W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2023

Re: Call for Adoption: HTTP Unprompted Authentication

From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Tue, 7 Feb 2023 12:32:22 +0000
Message-ID: <7415fe6a-40c4-139b-af35-eb71f6ba5254@cs.tcd.ie>
To: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
Cc: Tommy Pauly <tpauly@apple.com>


On 07/02/2023 05:58, Mark Nottingham wrote:
> Hello everyone,
> We first discussed this draft at IETF114[1],  saw implementation
> interest at IETF115, [2] and finally had some more list discussion.
> This is a Call for Adoption for: 
> https://www.ietf.org/archive/id/draft-schinazi-httpbis-unprompted-auth-01.html

>  Please indicate (in response to this message) whether you support
> adoption, and whether you intend to implement.

I'm not sure.

Can someone clarify whether the u= field amounts
to a super-cookie or not, and if not, how that
might be the case?

If there's a good answer to the above, I'd support
adoption. If not, not.


PS: This has something in common with RFC7486 which was
a (failed;-() attempt at a similar thing. I don't think
this draft needs to refer to that, but if the authors
weren't aware of it, they might be interested.

> The CfA will last for two weeks.
> Cheers,
> 1.
> https://httpwg.org/wg-materials/ietf114/minutes.html#transport-auth-david-schinazi

1. https://httpwg.org/wg-materials/ietf115/minutes.html#unprompted-auth

> -- Mark Nottingham   https://www.mnot.net/

Received on Tuesday, 7 February 2023 12:32:44 UTC

This archive was generated by hypermail 2.4.0 : Tuesday, 7 February 2023 12:32:46 UTC