idnits 2.17.1 

draft-hollenbeck-epp-rfc3731bis-05.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** It looks like you're using RFC 3978 boilerplate.  You should update this
     to the boilerplate described in the IETF Trust License Policy document
     (see https://trustee.ietf.org/license-info), which is required now.

  -- Found old boilerplate from RFC 3978, Section 5.1 on line 16.

  -- Found old boilerplate from RFC 3978, Section 5.5, updated by RFC 4748 on
     line 2028.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 1 on line 2039.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 2 on line 2046.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 3 on line 2052.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  == There are 3 instances of lines with non-RFC2606-compliant FQDNs in the
     document.


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the IETF Trust Copyright Line does not match the
     current year

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (November 17, 2006) is 6370 days in the past.  Is this
     intentional?


  Checking references for intended status: Proposed Standard
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  == Outdated reference: A later version (-06) exists of
     draft-hollenbeck-epp-rfc3733bis-05

  ** Downref: Normative reference to an Unknown state RFC: RFC  952

  -- Obsolete informational reference (is this intentional?): RFC 3490
     (Obsoleted by RFC 5890, RFC 5891)

  -- Obsolete informational reference (is this intentional?): RFC 3731
     (Obsoleted by RFC 4931)


     Summary: 2 errors (**), 0 flaws (~~), 3 warnings (==), 9 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------


2	Network Working Group                                      S. Hollenbeck
3	Internet-Draft                                            VeriSign, Inc.
4	Obsoletes: 3731 (if approved)                          November 17, 2006
5	Intended status: Standards Track
6	Expires: May 21, 2007

8	       Extensible Provisioning Protocol (EPP) Domain Name Mapping
9	                 draft-hollenbeck-epp-rfc3731bis-05.txt

11	Status of this Memo

13	   By submitting this Internet-Draft, each author represents that any
14	   applicable patent or other IPR claims of which he or she is aware
15	   have been or will be disclosed, and any of which he or she becomes
16	   aware will be disclosed, in accordance with Section 6 of BCP 79.

18	   Internet-Drafts are working documents of the Internet Engineering
19	   Task Force (IETF), its areas, and its working groups.  Note that
20	   other groups may also distribute working documents as Internet-
21	   Drafts.

23	   Internet-Drafts are draft documents valid for a maximum of six months
24	   and may be updated, replaced, or obsoleted by other documents at any
25	   time.  It is inappropriate to use Internet-Drafts as reference
26	   material or to cite them other than as "work in progress."

28	   The list of current Internet-Drafts can be accessed at
29	   http://www.ietf.org/ietf/1id-abstracts.txt.

31	   The list of Internet-Draft Shadow Directories can be accessed at
32	   http://www.ietf.org/shadow.html.

34	   This Internet-Draft will expire on May 21, 2007.

36	Copyright Notice

38	   Copyright (C) The IETF Trust (2006).

40	Abstract

42	   This document describes an Extensible Provisioning Protocol (EPP)
43	   mapping for the provisioning and management of Internet domain names
44	   stored in a shared central repository.  Specified in XML, the mapping
45	   defines EPP command syntax and semantics as applied to domain names.
46	   This document obsoletes RFC 3731 if approved.

48	Table of Contents

50	   1.  Introduction . . . . . . . . . . . . . . . . . . . . . . . . .  3
51	     1.1.  Relationship of Domain Objects and Host Objects  . . . . .  3
52	     1.2.  Conventions Used In This Document  . . . . . . . . . . . .  5
53	   2.  Object Attributes  . . . . . . . . . . . . . . . . . . . . . .  5
54	     2.1.  Domain and Host Names  . . . . . . . . . . . . . . . . . .  5
55	     2.2.  Contact and Client Identifiers . . . . . . . . . . . . . .  6
56	     2.3.  Status Values  . . . . . . . . . . . . . . . . . . . . . .  6
57	     2.4.  Dates and Times  . . . . . . . . . . . . . . . . . . . . .  8
58	     2.5.  Validity Periods . . . . . . . . . . . . . . . . . . . . .  8
59	     2.6.  Authorization Information  . . . . . . . . . . . . . . . .  8
60	     2.7.  Other DNS Resource Record Attributes . . . . . . . . . . .  8
61	   3.  EPP Command Mapping  . . . . . . . . . . . . . . . . . . . . .  9
62	     3.1.  EPP Query Commands . . . . . . . . . . . . . . . . . . . .  9
63	       3.1.1.  EPP <check> Command  . . . . . . . . . . . . . . . . .  9
64	       3.1.2.  EPP <info> Command . . . . . . . . . . . . . . . . . . 11
65	       3.1.3.  EPP <transfer> Query Command . . . . . . . . . . . . . 16
66	     3.2.  EPP Transform Commands . . . . . . . . . . . . . . . . . . 18
67	       3.2.1.  EPP <create> Command . . . . . . . . . . . . . . . . . 19
68	       3.2.2.  EPP <delete> Command . . . . . . . . . . . . . . . . . 21
69	       3.2.3.  EPP <renew> Command  . . . . . . . . . . . . . . . . . 22
70	       3.2.4.  EPP <transfer> Command . . . . . . . . . . . . . . . . 24
71	       3.2.5.  EPP <update> Command . . . . . . . . . . . . . . . . . 26
72	     3.3.  Offline Review of Requested Actions  . . . . . . . . . . . 29
73	   4.  Formal Syntax  . . . . . . . . . . . . . . . . . . . . . . . . 31
74	   5.  Internationalization Considerations  . . . . . . . . . . . . . 41
75	   6.  IANA Considerations  . . . . . . . . . . . . . . . . . . . . . 41
76	   7.  Security Considerations  . . . . . . . . . . . . . . . . . . . 42
77	   8.  Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 42
78	   9.  References . . . . . . . . . . . . . . . . . . . . . . . . . . 42
79	     9.1.  Normative References . . . . . . . . . . . . . . . . . . . 42
80	     9.2.  Informative References . . . . . . . . . . . . . . . . . . 43
81	   Appendix A.  Changes from RFC 3731 . . . . . . . . . . . . . . . . 44
82	   Author's Address . . . . . . . . . . . . . . . . . . . . . . . . . 45
83	   Intellectual Property and Copyright Statements . . . . . . . . . . 46

85	1.  Introduction

87	   This document describes an Internet domain name mapping for version
88	   1.0 of the Extensible Provisioning Protocol (EPP).  This mapping is
89	   specified using the Extensible Markup Language (XML) 1.0 as described
90	   in [W3C.REC-xml-20040204] and XML Schema notation as described in
91	   [W3C.REC-xmlschema-1-20041028] and [W3C.REC-xmlschema-2-20041028].
92	   This document obsoletes RFC 3731 [RFC3731] if approved.

94	   [I-D.hollenbeck-epp-rfc3730bis] provides a complete description of
95	   EPP command and response structures.  A thorough understanding of the
96	   base protocol specification is necessary to understand the mapping
97	   described in this document.

99	   XML is case sensitive.  Unless stated otherwise, XML specifications
100	   and examples provided in this document MUST be interpreted in the
101	   character case presented to develop a conforming implementation.

103	1.1.  Relationship of Domain Objects and Host Objects

105	   The EPP mapping for host objects is described in
106	   [I-D.hollenbeck-epp-rfc3732bis].  This document assumes that domain
107	   name objects have a superordinate relationship to subordinate host
108	   name objects.  For example, domain name "example.com" has a
109	   superordinate relationship to host name "ns1.example.com".  EPP
110	   actions (such as object transfers) that do not preserve this
111	   relationship MUST be explicitly disallowed.

113	   A host name object can be created in a repository for which no
114	   superordinate domain name object exists.  For example, host name
115	   "ns1.example.com" can be created in the ".example" repository so that
116	   DNS domains in ".example" can be delegated to the host.  Such hosts
117	   are described as "external" hosts in this specification since the
118	   name of the host does not belong to the name space of the repository
119	   in which the host is being used for delegation purposes.

121	   Whether a host is external or internal relates to the repository in
122	   which the host is being used for delegation purposes.  Whether an
123	   internal host is subordinate or not relates to a domain within the
124	   repository.  For example, host ns1.example1.com is a subordinate host
125	   of domain example1.com, but it is a not a subordinate host of domain
126	   example2.com. ns1.example1.com can be used as a name server for
127	   example2.com.  In this case, ns1.example1.com MUST be treated as an
128	   internal host, subject to the rules governing operations on
129	   subordinate hosts within the same repository.

131	   Name server hosts for domain delegation can be specified as either
132	   references to existing host objects or as domain attributes that
133	   describe a host machine.  A server operator MUST use one name server
134	   specification form consistently.  A server operator that announces
135	   support for host objects in an EPP greeting MUST NOT allow domain
136	   attributes to describe a name server host machine.  A server operator
137	   that does not announce support for host objects MUST allow domain
138	   attributes to describe a name server host machine.  When domain
139	   attributes are used to describe a name server host machine, IP
140	   addresses SHOULD be required only as needed to generate DNS glue
141	   records.

143	   Name servers are specified within a <domain:ns> element.  This
144	   element MUST contain one or more <domain:hostObj> elements or one or
145	   more <domain:hostAttr> elements.  A <domain:hostObj> element contains
146	   the fully qualified name of a known name server host object.  A
147	   <domain:hostAttr> element contains the following child elements:

149	   -  A <domain:hostName> element that contains the fully qualified name
150	      of a host.

152	   -  Zero or more OPTIONAL <domain:hostAddr> elements that contain the
153	      IP addresses to be associated with the host.  Each element MAY
154	      contain an "ip" attribute to identify the IP address format.
155	      Attribute value "v4" is used to note IPv4 address format.
156	      Attribute value "v6" is used to note IPv6 address format.  If the
157	      "ip" attribute is not specified, "v4" is the default attribute
158	      value.  IP address syntax requirements are described in Section
159	      2.5 of the EPP host mapping [I-D.hollenbeck-epp-rfc3732bis].

161	   Example host object name server elements for domain example.com:

163	   <domain:ns>
164	     <domain:hostObj>ns1.example.com</domain:hostObj>
165	     <domain:hostObj>ns1.example.net</domain:hostObj>
166	   </domain:ns>
167	   Example host attribute name server elements for domain example.com:

169	   <domain:ns>
170	     <domain:hostAttr>
171	       <domain:hostName>ns1.example.com</domain:hostName>
172	       <domain:hostAddr
173	        ip="v4">192.0.2.2</domain:hostAddr>
174	       <domain:hostAddr
175	        ip="v6">1080:0:0:0:8:800:200C:417A</domain:hostAddr>
176	     </domain:hostAttr>
177	     <domain:hostAttr>
178	       <domain:hostName>ns1.example.net</domain:hostName>
179	     </domain:hostAttr>
180	   </domain:ns>

182	1.2.  Conventions Used In This Document

184	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
185	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
186	   document are to be interpreted as described in [RFC2119].

