- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Wed, 27 Jul 2011 19:43:46 +0200
- To: HTTP Working Group <ietf-http-wg@w3.org>
Hi,
James Manger found this earlier, and I just rediscovered that we have an
inconsistency between challenge and credentials. Right now we have:
credentials = auth-scheme ( token
/ quoted-string / #auth-param )
...which doesn't allow white space between the scheme name and the
credentials.
Going back in history, RFC 2617 has:
challenge = auth-scheme 1*SP 1#auth-param
and
credentials = auth-scheme #auth-param
(which depends on implied LWS).
Does /anybody/ remember why RFC 2617 treats these differently? Was this
intentional?
Best regards, Julian
Received on Wednesday, 27 July 2011 17:44:28 UTC