjVdDQo+ID4NCj4gPg0KPiA+PiAtLS0t LU9yaWdpbmFsIE1lc3NhZ2UtLS0tLQ0KPiA+PiBGcm9tOiBodHRwLWF1dGggW21haWx0bzpodHRw LWF1dGgtYm91bmNlc0BpZXRmLm9yZ10gT24gQmVoYWxmIE9mIFlvYXYNCj4gPj4gTmlyDQo+ID4+ IFNlbnQ6IFdlZG5lc2RheSwgSnVseSA2LCAyMDE2IDQ6MTUgQU0NCj4gPj4gVG86IEp1bGlhbiBS ZXNjaGtlIDxqdWxpYW4ucmVzY2hrZUBnbXguZGU+DQo+ID4+IENjOiBodHRwYXV0aCBtYWlsaW5n IGxpc3QgPGh0dHAtYXV0aEBpZXRmLm9yZz4NCj4gPj4gU3ViamVjdDogUmU6IFtodHRwLWF1dGhd IFdHTEMgb24gdGhlIE11dHVhbEF1dGggZHJhZnRzDQo+ID4+DQo+ID4+DQo+ID4+PiBPbiA1IEp1 bCAyMDE2LCBhdCA2OjE3IFBNLCBKdWxpYW4gUmVzY2hrZSA8anVsaWFuLnJlc2Noa2VAZ214LmRl PiB3cm90ZToNCj4gPj4+DQo+ID4+PiBPbiAyMDE2LTA3LTA1IDE3OjA5LCBZb2F2IE5pciB3cm90 ZToNCj4gPj4+Pg0KPiA+Pj4+PiBPbiA1IEp1bCAyMDE2LCBhdCAyOjM5IFBNLCBKdWxpYW4gUmVz Y2hrZSA8anVsaWFuLnJlc2Noa2VAZ214LmRlPiB3cm90ZToNCj4gPj4+Pj4NCj4gPj4+Pj4gT24g MjAxNi0wNy0wNSAxMzoyNiwgWW9hdiBOaXIgd3JvdGU6DQo+ID4+Pj4+PiBJ4oCZbSBub3Qgc3Vy ZSBJIGZvbGxvdyB3aGF0IGtpbmQgb2YgY29vcmRpbmF0aW9uIGlzIG5lZWRlZCBoZXJlLg0KPiA+ Pj4+Pj4gSU1PIHRoZQ0KPiA+PiAtZXh0ZW5zaW9uIGRvY3VtZW50IGlzIHJlYWR5IHRvIGdvIHRv IElFVEYgTEMgKGFmdGVyIHRoZSBhdXRob3JzIG1ha2UNCj4gPj4gdGhlIG5lY2Vzc2FyeSBjaGFu Z2VzIHlvdeKAmXZlIGFscmVhZHkgZGlzY3Vzc2VkKS4gSSB0aGluayBpdOKAmXMgZ29pbmcNCj4g Pj4gdG8gYmUgcGFzdCB0aGUgSUVTRyBiZWZvcmUgNTk4N2JpcyBpcyByZWFkeS4gRG8geW91IHNl ZSBhbnkgbmVlZCB0bw0KPiA+PiBtYWtlIHRoaXMgZG9jdW1lbnQgZGVwZW5kIG9uIDU5ODdiaXMg aW5zdGVhZCBvZiA1OTg3PyBXaWxsIG1ha2luZw0KPiA+PiB0aGlzIGNoYW5nZSByZXF1aXJlIGFu eSBjaGFuZ2VzIHRvIHRoZSBBQk5GIGluIHRoZSBkb2N1bWVudD8NCj4gPj4+Pj4NCj4gPj4+Pj4g WWVzLCBJTUhPIGl0IHdvdWxkIHJlcXVpcmUgY2hhbmdlcy4NCj4gPj4+Pg0KPiA+Pj4+IE9LLiBB bnkgY2hhbmNlIHlvdSBhbmQgdGhlIGF1dGhvcnMgY2FuIGdldCB0aGUgY2hhbmdlcyBkb25lIGJl Zm9yZQ0KPiA+Pj4+IEZyaWRheeKAmXMNCj4gPj4gZGVhZGxpbmU/DQo+ID4+Pg0KPiA+Pj4gVmVy eSB1bmxpa2VseSBvbiBteSBzaWRlLg0KPiA+Pg0KPiA+PiBTbyB3aGF0IGtpbmQgb2YgY2hhbmdl cyBhcmUgd2UgdGFsa2luZyBhYm91dD8gIEp1c3QgdGhlIEFCTkYgYmxvY2ssDQo+ID4+IG9yIGEg YnVuY2ggb2Ygc3Vycm91bmRpbmcgdGV4dD8NCj4gPj4NCj4gPj4gVGhlIHJlYXNvbiBJ4oCZbSBh c2tpbmcgaXMgdGhhdCBJIHRoaW5rIGlmIGl04oCZcyBqdXN0IHRoZSBBQk5GIHdlIGNhbg0KPiA+ PiBwcm9ncmVzcyB0aGUgZG9jdW1lbnQgd2l0aCBhIG5vdGUgdG8gdGhlIEFEIHRoYXQgdGhlIEFC TkYgd2lsbCBuZWVkDQo+ID4+IGFuIHVwZGF0ZSwgYW5kIGZpbmlzaCB0aGF0IGR1cmluZyBJRVRG IGxhc3QgY2FsbC4gT3RoZXJ3aXNlIHdl4oCZcmUgZGVsYXlpbmcNCj4gYnkgYW5vdGhlciAzLTQg d2Vla3MuDQo+ID4+IE9mIGNvdXJzZSwgY29uc2lkZXJpbmcgaG93IGxvbmcgdGhpcyBoYXMgYmVl biBpbiBwcm9jZXNzIDMtNCBleHRyYQ0KPiA+PiB3ZWVrcyBhcmUgbm8gYmlnIGRlYWwsIGJ1dCB3 aHkgcHJvY3Jhc3RpbmF0ZSBpZiB3ZSBkb27igJl0IGhhdmUgdG8/DQo+ID4+DQo+ID4+IFJlZ2Fy ZHMsDQo+ID4+DQo+ID4+IFlvYXYNCj4gPj4NCj4gPj4gX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX18NCj4gPj4gaHR0cC1hdXRoIG1haWxpbmcgbGlzdA0KPiA+ PiBodHRwLWF1dGhAaWV0Zi5vcmcNCj4gPj4gaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9s aXN0aW5mby9odHRwLWF1dGgNCg0K From nobody Thu Jul 7 08:04:49 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7636512D565 for ; Thu, 7 Jul 2016 08:04:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ElJFfnUymV7c for ; Thu, 7 Jul 2016 08:04:46 -0700 (PDT) Received: from JPN01-TY1-obe.outbound.protection.outlook.com (mail-ty1jpn01on0057.outbound.protection.outlook.com [104.47.93.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 67EB712D773 for ; Thu, 7 Jul 2016 08:04:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=P6mbWo+qeXvmbMkcde9KI9QpBgeyTJDCs9eewrM5DfM=; b=gj7qnW0IP7uH5nezRrbtVY8CixZ2budH7yD8mLqePSkygAAvjdPohaxPBcPhSaiMG2QLo7+usDIRMGsFLtS4KT2zY7GqupfU7a9pFy6DJN2fTTWFrgcEfRkuHK9rYZF+5a8CcQZ9YIP/U6j/VPFk8RfrxdgIuNpEeAB2A7U2wts= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0585.jpnprd01.prod.outlook.com (10.167.157.15) with Microsoft SMTP Server (TLS) id 15.1.534.14; Thu, 7 Jul 2016 15:04:42 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.020; Thu, 7 Jul 2016 15:04:42 +0000 From: =?utf-8?B?5aSn5bKp5a+b?