On Thu, 03 Feb 2011 17:42:34 +0100, Tim tim-resea...@sentinelchicken.org
wrote:
Anne, others,
Do you have any opinions on this?
There have recently been some good discussions around HTTP
authentication on IETF mailing lists, and I think having some
flexibility here would be useful in the long
Anne, others,
Do you have any opinions on this?
There have recently been some good discussions around HTTP
authentication on IETF mailing lists, and I think having some
flexibility here would be useful in the long run.
tim
On Thu, Jan 06, 2011 at 08:50:00AM -0800, Tim wrote:
Hello,
It
Tim,
Probably worth noting that HTTP+TLS with client side certificates
already works over XHR, when the request for a cert comes in the
browsers handle it in the usual way.
That said, this would be /very/ useful, in fact we were just discussing
this today, where I too mentioned TLS and SRP
Hello,
It occurred to me recently that the way in which the current draft
XMLHttpRequest standard is written could be extended to allow for
other forms of authentication at lower layers. In particular, it
should be possible to allow for the use of pre-shared key
authentication (RFC 4279) or for