Clean up DID Resolution section; enable testability via proof by construction #601
Conversation
msporny
requested review from
dlongley,
jricher,
peacekeeper,
TallTed and
brentzundel
index.html
Outdated
| resolveRepresentation ( did, did-resolution-input-metadata ) <br> | ||
| -> ( did-resolution-metadata, did-document-stream, did-document-metadata ) | ||
| </code></p> | ||
| resolveRepresentation(did, options) → |
There was a problem hiding this comment.
do we mean DID or DID URL?
Would prefer to see a note that clarifies the type... and explicitly states if path, query and fragment are allowed.
There was a problem hiding this comment.
resolveRepresentation() takes a DID, not DID URL
There was a problem hiding this comment.
Both the resolve* functions take a DID, the dereference function takes a DID URL. This is one of the most important differences between these functions.
There was a problem hiding this comment.
Same as above ... did is correct here.
index.html
Outdated
| -> ( did-resolution-metadata, did-document, did-document-metadata ) | ||
| </code></p> | ||
| <pre title="Abstract functions for DID Resolution"> | ||
| resolve(did, options) → |
There was a problem hiding this comment.
do we mean DID or DID URL?
Would prefer to see a note that clarifies the type... and explicitly states if path, query and fragment are allowed.
There was a problem hiding this comment.
if it's possible to hyperlink to definitions here, that might help avoid any confusion.
There was a problem hiding this comment.
resolve() takes a DID, not DID URL
There was a problem hiding this comment.
Both the resolve* functions take a DID, the dereference function takes a DID URL. This is one of the most important differences between these functions.
There was a problem hiding this comment.
Agreed, did isn't going to change in this PR (and possibly never going to change).
index.html
Outdated
| -> ( did-url-dereferencing-metadata, content-stream, content-metadata ) | ||
| </code></p> | ||
| <pre title="Abstract functions for DID Dereferencing"> | ||
| dereference(didUrl, options) → |
There was a problem hiding this comment.
hmmm, this answers my question about the other functions... but it feels odd that this abstract function is defined so far away from the other ones... wonder if we can define them all together in one place, and then address them one at a time like this PR is doing.
There was a problem hiding this comment.
They're all in the same overall section, but resolution and dereferencing are two very distinct operations and so they're defined separately.
There was a problem hiding this comment.
Agreed with @jricher -- we're going to keep these two sections separate since they do two very different things.
With my Editor hat off -- I continue to assert that we don't need to define this behavior in a normative way -- the whole dereferencing section is weird -- it's the purview of software libraries that we don't need standards for. We don't standardize the software library interface that an XML parser should use to extract a subsection of an XML document (same for HTML documents). I don't know why we continue to insist that we do this for DID Documents.
| </p> | ||
|
|
||
| <dl> | ||
| <dt> | ||
| did-url | ||
| didUrl |
There was a problem hiding this comment.
here would be a good place to warn about query and path and their relatively poor utilization... or add some detail on why we kept them in the spec.
There was a problem hiding this comment.
If we want such a warning, I think it should go into the DID URL Syntax section, not here.
There was a problem hiding this comment.
@OR13, I'm taking that as non-blocking feedback that is editorial and that can be added at a future point in time (during CR).
index.html
Outdated
| <code>contentStream</code> SHOULD be a <a>resource</a> such as a <a href="">DID | ||
| Document</a>, <a href="#verification-methods">Verification Method</a>, or <a | ||
| href="#services">service</a> that is serializable in one of the conformant | ||
| <a>representations</a> obtained through the resolution process. If the |
There was a problem hiding this comment.
hmm, is this true of dereferencing an image with location transparency?
For example:
did:example:123?service=images&relativeRef=/favicon.png
I expect the content type to be image/png not application/did+json....
There was a problem hiding this comment.
This sentence should say MAY, it was incorrectly changed to SHOULD in cbbca3b3.
There was a problem hiding this comment.
