- From: Mark Nottingham <mnot@mnot.net>
- Date: Fri, 16 Mar 2012 19:53:18 +1100
- To: HTTP Working Group <ietf-http-wg@w3.org>
2.1 Challenge and Response - "The user agent MUST choose to use one of the challenges with the strongest auth-scheme it understands..." What does "strongest" mean here? Should we have an index of auth scheme strength as a registry field? This may seem like nit-picking, but we place a MUST against it. -- Mark Nottingham http://www.mnot.net/
Received on Friday, 16 March 2012 08:53:48 UTC