►
From YouTube: IETF113-HTTPAPI-20220324-0900
Description
HTTPAPI meeting session at IETF113
2022/03/24 0900
https://datatracker.ietf.org/meeting/113/proceedings/
B
B
B
B
B
B
C
C
F
E
C
Okay,
welcome
to
the
http
api.
By
now
you
should
be
many
people
will
be
familiar
with
the
eye
chart
here.
C
C
C
C
C
Agenda,
okay,
so
first
part
administration.
We
need
one
or
two
people
to
volunteer
to
take
minutes
that
can
be
done
in
the
code
emd
hedge
dock.
Do
we
have
any
volunteers.
G
C
C
All
right,
we
have
some
presentation
of
any
other
changes
to
the
rest
of
the
agenda.
People
want
to
talk
about.
C
We
have
presentations
on
current
documents,
some
status
updates
and
then
there's
a
couple
of
proposals
to
bring
new
documents
into
the
working
group.
C
C
Under
us
we
know
what
we're
doing,
even
if
it
is
at
times
frustrating
for
some
of
the
authors
we'll
talk
to
that.
C
G
E
Well,
probably,
a
good
idea
just
to
go
in
the
order.
So
if
we
start
with
the
right
limit,
headers,
okay,
roberto,
are
you
ready.
C
Happy
to
let
you
do
it
we'll
request
to
share
the
screen.
I
will
stop.
C
A
So
red
limit
headers,
we
made
we're
already
done
we're
almost
done
with
this
specification.
There
have
been
some
changes.
A
Well,
the
goal
of
the
of
this
specification
is
to
communicate
service
limits,
so
clients
cannot
stop
before
being
throttled
out,
can
stop
before
being
traveled
out,
align
all
the
already
existing
red
limit
headers.
So
we
are
not
inventing
anything
new.
We
are
just
trying
to
standardize
something
that
is
already
existing
our
or
an
already
existing
practice,
and
we
want
to
express
multiple
rate
limiting
policies.
A
We
are
the
current
setup
is
that
we
have
three
fields:
the
red
limit
limit,
that
is
a
structured
field
list
now,
as
red
limit
remaining
and
red
limit,
reset
data
structure,
structure,
fields,
integrals
one
providing
the
number
of
units
remaining
to
be
consumed
and
the
last
one
are
delta
seconds
just
light,
recreate.
A
A
A
Changes
from
the
version
were
the
now
we
are
using
structure
fields.
This
may
need
some
editorial
work
to
align
with
the
latest.
A
So
after
a
long
discussion
we
state
that
rate
limit
limit
and
reset
are
required,
while
red
limited
remaining
is
recommended,
and
we
fix
another
issue
saying
that
protein
scope
is
eventually
delegated
to
parameters
that
can
be
further
registered
in
a
yana
table.
I
am
a
table.
A
With
respect
to
this
specification,
you
always
need
to
reply
with
those
fields,
so
we
are
not
saying
that
all
http
server
must
implement
this
specification.
But
if
you
implement
this
specification,
since
the
goal
is
interoperability
between
servers
and
client,
clients
will
expect
those
fields
to
be
present
to
enable
actions.
A
So
of
an
issue
needing
input,
the
first
is:
we
had
some
requests
from
users
to
separate
quota
policies
from
experiment
limits
and
me
and
alex
the
other
editor
are
supportive
of
of
these
changes
this,
because
some
implementers
say
that
they
prefer
to
separate
those
information,
because
it's
much
simpler
to
implement
the
the
behavior
the
arrow
is
pretty
er
should
be
credited
to
lucas
perdue
that
invented
this
is
arrow.
A
The
upper
the
second
of
an
issue
is:
do
we
want
to
define
an
upper
bound
for
it
limit
reset
or
not,
since
it's
a
delta?
Second,
maybe
we
could
suggest
to
implementer
that
if
they
receive
a
incredibly
huge
number
on
this
red
limit
reset,
probably
they
shouldn't
wait
all
that
time
and
maybe
the
those
red
limit
research
should
be
either
ignored
or
interpreted
in
another
way,
and
there
was
a
last
of
an
issue
about
field
names.
A
A
This
specification
and
the
our
opinion
is
that
we
shouldn't
modify
the
field
names
because
we
adopted
field
names
that
were
very
similar
to
the
one
api
gateways
are
using
now,
and
we
think
that
we
should
stick
with
those
names,
because
those
names
are
something
that
is
already
used.
A
I'm
moving
on,
but
so
the
quota
policies
now
is
that
the
rate
limit
limit
is
a
a
structure
field
list.
A
A
The
what
we'll
have
then,
is
that
red
limit
limit
remaining
a
result
are
just
three
bare
integers
and
the
optional
part
is
in
another
field,
the
rate
limit
policies
containing
the
old
quad
apologies,
and
this
is
the
only
feeds
that
support
parameters
so
probably.
A
This
is
the
principle
question
and
we
want
to
ask
the
the
opinion
of
work
group
on
this
splittings
part.
We
think
this
is
reasonable
because
it's
it's
apple
with
apple
and
oranges,
with
oranges,
while
in
the
previously
we
had
different
meaning
for
the
first
list
item
and
the
other
ones
and
the
rest.
If
we
want
to
discuss
the
other
policies.
E
We
have
mark
in
the
queue.
Do
you
want
to
take
questions
now
or
do
you
want
to
wait
till
the
end.
A
H
H
You
know
sometimes
it's
a
good
idea
to
split
out
data
into
multiple
fields,
especially
when
it
changes
at
different
rates,
but
it
seems,
like
you
know,
like
the
remaining
and
the
reset
are
pretty
dynamic
as
far
as
I'm
aware,
whereas
the
policy
and
the
limit
are
not
so
I
I
just
I
can't
help
but
wonder
you
know
this
is
maybe
related
to
issue
65
as
well.
I
can't
help
but
wonder.
H
A
H
H
I
found
the
reasoning
for
issue
65
quite
thin
on
that
basis,
that
if
we
don't
have
it,
starting
with
the
words
right
limit,
they
won't
understand
it
seems
to
be
the
reasoning
there.
So
I
I
think
that
if,
if
we
come
up
with
a
well-reasoned
design,
we
don't
have
to
be
too
bound
by
by
precedent
there
and
I'd
encourage
you
to
to
at
least
explore
those
directions.
A
So
maybe
I
I
wouldn't
it
wouldn't
be
useful
to
create
a
cool
specification
that
implementers
are
not
willing
to
use.
That's
it.
H
Thing
that
we
have
okay,
I
I
I
would
love
to
probe
that
a
bit
more
because
it
sounds
somewhat
thin
to
me
that
that
the
implementers
want
to
see
it
spelled
in
a
particular
way
in
particular
headers
in
the
wire
otherwise
they're
never
going
to
use
it.
That
seems
a
bit
odd
to
me.
I
So
I
tend
to
agree
with
rocky.
I
think
the
efficiency
advantages
that
you
get
from
having
a
single
field
sort
of
far
outweigh
the
advantages
of
having
simple,
unique
fields
that
you
can
pull
out
with
simple
images.
I
It's
the
assumption
here
we're
using
structured
fields
for
pathing
these
things
out,
and
my
guess
is
that
those
implementers
who
would
rather
we
didn't
put
all
the
things
together-
are
not
using
structured
fields
to
do
their
path
in
which
it's
probably
okay,
maybe
if
you're
just
using
a
simple
integer
field,
but
these
things
can
be
parameterized
and
there's
no
guarantee
that
they
won't
be,
and
so
I
I
tend
to
think
that
pushing
them
towards
a
dictionary
would
be
pretty
straightforward.
I
The
the
dynamism
aspect
of
that
can
be
pretty
well
addressed
with
header
compression,
and
I
think
it's
much
more
compact
and
concise
to
have
a
simple,
a
single
break
limit
thing
that
sort
of
says:
well,
here's
one
parameter,
one,
one
pair
of
values:
here's
the
limit,
here's
the
reset,
here's
the
remaining-
and
I
don't
know
how
to
express
a
policy,
but
I'm
sure.
C
Okay,
this
is
rich,
so
I'll
mention
that
in
the
oblivious
http
group
the
idea
came
up,
and
I
don't
know
if
the
people
there
had
reached
out
to
you
or
your
author's
co-author
robert,
the
idea
that
so
in
ohi
there's
an
intermediate
proxy
between
the
end
user
and
the
client
and
the
origin
server,
and
that
obfuscates
enough
information
and
it
gets
obfuscated
information.