@msporny ^ has this comment been addressed?
| If the dereferencing is unsuccessful, this output MUST be an empty <a | ||
| href="metadata-structure">metadata structure</a>. | ||
| metadata about the <code>contentStream</code>. If the <code>contentStream</code> | ||
| is a <a>DID document</a>, this MUST be a <a>didDocumentMetadata</a> structure as |
There was a problem hiding this comment.
implies that contentStream can be something other than a registered did document representation mime type... see https://github.com/w3c/did-core/pull/601/files#r571649879
There was a problem hiding this comment.
Yes, the dereferencing function can return something other than the did document itself.
index.html
Outdated
| The MIME type that the caller prefers for <code>contentStream</code>. The MIME | ||
| type MUST be expressed as an <a data-lt="ascii string">ASCII string</a>. | ||
| The <a>DID URL dereferencing</a> implementation SHOULD use this value to | ||
| determine the <a>representation</a> contained in the returned value if such a |
There was a problem hiding this comment.
I think we may mean contentType of the resource... and not want to use representation here.
There was a problem hiding this comment.
Overall this feels like its heading in the correct direction.
Blocking feedback:
I am confused over the relationship between accept, contentType and representation and resource. I think we mean for DID URLs to be capable of dereferencing to resources other than DID Documents, yet we are not clearly saying that here... but we sorta allude to it.
I think the solution is to define the abstract functions all together:
resolve, resolveRepresentation and dereference
And describe the domain of accept and contentType for each.
I am asserting these abstract functions have different domains / ranges... for example:
resolvedoes not produce acontentType...resolveRepresentationproducescontentTypeof DID Document Representation...dereferenceproducescontentTypeof IANA Registered MIME type (which includes did documents and images)...
Nonblocking feedback:
I think it would help to hyperlink the terms to their definition, and be more excplit about where path, query and fragment are allowed, required, or ignored.
|
We may find it helpful to review / agree to #600 before attempting further changes here. |
@msporny Where does the current text state that? |
index.html
Outdated
| <a href="#did-resolution-metadata"></a>. If the resolution is successful this | ||
| structure MUST contain a <code>contentType</code> property containing the |
There was a problem hiding this comment.
Only if resolveRepresentation() was called, not if resolve() was called. Why this change?
There was a problem hiding this comment.
Yep, this is a bug, will fix.
index.html
Outdated
| <code>didDocument</code> property. This metadata | ||
| typically does not change between invocations of the <code>resolveRepresentation</code> |
There was a problem hiding this comment.
Why this change? didDocumentMetadata is returned both for the didDocument and for the didDocumentStream, returned by resolve() and resolveRepresentation() respectively.
index.html
Outdated
| these functions in any way. <a>DID resolver</a> implementations might map the | ||
| <code>resolve</code> and <code>resolveRepresentation</code> functions to a | ||
| these functions in any way. <a>DID resolver</a> implementations might map | ||
| this function to a |
There was a problem hiding this comment.
I'll put it back, this is a hold over from when I condensed down into a single function.
| </p> | ||
|
|
||
| <dl> | ||
| <dt> | ||
| did-url | ||
| didUrl |
There was a problem hiding this comment.
If we want such a warning, I think it should go into the DID URL Syntax section, not here.
index.html
Outdated
| <code>contentStream</code> SHOULD be a <a>resource</a> such as a <a href="">DID | ||
| Document</a>, <a href="#verification-methods">Verification Method</a>, or <a | ||
| href="#services">service</a> that is serializable in one of the conformant | ||
| <a>representations</a> obtained through the resolution process. If the |
There was a problem hiding this comment.
This sentence should say MAY, it was incorrectly changed to SHOULD in cbbca3b3.
|
@msporny thanks for this new PR, I agree with a lot of changes, but am also confused by some others. Maybe it would be simpler to break this up into multiple PRs so they are easier to review?
|
index.html
Outdated
| resolveRepresentation ( did, did-resolution-input-metadata ) <br> | ||
| -> ( did-resolution-metadata, did-document-stream, did-document-metadata ) | ||
| </code></p> | ||
| resolveRepresentation(did, options) → |
There was a problem hiding this comment.
Same as above ... did is correct here.
index.html
Outdated
| <a href="#did-resolution-metadata"></a>. If the resolution is successful this | ||
| structure MUST contain a <code>contentType</code> property containing the |
There was a problem hiding this comment.
