On Fri, Jan 20, 2017 at 1:21 PM, Dirk-Willem van Gulik <[email protected]> wrote: > RFC 7231 has retired Content-MD5. > > Fair game to remove it from -trunk - or make it squeek 'debrecated' at WARN > or INFO and retire it at the next minor release ?
Removing what, precisely? Content-MD5 headers aren't implemented in trunk. Note that https://www.rfc-editor.org/rfc/rfc7616.txt still provides for MD5 hashed digest auth keys. So removing this altogether will break mod_auth_digest in a manner that breaks existing user auth.
