OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

wss message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [wss] wrt Issue 428

 From the minutes of the 4-Oct-2005 concall (yesterday)...

   Kelvin - for J Hodges - 428 "closed because no action proposed"
   - Gudge to take AI to trace 428 and was Jeff's proposal on the
     table when voted.

thanks for covering this Kelvin (and apologies for my having to drop off the 
call early).

To help Gudge out, the answer to the above AI is "yes" -- the proposal was on 
the table at the time of the 6-Sep call, the proposal was Thomas' (of 
31-Aug-2005), and it all is documented in the forwarded messages below.

This is an admittedly detail-level item, but it is an identifiable loose end 
that was manifested in the public comment period and so should be properly 
dealt with.

thanks again,

JeffH




-------- Original Message --------
Subject: Re: [wss] [VER 2] OASIS WSS TC Minutes 2005-09-06 (with roll call)
Date: Thu, 15 Sep 2005 15:17:25 -0700
From: Jeff Hodges <Jeff.Hodges@neustar.biz>
To: wss@lists.oasis-open.org


Paul Cotton wrote:
 > OASIS WSS TC Minutes 2005-09-06
 >
 > [VER 2]

<snippage/>

 > Issue 428
 > Frederick asked for more time at the last meeting but has not yet done
 > anything.  Since there is no concrete proposal we will change status to
 > Closed.

This issue actually had two nominal approaches - (a) allow for STR->STR
references, or (b) unambiguously rule such references out, as Conor stated in
this msg to wss-comment@...


Subject: recursive Security Token References
     * From: "Conor P. Cahill" <concahill@aol.com>
     * To: wss-comment@lists.oasis-open.org
     * Date: Fri, 19 Aug 2005 16:02:32 -0400
http://lists.oasis-open.org/archives/wss-comment/200508/msg00018.html

                          .
                          .
    "I think that at the absolute minimum there should be
    a statement about this case, perhaps saying it is out
    of scope for the specification -- although I would rather
    see this situation addressed."
                          .
                          .


I believe that there in fact was a reasonable concrete proposal made (by
Thomas) in response, taking approach (b), in these messages to wss@...


Subject: RE: [wss-comment] recursive Security Token References
     * From: "DeMartini, Thomas" <Thomas.DeMartini@CONTENTGUARD.COM>
     * To: "Conor P. Cahill" <concahill@aol.com>
     * Date: Wed, 31 Aug 2005 15:45:34 -0700
http://lists.oasis-open.org/archives/wss/200508/msg00049.html

Subject: Re: [wss] RE: [wss-comment] recursive Security Token References
     * From: Jeff Hodges <Jeff.Hodges@neustar.biz>
     * To: wss-comment@lists.oasis-open.org
     * Date: Thu, 01 Sep 2005 18:55:15 -0700
http://lists.oasis-open.org/archives/wss/200509/msg00010.html



..and so I suggest we *not* close issue 428 with no action, but rather direct
the editor to incorporate the language suggested by Thomas in his email message
  (http://lists.oasis-open.org/archives/wss/200508/msg00049.html), and change
the status of the issue to be "pending review".

JeffH


-------- Original Message --------
Subject: [wss] wrt Issue 428 (was: Re: [wss] [VER 2] OASIS WSS TC Minutes 
2005-09-06 (with roll call))
Date: Fri, 16 Sep 2005 09:03:38 -0700
From: Jeff Hodges <Jeff.Hodges@neustar.biz>
To: wss@lists.oasis-open.org

further explanation/clarification:

I was unfortunately not on the call - my prior message in this thread was not a
comment on the minutes per se. Rather it is a comment on the the decision taken
wrt Issue 428, as represented in the minutes. I feel said decision was
incorrect because there actually *is* a concrete proposal for resolving the
issue, as I explained in my prior message [1].

JeffH

[1] Re: [wss] [VER 2] OASIS WSS TC Minutes 2005-09-06 (with roll call)
     http://lists.oasis-open.org/archives/wss/200509/msg00055.html




-------- Original Message --------
Subject: Re: [wss] wrt Issue 428
Date: Tue, 20 Sep 2005 11:25:48 -0700
From: Jeff Hodges <Jeff.Hodges@neustar.biz>
To: wss@lists.oasis-open.org

It appears from the draft minutes that issue 428 wasn't discussed on the call.
This is likely because it is shown as closed (incorrectly, imv) in the Issues
list, and I unfortunately was distracted (driving; apologies) when we were
going thru the open Issues post-334.

So, again, issue 428 was closed on the 6-Sep call, with the (incorrect) claim
that "..there is no concrete proposal", which I pointed out in this message..


[1] Re: [wss] [VER 2] OASIS WSS TC Minutes 2005-09-06 (with roll call)
     http://lists.oasis-open.org/archives/wss/200509/msg00055.html


and which I followed up on here..


[2] wrt Issue 428 (was: Re: [wss] [VER 2] OASIS WSS TC Minutes
     2005-09-06(with roll call))
     http://lists.oasis-open.org/archives/wss/200509/msg00057.html


The gist of Thomas' suggested resolution [3] to 428 is..


   ..[edit lines in SMS Core] 903-904 as follows (removing things in {}
     and adding things in [])...


   "This optional attribute specifies an abstract URI for {where to find} a
   security token. If a fragment is specified, then it indicates the local
   ID of the [security] token being referenced. [The URI MUST identify a
   security token.  The URI MUST NOT identify a wsse:SecurityTokenReference
   element, a wsse:Embedded element, a wsse:Reference element, or a
   wsse:KeyIdentifier element.]"


..yielding this revised text [4]...

     This optional attribute specifies an abstract URI for a
     security token. If a fragment is specified, then it indicates the local
     ID of the security token being referenced. The URI MUST identify a
     security token.  The URI MUST NOT identify a wsse:SecurityTokenReference
     element, a wsse:Embedded element, a wsse:Reference element, or a
     wsse:KeyIdentifier element.


As I said in [1], I suggest we *not* close issue 428 with no action, but rather
direct the editor to incorporate the language suggested by Thomas in his email
message (http://lists.oasis-open.org/archives/wss/200508/msg00049.html), and
change the status of the issue to be "pending" (I had suggested a status of
"pending review", but that was apparently incorrect, the editor needs to make
the change before attaining the latter status).

thanks,

JeffH


[3] RE: [wss-comment] recursive Security Token References
     http://lists.oasis-open.org/archives/wss/200508/msg00049.html

[4] Re: [wss] RE: [wss-comment] recursive Security Token References
     http://lists.oasis-open.org/archives/wss/200509/msg00010.html

---
end

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]