W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > September to December 1997

Re: Proposal for new HTTP 1.1 authentication scheme

From: Roy T. Fielding <fielding@kiwi.ics.uci.edu>
Date: Tue, 09 Dec 1997 17:41:53 -0800
To: Paul Leach <paulle@microsoft.com>
Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
Message-Id: <9712091724.aa28572@paris.ics.uci.edu>
>Sorry. Then the only fix is to say that proxies can't add Date when Digest
>is in use.

Date should not be part of the digest -- it gets updated at times
when the entity does not change (think 304).  Likewise, the
Content-Length header field should not be part of the digest;
instead, include the actual value for the size of the entity-body.

Keep in mind the distinction between general-header fields indicating
properties of the message, and entity-header fields indicating properties
of the payload of the message.  Aside from HEAD responses, Content-Length
indicates the size of the message-body and not the entity-body.

....Roy
Received on Tuesday, 9 December 1997 17:28:09 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:33:04 EDT