Re: APOP - authentication..

> This document describes a simple authentication scheme for http that uses
> the APOP mechanism as defined in RFC1725 Post Office Protocol - Version 3.

It appears to be a weak subset of the Digest authentication mechanism
already proposed and implemented on many HTTP systems.  I don't see
any reason why APOP can't be mapped into Digest and thus save the client
from having to know more AA schemes than are necessary.

 ...Roy T. Fielding
    Department of Information & Computer Science    (
    University of California, Irvine, CA 92717-3425    fax:+1(714)824-4056

Received on Tuesday, 20 February 1996 08:29:07 UTC