Yep, this is a bug, will fix.
index.html
Outdated
| <code>didDocument</code> property. This metadata | ||
| typically does not change between invocations of the <code>resolveRepresentation</code> |
index.html
Outdated
| these functions in any way. <a>DID resolver</a> implementations might map the | ||
| <code>resolve</code> and <code>resolveRepresentation</code> functions to a | ||
| these functions in any way. <a>DID resolver</a> implementations might map | ||
| this function to a |
There was a problem hiding this comment.
I'll put it back, this is a hold over from when I condensed down into a single function.
index.html
Outdated
| -> ( did-url-dereferencing-metadata, content-stream, content-metadata ) | ||
| </code></p> | ||
| <pre title="Abstract functions for DID Dereferencing"> | ||
| dereference(didUrl, options) → |
There was a problem hiding this comment.
Agreed with @jricher -- we're going to keep these two sections separate since they do two very different things.
With my Editor hat off -- I continue to assert that we don't need to define this behavior in a normative way -- the whole dereferencing section is weird -- it's the purview of software libraries that we don't need standards for. We don't standardize the software library interface that an XML parser should use to extract a subsection of an XML document (same for HTML documents). I don't know why we continue to insist that we do this for DID Documents.
| </p> | ||
|
|
||
| <dl> | ||
| <dt> | ||
| did-url | ||
| didUrl |
There was a problem hiding this comment.
@OR13, I'm taking that as non-blocking feedback that is editorial and that can be added at a future point in time (during CR).
| If the dereferencing is unsuccessful, this output MUST be an empty <a | ||
| href="metadata-structure">metadata structure</a>. | ||
| metadata about the <code>contentStream</code>. If the <code>contentStream</code> | ||
| is a <a>DID document</a>, this MUST be a <a>didDocumentMetadata</a> structure as |
There was a problem hiding this comment.
Yes, the dereferencing function can return something other than the did document itself.
| definitions use strings for values. The entire metadata structure MUST be | ||
| serializable in a conforming <a>representation</a>. |
There was a problem hiding this comment.
Why was this additional requirement added? The implementation might do any number of things to serialize the metadata separately from the document itself. As long as it gets in and out of the map, that's fine. By requiring the metadata to re-use the type and data structure system it inherits this property anyway.
| definitions use strings for values. The entire metadata structure MUST be | |
| serializable in a conforming <a>representation</a>. | |
| definitions use strings for values. |
There was a problem hiding this comment.
Yes, the implementation might do any number of things -- but we can't test "any number of things" -- we need to test a "specific thing". The text was added to provide something specific we can test for... it doesn't say you have to serialize it... it says it "must be serializable" -- that is, you must be able to do it (and the test suite will test that by requesting a serialized form). Implementations aren't required to serialize, just ensure that it is possible to do so.
There was a problem hiding this comment.
There is no such thing as "a conformant representation" for metadata. The representations are defined in terms of the did documents. This requirement does not make sense.
There was a problem hiding this comment.
I thought we wanted to be able to return metadata as cbor, json, yaml, etc... are we saying we want to be able to return a json did document with cbor meta data?
My understanding was that the entire response values would be in the requested representation... so if you asked for json, you would not get back cbor... but perhaps you see this as way to return response data in http codes / headers... which will never be JSON / CBOR?
There was a problem hiding this comment.
Metadata is not ever defined in terms of JSON, CBOR, or anything. It's a data structure (a map).
The ability to call the resolve function for a specific platform is going to require some way to get the map values in and out. We specify this in terms of the data structure -- map -- and not in terms of a serialization for that data structure. The method of passing that data structure in and out is the binding of the abstract function to a specific implementation.
There was a problem hiding this comment.
It sounds like what you're writing here is a requirement for hooking functions to the test harness, and not requirements for the function itself. This is a dangerous line to cross.
There was a problem hiding this comment.
There is no such thing as "a conformant representation" for metadata.
Metadata is not ever defined in terms of JSON, CBOR, or anything. It's a data structure (a map).
