Re: [community] from W3C….Fwd: Proposal: "User" header field from Torsten Lodderstedt on 2013-07-19 (public-rww@w3.org from July 2013)

From: Torsten Lodderstedt <torsten@lodderstedt.net>
Date: Fri, 19 Jul 2013 10:14:54 +0200
To: Kingsley Idehen <kidehen@openlinksw.com>
CC: George Fletcher <gffletch@aol.com>,Melvin Carvalho <melvincarvalho@gmail.com>,"board@openid.net" <board@openid.net>,public-rww <public-rww@w3.org>,OpenID Specs Mailing List <specs@openid.net>
Message-ID: <58653cc8-cb68-4d29-9460-8c3d9c7f71d4@email.android.com>

Hi,

could you please shed some light on the use case for the User field? What entity sets the value, what entitity uses it for what purpose? 

Regards,
Torsten.



Kingsley Idehen <kidehen@openlinksw.com> schrieb:

>On 7/18/13 1:38 PM, Torsten Lodderstedt wrote:
>> I fully agree with George und would like to add: why don't you just 
>> use the authorization header to send identity data/credentials/tokens
>
>> to the server in order to allow for access control?
>
>This is already possible. The requirement here stems from the fact that
>
>"From:" is bound specifically to mailto: scheme URIs (Uniform Resource 
>Identifiers). We are looking to "User:" to be the superClass of "From:"
>
>which is basically URI scheme agnostic. That's it.
>
>[SNIP]
>
>-- 
>
>Regards,
>
>Kingsley Idehen 
>Founder & CEO
>OpenLink Software
>Company Web: http://www.openlinksw.com
>Personal Weblog: http://www.openlinksw.com/blog/~kidehen
>Twitter/Identi.ca handle: @kidehen
>Google+ Profile: https://plus.google.com/112399767740508618350/about
>LinkedIn Profile: http://www.linkedin.com/in/kidehen

Received on Friday, 19 July 2013 08:15:26 UTC