W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2011

#309: credentials ABNF missing SP (still using implied LWS?)

From: Julian Reschke <julian.reschke@gmx.de>
Date: Wed, 27 Jul 2011 19:43:46 +0200
Message-ID: <4E304E52.4000807@gmx.de>
To: HTTP Working Group <ietf-http-wg@w3.org> 
Hi,

James Manger found this earlier, and I just rediscovered that we have an 
inconsistency between challenge and credentials. Right now we have:

     credentials = auth-scheme ( token
         / quoted-string / #auth-param )

...which doesn't allow white space between the scheme name and the 
credentials.

Going back in history, RFC 2617 has:

   challenge   = auth-scheme 1*SP 1#auth-param

and

   credentials = auth-scheme #auth-param

(which depends on implied LWS).

Does /anybody/ remember why RFC 2617 treats these differently? Was this 
intentional?

Best regards, Julian
Received on Wednesday, 27 July 2011 17:44:28 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:46 GMT