C
So
we
can't
tell
what
the
request
is
and
it
sends
it
on
to
the
origin,
and
there
seems
to
be
a
need
for
having
that
intermediate
and
the
origin
collaborate
to
do
rate
limiting
one
way
or
another,
and
so
they
might
be
coming
here
or
they
might
be
looking
at
your
draft
as
a
way
to
reuse.
C
Some
of
it
and
probably
adding
some
kind
of
indicators
saying
this
is
related
to
the
origin,
or
this
is
related
to
the
proxy,
or
this
should
go
back
to
the
user,
whoever
they
are
saying,
you're
doing
too
many
requests
of
this
kind.
The
proxy
has
no
idea
what
the
requests
are,
but
it
can
be.
You
can
tell
the
the
the
client,
you
know,
stop
asking
for
every
single
picture
in
the
phone
book,
so
I
think
it's
mainly
just
a
heads
up
that
ojai
needs
a
similar
kind
of
thing.
C
A
Frank,
this
is
this
is
interesting,
and
probably
we
should
file
an
issue
to
understand
better
the
use
case
and
possible
exchanges
in
in
general.
I
am
well,
I
understand
the
suggestion
of
reducing
the
number
of
fields,
but
please
consider
that
the
actual
feedback
of
many
implementers
is
that
they
say
in
direct
limit
policy
that
they
don't
even
want
to
conflate
all
those
information
in
the
same
field
and
they
prefer
to
say,
for
example,
red
limit
minions
that
limit
our
different
things.
A
A
No,
I'm
I'm
I'm
not
using
I'm,
not
the
I'm
not
trying
to
avoid
using
structure-filled
parser,
but
I
need
I
I'm
building
this
specification
for
implementers
and
my
goal
is
not
forcing
them
to
do
something
they
don't
want
to
do,
but
is
avoiding
they
to
provide
different.
The
same
information
in
different
things.
A
I
I
I'm
not,
I
mean
trying
to
interpret
what
they
that
their
goals,
I'm
trying
to
I'm
trying
to
make
them
use
the
same
field
name
for
sending
the
same
information.
H
Working
is
it
working?
Yes,
it
seems
to
be
working,
okay,
so
roberto.
I
think
it's
great
that
you're
going
out
and
engaging
with
folks
who
are
using.
You
know
similar
things
out
there
and
I
mean
implementers
potential
implementers.
I
think,
there's
maybe
a
mix
there,
I'm
not
sure,
but
generally,
when
we
do
that
it
it's
great,
but
it's
important
to
make
sure
that
we're
doing
that
to
bring
back
their
feedback
in
the
form
of
arguments,
not
just
preferences.
You
know
it's
it's
much
more
convincing.
H
If
you
came
back
and
said
implementers
want
to
do
this
and
there
there's
this
technical
or
this.
This
reason
why
that
we
can
understand
and
take
into
account
in
our
discussions,
but
it's
it's
less
useful
when
when
they
come
back
and
say
they
want
to
or
they
prefer
this
or
they
prefer
that
I'm
much
less
willing
to
be
convinced
that
that
that's
a
good
reason
to
choose
any
particular
design
in
the
discussions
for
a
standard.
H
J
B
J
Is
this
working
yep?
This
is
brian
gondwana.
I
I
wanted
to
add
something
in
favor
of
the
idea
that
something
that
people
want
to
use
has
value
in
itself,
not
just
because
of
the
technical
arguments,
but
because
they
enjoy
using
it
and
hence
they're
more
likely
to
use
it
we're
competing
against
someone
can
throw
whatever
they
like
in
the
header.
If
we're
offering
them
a
standard,
that's
a
pain
to
use
and
looks
ugly
and
they
don't
like.
Then
they
just
won't
use
it.
So
I
think
the
operators
prefer
this
is
a
significant
users
prefer.
J
E
K
Yeah,
hello,
everybody.
This
is
eric,
so
I
I
just
wanted
to
point
out
that
maybe
sometimes
we
also
have
a
different
view
on
the
people
we're
designing,
for.
I
think-
and
I
really
don't
mean
this
in
a
negative
way,
but
I
think
mark
has
a
perspective.
K
But
I
think
in
the
api
space
really
in
the
end,
what
you
end
up
with
is
you
end
up
with
a
lot
of
developers
who
are
not
core
http
developers
who
are
using
http
as
part
of
the
work
they
need
to
get
done
and
if
you
tell
them
that
they
have
to
use
an
additional
parser
and
that
there
are
rather
complex
header
fields
to
work
with?
And
all
of
this,
I
think
it's
just
a
different
kind
of
client
base
we're
working
with
here.
K
So
I
I
just
think
we
should
take
into
account
that
from
an
http
api
perspective
for
most
people,
they
are
not
http
experts,
so
for
them,
http
is
just
something
that
they
need
of
as
part
of
the
work
they're
trying
to
get
done,
so
we
sh.
We
should
try
to
make
it
as
easy
for
them,
as
we
can
to
get
the
information
that
they
can
get
in
http
and
to
work
with
http
header
fields
without
requiring
them
to
adapt
technologies.
That
may
may
be
designed
for
a
different
user
population.
I
Oh
wow,
okay,
I
think
probably
the
thing
that
tips
me
towards
saying
that
using
structured
fields
properly
here
is
is
acceptable.
Is
that
report
guns
that
those
casual
developers
have
in
front
of
them
is
is
much
more
than
they
think
they
have
and
usability
is
not
necessarily
very
different.
I
When
you
look
at
restructuring
this
as
a
single
structured
header,
you
you
take
the
hyphen
and
you
turn
it
into
a
colon
and
you
take
the
colon
and
you
turn
it
into
an
equal
sign,
and
you
have
essentially
what
what
we
were
talking
about
using
using
structured
fields
for
it's
not
that
complicated
to
parse.
I
I
I
would
just
throw
cars
in
or
something
in
here,
because
that's
led
to
a
number
of
problems
that
we've
had
in
the
past
and
as
much
as
I
think,
the
professional
casual
thing
is
important.
Here
we
want
to
make
the
casual
people
use
the
structure
for
your
powers
as
well.
E
H
Oh,
the
graph
is
moving.
You
can
probably
hear
me
now
eric,
I
really
don't
buy
it.
Sorry,
people
who,
who
have
to
parse
hp
headers
by
hand,
are
exactly
what
we
want
to
avoid
with
this
and
and
having
those
parameters
there,
like
the
w
on
the
screen
that
just
went
away
for
some
reason
is.
B
H
The
huge
kind
of
foot
gun
that
martin's
talking
about,
if
you
know,
and
and
and
frankly,
making
them
just
straight
integers
like
this
but
still
structured
fields,
is
encouraging
people
to
write
their
own
parsers
and
then
they'll
break
when
people
put
it
on
a
parameter
on
it
later.
H
So
I
I
don't
buy
it
structured
fields
is
designed
exactly
so
that
people
can
just
go
off
and
use
a
library
off
the
shelf
and
not
worry
about
any
of
this
and
api
developers
love
using
libraries,
that's
that's
their
heart
and
soul,
so
yeah
and-
and
I
actually
got
a
key
to
respond
to
braun
absolutely
if
we
get
feedback
that
that
implementers
and
users
prefer
one
thing:
that's
great,
I'm
just
I'm
a
little
concerned
about
one
person
going
off
and
coming
back
and
making
decisions
based
only
on
that
person's
interaction
with
the
community.
E
And
speaking
as
an
individual
eric,
I
will
both
agree
with
you
and
disagree
with
you.
I
I
do
agree
that
in
your
characterization
of
a
lot
of
api
developers,
but
most
api
developers
are
also
not
implementing
the
throttling
infrastructure
they're
going
to
use
some
kind
of
library.
I
think
people
we
need
to
convince
people,
writing
throttling
libraries,
and
at
that
point
it's
the
people
serving
the
headers
that
are
making
decisions.
E
The
consumers
will
use
whatever
they're
given
and
hopefully
they'll
use
library
to
go.
Do
that
parsing.
So
I
I
I
I
think
I
I
am
concerned
that
it's
the
yeah.
We
just
don't
want
to
change
our
thing.
That's
using
x,
dash
and
if
you
make
things
very,
very
different,
it'll
be
obvious
that
we're
not
using
the
standard
thing
anymore.
E
L
Hi,
this
is
hunter
speaking.
