W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2011

Re: best status code for bad auth method

From: Dale Anderson <dra@redevised.net>
Date: Sat, 10 Dec 2011 00:19:12 -0800
Message-ID: <CANNRn6LMvjJMFTJbK0dJHtjiu2gKiY_T5kcZ9Z_wQPC1raGw=w@mail.gmail.com>
To: Adrien de Croy <adrien@qbik.com>
Cc: HTTP Working Group <ietf-http-wg@w3.org>
That most definitely did not occur to us dude

Actually I just had to make a Big Lebowski reference on httpbis to save my
life.

I will say that my intuition is that the 407 would come bearing some
response header indicative of what the client was supposed to make for a
next attempt, that would suffice at least for implementations I am
imagining?

Dale



2011/12/8 Adrien de Croy <adrien@qbik.com>

>
> Hi all
>
> hopefully a quick question...
>
> what is the best response code for a proxy that receives a request with a
> Proxy-Authorization header that specifies a method that is not acceptable
> to the proxy?
>
> another 407?
> 403?  We don't want the client to repeat the request as is...
>
> or do we need a new status code for "auth method not allowed".
>
> Regards
>
> Adrien de Croy
>
> --
> Adrien de Croy - WinGate Proxy Server - http://www.wingate.com
> WinGate 7 is released! - http://www.wingate.com/**getlatest/<http://www.wingate.com/getlatest/>
>
>
>
Received on Saturday, 10 December 2011 08:19:41 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:51 GMT