[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Speifying mechanisms [was RE: XML2004Hackathon]

To: Mark Birbeck <mark.birbeck@xxxxxxxxxx>
Subject: Re: Speifying mechanisms [was RE: XML2004Hackathon]
From: Greg Stein <gstein@xxxxxxxxxx>
Date: Wed, 27 Oct 2004 11:09:24 -0700
Cc: atom-syntax@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/atom-syntax/mail-archive/>
List-id: <atom-syntax.imc.org>
List-unsubscribe: <mailto:atom-syntax-request@imc.org?body=unsubscribe>
References: <> <>
Sender: owner-atom-syntax@xxxxxxxxxxxx
User-agent: Mutt/1.5.5.1i

On Wed, Oct 27, 2004 at 11:18:06AM +0100, Mark Birbeck wrote:
>...
> > That's what a status code of 401 and the 
> > WWW-Authenticate: header are for.
> 
> Yes, but that's incredibly long-winded ... you have to fail before you know
> how to succeed.

But that is exactly how HTTP is specified, and how it has worked for many
years. I don't see the need to redesign that or come up with other
solutions. Note that some clients have a way to cache authentication
information and they'll proactively supply it to the server when they
connect (which saves the round-trip you mention).

IMO, I don't see this as a problem. This is simply how HTTP works.

>...
> (Note also that WWW-Authenticate is protocol dependent, which -- so far --
> much of Atom is not.)

The Atom publishing protocol *is* HTTP specific. Completely. I haven't
heard of any desire nor attempt to deal with protocols other than HTTP. So
I'd suggest that being "specific" is not a problem.

Cheers,
-g

Follow-Ups:
- RE: Speifying mechanisms
  - From: Mark Birbeck

References:
- Re: XML2004Hackathon
  - From: Joe Gregorio
- Speifying mechanisms [was RE: XML2004Hackathon]
  - From: Mark Birbeck

Prev by Date: Re: Speifying mechanisms
Next by Date: RE: Speifying mechanisms
Previous by thread: Re: Specifying mechanisms
Next by thread: RE: Speifying mechanisms
Index(es):
- Date
- Thread