So,
first
of
all,
I
very
much
a
preacher
appreciates
it
works.
So
I
think
this
is
something
very
useful
once
it
is
finished
and
in
broad
use.
I
like
eric's
distinction
before
regarding,
like
there
is
two
distinct
user
groups,
like
you,
know
the
casual
user
consuming
api
and
maybe
not
wanting
to
spend
so
much
effort
and
more
advanced
users,
but
I
slightly
disagree
with
which
which
of
these
users.
We
should
focus
on
here,
because
I
think
for
the
casual
user.
L
Actually,
this
doesn't
matter
at
all
in
a
way,
because
these
users
will
just
be
heart,
throttled
by
the
apis
if
they
have
no
clue
anyway.
So
this
is
complex,
stuff,
actually
and
people
that
want
to
implement
this
kind
of
stuff.
They
really
need
to
understand
not
just
the
header
fields,
but
also
maybe
the
documentation
behind
that.
So
it's
not
just
only
the
header
fields
to
understand
here,
and
I
also
very
much
agree
what
daryl
said.
This
is
also
something
that
needs
to
go
into
libraries
in
the
end.
L
So
I
think
it's
it's
very
much
important
here
to
have
this
very
conceptually
clear
and
convey
as
much
as
information
that
is
necessary
for
libraries
to
deal
with
that
and
yeah
to
make
stuff
work.
Smooth.
J
Brown,
since
I
put
my
name
into
this
for
the
first
thing,
a
lot
of
developers
are
going
to
probably
just
be
doing
a
regex
that
matches
digits
off
the
front
of
rate
limit
remaining
and
not
care
about.
Anything
else
would
be
my
guess,
glancing
at
this
realistically
and
that's
that's
the
use
case
that
is
going
to
be
for
a
lot
of
people
if
they
care
at
all,
if
they
just
throw
things
at
it
until
they
get
a
rate
limit
error
back,
which
is
probably
what
I
would
do.
J
So
that's
that's
the
kind
of
thing
that
that
we're
really
going
to
see
with
this.
If
you
look
at
what's
been
done
in
the
field
already,
I
think
that's
a
good
place
to
look
at
because
that's
what
has
organically
grown
and
what's
organically
grown
has
been
separate
headers
rather
than
a
structured
header.
It's
what
the
people
who
already
just
do
stuff
in
this
space
are
going
to
be
familiar
with,
and
so
I
mark.
I
totally
see
your
point.
J
E
H
There
it
is,
you
can
hear
me.
Okay,
the
lag
is
amazing.
It
sounds
like
that.
You
know
there
are
two
extreme
solutions
here
and
I
I
I
don't
want
to
paint
it
as
we
have
to
choose
a
or
b,
but
it
sounds
like
we
might
be
migrating
towards
that
at
one
extreme.
We
have
an
unlimited
number
of
fields,
depending
on
how
many
pieces
of
data
that
we
need
to
send
and
each
field
just
has
an
atomic
piece
of
data
and
it's
not
structured
field.
H
It's
just
you
know
ten
six
and
three
literally,
and
you
don't
have
any
parameters,
because
that's
too
hard
or
you
have
a
fully
structured
field,
and
it
is,
you
know,
fairly
complex,
but
we
throw
structured
fields
parsers
at
it,
and
the
data
just
appears
and
we
it's.
We
have
to
make
it
complex
enough
to
be
effectively
self
greasing,
which
I
think
there's
probably
enough
data
to
do
here.
If
we
combine
it
into
one
or
two
fields.
H
If,
if
it's
not
self
grazing,
then
I
I
think
that
braun,
you
know,
has
a
point
that
that
people
will
just
try
and
parse
it
and
then
it'll
break
when
somebody
adds
some
data
to
it
like
a
parameter
to
it
later
on.
So
so
maybe
what
we
need
to
do
is
to
write
up
those
two
extremes
and
see
what
they
look
like.
There
seems
to
be
some
noise
there.
So
right
up
those
two
extremes
see
what
they
look
like
and
and
figure
out
what
the
best
path
forward
is
from
there.
E
So
I
I
and
I
think,
we've
chewed
through
the
meat
of
the
issue.
I
don't
think
we're
going
to
solve
developer
motivation.
I
think
it
would
be
good
for
us
to
take
this
further
conversation
to
the
list,
and
maybe
we
can
move
on
to
the
next
presentation
from
roberto
on
and
his
mind
goes
blank
media
types.
Yes,
there's
gonna
be
a
lot
of
conversation
on
this
one.
I
fear.
L
A
A
So
open
api
specification
relies
on
yammer
and
json
schema
that
are
not
being
registered.
This
makes
impossible
content
negotiation
done
in
a
standard
way
and
yaml
users
do
not
have
interoperability
and
security
considerations,
so
we
want
to
register
yamalan
the
placing
ammo
media
type,
providing
interoperability
and
security
consideration
foundation
for
open
abi,
plus
yaml,
registering
up
an
api
plus
jason
and
yaml
json's
camera
plus
json
and
yaml
jason
led
placiamo
does
ingredient
a
quick
win.
A
A
A
One
engage
with
mega
types,
mailing
lists,
one
in
what
group
plus
calls
suggested
by
francesca
thanks
the
third
fragment
identifier,
considerations:
number
22:
can
we
use
normative
language
in
media
meditab
registration?
It
seems
that
it
is
possible,
but
I
don't
know
so.
I
asked
for
feedback
here
today.
A
A
A
Yes,
we
need
this.
The
question
with
the
question
from
martin,
the
point
of
jesus
schema
plus,
is
related
to
the
open
api
world
because
of
an
api
specification
are
actually
developed
in
yaml
and
if
I
have
to
create
a
catalog
with
open
api
specification,
if
you
want
to
refer
reference,
json
schema.
A
A
This
is
not
very
comfortable
reusable,
because
why,
if
I
develop
something
in
a
language,
I
need
to
convert
it
in
another
syntax
to
be
used.
Moreover,
for
developers,
jason
is
very
less
easy
to
use
respect
to.
A
E
The
there
was
one
comment
brought
up
by
martin
with
regards
to
shouldn't
that
application,
slash,
schema,
plus
json,
b
application,
slash
json,
schema
plus
json,
because
it
feels
a
little
like
squatting
to
be
to
call
it
application
schema.
A
H
There
it
goes
all
right.
I
have
no
idea
why
there's
so
much
life,
so
I'm
not
familiar
with
this
work.
The
only
thing
that
I'd
caution
is
we've
had
situations
like
this
in
the
past,
where
there's
a
draft
to
do
some
work
in
the
itf,
that's
related
to
a
larger
piece
of
work
that
lives
somewhere
else
and
and
it's
it's
super
super
easy
to
get
your
our
wires
crossed
when
doing
so.
So
I
would.
H
I
would
very
strongly
suggest
that
if,
if
you're
not
already
going
through
the
most
official
liaison
channel,
you
can
to
do
these
things,
in
other
words,
just
relying
on
people.
You
know
in
those
communities
or
chat
on
a
list
or
something
is
probably
not
adequate.
You
need
to
get
the
most
formal
possible
consensus
or
decision
or
whatever
the
mechanism.
The
community
has
that
they
are
okay
with
this
and
they
want
to
do
it
this
way
and
they
want
the
ietf
to
do
this.
Otherwise
we
can
end
up
in
a
very,
very
awkward
situation.
H
E
So
I
I
can,
I
can
speak
to
the
open
api
community
and
the
opiate
api
community
is
very
much
behind
this
effort,
and
this
we've
had
conversations
numerous
conversations
in
the
technical
steering
committee
meetings
about
this,
so
that
there's
definitely
support
there.
The
jason
schema
community,
who
are
also
actively
involved
with
the
open
api.
It
is
a
fairly
small
group
of
people,
and
I
know
that
roberto
is
talking
to
the
right
people.
E
H
And
it
seems
like
the
other
communities
to
engage
in
would
be
the
link
data
community,
which
I
know
has
registered
media
types
before,
and
the
yaml
community,
of
course,
as
well.
H
I
It's
only
the
audio,
I
don't
quite
know
anyway.
I
I
was
going
to
say
my
first
look
at
this
also.
I
was
aware
of
its
existence,
but
the
thing
that
I
would
suggest
here
is
that
you've
got
a
lot
of
media
types
in
the
one
document,
and,
and
one
of
them
is
this
plus
yaml
structural,
syntax
suffix.
