W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > September to December 1997

Re: REAUTHENTICATION REQUIRED

From: Scott Lawrence <lawrence@agranat.com>
Date: Thu, 20 Nov 1997 16:47:57 -0500
Message-Id: <199711202147.QAA05472@devnix.agranat.com>
To: HTTP Working Group <http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com>
  I think that the choice of a credentials timeout may have been an
  unfortunate one, and think that the example should be omitted from
  the text in the standard.

  One has only to read the CGI newsgroup or ask people who develop
  applications to run over the Web to know how often people want this
  - they want to be able to explicitly flush credentials.  It is an
  easy thing to do.  Yes, it won't work with old browsers, but neither
  will a number of other 1.1 innovations; we should just do the right
  thing now and get on with it.  (There, I got my 2 cents in before
  7EST :-)

--
Scott Lawrence           EmWeb Embedded Server       <lawrence@agranat.com>
Agranat Systems, Inc.        Engineering            http://www.agranat.com/
Received on Thursday, 20 November 1997 13:48:21 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:33:03 EDT