W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2011

part 1 section 4.1.2 - authority form

From: Amos Jeffries <squid3@treenet.co.nz>
Date: Tue, 16 Aug 2011 22:39:31 +1200
Message-ID: <4E4A48E3.5000808@treenet.co.nz>
To: ietf-http-wg@w3.org
I have just run up against how Firefox are sending Host: in proxied 
HTTPS requests.

  CONNECT example.com:443 HTTP/1.1
  Host: example.com

Part 2 on CONNECT appears to document this as wrong, but uses port 80 
which is a little bit ambiguous given that CONNECT are usually used for 443.
  Am I right in assuming that it means the port is always required on 
CONNECT request Host: headers? (despite the obvious redundancy).

While looking it up I also came across a bit of a contradiction in part 
1 section "4.1.2 request target".

It has a one liner on the use of authority:

   The "authority form" is only used by the CONNECT request method

the following paragraph contains a MUST which contradicts that statement:

   the authority component MUST be transmitted in a Host header field

I'm thinking the wording there needs a small tweak to bring them into line:

  The "authority form" is only used by the CONNECT request method and 
Host: header.

Received on Tuesday, 16 August 2011 10:40:12 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:10:58 UTC