[Io] Re: Web Clients (was Re: Monticello authentication methods?)
Todd Blanchard
tblanchard at mac.com
Thu Sep 14 23:16:34 UTC 2006
Oh, I thought we had decided on the HC client. Although, I confess
I've been looking at both. Would the right thing to do be to just
pick one and replace the existing HTTPSocket implementation with it?
I really would like to see HTTPSocket die and I'm sorry I didn't
follow through on that last spring. For some reason I thought you
were talking with the author of one or the other packages and getting
clearance for inclusion.
On Sep 14, 2006, at 8:58 AM, Ken Causey wrote:
> There was discussion of replacing it within the IO team, but never any
> decision as to what to replace it with. That was back in April and
> there's been no further discussion or action since then that I'm aware
> of.
>
> Ken
>
> On Thu, 2006-09-14 at 01:23 -0700, Todd Blanchard wrote:
>> I was under the impression we were going to deprecate that stuff in
>> favor of the Steve Waring's http client package.
>>
>> Right Ken?
>>
>> -Todd Blanchard
>>
>> On Sep 13, 2006, at 11:21 PM, stephane ducasse wrote:
>>
>>> So why a group of guy start to fix it!
>>> Let's try to step by step little peeble by little peeble
>>> improve...No giant step just a tiny and simple one
>>>
>>>>> Note that this is not doing you any good security-wise, because
>>>>> MC will
>>>>> send the basic-auth user:password anyway, and only if that fails,
>>>>> digest
>>>>> is tried. HTTPSocket authentication needs to be completely
>>>>> reworked.
>>>>
>>>> Not only authentication, everything. The whole class is just awful.
>>>>
>>>> Philippe
>>>>
>>>
>>>
>>
>>
More information about the Io
mailing list