Feedback on REST-GSS

I've gotten some valuable feedback on REST-GSS off-list.  I'll be
submitting a new I-D as a result.  The main changes will be:

 - use the 401 Unauthorized code and WWW-Authenticate response
   header to convey the list of authentication mechanisms supported,
   the list of channel binding types supported, and such things;

 - drop the use of well-known URIs.


Received on Wednesday, 11 July 2012 04:39:48 UTC