W3C home > Mailing lists > Public > public-webapi@w3.org > May 2006

Re: Issue: Authentication Credentials

From: Anne van Kesteren <annevk@opera.com>
Date: Tue, 16 May 2006 19:24:09 +0200
To: "Mark Nottingham" <mnot@yahoo-inc.com>
Cc: "Web APIs WG (public)" <public-webapi@w3.org>
Message-ID: <op.s9nllpfh64w2qv@id-c0020.oslo.opera.com>

On Fri, 21 Apr 2006 18:33:28 +0200, Mark Nottingham <mnot@yahoo-inc.com>  
wrote:
> If the browser is already sending credentials for a particular  
> protection space (to use RFC2617 terminology), XHR SHOULD send them when  
> accessing resources in the same space. It'll need to define precedence  
> between these and those explicitly used in a call (which would override,  
> I presume).
>
> In other words, if I'm already logged into a site, XHR should reuse my  
> credentials, rather than ask me for them again.

I assume this has been solved by your integrated rewrite of send()? It  
seems to mention this although a bit more abstract in the part about  
authentication.


-- 
Anne van Kesteren
<http://annevankesteren.nl/>
<http://www.opera.com/>
Received on Tuesday, 16 May 2006 17:47:00 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:55 GMT