Hi Marcel,
Is it conforming to the REST philosophy to use key/values in the URL?
http://www.x.com/serv/location?user=joe&passwd=bla&lat=4.132&lon=8.4559
Passwords should not be in URLs, please, please, because everyone could
read it, who get's the link, or a colleague who sits behind you.
And the URI is also not the place for user names.
and further, how can I force a POST when i copy/paste the above
into my Firefox url field?
IFAIK there is no way, the browser use a GET, if you insert an URI in
the uri field.
As the above does an upload of lat/lon it should be a POST, shouldn't it?
right.
And accessing the lat/lon later again:
http://www.x.com/serv/location?user=joe&passwd=bla
this should be a GET as I want returned the lat/lon from before.
no usernames and passwords in URIs (see above)
And finally, why does Firefox remove the credentials in this case:
http://joe:[EMAIL PROTECTED]/serv/location?lat=4.132&lon=8.4559
"[EMAIL PROTECTED]@..." is deprecated, and should be ignored by applicatons;
see http://tools.ietf.org/html/rfc3986#section-3.2.1
best regards
Stephan
