Re: comments on draft-ietf-http-authentication-01.txt

Scott Lawrence (lawrence@agranat.com)
Sun, 29 Mar 1998 13:54:23 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Scott Lawrence: "Re: questions regarding draft-ietf-http-authentication-01"
Previous message: Scott Lawrence: "Re: comments on draft-ietf-http-authentication-01.txt"
In reply to: Paul Leach: "RE: comments on draft-ietf-http-authentication-01.txt"

>>>>> "PL" == Paul Leach <paulle@MICROSOFT.com> writes:

>> From: 	Ronald.Tschalaer@psi.ch[SMTP:Ronald.Tschalaer@psi.ch]

>> Also, sending the Authorization header unnecessarily is likely to reduce
>> the cachability of many pages, thereby further increasing the traffic
>> (how many responses currently contain the cache-control directive s-maxage
>> or public? How quickly will this change?).

PL> It is worth adding a note that origin servers that receive requests with
PL> Authorization headers when authorization is not needed SHOULD send back
PL> explicit cache-control directives to allow the page to be cached.

  Our server always sends a cache-control header to any 1.1 request so
  that it is explicit.

  The really interesting question (from our perspective) is 'how soon
  will the proxies and clients use it'?

--
Scott Lawrence           EmWeb Embedded Server       <lawrence@agranat.com>
Agranat Systems, Inc.        Engineering            http://www.agranat.com/

Next message: Scott Lawrence: "Re: questions regarding draft-ietf-http-authentication-01"
Previous message: Scott Lawrence: "Re: comments on draft-ietf-http-authentication-01.txt"
In reply to: Paul Leach: "RE: comments on draft-ietf-http-authentication-01.txt"