Op vrijdag 10 juni 2011 19:36:15 schreef u:
On 10/06/2011, at 4:23 PM, Dave Kok wrote:
Ultimately a user-agent must use whatever
method required by the server not the method defined by the author. A
user- agent can transparently find out which method to use with a HEAD
request
Op vrijdag 10 juni 2011 16:07:01 schreef u:
On 10/06/2011, at 2:12 PM, Dave Kok wrote:
I very much like the header type as a generic feature but would suggest
not using it for HTTP authorization. As for user-agents to support it
through forms have to use special processing anyways. So I
Op 10-03-11 20:02:26 schreef Bjartur Thorlacius:
On 3/3/11, Dave Kok upda...@davekok.net wrote:
Here is a more formal proposal for Session Management. Hoping to get
more traction.
Your former proposal was very well formed. The only thing I don't see
is a good use case making this proposal
02-03-11 18:42:41 schreef Bjartur Thorlacius:
On 3/2/11, Dave Kok upda...@davekok.net wrote:
Op 02-03-11 13:16:11 schreef Bjartur Thorlacius:
On 3/2/11, Dave Kok upda...@davekok.net wrote:
Op 01-03-11 23:29:26 schreef Ian Hickson:
On Thu, 25 Nov 2010, Dave Kok wrote:
I am still faced
Op 02-03-11 22:11:48 schreef Roger Hågensen:
Method #3:
The server (or serverside script, like PHP or similar) sends the
following to the browser:
header('HTTP/1.0 401 Unauthorized');
header('WWW-Authenticate: Close realm=My Realm');
*PS! the auth stuff is much longer here
Op 03-03-11 12:17:22 schreef Roger Hågensen:
On 2011-03-03 10:44, Dave Kok wrote:
Op 02-03-11 22:11:48 schreef Roger Hågensen:
Method #3:
The server (or serverside script, like PHP or similar) sends the
following to the browser:
header('HTTP/1.0 401 Unauthorized');
header('WWW
of this
proposal. Same for when the user does this by manually navigating or
by following a link.
I would like to extend an open invitation to any implementers to add
this proposal to an experimental build and hear of any findings. Any
feedback from authors would be well appreciated.
--
Dave Kok
Op 01-03-11 23:29:26 schreef Ian Hickson:
On Thu, 25 Nov 2010, Dave Kok wrote:
I am still faced with the fact that there is no way to clear the
HTTP
authentication credentials cache.
To some extent that's up to the browser. It logs you in, it can offer
the ability to log you out.
You can
Op 02-03-11 13:16:11 schreef Bjartur Thorlacius:
On 3/2/11, Dave Kok upda...@davekok.net wrote:
Op 01-03-11 23:29:26 schreef Ian Hickson:
On Thu, 25 Nov 2010, Dave Kok wrote:
I am still faced with the fact that there is no way to clear the
HTTP authentication credentials cache.
To some extent
that
such a consideration would not be an obstacle.
I would be interested to know if such a feature would be worth
considering. Looking forward to comments and possibly a discussion.
Regards,
Dave Kok
10 matches
Mail list logo