188	   In examples, "C:" represents lines sent by a protocol client and "S:"
189	   represents lines returned by a protocol server.  Indentation and
190	   white space in examples is provided only to illustrate element
191	   relationships and is not a REQUIRED feature of this protocol.

193	2.  Object Attributes

195	   An EPP domain object has attributes and associated values that can be
196	   viewed and modified by the sponsoring client or the server.  This
197	   section describes each attribute type in detail.  The formal syntax
198	   for the attribute values described here can be found in the "Formal
199	   Syntax" section of this document and in the appropriate normative
200	   references.

202	2.1.  Domain and Host Names

204	   The syntax for domain and host names described in this document MUST
205	   conform to [RFC0952] as updated by [RFC1123].  At the time of this
206	   writing, RFC 3490 [RFC3490] describes a standard to use certain ASCII
207	   name labels to represent non-ASCII name labels.  These conformance
208	   requirements might change as a result of progressing work in
209	   developing standards for internationalized domain names.  A server
210	   MAY restrict allowable domain names to a particular top level domain,
211	   second level domain, or other domain for which the server is
212	   authoritative.  The trailing dot required when these names are stored
213	   in a DNS zone is implicit and MUST NOT be provided when exchanging
214	   host and domain names.

216	2.2.  Contact and Client Identifiers

218	   All EPP contacts are identified by a server-unique identifier.
219	   Contact identifiers are character strings with a specified minimum
220	   length, a specified maximum length, and a specified format.  Contact
221	   identifiers use the "clIDType" client identifier syntax described in
222	   [I-D.hollenbeck-epp-rfc3730bis].

224	2.3.  Status Values

226	   A domain object MUST always have at least one associated status
227	   value.  Status values can be set only by the client that sponsors a
228	   domain object and by the server on which the object resides.  A
229	   client can change the status of a domain object using the EPP
230	   <update> command.  Each status value MAY be accompanied by a string
231	   of human-readable text that describes the rationale for the status
232	   applied to the object.

234	   A client MUST NOT alter status values set by the server.  A server
235	   MAY alter or override status values set by a client subject to local
236	   server policies.  The status of an object MAY change as a result of
237	   either a client-initiated transform command or an action performed by
238	   a server operator.

240	   Status values that can be added or removed by a client are prefixed
241	   with "client".  Corresponding status values that can be added or
242	   removed by a server are prefixed with "server".  Status values that
243	   do not begin with either "client" or "server" are server-managed.

245	   Status Value Descriptions:

247	   -  clientDeleteProhibited, serverDeleteProhibited

249	      Requests to delete the object MUST be rejected.

251	   -  clientHold, serverHold

253	      DNS delegation information MUST NOT be published for the object.

255	   -  clientRenewProhibited, serverRenewProhibited

257	      Requests to renew the object MUST be rejected.

259	   -  clientTransferProhibited, serverTransferProhibited

261	      Requests to transfer the object MUST be rejected.

263	   -  clientUpdateProhibited, serverUpdateProhibited

265	      Requests to update the object (other than to remove this status)
266	      MUST be rejected.

268	   -  inactive

270	      Delegation information has not been associated with the object.

272	   -  ok

274	      This is the normal status value for an object that has no pending
275	      operations or prohibitions.  This value is set and removed by the
276	      server as other status values are added or removed.

278	   -  pendingCreate, pendingDelete, pendingRenew, pendingTransfer,
279	      pendingUpdate

281	      A transform command has been processed for the object, but the
282	      action has not been completed by the server.  Server operators can
283	      delay action completion for a variety of reasons, such as to allow
284	      for human review or third-party action.  A transform command that
285	      is processed, but whose requested action is pending, is noted with
286	      response code 1001.

288	   When the requested action has been completed, the pendingCreate,
289	   pendingDelete, pendingRenew, pendingTransfer, or pendingUpdate status
290	   value MUST be removed.  All clients involved in the transaction MUST
291	   be notified using a service message that the action has been
292	   completed and that the status of the object has changed.

294	   "ok" status MUST NOT be combined with any other status.

296	   "pendingDelete" status MUST NOT be combined with either
297	   "clientDeleteProhibited" or "serverDeleteProhibited" status.

299	   "pendingRenew" status MUST NOT be combined with either
300	   "clientRenewProhibited" or "serverRenewProhibited" status.

302	   "pendingTransfer" status MUST NOT be combined with either
303	   "clientTransferProhibited" or "serverTransferProhibited" status.

305	   "pendingUpdate" status MUST NOT be combined with either
306	   "clientUpdateProhibited" or "serverUpdateProhibited" status.

308	   The pendingCreate, pendingDelete, pendingRenew, pendingTransfer, and
309	   pendingUpdate status values MUST NOT be combined with each other.

311	   Other status combinations not expressly prohibited MAY be used.

313	2.4.  Dates and Times

315	   Date and time attribute values MUST be represented in Universal
316	   Coordinated Time (UTC) using the Gregorian calendar.  The extended
317	   date-time form using upper case "T" and "Z" characters defined in
318	   [W3C.REC-xmlschema-2-20041028] MUST be used to represent date-time
319	   values as XML Schema does not support truncated date-time forms or
320	   lower case "T" and "Z" characters.

322	2.5.  Validity Periods

324	   A domain name object MAY have a specified validity period.  If server
325	   policy supports domain object validity periods, the validity period
326	   is defined when a domain object is created, and it MAY be extended by
327	   the EPP <renew> or <transfer> commands.  As a matter of server
328	   policy, this specification does not define actions to be taken upon
329	   expiration of a domain object's validity period.

331	   Validity periods are measured in years or months with the appropriate
332	   units specified using the "unit" attribute.  Valid values for the
333	   "unit" attribute are "y" for years and "m" for months.  The minimum
334	   allowable period value is one decimal (1).  The maximum allowable
335	   value is ninety-nine decimal (99).  A server MAY support a lower
336	   maximum value.

338	2.6.  Authorization Information

340	   Authorization information is associated with domain objects to
341	   facilitate transfer operations.  Authorization information is
342	   assigned when a domain object is created, and it might be updated in
343	   the future.  This specification describes password-based
344	   authorization information, though other mechanisms are possible.

346	2.7.  Other DNS Resource Record Attributes

348	   While the DNS allows many resource record types to be associated with
349	   a domain, this mapping only explicitly specifies elements that
350	   describe resource records used for domain delegation and resolution.
351	   Facilities to provision other domain-related resource record types
352	   can be developed by extending this mapping.

354	   The provisioning method described in this mapping separates discrete
355	   data elements by data type.  This method of data definition allows
356	   XML Schema processors to perform basic syntax validation tasks,
357	   reducing ambiguity and the amount of parsing and syntax-checking work
358	   required of protocol processors.  Provisioning and extension methods
359	   that aggregate data into opaque strings are possible, but such
360	   methods SHOULD NOT be used because they impose additional parsing,
361	   interpretation, and validation requirements on protocol processors.

363	3.  EPP Command Mapping

365	   A detailed description of the EPP syntax and semantics can be found
366	   in [I-D.hollenbeck-epp-rfc3730bis].  The command mappings described
367	   here are specifically for use in provisioning and managing Internet
368	   domain names via EPP.

370	3.1.  EPP Query Commands

372	   EPP provides three commands to retrieve domain information: <check>
373	   to determine if a domain object can be provisioned within a
374	   repository, <info> to retrieve detailed information associated with a
375	   domain object, and <transfer> to retrieve domain object transfer
376	   status information.

378	3.1.1.  EPP <check> Command

380	   The EPP <check> command is used to determine if an object can be
381	   provisioned within a repository.  It provides a hint that allows a
382	   client to anticipate the success or failure of provisioning an object
383	   using the <create> command as object provisioning requirements are
384	   ultimately a matter of server policy.

386	   In addition to the standard EPP command elements, the <check> command
387	   MUST contain a <domain:check> element that identifies the domain
388	   namespace.  The <domain:check> element contains the following child
389	   elements:

391	   -  One or more <domain:name> elements that contain the fully
392	      qualified names of the domain objects to be queried.

394	   Example <check> command:

396	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
397	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
398	   C:  <command>
399	   C:    <check>
400	   C:      <domain:check
401	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
402	   C:        <domain:name>example.com</domain:name>
403	   C:        <domain:name>example.net</domain:name>
404	   C:        <domain:name>example.org</domain:name>
405	   C:      </domain:check>
406	   C:    </check>
407	   C:    <clTRID>ABC-12345</clTRID>
408	   C:  </command>
409	   C:</epp>

411	   When a <check> command has been processed successfully, the EPP
412	   <resData> element MUST contain a child <domain:chkData> element that
413	   identifies the domain namespace.  The <domain:chkData> element
414	   contains one or more <domain:cd> elements that contain the following
415	   child elements:

417	   -  A <domain:name> element that contains the fully qualified name of
418	      the queried domain object.  This element MUST contain an "avail"
419	      attribute whose value indicates object availability (can it be
420	      provisioned or not) at the moment the <check> command was
421	      completed.  A value of "1" or "true" means that the object can be
422	      provisioned.  A value of "0" or "false" means that the object can
423	      not be provisioned.

425	   -  An OPTIONAL <domain:reason> element that MAY be provided when an
426	      object can not be provisioned.  If present, this element contains
427	      server-specific text to help explain why the object can not be
428	      provisioned.  This text MUST be represented in the response
429	      language previously negotiated with the client; an OPTIONAL "lang"
430	      attribute MAY be present to identify the language if the
431	      negotiated value is something other than the default value of "en"
432	      (English).

