- From: Dave Kristol <dmk@allegra.att.com>
- Date: Thu, 27 Apr 95 10:04:06 EDT
- To: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com, wmperry@spry.com
Bill Perry said: > Mike Cowlishaw writes: > > Good to see it works. Question: why is the 'opaque' field part of > > the WWW-Authenticate: header? It would seem to be generally useful, > > independent of authentication, and therefore perhaps merits a header > > of its own: > > > > Opaque: 34e1....3c81 > > I wondered that myself. It would dovetail nicely with either the > 'Session-ID' or 'Cookie' proposals. But you might want a separate Opaque: value for each of Session-ID and WWW-Authenticate:. Better to leave them as attributes of a particular header, IMO. Dave Kristol
Received on Thursday, 27 April 1995 07:10:37 UTC