- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Fri, 28 Nov 2008 12:33:20 +0100
- To: Yves Lafon <ylafon@w3.org>
- CC: HTTP Working Group <ietf-http-wg@w3.org>
Yves Lafon wrote: > > On Thu, 27 Nov 2008, Julian Reschke wrote: > >> An interesting proposal is to continue returning content with status >> 200, but to include the WWW-Authenticate header nevertheless. RFC2616 >> currently is silent about this combination: > [..] > >> Has anybody tried this before? > > I saw that on a very popular server due to an error in one extension, > some browser rendered the pages correctly, some other prompted the user > for authentication (despite the 200 status code). I just tried it with Opera/FF/Safari/IE7/Chrome (latest Windows XP version), and none of them prompted the user... BR, Julian
Received on Friday, 28 November 2008 11:34:04 UTC