- From: TianLinyi <tianlinyi@huawei.com>
- Date: Mon, 14 Nov 2011 05:02:40 +0000
- To: Mark Nottingham <mnot@mnot.net>, Randall Gellens <rg+ietf@qualcomm.com>
- Cc: Jan Algermissen <algermissen1971@me.com>, Apps Discuss <apps-discuss@ietf.org>, httpbis Group <ietf-http-wg@w3.org>
Hi, Mark I am wondering the relationship betwen "511 Network Authentication Required" and " 401 Unauthorized". 401 is a general status code for requiring user authentication. However "requiring network access" may be part of the sementics of user authentication. How to clearly distinguish them? In the description it mentioned the following sentence: The response representation SHOULD indicate how to do this; e.g., with an HTML form for submitting credentials. However it is clear how to do this? Will it be leaving to implementation (e.g. the parameters included in the HTML form)? Cheers, Linyi On 13/11/2011, at 8:33 PM, Randall Gellens wrote: > In today's APPAREA/APPSWG session, Mark briefly talked about this > draft, and when mentioning the 511 code, said that his intent was not > to encourage captive portal interception as a technique for network > access authorization or authentication, but rather to reduce the harm > that such mechanisms cause. > > I agree with all these goals, but in looking at > draft-nottingham-http-new-status-03.txt, I wonder if it would be > helpful to add some text in section 6 that mentions some of the ill > effects of the method, and mentions or points to a few better > alternative mechanisms for authorizing network access. > > -- > Randall Gellens > Opinions are personal; facts are suspect; I speak for myself only > -------------- Randomly selected tag: --------------- > Hofstadter's Law: > It always takes longer than you expect, even when you take > Hofstadter's Law into account. -- Mark Nottingham http://www.mnot.net/ _______________________________________________ apps-discuss mailing list apps-discuss@ietf.org https://www.ietf.org/mailman/listinfo/apps-discuss
Received on Monday, 14 November 2011 05:04:30 UTC