= To: Julian Reschke , Yoav Nir , httpauth mailing list Thread-Topic: [http-auth] WGLC on the MutualAuth drafts Thread-Index: AQHRuENrc1e38ZKqGkCihIB/WT6FWZ/vH9GAgBpU3/CAAGU6AIADSHMwgAAZToCAAACtUIAACY+AgAAK3tA= Date: Thu, 7 Jul 2016 15:04:42 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <084b1a6f-3d32-ef37-da7c-7ed6d958974c@gmx.de> <9fea24ee-51c7-f49d-851a-803cf47523e5@gmx.de> In-Reply-To: <9fea24ee-51c7-f49d-851a-803cf47523e5@gmx.de> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [219.67.14.212] x-ms-office365-filtering-correlation-id: 9f823e6a-f11e-4d6b-f7b8-08d3a678067f x-microsoft-exchange-diagnostics: 1; TY1PR01MB0585; 6:a8F/TlTjq2rZUQwK7iMyCFbakVuCkU+vagN5+IpbiU45b5FJVJhLmis0UXb0BIAFWbOSE231497Dg+dgqlgz0ZnHKT2p+pJVMuAG3+knlHg6Vcs5aCFTv2zEiyhTgwUcyxi2ZIdFeGD8tPnbHc4iZKKvWj1laGNJMv5yJGYZ/8jV5sxjJ+NFbg4QxL9YlJ09g8BcbQV9loOaDb5tfmFHdd7cToFvbiTw6XDI+9m7zyNLkYhFqLkEPHKoqdNCp43VpPkfWqz7YyDTx2utN1trHvtRejer+WLOD2ziv9ybJ5ADK9B+W7bcyl/HUYLtBLof3Q/HoTMdRa27u5kUTwHkhA==; 5:eCWp5MVAxvZV5J5pfsQOwGoDCUvr15C2/7y+0p8NaU8j6mYdGj6hhZjX5/wAumsM+SaGI8AMeyTVmXdtxtV4flvOHcIR7HCLFFLl5OlPt/s6cNl+eNmtBqgI9xAPF9sCAaryVcFDGuN5CLxeQS9Wxg==; 24:svd6lHyRTtKb8y4CcxwIayHfvdBdwnIP5oOrvP+AlqG7ZQqq5UOQW3bFwLPtk1SCnTIhAROqXNoWCYGpH3FjxhodM9NxY5bMAAqHuYg/Lnc=; 7:tyF9eAxQRuYszhLR6ZuJst4rk1k20CbLJp7K9Eo6qcXWWhXDjDaX6ZWyqHk5xR9xAx0j5PVUhSY+o8QHfCAKO/46Nx4RvETFh3wRq5xo8N31PSeyPYP+GKpEksKlGRuoqyjD3QDEul5QN1W1ogUkbBEPulnzT+P74eLqqREPmiy/k2/6BlQz2NPVmfsqfbYWnhCdgcmLC8IxHJtGlpaISMGCN7vqROKSxIFbDKTG5MWjt8anTT1z8U1TMr9CTUVb x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0585; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0585; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0585; x-forefront-prvs: 0996D1900D x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(189002)(52044002)(199003)(74482002)(93886004)(5003600100003)(9686002)(7736002)(7846002)(8666005)(92566002)(3660700001)(3280700002)(76576001)(2900100001)(11100500001)(7696003)(87936001)(189998001)(2950100001)(102836003)(3846002)(6116002)(586003)(5001770100001)(19580405001)(81156014)(10400500002)(8676002)(19580395003)(68736007)(8936002)(81166006)(97736004)(2906002)(74316002)(107886002)(50986999)(66066001)(76176999)(54356999)(101416001)(305945005)(105586002)(106356001)(106116001)(85182001)(33656002)(122556002)(77096005)(5002640100001)(86362001)(7059030); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0585; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2016 15:04:42.3196 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0585 Archived-At: Subject: Re: [http-auth] WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 15:04:48 -0000 VGhhbmsgeW91LCBKdWxpYW4sDQoNCj4gPj4gKGRpZCB5b3Ugd2FudCB0byBzYXkgImZvbyoiIGhl cmU/KQ0KPiA+DQo+ID4gRHJvcHBpbmcgb2YgKiBpcyBpbnRlbnRpb25hbCwgdG8gbWVhbiAic29t ZW9uZSBvbmx5IHVzZXMgZW5jb2RlZA0KPiA+IHZhbHVlcywgd2l0aG91dCB0aGUgZmllbGQgZXh0 ZW5kaW5nIG1lY2hhbmlzbSBieSBhcHBlbmRpbmcgKi4iDQo+IA0KPiBPSywgbm90IHN1cmUgdGhp cyBpcyBhIGdvb2QgaWRlYSwgdGhvdWdoLg0KDQpUaGFua3MuIEknbSBub3QgcHJvcG9zaW5nLCBp dCdzIGp1c3QgYW4gZXhhbXBsZSB0byBjbGFyaWZ5IDotKQ0KDQo+IFdlbGwsIGZlZWwgZnJlZSB0 byBwcm92aWRlIGZlZWRiYWNrIG9uIHJmYzU5ODdiaXMgc28gd2UgY2FuIGdldCB0aGlzIHJpZ2h0 