W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2010

Re: disallowing userinfo in http and https URIs

From: Julian Reschke <julian.reschke@gmx.de>
Date: Wed, 28 Jul 2010 10:30:03 +0200
Message-ID: <4C4FEA8B.1020502@gmx.de>
To: Alexey Melnikov <alexey.melnikov@isode.com>
CC: Mark Baker <mark@zepheira.com>, "Roy T. Fielding" <fielding@gbiv.com>, HTTP Working Group <ietf-http-wg@w3.org>
On 28.07.2010 10:21, Alexey Melnikov wrote:
> ...
> Either this, or clarify that the userinfo part is not allowed in HTTP
> (but maybe used in other contexts).
> It would probably be safer to prohibit userinfo use on the wire.
> ...

On the wire it would be in a different place anyway, right?

As far as I understand, this is really about the URI syntax only...
Received on Wednesday, 28 July 2010 08:30:42 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:24 GMT