Ambiguity parsing WWW-Authenticate value contains the following

WWW-Authenticate: Newauth realm="apps", type=1,
                       title="Login to \"apps\"", Basic realm="simple"

This is meant to represent two challenges.

How is a parser supposed to differentiate between different challenges and
the parameters belonging to the previous challenge? I can only assume that
challenges are identified as a key without a value, whereas parameters must
have a value. Is that correct?

If so, you might want to mention this explicitly in the specification
because it's not immediately obvious.


View this message in context:
Sent from the - ietf-http-wg mailing list archive at

Received on Wednesday, 9 July 2014 04:33:10 UTC