Re: Client requesting authentication on server & thomson-httpbis-catch

On 31/03/2014 4:18 p.m., Mark Nottingham wrote:
> 
> On 26 Mar 2014, at 7:34 pm, henry.story wrote:
> 
>> What was the situation in which you could see an advantage of putting a hash of the cert in the header ? ( which header?)
> 
> I was thinking that it was necessary to make caching work. However, I didn’t think it through — if you’re using HTTP auth, shared caches won’t store it anyway.
> 

Except for those must-revalidate cases where caching of auth'd responses
is permitted. Which should not be an issue either.

Amos

Received on Monday, 31 March 2014 04:41:05 UTC