434	   Example <check> response:

436	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
437	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
438	   S:  <response>
439	   S:    <result code="1000">
440	   S:      <msg>Command completed successfully</msg>
441	   S:    </result>
442	   S:    <resData>
443	   S:      <domain:chkData
444	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
445	   S:        <domain:cd>
446	   S:          <domain:name avail="1">example.com</domain:name>
447	   S:        </domain:cd>
448	   S:        <domain:cd>
449	   S:          <domain:name avail="0">example.net</domain:name>
450	   S:          <domain:reason>In use</domain:reason>
451	   S:        </domain:cd>
452	   S:        <domain:cd>
453	   S:          <domain:name avail="1">example.org</domain:name>
454	   S:        </domain:cd>
455	   S:      </domain:chkData>
456	   S:    </resData>
457	   S:    <trID>
458	   S:      <clTRID>ABC-12345</clTRID>
459	   S:      <svTRID>54322-XYZ</svTRID>
460	   S:    </trID>
461	   S:  </response>
462	   S:</epp>

464	   An EPP error response MUST be returned if a <check> command can not
465	   be processed for any reason.

467	3.1.2.  EPP <info> Command

469	   The EPP <info> command is used to retrieve information associated
470	   with a domain object.  The response to this command MAY vary
471	   depending on the identity of the querying client, use of
472	   authorization information, and server policy towards unauthorized
473	   clients.  If the querying client is the sponsoring client, all
474	   available information MUST be returned.  If the querying client is
475	   not the sponsoring client, but the client provides valid
476	   authorization information, all available information MUST be
477	   returned.  If the querying client is not the sponsoring client, and
478	   the client does not provide valid authorization information, server
479	   policy determines which OPTIONAL elements are returned.

481	   In addition to the standard EPP command elements, the <info> command
482	   MUST contain a <domain:info> element that identifies the domain
483	   namespace.  The <domain:info> element contains the following child
484	   elements:

486	   -  A <domain:name> element that contains the fully qualified name of
487	      the domain object to be queried.  An OPTIONAL "hosts" attribute is
488	      available to control return of information describing hosts
489	      related to the domain object.  A value of "all" (the default,
490	      which MAY be absent) returns information describing both
491	      subordinate and delegated hosts.  A value of "del" returns
492	      information describing only delegated hosts.  A value of "sub"
493	      returns information describing only subordinate hosts.  A value of
494	      "none" returns no information describing delegated or subordinate
495	      hosts.

497	   -  An OPTIONAL <domain:authInfo> element that contains authorization
498	      information associated with the domain object or authorization
499	      information associated with the domain object's registrant or
500	      associated contacts.  An OPTIONAL "roid" attribute MUST be used to
501	      identify the registrant or contact object if and only if the given
502	      authInfo is associated with a registrant or contact object, and
503	      not the domain object itself.  If this element is not provided or
504	      if the authorization information is invalid, server policy
505	      determines if the command is rejected or if response information
506	      will be returned to the client.

508	   Example <info> command without authorization information:

510	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
511	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
512	   C:  <command>
513	   C:    <info>
514	   C:      <domain:info
515	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
516	   C:        <domain:name hosts="all">example.com</domain:name>
517	   C:      </domain:info>
518	   C:    </info>
519	   C:    <clTRID>ABC-12345</clTRID>
520	   C:  </command>
521	   C:</epp>
522	   Example <info> command with authorization information:

524	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
525	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
526	   C:  <command>
527	   C:    <info>
528	   C:      <domain:info
529	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
530	   C:        <domain:name hosts="all">example.com</domain:name>
531	   C:        <domain:authInfo>
532	   C:          <domain:pw>2fooBAR</domain:pw>
533	   C:        </domain:authInfo>
534	   C:      </domain:info>
535	   C:    </info>
536	   C:    <clTRID>ABC-12345</clTRID>
537	   C:  </command>
538	   C:</epp>

540	   When an <info> command has been processed successfully, the EPP
541	   <resData> element MUST contain a child <domain:infData> element that
542	   identifies the domain namespace.  Elements that are not OPTIONAL MUST
543	   be returned; OPTIONAL elements are returned based on client
544	   authorization and server policy.  The <domain:infData> element
545	   contains the following child elements:

547	   -  A <domain:name> element that contains the fully qualified name of
548	      the domain object.

550	   -  A <domain:roid> element that contains the Repository Object
551	      IDentifier assigned to the domain object when the object was
552	      created.

554	   -  Zero or more OPTIONAL <domain:status> elements that contain the
555	      current status descriptors associated with the domain.

557	   -  If supported by the server, one OPTIONAL <domain:registrant>
558	      element and one or more OPTIONAL <domain:contact> elements that
559	      contain identifiers for the human or organizational social
560	      information objects associated with the domain object.

562	   -  An OPTIONAL <domain:ns> element that contains the fully qualified
563	      names of the delegated host objects or host attributes (name
564	      servers) associated with the domain object.  See section 1.1 for a
565	      description of the elements used to specify host objects or host
566	      attributes.

568	   -  Zero or more OPTIONAL <domain:host> elements that contain the
569	      fully qualified names of the subordinate host objects that exist
570	      under this superordinate domain object.

572	   -  A <domain:clID> element that contains the identifier of the
573	      sponsoring client.

575	   -  An OPTIONAL <domain:crID> element that contains the identifier of
576	      the client that created the domain object.

578	   -  An OPTIONAL <domain:crDate> element that contains the date and
579	      time of domain object creation.

581	   -  An OPTIONAL <domain:exDate> element that contains the date and
582	      time identifying the end of the domain object's registration
583	      period.

585	   -  An OPTIONAL <domain:upID> element that contains the identifier of
586	      the client that last updated the domain object.  This element MUST
587	      NOT be present if the domain has never been modified.

589	   -  An OPTIONAL <domain:upDate> element that contains the date and
590	      time of the most recent domain object modification.  This element
591	      MUST NOT be present if the domain object has never been modified.

593	   -  An OPTIONAL <domain:trDate> elements that contains the date and
594	      time of the most recent successful domain object transfer.  This
595	      element MUST NOT be provided if the domain object has never been
596	      transferred.

598	   -  An OPTIONAL <domain:authInfo> element that contains authorization
599	      information associated with the domain object.  This element MUST
600	      only be returned if the querying client is the current sponsoring
601	      client, or if the client supplied valid authorization information
602	      with the command.

604	   Example <info> response for an authorized client:

606	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
607	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
608	   S:  <response>
609	   S:    <result code="1000">
610	   S:      <msg>Command completed successfully</msg>
611	   S:    </result>
612	   S:    <resData>
613	   S:      <domain:infData
614	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
615	   S:        <domain:name>example.com</domain:name>
616	   S:        <domain:roid>EXAMPLE1-REP</domain:roid>
617	   S:        <domain:status s="ok"/>
618	   S:        <domain:registrant>jd1234</domain:registrant>
619	   S:        <domain:contact type="admin">sh8013</domain:contact>
620	   S:        <domain:contact type="tech">sh8013</domain:contact>
621	   S:        <domain:ns>
622	   S:          <domain:hostObj>ns1.example.com</domain:hostObj>
623	   S:          <domain:hostObj>ns1.example.net</domain:hostObj>
624	   S:        </domain:ns>
625	   S:        <domain:host>ns1.example.com</domain:host>
626	   S:        <domain:host>ns2.example.com</domain:host>
627	   S:        <domain:clID>ClientX</domain:clID>
628	   S:        <domain:crID>ClientY</domain:crID>
629	   S:        <domain:crDate>1999-04-03T22:00:00.0Z</domain:crDate>
630	   S:        <domain:upID>ClientX</domain:upID>
631	   S:        <domain:upDate>1999-12-03T09:00:00.0Z</domain:upDate>
632	   S:        <domain:exDate>2005-04-03T22:00:00.0Z</domain:exDate>
633	   S:        <domain:trDate>2000-04-08T09:00:00.0Z</domain:trDate>
634	   S:        <domain:authInfo>
635	   S:          <domain:pw>2fooBAR</domain:pw>
636	   S:        </domain:authInfo>
637	   S:      </domain:infData>
638	   S:    </resData>
639	   S:    <trID>
640	   S:      <clTRID>ABC-12345</clTRID>
641	   S:      <svTRID>54322-XYZ</svTRID>
642	   S:    </trID>
643	   S:  </response>
644	   S:</epp>

646	   A server with a different information return policy MAY provide less
647	   information in a response.

649	   Example <info> response for an unauthorized client:

651	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
652	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
653	   S:  <response>
654	   S:    <result code="1000">
655	   S:      <msg>Command completed successfully</msg>
656	   S:    </result>
657	   S:    <resData>
658	   S:      <domain:infData
659	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
660	   S:        <domain:name>example.com</domain:name>
661	   S:        <domain:roid>EXAMPLE1-REP</domain:roid>
662	   S:        <domain:clID>ClientX</domain:clID>
663	   S:      </domain:infData>
664	   S:    </resData>
665	   S:    <trID>
666	   S:      <clTRID>ABC-12345</clTRID>
667	   S:      <svTRID>54322-XYZ</svTRID>
668	   S:    </trID>
669	   S:  </response>
670	   S:</epp>

672	   An EPP error response MUST be returned if an <info> command can not
673	   be processed for any reason.

675	3.1.3.  EPP <transfer> Query Command

677	   The EPP <transfer> command provides a query operation that allows a
678	   client to determine real-time status of pending and completed
679	   transfer requests.  In addition to the standard EPP command elements,
680	   the <transfer> command MUST contain an "op" attribute with value
681	   "query", and a <domain:transfer> element that identifies the domain
682	   namespace.  The <domain:transfer> element contains the following
683	   child elements:

685	   -  A <domain:name> element that contains the fully qualified name of
686	      the domain object to be queried.

688	   -  An OPTIONAL <domain:authInfo> element that contains authorization
689	      information associated with the domain object or authorization
690	      information associated with the domain object's registrant or
691	      associated contacts.  An OPTIONAL "roid" attribute MUST be used to
692	      identify the registrant or contact object if and only if the given
693	      authInfo is associated with a registrant or contact object, and
694	      not the domain object itself.  If this element is not provided or
695	      if the authorization information is invalid, server policy
696	      determines if the command is rejected or if response information
697	      will be returned to the client.

699	   Example <transfer> query command:

701	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
702	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
703	   C:  <command>
704	   C:    <transfer op="query">
705	   C:      <domain:transfer
706	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
707	   C:        <domain:name>example.com</domain:name>
708	   C:        <domain:authInfo>
709	   C:          <domain:pw roid="JD1234-REP">2fooBAR</domain:pw>
710	   C:        </domain:authInfo>
711	   C:      </domain:transfer>
712	   C:    </transfer>
713	   C:    <clTRID>ABC-12345</clTRID>
714	   C:  </command>
715	   C:</epp>

717	   When a <transfer> query command has been processed successfully, the
718	   EPP <resData> element MUST contain a child <domain:trnData> element
719	   that identifies the domain namespace.  The <domain:trnData> element
720	   contains the following child elements:

722	   -  A <domain:name> element that contains the fully qualified name of
723	      the domain object.

