Comments on: HTML 5: Integrating HTTP authentication with HTML forms http://ajaxian.com/archives/integrating-http-authentication-with-html-forms Cleaning up the web with Ajax Thu, 09 Feb 2012 06:55:33 +0000 hourly 1 http://wordpress.org/?v=3.2 By: trav1m http://ajaxian.com/archives/integrating-http-authentication-with-html-forms/comment-page-1#comment-269524 trav1m Wed, 03 Dec 2008 19:00:30 +0000 http://ajaxian.com/?p=5273#comment-269524 Please please don't require HTTP implementations to understand HTML. You'd be forcing a good spec (HTTP) to depend on a bad one (HTML). There are much simpler solutions to this problem if you're already planning to ask browser-makers to change their ways. Please please don’t require HTTP implementations to understand HTML. You’d be forcing a good spec (HTTP) to depend on a bad one (HTML).

There are much simpler solutions to this problem if you’re already planning to ask browser-makers to change their ways.

]]> By: JonathanLeech http://ajaxian.com/archives/integrating-http-authentication-with-html-forms/comment-page-1#comment-269482 JonathanLeech Tue, 02 Dec 2008 16:56:06 +0000 http://ajaxian.com/?p=5273#comment-269482 Aside from the digest authentication stuff, this doesn't really offer anything to web authors. The rest of it falls under the category of semantic web. Knowing that certain content requires authentication would make it easier for Google to crawl and categorize the web, but in no way easier for web authors to secure a web site. Also none of those proposals explicitly mention multi-step logins, and while nothing I read in them precludes that, I can imagine broken implementations of this assuming and only allowing single-step logins with only username / password semantics. Aside from the digest authentication stuff, this doesn’t really offer anything to web authors. The rest of it falls under the category of semantic web. Knowing that certain content requires authentication would make it easier for Google to crawl and categorize the web, but in no way easier for web authors to secure a web site. Also none of those proposals explicitly mention multi-step logins, and while nothing I read in them precludes that, I can imagine broken implementations of this assuming and only allowing single-step logins with only username / password semantics.

]]>