Re: Regarding Authentication

Ross Patterson (Ross_Patterson@ns.reston.vmd.sterling.com)
Thu, 20 Nov 97 14:32:22 EST

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Larry Masinter: "agenda, HTTP working group, 40th IETF"
Previous message: Ross Patterson: "Re: HTTP/1.1 ISSUE: TRAILER_FIELDS - Proposed Resolution"
Maybe in reply to: Sambasiva Rao: "Regarding Authentication"
Next in thread: Sambasiva Rao: "Re: Regarding Authentication"
Reply: Sambasiva Rao: "Re: Regarding Authentication"

Sambasiva Rao <sams@wipinfo.soft.net> writes:

>Few issues related to Authentication  are as following :
>
>1> In the authentication credentials field defined as following
>
>       credentials  = basic-credentials
>                       |auth-scheme #auth-param
>       in RFC2068.
>
>       a> Does this mean the server must produce parse error if the client
>sends two or more scheme credentials ?

Yes, that's what it means.  There is no provision in HTTP 1.1 for
multiple sets of credentials on an Authorization header.  By extension,
that also means that there is no provision multiple Authorization headers
in a request.

Ross Patterson
Sterling Software, Inc.
VM Software Division

Next message: Larry Masinter: "agenda, HTTP working group, 40th IETF"
Previous message: Ross Patterson: "Re: HTTP/1.1 ISSUE: TRAILER_FIELDS - Proposed Resolution"
Maybe in reply to: Sambasiva Rao: "Regarding Authentication"
Next in thread: Sambasiva Rao: "Re: Regarding Authentication"
Reply: Sambasiva Rao: "Re: Regarding Authentication"