I
It
might
be
a
good
idea
to
just
slice
some
of
these
pieces
off
and
do
them
as
separate
documents
simply
because
I
think
the
slide
three
back,
where
you
have
the
different
color
codes
for
the
things
being
at
risk
and
and
those
ones
that
are
simple
and
easy.
I
There's
good
risk
that
those
things
are
difficult,
holding
back
the
thing,
the
other
ones,
and
it
might
be
nice
to
just
get
some
of
the
easy
things
out
of
the
way
and
and
published
and
from
a
user
perspective
being
able
to
cite
just
the
plus
yaml
spec,
when
you're,
registering
your
media
type
would
be
a
lot
easier
than
than
trying
to
fish
around
in
a
big
pocket
of
different
media
type
registrations.
When
you
have
to
do
something
like
this.
E
Meeting
this
week
there
was
a
discussion
of
multiple
suffixes
and
because
they're
talking
about
wanting
to
be
able
to
say,
plus
ld
plus
json,
on
top
of
the
application.
Slash
did
so
I'm
not
sure
where
that's
going
to
land,
but
there
was
some
pushback
in
that
conversation
specifically
around
using
suffixes
at
all.
E
So
I
in
in
reading,
through
the
issues
like
early
on
when
this
was
just
focused
on
open
api
and
json
scheme,
it
seemed
fairly
straightforward,
but
some
of
the
issues
seem
to
be
opening
up
a
bunch
of
stuff
and
sticky
stuff.
So
maybe
martin's
feedback
is
good,
that
stopping
at
one
point
and
separating
out
some
things
would
be
a
good
idea.
E
E
A
Yeah
the
goal
was
providing
a
specification
where
all
actors-
all
media-
that's
related
to
the
api-
can
be
addressed,
because
I
think
that
we
need
to
at
least
to
me.
It
has
been
beneficial
to
get
in
touch
with
all
those
community
together
to
have
a
better
overview
of
the
relations
that
there
are,
even
when
people
use
them
between
all
those
media
types.
E
Sure
and
it's
manu
who
you
have
been
working
with
on
this
document,
who's
involved
in
the
the
multiple
suffixes
effort.
E
So
we
have,
we
have
another
presentation
from
martin
before
we
go
there.
I
just
want
to
quickly
go
through
the
set
of
open
issues
on
and
some
status
across,
all
of
the
documentation,
and
I'm
I'm
going
to
be
brave,
rich
and
actually
try
and
share
my
screen
here.
E
Yes
and
as
this
working
group
is
from
what
I
understand
a
little
unusual
in
that
we
have
so
many
documents
going
through
in
order
to
try
and
keep
track
of
all
of
the
different
things
that
are
going
on
because
most
of
them
are
going
on
github,
I
attempted
to
take
advantage
of
the
new
beta
project
boards
in
github,
and
so
the
if
you
go
to
the
organization
of
the
get
repo,
you
should
see,
there's
a
projects
tab
at
the
top,
and
then
there
is
at
the
moment
just
one
project
you
can
set
up
as
many
of
these
as
you
like
when
you
are
working
with
an
issue,
so
I'm
just
going
to
click
on
this
to
open
it.
E
There
is
this
project's
category
here,
and
so
you
can
simply
say
this
particular
issue
we're
working
on.
I
want
to
show
it
on
the
project
board
and
you
can
specify
a
status
and
as
soon
as
you
connect
it
here,
it
will
magically
appear
on
the
project
board
and
we've
set
it
up
so
that
it
groups
by
repo.
E
E
I
I
am
still
getting
all
of
the
wrinkles
out
of
the
permissioning.
My
understanding
is,
if
you
are,
if
you
own,
if
you
are
have
right
permissions
on
a
repo,
you
can
assign
it
to
the
project.
C
E
What
the
the
the
interesting
thing
is,
this
status
here
in
this
column
is
independent
of
the
issue
you
can,
we
can
actually
add
new
fields
to
the
project
so
that
there
is
additional
metadata
that
can
be
controlled
at
the
project
level,
so
these
statuses
are
independent
of
the
status
of
the
the
individual
issue
and
then
so
in
reviewing
some
of
these,
I
created
these
statuses
to
distinguish
between
the
ones
were
still
having
debates
about
and
the
ones
that
we
seem
to
have
resolved
the
discussion,
and
it's
just
a
case
of
the
authors
needing
to
go
and
do
a
document
update.
E
I
think
one
mechanism
we
could
use
here
in
processes
is
where
we
have
things
that
say
you
know,
there's
a
document
update
required.
It
would
probably
be
good
if
we
had
somebody
assigned
to
actually
do
that
document
update
and
you
can
see
here
in
the
case
of
this
one,
there
is
actually
a
pr
that
has
been
linked
to
this
one.
E
So
it's
fairly
easy
to
dig
down
into
these
items,
and
so
I
you
once
if
you
have
been
given
permission
to
this
project,
there's
another
view
that
I
set
up,
which
is
more
kind
of
like
a
kanban
board,
and
you
can
just
drag
and
drop
between
here,
but
because
this
is
changing
the
status
that
is
owned
by
the
project.
You
need
right
permissions
on
the
organizational
project.
E
So
this
we
will
be
a
thing
that
hopefully
evolves
to
be
more
effective
over
time.
Mark.
H
Okay,
that's
it
asked
for
permissions
yet
again
that
just
made
a
question
occur
to
me
is
the
expectation
from
the
chairs
that
document
editors
will
respect
the
categorizations
that
you've
given
them
there?
So,
for
example,
I
went
through
and
did
a
couple
of
prs
for
issues
in
the
1707
bist
today
that
appear
to
have
consensus.
H
Should
we
wait
for
you
to
change
the
status
to
document
update
required
before
you
merge
them?
Are
you?
Are
you
overseeing
it
to
that
level,
or
is
this
just
entirely
kind
of
best
effort,
informational?
What's
the
stance
there.
E
I
mean
that's
the
conversation
to
be
had
like
the
least
work
we
have
to
do
the
better,
but
I'm
I'm
more
than
happy
to
go
and
kind
of
reconcile.
I
think
if,
if
we
want
to
use
this
as
a
way
for
document
editors
to
communicate
with
chairs
that
this
is
the
status
of
where
we
are
up
to,
then
I'm
more
than
happy
that
that
document
editors
have
right
access
on
this
project
and
can
change
these
things
themselves.
H
E
Yeah
I
mean,
as
you
saw
from
roberto's
deck
like
he
had
a
slide
that
had
a
bunch
of
issues
that
were
open
and
to
the
base
to
talk
about
it,
and
then
we
did
that
in
the
last
ietf
meeting-
and
this
is
just
kind
of
like
hey
here's.
An
easy
way
of
keeping
that
kind
of
list
of
here
are
the
active
things
that
we're
talking
about
up
to
date.
Okay,.
E
It
was
unfortunate,
I
don't
seem
to
be
able
to
find
a
way
of
actually
getting
the
issue
number
to
appear
as
a
column.
But
if
you
hover
over,
you
see
in
the
bottom
left-hand
corner
the
issue
number,
and
I
will
note
roberto
that
you
called
out
in
your
rate,
limit
headers
and
issue
number
41,
and
I
can't
find
issue
number
41
in
the
repo
or
at
least
fish
41
had
a
very
different
title
than
the
one
that
you
call
them.
So
we
should
reconcile
there.
A
E
Yes
agreed
eric.
This
is
additional.
This
is
a
status
view
with,
hopefully
an
absolute
minimum
amount
of
additional
work,
and
we
could.
If
we,
if
we
decide,
we
could
just
completely
throw
away
the
status
column
and
just
use
labels,
and
we
could
use
labels
as
a
way
for
document
authors
to
just
put
a
label
on
an
issue
in
and
be
able
to
surface
that
up
at
the
central
place.
E
How
easy
is
it
to
share
labels?
No,
you
have
to
reinvent
the
labels.
C
You're,
a
little
quiet,
rich
yeah,
sorry
about
that.
So
the
script
I
used
to
create
the
repos
when
we
have
a
new
document,
just
copies
standard
set
of
labels
that
came
from
you
know
marx
and
martin's.
First
thing
using
the
quick
group,
so
yeah
there's
no
way
to
say
these
are
labels
for
across
a
whole
organization.
C
E
Just
in
an
attempt
to
use
this
for
a
moment
there,
there
is
still
active
work
going
on
in
deprecation
header.
