- From: James M Snell <jasnell@gmail.com>
- Date: Fri, 26 Apr 2013 20:39:04 -0700
- To: Martin Thomson <martin.thomson@gmail.com>
- Cc: "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
To be honest, the whole persistent settings thing gives me the willies, particularly given that SETTINGS as defined currently are generally specific to individual connections. If I'm on the road and on my phone connected temporarily to a free wifi access point, I don't necessarily want that access point being able to tell my phone to persistently store some piece of data that will never be used anywhere else... Not to mention the inherent privacy concerns... On Fri, Apr 26, 2013 at 8:06 PM, Martin Thomson <martin.thomson@gmail.com> wrote: > Given that persisted settings are at risk, I think that we can defer > addressing this one. > > (I'd say that once is enough and that persisted settings need only be > returned at connection establishment time, but that's not the only > thing we need to address with persistent settings, I think.) > > On 26 April 2013 14:28, James M Snell <jasnell@gmail.com> wrote: >> One bit that's not clear in the current draft... >> >> When the server asks the client to persist a setting, is the client >> required to return that setting in EVERY subsequent SETTINGS frame it >> sends to the server until the setting is cleared or is it only >> required to send the persisted settings once when a new session is >> established (i.e. in the client session header?) >>
Received on Saturday, 27 April 2013 03:39:50 UTC