W3C home > Mailing lists > Public > public-webapi@w3.org > March 2007

Re: [XMLHttpRequest] last call comments

From: Bjoern Hoehrmann <derhoermi@gmx.net>
Date: Sun, 04 Mar 2007 21:11:59 +0100
To: Julian Reschke <julian.reschke@gmx.de>
Cc: web API <public-webapi@w3.org>
Message-ID: <1p9mu2php5pr7qlmebtj4soerp7k2n26po@hive.bjoern.hoehrmann.de>

* Julian Reschke wrote:
>"The syntax for the user or password arguments depends on the scheme 
>being used. If the syntax for either is incorrect per the production 
>given in the relevant scheme user agents must throw a SYNTAX_ERR 
>exception. The user and password must be encoded using the encoding 
>specified by the scheme. If the scheme fails to specify an encoding they 
>must be encoded using UTF-8."
>
>I think this has been mentioned before: does this reflect what today's 
>implementations do for basic and digest?

Could you be more specific? Firefox for example will mangle non-ascii
user names and passwords in strange and harmful ways, so strictly the
answer to your question is "no" but I don't see this as a problem.
-- 
Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
Weinh. Str. 22 · Telefon: +49(0)621/4309674 · http://www.bjoernsworld.de
68309 Mannheim · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/ 
Received on Sunday, 4 March 2007 20:12:10 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:57 GMT