- From: Robert O'Callahan <robert@ocallahan.org>
- Date: Mon, 2 Jul 2007 22:28:24 +1200
On 7/2/07, Robert Sayre <sayrer at gmail.com> wrote: > > Basically, I think offline caches should respect the Vary: HTTP > header, and maybe more. Applications will need to do this right > anyway, if they want to function correctly in the presence of ISP HTTP > proxies (AOL, TMobile, etc), corporate firewalls, and server-side > stuff like Citrix Netscalers. No they don't. For example, they can just use Cache-Control:private to bypass those caches. That's what GMail does. To me, it looks like the caching mechanisms in HTTP 1.1 can satisfy > this requirement. I think Rob is correct that it adds substantial > complexity, but it is already required. In what way is it already required? Browsers are not required to store multiple resources for the same URI. We don't; we just use Vary to help (in)validate the resource we've got. So how would you use Vary here, anyway? Serve pages with "Vary: Cookie"? I guess that could work, but app authors would have to pass no cookies except for the session cookie. That could be difficult. Using an HTTP response header to specify how a URI can map to multiple resources is a good idea, though. It avoids ambiguities and offers a simple default. If we have to have that feature, this seems like a good way to do it. Rob -- "Two men owed money to a certain moneylender. One owed him five hundred denarii, and the other fifty. Neither of them had the money to pay him back, so he canceled the debts of both. Now which of them will love him more?" Simon replied, "I suppose the one who had the bigger debt canceled." "You have judged correctly," Jesus said. [Luke 7:41-43] -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.whatwg.org/pipermail/whatwg-whatwg.org/attachments/20070702/8cd941f3/attachment.htm>
Received on Monday, 2 July 2007 03:28:24 UTC