-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Resolving http and https namespaces #193
Comments
@csarven, this issue is still in flux, as well as the situation around the HSTS introduction. At present, the official URI for the namespace documents are the HTTP. This is particularly true for older namespace documents that belong to existing recommendations, but also for new ones. Also: this is not an issue for this working group, but a general policy issue on namespaces. |
As it's not something we can solve nor any action we can take, can we just close the issue? |
+1 Ivan
|
I'm fine to close this issue, but can we ballpark agree that the Closing issue. Please leave comment if any new information. |
👍 |
This not (ie, the WG's) call in my view, it is a matter of general W3C policy as for what the official URI is for namespaces and json-ld context documents or, for that matter, official Recommendations. It is clear that we cannot change this for older namespaces like the one if RDF, for example; the answer is not that clear cut imho. |
I actually believe the policy should be that namespace URIs are unchanged and unchanging over time. The fact that a URI is redirected or otherwise altered during dereferencing is not a problem per se. "namespaces", or "vocabulary spaces" as we sometimes call them, are defined by their lexical representation for analysis purposes. Or at least they are in all the software I have examined personally. |
We could introduce the policy that newer vocabularies, like OA, would be HTTPS, though. But I am not sure I like the duality: some are HTTP and others are HTTPS. As I said, the same applies to the official identifiers of Recommendations.
|
FYI, there was similar discussion when choosing the canonical URL for schema.org terms, and the http version has been preferred over the https one for legacy reason. |
@iherman I actually think having both would just introduce authoring errors. Not our call, of course, but in other groups where this is discussed I would push for ensuring that it is always http: |
JSON-LD contexts should be accessed by https, so that they can be used within Javascript on secure pages. (They should also have the CORS header). The historical namespace is http://www.w3.org/ns/oa# which we don't want to change -- this happens to also be described at https://www.w3.org/ns/oa -- while this redirection is quite confusing (more so than redirection to a URI that doesn't look like the NS - like http://purl.org/dc/terms/) -- perhaps we can try to highlight |
Let's split out JSON-LD files (contexts, frames) to a separate issue? I think there's a different set of concerns for those (along with CORS and mixed content for browsers), and I agree that accessibility via https is useful in some situations, and we have control over those URIs separately from the namespace. |
Suggested Namespace section from pull request #198: http://stain.github.io/web-annotation/vocab/wd/#namespaces Quote:
|
@stain That's great! That is what I was hoping this issue to move towards / resolve with. |
@csarven sorry I didn't make it for the https://www.w3.org/TR/annotation-vocab/ deadline. I added something similar to the update for the http://www.w3.org/ns/oa.html Namespace Document in #188: |
curl -H"Accept: text/turtle" https://www.w3.org/ns/oa
returnshttp
URIs. Is that intended or previously discussed/logged somewhere? Is anyone (eg @iherman @shepazu ) keeping an eye on this?My expectation is that the
https
ns should returnhttps
, and redirectinghttp
tohttps
would be great, but... see also: https://www.w3.org/blog/2016/01/w3-org-supporting-https-and-hsts/Lastly, it might be worthwhile to state somewhere which ns people should use.
Related issue: #66
The text was updated successfully, but these errors were encountered: