RE: Authorization Header vs. ChallengeResponse

his clarifies! Best regards, Jerome -- http://www.restlet.org http://twitter.com/#!/jlouvel -Message d'origine- De : ale...@milowski.com [mailto:ale...@milowski.com] De la part de Alex Milowski Envoyé : jeudi 20 octobre 2011 02:39 À : discuss@restlet.tigris.org Objet : Authorization Hea

Authorization Header vs. ChallengeResponse

I keep finding the choice of "ChallengeResponse" for the Authorization header a poor match. If you look at some of the OAuth specifications, you see uses like the "Bearer" credential [1] where the Authorization header contains an access token. There is no regular match between a "ChallengeRequest