

                NNaammeesseerrvveerr SSeerrvveerr--CClliieenntt LLaanngguuaaggee
                        by Steven Dorner
                    Computing Services Office
                     University of Illinois
                             6/1/89

IInnttrroodduuccttiioonn

The language (or _p_r_o_t_o_c_o_l, if you prefer) used between the CSO
Nameserver and its clients is meant to be relatively easy to gen-
erate and to parse, so that it can be used by programs.  It is
also meant to be not too onerous for use by humans directly.

GGeenneerraall FFoorrmmaatt

The general format of the language is a request/response language
like that of FTP.  The conversation is in netascii, with a car-
riage return-linefeed pair separating the lines.  The client
makes requests, and the server responds to them.  This allows a
_t_e_l_n_e_t client to connect to the Nameserver so that users may use
the Nameserver without any intervening client, if they wish.

A request begins with a keyword, and may have zero or more key-
words or values, separated by spaces, tabs, or newlines, and fol-
lowed by a carriage return-linefeed pair.  Values containing
spaces, tabs or newlines should be enclosed in _d_o_u_b_l_e quotes
(``"'').  Any printable characters may be used in the string (ex-
cept ``"'').  In addition, the sequences ``0' and ``'' may be
used to mean newline and tab, respectively.

Like FTP, numerical values will be used to indicate the
NameServer's response to requests.  Unlike FTP, data will be
passed on the same connection as commands.  The format for
responses will be as follows:
          _n_u_m_b_e_r:_r_e_s_p_o_n_s_e
Multiline responses should preface the number with a minus sign
(``-'') on all lines of the response but the last.

Notice that since more than one specific piece of information may
be manipulated by a particular command, it is possible for parts
of a command to succeed, while other parts of the same command
fail.  This will be handled as a single continued response, with
the result code changing as appropriate.  Also, if a particular
field in the request is objectionable, that field should be iden-
tified after the colon following the result code.  The field name
should be separated by a colon from the text of the error mes-
sage.  The text of the message is primarily for human consump-
tion, and may vary from the examples given here.

As for FTP, numerical responses will be in the range 100-599,
where the leading digit has the following significance:
     1: In progress


     2: Success
     3: More information needed
     4: Temporary failure
     5: Permanent failure
Specific numbers have meanings to some commands; all commands
obey the general scheme.

In practice, almost every command will generate more than one
line of response; every client should be prepared to deal with
such continued responses.  It is worthwhile to note that no com-
mand is finished unless the result code (treated as a signed in-
teger) is greater than or equal to 200.

TThhee CCoommmmaannddss

qquueerryy [[ffiieelldd==]]vvaalluuee...... [[rreettuurrnn ffiieelldd......]]
     This is the basic client request.  It does not require (in
     the common case) any identification from the client.  En-
     tries whose fields match the given values will be found, and
     the requested fields printed.  If no query fields are speci-
     fied, the name field is assumed.  If no return fields are
     specified, default fields will be returned.  Fields from
     each entry will be prefaced with a sequence number, a colon,
     the field name, and another colon.

     Note that to view some sensitive fields, it is necessary to
     login to the Nameserver.  Values containing newlines will be
     broken into lines and printed one line per response.

     Examples:
          qquueerryy nnaammee==ddoorrnneerr pphhoonnee==33--33333399 rreettuurrnn aalliiaass
          200:1:alias:sdorner

          qquueerryy aalliiaass==ssddoorrnneerr
          -200:1:name:Steven Dorner
          -200:1:alias:sdorner
          -200:1:phone:333-3339
          200:1:address:189 DCL
          200:1:address:1304 W. Springfield

          qquueerryy ddoorrnneerr rreettuurrnn aalliiaass ""hhoommee pphhoonnee""
          200-:1:alias:adorner
          -508:1:home phone:This field is not present.
          -200:2:alias:anotherdorner
          -200:2:home phone:555-1212
          -200:3:alias:sdorner
          508:3:home phone:This field is not present.

          qquueerryy aalliiaass==ssddoorrnneerr rreettuurrnn uunniivviidd
          503:univid:You are not authorized for this information.

          qquueerryy nnaammee==ddoorrnneerr ""vvmmss lloovvee""==hhiigghh rreettuurrnn aalliiaass


          501:No matches.

cchhaannggee [[ffiieelldd==]]vvaalluuee...... mmaakkee ffiieelldd==vvaalluuee......
     Change looks much like query.  The entries to be changed are
     specified as in query.  They keyword make separates the
     search criteria from the fields to be changed.  The user
     must be logged in for change to work, and must have the au-
     thority to change the fields in the entries selected by the
     query portion.  If it is desired delete a field, Adjacent
     double quotes (``""'') should be used.   Fields marked _e_n_-
     _c_r_y_p_t_e_d must be encrypted before transmission to the
     Nameserver.  This encryption should be done with the pass-
     word of the logged in user.

