To:
ietf-provreg@cafax.se
From:
Andrew Sullivan <andrew@ca.afilias.info>
Date:
Fri, 22 Jul 2005 09:25:32 -0400
Content-Disposition:
inline
In-Reply-To:
<046F43A8D79C794FA4733814869CDF07B5EEF3@dul1wnexmb01.vcorp.ad.vrsn.com>
Mail-Followup-To:
Andrew Sullivan <andrew@ca.afilias.info>,ietf-provreg@cafax.se
Reply-To:
Andrew Sullivan <andrew@ca.afilias.info>
Sender:
owner-ietf-provreg@cafax.se
User-Agent:
Mutt/1.5.9i
Subject:
Re: [ietf-provreg] EPP Document Updates
On Fri, Jul 22, 2005 at 07:20:26AM -0400, Hollenbeck, Scott wrote: > > -----Original Message----- > > From: janusz [mailto:janusz@ca.afilias.info] > > > > > Will removing transform restrictions on pendingDelete remove all > > conflicts between 3731 and 3915? > > It will if the registry doesn't do something stupid to introduce a > potential conflict. > > > Lets consider a scenario when a deletion policy prohibits any > > updates of > > domain objects between enetering pendingDelete state and rgp restore > > request. If serverUpdateProhibited status is used then rgp restore > > request should not be accepted because it is an extension of <update> > > command. From the other hand I don not see any mechanism within EPP > > protocol to protect the domain object from client updates and at the > > same time allowing <update> requests with rgp restore extension. It seems to me, though, that Janusz is pointing to another difficulty that I've also noticed: the *UpdateProhibited status values are too coarse. I understand the value of consistency: we have one type of prohibition against (for instance) <domain:delete>; so we should similarly have one type of prohibition against other commands, like <domain:update>. The trouble I have with this is that <domain:delete> really has only one function: either it causes a delete to be initiated (and maybe completed) against a domain, or it does not. It therefore makes sense that a client or repository should either prohibit deletes, or not. In contrast to that, <domain:update> can change all manner of attributes on a domain. Moreover, there are certainly cases where we want one update to be possible, but not others. Afilias has had cases where we wanted (for example) to prevent contact data associated with a domain from changing; but that didn't mean we wanted nameserver information not to change, or that we thought it'd be a bad thing for people to be able to update their authInfo to something slightly more tough to guess than "1234". I wonder if the answer is to make some of the update prohibitions more granular? I know it's sort of ugly, but it's consistent with the use-cases we've actually seen. A -- ---- Andrew Sullivan 204-4141 Yonge Street Afilias Canada Toronto, Ontario Canada <andrew@ca.afilias.info> M2P 2A8 +1 416 646 3304 x4110