- From: Dave Kristol <dmk@allegra.att.com>
- Date: Tue, 7 May 96 12:00:54 EDT
- To: hallam@vesuvius.ai.mit.edu
- Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com
hallam@vesuvius.ai.mit.edu wrote: > Dave writes: > > >This is functionally equivalent to Netscape's cookie scheme, a > >derivative of which is being standardized as an HTTP "state management" > >proposal. For the current set of documents, see > >http://www.research.att.com/~dmk/cookie.html. > > I'm not so sure that this is the case, was the proposal for an authentication > token to be created by the client or by the server? If the token is created by > the client then there is nothing to distinguish this scheme from cookies. I hope you meant "created by the *server*", in which case I agree. Dave
Received on Tuesday, 7 May 1996 09:14:37 UTC