725	   -  A <domain:trStatus> element that contains the state of the most
726	      recent transfer request.

728	   -  A <domain:reID> element that contains the identifier of the client
729	      that requested the object transfer.

731	   -  A <domain:reDate> element that contains the date and time that the
732	      transfer was requested.

734	   -  A <domain:acID> element that contains the identifier of the client
735	      that SHOULD act upon a PENDING transfer request.  For all other
736	      status types, the value identifies the client that took the
737	      indicated action.

739	   -  A <domain:acDate> element that contains the date and time of a
740	      required or completed response.  For a PENDING request, the value
741	      identifies the date and time by which a response is required
742	      before an automated response action will be taken by the server.
743	      For all other status types, the value identifies the date and time
744	      when the request was completed.

746	   -  An OPTIONAL <domain:exDate> element that contains the end of the
747	      domain object's validity period if the <transfer> command caused
748	      or causes a change in the validity period.

750	   Example <transfer> query response:

752	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
753	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
754	   S:  <response>
755	   S:    <result code="1000">
756	   S:      <msg>Command completed successfully</msg>
757	   S:    </result>
758	   S:    <resData>
759	   S:      <domain:trnData
760	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
761	   S:        <domain:name>example.com</domain:name>
762	   S:        <domain:trStatus>pending</domain:trStatus>
763	   S:        <domain:reID>ClientX</domain:reID>
764	   S:        <domain:reDate>2000-06-06T22:00:00.0Z</domain:reDate>
765	   S:        <domain:acID>ClientY</domain:acID>
766	   S:        <domain:acDate>2000-06-11T22:00:00.0Z</domain:acDate>
767	   S:        <domain:exDate>2002-09-08T22:00:00.0Z</domain:exDate>
768	   S:      </domain:trnData>
769	   S:    </resData>
770	   S:    <trID>
771	   S:      <clTRID>ABC-12345</clTRID>
772	   S:      <svTRID>54322-XYZ</svTRID>
773	   S:    </trID>
774	   S:  </response>
775	   S:</epp>

777	   An EPP error response MUST be returned if a <transfer> query command
778	   can not be processed for any reason.

780	3.2.  EPP Transform Commands

782	   EPP provides five commands to transform domain objects: <create> to
783	   create an instance of a domain object, <delete> to delete an instance
784	   of a domain object, <renew> to extend the validity period of a domain
785	   object, <transfer> to manage domain object sponsorship changes, and
786	   <update> to change information associated with a domain object.

788	   Transform commands are typically processed and completed in real
789	   time.  Server operators MAY receive and process transform commands,
790	   but defer completing the requested action if human or third-party
791	   review is required before the requested action can be completed.  In
792	   such situations the server MUST return a 1001 response code to the
793	   client to note that the command has been received and processed, but
794	   the requested action is pending.  The server MUST also manage the
795	   status of the object that is the subject of the command to reflect
796	   the initiation and completion of the requested action.  Once the
797	   action has been completed, all clients involved in the transaction
798	   MUST be notified using a service message that the action has been
799	   completed and that the status of the object has changed.

801	3.2.1.  EPP <create> Command

803	   The EPP <create> command provides a transform operation that allows a
804	   client to create a domain object.  In addition to the standard EPP
805	   command elements, the <create> command MUST contain a <domain:create>
806	   element that identifies the domain namespace.  The <domain:create>
807	   element contains the following child elements:

809	   -  A <domain:name> element that contains the fully qualified name of
810	      the domain object to be created.

812	   -  An OPTIONAL <domain:period> element that contains the initial
813	      registration period of the domain object.  A server MAY define a
814	      default initial registration period if not specified by the
815	      client.

817	   -  An OPTIONAL <domain:ns> element that contains the fully qualified
818	      names of the delegated host objects or host attributes (name
819	      servers) associated with the domain object to provide resolution
820	      services for the domain; see section 1.1 for a description of the
821	      elements used to specify host objects or host attributes.  A host
822	      object MUST be known to the server before the host object can be
823	      associated with a domain object.

825	   -  An OPTIONAL <domain:registrant> element that contains the
826	      identifier for the human or organizational social information
827	      (contact) object to be associated with the domain object as the
828	      object registrant.  This object identifier MUST be known to the
829	      server before the contact object can be associated with the domain
830	      object.  The EPP mapping for contact objects is described in
831	      [I-D.hollenbeck-epp-rfc3733bis].

833	   -  Zero or more OPTIONAL <domain:contact> elements that contain the
834	      identifiers for other contact objects to be associated with the
835	      domain object.  Contact object identifiers MUST be known to the
836	      server before the contact object can be associated with the domain
837	      object.

839	   -  A <domain:authInfo> element that contains authorization
840	      information to be associated with the domain object.  This mapping
841	      includes a password-based authentication mechanism, but the schema
842	      allows new mechanisms to be defined in new schemas.

844	   Example <create> command:

846	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
847	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
848	   C:  <command>
849	   C:    <create>
850	   C:      <domain:create
851	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
852	   C:        <domain:name>example.com</domain:name>
853	   C:        <domain:period unit="y">2</domain:period>
854	   C:        <domain:ns>
855	   C:          <domain:hostObj>ns1.example.com</domain:hostObj>
856	   C:          <domain:hostObj>ns1.example.net</domain:hostObj>
857	   C:        </domain:ns>
858	   C:        <domain:registrant>jd1234</domain:registrant>
859	   C:        <domain:contact type="admin">sh8013</domain:contact>
860	   C:        <domain:contact type="tech">sh8013</domain:contact>
861	   C:        <domain:authInfo>
862	   C:          <domain:pw>2fooBAR</domain:pw>
863	   C:        </domain:authInfo>
864	   C:      </domain:create>
865	   C:    </create>
866	   C:    <clTRID>ABC-12345</clTRID>
867	   C:  </command>
868	   C:</epp>

870	   When a <create> command has been processed successfully, the EPP
871	   <resData> element MUST contain a child <domain:creData> element that
872	   identifies the domain namespace.  The <domain:creData> element
873	   contains the following child elements:

875	   -  A <domain:name> element that contains the fully qualified name of
876	      the domain object.

878	   -  A <domain:crDate> element that contains the date and time of
879	      domain object creation.

881	   -  An OPTIONAL <domain:exDate> element that contains the date and
882	      time identifying the end of the domain object's registration
883	      period.

885	   Example <create> response:

887	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
888	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
889	   S:  <response>
890	   S:    <result code="1000">
891	   S:      <msg>Command completed successfully</msg>
892	   S:    </result>
893	   S:    <resData>
894	   S:      <domain:creData
895	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
896	   S:        <domain:name>example.com</domain:name>
897	   S:        <domain:crDate>1999-04-03T22:00:00.0Z</domain:crDate>
898	   S:        <domain:exDate>2001-04-03T22:00:00.0Z</domain:exDate>
899	   S:      </domain:creData>
900	   S:    </resData>
901	   S:    <trID>
902	   S:      <clTRID>ABC-12345</clTRID>
903	   S:      <svTRID>54321-XYZ</svTRID>
904	   S:    </trID>
905	   S:  </response>
906	   S:</epp>

908	   An EPP error response MUST be returned if a <create> command can not
909	   be processed for any reason.

911	3.2.2.  EPP <delete> Command

913	   The EPP <delete> command provides a transform operation that allows a
914	   client to delete a domain object.  In addition to the standard EPP
915	   command elements, the <delete> command MUST contain a <domain:delete>
916	   element that identifies the domain namespace.  The <domain:delete>
917	   element contains the following child elements:

919	   -  A <domain:name> element that contains the fully qualified name of
920	      the domain object to be deleted.

922	   A domain object SHOULD NOT be deleted if subordinate host objects are
923	   associated with the domain object.  For example, if domain
924	   "example.com" exists, and host object "ns1.example.com" also exists,
925	   then domain "example.com" SHOULD NOT be deleted until host
926	   "ns1.example.com" has been either deleted or renamed to exist in a
927	   different superordinate domain.  A server SHOULD notify clients that
928	   object relationships exist by sending a 2305 error response code when
929	   a <delete> command is attempted and fails due to existing object
930	   relationships.  Delegated and subordinate host objects associated
931	   with a domain object can be determined using the <info> query command
932	   for the domain object.

934	   Example <delete> command:

936	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
937	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
938	   C:  <command>
939	   C:    <delete>
940	   C:      <domain:delete
941	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
942	   C:        <domain:name>example.com</domain:name>
943	   C:      </domain:delete>
944	   C:    </delete>
945	   C:    <clTRID>ABC-12345</clTRID>
946	   C:  </command>
947	   C:</epp>

949	   When a <delete> command has been processed successfully, a server
950	   MUST respond with an EPP response with no <resData> element.
951	   Example <delete> response:

953	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
954	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
955	   S:  <response>
956	   S:    <result code="1000">
957	   S:      <msg>Command completed successfully</msg>
958	   S:    </result>
959	   S:    <trID>
960	   S:      <clTRID>ABC-12345</clTRID>
961	   S:      <svTRID>54321-XYZ</svTRID>
962	   S:    </trID>
963	   S:  </response>
964	   S:</epp>

966	   An EPP error response MUST be returned if a <delete> command can not
967	   be processed for any reason.

969	3.2.3.  EPP <renew> Command

971	   The EPP <renew> command provides a transform operation that allows a
972	   client to extend the validity period of a domain object.  In addition
973	   to the standard EPP command elements, the <renew> command MUST
974	   contain a <domain:renew> element that identifies the domain
975	   namespace.  The <domain:renew> element contains the following child
976	   elements:

978	   -  A <domain:name> element that contains the fully qualified name of
979	      the domain object whose validity period is to be extended.

981	   -  A <domain:curExpDate> element that contains the date on which the
982	      current validity period ends.  This value ensures that repeated
983	      <renew> commands do not result in multiple unanticipated
984	      successful renewals.

986	   -  An OPTIONAL <domain:period> element that contains the number of
987	      units to be added to the registration period of the domain object.
988	      The number of units available MAY be subject to limits imposed by
989	      the server.

