On Mon, Nov 24, 2008 at 10:52 AM, Houser, Rick <[EMAIL PROTECTED]> wrote: > Don't things like SSL client auth (pre-HTTP connection) internally show > as basic auth? Isn't it just as trivial to make a module that does > nothing more than set the auth-type string to basic? A simple contract > (real contract, not EULA garbage), should give you far more protection > than any of this.
Rick, What do you mean by contract? I am coming from a desktop application development background, so there are some basics about web development that I simply don't know;) Sam
