- From: Larry Masinter <masinter@parc.xerox.com>
- Date: Fri, 2 May 1997 11:18:10 PDT
- To: James D Myers <jd_myers@ccmail.pnl.gov>
- CC: w3c-dist-auth@w3.org, "Gregory J. Woodhouse" <gjw@wnetc.com>
How can an interoperable client deal with an access control policy if it doesn't have an implementation that fits the structure? I think the answer is "policy is embedded in forms". The "access control policy" for a resource is linked metadata, but there is also a method for associating an access control policy with a realm. We need to define the realm, too. Larry
Received on Friday, 2 May 1997 14:28:46 UTC