Clarify how access happens for shares without absolute URIs #165
Conversation
|
I think I am missing something. Why is it not possible to use the endpoint designated in the discovery endpoint when using a reverse proxy? Is it not the job of the reverse proxy to proxy the request to the correct backend server? It is not intended that the communication bypass the reverse proxy and go directly to the backend, right? |
There was a problem hiding this comment.
I don't think I understand what the problem is. The way I understand the flow is:
- [email protected] shares "files/bla.txt" with [email protected]
- server1.com does a lookup of server2.com/.well-known/ocm
- the Share Creation Notification is POSTed. This may go through proxies, doesn't matter. The important part here is part after the
@symbol in thesenderfield, so in our API docs example that would beapiwise.nlinstead of server1.com. - server2.com retrieves server1.com/.well-known/ocm
- checks whether it thinks this spam or not. It can do so for instance by checking the request headers against the pubkey announced there, or by checking whether the share is actually accessible at the announced WebDAV API of server1 (see next step).
- it uses the base path from
resourceTypes[0].protocols.webdavto find the webdav base URL, in our API docs example that would be/remote/dav/ocm/but this can also be an absolute URL at https://storage.server1.com or https://proxy.sever1.com or similar. - It adds the relative path of the share to the WebDAV base URL to get (in this example) https://apiwise.nl/remote/dav/ocm/files/bla.txt as the WebDAV URL.
Which part of this is made impossible by the use of (reverse) proxies?
|
OK, now I understand what you (both) meant: the key is all in I must say that I have missed that, I'll try and spell it out explicitly in the discovery section even if it's explained in the Invite flow section. At this point, no need to "un-deprecate" the full URL in the payload, on the basis that the payload MUST contain the server in the |
glpatcern
changed the title
| @@ -73,7 +73,7 @@ We define the following concepts (with some non-normative references to related | |||
| * __Discovering Server__ - a server that tries to obtain information in OCM API discovery | |||
| * __Discoverable Server__ - a server that tries to supply information in OCM API discovery | |||
| * __OCM Address__ - a string of the form `<Receiving Party's identifier>@<fqdn>` which can be used to uniquely identify a user or group "at" an OCM Server. `<Receiving Party's identifier>` is an opaque string, | |||
| unique at the server. `<fqdn>` is the Fully Qualified Domain Name by which the server is identified. This can, but doesn't need to be, the domain at which the OCM API of that server is hosted. | |||
| unique at the server. `<fqdn>` is the Fully Qualified Domain Name by which the server is identified. This MUST be the domain at which the OCM API of that server is hosted. | |||
There was a problem hiding this comment.
Reviewing myself, I believe this is the only significant change, all the rest being a matter of better phrasing and realigning of the IETF text to the spec.
I believe we have to force a MUST here, otherwise my argument of un-deprecating full URIs in share payloads remains valid. Otherwise, if a share payload does not contain a usable owner, and the URI is relative, how can a receiver contact the sender, assuming that its remote address may not be valid?
There was a problem hiding this comment.
I think this "doesn't have to be" phrase refers to the fact we are allowing the OCM API (i.e. where POST ./shares and other endpoints live) as advertised in /.well-known/ocm to be on a different server than /.well-known/ocm itself, right?
There was a problem hiding this comment.
Ah, my interpretation was that the /.well-known/ocm must be on the same server as the owner's (or recipient's) OCM address that is sent by a POST ./shares
As we are implementing OCM 1.2 in Reva, we realized that full URIs in new share payloads are:
Actually requiredif we want to support deployments that make use of reverse proxies (such as CERNBox), where the receiver has no other way than contacting the sender at their advertised URI (typically different from the sender's address). Edit: if the owner's OCM address is provided, then full URIs are not required.See cs3org/reva#5076 (comment) for more details.
With this PR,
we are "un-deprecating" the full URI concept in new share payloadswe make the OCM address' FQDN mandatory.Additionally, some fixes and a re-harmonization of the IETF text have been included, most notably:
webdav.uriproperty isREQUIRED, notOPTIONAL/.well-known/ocmdiscovery endpointuriTemplatewas renamed touri