W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2013

Re: Authentication over HTTP

From: Nicolas Mailhot <nicolas.mailhot@laposte.net>
Date: Wed, 17 Jul 2013 13:13:02 +0200
Message-ID: <4dadb2a6cb2ea3d9e96a680a26c09480.squirrel@arekh.dyndns.org>
To: "'HTTP Working Group'" <ietf-http-wg@w3.org>


>> 2) "HTTP auth is broken". Aka the headers dont let me login user X to
>> proxy A
>> and proxy B at the same time, in the same chain, with different
>> credentials
>> all controlled by user X ... seem to be making a few wrong assumptions
>> about
>> how HTTP works there. Go away and do (1) instead the user-application ha
>> sa
>> lot more control over end-to-end pathways in application layer.
>>
>> What am I missing?

That we have standards to permit interoperability, and go away and do it
elsewhere is the perfect interop killer?

-- 
Nicolas Mailhot
Received on Wednesday, 17 July 2013 11:13:32 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:14 UTC