Here's the problem that we continue to have with the Resolution section:
The original authors intend an unspecified subset of it to be a purely abstract thing while simultaneously wanting there to be normative language related to the abstract concepts. While it is true that we can write normative statements about abstract concepts, it has been asserted that doing so is less useful than being able to have testable statements. This point has been made repeatedly throughout the past decade or more at W3C, across multiple Working Groups, with repeated consensus positions reaffirming that groups shouldn't write normative language around abstract concepts that are not realizable in concrete tests.
In other words, we cannot test abstract things in the test suite if they are never realized as something concrete. It is problematic to have normative language on abstract concepts because it's very easy for people to make subjective assertions about their conformance to those statements. When you don't make things testable, you harm interoperability.
We have three options that were explored:
- Migrate the entire Resolution section into a NOTE.
- Remove normative language that is associated with abstract concepts/statements.
- Make the normative language around abstract concepts/statements testable by providing a path to a concrete expression of those abstract concepts/statements.
The third item seemed to be the one that had the best chances of achieving consensus.
In order for that to happen, we need a proposal that enables us to get the metadata into a concrete form so the test suite can test it. One approach is to say that "the metadata structure MUST be serializable in a conforming representation". If we look at the JSON production rules, it doesn't say anything about production ONLY applying to DID Documents... it just states that "if you have data type X, then you can serialize by doing Y." ... and if we can do that with the metadata structure, then we have a path to testability.
I'm also open to any other paths to testability.
At this point, @jricher, we need a counter-proposal on how we get the metadata structure to testability, or we need you to clarify if you are objecting or if you can live with the language.
There was a problem hiding this comment.
I am not going to formally object to anything in here, but I am on record in saying that this is a bad idea that makes for a weak specification.
There was a problem hiding this comment.
In lieu of a counter-proposal that can achieve stronger consensus, I'm hearing that you won't object to keeping the language as it stands.
Co-authored-by: Markus Sabadello <[email protected]> Co-authored-by: Amy Guy <[email protected]>
Co-authored-by: Ted Thibodeau Jr <[email protected]>
Co-authored-by: Markus Sabadello <[email protected]> Co-authored-by: Justin Richer <[email protected]>
Co-authored-by: Justin Richer <[email protected]>
Co-authored-by: Justin Richer <[email protected]>
msporny
force-pushed
the
msporny-issue-549-construction-testability
branch
from
ee76e43 to
a58ae7f
Compare
|
@msporny My concerns have been noted and discussed, and I disagree with the conclusions and solutions to those concerns that are part of this PR. That said my opinion is just one of many in the working group, and so I am not attempting to block this pull request with just my own stance, regardless of how and why I disagree. |
Acknowledged, thank you. I am going to pull this PR in with the following caveat -- we still have a few weeks left to improve this section if anyone has a better idea on how to strike the abstract/testable balance. There are also legitimate concerns about the Representation sections and how they apply to some of the language in this PR that needs to be addressed; are they about serializing DID Documents only, or any data expressed using the ADM? We're almost certainly headed for a 2nd PR... I've never seen a specification with 130+ machine-testable normative statements get it right the first time -- but we're going to try. This PR addresses all the outstanding testability concerns with the Resolution section, but in a way that causes almost all of us heartburn... so if anyone has any better ideas in the meantime, please feel free to raise a PR -- the worst that can happen is that the group decides to not take it up before CR. |
|
Normative, multiple reviews via #587, #591, #592, and #601, changes requested and made, remaining objections are non-blocking, merging with caveat in #601 (comment). |
This PR is intended to address issue #549 by adding to the abstract functions discussed in the DID Resolution and DID URL Dereferencing sections and ensuring that all statements are testable using a "proof by construction". That is, all statements that return abstract data models are testable due to additional normative statements that effectively state: "anything that returns an abstract data model MUST be serializable in one of the representations". Previously, that statement didn't apply to
didDocument, the metadata structure, some of the dereferencing values, etc. This PR fixes that.The PR also adds at-risk markers to some of the newer features requested by individuals (but not necessarily broadly requested by the WG -- such as nextUpdate, nextVersionId, equivalentId, and canonicalId. There are also a few bugs fixed in this version (such as stating that a contentType must be specified for the resolve call -- that returns an abstract didDocument... which is clearly wrong).
There are a LOT of reformatting changes in this PR, it might be best to look at the rendered preview for this PR.
Preview | Diff