There's
some
items
here.
There
is
a
couple
of
items
still
in
discussion,
so
please
I
encourage
you
to
go
check
out
these
issues
on
the
github
repo
and
provide
feedback.
E
I
debated
whether
or
not
to
create
this
block.
This
is
this
is
related
to
using
date
time
and
there
was
a
reference
to
other
ongoing
work
with
regards
to
what
is
the
appropriate
use
of
a
date
time
versus
just
a
delta
seconds.
As
I
say,
we
can
evolve
these
statuses.
E
We
should
follow
up
with
sanjay
as
to
whether
this
is
going
to
come
back
to
life,
or
we
should
encourage
sanjay
to
bring
this
back
to
life,
and
we've
discussed
those
two
and
7807
again.
Some
open
items
for
discussion.
K
Yep,
hello
thanks
there.
This
is
eric
yeah.
Just
with
regard
to
the
item
policy.
I
think
that
that
was
not
kind
of
intentional,
so
to
speak
that
it
expired.
The
idea
was
not
to
say
we're
not
doing
that
anymore.
It's
just
that.
There
are
a
couple
of
open
issues
that
should
be
addressed.
K
I
don't
think
I
don't
think
we
have
a
good
plan
on
which
of
these
issues
should
be
addressed
before
we
create
a
new
version,
but
at
least
the
intention
definitely
is
to
keep
this
alive,
even
though
it
is
only
expired.
So
I
think
I
think
we
should
definitely
keep
it
in
there
and
hopefully
this
one
will
have
a
new
version
in
the
not
too
distant
future.
E
K
Like
some
of
the
things
that
you
put
there,
you
know
it's
like
okay,
somebody
should
be
assigned
to
it
so
that
we
know
who
to
go
back
to
and
yeah
good,
but
I
think,
like
your
table,
there
really
is
also
it's
just
great
for
housekeeping
right
like
making
sure
that
well
we're
discussing
many
things
but
nobody's
responsible.
Maybe
that's
not
a
good
sign.
B
K
H
Really
unmute
in
anticipation,
I
guess
do
do
I
may
have
misunderstood
the
agenda.
Do
we
have
time
to
actually
briefly
run
through
the
7807
issues,
because
I
think
that
would
actually
help
us
move.
The
document
forward.
E
I
believe
we
can.
The
primary
item
left
on
the
agenda
is
martin's
date
request,
but
I
we
have
50.
I
don't.
H
Okay,
so
I'll
use
the
numbers
on
the
left,
even
though
we
know
that
they're,
not
the
real
numbers,
the
number
21
mapping
problem
details
into
a
header.
I
suggested
that
just
as
kind
of
a
thought
experiment,
because
it
has
come
up
in
the
past
before
of
of
conveying
this
information
in
a
header
when
you
don't
have
access
to
writing
to
the
response
body,
for
whatever
reason
and
or
or
if
you
want
to
expose
this
information
to
an
immediate
area
that
doesn't
want
to
crack
the
body
open.
H
I
should
say
content,
I
shouldn't
say
body,
but
you
know
old
school,
and
it
seems
to
me
like
the
response
to
this
was
was
somewhat
lukewarm.
So,
on
the
one
hand
you
know
a
lukewarm
response
like
this.
H
I
think,
if
I
could
characterize
the
responses,
I've
seen
is
that
oh
yeah,
that
might
be
useful,
but
I
don't
really
have
an
immediate
use
for
it
now,
so
the
most
obvious
thing
to
do
would
be
to
drop
it
and
just
move
on.
I
think
I,
if
you
look
at
the
very
last
comment,
I
said:
if,
if
people
think
that
they
have
a
clear
use
for
this
or
or
that
it
might
be
useful
very
soon,
we
should
do
it.
H
While
we
have
the
document
open,
because
it's
just
easy
to
do
that,
otherwise
we
can
wait
on
it.
Knowing
that
you
know,
if
there
is
pressure
to
use
it
out,
there,
then
that'll
build
up
for
a
while
until
we
actually
publish
the
document
which
we've
experienced
for
a
lot
of
other
api
facilities
as
well.
H
So
I
don't
have
strong
feelings
about
this,
I'm
happy
to
drive
to
drop
it.
If
no
one
wants
to
fight
for
it.
I
just
was
curious
to
see
what
other
people
thought
about
it.
E
So
I
I
think
that's
that
would
be
a
a
really
nice
thing
to
be
able
to
just
say.
Yes,
I
want
to
add
a
header
to
indicate
there
is
some
kind
of
problem
with
this
response,
even
though
I
returned
it
to
you
with
the
200
okay.
H
I
I
mean
I'm
happy
to
do
a
pr
just
to
see
what
it
looks
like
I
mean
my
inclination
would
be
if
it's
a
huge
wall
of
text,
it's
not
worth
it,
but
if
we
can
get
a
couple
of
paragraphs
and
get
some
value
out
of
it,
I'm
happy
to
put
it
out
there
and
then
see
if
that
spurs
anyone
to
say
yes,
I'd
really
like
to
have
that.
H
A
L
H
Okay,
that
that's
that's,
actually
really
helpful
I'll.
I'm
happy
to
do
a
pr
and
just
see
what
it
looks
like,
and
it
may
very
well
be
that
that
that
reveals
that
it's
a
horrible
idea
or
horribly
complex
and
not
worth
the
effort
or
whatever,
but
I'm
willing
to
try
so
I'll,
give
it
a
go
next
issue.
Thank
you,
hans
that
was
helpful
and
and
roberto
down.
Thank
you
requiring
a
specification
document.
H
H
Excuse
me,
the
next
one
number
quote:
unquote
23
multiple
problems.
This
has
been
a
long
discussion
and
I
I
think
we
have
a
fairly
strong
agreement,
at
least
in
the
issue
and
in
the
discussions
we've
had
previously
in
working
group
sessions
on
a
path
forward
in
terms
of
deleting
some
text
about
status
code
207.
H
That
is
not
terribly
good
practice
and
putting
in
another
kind
of
warning
about
the
limitations
of
of
this
structure,
sanjay
was,
I
know,
a
bit
sad
about
removing
the
examples
that
he'd
put
the
work
into,
or
at
least
one
of
the
examples
that
he
put
the
work
into
adding
to
the
spec,
but
I
think
that
there's
a
fairly
strong
agreement
there.
So,
if
folks
want
to
look
at
that
pr
and
give
any
feedback,
I
again
intend
to
merge
that
pretty
soon
as
well.
E
I
I
hadn't
posed
a
question
as
to
you
know
this
question
about
putting
examples
into
the
spec,
but
actually
not
putting
is
a
best
practices
document
like
the
natural
next
logical
conclusion
there,
or
is
that
overkill.
H
H
I
I
would
hope
that
that
kind
of
documentation
in
the
first
instance
you'd
you'd,
put
it
into
some
of
the
you
know
whether
a
blog
or
some
sort
of
industry,
communication
or
something
or
something.
I
think
there
are
a
number
of
outlets
out
there
like
that
and
if
there
aren't
there
should
be,
you
know
you
kind
of
smashing
mag,
but
for
api
developers
or
whatever
you
know.
H
If
anybody
goes
and
does
that,
I
expect
to
cut
just
saying:
yeah
and-
and
you
know,
if
we
can
there's
a
line
to
be
walked
there,
but
I
think
that
would
be
my
response
for
now.
Yeah
hans.
Do
you
have
your
hand
up
for
this
or
or
is
that
just.
H
No
okay
extension
to
so
so
the
show
source
of
problem
and
request
forex
class
of
errors
that
is
actually
blocked
by
another
issue
which
isn't
on
this
listing
for
some
reason.
E
Currently,
when
I
show
share
my
screen,
things
go
a
lot
slower
is,
it
is
the
issue
that's
blocking
it
discussed
here
I
mentioned.
H
H
There
we
go
so
we
we've
had
this
latent
problem
in
a
lot
of
discussions
about
7807
and
it's
good.
I'm
actually
glad
that
this
was
opened
as
a
separate
issue,
so
we
can
just
discuss
it
separately
and
and
it's
that
the
7807
does
not
allow
new
standard
d
done.
What's
what
I'm
looking
for
properties,
members
whatever
to
be
added
to
the
structure
that
all
the
all
the
ones
that
aren't
in
7807
are
effectively
any
possible
name
is
under
control
of
the
problem
type.