991	   Example <renew> command:

993	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
994	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
995	   C:  <command>
996	   C:    <renew>
997	   C:      <domain:renew
998	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
999	   C:        <domain:name>example.com</domain:name>
1000	   C:        <domain:curExpDate>2000-04-03</domain:curExpDate>
1001	   C:        <domain:period unit="y">5</domain:period>
1002	   C:      </domain:renew>
1003	   C:    </renew>
1004	   C:    <clTRID>ABC-12345</clTRID>
1005	   C:  </command>
1006	   C:</epp>

1008	   When a <renew> command has been processed successfully, the EPP
1009	   <resData> element MUST contain a child <domain:renData> element that
1010	   identifies the domain namespace.  The <domain:renData> element
1011	   contains the following child elements:

1013	   -  A <domain:name> element that contains the fully qualified name of
1014	      the domain object.

1016	   -  An OPTIONAL <domain:exDate> element that contains the date and
1017	      time identifying the end of the domain object's registration
1018	      period.

1020	   Example <renew> response:

1022	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1023	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1024	   S:  <response>
1025	   S:    <result code="1000">
1026	   S:      <msg>Command completed successfully</msg>
1027	   S:    </result>
1028	   S:    <resData>
1029	   S:      <domain:renData
1030	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1031	   S:        <domain:name>example.com</domain:name>
1032	   S:        <domain:exDate>2005-04-03T22:00:00.0Z</domain:exDate>
1033	   S:      </domain:renData>
1034	   S:    </resData>
1035	   S:    <trID>
1036	   S:      <clTRID>ABC-12345</clTRID>
1037	   S:      <svTRID>54322-XYZ</svTRID>
1038	   S:    </trID>
1039	   S:  </response>
1040	   S:</epp>

1042	   An EPP error response MUST be returned if a <renew> command can not
1043	   be processed for any reason.

1045	3.2.4.  EPP <transfer> Command

1047	   The EPP <transfer> command provides a transform operation that allows
1048	   a client to manage requests to transfer the sponsorship of a domain
1049	   object.  In addition to the standard EPP command elements, the
1050	   <transfer> command MUST contain a <domain:transfer> element that
1051	   identifies the domain namespace.  The <domain:transfer> element
1052	   contains the following child elements:

1054	   -  A <domain:name> element that contains the fully qualified name of
1055	      the domain object for which a transfer request is to be created,
1056	      approved, rejected, or cancelled.

1058	   -  An OPTIONAL <domain:period> element that contains the number of
1059	      units to be added to the registration period of the domain object
1060	      at completion of the transfer process.  This element can only be
1061	      used when a transfer is requested, and it MUST be ignored if used
1062	      otherwise.  The number of units available MAY be subject to limits
1063	      imposed by the server.

1065	   -  A <domain:authInfo> element that contains authorization
1066	      information associated with the domain object or authorization
1067	      information associated with the domain object's registrant or
1068	      associated contacts.  An OPTIONAL "roid" attribute MUST be used to
1069	      identify the registrant or contact object if and only if the given
1070	      authInfo is associated with a registrant or contact object, and
1071	      not the domain object itself.

1073	   Every EPP <transfer> command MUST contain an "op" attribute that
1074	   identifies the transfer operation to be performed.  Valid values,
1075	   definitions, and authorizations for all attribute values are defined
1076	   in [I-D.hollenbeck-epp-rfc3730bis].

1078	   Transfer of a domain object MUST implicitly transfer all host objects
1079	   that are subordinate to the domain object.  For example, if domain
1080	   object "example.com" is transferred and host object "ns1.example.com"
1081	   exists, the host object MUST be transferred as part of the
1082	   "example.com" transfer process.  Host objects that are subject to
1083	   transfer when transferring a domain object are listed in the response
1084	   to an EPP <info> command performed on the domain object.

1086	   Example <transfer> request command:

1088	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1089	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1090	   C:  <command>
1091	   C:    <transfer op="request">
1092	   C:      <domain:transfer
1093	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1094	   C:        <domain:name>example.com</domain:name>
1095	   C:        <domain:period unit="y">1</domain:period>
1096	   C:        <domain:authInfo>
1097	   C:          <domain:pw roid="JD1234-REP">2fooBAR</domain:pw>
1098	   C:        </domain:authInfo>
1099	   C:      </domain:transfer>
1100	   C:    </transfer>
1101	   C:    <clTRID>ABC-12345</clTRID>
1102	   C:  </command>
1103	   C:</epp>

1105	   When a <transfer> command has been processed successfully, the EPP
1106	   <resData> element MUST contain a child <domain:trnData> element that
1107	   identifies the domain namespace.  The <domain:trnData> element
1108	   contains the same child elements defined for a transfer query
1109	   response.

1111	   Example <transfer> response:

1113	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1114	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1115	   S:  <response>
1116	   S:    <result code="1001">
1117	   S:      <msg>Command completed successfully; action pending</msg>
1118	   S:    </result>
1119	   S:    <resData>
1120	   S:      <domain:trnData
1121	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1122	   S:        <domain:name>example.com</domain:name>
1123	   S:        <domain:trStatus>pending</domain:trStatus>
1124	   S:        <domain:reID>ClientX</domain:reID>
1125	   S:        <domain:reDate>2000-06-08T22:00:00.0Z</domain:reDate>
1126	   S:        <domain:acID>ClientY</domain:acID>
1127	   S:        <domain:acDate>2000-06-13T22:00:00.0Z</domain:acDate>
1128	   S:        <domain:exDate>2002-09-08T22:00:00.0Z</domain:exDate>
1129	   S:      </domain:trnData>
1130	   S:    </resData>
1131	   S:    <trID>
1132	   S:      <clTRID>ABC-12345</clTRID>
1133	   S:      <svTRID>54322-XYZ</svTRID>
1134	   S:    </trID>
1135	   S:  </response>
1136	   S:</epp>

1138	   An EPP error response MUST be returned if a <transfer> command can
1139	   not be processed for any reason.

1141	3.2.5.  EPP <update> Command

1143	   The EPP <update> command provides a transform operation that allows a
1144	   client to modify the attributes of a domain object.  In addition to
1145	   the standard EPP command elements, the <update> command MUST contain
1146	   a <domain:update> element that identifies the domain namespace.  The
1147	   <domain:update> element contains the following child elements:

1149	   -  A <domain:name> element that contains the fully qualified name of
1150	      the domain object to be updated.

1152	   -  An OPTIONAL <domain:add> element that contains attribute values to
1153	      be added to the object.

1155	   -  An OPTIONAL <domain:rem> element that contains attribute values to
1156	      be removed from the object.

1158	   -  An OPTIONAL <domain:chg> element that contains object attribute
1159	      values to be changed.

1161	   At least one <domain:add>, <domain:rem>, or <domain:chg> element MUST
1162	   be provided if the command is not being extended.  All of these
1163	   elements MAY be omitted if an <update> extension is present.  The
1164	   <domain:add> and <domain:rem> elements contain the following child
1165	   elements:

1167	   -  An OPTIONAL <domain:ns> element that contains the fully qualified
1168	      names of the delegated host objects or host attributes (name
1169	      servers) associated with the domain object to provide resolution
1170	      services for the domain; see section 1.1 for a description of the
1171	      elements used to specify host objects or host attributes.  A host
1172	      object MUST be known to the server before the host object can be
1173	      associated with a domain object.  If host attributes are used to
1174	      specify name servers, note that IP address elements are not needed
1175	      to identify a name server that is being removed.  IP address
1176	      elements can safely be absent or ignored in this situation.

1178	   -  Zero or more <domain:contact> elements that contain the
1179	      identifiers for contact objects to be associated with or removed
1180	      from the domain object.  Contact object identifiers MUST be known
1181	      to the server before the contact object can be associated with the
1182	      domain object.

1184	   -  Zero or more <domain:status> elements that contain status values
1185	      to be applied to or removed from the object.  When specifying a
1186	      value to be removed, only the attribute value is significant;
1187	      element text is not required to match a value for removal.

1189	   A <domain:chg> element contains the following child elements:

1191	   -  A <domain:registrant> element that contains the identifier for the
1192	      human or organizational social information (contact) object to be
1193	      associated with the domain object as the object registrant.  This
1194	      object identifier MUST be known to the server before the contact
1195	      object can be associated with the domain object.  An empty element
1196	      can be used to remove registrant information.

1198	   -  A <domain:authInfo> element that contains authorization
1199	      information associated with the domain object.  This mapping
1200	      includes a password-based authentication mechanism, but the schema
1201	      allows new mechanisms to be defined in new schemas.  A <domain:
1202	      null> element can be used within the <domain:authInfo> element to
1203	      remove authorization information.

1205	   Example <update> command:

1207	   C:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1208	   C:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1209	   C:  <command>
1210	   C:    <update>
1211	   C:      <domain:update
1212	   C:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1213	   C:        <domain:name>example.com</domain:name>
1214	   C:        <domain:add>
1215	   C:          <domain:ns>
1216	   C:            <domain:hostObj>ns2.example.com</domain:hostObj>
1217	   C:          </domain:ns>
1218	   C:          <domain:contact type="tech">mak21</domain:contact>
1219	   C:          <domain:status s="clientHold"
1220	   C:           lang="en">Payment overdue.</domain:status>
1221	   C:        </domain:add>
1222	   C:        <domain:rem>
1223	   C:          <domain:ns>
1224	   C:            <domain:hostObj>ns1.example.com</domain:hostObj>
1225	   C:          </domain:ns>
1226	   C:          <domain:contact type="tech">sh8013</domain:contact>
1227	   C:          <domain:status s="clientUpdateProhibited"/>
1228	   C:        </domain:rem>
1229	   C:        <domain:chg>
1230	   C:          <domain:registrant>sh8013</domain:registrant>
1231	   C:          <domain:authInfo>
1232	   C:            <domain:pw>2BARfoo</domain:pw>
1233	   C:          </domain:authInfo>
1234	   C:        </domain:chg>
1235	   C:      </domain:update>
1236	   C:    </update>
1237	   C:    <clTRID>ABC-12345</clTRID>
1238	   C:  </command>
1239	   C:</epp>

1241	   When an <update> command has been processed successfully, a server
1242	   MUST respond with an EPP response with no <resData> element.

