Re: persistent connections and basic authentication

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Mon, 16 Oct 2000 21:29:49 +0200

Robert Collins wrote:
>
> I think that the basic authentication code should short-circuit once a
> connection has been authenticated once. It'll save a hash lookup & base 64
> deciding at the minimum.

It is not allowed to and it is here the NTLM authentication violates the
specifications.

RFC2616 says that authentication is per request, not per connection.

This also affects the rule that persistense is on a hop-by-hop basis,
not per client connection.

/Henrik
Received on Mon Oct 16 2000 - 13:35:50 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:12:43 MST