H
So
you
know
we
can't
come
up
and
say:
well,
here's
a
new
member,
for
I
don't
know
for
a
pointer
to
where
the
problem
is
in
the
response
body,
for
example,
which
is
what
the
previous
issue
was
about,
and
so,
if
you
scroll
all
the
way
down.
H
Yeah,
I
think
that
that
we
have
a
couple
of
ways
out
of
this.
We
we
can
either.
You
know
zero,
which
I
didn't
put
into
this
message
is
the
status
quo,
which
is
don't
allow,
don't
say
anything
about
this
or
we
could
find
a
name
convention
for
new
standard
properties
that
doesn't
conflict
with
any
existing
usage.
H
So,
for
example,
add
a
prefix
to
new
standard
properties
and-
and
the
issue
with
that
is
that
we
by
nature
can't
know
all
of
the
usage
of
of
7807
around
the
world
and
that
we
won't
conflict
with
them
in
every
single
instance.
You
know
we
can
make
that
less
likely
by
choosing
a
weird
prefix
and
then,
of
course,
we
have
weird
ugly
prefixes
on
new
standard
properties
but
whatever,
but
but
that's
kind
of
like
a
just
a
you
know,
there's
a
risk
strategy
we
had
around.
If
we
take
that
path.
H
The
other
path
we
have
is
to
mint
a
new
media
type
for
problem
details
for
this
next
revision
and
the
concern
there.
You
know
that
gives
us
a
clean
slate
to
work
with,
but
of
course
that
also
risks
creating
fragmentation
that
now
api
developers
have
to
choose
which
one
they
use
and
there's
momentum
behind
the
old
one
and
oh,
would
I
have
to
use
this
new
thing,
but
I
don't
know
if
everybody
supports
it,
blah
blah
blah
blah
and
so
that
that
creates
more
confusion.
H
Potentially
there
is
a
third
option
and
that's
kind
of
the
unspoken
option
in
1707,
which
is
we
can't
define
new
standard.
This
is
recognized
in
every
problem
instance
across
the
world,
but
what
we
can
do
is
create
new
conventions
that
new
problem
types
or
any
problem
types
can
opt
into
and
say:
oh,
yes,
I
use
that
convention.
H
So,
for
example,
we
could
create
a
convention
that
there's
a
problem
pointer
and
it
means
something
when
the
type
says
it
means
something
not
quite
as
automatic
and
nice
as
you'd
like,
but
you
know
maybe
a
path
forward
without
breaking
too
much.
I
I
don't
have
any
strong
feelings
here
personally,
if
you
want
to
call
that
option
zero
one,
two
and
three,
but
I
kind
of
feel
like
I.
I
I'm
most
against
option
two,
I
think
minting
a
new
media
type.
H
There
should
be
a
fairly
high
bar
against
it
and
I
think
option
one
actually
probably
could
work.
My
only
concern
there
is
there's
a
lot
of
experiments
that
people
want
to
have.
I
think
about,
oh,
that,
that's
a
good
idea.
This
is
a
good
idea
and
we
should
have
a
chat
about
what
the
bar
is
for
new
problem
for
new
standard
attributes.
H
I
don't
think
we
should
just
put
them
out
there
willy-nilly,
but
but
that's
all
I
have
to
say
about
this-
I'm
really
curious
to
hear
what
other
folks
have
to
say
about
it.
I
K
Yes
thanks:
this
is
eric
thanks
mark
for
coming
up
with
these
suggestions
for
number
one.
I
think
you
know
we
have
a
typical
problem
like
this
good
old
x-dash
considered
harmful
right.
K
It's
like
once,
people
start
using
stuff,
then
it's
kind
of
that's
how
it
is
and
and
renaming
it
to
whatever
convention
we
come
up
with,
is
always
a
little
bit
hard,
but
I
think
my
my
preference
probably
would
be
number
one
only
that
we
maybe
we
could
consider
using
uris,
which
why
not
it's
kind
of
like
a
prefix
but
one
that
maybe
is
a
little
less
just
random,
but
anyway
the
the
second
one
also
to
me
is
not
so
attractive.
K
The
third
one.
Actually
I
have
my
problem
with
that
is
that
this
means
that
that
kind
of
each
type
would
need
to
kind
of
opt
in
individually,
and
I
think
in
many
cases
you
might
rather
have
a
situation
where
you
say
my
api
always
uses
these
fields
and
then
it
would
become
kind
of
complicated
to
say
well,
and
I
have
these
28
types
and
then
all
these
28
types
so
to
speak
would
need
to
opt
in
into
that
additional
field
that
you're
trying
to
use.
K
So
so
I
think
that
one
is
like
it
doesn't
scale
so.
Well,
I
think
so
my
I
think
my
preference
would
be
to
go
with
number
one
and
to
go
with
uri
some
kind
of
uri
as
a
prefix,
and
then
I
think
the
risk
of
conflicts
is
relatively
low
and
that's
well,
given
what
rfc
7807
already
does.
I
think
that's,
maybe
the
best
thing
that
we
can
think
of.
H
I
I
I
think
I
agree
with
on
most
things
there
I
think
the
for
me.
The
problem
with
the
third
option
is
that
tools
want
to
be
able
to
automatically.
You
know
invoke
the
semantics
without
recognizing
a
particular
problem
type
and
then
you
can
offer
richer.
You
know
handling
of
a
problem
without
having
to
know
its
particular
semantics
and-
and
if
it's
opt-in
like
that,
then
we
that
implies
that
we'd
need
some
sort
of
problem
type
description
format
to
enable
tools
to
to
process
that
which
is
kind
of
nasty.
H
And
frankly
we
know
it's
not
going
to
happen.
What
they'll
do
is
just
say:
oh
look,
it's
using
problem
pointer.
I
reckon
it
probably
means
that,
even
though
I
don't
know
for
sure
so
yeah
I
think
you're
right.
I
think
that
number
one
is
probably
the
right
way
to
go.
I
I
do
have
kind
of
this
visceral
reaction
to
using
uris
as
json
property
names.
B
H
And
I'd
like
to
avoid
that
reaction.
Personally,
I'd
rather
find
I
don't
know
some
people
use
a
dollar
sign.
I
don't
know
double
colon.
We
can
have
that
bike.
Shooting
exercise
later
on.
E
This
is
daryl
just
one
comment
on
the
third
option.
As
the
7807
biz
introduces
a
json
schema.
E
I
think
what
the
third
option
is
describing
is
what
json
schema
now
allows
with
vocabularies
and
dialects,
and
because
this
is
almost
exactly
what
we
did
in
open
api
in
order
to
extend
the
keywords
that
are
supported.
E
We
introduced
a
vocabulary
and
then
you
declare
that
we
are
using
this
dialect,
which
is
a
set
of
vocabularies,
so
there
may
be
some
mechanics
it.
It's
a
little
interesting
to
get
your
head
around,
but
there
may
be
some
mechanics
that
we
could
reuse,
but
it
is
somewhat
dependent
on
how
well
adoption
of
dialects
and
vocabs
comes
because
it's
fairly
new
in
json
schema.
H
So
if,
if
I
can
respond,
oh
is
it
working
now
fantastic.
It's
telling
me
that
it's
success,
big
green
box,
that's
great!
I
I
have
again
a
kind
of
a
visceral
reaction
that
it's
very
similar
to
link
data
world
where
they're,
like
you
know
the
to
me
the
the
whole
idea
there
is
well.
We've
got
this
data
model
that
we
overlay
on
top
of
json,
but
it
looks
like
normal
json
and
that's
kind
of
an
attractive
nuisance.
H
You
know
because
a
developer
who
doesn't
use
linked
data
will
come
along
and
say:
oh,
look,
it's
json,
but
if
they
don't
use
that
data
model
they
might
actually
really
mess
things
up,
and-
and
so,
when
you
overlay
these
data
models
on
top
of
really
attractive
native
data
models
and
processing
models
and
so
forth
it
it
becomes
tricky
for
for
everyday
developers
to
use
it,
and
so
I'm
a
little
wary
of
those
sorts
of
things.
I
think
it
should
behave
like
it
looks.
You
know.
E
H
Oh,
don't
don't
start
me
on
that,
so
that
that
that
actually
the
number
24
is
dependent
upon
that
number
26..
If
we
get
the
number
26
sorted
out,
then
there's
just
a
question
of
whether
or
not
we
actually
do
that
and
we'll
get
there.
Then
ld
jason
ld
context.