Lg0KDQpZZXMsIEknbGwgZGVmaW5pdGVseSBjb250cmlidXRlLg0KDQpDaGVlcnMsDQoNCi0tIA0K WXV0YWthIE9JV0EsIFBoLkQuICAgICAgIExlYWRlciwgQ3liZXIgUGh5c2ljYWwgQXJjaGl0ZWN0 dXJlIFJlc2VhcmNoIEdyb3VwDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgSW5m b3JtYXRpb24gVGVjaG5vbG9neSBSZXNlYXJjaCBJbnN0aXR1dGUNCiAgICBOYXRpb25hbCBJbnN0 aXR1dGUgb2YgQWR2YW5jZWQgSW5kdXN0cmlhbCBTY2llbmNlIGFuZCBUZWNobm9sb2d5IChBSVNU KQ0KICAgICAgICAgICAgICAgICAgICAgIE1haWwgYWRkcmVzc2VzOiA8eS5vaXdhQGFpc3QuZ28u anA+LCA8eXV0YWthQG9pd2EuanA+DQpPcGVuUEdQOiBpZFs0NDA1NDZCNV0gZnBbN0M5RiA3MjNB IDc1NTkgMzI0NiAyMjlEICAzMTM5IDg2NzcgOUJEMiA0NDA1IDQ2QjVdDQoNCg== From nobody Thu Jul 7 08:11:35 2016 Return-Path: X-Original-To: http-auth@ietf.org Delivered-To: http-auth@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 80E8512D11D; Thu, 7 Jul 2016 08:11:30 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: X-Test-IDTracker: no X-IETF-IDTracker: 6.25.1 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20160707151130.23760.33192.idtracker@ietfa.amsl.com> Date: Thu, 07 Jul 2016 08:11:30 -0700 Archived-At: Cc: http-auth@ietf.org Subject: [http-auth] I-D Action: draft-ietf-httpauth-mutual-08.txt X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 15:11:30 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Hypertext Transfer Protocol Authentication of the IETF. Title : Mutual Authentication Protocol for HTTP Authors : Yutaka Oiwa Hajime Watanabe Hiromitsu Takagi Kaoru Maeda Tatsuya Hayashi Yuichi Ioku Filename : draft-ietf-httpauth-mutual-08.txt Pages : 54 Date : 2016-07-07 Abstract: This document specifies a mutual authentication scheme for the Hypertext Transfer Protocol (HTTP). This scheme provides true mutual authentication between an HTTP client and an HTTP server using password-based authentication. Unlike the Basic and Digest authentication schemes, the Mutual authentication scheme specified in this document assures the user that the server truly knows the user's encrypted password. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-httpauth-mutual/ There's also a htmlized version available at: https://tools.ietf.org/html/draft-ietf-httpauth-mutual-08 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-httpauth-mutual-08 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Thu Jul 7 08:11:48 2016 Return-Path: X-Original-To: http-auth@ietf.org Delivered-To: http-auth@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 85AED12D534; Thu, 7 Jul 2016 08:11:43 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: X-Test-IDTracker: no X-IETF-IDTracker: 6.25.1 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <20160707151142.23675.31802.idtracker@ietfa.amsl.com> Date: Thu, 07 Jul 2016 08:11:42 -0700 Archived-At: Cc: http-auth@ietf.org Subject: [http-auth] I-D Action: draft-ietf-httpauth-extension-07.txt X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 07 Jul 2016 15:11:43 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Hypertext Transfer Protocol Authentication of the IETF. Title : HTTP Authentication Extensions for Interactive Clients Authors : Yutaka Oiwa Hajime Watanabe Hiromitsu Takagi Tatsuya Hayashi Yuichi Ioku Filename : draft-ietf-httpauth-extension-07.txt Pages : 28 Date : 2016-07-07 Abstract: This document specifies extensions for the HTTP authentication framework for interactive clients. Currently, fundamental features of HTTP-level authentication are insufficient for complex requirements of various Web-based applications. This forces these applications to implement their own authentication frameworks by means like HTML forms, which becomes one of the hurdles against introducing secure authentication mechanisms handled jointly by servers and user-agent. The extended framework fills gaps between Web application requirements and HTTP authentication provisions to solve the above problems, while maintaining compatibility with existing Web and non-Web uses of HTTP authentications. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-httpauth-extension/ There's also a htmlized version available at: https://tools.ietf.org/html/draft-ietf-httpauth-extension-07 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-httpauth-extension-07 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Sat Jul 9 03:34:18 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3227812B05C for ; Sat, 9 Jul 2016 03:34:17 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.601 X-Spam-Level: X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lwH40n3Z6XQw for ; Sat, 9 Jul 2016 03:34:15 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.21]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CEF7412B03C for ; Sat, 9 Jul 2016 03:34:14 -0700 (PDT) Received: from [192.168.178.20] ([93.217.123.10]) by mail.gmx.com (mrgmx101) with ESMTPSA (Nemesis) id 0MOBOi-1bRJln2yHM-005btR; Sat, 09 Jul 2016 12:34:11 +0200 To: Yoav Nir , httpauth mailing list References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> From: Julian Reschke Message-ID: <77f07eac-2a52-17e4-38f6-e1d4aac4c7af@gmx.de> Date: Sat, 9 Jul 2016 12:34:10 +0200 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0 MIME-Version: 1.0 In-Reply-To: <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:Qeb1vJDoKvEm6XiAHBIjn6+CNx6q0x/kCXl9u4dnQ+4ldjS91xz wgKeOfwF6NfMOkRWFpGbVmO2yDZASJIXBayWlCp0K9QoB7halOLm2uxEfVxllNeJVISRLu5 Nm0Dlq6sMfF9zbm5h+bbDS3LSSjzifn80X0r5p4jqJoUGeF2lRvmstglAFvck8+kHeBynL1 KUHjiCg4ymJKhAmAbrhOg== X-UI-Out-Filterresults: notjunk:1;V01:K0:uV+tGAvJ5e4=:ZufexKxgIC+dYv2eGhSHx5 C8x0OYl4j+ZI5sei8YUdOvliK9Vuvto9iDOCbu180iwIYen3xp0YcG2acNYd3Z6MhtmIQDtIE FsG/vop60U8lUXnyQXD4i+UsfoCkRdcVzcsLarTFKblDI36bAl+B3OmG1A1fAhEOrLzcK+A4C l55w3jBGpYNvziXTythhi9Wv66a/ryBg24gkGeoWxVTHkJPi2R7cgVIuzei7CeRNUhDrRo4Jl xSNTmkFOqpe45Ac3cQ4G/BWNS+uxj+03M84mSgE4w49ygNvD//4CMVlLICbR7o21NoBu0lCfm UVmsx3glERSGbXuNIFfdBRm+4p9Br3hTahF1/o8PW/NC+eyPhjAvi5U55UGS6ltXFg9rLlO6F UdfmT6vFFHbl4Lp5yF4rwRyv3RCgmaMaB18Pl9i0UZDvJ9PO5HrpZFQVK1H1tjMAb1KCgBeMR sCnvmUe8bE1Lb+Up4pJu1c51Y6EbRTRP+SEPVbhBLHmOuUU858xH7DXlmvN0osWesAZDpZxOD oKbwUDGl5motS4Br6UdxUL98YsieBwSC4BrHjqOPdAZAZaew81ReWadOaxqe6+TU3swiBNCs6 NyFMY6LHuHyLGB5+ZQYKSG7ps4H7CYEfru7nVXnpopTyi724dAUCxCKUIC8aBjVACDqy92bfk sx6Zj4FcVweBbYDZq/GG9l2Af9TfUhC4FOLut9zd5zj5SZWJ3l+BqWdMHOvZyOzQmztOcDm7y UxNTibqTC7cOw+4I6QULl9OU9EQC8vTm0Lr5ajauRrUU3eNUSlZS63yHcjFxUmHbwATtx0tFi rQKCeJ+ Archived-At: Subject: [http-auth] RFC5987bis, was: WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 09 Jul 2016 10:34:17 -0000 On 2016-06-18 11:59, Julian Reschke wrote: > ... > 4. Authentication-Control header > > Authentication-Control = 1#Auth-Control-Entry > Auth-Control-Entry = auth-scheme 1*SP 1#auth-control-param > auth-control-param = extensive-token BWS "=" BWS token > / extensive-token "*" BWS "=" BWS ext-value > ext-value = > > Figure 4: the BNF syntax for the Authentication-Control header > > FYI: I'm in the process of revising RFC 5987, and that