To:
Michael Graff <Michael_Graff@isc.org>
Cc:
"Hollenbeck, Scott" <shollenbeck@verisign.com>, ietf-provreg@cafax.se
From:
Michael Graff <Michael_Graff@isc.org>
Date:
26 Nov 2002 22:32:44 +0000
In-Reply-To:
<s9sk7j0ox8x.fsf@farside.isc.org>
Sender:
owner-ietf-provreg@cafax.se
User-Agent:
Gnus/5.0808 (Gnus v5.8.8) Emacs/21.2
Subject:
Re: EPP statuses and other questions
Michael Graff <Michael_Graff@isc.org> writes: > I've read almost every post on that page, and a few from other pages. And after reading much more, I feel the mistake is that there are two handles for objects now, and that is becomming a pain in trying to implement EPP. (0) ROIDs are not well thought out, nor well integrated into the 07 draft at least. (1) A handle (like FOO1-ISC) is not self-describing. Is that a contact handle, a domain handle, or what? (2) Part of the handle namespace is client-chosen, part is registry-chosen. On contacts, the local (and thus the global) identifiers are chosen by the registrant, where domain and other ROIDs are chosen by the registry. This means the registry cannot fix (1) easily. Example: Suppose a contact, "FLAME1" is created, and assigned ROID of FLAME1-ISC. Now, later, that contact is deleted. Suppose a domain is created, "FLAME.ORG", and it is assigned the ROID of "FLAME1-ISC". Now, that is no longer a valid contact ROID. All external references will be totally confused. WORSE, since domains and contacts can have passwords, would: <authinfo roid="FLAME1-ISC">password</authinfo> allow me to modify other domains? After all, FLAME1-ISC may be listed as an external technical contact for FOO.COM, and I can get the password right for the domain-versio of FLAME1-ISC. (3) The various <create> commands need to return the ROID an object was assigned. As things are now, I need to look up the contact using <info> before I can use it in an <authinfo roid="whatever"> tag. (4) Using two names, one which is (in the contact case) derrived from the other, seems pretty silly. If you're going to do that, use only the global (or use the URN concept to refer to external data, mentioned in the mail archives and in my last post.) (5) The -FOO suffix doesn't really fit with the new world order of URIs, URNs, and is different than how XML, the EPP protocol of choice (yuck) would do it. (6) EPP is extensible. Once other issues, such as how to notify referrers of data, or even a good use for this sort of thing is found, a draft can be written to extend EPP to handle registry-side ROIDs. Until then, I at least feel they complicate an already complicated protocol, and should be removed for now. Additionally, making it OPTIONAL gives the registry more flexability into if it WANTS external references or not. --Michael