Re: combining authenticated and anonymous access

Yves Lafon wrote:
> On Thu, 27 Nov 2008, Julian Reschke wrote:
>> An interesting proposal is to continue returning content with status 
>> 200, but to include the WWW-Authenticate header nevertheless. RFC2616 
>> currently is silent about this combination:
> [..]
>> Has anybody tried this before?
> I saw that on a very popular server due to an error in one extension, 
> some browser rendered the pages correctly, some other prompted the user 
> for authentication (despite the 200 status code).

I just tried it with Opera/FF/Safari/IE7/Chrome (latest Windows XP 
version), and none of them prompted the user...

BR, Julian

Received on Friday, 28 November 2008 11:34:04 UTC