H
H
So
if
somebody
wants
to
go
off
and
do
that
work,
that's
great
if
it,
if
nobody
does
it
by
the
time
that
we
get
a
last
call,
I
think
we'll
probably
just
drop
this
issue,
but
I'm
hoping
ashborne
or
somebody
will
step
up,
and
I
think
that's
everything
for
this.
So
thank
you.
Thanks
for
the
time.
I
I
don't
know
you
don't
have
to
do
it
you're
fine.
To
do
that.
I
was
requesting
it
that's
cool.
Now,
I'm
gonna
have
to
say
things
like
next
slide.
Please.
I
All
right
so
this
is
this
is
something
that's
come
up
in
the
ohio
working
group
as
well.
No,
it
seems
that
we're
running
into
a
bunch
of
issues
with
the
use
of
http
that
are
kind
of
interesting
and
sort
of
break
into
new
ground.
I
One
of
the
things
there
that
we've
discovered
is
that
there's
some
use
for
having
the
ability
to
to
mark
the
time
of
a
request,
particularly
in
that
case,
for
dealing
with
anti-replay
as
I'll
get
into
later,
but
there's
a
general
class
of
things
where
you
put
the
current
time
into
a
request,
or
something
like
that,
so
that
you
limit
the
the
time
over
which
something.
Oh,
oh,
that's
a
nice
feature.
I
Someone
spent
a
lot
of
time
on
that.
I
can
move
the
slides
down,
so
the
purpose
of
this
craft
is
to
basically
explore
the
use
of
putting
the
current
time
in
a
request
and
all
of
the
hazards
that
that
necessarily
come
with
that
moral
and
otherwise,
with
the
publicly
trying
to
make
date
time
stamps
and
requests.
I
So
the
specific
that
we
have
in
ohio
is
that
requests
are
replayable
in
that
context,
which
is
not
particularly
good
and
so
having
a
replay
strategy
is
particularly
useful
and
in
order
to
manage
the
state
commitments
on
servers
that
are
doing
anti-replay,
you
probably
want
to
have
something
like
a
date
or
sequence
number
or
some
sort
of
monotonically
increasing
thing.
A
date
is
kind
of
okay.
I
Having
a
date
means
that
if
you
receive
a
request,
that's
been
replayed,
you
can
rapidly
identify
it
as
such
and
then
just
out
of
hand
reject
it
and
then
for
those
requests
that
are
within
a
certain
window
of
the
current
time.
You
can
simply
say
well
I'll,
accept
those
and
remember
some
other
details
of
the
request
so
that
if
another
one
with
the
same
details
comes
in
again,
you
can
quickly
reject
it
as
a
duplicate
without
the
date
there's.
I
Basically
an
infinite
state
problem
that
the
server
has
to
deal
with
so
primarily
looking
at
date,
but
there
are
other
other
timestamps
in
requests.
I
So
probably
the
biggest
part
of
the
document
talks
about
the
ad
clock
problem
so
shockingly
common
that
our
clients
and
servers
have
a
disagreement
about
what
time
it
is.
It's
quite
often
the
case
that
the
clients
are
very,
very
badly
wrong.
We've
seen
times
that
are
in
the
wrong
millennium,
and
it's
not
that
unusual
to
see
things
that
are
months
or
years
out
of
out
of
date.
I
So
having
you
having
a
means
to
break
that
is
interesting.
There's
a
scheme,
that's
suggested
in
the
document
that
simply
says,
take
the
date
from
the
response
and
try
again,
of
course,
using
an
untrusted
time
from
an
arbitrary
server.
Random
servers
on
the
internet
is
probably
unwise.
Talk
about
that
a
little
bit
as
well
talk
about
the
caching
interaction
and
some
of
the
things
that
might
happen
if
you
have
an
intermediary
in
the
path.
I
I
The
servers
that
back
them
don't
often
get
the
get
the
time
right.
So
city
ends
often
fix
it
up
for
you
the
implication.
There
is
generally
that
this
is
no
problem,
but
if
the
server
time
is
very
very
badly
wrong
and
it's
rejecting
requests
and
the
cdn
is
fixing
the
date
up
on
the
way
out,
it
could
mean
that
you
never
get
a
request
through
ever.
I
So
I
know
we
had
some
discussion
with
this
one
already.
The
questions
I
have
is:
do
people
find
this
material
useful
and
is
this
something
that
the
group
would
be
interested
in
working
on.
I
I
C
So
how
straightforward
and
short
is
this
document?
Do
you
think,
martin.
I
It's
about
five
pages
from
memory.
I
don't
do
da.
I
don't
do
pages
anymore,
so
I
couldn't.
I
couldn't
tell
you.
Maybe
it's
eight.
It's
not
a
particularly
long.
One.
B
H
To
okay,
good
good,
so
I
think
maybe
the
the
focus
of
the
discussion
here
should
be
on
you
know.
If
this
document
just
needs
a
home,
I'm
sure
that
ohio
could
do
it.
I'm
sure
that
http
would
probably
be
happy
to
do
it
as
well.
H
I
think
maybe
the
focus
the
way
to
make
this
discussion
useful
is
is
do
api
folks,
think
that
having
this
document
and
these
clarifications
in
this
problem
type
would
be
useful
for
api
consumers
and
api
designers
and-
and
if
so,
then
this
is
a
natural
home
for
it,
and
if
it's
a
little
more
scratching
your
head,
I'm
not
so
sure
we
can
probably
just
do
an
http
or
in
ohio
or
wherever
and
if
it
gets
used
elsewhere.
That's
great,
but
it's
not,
you
know
necessary
to
have
it
here.
I
Yeah,
I
think
when
I,
when
I
first
floated
this
one,
I
don't
know
if
it
was
you
mark
who
pointed
out
the
item,
potency,
key
work
and
there's
a
bit
of
a
relationship
with
that
one.
The
sort
of
complementary
pieces
of
work.
A
Yeah
yeah.
Well,
thanks
martin,
I
I
think
it's
okay,
the
documents
to
be
related
to
timestamps
in
general,
but
I
I
really
don't
want
to
mess
with
dave
because-
and
I
I'm
not
even
sure
that
this
is
the
right
place
where
in
information
that
should
be
in
in
some
way,
guaranteed
should
be
used.
But
this
is
a
personal
opinion.
This
this
is
my
opinion
for
seeing
the
networks
and
for
and
in
general,
for
whatever
is
related
to
either
confidential
integrity,
or
that
is
not
just
an
operative
information.
I
So
I
think
that's,
that's
that's
a
fair
comment.
I
I
didn't
quite
catch
your
piece
about
third
date.
G
E
I
think
this
is
daryl's.
Speaking
from
an
api
perspective,
I
haven't
seen
this
particular
issue.
Come
up
a
whole
lot,
although
I
can
imagine
four
apis
that
require
to
do
signed
requests.
This
does
get
a
lot
more
interesting
and
I
think
just
the
fact
that
we're
using-
and
it
does
include
a
problem
type
as
a
way
of
describing
it
does
kind
of
correlate
it
back
to
apis
fairly
strongly.
E
So
I
I
think
this
it
does
seem
like
a
reasonable
home
for
adding
this
capability,
even
though,
maybe
at
the
moment
in
the
api
world,
it's
fairly
niche.
H
Is
it
working
okay?
That
makes
me
wonder
whether
have
you
talked
to
justin
about
this,
because
if
it's
you
know,
has
the
strong
link
to
the
signatures
draft,
maybe
it
could
go
in
there
or
be
a
companion
document
or
just
just
stop
thinking
out
loud.
I
Yeah
I
I
haven't
spoken
to
justin
about
this
one
in
the
discussion
I
have
with
roberto
on
the
list.
I
think
we
we
kind
of
concluded
that
the
signatures
thing
was
was
less
directly
applicable
to
this
one.
It's
it's
often
the
case
that,
when
something
signs
something
they
put
the
time
at
which
they
signed
it,
but
the
purpose
of
that
is
is
usage
limitation
rather
than
to
indicate
the
the
current
time,
and
so
the
the
connection
to
signatures
is
a
little
weaker
than
than
that.
I
Okay,
well,
I've
gotten
some
good
feedback
here.
Perhaps
I've
got
to
take
this
to
the
list
and
I've
got
a
revision
to
make.
There's
there's
a
few
things
that
have
come
up
already
in
the
discussions
thus
far.
