W3C home > Mailing lists > Public > public-webapi@w3.org > June 2006

Re: Extension HTTP methods

From: Bjoern Hoehrmann <derhoermi@gmx.net>
Date: Sat, 10 Jun 2006 16:05:26 +0200
To: Julian Reschke <julian.reschke@gmx.de>
Cc: public-webapi@w3.org
Message-ID: <p1kl829j0cqvbamrvtr1h7ba35u1fdd6lq@hive.bjoern.hoehrmann.de>

* Julian Reschke wrote:
>>> I don't understand this statement, because I'm not sure why XHR would 
>>> care at all what the verb is. HTTP fully defines how message 
>>> transmission works independently of the verb (with the single notable 
>>> exception being the responses to HEAD).
>> 
>> That depends on how much magic you add, like automatically following
>> redirects or automatically responding to authentication challenges.

>I'm not sure about authentication challenges? Where's the dependency on 
>the actual method?

The point is just that XHR does more than message transmission, so even
if message transmission does not depend on the verb, certain features of
XHR might. But since you ask, it might well be that a user agent vendor
decides that users must confirm passing authentication information for
unsafe requests, but pass the information automatically for safe ones.
Currently implementations disagree whether and when confirmation is re-
quired. But that's for a different thread really.
-- 
Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
Weinh. Str. 22 · Telefon: +49(0)621/4309674 · http://www.bjoernsworld.de
68309 Mannheim · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/ 
Received on Saturday, 10 June 2006 14:05:37 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:55 GMT