ABNF production > is going to be removed. Seems we need to coordinate here. > ... Sorry for causing confusion. Since I wrote this I went back to RFC 5987bis, and it turns out that the ABNF production I intended to kill is *ext-parameter*, not *ext-value*. See change in (just submitted). Best regards, Julian From nobody Sun Jul 10 22:54:15 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D25512B016 for ; Sun, 10 Jul 2016 22:54:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6JV2nfjFlzMS for ; Sun, 10 Jul 2016 22:54:12 -0700 (PDT) Received: from mail-wm0-x22e.google.com (mail-wm0-x22e.google.com [IPv6:2a00:1450:400c:c09::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1299312B00D for ; Sun, 10 Jul 2016 22:54:12 -0700 (PDT) Received: by mail-wm0-x22e.google.com with SMTP id i5so1510935wmg.0 for ; Sun, 10 Jul 2016 22:54:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=+Nt9sZlYtzzhH7ObJ4np+WzVbC7O8Mbm/E2dWLUidj0=; b=IJi7+nfJlb4Pqd3gZkcE/o+2WeOqmViYUX9nReogCxGqVXcP/wAJAnPRQwxoKZJzk6 2066F+ZBnaw/GqeWcE4dD3uPeYrVQRzWOFhLfvw+QSIs25M3/NI3goL7AGjxt8BFHrSb PMUyno5I3vWGs9n0VexQvDxSoFMjuYJAfBtvH2DPiwFko1S9K1vco1E4kU3mjUdZj/nX UR0jFF+tDRNooPZtzv9cJFLK+wb1ZIM/3Op5fRgGyBsfdhxxje2s6IINrJE09FuKCV1w X9HgWU/2vpkNwk6bqUFhFek+AVlERdZd8JE25OWteNUFqyYNCzubaHaX8pkYXMhu8egD McKQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=+Nt9sZlYtzzhH7ObJ4np+WzVbC7O8Mbm/E2dWLUidj0=; b=iSt0jUCl9FGhXb4WqqPB8XsYBEfbQVgqW5rOXrt/yNLuq8YMXnPpGTBBqjq3IdnK3D PBpY0HPGjgo7iZh8XrbjI0VXZHJUMcDufRxQEGMHiMbD8y5nRKOhwVWYkMLfptyy5P84 soj3IgB+Y3NtRsPeTKWCFbx+Dt7lOkRFHkRLmZxyLuunNw0PlSmktfATYsLiTlWcSYKX 4FNx2j3G2whoS1U6u3E3BlqF+hEmg6PujyjNKhDBOCyj068G0oyGtBWgXgIPUMue0Jr/ BoaV0xwcPbkyMTB+Z1LHJJKF8lb/09uJ/geuYPMy8XeUu4YOsu8Q1K0Uw+0GuPYjyJbz mNQg== X-Gm-Message-State: ALyK8tLgqgk9Z6zt7h6hOtTYG6wtZb6LuR3819wYgMZi8+QSYA3ZT1f1Vay6Ka3fs1KIag== X-Received: by 10.28.131.200 with SMTP id f191mr16927271wmd.80.1468216450573; Sun, 10 Jul 2016 22:54:10 -0700 (PDT) Received: from the-mbp-of-yoav.mshome.net ([176.13.240.189]) by smtp.gmail.com with ESMTPSA id 207sm15154555wmb.7.2016.07.10.22.54.08 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Sun, 10 Jul 2016 22:54:09 -0700 (PDT) Content-Type: text/plain; charset=windows-1252 Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) From: Yoav Nir In-Reply-To: <77f07eac-2a52-17e4-38f6-e1d4aac4c7af@gmx.de> Date: Mon, 11 Jul 2016 08:54:05 +0300 Content-Transfer-Encoding: quoted-printable Message-Id: <8CF0FBC6-3417-4CAE-993D-07E9CA1A912E@gmail.com> References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <77f07eac-2a52-17e4-38f6-e1d4aac4c7af@gmx.de> To: Julian Reschke X-Mailer: Apple Mail (2.3124) Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] RFC5987bis, was: WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Jul 2016 05:54:13 -0000 > On 9 Jul 2016, at 1:34 PM, Julian Reschke = wrote: >=20 > On 2016-06-18 11:59, Julian Reschke wrote: >> ... >> 4. Authentication-Control header >>=20 >> Authentication-Control =3D 1#Auth-Control-Entry >> Auth-Control-Entry =3D auth-scheme 1*SP 1#auth-control-param >> auth-control-param =3D extensive-token BWS "=3D" BWS token >> / extensive-token "*" BWS "=3D" BWS = ext-value >> ext-value =3D >>=20 >> Figure 4: the BNF syntax for the Authentication-Control header >>=20 >> FYI: I'm in the process of revising RFC 5987, and that ABNF = production >> is going to be removed. Seems we need to coordinate here. >> ... >=20 > Sorry for causing confusion. >=20 > Since I wrote this I went back to RFC 5987bis, and it turns out that = the ABNF production I intended to kill is *ext-parameter*, not = *ext-value*. >=20 > See change in = (just submitted). OK, and comparing RFC 5987 and rfc5987bis I see that the definition of = ext-value is the same.