1244	   Example <update> response:

1246	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1247	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1248	   S:  <response>
1249	   S:    <result code="1000">
1250	   S:      <msg>Command completed successfully</msg>
1251	   S:    </result>
1252	   S:    <trID>
1253	   S:      <clTRID>ABC-12345</clTRID>
1254	   S:      <svTRID>54321-XYZ</svTRID>
1255	   S:    </trID>
1256	   S:  </response>
1257	   S:</epp>

1259	   An EPP error response MUST be returned if an <update> command can not
1260	   be processed for any reason.

1262	3.3.  Offline Review of Requested Actions

1264	   Commands are processed by a server in the order they are received
1265	   from a client.  Though an immediate response confirming receipt and
1266	   processing of the command is produced by the server, a server
1267	   operator MAY perform an offline review of requested transform
1268	   commands before completing the requested action.  In such situations
1269	   the response from the server MUST clearly note that the transform
1270	   command has been received and processed, but the requested action is
1271	   pending.  The status of the corresponding object MUST clearly reflect
1272	   processing of the pending action.  The server MUST notify the client
1273	   when offline processing of the action has been completed.

1275	   Examples describing a <create> command that requires offline review
1276	   are included here.  Note the result code and message returned in
1277	   response to the <create> command.

1279	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1280	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1281	   S:  <response>
1282	   S:    <result code="1001">
1283	   S:      <msg>Command completed successfully; action pending</msg>
1284	   S:    </result>
1285	   S:    <resData>
1286	   S:      <domain:creData
1287	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1288	   S:        <domain:name>example.com</domain:name>
1289	   S:        <domain:crDate>1999-04-03T22:00:00.0Z</domain:crDate>
1290	   S:        <domain:exDate>2001-04-03T22:00:00.0Z</domain:exDate>
1291	   S:      </domain:creData>
1292	   S:    </resData>
1293	   S:    <trID>
1294	   S:      <clTRID>ABC-12345</clTRID>
1295	   S:      <svTRID>54321-XYZ</svTRID>
1296	   S:    </trID>
1297	   S:  </response>
1298	   S:</epp>

1300	   The status of the domain object after returning this response MUST
1301	   include "pendingCreate".  The server operator reviews the request
1302	   offline, and informs the client of the outcome of the review by
1303	   either queuing a service message for retrieval via the <poll> command
1304	   or by using an out-of-band mechanism to inform the client of the
1305	   request.

1307	   The service message MUST contain text in the <response>, <msgQ>,
1308	   <msg> element that describes the notification.  In addition, the EPP
1309	   <resData> element MUST contain a child <domain:panData> element that
1310	   identifies the domain namespace.  The <domain:panData> element
1311	   contains the following child elements:

1313	   -  A <domain:name> element that contains the fully qualified name of
1314	      the domain object.  The <domain:name> element contains a REQUIRED
1315	      "paResult" attribute.  A positive boolean value indicates that the
1316	      request has been approved and completed.  A negative boolean value
1317	      indicates that the request has been denied and the requested
1318	      action has not been taken.

1320	   -  A <domain:paTRID> element that contains the client transaction
1321	      identifier and server transaction identifier returned with the
1322	      original response to process the command.  The client transaction
1323	      identifier is OPTIONAL and will only be returned if the client
1324	      provided an identifier with the original <create> command.

1326	   -  A <domain:paDate> element that contains the date and time
1327	      describing when review of the requested action was completed.

1329	   Example "review completed" service message:

1331	   S:<?xml version="1.0" encoding="UTF-8" standalone="no"?>
1332	   S:<epp xmlns="urn:ietf:params:xml:ns:epp-1.0">
1333	   S:  <response>
1334	   S:    <result code="1301">
1335	   S:      <msg>Command completed successfully; ack to dequeue</msg>
1336	   S:    </result>
1337	   S:    <msgQ count="5" id="12345">
1338	   S:      <qDate>1999-04-04T22:01:00.0Z</qDate>
1339	   S:      <msg>Pending action completed successfully.</msg>
1340	   S:    </msgQ>
1341	   S:    <resData>
1342	   S:      <domain:panData
1343	   S:       xmlns:domain="urn:ietf:params:xml:ns:domain-1.0">
1344	   S:        <domain:name paResult="1">example.com</domain:name>
1345	   S:        <domain:paTRID>
1346	   S:          <clTRID>ABC-12345</clTRID>
1347	   S:          <svTRID>54321-XYZ</svTRID>
1348	   S:        </domain:paTRID>
1349	   S:        <domain:paDate>1999-04-04T22:00:00.0Z</domain:paDate>
1350	   S:      </domain:panData>
1351	   S:    </resData>
1352	   S:    <trID>
1353	   S:      <clTRID>BCD-23456</clTRID>
1354	   S:      <svTRID>65432-WXY</svTRID>
1355	   S:    </trID>
1356	   S:  </response>
1357	   S:</epp>

1359	4.  Formal Syntax

1361	   An EPP object mapping is specified in XML Schema notation.  The
1362	   formal syntax presented here is a complete schema representation of
1363	   the object mapping suitable for automated validation of EPP XML
1364	   instances.  The BEGIN and END tags are not part of the schema; they
1365	   are used to note the beginning and ending of the schema for URI
1366	   registration purposes.

1368	   BEGIN
1369	   <?xml version="1.0" encoding="UTF-8"?>

1371	   <schema targetNamespace="urn:ietf:params:xml:ns:domain-1.0"
1372	        xmlns:domain="urn:ietf:params:xml:ns:domain-1.0"
1373	        xmlns:host="urn:ietf:params:xml:ns:host-1.0"
1374	        xmlns:epp="urn:ietf:params:xml:ns:epp-1.0"
1375	        xmlns:eppcom="urn:ietf:params:xml:ns:eppcom-1.0"
1376	        xmlns="http://www.w3.org/2001/XMLSchema"
1377	        elementFormDefault="qualified">

1379	   <!--
1380	   Import common element types.
1381	   -->
1382	   <import namespace="urn:ietf:params:xml:ns:eppcom-1.0"/>
1383	   <import namespace="urn:ietf:params:xml:ns:epp-1.0"/>
1384	   <import namespace="urn:ietf:params:xml:ns:host-1.0"/>

1386	   <annotation>
1387	    <documentation>
1388	      Extensible Provisioning Protocol v1.0
1389	      domain provisioning schema.
1390	    </documentation>
1391	   </annotation>

1393	   <!--
1394	   Child elements found in EPP commands.
1395	   -->
1396	   <element name="check" type="domain:mNameType"/>
1397	   <element name="create" type="domain:createType"/>
1398	   <element name="delete" type="domain:sNameType"/>
1399	   <element name="info" type="domain:infoType"/>
1400	   <element name="renew" type="domain:renewType"/>
1401	   <element name="transfer" type="domain:transferType"/>
1402	   <element name="update" type="domain:updateType"/>
1403	   <!--
1404	   Child elements of the <create> command.
1405	   -->
1406	   <complexType name="createType">
1407	    <sequence>
1408	      <element name="name" type="eppcom:labelType"/>
1409	      <element name="period" type="domain:periodType"
1410	       minOccurs="0"/>
1411	      <element name="ns" type="domain:nsType"
1412	       minOccurs="0"/>
1413	      <element name="registrant" type="eppcom:clIDType"
1414	       minOccurs="0"/>
1415	      <element name="contact" type="domain:contactType"
1416	       minOccurs="0" maxOccurs="unbounded"/>
1417	      <element name="authInfo" type="domain:authInfoType"/>
1418	    </sequence>
1419	   </complexType>
1420	   <complexType name="periodType">
1421	    <simpleContent>
1422	      <extension base="domain:pLimitType">
1423	        <attribute name="unit" type="domain:pUnitType"
1424	         use="required"/>
1425	      </extension>
1426	    </simpleContent>
1427	   </complexType>

1429	   <simpleType name="pLimitType">
1430	    <restriction base="unsignedShort">
1431	      <minInclusive value="1"/>
1432	      <maxInclusive value="99"/>
1433	    </restriction>
1434	   </simpleType>

1436	   <simpleType name="pUnitType">
1437	    <restriction base="token">
1438	      <enumeration value="y"/>
1439	      <enumeration value="m"/>
1440	    </restriction>
1441	   </simpleType>

1443	   <complexType name="nsType">
1444	    <choice>
1445	      <element name="hostObj" type="eppcom:labelType"
1446	       maxOccurs="unbounded"/>
1447	      <element name="hostAttr" type="domain:hostAttrType"
1448	       maxOccurs="unbounded"/>
1449	    </choice>
1450	   </complexType>
1451	   <!--
1452	   Name servers are either host objects or attributes.
1453	   -->

1455	   <complexType name="hostAttrType">
1456	    <sequence>
1457	      <element name="hostName" type="eppcom:labelType"/>
1458	      <element name="hostAddr" type="host:addrType"
1459	       minOccurs="0" maxOccurs="unbounded"/>
1460	    </sequence>
1461	   </complexType>
1462	   <!--
1463	   If attributes, addresses are optional and follow the
1464	   structure defined in the host mapping.
1465	   -->

1467	   <complexType name="contactType">
1468	    <simpleContent>
1469	      <extension base="eppcom:clIDType">
1470	        <attribute name="type" type="domain:contactAttrType"/>
1471	      </extension>
1472	    </simpleContent>
1473	   </complexType>

1475	   <simpleType name="contactAttrType">
1476	    <restriction base="token">
1477	      <enumeration value="admin"/>
1478	      <enumeration value="billing"/>
1479	      <enumeration value="tech"/>
1480	    </restriction>
1481	   </simpleType>

1483	   <complexType name="authInfoType">
1484	    <choice>
1485	      <element name="pw" type="eppcom:pwAuthInfoType"/>
1486	      <element name="ext" type="eppcom:extAuthInfoType"/>
1487	    </choice>
1488	   </complexType>

1490	   <!--
1491	   Child element of commands that require a single name.
1492	   -->
1493	   <complexType name="sNameType">
1494	    <sequence>
1495	      <element name="name" type="eppcom:labelType"/>
1496	    </sequence>
1497	   </complexType>
1498	   <!--
1499	   Child element of commands that accept multiple names.
1500	   -->
1501	   <complexType name="mNameType">
1502	    <sequence>
1503	      <element name="name" type="eppcom:labelType"
1504	       maxOccurs="unbounded"/>
1505	    </sequence>
1506	   </complexType>

1508	   <!--
1509	   Child elements of the <info> command.
1510	   -->
1511	   <complexType name="infoType">
1512	    <sequence>
1513	      <element name="name" type="domain:infoNameType"/>
1514	      <element name="authInfo" type="domain:authInfoType"
1515	       minOccurs="0"/>

1517	    </sequence>
1518	   </complexType>

1520	   <complexType name="infoNameType">
1521	    <simpleContent>
1522	      <extension base = "eppcom:labelType">
1523	        <attribute name="hosts" type="domain:hostsType"
1524	         default="all"/>
1525	      </extension>
1526	    </simpleContent>
1527	   </complexType>

1529	   <simpleType name="hostsType">
1530	    <restriction base="token">
1531	      <enumeration value="all"/>
1532	      <enumeration value="del"/>
1533	      <enumeration value="none"/>
1534	      <enumeration value="sub"/>
1535	    </restriction>
1536	   </simpleType>

1538	   <!--
1539	   Child elements of the <renew> command.
1540	   -->
1541	   <complexType name="renewType">
1542	    <sequence>
1543	      <element name="name" type="eppcom:labelType"/>
1544	      <element name="curExpDate" type="date"/>
1545	      <element name="period" type="domain:periodType"
1546	       minOccurs="0"/>
1547	    </sequence>
1548	   </complexType>

1550	   <!--
1551	   Child elements of the <transfer> command.
1552	   -->
1553	   <complexType name="transferType">
1554	    <sequence>
1555	      <element name="name" type="eppcom:labelType"/>
1556	      <element name="period" type="domain:periodType"
1557	       minOccurs="0"/>
1558	      <element name="authInfo" type="domain:authInfoType"
1559	       minOccurs="0"/>
1560	    </sequence>
1561	   </complexType>

1563	   <!--
1564	   Child elements of the <update> command.

