[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Specifying mechanisms

To: Mark Birbeck <mark.birbeck@xxxxxxxxxx>
Subject: Re: Specifying mechanisms
From: Robert Sayre <mint@xxxxxxxxxxxxxxx>
Date: Wed, 27 Oct 2004 10:51:50 -0400
Cc: "'Joe Gregorio'" <joe.gregorio@xxxxxxxxx>, "'atom syntax list'" <atom-syntax@xxxxxxx>
In-reply-to: <>
List-archive: <http://www.imc.org/atom-syntax/mail-archive/>
List-id: <atom-syntax.imc.org>
List-unsubscribe: <mailto:atom-syntax-request@imc.org?body=unsubscribe>
References: <>
Reply-to: mint@xxxxxxxxxxxxxxx
Sender: owner-atom-syntax@xxxxxxxxxxxx
User-agent: Mozilla Thunderbird 0.8 (Windows/20040913)

Mark Birbeck wrote:


I can ask a server for a list of entries, and the server will give me both
the list, and a set of URLs with which I can interact with those entries in
the list. My suggestion is that we really need to have some additional
information from the server to tell us what security information is required
when we interact with those URLs. Ideally we would have one piece of
metadata for each URL, so that not only can some 'blog service' have its
security mechanism set, but each entry could also be accessed with a
different mechanism.

I disagree that we "really need" it. The requirement that each entry be accessible with a different authentication mechanism, yet remain under one user's control seems outlandish to me. Wouldn't most people just pick a single scheme that allowed flexible definitions of protection spaces, such as HTTP Digest?

Robert Sayre

References:
- RE: Speifying mechanisms
  - From: Mark Birbeck

Prev by Date: Re: Speifying mechanisms
Previous by thread: Re: Speifying mechanisms
Next by thread: Re: XML2004Hackathon
Index(es):
- Date
- Thread