=20 So does that mean we=92re good to go on these drafts? Yoav From nobody Mon Jul 11 00:08:23 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 56C4B12B00A for ; Mon, 11 Jul 2016 00:08:22 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mzF6JjrN1043 for ; Mon, 11 Jul 2016 00:08:20 -0700 (PDT) Received: from JPN01-OS2-obe.outbound.protection.outlook.com (mail-os2jpn01on0054.outbound.protection.outlook.com [104.47.92.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6350112D0AA for ; Mon, 11 Jul 2016 00:08:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Amw9uF0OnIIcCOMdxjeIeanUYaNXidIIl1fAuhwM/Lk=; b=CcFXbdkHU9JrI56r3/gSpHXTAMnxiTL+sBLl8aEJZgExjEc74v8G2LNhsNQtyKWmLSGgWYTZlj53pfOSrlQCgvAqWgJRvsupc2Im5bvGZpLyh7Clb/g2yZYSVya7fd2ueoUTSeD8eWyaTQdrzC+35iz/WGUxUL9DLglqd/8lwIY= Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) by TY1PR01MB0588.jpnprd01.prod.outlook.com (10.167.157.18) with Microsoft SMTP Server (TLS) id 15.1.534.14; Mon, 11 Jul 2016 07:08:15 +0000 Received: from TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) by TY1PR01MB0588.jpnprd01.prod.outlook.com ([10.167.157.18]) with mapi id 15.01.0534.022; Mon, 11 Jul 2016 07:08:15 +0000 From: =?iso-2022-jp?B?GyRCQmc0ZDQyGyhC?= To: Yoav Nir , Julian Reschke Thread-Topic: [http-auth] RFC5987bis, was: WGLC on the MutualAuth drafts Thread-Index: AQHR2c114iqMQDfWkUqIswHWOv6VvqASvaiAgAAQ/zA= Date: Mon, 11 Jul 2016 07:08:15 +0000 Message-ID: References: <2DBE893A-434D-4B67-BF12-AEFBDE7A23B7@gmail.com> <32b9df1f-b61d-405e-d935-5d964d9acbb6@gmx.de> <77f07eac-2a52-17e4-38f6-e1d4aac4c7af@gmx.de> <8CF0FBC6-3417-4CAE-993D-07E9CA1A912E@gmail.com> In-Reply-To: <8CF0FBC6-3417-4CAE-993D-07E9CA1A912E@gmail.com> Accept-Language: ja-JP, en-US Content-Language: ja-JP X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp; x-originating-ip: [150.29.149.183] x-ms-office365-filtering-correlation-id: bc6bdcd8-f84e-4e40-1ed4-08d3a95a2142 x-microsoft-exchange-diagnostics: 1; TY1PR01MB0588; 6:nYnqgDtx/UomvRfjYIaDU+SVDqWR3P9ZYJ8RCn48ZCSKIxGoy4isfU5u7Lefq7uxmXm/tlB8/Pz1LC2YSbFADHiz5tC0CShWSEnTN030n1Kk8fjcVIoNkUTfL6Xk2ldELlWZG76HpvJf2ZmQ3h9Wrluh+iaF5o6hzuRMJngxvuk2UNKRwjj8kAoW/sBrxFQPiNkMdmExHi9JaR2QiKozGYsuh2R//2l4A85JJwsv7peEfJJ0fmCzsgeAzi9K2scUnvoEmVwWJ5X5XbemlRPF0/sQmf6VMZzIhAJ2n4wASB1ZP8h1oOkdNcRKEoLV70PC0+4m1/S+NShLDcNbgb4NyQ==; 5:rePNM+SZuPmrAzcUV14Vaq8DRM5duR+Em2dK3+v+2kvyQNWIV3coZ05qPEHLoE8z81lOOrAHDQ1Qtorf41+gpnlXJPw29WgioxWSI3HJh6x7d4wjKSE/l3UegZXGg36uVzq1F+Dx9BkEhqcmvPyC6Q==; 24:ht2W1Iuh0PH5DL3Nlp/rkg3F+JlRnDshgBiU0up1TM8Gf1P55WlBIvMvtX2DvwnONIS50+lBIOiJFevVwVrUwvjgdRXDwwDAAB3nimcSCNg=; 7:yKGN7ecjycmtpmH5YccjNNUX/qCjwSFR3BX9xKvvMe7Iqu2jVUHZR/PgVJA9zqQNnJylcptazRWAc/oPfHobtqsyKasec2GL4fKgXbpcs5UUAt+W1oPNxZk8Vq00D2adyz43E3bKkvuRgvvg1rGjD2q1bke1hMYRQOwiQ8Z0iGpMZl1tHe+IcZAh53IwAq7jhWu33qocS1ECL3+hZOB+00p1m1CFnair3nhW7JE5t1ZONe8ZFETj5TzV3WNC5Wll x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:TY1PR01MB0588; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(26323138287068); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(2401047)(8121501046)(5005006)(10201501046)(3002001)(6055026); SRVR:TY1PR01MB0588; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB0588; x-forefront-prvs: 