1566	   -->
1567	   <complexType name="updateType">
1568	    <sequence>
1569	      <element name="name" type="eppcom:labelType"/>
1570	      <element name="add" type="domain:addRemType"
1571	       minOccurs="0"/>
1572	      <element name="rem" type="domain:addRemType"
1573	       minOccurs="0"/>
1574	      <element name="chg" type="domain:chgType"
1575	       minOccurs="0"/>
1576	    </sequence>
1577	   </complexType>

1579	   <!--
1580	   Data elements that can be added or removed.
1581	   -->
1582	   <complexType name="addRemType">
1583	    <sequence>
1584	      <element name="ns" type="domain:nsType"
1585	       minOccurs="0"/>
1586	      <element name="contact" type="domain:contactType"
1587	       minOccurs="0" maxOccurs="unbounded"/>
1588	      <element name="status" type="domain:statusType"
1589	       minOccurs="0" maxOccurs="11"/>
1590	    </sequence>
1591	   </complexType>

1593	   <!--
1594	   Data elements that can be changed.
1595	   -->
1596	   <complexType name="chgType">
1597	    <sequence>
1598	      <element name="registrant" type="domain:clIDChgType"
1599	       minOccurs="0"/>
1600	      <element name="authInfo" type="domain:authInfoChgType"
1601	       minOccurs="0"/>
1602	    </sequence>
1603	   </complexType>

1605	   <!--
1606	   Allow the registrant value to be nullified by changing the
1607	   minLength restriction to "0".
1608	   -->
1609	   <simpleType name="clIDChgType">
1610	    <restriction base="token">
1611	      <minLength value="0"/>
1612	      <maxLength value="16"/>
1613	    </restriction>

1615	   </simpleType>

1617	   <!--
1618	   Allow the authInfo value to be nullified by including an
1619	   empty element within the choice.
1620	   -->
1621	   <complexType name="authInfoChgType">
1622	    <choice>
1623	      <element name="pw" type="eppcom:pwAuthInfoType"/>
1624	      <element name="ext" type="eppcom:extAuthInfoType"/>
1625	      <element name="null"/>
1626	    </choice>
1627	   </complexType>

1629	   <!--
1630	   Child response elements.
1631	   -->
1632	   <element name="chkData" type="domain:chkDataType"/>
1633	   <element name="creData" type="domain:creDataType"/>
1634	   <element name="infData" type="domain:infDataType"/>
1635	   <element name="panData" type="domain:panDataType"/>
1636	   <element name="renData" type="domain:renDataType"/>
1637	   <element name="trnData" type="domain:trnDataType"/>

1639	   <!--
1640	   <check> response elements.
1641	   -->
1642	   <complexType name="chkDataType">
1643	    <sequence>
1644	      <element name="cd" type="domain:checkType"
1645	       maxOccurs="unbounded"/>
1646	    </sequence>
1647	   </complexType>

1649	   <complexType name="checkType">
1650	    <sequence>
1651	      <element name="name" type="domain:checkNameType"/>
1652	      <element name="reason" type="eppcom:reasonType"
1653	       minOccurs="0"/>
1654	    </sequence>
1655	   </complexType>

1657	   <complexType name="checkNameType">
1658	    <simpleContent>
1659	      <extension base="eppcom:labelType">
1660	        <attribute name="avail" type="boolean"
1661	         use="required"/>
1662	      </extension>

1664	    </simpleContent>
1665	   </complexType>

1667	   <!--
1668	   <create> response elements.
1669	   -->
1670	   <complexType name="creDataType">
1671	    <sequence>
1672	      <element name="name" type="eppcom:labelType"/>
1673	      <element name="crDate" type="dateTime"/>
1674	      <element name="exDate" type="dateTime"
1675	       minOccurs="0"/>
1676	    </sequence>
1677	   </complexType>

1679	   <!--
1680	   <info> response elements.
1681	   -->
1682	   <complexType name="infDataType">
1683	    <sequence>
1684	      <element name="name" type="eppcom:labelType"/>
1685	      <element name="roid" type="eppcom:roidType"/>
1686	      <element name="status" type="domain:statusType"
1687	       minOccurs="0" maxOccurs="11"/>
1688	      <element name="registrant" type="eppcom:clIDType"
1689	       minOccurs="0"/>
1690	      <element name="contact" type="domain:contactType"
1691	       minOccurs="0" maxOccurs="unbounded"/>
1692	      <element name="ns" type="domain:nsType"
1693	       minOccurs="0"/>
1694	      <element name="host" type="eppcom:labelType"
1695	       minOccurs="0" maxOccurs="unbounded"/>
1696	      <element name="clID" type="eppcom:clIDType"/>
1697	      <element name="crID" type="eppcom:clIDType"
1698	       minOccurs="0"/>
1699	      <element name="crDate" type="dateTime"
1700	       minOccurs="0"/>
1701	      <element name="upID" type="eppcom:clIDType"
1702	       minOccurs="0"/>
1703	      <element name="upDate" type="dateTime"
1704	       minOccurs="0"/>
1705	      <element name="exDate" type="dateTime"
1706	       minOccurs="0"/>
1707	      <element name="trDate" type="dateTime"
1708	       minOccurs="0"/>
1709	      <element name="authInfo" type="domain:authInfoType"
1710	       minOccurs="0"/>
1711	    </sequence>

1713	   </complexType>

1715	   <!--
1716	   Status is a combination of attributes and an optional
1717	   human-readable message that may be expressed in languages other
1718	   than English.
1719	   -->
1720	   <complexType name="statusType">
1721	    <simpleContent>
1722	      <extension base="normalizedString">
1723	        <attribute name="s" type="domain:statusValueType"
1724	         use="required"/>
1725	        <attribute name="lang" type="language"
1726	         default="en"/>
1727	      </extension>
1728	    </simpleContent>
1729	   </complexType>

1731	   <simpleType name="statusValueType">
1732	    <restriction base="token">
1733	      <enumeration value="clientDeleteProhibited"/>
1734	      <enumeration value="clientHold"/>
1735	      <enumeration value="clientRenewProhibited"/>
1736	      <enumeration value="clientTransferProhibited"/>
1737	      <enumeration value="clientUpdateProhibited"/>
1738	      <enumeration value="inactive"/>
1739	      <enumeration value="ok"/>
1740	      <enumeration value="pendingCreate"/>
1741	      <enumeration value="pendingDelete"/>
1742	      <enumeration value="pendingRenew"/>
1743	      <enumeration value="pendingTransfer"/>
1744	      <enumeration value="pendingUpdate"/>
1745	      <enumeration value="serverDeleteProhibited"/>
1746	      <enumeration value="serverHold"/>
1747	      <enumeration value="serverRenewProhibited"/>
1748	      <enumeration value="serverTransferProhibited"/>
1749	      <enumeration value="serverUpdateProhibited"/>
1750	    </restriction>
1751	   </simpleType>

1753	   <!--
1754	   Pending action notification response elements.
1755	   -->
1756	   <complexType name="panDataType">
1757	    <sequence>
1758	      <element name="name" type="domain:paNameType"/>
1759	      <element name="paTRID" type="epp:trIDType"/>
1760	      <element name="paDate" type="dateTime"/>

1762	    </sequence>
1763	   </complexType>

1765	   <complexType name="paNameType">
1766	    <simpleContent>
1767	      <extension base="eppcom:labelType">
1768	        <attribute name="paResult" type="boolean"
1769	         use="required"/>
1770	      </extension>
1771	    </simpleContent>
1772	   </complexType>

1774	   <!--
1775	   <renew> response elements.
1776	   -->
1777	   <complexType name="renDataType">
1778	   <sequence>
1779	    <element name="name" type="eppcom:labelType"/>
1780	    <element name="exDate" type="dateTime"
1781	     minOccurs="0"/>
1782	   </sequence>
1783	   </complexType>

1785	   <!--
1786	   <transfer> response elements.
1787	   -->
1788	   <complexType name="trnDataType">
1789	   <sequence>
1790	    <element name="name" type="eppcom:labelType"/>
1791	    <element name="trStatus" type="eppcom:trStatusType"/>
1792	    <element name="reID" type="eppcom:clIDType"/>
1793	    <element name="reDate" type="dateTime"/>
1794	    <element name="acID" type="eppcom:clIDType"/>
1795	    <element name="acDate" type="dateTime"/>
1796	    <element name="exDate" type="dateTime"
1797	     minOccurs="0"/>
1798	   </sequence>
1799	   </complexType>

1801	   <!--
1802	   End of schema.
1803	   -->
1804	   </schema>
1805	   END

1807	5.  Internationalization Considerations

1809	   EPP is represented in XML, which provides native support for encoding
1810	   information using the Unicode character set and its more compact
1811	   representations including UTF-8.  Conformant XML processors recognize
1812	   both UTF-8 and UTF-16 [RFC2781].  Though XML includes provisions to
1813	   identify and use other character encodings through use of an
1814	   "encoding" attribute in an <?xml?> declaration, use of UTF-8 is
1815	   RECOMMENDED in environments where parser encoding support
1816	   incompatibility exists.

