Re: [Captive-portals] time-based walled gardens

To: Michael Richardson <[email protected]>

Subject: Re: [Captive-portals] time-based walled gardens

From: David Bird <[email protected]>

Date: Mon, 10 Apr 2017 08:08:43 -0700

Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/CDr4e-Kh0G6m76Lrf6XZ5AAT84M>

Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com

Cc: [email protected]

Delivered-to: [email protected]

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=VbzBVAJnMyyirKvYCmck8otSBI6jhSUR4OOxrL06HwQ=; b=kJtJWp3V6bcMMbwkOYFcM2vOoMstRAp6POBmj2WLF7ECTMg5Urgc3mSpRRexUo6eHz S+bnicLAB5NR39SD8CtZwkRDPbJu84jNWgdOrh/UKF5vJ/ZCA3tdGGW5nEFOhiLjjLBR Q7Eunp0ovlclrfWZB6ipHugrzL0cimWKyQ2XaNYPqgLdMLuSoIs374rNVffwbWk2KOLK o3E/IzO5RgUEJd0M/AHFsAqMoBeTyHUZOKTGFxNc5g4DH4YHt22USX/uSYpjykayN7SA U47Fk/5es6cnVxEqhlsrOA+fx4eSANoShl0qOz8RSXO43fWIFInZslRsIJu1+ziFwGIH UQsg==

In-reply-to: <[email protected]>

List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>

List-help: <mailto:[email protected]?subject=help>

List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>

List-post: <mailto:[email protected]>

List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>

List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>

References: <CADo9JyU2wiEBB4L7ADSybt9se7jCN764JSEoHuGTcuiU_jDscQ@mail.gmail.com> <CAAedzxqR5bWTP_gou+hC5cgQ99tV275nX_ijm7iUok4-h+3wMQ@mail.gmail.com> <CADo9JyVfmhir8YtOR2mzzaaPL_9mBKgFmht6-SA50SfPmh9z6w@mail.gmail.com> <CAAedzxrck9+TBpEp-x8_tG-oxxKh4MQ4-x+iuGNGd6JsG=poQQ@mail.gmail.com> <CADo9JyUKb_c6SPigjUqngUyPvDsbN10TLZX0+B9r92xm6XGgAA@mail.gmail.com> <[email protected]> <CAAedzxo3Gp9ZhLeujZBC0vn9GO=+xHxkAstisoUAX1BCTEtYvQ@mail.gmail.com> <CADo9JyUr2rpZBjz5zMrrUmi8+gR9VGxBFhMLGVqFGYiWsOic6w@mail.gmail.com> <[email protected]> <CADo9JyXj0EOvYSaz1sEMQOfb1AGHSj=ODnSjKbZqM=0SmbOhRw@mail.gmail.com> <[email protected]>

Absolutely, within a 'closed' environment (e.g. where you have control over your walled garden, what Apps are installed or offered to users, etc), you can do all sorts of cool and clever things with custom interfaces, APIs, and auto- or assisted- logins. This is true today for Hotspot operators (within their own garden and App, they can do anything they want, more or less). This is also true for roaming aggregators (they use their own APIs accessed through the walled garden of Hotspots in their network). None of these solutions require IETF or any standards... I think it is a mistake to try and figure out a common API for everyone to use, as it will never fit all use-cases. In my opinion, we can only create sort of 'core' protocols to convey configuration and network feedback and let the industry decide how it applies to their use-cases.

On Mon, Apr 10, 2017 at 7:57 AM, Michael Richardson <[email protected]> wrote:

David Bird <[email protected]> wrote:
> Agreed. Except, I'd argue that the "API" could be seen as the browser
> itself - the "universal" API that everyone is familiar with and that
> offers endless possibilities. Today, browsers offer largely the same

I don't mind if there is a JS client available for download, but I feel that
the API needs to be real. On my phone, many of the "core" interactions that
occur over HTTP do not use the stock browser: Facebook (lite), G+, Hangout,
Strava, Tripit, etc.

Secondly, in a classroom situation, it might be worth having the ICMP
receiver on the child's system do something different. In particular
it can not open up the child's browser for the override code.
(Because the teacher will be subject to keystroke capture attacks by
the student)

> As for as API for login, as I previously mentioned, that already
> exists and widely deployed and used. Replacing WISPr is a GOOD idea,
> but I question whether there will be motivation to actually deploy it
> (unless we make a mistake and it is useful for additional commercial
> trickery in public access).

okay, I don't know WISPr's capabilities.

--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-