- From: Daniel Stenberg <daniel@haxx.se>
- Date: Mon, 27 Jan 2020 15:24:07 +0100 (CET)
- To: Rick van Rein <rick@openfortress.nl>
- cc: James Fuller <jim@webcomposite.com>, Austin Wright <aaa@bzfx.net>, "HTTPbis WG (IETF)" <ietf-http-wg@w3.org>
On Mon, 27 Jan 2020, Rick van Rein wrote: > How shocking would it be to current usage of the Basic pattern to use an > explicit, empty password? Several other browsers use "foo:@localhost" for > Basic if they want to avoid popups. I'm not suggesting that curl's way of treating this information is the golden standard or anything neither for URI parsing nor HTTP headers. I'm just providing datapoints showing this is a tough change. (curl has supported this URI style since 2003) -- / daniel.haxx.se
Received on Monday, 27 January 2020 14:24:15 UTC