- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Wed, 19 Sep 2018 18:24:52 +0200
- To: Adam Roach <adam@nostrum.com>, The IESG <iesg@ietf.org>
- Cc: draft-ietf-httpbis-expect-ct@ietf.org, Mark Nottingham <mnot@mnot.net>, httpbis-chairs@ietf.org, ietf-http-wg@w3.org
On 9/13/2018 8:54 AM, Adam Roach wrote: > ... > ยง2.1.3: > >> The "max-age" directive is REQUIRED to be present within an "Expect- >> CT" header field. > > This doesn't appear to be true as stated; or, at least, it is stated in a > somewhat confusing way. A casual reading of this requirement is that an > "Expect-CT" header field is noncompliant if it is missing this directive. > Based on the examples given, the actual requirement here is that a response > that contains an Expect-CT header field MUST contain an Expect-CT header field > with a max-age directive, although that directive does not necessarily need to > appear in each Expect-CT header field. This should probably be clarified. > ... That's another case where progress on <https://github.com/httpwg/http-core/issues/111> would help. This plagues other WG drafts as well. Best regards, Julian
Received on Wednesday, 19 September 2018 16:25:35 UTC