1818	   All date-time values presented via EPP MUST be expressed in Universal
1819	   Coordinated Time using the Gregorian calendar.  XML Schema allows use
1820	   of time zone identifiers to indicate offsets from the zero meridian,
1821	   but this option MUST NOT be used with EPP.  The extended date-time
1822	   form using upper case "T" and "Z" characters defined in
1823	   [W3C.REC-xmlschema-2-20041028] MUST be used to represent date-time
1824	   values as XML Schema does not support truncated date-time forms or
1825	   lower case "T" and "Z" characters.

1827	   This document requires domain and host name syntax as specified in
1828	   [RFC0952] as updated by [RFC1123].  At the time of this writing, RFC
1829	   3490 [RFC3490] describes a standard to use certain ASCII name labels
1830	   to represent non-ASCII name labels.  These conformance requirements
1831	   might change as a result of progressing work in developing standards
1832	   for internationalized domain names.

1834	6.  IANA Considerations

1836	   This document uses URNs to describe XML namespaces and XML schemas
1837	   conforming to a registry mechanism described in [RFC3688].  Two URI
1838	   assignments have been registered by the IANA.

1840	   Registration request for the domain namespace:

1842	   URI: urn:ietf:params:xml:ns:domain-1.0

1844	   Registrant Contact: See the "Author's Address" section of this
1845	   document.

1847	   XML: None.  Namespace URIs do not represent an XML specification.

1849	   Registration request for the domain XML schema:

1851	   URI: urn:ietf:params:xml:schema:domain-1.0

1853	   Registrant Contact: See the "Author's Address" section of this
1854	   document.

1856	   XML: See the "Formal Syntax" section of this document.

1858	7.  Security Considerations

1860	   Authorization information as described in section 2.6 is REQUIRED to
1861	   create a domain object.  This information is used in some query and
1862	   transfer operations as an additional means of determining client
1863	   authorization to perform the command.  Failure to protect
1864	   authorization information from inadvertent disclosure can result in
1865	   unauthorized transfer operations and unauthorized information
1866	   release.  Both client and server MUST ensure that authorization
1867	   information is stored and exchanged with high-grade encryption
1868	   mechanisms to provide privacy services.

1870	   The object mapping described in this document does not provide any
1871	   other security services or introduce any additional considerations
1872	   beyond those described by [I-D.hollenbeck-epp-rfc3730bis] and
1873	   protocol layers used by EPP.

1875	8.  Acknowledgements

1877	   This document was originally written as an individual submission
1878	   Internet-Draft.  The provreg working group later adopted it as a
1879	   working group document and provided many invaluable comments and
1880	   suggested improvements.  The author wishes to acknowledge the efforts
1881	   of WG chairs Edward Lewis and Jaap Akkerhuis for their process and
1882	   editorial contributions.

1884	   Specific suggestions that have been incorporated into this document
1885	   were provided by Joe Abley, Chris Bason, Eric Brunner-Williams,
1886	   Jordyn Buchanan, Dave Crocker, Ayesha Damaraju, Anthony Eden, Sheer
1887	   El-Showk, Klaus Malorny, Dan Manley, Michael Mealling, Patrick
1888	   Mevzek, Asbjorn Steira, Bruce Tonkin, and Rick Wesson.

1890	9.  References

1892	9.1.  Normative References

1894	   [I-D.hollenbeck-epp-rfc3730bis]
1895	              Hollenbeck, S., "Extensible Provisioning Protocol (EPP)",
1896	              draft-hollenbeck-epp-rfc3730bis-04 (work in progress),
1897	              November 2006.

1899	   [I-D.hollenbeck-epp-rfc3732bis]
1900	              Hollenbeck, S., "Extensible Provisioning Protocol (EPP)
1901	              Host Mapping", draft-hollenbeck-epp-rfc3732bis-04 (work in
1902	              progress), November 2006.

1904	   [I-D.hollenbeck-epp-rfc3733bis]
1905	              Hollenbeck, S., "Extensible Provisioning Protocol (EPP)
1906	              Contact Mapping", draft-hollenbeck-epp-rfc3733bis-05 (work
1907	              in progress), November 2006.

1909	   [RFC0952]  Harrenstien, K., Stahl, M., and E. Feinler, "DoD Internet
1910	              host table specification", RFC 952, October 1985.

1912	   [RFC1123]  Braden, R., "Requirements for Internet Hosts - Application
1913	              and Support", STD 3, RFC 1123, October 1989.

1915	   [RFC2119]  Bradner, S., "Key words for use in RFCs to Indicate
1916	              Requirement Levels", BCP 14, RFC 2119, March 1997.

1918	   [RFC3688]  Mealling, M., "The IETF XML Registry", BCP 81, RFC 3688,
1919	              January 2004.

1921	   [W3C.REC-xml-20040204]
1922	              Paoli, J., Maler, E., Sperberg-McQueen, C., Bray, T., and
1923	              F. Yergeau, "Extensible Markup Language (XML) 1.0 (Third
1924	              Edition)", World Wide Web Consortium Recommendation REC-
1925	              xml-20040204, February 2004,
1926	              <http://www.w3.org/TR/2004/REC-xml-20040204>.

1928	   [W3C.REC-xmlschema-1-20041028]
1929	              Beech, D., Thompson, H., Maloney, M., and N. Mendelsohn,
1930	              "XML Schema Part 1: Structures Second Edition", World Wide
1931	              Web Consortium Recommendation REC-xmlschema-1-20041028,
1932	              October 2004,
1933	              <http://www.w3.org/TR/2004/REC-xmlschema-1-20041028>.

1935	   [W3C.REC-xmlschema-2-20041028]
1936	              Biron, P. and A. Malhotra, "XML Schema Part 2: Datatypes
1937	              Second Edition", World Wide Web Consortium
1938	              Recommendation REC-xmlschema-2-20041028, October 2004,
1939	              <http://www.w3.org/TR/2004/REC-xmlschema-2-20041028>.

1941	9.2.  Informative References

1943	   [RFC2781]  Hoffman, P. and F. Yergeau, "UTF-16, an encoding of ISO
1944	              10646", RFC 2781, February 2000.

1946	   [RFC3490]  Faltstrom, P., Hoffman, P., and A. Costello,
1947	              "Internationalizing Domain Names in Applications (IDNA)",
1948	              RFC 3490, March 2003.

1950	   [RFC3731]  Hollenbeck, S., "Extensible Provisioning Protocol (EPP)
1951	              Domain Name Mapping", RFC 3731, March 2004.

1953	Appendix A.  Changes from RFC 3731

1955	   1.  Minor reformatting as a result of converting I-D source format
1956	       from nroff to XML.

1958	   2.  Removed this text from Section 2.3:

1960	       "With one exception, transform commands MUST be rejected when a
1961	       pendingCreate, pendingDelete, pendingRenew, pendingTransfer, or
1962	       pendingUpdate status is set.  The only exception is that a
1963	       <transfer> command to approve, reject, or cancel a transfer MAY
1964	       be processed while an object is in "pendingTransfer" status."

1966	   3.  Changed text in Section 3.1.3 from "A <domain:acID> element that
1967	       contains the identifier of the client that SHOULD act upon the
1968	       transfer request" to "A <domain:acID> element that contains the
1969	       identifier of the client that SHOULD act upon a PENDING transfer
1970	       request.  For all other status types, the value identifies the
1971	       client that took the indicated action".

1973	   4.  Changed text in Section 3.2.1.4 from "At least one <domain:add>,
1974	       <domain:rem>, or <domain:chg> element MUST be provided." to "At
1975	       least one <domain:add>, <domain:rem>, or <domain:chg> element
1976	       MUST be provided if the command is not being extended.  All of
1977	       these elements MAY be omitted if an <update> extension is
1978	       present.".

1980	   5.  Renumbered old section 3.2.6 to new section 3.3.

1982	   6.  Changed text in Section 3.3 (old Section 3.2.6) from this:

1984	       "The server operator reviews the request offline, and informs the
1985	       client of the outcome of the review by queuing a service message
1986	       for retrieval via the <poll> command."

1988	       to this:

1990	       "The server operator reviews the request offline, and informs the
1991	       client of the outcome of the review by either queuing a service
1992	       message for retrieval via the <poll> command or by using an out-
1993	       of-band mechanism to inform the client of the request."

1995	   7.  Removed text describing use of the XML Schema schemaLocation
1996	       attribute.  This is an optional attribute that doesn't need to be
1997	       mandated for use in EPP.

1999	   8.  Removed references to RFC 3339 and replaced them with references
2000	       to the W3C XML Schema specification.

2002	   9.  Updated EPP and XML references.

2004	Author's Address

2006	   Scott Hollenbeck
2007	   VeriSign, Inc.
2008	   21345 Ridgetop Circle
2009	   Dulles, VA  20166-6503
2010	   US

2012	   Email: shollenbeck@verisign.com

2014	Full Copyright Statement

2016	   Copyright (C) The IETF Trust (2006).

2018	   This document is subject to the rights, licenses and restrictions
2019	   contained in BCP 78, and except as set forth therein, the authors
2020	   retain all their rights.

2022	   This document and the information contained herein are provided on an
2023	   "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE REPRESENTS
2024	   OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY, THE IETF TRUST AND
2025	   THE INTERNET ENGINEERING TASK FORCE DISCLAIM ALL WARRANTIES, EXPRESS
2026	   OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF
2027	   THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED
2028	   WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.

2030	Intellectual Property

2032	   The IETF takes no position regarding the validity or scope of any
2033	   Intellectual Property Rights or other rights that might be claimed to
2034	   pertain to the implementation or use of the technology described in
2035	   this document or the extent to which any license under such rights
2036	   might or might not be available; nor does it represent that it has
2037	   made any independent effort to identify any such rights.  Information
2038	   on the procedures with respect to rights in RFC documents can be
2039	   found in BCP 78 and BCP 79.

2041	   Copies of IPR disclosures made to the IETF Secretariat and any
2042	   assurances of licenses to be made available, or the result of an
2043	   attempt made to obtain a general license or permission for the use of
2044	   such proprietary rights by implementers or users of this
2045	   specification can be obtained from the IETF on-line IPR repository at
2046	   http://www.ietf.org/ipr.

2048	   The IETF invites any interested party to bring to its attention any
2049	   copyrights, patents or patent applications, or other proprietary
2050	   rights that may cover technology that may be required to implement
2051	   this standard.  Please address the information to the IETF at
2052	   ietf-ipr@ietf.org.

2054	Acknowledgment

2056	   Funding for the RFC Editor function is provided by the IETF
2057	   Administrative Support Activity (IASA).