Sure, I kinda agree. I did say "I appreciate the use of the *standard* HTTP Authentication".
I'm torn - I agree that it is already a built-in and proven tech. However other APIs just lets me pass the auth gubbins like any other argument... which is just so damned easy-peasy. J -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom Armitage Sent: 06 December 2006 11:13 To: [email protected] Subject: RE: [backstage] The best WebAPIs Quoting Jason Cartwright <[EMAIL PROTECTED]>: >> For example, for me Flickr's API is great but I love the security of > Del.icio.us. > > Flickr's API is the best I've seen because... [snip] > I didn't like del.cio.us' security. Whilst I appreciate the use of the > standard HTTP Authentication it presented a barrier between me and the > data. I'd rather pass my authentication info as another argument (a la > Flickr) rather than messing with HTTP authentication [1]. Del.cio.us > often runs slowly, which can't be helped by all API requests go over > HTTPS. I'd argue HTTPS isn't really needed anyhow - its not like its > my credit card details we're talking about, just my already public > bookmarks! I'd argue that del.icio.us is doing things right here. You say "messing with HTTP auth"... but really, that's the right way of doing things. HTTP already has an authentication method built into it... implementing one's own is reinventing the wheel, surely? - Sent via the backstage.bbc.co.uk discussion group. To unsubscribe, please visit http://backstage.bbc.co.uk/archives/2005/01/mailing_list.html. Unofficial list archive: http://www.mail-archive.com/[email protected]/ - Sent via the backstage.bbc.co.uk discussion group. To unsubscribe, please visit http://backstage.bbc.co.uk/archives/2005/01/mailing_list.html. Unofficial list archive: http://www.mail-archive.com/[email protected]/
