clarification re. http-signature-nonces: parameter order

Hello,

In the last draft of the HTTP-signatures specification the BNF grammar
which described the signature header has been removed (it was thought
to be unecessary I believe). However, from reading the spec I get the
impression that there is no longer any restriction on the order of the
"auth-param" parameters in the header. This is not necessarily a bad
thing, although it could be clarified more strongly. My question
however is another, because this seems to create a discrepancy with
the last HTTP-signature-nonce specification which includes a BNF
grammar that lists the parameters in a specific order. So, what is the
view of the group re. the HTTP-signature-nonces spec?

Thanks,
Konstantinos

-- 
Konstantinos Koukopoulos
(@ The Long Access Company)
<kk@longaccess.com>
landline: +302117706924 mobile:: +306948630066

Your Data. Safe. For Long.

Received on Thursday, 3 July 2014 13:35:14 UTC