base 64 blobs allow any sort of arbitrary binary structure to be sent. Therefore anything can be described by a single one. On 28/07/2011 1:06 p.m., Thomas Maslen wrote: > On Wed 2011-07-27 17:45 +0700 Manger, James H<James.H.Manger@team.telstra.com> wrote: > [...] >> That is, I think a<b64> blob should only be allowed when it is the first (and only) parameter. > I agree, both for challenges and for credentials. > > If some auth-scheme needs multiple base64 blobs it should use #auth-param > (i.e. key-value pairs, presumably with quoted-string values) to convey them. > > I agree that NTLM, Negotiate, and even Nego2 need only a single base64 blob; > they do not need multiple base64 blobs. > -- Adrien de Croy - WinGate Proxy Server - http://www.wingate.com WinGate 7 beta out now - http://www.wingate.com/getlatest/Received on Thursday, 28 July 2011 01:12:20 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:46 GMT