I think that the basic authentication code should short-circuit once a
connection has been authenticated once. It'll save a hash lookup & base 64
deciding at the minimum.
The NTLM code does this - it has to as IE only presents the NTLM auth header
while the connection is unauthenticated.
Does this conflict with rfc 2616 or 2617? or the http/1.0 specs?
If it doesn't conflict I'll put this into the NTLM tree (as I already have
the framework to do it with a single line :-])
If I get time I'll also submit a patch against HEAD.
I'm about to go read rfc 2616&7 again.
Rob
Received on Sat Oct 14 2000 - 19:11:26 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:12:42 MST