- From: Bjoern Hoehrmann <derhoermi@gmx.net>
- Date: Sat, 10 Jun 2006 16:05:26 +0200
- To: Julian Reschke <julian.reschke@gmx.de>
- Cc: public-webapi@w3.org
* Julian Reschke wrote: >>> I don't understand this statement, because I'm not sure why XHR would >>> care at all what the verb is. HTTP fully defines how message >>> transmission works independently of the verb (with the single notable >>> exception being the responses to HEAD). >> >> That depends on how much magic you add, like automatically following >> redirects or automatically responding to authentication challenges. >I'm not sure about authentication challenges? Where's the dependency on >the actual method? The point is just that XHR does more than message transmission, so even if message transmission does not depend on the verb, certain features of XHR might. But since you ask, it might well be that a user agent vendor decides that users must confirm passing authentication information for unsafe requests, but pass the information automatically for safe ones. Currently implementations disagree whether and when confirmation is re- quired. But that's for a different thread really. -- Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de Weinh. Str. 22 · Telefon: +49(0)621/4309674 · http://www.bjoernsworld.de 68309 Mannheim · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/
Received on Saturday, 10 June 2006 14:05:37 UTC