Configuration url #67
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
BRSKI-PRM does not use this component of the voucher. So it should not provide problems as we look for known and used values of BRSKI-PRM. It is defined and used in BRSKI-Cloud and likely affects implementations using the component additional-configuration. In general as it is an optional value, the explaining text in RFC 8366bis should state "This node is optional because it is not used by all bootstrapping protocols." as for instance for the nonce leaf of the voucher. While thinking about the naming, maybe "additional-manufacturer-configuration-uri" is more specific as the leaf description states the relation to the vendor/manufacturer. BTW, maybe it is better to call it manufacturer in the description instead of vendor. Two further thoughts regarding this:
|
|
Oh, my mistake for thinking additional-configuration was from PRM!
BRSKI-Cloud. Oops.
|
upros
approved these changes
Oct 9, 2024
…-configuration-url
stfries
reviewed
Oct 15, 2024
There was a problem hiding this comment.
The change in general is fine. What is open from my perspective are the following points:
- As it is an optional value, the explaining text in RFC 8366bis should state "This node is optional because it is not used by all bootstrapping protocols." as for instance for the nonce leaf of the voucher.
- Would a further optional value "additional-operator-configuration-uri" be beneficial to allow for populating a domain local configuration uri or mDNS name? In that case it would be good to rename the current "additional-configuration-uri" to "additional-manufacturer-configuration-uri"
|
stfries ***@***.***> wrote:
- As it is an optional value, the explaining text in RFC 8366bis should
state "This node is optional because it is not used by all
bootstrapping protocols." as for instance for the nonce leaf of the
voucher.
okay.
- Would a further optional value
"additional-operator-configuration-uri" be beneficial to allow for
populating a domain local configuration uri or mDNS name? In that case
it would be good to rename the current "additional-configuration-uri"
to "additional-manufacturer-configuration-uri"
Is this like DNS search path?
…--
Michael Richardson ***@***.***> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
|
|
Hi Michael,
It could be a DNS search path, an mDNS service name, or the actual URL to a domain local device management server. The latter will likely not really be used due to privacy reasons, but it could be an option. That way, no additional communication between registrar and pledge is necessary to communicate this information. If a mDNS service name is used, it could ease finding the device configuration in the customer domain.
Best regards
Steffen
From: Michael Richardson ***@***.***>
Sent: Tuesday, October 15, 2024 11:17 PM
To: anima-wg/voucher ***@***.***>
Cc: Fries, Steffen (FT RPD CST) ***@***.***>; Review requested ***@***.***>
Subject: Re: [anima-wg/voucher] Configuration url (PR #67)
stfries ***@***.***<mailto:***@***.***>> wrote:
- As it is an optional value, the explaining text in RFC 8366bis should
state "This node is optional because it is not used by all
bootstrapping protocols." as for instance for the nonce leaf of the
voucher.
okay.
- Would a further optional value
"additional-operator-configuration-uri" be beneficial to allow for
populating a domain local configuration uri or mDNS name? In that case
it would be good to rename the current "additional-configuration-uri"
to "additional-manufacturer-configuration-uri"
Is this like DNS search path?
…--
Michael Richardson ***@***.***<mailto:***@***.***>> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
-
Reply to this email directly, view it on GitHub<#67 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/AJEUR5ODO4XVEOK54JO5GFDZ3WA3HAVCNFSM6AAAAABPMGY7IGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIMJVGE4DGMBTGE>.
You are receiving this because your review was requested.Message ID: ***@***.******@***.***>>
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
rename attribute. close #50