Difference between revisions of "RFC6694"
imported>Admin (Created page with " Internet Engineering Task Force (IETF) S. Moonesamy, Ed.Request for Comments: 6694 August 2012Category: InformationalIS...") |
|||
| Line 1: | Line 1: | ||
| + | Internet Engineering Task Force (IETF) S. Moonesamy, Ed. | ||
| + | Request for Comments: 6694 August 2012 | ||
| + | Category: Informational | ||
| + | ISSN: 2070-1721 | ||
| + | The "about" URI Scheme | ||
| − | + | '''Abstract''' | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | Abstract | ||
This document describes the "about" URI scheme, which is widely used | This document describes the "about" URI scheme, which is widely used | ||
| Line 15: | Line 13: | ||
hidden built-in functionality, and so on. | hidden built-in functionality, and so on. | ||
| − | Status of This Memo | + | '''Status of This Memo''' |
This document is not an Internet Standards Track specification; it is | This document is not an Internet Standards Track specification; it is | ||
| Line 31: | Line 29: | ||
http://www.rfc-editor.org/info/rfc6694. | http://www.rfc-editor.org/info/rfc6694. | ||
| − | Copyright Notice | + | '''Copyright Notice''' |
Copyright (c) 2012 IETF Trust and the persons identified as the | Copyright (c) 2012 IETF Trust and the persons identified as the | ||
| Line 45: | Line 43: | ||
the Trust Legal Provisions and are provided without warranty as | the Trust Legal Provisions and are provided without warranty as | ||
described in the Simplified BSD License. | described in the Simplified BSD License. | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
== Introduction == | == Introduction == | ||
| Line 66: | Line 57: | ||
The "about" URI syntactically conforms to the <about-uri> rule below, | The "about" URI syntactically conforms to the <about-uri> rule below, | ||
| − | expressed using the Augmented Backus-Naur Form (ABNF) [RFC5234]: | + | expressed using the Augmented Backus-Naur Form (ABNF) [[RFC5234]]: |
about-uri = "about:" about-token [ about-query ] [ about-fragment ] | about-uri = "about:" about-token [ about-query ] [ about-fragment ] | ||
| Line 75: | Line 66: | ||
query = <as specified in [[RFC3986|RFC 3986]], Appendix A> | query = <as specified in [[RFC3986|RFC 3986]], Appendix A> | ||
fragment = <as specified in [[RFC3986|RFC 3986]], Appendix A> | fragment = <as specified in [[RFC3986|RFC 3986]], Appendix A> | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
=== URI Scheme Semantics === | === URI Scheme Semantics === | ||
| Line 117: | Line 97: | ||
"about" URIs are subject to encoding rules as defined in [[RFC3986|RFC 3986]] | "about" URIs are subject to encoding rules as defined in [[RFC3986|RFC 3986]] | ||
| − | [RFC3986]. | + | [[RFC3986]]. |
== "about:blank" == | == "about:blank" == | ||
| Line 128: | Line 108: | ||
Security considerations for URIs are discussed in Section 7 of | Security considerations for URIs are discussed in Section 7 of | ||
| − | [[RFC3986|RFC 3986]] [RFC3986]. However, most of those provisions do not apply | + | [[RFC3986|RFC 3986]] [[RFC3986]]. However, most of those provisions do not apply |
to the "about" URI scheme, as they are mainly scoped to schemes used | to the "about" URI scheme, as they are mainly scoped to schemes used | ||
in the Internet. | in the Internet. | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
"about" URIs can sometimes refer to sensitive information, such as | "about" URIs can sometimes refer to sensitive information, such as | ||
| Line 152: | Line 124: | ||
The "about" URI scheme has been registered in the "Permanent URI | The "about" URI scheme has been registered in the "Permanent URI | ||
Schemes" registry. The information below is provided according to | Schemes" registry. The information below is provided according to | ||
| − | the guidelines from [[RFC4395|RFC 4395]] [RFC4395]: | + | the guidelines from [[RFC4395|RFC 4395]] [[RFC4395]]: |
URI scheme name: about | URI scheme name: about | ||
| Line 176: | Line 148: | ||
References: See Section 6 of [[RFC6694|RFC 6694]]. | References: See Section 6 of [[RFC6694|RFC 6694]]. | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
=== A Registry for Well-Known Tokens === | === A Registry for Well-Known Tokens === | ||
| Line 212: | Line 168: | ||
The registration policy for this registry is "First Come First | The registration policy for this registry is "First Come First | ||
| − | Served", as described in [[RFC5226|RFC 5226]] [RFC5226]. The registrant of the | + | Served", as described in [[RFC5226|RFC 5226]] [[RFC5226]]. The registrant of the |
token should provide the information mentioned in the following | token should provide the information mentioned in the following | ||
registration template: | registration template: | ||
| Line 235: | Line 191: | ||
registered token is used in more than one Web browser | registered token is used in more than one Web browser | ||
implementation. | implementation. | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
The following is a template for the "blank" token: | The following is a template for the "blank" token: | ||
| Line 261: | Line 207: | ||
=== Normative References === | === Normative References === | ||
| − | [RFC3986] Berners-Lee, T., Fielding, R., and L. Masinter, "Uniform | + | [[RFC3986]] Berners-Lee, T., Fielding, R., and L. Masinter, "Uniform |
| − | + | Resource Identifier (URI): Generic Syntax", [[STD66|STD 66]], | |
| − | + | [[RFC3986|RFC 3986]], January 2005. | |
| − | |||
| − | [ | + | [[RFC5226]] Narten, T. and H. Alvestrand, "Guidelines for Writing an |
| + | IANA Considerations Section in RFCs", [[BCP26|BCP 26]], [[RFC5226|RFC 5226]], | ||
| + | May 2008. | ||
| + | [[RFC5234]] Crocker, D., Ed., and P. Overell, "Augmented BNF for | ||
| + | Syntax Specifications: ABNF", [[STD68|STD 68]], [[RFC5234|RFC 5234]], | ||
| + | January 2008. | ||
| + | === Informative References === | ||
| + | [[RFC4395]] Hansen, T., Hardie, T., and L. Masinter, "Guidelines and | ||
| + | Registration Procedures for New URI Schemes", [[BCP35|BCP 35]], | ||
| + | [[RFC4395|RFC 4395]], February 2006. | ||
| + | Appendix A. Acknowledgments | ||
| + | This document was formed from a previous draft document initially | ||
| + | authored by Lachlan Hunt and Joseph Holsten. Additionally, the | ||
| + | contributions of Frank Ellermann and Alexey Melnikov are gratefully | ||
| + | acknowledged. Barry Leiba and Murray Kucherawy deserve special | ||
| + | credit for providing a great amount of text that was used in this | ||
| + | document. | ||
| + | Lachlan Hunt and Mykyta Yevstifeyev edited previous versions of this | ||
| + | document. Tim Bray and John Klensin provided suggestions about how | ||
| + | to improve the document. | ||
| + | Author's Address | ||
| + | S. Moonesamy (editor) | ||
| + | 76 Ylang Ylang Avenue | ||
| + | Quatre Bornes | ||
| + | Mauritius | ||
| + | EMail: [email protected] | ||
| − | + | [[Category:Informational]] | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
Latest revision as of 16:52, 1 October 2020
Internet Engineering Task Force (IETF) S. Moonesamy, Ed. Request for Comments: 6694 August 2012 Category: Informational ISSN: 2070-1721
The "about" URI Scheme
Abstract
This document describes the "about" URI scheme, which is widely used by Web browsers and some other applications to designate access to their internal resources, such as settings, application information, hidden built-in functionality, and so on.
Status of This Memo
This document is not an Internet Standards Track specification; it is published for informational purposes.
This document is a product of the Internet Engineering Task Force (IETF). It represents the consensus of the IETF community. It has received public review and has been approved for publication by the Internet Engineering Steering Group (IESG). Not all documents approved by the IESG are a candidate for any level of Internet Standard; see Section 2 of RFC 5741.
Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at http://www.rfc-editor.org/info/rfc6694.
Copyright Notice
Copyright (c) 2012 IETF Trust and the persons identified as the document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License.
Contents
Introduction
This document describes the "about" Uniform Resource Identifier (URI) scheme. The "about" URI scheme is currently widely used by Web browsers to designate access to their internal resources, such as settings, application information, and so-called "Easter eggs" (i.e., a hidden feature or joke in an application).
URI Scheme Specification
URI Scheme Syntax
The "about" URI syntactically conforms to the <about-uri> rule below, expressed using the Augmented Backus-Naur Form (ABNF) RFC5234:
about-uri = "about:" about-token [ about-query ] [ about-fragment ] about-token = *pchar about-query = "?" query about-fragment = "#" fragment pchar = <as specified in RFC 3986, Appendix A> query = <as specified in RFC 3986, Appendix A> fragment = <as specified in RFC 3986, Appendix A>
URI Scheme Semantics
The resource that is referenced by a particular "about" URI is denoted by the <about-token> part of the URI. It is not a hierarchical element for a naming authority. The <about-query> part specifies additional information about its handling and/or the information that should be returned by the resource referenced by the URI.
It is impossible to specify a binding between all the possible tokens and the semantics of "about" URIs that would contain such tokens. Therefore, the resource referenced by the URI is generally considered to be specific to a Web browser implementation.
Well-Known "about" URIs
Some <about-token>s have been reserved, as the behavior of the resource that is referenced is well-known (well-known tokens).
A well-known "about" URI is a URI that has a well-known token as its <about-token> part. It is recommended that such URIs be handled in accordance with the specification referenced in the "about" URI Tokens registry (see Section 5.2).
Well-known "about" URIs are intended to be registered when there is a need to codify the behavior of a particular <about-token>.
Encoding Considerations
"about" URIs are subject to encoding rules as defined in RFC 3986 RFC3986.
"about:blank"
This document defines one well-known token: "blank". The "about:blank" URI refers to a resource represented in the browser by a blank page.
Security Considerations
Security considerations for URIs are discussed in Section 7 of RFC 3986 RFC3986. However, most of those provisions do not apply to the "about" URI scheme, as they are mainly scoped to schemes used in the Internet.
"about" URIs can sometimes refer to sensitive information, such as user passwords stored in a cache, or parameters that, if changed, could affect a user's data. The application therefore needs to ensure that the user's data is secured and no threats are imposed by "about" URIs.
IANA Considerations
URI Scheme Registration
The "about" URI scheme has been registered in the "Permanent URI Schemes" registry. The information below is provided according to the guidelines from RFC 4395 RFC4395:
URI scheme name: about
Status: Permanent
URI scheme syntax: See Section 2.1 of RFC 6694.
URI scheme semantics: See Section 2.2 of RFC 6694.
URI scheme encoding considerations: See Section 2.3 of RFC 6694.
Applications that use the scheme: "about" URIs are predominantly
used by Web browsers.
Security considerations: See Section 4 of RFC 6694.
Contact: IETF Applications Area Directors
<[email protected]>
Author/Change controller: IESG <[email protected]> (on behalf of the IETF)
References: See Section 6 of RFC 6694.
A Registry for Well-Known Tokens
This document creates the '"about" URI Tokens' registry.
The registry entries consist of three fields: Token, Description, and Reference. The Token field has to conform to <about-token> production as defined in Section 2.1. The initial assignment is as follows:
+--------------+------------------------------------+-------------+ | Token | Description | Reference | +--------------+------------------------------------+-------------+ | blank | The about:blank URI references a | RFC 6694 | | | blank page. | | +--------------+------------------------------------+-------------+
Registration Procedure
The registration policy for this registry is "First Come First Served", as described in RFC 5226 RFC5226. The registrant of the token should provide the information mentioned in the following registration template:
o Registered token: The desired well-known token to be used in
"about" URIs.
o Intended usage: A short description of how "about" URIs with the
registered token are handled, including information about the referenced resource.
o Contact/change controller: Person (including contact information)
authorized to change this registration.
o Specification: A stable reference to a document that specifies
the registered "about" URI. The question of interoperability does not arise. The key motivation is to have a reference to a specification documenting well-known behavior of the "about" URI in Web browsers. As a rule of thumb, if the behavior is common to two or more Web browser implementations, it can be considered well-known. An existing assignment may be duplicated if the registered token is used in more than one Web browser implementation.
The following is a template for the "blank" token:
o Registered token: blank
o Intended usage: The about:blank URI references a blank page.
o Contact/change controller: IESG <[email protected]> (on behalf of the
IETF).
o Specification: RFC 6694
References
Normative References
RFC3986 Berners-Lee, T., Fielding, R., and L. Masinter, "Uniform
Resource Identifier (URI): Generic Syntax", STD 66, RFC 3986, January 2005.
RFC5226 Narten, T. and H. Alvestrand, "Guidelines for Writing an
IANA Considerations Section in RFCs", BCP 26, RFC 5226, May 2008.
RFC5234 Crocker, D., Ed., and P. Overell, "Augmented BNF for
Syntax Specifications: ABNF", STD 68, RFC 5234, January 2008.
Informative References
RFC4395 Hansen, T., Hardie, T., and L. Masinter, "Guidelines and
Registration Procedures for New URI Schemes", BCP 35, RFC 4395, February 2006.
Appendix A. Acknowledgments
This document was formed from a previous draft document initially authored by Lachlan Hunt and Joseph Holsten. Additionally, the contributions of Frank Ellermann and Alexey Melnikov are gratefully acknowledged. Barry Leiba and Murray Kucherawy deserve special credit for providing a great amount of text that was used in this document.
Lachlan Hunt and Mykyta Yevstifeyev edited previous versions of this document. Tim Bray and John Klensin provided suggestions about how to improve the document.
Author's Address
S. Moonesamy (editor) 76 Ylang Ylang Avenue Quatre Bornes Mauritius
EMail: [email protected]