     Examples:
          cchhaannggee aalliiaass==ssddoorrnneerr mmaakkee aalliiaass==ddrrddeeaatthh eemmaaiill==uuxxqq
          200:Ok

          cchhaannggee aalliiaass==ssddoorrnneerr mmaakkee aalliiaass==ddrrddeeaatthh
          506:change: must be logged in.

          cchhaannggee sstteevveenn ddoorrnneerr mmaakkee hhoouurrss==""""
          200:Ok

          cchhaannggee nnaammee==iikkeennbbeerrrryy pphhoonnee==333333--33333399
          510:ikenberry:You may not change this entry.

llooggiinn aalliiaass
aannsswweerr ccooddee
     This is used to identify the user of a particular connec-
     tion.  The NameServer will respond with a random challenge,
     which must be returned in encrypted form.  The encryption
     key will be a password known to both the NameServer and the
     user (or user's trusted host).  Note that this scheme pre-
     cludes the use of login through a direct telnet connection
     (unless the user is very good at encrypting text).

     Examples:
          llooggiinn ss__ddoorrnneerr
          301:dkeiigjasdvvnmnmeigh
          aannsswweerr eewwiittuueeggnnddvvbbnnggkkggddffkkggll
          200:Hello s_dorner!

          llooggiinn ss__ddoorrnneerr
          301:eiituerwbfncvkfdk;efdgi;
          aannsswweerr eewwiittuueeggnnddvvbbnnggkkggddffkkggll
          500:Die, hacker scum!

llooggoouutt
      Any user identity established with a previous login will be
     forgotten.  The connection is not closed, however.


     Examples:
          llooggoouutt
          200:Ok

ffiieellddss [[ffiieelldd......]]
     With no arguments, echoes the contents of the NameServer's
     fields.config file.  Otherwise, descriptions of the named
     fields are given.

     Examples:
          ffiieellddss
          200:<too verbose to print here>

aadddd ffiieelldd==vvaalluuee......
     Creates a nameserver entry with the given fields.  Only cer-
     tain users will be allowed to execute this command

     Examples:
          aadddd nnaammee==""ddoorrnneerr sstteevveenn cc"" aalliiaass==ssddoorrnneerr
          200:Ok.

          aadddd aalliiaass==ssddoorrnneerr
          509:"sdorner":Alias already in use.

          aadddd aalliiaass==ccddoorrnneerr
          511:You are not authorized to add entries.

ddeelleettee [[ffiieelldd==]]vvaalluuee......
     Deletes one or more nameserver entries.  Most people may not
     delete (even their own) entries.

     Examples:
          ddeelleettee aalliiaass==ssddoorrnneerr
          200:Ok.

          ddeelleettee aalliiaass==ssddoorrnneerr
          513:sdorner:You may not delete this.

sseett ooppttiioonn[[==vvaalluuee]]......
     Sets an option for this nameserver session.

     Examples:
          sseett tteerrssee==ooffff
          200:Ok.

          sseett mmaaxx==22000000
          512:max:Value out of bounds.

qquuiitt
     Ends a nameserver session.

     Examples:


          qquuiitt
          200:Bye!


                   Appendix A-Command Summary

qquueerryy [[ffiieelldd==]]vvaalluuee...... [[rreettuurrnn ffiieelldd......]]
cchhaannggee [[ffiieelldd==]]vvaalluuee...... mmaakkee ffiieelldd==vvaalluuee......
llooggiinn aalliiaass
aannsswweerr ccooddee
llooggoouutt
ffiieellddss [[ffiieelldd......]]
aadddd ffiieelldd==vvaalluuee......
ddeelleettee [[ffiieelldd==]]vvaalluuee......
sseett ooppttiioonn[[==vvaalluuee]]......
qquuiitt


                     Appendix B-Result Codes


           100 In progress (general).
           101 Echo of current command.

           200 Success (general).
           201 Database ready, but read only.

           300 More information (general).
           301 Encrypt this string.

           400 Temporary error (general).

           500 Permanent error (general).
           501 No matches to query.
           502 Too many matches to query.
           503 Not authorized for requested information.
           504 Not authorized for requested search criteria.
           505 Not authorized to change requested field.
           506 Request refused; must be encrypted.
           507 Field does not exist.
           508 Field is not present in requested entry.
           509 Alias already in use.
           510 Not authorized to change this entry.
           511 Not authorized to add entries.
           512 Illegal value.
           513 Unknown option.
           514 Unknown command.
           515 No indexed field in query.
           516 No authorization for request.
           517 Operation failed because database is read only.
           518 Too many entries selected by change command.
           599 Syntax error.