[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fwd: A modest proposal for an OpenSocial RESTful API]

To: John Panzer <jpanzer@xxxxxxx>
Subject: Re: [Fwd: A modest proposal for an OpenSocial RESTful API]
From: "Roy T. Fielding" <fielding@xxxxxxxx>
Date: Sun, 2 Mar 2008 18:18:16 -0800
Cc: Atom Publishing Protocol <atom-protocol@xxxxxxx>, opensocial-and-gadgets-spec@xxxxxxxxxxxxxxxx
In-reply-to: <47C5205F.1070000@xxxxxxx>
List-archive: <http://www.imc.org/atom-protocol/mail-archive/>
List-id: <atom-protocol.imc.org>
List-unsubscribe: <mailto:atom-protocol-request@imc.org?body=unsubscribe>
References: <47C5205F.1070000@xxxxxxx>
Sender: owner-atom-protocol@xxxxxxxxxxxx


On Feb 27, 2008, at 12:33 AM, John Panzer wrote:

FYI -- Thought that some people on this list might be interested inthis, both as a usage of Atom and related topics such as batchingand patching.

As has been discussed before, batching (tunneling multiple requestswithina single POST instead of just using HTTP pipelining) is evil. Don'tdo it.It duplicates all of HTTP within HTTP, squares the complexity ofimplementation,

and absolutely guarantees that you will have security holes.

If you are worried about the 2616 requirement that non-idempotentrequests

must not be pipelined, then just ignore it -- you are ignoring it anyway
by sending a pipeline within a multipart.

....Roy

Follow-Ups:
- Re: [Fwd: A modest proposal for an OpenSocial RESTful API]
  - From: James M Snell

References:
- [Fwd: A modest proposal for an OpenSocial RESTful API]
  - From: John Panzer

Prev by Date: Re: schemas for collection entries
Next by Date: Re: [Fwd: A modest proposal for an OpenSocial RESTful API]
Previous by thread: [Fwd: A modest proposal for an OpenSocial RESTful API]
Next by thread: Re: [Fwd: A modest proposal for an OpenSocial RESTful API]
Index(es):
- Date
- Thread