I
might
revise
it
and
then
ask
again
on
the
list
and
we
can
have
that
discussion.
H
B
H
I
My
read
of
the
item,
potency
stuff,
is
that
this
is
complementary
and
entirely
complementary.
You
can
use
both
or
neither
or
one
and
and
that's
going
to
work
out
pretty
well
depending
on
what
it
is
that
you're
looking
to
do
so.
I
think
this
is
probably
okay
for
that
and
one
of
the
nice
things
about
the
item.
Potency
work
is
that
it
could
be
a
way
to
to
signal
what
what
aspects
of
the
request
can
determine
that
it
is
either
put
or
not,
which
is
sort
of
very
complimentary.
I
If
you
you're
talking
about
anti-replay
strategies
and
whatnot,
because
if
you,
if
you've,
got
an
item
patent
request,
then
you
don't
have
to
worry
as
much
about
the
item,
the
the
replay
properties
or
something
I
thought
I
thought
they
were
very
much
complimentary.
C
All
right
are
we
in
the
aob.
E
Section
now
daryl,
we
we
are
in
the
proposal
for
new
working
group
documents,
which
we
are
now
more
enthusiastically
open
to.
I
believe
we
had
last
time
a
conversation
about
link
template
as
a
document
to
do
a
call
for
adoption,
unlist,
which
I
believe
we
failed
to
do,
and
so
we
are
recommitted
this
time
we
really
will
do
call
for
adoption
and
we
have
more
renewed
enthusiasm
about
adopting
more
docs.
E
So
look
out
for
that
on
the
mailing
list
and
the
other
document
that
has
been
brought
up
in
the
discussions
area
on
the
github
repo
is
the
health
check
document,
which
is,
as
I
understand
it,
is
currently
an
individual
contribution,
but
it
doesn't
have
a
working
group
home
and
I'm
gonna
defer
to
rich
with
regards
to
what
the
processes
and
procedures
of
adopting
something
like
that
would
be.
C
K
Yeah
thanks
rich.
This
is
eric
I
just
wanted
to
so
because
last
time
I
said,
I
would
get
in
touch
with
iraqi
and
see
you
know
how
he
feels
about
it
and
so
forth,
and
in
my
defense
I
did
multiple
times,
but
not
much
progress
was
being
made.
So
I
still
have
I
don't
know.
Last
thing
I
heard
from
him
was
that
he
tried
to
join
mailing
list
and
I'm
not
quite
sure
of
how
the
status
is
there.
K
I
don't
think
I've
seen
him
on
the
mating
list,
but
at
least
I'm
still
pinging
him
on
a
regular
basis.
I'll
keep
doing
that,
and
hopefully
there
will
be
some
path
forward.
I'm
not
quite
sure
whether
iraqi
has
the
the
cycles
to
actually
go
forward
with
the
draft,
but
one
way
or
the
other.
At
least
he
knows
that
that
the
group
is
interested
in
the
general
topic
and
I'll
keep
the
group
updated.
If
I
make
any
progress.
C
Great
okay,
thank
you.
If
it
helps
to
you
know
loop
daryl
or
I
into
the
conversation
we
can
help
ensure
the
process
will
be
relatively
painless
until
it
gets
to.
As
folks
know,
after.
L
D
Hello,
I
wanted
to
ask
the
chairs
and
the
working
group
to
possibly
consider
updating
the
milestones
we
don't
need
to
have.
I
think
it's
useful
to
have
some
sort
of
record
of
you
know.
What's
the
current
status
of
the
documents,
even
though
we
have
an
awesome,
github
project
view
now,
but
this
is
a
more
high-level
general
view
and
we
can
use
the
next
and
later
and
last,
instead
of
dates.
D
I
Man,
that's
so
slow.
Have
I've
done
the
research
on
milestones
and
concluded
that
having
dates
on
them
is
probably
foolish
we'd
probably
decide
whether
whether
we
wouldn't
put
a
date
on
any
more
ones
in
this
group
as
well
I'd
sort
of
advocate
the
thing
no.
C
Yeah,
I
I
think
yes
having
some
kind
of
priority
or
a
rough,
you
know
t-shirt
size
estimate
is,
it
will
be
worthwhile
daryl
mark
and
I
can
discuss
offline
with
francesca
and
post
them
and
then
see.
If
the
working
group
says
we
got
it
wrong.
So
we'll
do
that
between
now
and
the
next
ietf
how's.
That.
E
I
suggested
that
I
think
twitter
is
actually
quite
a
common
gathering
spot
for
api
community
folk,
and
so
if
we
want
to
get
the
attention
of
more
people,
I
think
that
probably
would
be
a
good
idea.
So
I
guess
it's
just
a
case
of
understanding
exactly
what
events
we
would
want,
so
that
we
understand
what
kind
of
frequency
that
that
might
spam
a
audience
with
notifications.
E
See?
Okay,
eric
you
say
you
like
the
hd
working
group.
One
does
folk.
Do
folks,
have
pointers
as
to
how
to
get
that
set
up.
H
Sorry,
we
may
run
out
of
time
before
my
wife
becomes
active
again
yeah
yeah,
you
you
talk
to
me.
I
have.
B
H
That
does
that,
if
you
have
new
features,
I
take
pull
requests
or
cash.
H
B
C
H
Yeah
the
hard
one
right
now
is
when,
when
I,
when
you
put
out
a
call
for
adoption,
because
there's
no
way
to
recognize
that
easily
with
the
event
stream,
the
data
tracker
puts
out
but
we'll
we'll
talk.
C
Yeah,
okay
yeah
we
can
maybe
we
can
get
the
tools
to
change
mate.
Okay,
all
right!
Unless
anybody
has
something
else
to
bring
up.
I
think
we'll
give
everybody
link
setting.
C
Save
the
best
for
last
save
the
best
for
last
thanks
the
authors
for
their
patience
and
good
nature.
Yes,
there
was
one
change
made
in
the
last
good
point.
One
change
made
after
the
set
of
isg
and
itf
reviews,
which
turned
two
shoulds
into
a
may
two
shirts
into
a
must
sorry
for
interrupt
I'll
post,
the
diff
to
the
list,
and
if
anybody
disagrees
by
the
end
of
you
know
next
week
speak
up,
but
it's
just
tightening
your
requirement.
C
D
So
I
don't
know
if
eric
wants
to
share
more
in
detail,
but
since
I'm
shepherding
this
through
the
ist
process,
I
can
say
that
yeah
just
for
summary,
if
someone
like,
if
people
haven't
followed
this,
but
we
had
to
do
another
ipf
last
call
because
of
process,
because
some
down
ref
were
missed
that
were
in
the
ice.
So
we
started
that
and
it's
ending
the
28th
of
march
and
I
also
requested
an
internationalization
directorate
review.
D
So
I
hope
that
will
arrive
by
then
and
and
after
that,
we're
only
missing
a
couple
of
ballots
and
I
don't
think
that
it
will
be
a
huge
re-review
from
the
whole
isg,
and
I
wanted
to
thank
you,
the
authors
for
answering
all
the
comments
and
they
already
post
posted
a
next
version
version
zero,
nine.
D
So
it
should
be
quite
painless.
In
my
opinion,
I'm
only
waiting
for
the
internationalization
review
to
make
sure
that
we
get
that
right.
I
am
not
an
expert
in
the
topic
so
waiting
for
their
opinion,
since
there
is
an
internationalization
section,
so
yeah
that
that's
basically
from
my
side.
D
C
All
right
thanks
everyone.
I
I
want
to
say
that
you
know
this
was
sort
of
a
different
group
for
the
ietf.
We
have
I'm
very
impressed
by
all
the
authors
when
they
go
out
and
they
say.
Oh,
I
spoke
to
the
opening
api
people.
I
spoke
to
the
ammo
people.
These
are
whole
communities
that
are
certainly
new
to
me
as
an
ietf
geek,
but
I
think
we're
doing
a
very
good
job.
I
think
we're
bridging
appropriate
communities
and
getting
good
stuff
done
sometimes
when
east
meets
west
there's
little
friction
and
frustration.
C
So
I
appreciate
everybody's
patience,
eric
and
herbert
particularly
most
recently,
but
we
seem
to
be
doing
well
and
that's
partly
why
you
know.
That's
mainly
why
daryl
and
I
think
we
can
sort
of
open
up
the
pipe
and
take
on
more
bandwidth,
so
stay
safe,
safe,
healthy
pray
for
peace,
whatever.