RE: No consensus on draft findings on Unsafe Methods (whenToUseGet-7) from David Orchard on 2002-04-25 (www-tag@w3.org from April 2002)

From: David Orchard <dorchard@bea.com>
Date: Thu, 25 Apr 2002 15:47:32 -0700
To: "'Paul Prescod'" <paul@prescod.net>, <www-tag@w3.org>
Message-ID: <00d201c1ecab$30486c60$540ba8c0@beasys.com>

Paul,

I can't read every message that goes through my mailbox.  In the past 3
months alone, I've gotten an average of 4 emails a day from you (369 to be
exact).  And they are all typically long.  Granted, some are duplicates, but
it's still impossible to read every new message.

However, on this one I went through each of your links listed.  I never
found something along the lines of "If you do POST always, xyz will happen
and they are bad".  You've said that some stuff can't be used, like
XInclude/XSLT/XQuery.  Interesting, but not a killer to me.  I do say this
with sadness as an XInclude editor, BTW.  You've said that GET/PUT/DELETE
can be used.  That's fine, but not as compelling as saying it's broken.
OTOH, Roy says things like, "If you do POST always with embedded methods,
firewalls become totally broken".  He hasn't explained that fully yet, but
I'm looking forward to it.

And as with all RESTafarians, you miss the point that sometimes (gasp)
people want to use SOAP on things other than HTTP.  What some people want to
do is have SOAP be a unified protocol on top of HTTP, SMTP, JMS, MQSeries,
MyFavoriteMessagingProtocol, etc.  TimBL himself has said that the web is
more protocols than HTTP.  So picking just HTTP POST makes software's job a
LOT easier.  We might have an interesting discussion on why a whole bunch of
other protocols is a bad idea, but that is a different issue.

BTW, I did like the article you wrote about Google APIs.

Cheers,
Dave

> -----Original Message-----
> From: www-tag-request@w3.org
> [mailto:www-tag-request@w3.org]On Behalf Of
> Paul Prescod
> Sent: Monday, April 22, 2002 1:48 PM
> To: Keith Moore
> Cc: LMM@acm.org; www-tag@w3.org
> Subject: Re: No consensus on draft findings on Unsafe Methods
> (whenToUseGet-7)
>
>
> Keith Moore wrote:
> >
> > > Leadership is the skill of getting others to follow.
> >
> > yup.  so if you want people to use GET for safe operations,
> you need to
> > explain not only how to do it, but also why using GET
> instead of POST
> > results in some benefit for their trouble.
>
> I have personally done so at length, over and over again:
>
>  * http://www.xml.com/pub/a/2002/02/06/rest.html
>  * http://www.prescod.net/rest/rpc_for_get.html
>  * http://lists.xml.org/archives/xml-dev/200202/msg00909.html
>
> Every day I get emails from people who tell me the completely
> understand
> and have experienced the same benefits without consciously
> understanding
> what they were doing. e.g
>
>  *
> http://www.byte.com/documents/s=1113/byt20010816s0002/0820_udell.html
>
>  Paul Prescod
>
>

Received on Thursday, 25 April 2002 18:51:22 UTC