[Standards] Authorization over HTTP

Kevin Smith kevin at kismith.co.uk
Fri Nov 9 09:15:32 UTC 2007


On 9 Nov 2007, at 09:07, Tomasz Sterna wrote:
> So you want to give access to user private data to a remote web server
> via HTTP, right?
> Designing protocols how web servers talk to each other, is a job of  
> W3C,
> not XSF.
> We design ways how XMPP servers and clients talk to each other.
> My personal suggestion would be SOAP or XMLRPC frontend to the used  
> data
> storage. But this is going offtopic.

I'm not sure that's really true, what Anders is looking for, I  
believe, is a way to authenticate a third party as you, without  
revealing your credentials to them. This seems a reasonable use case  
to me, from what I understand.

/K



More information about the Standards mailing list