00003DBFE7 x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(13464003)(199003)(69234005)(189002)(377454003)(24454002)(377424004)(68736007)(9686002)(8676002)(8666005)(74482002)(3280700002)(15975445007)(66066001)(11100500001)(3660700001)(8936002)(189998001)(305945005)(2950100001)(2900100001)(77096005)(85182001)(76576001)(76176999)(87936001)(54356999)(81156014)(81166006)(19580395003)(19580405001)(74316002)(4326007)(92566002)(586003)(33656002)(50986999)(93886004)(2906002)(10400500002)(7696003)(7846002)(122556002)(7736002)(97736004)(5001770100001)(5003600100003)(86362001)(105586002)(106116001)(101416001)(6116002)(102836003)(3846002)(106356001)(5002640100001)(7059030)(19627235001); DIR:OUT; SFP:1101; SCL:1; SRVR:TY1PR01MB0588; H:TY1PR01MB0588.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: aist.go.jp X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jul 2016 07:08:15.8192 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB0588 Archived-At: Cc: httpauth mailing list Subject: Re: [http-auth] RFC5987bis, was: WGLC on the MutualAuth drafts X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Jul 2016 07:08:22 -0000 Dear Yoav and Julian, I just took a quick observation of the diff URL, and it seems to be mostly fine to go forward. Dear Julian, The current text in Section 3.2.1 and 4 is really fine for me. If the changes (Appendix C) goes to the final text, I prefer Do not attempt to define a generic parameter ABNF; just concentrate=09 on the parameter value syntax. to be changed something like below, Do not define a parameter ABNF in a generic way; It is clarified that the formal syntax should be defined in each document referring to this do= cument. so that the relation between the generic convention and the referring document is clearer. "Concentrate on the parameter value" is unclear for the people who does not share the background reason not defining the key syntax as ABN= F. They can be misleaded to the understanding that we're throwing the star-convention away, too. Maybe the background reason can be expressed somewhere as an informative,=20 explanatory text. --=20 Yutaka OIWA, Ph.D. Leader, Cyber Physical Architecture Research Group Information Technology Research Institute National Institute of Advanced Industrial Science and Technology (AIST) Mail addresses: , OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D 3139 8677 9BD2 4405 46B5= ] > -----Original Message----- > From: http-auth [mailto:http-auth-bounces@ietf.org] On Behalf Of Yoav Nir > Sent: Monday, July 11, 2016 2:54 PM > To: Julian Reschke > Cc: httpauth mailing list > Subject: Re: [http-auth] RFC5987bis, was: WGLC on the MutualAuth drafts >=20 >=20 > > On 9 Jul 2016, at 1:34 PM, Julian Reschke wrote= : > > > > On 2016-06-18 11:59, Julian Reschke wrote: > >> ... > >> 4. Authentication-Control header > >> > >> Authentication-Control =3D 1#Auth-Control-Entry > >> Auth-Control-Entry =3D auth-scheme 1*SP 1#auth-control-param > >> auth-control-param =3D extensive-token BWS "=3D" BWS token > >> / extensive-token "*" BWS "=3D" BWS ext-valu= e > >> ext-value =3D > >> > >> Figure 4: the BNF syntax for the Authentication-Control header > >> > >> FYI: I'm in the process of revising RFC 5987, and that ABNF > >> production is going to be removed. Seems we need to coordinate here. > >> ... > > > > Sorry for causing confusion. > > > > Since I wrote this I went back to RFC 5987bis, and it turns out that th= e ABNF > production I intended to kill is *ext-parameter*, not *ext-value*. > > > > See change in > part-4> (just submitted). >=20 > OK, and comparing RFC 5987 and rfc5987bis I see that the definition of ex= t-value > is the same. >=20 > So does that mean we=1B$B!G=1B(Bre good to go on these drafts? >=20 > Yoav >=20 > _______________________________________________ > http-auth mailing list > http-auth@ietf.org > https://www.ietf.org/mailman/listinfo/http-auth From nobody Sun Jul 31 19:02:18 2016 Return-Path: X-Original-To: http-auth@ietfa.amsl.com Delivered-To: http-auth@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3492512B060 for ; Sun, 31 Jul 2016 19:02:17 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Isu2UdL9kLvW for ; Sun, 31 Jul 2016 19:02:16 -0700 (PDT) Received: from mail-vk0-x22a.google.com (mail-vk0-x22a.google.com [IPv6:2607:f8b0:400c:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE66E12B05E for ; Sun, 31 Jul 2016 19:02:15 -0700 (PDT) Received: by mail-vk0-x22a.google.com with SMTP id n129so89434999vke.3 for ; Sun, 31 Jul 2016 19:02:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:from:date:message-id:subject:to; bh=8MUTtzJwtwcu/wC4seJTcK/s3CTBzIYSN3jAfrvfCss=; b=NysxJ+bpBAeIJr9QPPkbVSoeAugOJTE6p1JoesITaZiLm9wqlkNXH1AxNk3S6zG52k Cra+zrhS9rjnyQ+DqjOtNumWBUOG4HNAj78gnS0uAQRqhjFKcFTmtGDbLGkqnpheInXp W4sZ+NS1cT8XCdHnYyT8GZ1wPUpEkZ7/yUMc07ErNbQFGqM/Ogn1kJiBV3GaL0UdJhzC Y6q9Xj+VUFEQ/EjiEX7s20MkJV6plYcPTJPUeTWRARGIgwX0IyYPZWoeaekkHciu7Ha9 LDR3acVDCyZXp3Ag8TqxjV5Pml7G6CT5erTK4XXn0XvW/Kj5CaIcgFzunVweq0vIkDwI h4iA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=8MUTtzJwtwcu/wC4seJTcK/s3CTBzIYSN3jAfrvfCss=; b=mW9G1o2L2Fa7Z10UdQYSqz0GcQPxxv90Oyz/okodffvaa3oMTNZ0ac9m77jhbUSvO4 VqGJqnOGFRd4+qf4hdJmgHKZBNsnn3Kw4HFUTWZlBPwClqEYsmq+9wwQTjkJBJkLBhSM lCVZpzLndhW//3rqk8aVZJJJa4otf3tMBt6o8ndHsFh13VnwGfJTn9tqgbrvuDcWg7Vv 39ILjjICaKE6MeEhuLE6LJHwq+Ca8NZoawahcA/m7WgifON1AcyWW4V81HQx+rCGPnL4 bEdYFUO9VFxF5c9JraHhCxn/7KOW02m8WdXMaeg6HHi3M9xVqZOP23AHH+00clbkFSQ8 mJmA== X-Gm-Message-State: AEkoouupNMVlZaJfaObPmOSswcn+vZN/MPwkZUjrcEKFJa4TTekJxHpo5q1VQFBg5IK3Dyrcn6EDpahhPe+bdA== X-Received: by 10.31.177.139 with SMTP id a133mr24441862vkf.151.1470016934983; Sun, 31 Jul 2016 19:02:14 -0700 (PDT) MIME-Version: 1.0 Received: by 10.159.37.104 with HTTP; Sun, 31 Jul 2016 19:02:14 -0700 (PDT) From: Kathleen Moriarty Date: Sun, 31 Jul 2016 22:02:14 -0400 Message-ID: To: "http-auth@ietf.org" Content-Type: text/plain; charset=UTF-8 Archived-At: Subject: [http-auth] AD review of draft-ietf-httpauth-extension X-BeenThere: http-auth@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: HTTP authentication methods List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Aug 2016 02:02:17 -0000 Hello, Thank you for your work on the experimental draft, draft-ietf-httpauth-extension. The draft looks very good, I just would like to pint out one nit: Nits: Section 4.2 The default behavior for clients is implementation-dependent, and it may also depending on authentication schemes. s/depending/depend/ I'm not sure if I will have time to review the other 2 drafts early this week. If I can't, is it okay to put this in last call ahead of the others? This may mean that this draft is on the IESG telechat in a little over 2 weeks and the others may be on the following. Let me know if they should proceed as a set and I'll put them all on the telechat a little over 4 weeks from now. Thank you. -- Best regards, Kathleen